<?php
session_start();
require_once("../class/connectClass.php");
require_once("../class/view_Class.php");
//require_once("../class/user_Class.php");





$view_db = new Viewdata;
//$User_db = new User;


//$email = @$_POST["email"];
//$pass = @$_POST["password"];
$email = addslashes(trim($_POST['email']));
$pass= addslashes(trim($_POST['password']));

//$pass_md5 = md5(@$pass."legolas");
//$pass_md5 = md5($pass);
//$pass_md5 = $User_db->cus_pass($pass);




$sql = array('table'=>'member','count'=>'count(Mid) AS count_id','where'=>"Memail = '". $email ."' AND  Mstatus = 0");
$view_sql = $view_db->view($sql);
$row = $view_db->q($view_sql);	
$row["count_id"];



if($row["count_id"])
{
	$sql2 = array('table'=>'member','count'=>'count(Mid) AS count_id','where'=>"Memail = '". $email ."' AND Mpwd = '". $pass ."'");
	$view_sql2 = $view_db->view($sql2);
	$row2 = $view_db->q($view_sql2);	
	if($row2["count_id"])
	{
		$sql_id = array('table'=>'member','where'=>"Memail = '".$email."' AND Mpwd = '".$pass."'");
		 $viewid_sql = $view_db->view($sql_id);
		$row_id = $view_db->q($viewid_sql);
		
		$_SESSION["hom_login"] = 1;
		$_SESSION["hom_mail"] = $row_id["Memail"];
		$_SESSION["hom_id"] = $row_id["Mid"];
		
		$_SESSION["hom_name"] = $row_id["Mfname"];
		$_SESSION["hom_lastname"] = $row_id["Mlname"];
	//print_r($_SESSION);
	//exit;
		?><meta http-equiv="refresh" content="0;URL=../home/index.php" /><?php
		exit;
	}
	else
	{
		?><meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
		<script>
			alert("ข้อมลู Username หรือ Password ไม่ถูกต้อง");
		</script>
		<meta http-equiv="refresh" content="0;URL=../member/login.php">
		<?php
		exit;
	}
	
}
else
{
	?><meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
	<script>
		alert("ข้อมลู Username หรือ Password ไม่ถูกต้อง");
	</script>
	<meta http-equiv="refresh" content="0;URL=../member/login.php">
	<?php
	exit;
}
?>