Improving image upload

Only login user can accesss the upload.php file.

upload.php

@@ -1,5 +1,11 @@
 <?php
 
+require 'system/includes/dispatch.php';
+require 'system/includes/session.php';
+
+// Load the configuration file
+config('source', 'config/config.ini');
+
 $whitelist = array('jpg', 'jpeg', 'png', 'gif');
 $name      = null;
 $dir       = 'content/images/';
@@ -7,6 +13,8 @@ $error     = null;
 $timestamp = date('YmdHis');
 $path      = null;
 
+if (login()) {
+ 
     if (is_dir($dir)) {
     } else {
         mkdir($dir, 0755, true);
@@ -30,8 +38,7 @@ if (isset($_FILES)) {
                         move_uploaded_file($tmp_name, $dir . $timestamp . '-' . $name);
                     }
                 }
-        }
-        else {
+            } else {
                 $error = "File is not an image.";
             }
         }
@@ -42,4 +49,10 @@ echo json_encode(array(
         'name'  => $name,
         'error' => $error,
     ));
+	
     die();
+
+} else {
+    $login = site_url() . 'login';
+    header("location: $login");
+}