0) {
//if they are in the database register the user id
$valid_user = $email;
while ($row = mysql_fetch_array($result)) {
$userid = $row['uid'];
$roleid = $row['roleid'];
}
session_register("valid_user");
session_register("userid");
session_register("roleid");
}
else {
echo "You have entered either an unknown user or an incorrect password.
\n";
}
}
show_header($roleid);
if (session_is_registered('valid_user')) {
echo "You are logged in as: " . $valid_user . "
\n";
connect_to_db("localhost", "root", "dasani", "jpcutler_net");
if ($action == 'delete') {
$userid = addslashes($userid);
$query = "select filename from advhwlookup where hwid=$hw and uid=$userid";
$result = mysql_query($query);
$row = mysql_fetch_array($result);
$fname=$row['filename'];
$delfile="/home/jpcutler/jpcutler-www/advj2ee/files/" . $fname;
unlink($delfile);
$query = "delete from advhwlookup where hwid=$hw and uid=$userid";
$result = mysql_query($query);
echo "Homework was deleted
\n";
}
display_user_homeworks($valid_user);
}
else {
// Display the login form
?>