include("../conndb.php"); $act=$get["act"]; if($act=="login"){ $account=$post["account"]; $password=substr(md5($post["password"]),0,20); $rs=SelectDB("admin","","adm_account='$account' and adm_password='$password' and adm_isenable='Y'"); if($rs["count"]==0){ ?> exit(); }else{ $rst=$rs["data"][0]; $_SESSION["admin"]=$rst; $_SESSION["adm_no"]=$rst["adm_no"]; $_SESSION["adm_rights"]=explode(",",$rst["adm_rights"]); $_SESSION["adm_name"]=$rst["adm_name"]; $_SESSION["adm_lastlogin"]=$rst["adm_lastlogin"]; $_SESSION["loginTime"]=time(); $ary=array(); $ary["adm_lastlogin"]="'".date("Y-m-d H:i:s",time()+$time_offset)."'"; UpdateDB("admin",$ary,"adm_no=".$rst["adm_no"]); echo ''; exit(); } } if($act=="logout"){ $_SESSION["admin"]=""; $_SESSION["adm_no"]=""; $_SESSION["adm_rights"]=""; session_destroy(); echo ''; exit; } ?>