""){ $conn = connectdb(); $sql = "select last from fpi_admin_status where login = '$login' and s_key = $s_key"; $result = mysql_query($sql, $conn) or die("Failed to check session key"); if ($myrow = mysql_fetch_object($result)){ disconnectdb($conn); return true; } disconnectdb($conn); } return false; } function create_session_key($login){ $conn = connectdb(); $sql = "delete from fpi_admin_status where ".time()." - last > 172800"; $result = mysql_query($sql, $conn) or die("Failed to delete expired session key"); srand(time()); $s_key = rand() % 10000 + 1; $sql = "insert into fpi_admin_status values('$login', ".time().", $s_key)"; $result = mysql_query($sql, $conn) or die("Failed to insert new session key"); disconnectdb($conn); return $s_key; } function delete_session_key($login, $s_key){ if ($s_key <> ""){ $conn = connectdb(); $sql = "delete from fpi_admin_status where login = '$login' and s_key = $s_key"; $result = mysql_query($sql, $conn) or die("Failed to delete session key"); disconnectdb($conn); } } function validate_user($login, $pwd){ $conn = connectdb(); $sql = "select * from fpi_admin where login = '$login' and pwd = '$pwd' and status = 'activate'"; $result = mysql_query($sql, $conn) or die("Failed to validate user"); if ($myrow = mysql_fetch_object($result)){ if ($myrow->level == "superadmin"){ return 1; }elseif ($myrow->level == "admin"){ return 2; }if ($myrow->level == "category admin"){ return 3; }else{ return -1; } disconnectdb($conn); }else{ return -1; } disconnectdb($conn); } ?>