Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- //include ircmaxell's password_compat library
- require 'lib/password.php';
- //include MySQL conn
- require 'connect.php';
- $errors = array();
- if (isset($_POST['login'])) {
- $username = !empty($_POST['username']) ? trim($_POST['username']) : null;
- $password = !empty($_POST['password']) ? trim($_POST['password']) : null;
- //retrive the user information for the username
- $sql = "SELECT id, username, password FROM users WHERE username = :username";
- $stmt = $db->prepare($sql);
- $stmt->bindValue(':username', $username);
- $stmt->execute();
- $result = $stmt->fetch(PDO::FETCH_ASSOC);
- if($result !== FALSE) {
- //compare the passwords
- $validPassword = password_verify($password, $result['password']);
- if ($validPassword == TRUE) {
- $_SESSION['user_id'] = $result['id'];
- $_SESSION['user'] = $result['username'];
- $_SESSION['now_logged'] = TRUE;
- $_SESSION['logged_in'] = time();
- header('Location: index.php');
- }
- else {
- //passwords don't match
- $stmt = NULL;
- $db = NULL;
- $result = NULL;
- array_push($errors, "Invalid password!");
- }
- }
- else {
- $stmt = NULL;
- $db = NULL;
- $result = NULL;
- array_push($errors, "Invalid username!");
- }
- }
- ?>
- <!DOCTYPE html>
- <html>
- <head>
- <meta charset="utf-8" />
- <meta http-equiv="X-UA-Compatible" content="IE=edge">
- <meta name="viewport" content="width=device-width, initial-scale=1.0">
- <title>Log in</title>
- <link rel="stylesheet" type="text/css" href="css/login.css" />
- <link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.5.0/css/all.css"
- integrity="sha384-B4dIYHKNBt8Bc12p+WXckhzcICo0wtJAoU8YZTY5qE0Id1GSseTk6S+L3BlXeVIU"
- crossorigin="anonymous">
- <script src="javascripts/main.js"></script>
- </head>
- <body>
- <div class="wrapper">
- <div class="header">
- <div class="logo">
- </div>
- <div class="menu">
- <?php
- $page = 'index'; include('includes/menu.php');
- ?>
- </div>
- <div class="banner">
- </div>
- </div>
- <div class="content">
- <form method="POST" action="loginForm.php" class="login">
- <?php
- //errors output
- include('errors.php');
- ?>
- <div class="contentBox">
- <div class="inputBox">
- <i class="fas fa-user-tie"></i>
- <input type="text" name="username" placeholder="Username" required>
- </div>
- <div class="inputBox">
- <i class="fas fa-key"></i>
- <input type="password" name="password" placeholder="Password" required>
- </div>
- <div class="inputBox">
- <input type="submit" name="login" value="Login">
- </div>
- <p>If you are not registered yet, register <a href="registerForm.php">here.</a></p>
- </div>
- </form>
- </div>
- </div>
- <div class="footer">
- <?php
- include('includes/footer.php');
- ?>
- </div>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement