37 lines
929 B
PHP
37 lines
929 B
PHP
<?php
|
|
class Login extends Controller {
|
|
|
|
private $database;
|
|
|
|
public function __construct(){
|
|
$this->login();
|
|
}
|
|
|
|
public function login(){
|
|
$database = new DatabaseAccess();
|
|
$username = $_POST['username'];
|
|
$password = $_POST['password'];
|
|
$role;
|
|
|
|
if (filter_var($username, FILTER_VALIDATE_EMAIL)) {
|
|
// Login Customer
|
|
$result = $database->query("SELECT * FROM Customer WHERE customerEmail = ? AND password = ?", "ss" ,array($username, $password));
|
|
$role = 1;
|
|
} else {
|
|
// Login Tenant
|
|
$result = $database->query("SELECT * FROM Tenant WHERE tenantID = ? AND password = ?", "ss" ,array($username, $password));
|
|
$role = 0;
|
|
}
|
|
|
|
if($result->num_rows == 1){
|
|
session_start();
|
|
$_SESSION['username'] = $username;
|
|
$_SESSION['role'] = $role;
|
|
header('Location: home');
|
|
}else{
|
|
header("Location: index?username=$username");
|
|
}
|
|
}
|
|
}
|
|
?>
|