Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- require "config/database.php";
- ?>
- <head>
- <link rel="stylesheet" type="text/css" href="css/index.css">
- </head>
- <body>
- <div class="form">
- <form method="POST">
- <img src="images/header.png">
- <div>
- <input type="text" name="username" placeholder="Username">
- </div>
- <div>
- <input type="password" name="password" placeholder="Password">
- </div>
- <div>
- <input type="submit" name="submit" Value="Sign in">
- </div>
- </form>
- </div>
- </div>
- </body>
- <?php
- if (isset($_POST["submit"])){
- $username = $_POST["username"];
- $password = $_POST["password"];
- if (empty($username) || empty($password)){
- echo "Not all fields filled!";
- } else {
- $sql = "SELECT * FROM users WHERE username = :username AND password = :password";
- $stmt = $conn->prepare($sql);
- $stmt->bindValue(':username', $username);
- $stmt->bindValue(':password', $password);
- $stmt->execute();
- $row = $stmt->fetch(PDO::FETCH_ASSOC);
- if (($row["username"] != "") && ($row != false)) {
- session_start();
- $_SESSION["username"] = $username;
- $_SESSION["password"] = $row["password"];
- $_SESSION["firstname"] = $row["firstname"];
- $_SESSION["lastname"] = $row["lastname"];
- $_SESSION["role"] = $row["role"];
- switch( $row["role"] ){
- case 'Admin':
- header("location: views/admin.php");
- break;
- case 'Chef':
- header("location: views/chef.php");
- break;
- case 'Waiter':
- header("location: views/waiter.php");
- break;
- case 'Bartender':
- header("location: views/bartender.php");
- break;
- default:
- echo "User does not exist!";
- }
- } else {
- echo "Wrong username or password!";
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement