Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- function safestrip($string){
- $string = strip_tags($string);
- return $string;
- }
- //Ændret her så den tjekker om $_POST["registeruser"] og $_POST["registerpassword"] ligger i variablen/at formen er submitted.
- if (isset($_POST["registeruser"]) && isset($_POST["registerpassword"])) {
- $registeruser = $_POST["registeruser"];
- $registerpassword = $_POST["registerpassword"];
- }
- function registeruser($registeruser, $registerpassword) {
- $registeruser = safestrip($registeruser);
- $registerpassword = safestrip($registerpassword);
- $confirmregisterpassword = safestrip($confirmregisterpassword);
- if ($registeruser =="") {
- return "Du skal indtaste det ønskede brugernavn";
- } elseif ($registerpassword ==""){
- return "Du skal indtaste et kodeord";
- } elseif ($confirmregisterpassword =="") {
- return "Du skal bekræfte dit kodeord";
- }
- if (strlen($registeruser) <= 3) {
- return "Dit brugernavn skal være over 3 bogstaver";
- } elseif ($password != $confirmregisterpassword) {
- return "Koderne passer ikke med hinanden";
- }
- $registerpassword = md5($registerpassword);
- $stmt = $db->prepare("INSERT INTO users (username, password) VALUES (:username, :password)");
- $stmt->bindParam(':username', $registeruser);
- $stmt->bindParam(':password', $registerpassword);
- $res = $stmt->execute();
- if ($res) {
- return true;
- } else {
- return "Der opstod en uventet fejl";
- }
- }
- //DET SAMME SKAL GØRES HER
- $loginuser = $_POST["loginuser"];
- $loginpassword = $_POST["loginpassword"];
- function login($loginuser, $loginpassword) {
- global $db;
- $loginuser = safestrip($loginuser);
- $loginpassword = safestrip($loginpassword);
- if ($loginuser =="") {
- return "Du skal indtaste et brugernavn";
- } elseif ($loginpassword =="") {
- return "Du skal indtase et kodeord";
- }
- // Convert password to md5
- $loginpassword = md5($loginpassword);
- // Check if the user id and password combination exist in database
- $stmt = $db->prepare("SELECT * FROM users WHERE username = :loginusername AND password = :loginpassword");
- $stmt->bindParam(':loginusername', $loginusername);
- $stmt->bindParam(':loginpassword', $loginpassword);
- $res = $stmt->execute();
- $rows = $stmt->rowCount();
- var_dump($rows);
- if ($rows) {
- $_SESSION['authorized'] = true;
- header('Location: adminpage.php');
- exit;
- } else {
- return "Forkert brugernavn eller kodeord";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement