$value)session_unregister("$key"); session_destroy(); } if(isset($_SESSION["user_mode"]))$user_mode=true; if(isset($_SESSION["action"]))$action=$_SESSION["action"]; if(isset($_SESSION["workgroup_admin"]))$workgroup_admin=true; if(isset($_SESSION["workgroup_operator"]))$workgroup_operator=true; if(isset($_SESSION["admin_mode"]))$admin_mode=true; if(isset($_SESSION["reader_mode"]))$reader_mode=true; if(isset($_SESSION["groups"]))$groups=$_SESSION["groups"]; if(isset($_SESSION["workgroups"]))$workgroups=$_SESSION["workgroups"]; if(isset($_SESSION["dirs"]))$dirs=$_SESSION["dirs"]; if(isset($_SESSION["doc_admin"]))$doc_admin=true; if(isset($_GET["action"]))$action=$_GET["action"]; if(isset($_SESSION["user_id"]))$user_id=$_SESSION["user_id"]; if(isset($_POST["login"]) && isset($_POST["password"])) { $login=$_POST["login"]; $pass=$_POST["password"]; $result = mysql_query(sprintf("SELECT * FROM server.user WHERE login=\"%s\" AND password=\"%s\"",$login,$pass)) or die ("Invalid query"); if(mysql_num_rows($result)==1) { $row=mysql_fetch_array($result); $login=$row["login"]; $password=$row["password"]; $user_id=$row["ID"]; $_SESSION['user_id']; $_SESSION['count_files']; mysql_free_result($result); if($login=="admin") { $_SESSION['admin_mode']; $admin_mode=true; $_SESSION['reader_mode']; $reader_mode=true; $_SESSION['user_mode']; $user_mode=true; $_SESSION['workgroup_operator']; $workgroup_operator=true; $_SESSION['groups']; $groups="1"; $_SESSION['workgroups']; $workgroups="1"; $_SESSION['doc_admin']; $doc_admin=true; } $result=mysql_query("SELECT gr_id FROM server.user_gr WHERE user_id='$user_id'"); if(mysql_num_rows($result)) { $user_mode=true; $_SESSION['user_mode']; $groups=" t1.gr_id = '"; $row1 = mysql_fetch_array($result); $groups.=$row1["gr_id"]; while( $row1 = mysql_fetch_array($result) ) { $groups.="' OR t1.gr_id='".$row1["gr_id"]; } $groups.="' "; $_SESSION['groups']; mysql_free_result($result); $result=mysql_query("SELECT t1.ID FROM server.user_gr as t1, server.gr as t2 WHERE ($groups) AND can_write='1' AND t1.gr_id=t2.ID"); if(mysql_num_rows($result)) { $doc_admin=true; $_SESSION['doc_admin']; } mysql_free_result($result); $result = mysql_query("SELECT DISTINCT t2.name FROM server.root as t2, server.gr_root as t1 WHERE t2.ID = t1.root_id AND ($groups)"); while($row=mysql_fetch_array($result)) { array_push($dirs,$row["name"]); } mysql_free_result($result); $_SESSION['dirs']; } $result=mysql_query("SELECT workgroup_id,can_write,opr FROM server.operator_workgroup WHERE user_id='$user_id' "); if(mysql_num_rows($result)) { $reader_mode=true; $_SESSION['reader_mode']; $workgroups=" t1.workgroup_id = '"; $row1 = mysql_fetch_array($result); if($row1["can_write"]==1){$workgroup_admin=true;$_SESSION['workgroup_admin'];} if($row1["opr"]==1){$workgroup_operator=true;$_SESSION['workgroup_operator'];} $workgroups.=$row1["workgroup_id"]."'"; while( $row1 = mysql_fetch_array($result) ) { $workgroups.=" OR t1.workgroup_id='".$row1["workgroup_id"]."'" ; if($row1["can_write"]==1){$workgroup_admin=true;$_SESSION['workgroup_admin'];} if($row1["opr"]==1){$workgroup_operator=true;$_SESSION['workgroup_operator'];} } $_SESSION['workgroups']; } mysql_free_result($result); $registered=true; $_SESSION['registered']; } } ?> WEB сервер УС БоГЭС
"; if(isset($registered)) echo "Закончить работу"; ?>