<?php
session_start();
include_once("CONNECTIONS/conexion.php");
$action="";
if(isset($_POST["action"])) $action=$_POST["action"];
if($action==1)
{
$login=$_POST["login"];
$password=md5($_POST["pass"]);
// $password=($_POST["pass"])
$mysqli = new mysqli("localhost", "root", "123456", "db_sagi");
if ($mysqli->connect_errno) {
echo "Fallo al conectar a MySQL: (" . $mysqli->connect_errno . ") " . $mysqli->connect_error;
}
$query_Recordset1 = ("SELECT * FROM jos_admini WHERE usuario = '$login' AND clave='$password'");
$Recordset1 = mysqli_query($query_Recordset1, $mysqli) or die(mysql_error());
$row_Recordset1 = mysqli_fetch_assoc($Recordset1);
$totalRows_Recordset1 = mysqli_num_rows($Recordset1);
$usuario=$row_Recordset1['usuario'];
$clave=$row_Recordset1['clave'];
$nombre=$row_Recordset1['nombre'];
$id=$row_Recordset1['id'];
$id_Perfil=$row_Recordset1['nivel'];
$ban=0;
if($usuario==$login && $clave==$password) //si encuentra al usuario en la base de datos inicia la sesi�n
{ $ban=1;
$_SESSION['user']=$login;
$_SESSION['nombre']=$nombre;
$_SESSION['id']=$id;
$_SESSION['sessionId']= session_id();
$_SESSION['id_perfil']= $id_Perfil;
echo"<meta http-equiv='refresh' content='0;URL=index.php'>";
}
if($ban==0)
echo "<meta http-equiv='refresh' content='0;URL=index.php?nouser=1'>";
}
?>