format("Y/m/d"); $currentTime = date("h:i a"); $conn = mysql_connect($sqlHost, $sqlUser, $sqlPass) or die ("Couldn't connct to MySQL server on $sqlHost: ". mysql_error(). '.'); $db = mysql_select_db($sqlDatabase, $conn) or die ("Couldn't select database $sqlDatabase: ". mysql_error(). '.'); //These functions are defined at the bottom. //initialize_htaccess(); // make sure .htaccess file allows web services calls from anyone $key = $_REQUEST['loginKey']; // Expect LoginName, LoginPassword // if($key==='AEE10241977') { $LoginName = addslashes($_REQUEST['loginUsername']); $LoginPassword = addslashes($_REQUEST['loginPassword']); $sql = "SELECT * FROM $registrations_table WHERE u_name = '$LoginName'"; $sqlResult = mysql_query($sql, $conn) or die("Couldn't perform query $sql (".__LINE__."): " . mysql_error() . '.'); if(mysql_num_rows($sqlResult) == 1) { $sqlRecord = mysql_fetch_assoc($sqlResult); if($sqlRecord['tab_user']==1){ if($sqlRecord['u_status']==1){ //================================= if($sqlRecord['u_password'] == md5($LoginPassword)) { $checkIfQRExist = mysql_result(mysql_query("SELECT `long` FROM `vts_users` WHERE `u_name`='$LoginName'"),0); if(empty($checkIfQRExist)){ $regFName = mysql_result(mysql_query("SELECT `u_fname` FROM `vts_users` WHERE `u_name`='$LoginName'"),0); $regLName = mysql_result(mysql_query("SELECT `u_lname` FROM `vts_users` WHERE `u_name`='$LoginName'"),0); $regCompany = mysql_result(mysql_query("SELECT `company` FROM `vts_users` WHERE `u_name`='$LoginName'"),0); $myFrame=""; $myFrame = mysql_real_escape_string($myFrame); mysql_query("UPDATE `vts_users` SET `long` = '$myFrame' WHERE `u_name`='$LoginName'"); } $status = "Connecting..."; $sqlRecord['status'] = $status; $sqlRecord['statusCode'] = '1'; $json = json_encode([$sqlRecord]); $logged="INSERT INTO `login_history` (`u_name`,`remarks`,`date`,`time`,`branch_code`) VALUES('$LoginName','IN','$toDate','$currentTime','0')"; if(!mysql_query($logged)) { die('Error: ' . mysql_error()); } } else { $status = "Password Incorrect."; $json = json_encode(["status" => "$status", "statusCode" => '0']); } //================================ } else { $status = "Unable to login. Please activate your account"; $json = json_encode(["status" => "$status", "statusCode" => '0']); } }else{ $status = "Your account is not allowed to access the App"; $json = json_encode(["status" => "$status", "statusCode" => '0']); } } else { $msg = "User $LoginName does not exist."; $json = json_encode(['status' => "$msg", "statusCode" => '0']); } $did_something += 1; } if($did_something === 0) { $msg = did_nothing_message; $json = json_encode(["status" => "$msg", "statusCode" => '0']); } echo $json; ?>