<?php
if(!isset($_COOKIE['username'])) //an den exei kanei login
{
  $loggedflag=0;
  
  if(isset($_REQUEST['loginbt'])) //an exei kanei submit sth forma login
  {
	include_once('sql_connection2.php');
	
	if(isset($ConnectionFlag)) //$ConnectionFlag arxeikopoieite sthn sql_connection.php h sql_connection2.php
	{
		if($ConnectionFlag == false)
		{
			$problem=connectdb2();
			$sideConnectionFlag = true;
		}
		else $sideConnectionFlag = false;
	}
	else if(!isset($ConnectionFlag))
	{
		$problem=connectdb2();
		$sideConnectionFlag = true;
	}
	
	if(empty($problem))
	{
		if(trim($_REQUEST['user']))
		{
			if(trim($_REQUEST['pass'])) //an exei dwsei onoma kai kodiko
			{
				if(!empty($_REQUEST['keeplogged'])) $keeplogged=1;
				else $keeplogged=0;
				
				$username=trim($_REQUEST['user']);
				$password=trim($_REQUEST['pass']);
				$username=mysqli_real_escape_string($con,$username);
				$password=sha1(mysqli_real_escape_string($con,$password)); //vazw hash sha1 gia na sygrinw me th vash
				
				$searchdata=mysqli_query($con,"SELECT usersID, username, userRights, avatar FROM users WHERE (username='$username' AND password='$password') AND active=TRUE") ; 
				
				if(mysqli_num_rows($searchdata)==1) //an yparxei taftish
				{
					$data=mysqli_fetch_array($searchdata); // dhmiourgo pinaka me ta dedomena pou peira apo thn vash
					
					if($keeplogged==1) 
					{
						setcookie('usersID',$data['usersID'],time()+60*60*24*365);
						setcookie('username',$data['username'],time()+60*60*24*365);
						setcookie('userRights',$data['userRights'],time()+60*60*24*365);
						setcookie('avatar',$data['avatar'],time()+60*60*24*365);
						setcookie('time',1,time()+60*60*24*365);
					}
					else 
					{
						setcookie('usersID',$data['usersID'],time()+60*10);
						setcookie('username',$data['username'],time()+60*10);
						setcookie('userRights',$data['userRights'],time()+60*10);
						setcookie('avatar',$data['avatar'],time()+60*10);
						setcookie('time',0,time()+60*10);
						
					}
					$loggedflag=1;
					$cookiecontentusername=$data['username'];
					$cookiecontentuserrights=$data['userRights'];
					$cookiecontentavatar=$data['avatar'];
					
				}
				else
				{
					$login_message = 'Wrong Username or Password. Please fill your Username and your Password properly and try again to login.';
				}				
			}
			else
			{
				 $login_message = 'Empty Username or Password. Please fill your Username and your Password properly and try again to login.';
			}
		}
		else
		{
			$login_message = 'Empty Username or Password. Please fill your Username and your Password properly and try again to login.';
		}
	}
	
	if($sideConnectionFlag == true) closedb2($con);
  }
}
else if(isset($_REQUEST['logout'])) //an exei kanei logout
{
	$loggedflag=0;
	setcookie('usersID','',time()-60*60*24*365);
	setcookie('username','',time()-60*60*24*365);
	setcookie('userRights','',time()-60*60*24*365);
	setcookie('avatar','',time()-60*60*24*365);
}
else //an exei kanei login... ananeono kai to cookie, an den exei kanei check to keep me logged in.
{
	
	$loggedflag=1;
	
	if($_COOKIE['time']==0)
	{
		setcookie('usersID',$_COOKIE['usersID'],time()+60*10);
		setcookie('username',$_COOKIE['username'],time()+60*10);
		setcookie('userRights',$_COOKIE['userRights'],time()+60*10);
		setcookie('avatar',$_COOKIE['avatar'],time()+60*10);
		setcookie('time',0,time()+60*10);
	}
	
	$cookiecontentusername=$_COOKIE['username'];
	$cookiecontentuserrights=$_COOKIE['userRights'];
	if(!isset($cookiedebug)) $cookiecontentavatar=$_COOKIE['avatar'];
}
?>