1 <?php
2 include('includes/config.php');
3 $reqErr = $loginErr = "";
4 if($_SERVER['REQUEST_METHOD'] == "POST") {
5 if(!empty($_POST['txtUsername']) && !empty($_POST['txtPassword']) && isset($_POST['login_type'])){
6 session_start();
7 $username = $_POST['txtUsername'];
8 $password = $_POST['txtPassword'];
9 $_SESSION['sessLogin_type'] = $_POST['login_type'];
10 if($_SESSION['sessLogin_type'] == "retailer") {
11 //if selected type is retailer than check for valid retailer.
12 $query_selectRetailer = "SELECT retailer_id,username,password FROM retailer WHERE username='$username' AND password='$password'";
13 $result = mysqli_query($con,$query_selectRetailer);
14 $row = mysqli_fetch_array($result);
15 if($row) {
16 $_SESSION['retailer_id'] = $row['retailer_id'];
17 $_SESSION['sessUsername'] = $_POST['txtUsername'];
18 $_SESSION['sessPassword'] = $_POST['txtPassword'];
19 $_SESSION['retailer_login'] = true;
20 header('Location:retailer/index.php');
21 }
22 else {
23 $loginErr = "* Username or Password is incorrect.";
24 }
25 }
26 else if($_SESSION['sessLogin_type'] == "manufacturer") {
27 //if selected type is manufacturer than check for valid manufacturer.
28 $query_selectManufacturer = "SELECT man_id,username,password FROM manufacturer WHERE username='$username' AND password='$password'";
29 $result = mysqli_query($con,$query_selectManufacturer);
30 $row = mysqli_fetch_array($result);
31 if($row) {
32 $_SESSION['manufacturer_id'] = $row['man_id'];
33 $_SESSION['sessUsername'] = $_POST['txtUsername'];
34 $_SESSION['sessPassword'] = $_POST['txtPassword'];
35 $_SESSION['manufacturer_login'] = true;
36 header('Location:manufacturer/index.php');
37 }
38 else {
39 $loginErr = "* Username or Password is incorrect.";
40 }
41 }
42 else if($_SESSION['sessLogin_type'] == "admin") {
43 $query_selectAdmin = "SELECT username,password FROM admin WHERE username='$username' AND password='$password'";
44 $result = mysqli_query($con,$query_selectAdmin);
45 $row = mysqli_fetch_array($result);
46 if($row) {
47 $_SESSION['admin_login'] = true;
48 $_SESSION['sessUsername'] = $_POST['txtUsername'];
49 $_SESSION['sessPassword'] = $_POST['txtPassword'];
50 header('Location:admin/index.php');
51 }
52 else {
53 $loginErr = "* Username or Password is incorrect.";
54 }
55 }
56 }
57 else {
58 $reqErr = "* All fields are required.";
59 }
60 }
61 ?>
62 <!DOCTYPE html>
63 <html>
64 <head>
65 <title> Login </title>
66 <link rel="stylesheet" href="includes/main_style.css" >
67 </head>
68 <body class="login-box">
69 <h1>LOGIN</h1>
70 <form action="" method="POST" class="login-form">
71 <ul class="form-list">
72 <li>
73 <div class="label-block"> <label for="login:username">Username</label> </div>
74 <div class="input-box"> <input type="text" id="login:username" name="txtUsername" placeholder="Username" /> </div>
75 </li>
76 <li>
77 <div class="label-block"> <label for="login:password">Password</label> </div>
78 <div class="input-box"> <input type="password" id="login:password" name="txtPassword" placeholder="Password" /> </div>
79 </li>
80 <li>
81 <div class="label-block"> <label for="login:type">Login Type</label> </div>
82 <div class="input-box">
83 <select name="login_type" id="login:type">
84 <option value="" disabled selected>-- Select Type --</option>
85 <option value="retailer">Retailer</option>
86 <option value="manufacturer">Manufacturer</option>
87 <option value="admin">Admin</option>
88 </select>
89 </div>
90 </li>
91 <li>
92 <input type="submit" value="Login" class="submit_button" /> <span class="error_message"> <?php echo $loginErr; echo $reqErr; ?> </span>
93 </li>
94 </ul>
95 </form>
96 </body>
97 </html>