Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if ($_SERVER['REQUEST_METHOD'] != 'POST') {
- header("Location: index.php");
- exit();
- }
- require_once '../loader.php';
- $errorArray = array();
- if (validate_inputs('studentnr') != 1) {
- $errorArray['studentnr'] = 'U bent vergeten een studentnummer in te vullen';
- }
- if (validate_inputs('password') != 1) {
- $errorArray['password'] = 'U bent vergeten een password in te vullen';
- }
- if (count($errorArray) > 0) {
- $_SESSION['login_error'] = $errorArray;
- header('Location: ../index.php');
- }
- $username = $_POST['studentnr'];
- $password = $_POST['password'];
- $md5password = md5($password);
- $user_hash = Database::getInstance()->select(
- array(
- "users" => array(
- "user_hash"
- )
- ), array(
- array("user_username", "=", $username)
- )
- )->fetchAll(PDO::FETCH_ASSOC);
- Bcrypt::getInstance()->setRounds();
- if (Bcrypt::getInstance()->verify($md5password, $user_hash[0]['user_hash']) == 1) {
- $user_data = Database::getInstance()->select(
- array(
- "users" =>
- array(
- "user_id",
- "user_username",
- "user_firstname",
- "user_lastname",
- "user_email",
- "user_role"
- )
- ), array(
- array("user_username", "=", $username)
- )
- )->fetchAll(PDO::FETCH_ASSOC);
- $_SESSION['user'] = $user_data[0];
- header('Location: ../dashboard.php');
- exit();
- } else {
- }
Add Comment
Please, Sign In to add comment
