replaced two DB queries with one that is indexed.

2 files changed, 8 insertions, 14 deletions

diff --git a/include/db.php b/include/db.php
index 3be9494..6568e75 100644
--- a/include/db.php
+++ b/include/db.php
@@ -141,16 +141,6 @@ function DB_get_version()
   return $version[0];
 }
 
-function DB_get_passwd_by_name($name)
-{
-  $r = DB_query_array("SELECT password FROM User WHERE fullname=".DB_quote_smart($name)."");
-
-  if($r)
-    return $r[0];
-  else
-    return "";
-}
-
 function DB_get_passwd_by_userid($id)
 {
   $r = DB_query_array("SELECT password FROM User WHERE id=".DB_quote_smart($id)."");
diff --git a/include/user.php b/include/user.php
index 6169495..546ea8d 100644
--- a/include/user.php
+++ b/include/user.php
@@ -25,11 +25,15 @@ if(!isset($HOST))
   exit;
 
 /* test id and password, should really be done in one step */
-if(isset($_SESSION['name']))
+if(isset($_SESSION['id']))
   {
-    $name = $_SESSION['name'];
-    $email     = DB_get_email('name',$name);
-    $password  = DB_get_passwd_by_name($name);
+    $myid = $_SESSION['id'];
+    $r = DB_query_array("SELECT email,password FROM User WHERE id=".DB_quote_smart($myid)."");
+    if($r)
+      {
+	$email     = $r[0];
+	$password  = $r[1];
+      };
   };
 
 global  $ADMIN_NAME;