require_once('../inc/com.php'); $_SESSION['u_id'] = ''; $_SESSION['login_key'] = ''; $get_login_id = GET_ESC(trim($_POST['login_id'])); $get_login_pw = GET_ESC(trim($_POST['login_pw'])); if($_POST['submit']) { $flg = 0; if($get_login_id<>'' and $get_login_pw<>'') { $SQL = ''; $SQL .= ' SELECT * '; $SQL .= ' FROM i_corp '; $SQL .= ' WHERE active = 1 '; $SQL .= ' AND c_login = 1 '; $SQL .= ' AND c_mail = "'.urlencode($get_login_id).'" '; $SQL .= ' AND c_pw = "'.urlencode($get_login_pw).'" '; $objRecord5 = mysql_query($SQL); while ($item5 = mysql_fetch_array($objRecord5)) { $c_id = $item5['c_id']; $flg = 1; } } if($flg==1) { $w = time(); $_SESSION['c_id'] = $c_id; $_SESSION['login_key'] = $w; $SQL = ''; $SQL .= ' UPDATE i_corp SET '; $SQL .= ' login_key = \''.$w.'\' '; $SQL .= ' WHERE c_id = "'.$c_id.'" '; $objRecord5 = mysql_query($SQL); header('Location: top.php'); }else{ $flg = 2; } } ?>