site_session_name); //session_start($xerte_toolkits_site->site_session_name); session_start(); } require $xerte_toolkits_site->php_library_path . "login_library.php"; require $xerte_toolkits_site->php_library_path . "display_library.php"; /* * As with index.php, check for posts and similar */ if((!isset($_POST["login"]))&&(!isset($_POST["password"]))){ $buffer = login_page_format_top(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_top")); $buffer .= login_page_format_bottom(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_bottom")); echo $buffer; } /* * Some data has been posted, interpret as a log in attempt */ if ($_SERVER['REQUEST_METHOD'] == 'POST') { /** * Username and password left empty */ if(($_POST["login"]=="")&&($_POST["password"]=="")){ $buffer = login_page_format_top(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_top")); $buffer .= "

Please enter your username and password

"; $buffer .= login_page_format_bottom(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_bottom")); echo $buffer; /* * Username left empty */ }else if($_POST["login"]==""){ $buffer = login_page_format_top(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_top")); $buffer .= "

Please enter your username

"; $buffer .= login_page_format_bottom(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_bottom")); echo $buffer; /* * Password left empty */ }else if($_POST["password"]==""){ $buffer = login_page_format_top(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_top")); $buffer .= "

Please enter your password

"; $buffer .= login_page_format_bottom(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_bottom")); echo $buffer; /* * Password and username provided, so try to authenticate */ }else{ if(($_POST["login"]==$xerte_toolkits_site->admin_username)&&($_POST["password"]==$xerte_toolkits_site->admin_password)){ require $xerte_toolkits_site->php_library_path . "database_library.php"; require $xerte_toolkits_site->php_library_path . "user_library.php"; $_SESSION['toolkits_sessionid'] = session_id(); $mysql_id=database_connect("management.php database connect success","management.php database connect fail"); $_SESSION['toolkits_logon_username'] = $_POST["login"]; $_SESSION['toolkits_logon_id'] = "site_administrator"; /* * Check the user is set as an admin in the usertype record in the logindetails table, and display the page */ echo file_get_contents($xerte_toolkits_site->website_code_path . "admin_headers"); echo ""; echo file_get_contents($xerte_toolkits_site->website_code_path . "admin_top"); echo file_get_contents($xerte_toolkits_site->website_code_path . "admin_middle"); }else{ /* * Wrong password message */ $buffer = login_page_format_top(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_top")); $buffer .= "

Sorry that password combination was not correct

"; $buffer .= login_page_format_bottom(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_bottom")); echo $buffer; } } } ?>