Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- function login_user($username, $password) {
- global $connection;
- $username = trim($username);
- $password = trim($password);
- $username = mysqli_real_escape_string($connection,$username);
- $password = mysqli_real_escape_string($connection,$password);
- $query = "SELECT * FROM users WHERE username = '{$username}' ";
- $select_users_query = mysqli_query($connection, $query);
- if (!$select_users_query) {
- die("QUERY FAILED" . mysqli_error($connection));
- }
- while($row = mysqli_fetch_array($select_users_query)){
- $db_user_id = $row['user_id'];
- $db_username = $row['username'];
- $db_user_password = $row['user_password'];
- $db_user_firstname = $row['user_firstname'];
- $db_user_lastname = $row['user_lastname'];
- $db_user_role = $row['user_role'];
- }
- if (password_verify($password, $db_user_password)) {
- $_SESSION['username'] = $db_username;
- $_SESSION['user_firstname'] = $db_user_firstname;
- $_SESSION['user_lastname'] = $db_user_lastname;
- $_SESSION['user_role'] = $db_user_role;
- redirect("/cms/admin/index.php");
- } else {
- redirect("/cms/index.php");
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement