Advertisement
Guest User

Untitled

a guest
Apr 13th, 2017
81
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.42 KB | None | 0 0
  1. <?php
  2. #Incluir conexao SQL
  3. include_once "connection.php";
  4. #Pegar username e password e se permanecer logado
  5. $username = @$_POST['username'];
  6. $password = @$_POST['password'];
  7. $staylogged = @$_POST['staylogged'];
  8. #Criar array result
  9. $result = array();
  10.  
  11. if($username && $password) {
  12. #Pegar hash da password na base users
  13. $conn = $db -> getConnection();
  14. $st = $conn -> prepare("SELECT password FROM users where username=?");
  15. $st -> bind_param("s", $username);
  16. $st -> execute();
  17. $st -> bind_result($db_password_hash);
  18. $st -> fetch();
  19. $st -> close();
  20. $verified = true;
  21. if(!$db_password_hash) {
  22. #Se nao tiver na hash users ele vai pegar na temp_users
  23. $st = $conn -> prepare("SELECT password, date FROM temp_users where username=?");
  24. $st -> bind_param("s", $username);
  25. $st -> execute();
  26. $st -> bind_result($db_password_hash, $expJoinDate);
  27. $st -> fetch();
  28. if(!$db_password_hash) {
  29. $result["error"] = "invalid";
  30. die(json_encode($result));
  31. }
  32. $verified = false;
  33. }
  34.  
  35. #Checar Senha
  36. $pw_hash = hash('sha512', $password);
  37. if(!password_verify($pw_hash, $db_password_hash)) {
  38. $result['error'] = "invalid";
  39. die(json_encode($result));
  40. }
  41.  
  42. if(!$verified) {
  43. $result['verified'] = $verified;
  44. $result['daysLeft'] = ((strtotime($expJoinDate) + ((3600 * 24) * 30)) - time()) / 3600;
  45. }
  46.  
  47. if($staylogged) {
  48. $cookieId = sha1($password) . time();
  49. setcookie("cookieId", $cookieId, time()+(30 * 24 * 60 * 60), '/');
  50. if($verified) {
  51. $st = $conn -> prepare("UPDATE users set cookieId=? where username=?");
  52. $st -> bind_param("ss", $cookieId, $username);
  53. $st -> execute();
  54. $result["cookieId"] = $cookieId;
  55. $result['error'] = null;
  56. die(json_encode($result));
  57. } else {
  58. $st = $conn -> prepare("UPDATE temp_users set cookieId=? where username=?");
  59. $st -> bind_param("ss", $cookieId, $username);
  60. $st -> execute();
  61. $result["cookieId"] = $cookieId;
  62. $result['error'] = null;
  63. die(json_encode($result));
  64. }
  65. }
  66.  
  67. $result['error'] = null;
  68. die(json_encode($result));
  69.  
  70.  
  71.  
  72. } else {
  73. $result['error'] = "incomplete";
  74. die(json_encode($result));
  75. }
  76. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement