Login_temp.

php (create in includes folder)

<?php
//start session
session_start();
if($_SERVER["REQUEST_METHOD"]=="POST"){
//RETRIEVE FORM DATA
$username = $_POST['username'];
$password =$_POST['password'];
//DB connection
$host = "localhost";
$dbusername = "root";
$dbpassword = "";
$dbname = "example";
try{
$conn = new mysqli($host,$dbusername,$dbpassword, $dbname);
//check if connection failed & display error msg
if($conn->connect_error){
die("Connection failed ".$conn->connect_error);
}
//execute SELECT query
$query = "SELECT * FROM tblusers WHERE username ='$username' AND
password='$password'";
$result = $conn->query($query);
if ($result->num_rows == 1){
//login succeeded
session_start(); //start session
//retrieve role id
while($row = $result->fetch_assoc())
{ //set session variables
$_SESSION["RoleID"] = $row['RoleID'];
//$_SESSION["Username"] = $row['Username'];
$_SESSION["Username"] = $username;
}
//determine the landing page after login based on user roles
if ($_SESSION['RoleID'] == 1)
header("Location:admin.php");
else if ($_SESSION['RoleID'] == 2)
header("Location:lecturer.pph");
else if ($_SESSION['RoleID'] == 3)
header("Location:Student.php");
exit();
}
else{
//login failed
echo '<script>alert("Invalid Credentials. Please try again")</script>';
$script = "<script> window.location = 'login.php'; </script>";
echo $script;
exit();
}
}
catch(Exception $ex){
echo 'Sorry, something went wrong '.$ex->getMessage();
}
//close the connection
$conn->close();
} ?>