<?
###################################################
#Copyright (C) 2002 Lihua Gao (hide@address.com) 
#
#$Id: login.php,v 1.1 2002/12/05 10:03:33 gaolihua Exp $
#
#This file is part of myTodos.
#
#myTodos is free software; you can redistribute it and/or modify
#it under the terms of the GNU General Public License as published by
#the Free Software Foundation; either version 2 of the License, or
#(at your option) any later version.
#
#myTodos is distributed in the hope that it will be useful,
#but WITHOUT ANY WARRANTY; without even the implied warranty of
#MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#GNU General Public License for more details.
#
#You should have received a copy of the GNU General Public License
#along with myTodos; if not, write to the Free Software
#Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
#####################################################
?>
<?
session_start();
require_once("checklogin.php");
require_once("config.php");

$sql = "SELECT * FROM users WHERE usr_email='".$useremail."' AND usr_password='".$password."'";
$result = mysql_query($sql);

$cnt_fields = mysql_num_fields($result);
$cnt_rows = mysql_num_rows($result);
$row = mysql_fetch_array($result, MYSQL_ASSOC);

if ($cnt_rows==1) {
   // login successful
   $_SESSION['login'] = $useremail;
   $_SESSION['userid'] = $row["usr_id"];
   $_SESSION['lastname'] = $row["usr_lastname"];
   $_SESSION['firstname'] = $row["usr_firstname"];


   // logging
   $logfile = fopen("tmp/usages.log","a");
   fputs($logfile, "login: ".$_SESSION['login']."/".date("d.M.Y h:m:s A", time())." <BR>\r\n");
   fclose($logfile);


   header("Location: main.php?useremail=$useremail");
}
else {
   $sql = "SELECT * FROM users WHERE usr_email='".$useremail."'";
   $result = mysql_query($sql);
   $cnt_rows = mysql_num_rows($result);
   if ($cnt_rows==1) 
      header("Location: index.php?error=2&useremail=$useremail");
   else
      header("Location: index.php?error=3&useremail=$useremail");
}

?>