HEX
Server: Apache
System: Linux iad1-shared-e1-19 6.6.49-grsec-jammy+ #10 SMP Thu Sep 12 23:23:08 UTC 2024 x86_64
User: austral3d (14892361)
PHP: 5.6.40
Disabled: NONE
Upload Files
File: /home/austral3d/fourdplan.com/vreport360/conexion.php
<?php
require('../php/conexion.php');

if(!isset($_SESSION)){
	session_start();
}

$mail = $_POST['txtmail'];
$pass = $_POST['pass'];
$empresa = 1;

//consulta sesion
if($mail == "construccionoxe" && $pass == "sxoxe2016"){
	
	$result[] = "asdasd";
}else{

$query = mysql_query("SELECT * FROM Usuario where mail = '".$mail."' AND password = '".$pass."' and empresa_id = '".$empresa."'");

//resultado sesion
$result = mysql_fetch_array($query);
}

ini_set('date.timezone','America/Argentina/Buenos_Aires'); 
$inicio = date('Y-m-d H:i:s');

$ip = $_SERVER['REMOTE_ADDR'];

if($mail != "" || $mail == "" && $pass != "" || $pass == ""){
	if(!$result[0]){
		session_destroy();
		echo '<script language = javascript>		
				alert("El usuario o el password no son validos, por favor intentelo nuevamente.")
				self.location = "index.php"				
			</script>';			
	}else{	
		$_SESSION['nombre'] = $result['apellido'];
		$_SESSION['id'] = $result['id'];
		$usuario_id = $_SESSION['id'];
		
		setcookie("usuario_nombre",$result['nombre']);	
		//mysql_query("INSERT INTO Sesion (id,usuario_id,inicio,IP,software_id) values ('','$usuario_id','$inicio','$ip','3')");
		header("Location: proyecto.php");	
	}
}else 
{
	session_destroy();
}
?>