-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathmain_script.php
More file actions
104 lines (80 loc) · 2.74 KB
/
main_script.php
File metadata and controls
104 lines (80 loc) · 2.74 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
<html>
<head>
<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css">
<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js"></script>
<script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js"></script>
<style>
body{
margin: 25px 50px 75px 100px}
</style>
</head>
<?php
$username='None';
$psw='None';
$user_type='None';
//$course_id='something_stupid';
if(isset($_GET['uname'])){
$username=$_GET['uname'];
}
if(isset($_GET['psw'])){
$psw=$_GET['psw'];
}
if(isset($_GET['user_type'])){
$user_type=$_GET['user_type'];
}
?>
<?php
$con = mysqli_connect("localhost","root","","unload_me_db");
//$password = md5($password);
// $query = "SELECT * FROM users WHERE email='$email' AND password='$password'";
if($user_type=='Instructor'){
$query = "SELECT i.pass,i.name FROM inst as i WHERE i.iid = '$username';";
}
if($user_type=='Student'){
$query = "SELECT s.pass,s.name FROM stud as s WHERE s.sid = '$username';";
}
$result = mysqli_query($con, $query);
$get = mysqli_fetch_assoc($result);
$numResults = mysqli_num_rows($result);
if($numResults == 1)
{
$name_of_user=$get["name"];
if($get["pass"]==$psw){
if($user_type=='Instructor'){
$query=(" SELECT cs.cid, cs.name FROM csem cs INNER JOIN teaches t ON (cs.cid = t.cid AND cs.semid = t.semid) WHERE t.iid ='".$username."' AND t.semid = 'SP2018';");
$result = mysqli_query($con, $query);
//finding the right course id from the instructor
// if confirmed, load a new page
echo "<html>";
echo "<form action='calendar.html',method= 'POST'>";
echo "<input type='hidden' name='user_id' value=$username />";
echo "<input type='hidden' name='user_type' value=$user_type />";
echo "<input type='hidden' name='name_of_user' value=$name_of_user />";
echo "<label for='course_id'>Select the Course-id </label>";
echo "<div class='dropdown'>";
echo "<select name='course_id' class='btn btn-primary btn-lg dropdown-toggle' type='button' data-toggle='dropdown' >";
while ($get=mysqli_fetch_assoc($result)) {
echo "<option value= '".$get["cid"]."'>".$get["cid"]." - ".$get["name"]." </option><br><br>";
}
echo "</select>";
echo "</div>";
echo "<br><br>";
echo "<input type='submit' class='btn-lg btn-success' type='button'>";
echo "</form>";
echo "</html>";
//include 'calendar.html';
}
if($user_type=='Student'){
header("Location: calendar.html?user_id=".$username."&user_type=".$user_type."&name_of_user=".$name_of_user);
exit();
}
}
// $query = "UPDATE users SET login_count = login_count + 1 WHERE email='$email'";
// mysqli_query($con, $query);
}
else
{
echo "<br><br><br><center><h1>Invalid credentials!</h1></center>";
}
// if($get[""])
?>