| Server IP : 172.67.187.206 / Your IP : 172.71.28.156 Web Server : Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30 System : Windows NT WIN-ECQAAA40806 6.2 build 9200 (Windows Server 2012 Standard Edition) i586 User : SYSTEM ( 0) PHP Version : 5.6.30 Disable Function : NONE MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : E:/Inetpub/www/sillapa/ |
Upload File : |
<?php
session_start();
require_once('includes/db_connect.php');
$error = '';
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$username = mysqli_real_escape_string($conn, $_POST['username']);
$password = mysqli_real_escape_string($conn, $_POST['password']);
$sql = "SELECT * FROM tbl_users WHERE username = '$username' AND password = '$password'";
$result = mysqli_query($conn, $sql);
if (mysqli_num_rows($result) === 1) {
$user = mysqli_fetch_assoc($result);
$_SESSION['user_id'] = $user['user_id'];
$_SESSION['user_role'] = $user['user_role'];
$_SESSION['school_id'] = $user['school_id'];
$_SESSION['manager_category_id'] = $user['manager_category_id'];
$_SESSION['score_category_id'] = $user['score_category_id'];
header('Location: /' . $_SESSION['user_role'] . '/');
exit();
} else {
$error = 'ชื่อผู้ใช้หรือรหัสผ่านไม่ถูกต้อง';
}
}
ob_start();
?>
<div class="row justify-content-center">
<div class="col-md-6">
<div class="card shadow">
<div class="card-header text-center">
<h3>เข้าสู่ระบบ</h3>
</div>
<div class="card-body">
<?php if ($error): ?>
<div class="alert alert-danger"><?php echo $error; ?></div>
<?php endif; ?>
<form action="" method="post">
<div class="mb-3">
<label for="username" class="form-label">ชื่อผู้ใช้</label>
<input type="text" class="form-control" id="username" name="username" required>
</div>
<div class="mb-3">
<label for="password" class="form-label">รหัสผ่าน</label>
<input type="password" class="form-control" id="password" name="password" required>
</div>
<div class="d-grid">
<button type="submit" class="btn btn-primary">เข้าสู่ระบบ</button>
</div>
</form>
</div>
</div>
</div>
</div>
<?php
$content = ob_get_clean();
$page_title = 'เข้าสู่ระบบ';
require_once('includes/template.php');
?>