我正在尝试创建一个登录页面,该页面将根据用户的登录模块将用户发送到不同的index.php页面。例如,如果具有“Admin”角色的用户登录,他们将被发送到“admin.php”,如果具有“branch”角色的用户登录,他们将被发送到“branch.php”页。
<?php
session_start(); // Starting Session
$error=''; // Variable To Store Error Message
if (isset($_POST['submit']))
{
if (empty($_POST['username']) || empty($_POST['password']))
{
$error = "Username or Password is invalid";
}
else
{
// Define $username and $password
$usr=$_POST['username'];
$pwd=$_POST['password'];
// Establishing Connection with Server by passing server_name, user_id and password as a parameter
$con = mysql_connect("localhost", "root1", "oec@123") or die('Error Connecting to mysql server');
// To protect MySQL injection for Security purpose
$username = stripslashes($usr);
$password = stripslashes($pwd);
$username = mysql_real_escape_string($usr);
$password = mysql_real_escape_string($pwd);
// Selecting Database
$db = mysql_select_db("rms", $con);
// SQL query to fetch information of registerd users and finds user match.
$query = mysql_query("select Sl_no, username, password from login where password='$pwd' AND username='$usr'", $con) or die('Error querying database');
$rows = mysql_num_rows($query);
$dbusr=$rows['username'];
$dbpwd=$rows['password'];
$dbsl= $rows['Sl_no'];
if ($rows > 0)
{
switch($dbsl)
{
case 1 : header("Location: admin.php");
break;
case 2 : header("Location:branchadmin.php");
break;
case 3 : header("Location:accountant.php");
break;
case 4 : header("Location:reporter.php");
break;
default : header("Location:index.php");
}
$_SESSION['login_user']=$usr; // Initializing Session
//header("location: admin.php"); // Redirecting To Other Page
}
else {
$error = "Username or Password is invalid";
}
mysql_close($con); // Closing Connection
}
}
?>