var login_targetdiv = 'loginform';
var login_filesource = "get_auth.php";


function setCookie(c_name,value,expiredays)
{
	var exdate=new Date();
	exdate.setDate(exdate.getDate()+expiredays);
	document.cookie=c_name+ "=" +escape(value)+((expiredays==null) ? "" : ";expires="+exdate.toGMTString());
}


function login_form() {
  
  countivw_posting();

  username = document.getElementById("username").value;
  var login_password = document.getElementById("password").value;
  
  if (username == "" || login_password == "") {
	alert("Felder d"+unescape("%FC")+"rfen nicht leer sein!");
  }
  else {

	show_img("loading_login");

	  if(XMLHttpRequestObject) {

	  login_datasource = filepath + login_filesource + "?u="+escape(username)+"&p="+escape(login_password);

	  XMLHttpRequestObject.open("GET", login_datasource);

	  XMLHttpRequestObject.onreadystatechange = function()
	  {
    
	     if(XMLHttpRequestObject.readyState == 4) {
	        hide_img("loading_login");
	     
	        if(XMLHttpRequestObject.status == 200) {
	
		        var responsetext = XMLHttpRequestObject.responseText;
			tmp = responsetext.split('&');
			tmp_login = tmp[0].split('=');
			
			if (tmp_login[1] == 1) {
				tmp_id = tmp[1].split('=');
				tmp_post = tmp[2].split('=');
				if (tmp_post[1] == "BLOCK") {
					alert("Du darfst nicht posten! Bitte wende dich per Kontaktformular an LAOLA1.");
				} else {
					if (tmp_post[1] == "PRE") {
						alert("Achtung! Dein Posting geht erst online, wenn wir es gepr"+unescape("%FC")+"ft haben.");
					}
					user_id = tmp_id[1];
					setCookie("user_comments", user_id+"!"+username, 1);
					document.getElementById(login_targetdiv).innerHTML = html_loginsuccess_1 + "<b>" + username + "</b>" + html_loginsuccess_2;
					document.getElementById('commentform').innerHTML = html_commentfields;
					document.getElementById('user_id').value = user_id;
					document.getElementById('commentform').style.display = "block";
					//document.getElementById('text').focus();
					//document.getElementById("postbutton1").style.visibility = "visible";
				}
			} else {
				document.getElementById(login_targetdiv).innerHTML = html_loginfields + "<br />" + html_loginerror;
			}

		} else {
			alert("Fehler beim Einloggen, bitte wiederhole den Vorgang!");
		}
	     }

	
	  }
	   XMLHttpRequestObject.send(null);

	  }
  }
}