Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <form method="post">
- Username: <input type="text" name="username"><br>
- Password: <input type="password" name="password">
- <input type="submit" name="submited" value="přihlásit">
- </form>
- <?php
- if(isset($_POST['submited']))
- {
- try{
- $query = $dbh->prepare("SELECT * FROM users WHERE login = :username LIMIT 1");
- $query->bindParam(':username', $_POST['username'], PDO::PARAM_STR);
- $query->execute();
- $result = $query->fetchAll();
- if(!empty($result)){
- foreach($result as $row){
- if(sha1($_POST['password']) == $row['pwdhash'])
- {
- $_SESSION["logged"] = 1;
- $_SESSION["uid"] = $row['uid'];
- $_SESSION["login"] = $row['login'];
- $_SESSION["urole"] = $row['roleid'];
- echo 'Login succesfull as '.$_SESSION["login"].'!';
- }
- else
- {
- echo 'Login failed.'; /*špatné heslo*/
- }
- }
- }
- else echo 'Login failed.'; /*uživatel neexistuje*/
- }
- catch(PDOException $e)
- {
- echo $e->getMessage();
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
