Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include $modx->getOption('SW_configPath');
- $pdo = new PDO($database_dsn, $database_user, $database_password); //Verbindung mit dem MySQL Server
- if (isset($_POST['SW_username'])) {
- $SW_username = $_POST['SW_username'];
- $SW_password = $_POST['SW_password'];
- $statement = $pdo->prepare('SELECT * FROM SW_users WHERE username = :username');
- $result = $statement->execute(array('username' => $SW_username));
- $user = $statement->fetch();
- if ($user !== false AND password_verify($SW_password, $user['password'])) {
- $SW_loginToken = password_hash(uniqid(), PASSWORD_DEFAULT);
- $SW_loginTimestamp = time();
- $_SESSION['SW_username'] = $SW_username;
- $_SESSION['SW_loginToken'] = $SW_loginToken;
- $_SESSION['SW_loginTimestamp'] = $SW_loginTimestamp;
- $statement = $pdo->prepare('UPDATE SW_users SET loginToken = :loginToken, loginTimestamp = :loginTimestamp WHERE username = :username');
- $statement->execute(array('loginToken' => $SW_loginToken, 'loginTimestamp' => $SW_loginTimestamp, 'username' => $SW_username));
- } else {
- echo 'Login fehlgeschlagen';
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement