Ravenna/gist:1474173

## gistfile1.txt
session_start();
if(get_cookie('bob_session')==''){
	$this->session->set_flashdata("redirect",uri_string());
	redirect("/login");
}
else{
	$login = explode("|",get_cookie("bob_session"));
	if(count($login)>1){
		$sql = "Select id, email, password, admin, smt From employee Where email='".SQLIn(decrypt($login[0]))."' And password='".SQLIn($login[1])."'";
		$user = SQLObj($sql);
		$_SESSION["user"]=$user[0];
		$this->session->set_userdata("smt", $user[0]["smt"]);
		$this->session->set_userdata("admin", $user[0]["admin"]);
		set_cookie('bob_session', encrypt(strtolower($user[0]['email']))."|".$user[0]["password"]."|".encrypt($user[0]["id"]).'|'.encrypt($user[0]["admin"]).'|'.encrypt($user[0]["smt"]), 5000000, $_SERVER['SERVER_NAME']);
		if(count($user)==0){
			redirect("/login/logout");
		}
		if($this->uri->segment(1)=="admin"){
			if($user[0]["admin"]=="0"){
				redirect("/");
			}
		}
	}
	else{
		redirect("/login/logout/");
	}
}
	session_start();
	if(get_cookie('bob_session')==''){
	$this->session->set_flashdata("redirect",uri_string());
	redirect("/login");
	}
	else{
	$login = explode("\|",get_cookie("bob_session"));
	if(count($login)>1){
	$sql = "Select id, email, password, admin, smt From employee Where email='".SQLIn(decrypt($login[0]))."' And password='".SQLIn($login[1])."'";
	$user = SQLObj($sql);
	$_SESSION["user"]=$user[0];
	$this->session->set_userdata("smt", $user[0]["smt"]);
	$this->session->set_userdata("admin", $user[0]["admin"]);
	set_cookie('bob_session', encrypt(strtolower($user[0]['email']))."\|".$user[0]["password"]."\|".encrypt($user[0]["id"]).'\|'.encrypt($user[0]["admin"]).'\|'.encrypt($user[0]["smt"]), 5000000, $_SERVER['SERVER_NAME']);
	if(count($user)==0){
	redirect("/login/logout");
	}
	if($this->uri->segment(1)=="admin"){
	if($user[0]["admin"]=="0"){
	redirect("/");
	}
	}
	}
	else{
	redirect("/login/logout/");
	}
	}