Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- // Sets nick and pass variables with input from POST request
- $nick = htmlspecialchars($_POST["username"]);
- $pass = $_POST["pass"];
- // Prepares and executes query to retrieve user information, stores return in $userDataReturnArr
- $userDataQuery = $dbh->prepare("SELECT NICK,PASS,UID FROM :tblName WHERE NICK = :nick");
- $userDataQuery->bindParam(":tblName", $userDbTblName, PDO::PARAM_STR);
- $userDataQuery->bindParam(":nick", $nick, PDO::PARAM_STR);
- $userDataQuery->execute();
- $userDataReturnArr = $userDataQuery->fetch();
- // This function always returns false, from the look of it
- if (password_verify($pass, $userDataReturnArr[1])) {
- // Returned pass and nick matched input pass and nick
- // Login user and send to index.php
- session_start();
- // Sets session variables
- $_SESSION["user"] = $nick;
- $_SESSION["uid"] = $userDataReturnArr[2];
- header("Location: index.php");
- } else {
- echo "\$userDbTblName: ".$userDbTblName."<br>";
- echo "\$nick: ".$nick."<br>";
- echo "\$pass: ".$pass."<br>";
- echo "\$userDataReturnArr[0]: ".$userDataReturnArr[0]."<br>";
- echo "\$userDataReturnArr: ".var_dump($userDataReturnArr)."<br>";
- echo "PHP Version: ".phpversion();
- // Returned pass and nick did not match input pass and nick
- header("Location: loginFailed.php?error=nomatch");
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
