Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- ob_start();
- session_start();
- require ('config.php');
- $formErrors = array();
- $captcha = false;
- if (isset($_POST['Submit'])) {
- $response = $_POST["g-recaptcha-response"];
- $url = 'https://www.google.com/recaptcha/api/siteverify';
- $data = array(
- 'secret' => '6LfVSDMUAAAAAJ1EBjptmateaepdIHUYhp0147BW',
- 'response' => $_POST["g-recaptcha-response"]
- );
- $options = array(
- 'http' => array (
- 'method' => 'POST',
- 'content' => http_build_query($data)
- )
- );
- $context = stream_context_create($options);
- $verify = file_get_contents($url, false, $context);
- $captcha_success=json_decode($verify);
- if ($captcha_success->success==false) {
- echo "<p>You are a bot! Go away!</p>";
- } else if ($captcha_success->success==true) {
- $captcha = true;
- }
- $username = isset($_POST['username']) ? $_POST['username'] : '';
- $password = isset($_POST['passwd']) ? $_POST['passwd'] : '';
- if(trim($username) == '') {
- $formErrors[] = 'No username';
- }
- if(trim($password) == '') {
- $formErrors[] = 'No password';
- }
- if(sizeof($formErrors) == 0 && $captcha) {
- try {
- $dbh = new PDO("mysql:host=$host;dbname=$dbnm",$user,$pass);
- //$dbh->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); // <== add this line
- $dbh->setAttribute( PDO::ATTR_EMULATE_PREPARES, false );
- $clean_username = filter_var($username, FILTER_SANITIZE_STRING);
- $clean_password = filter_var($password, FILTER_SANITIZE_STRING);
- $stmt = $dbh->prepare("SELECT id,naam,categorie, functie from users2 where login=? AND paswoord=? AND actief=?");
- $stmt->execute(array(strip_tags($clean_username),strip_tags(md5($clean_password)),'ja'));
- $row = $stmt->fetch(PDO::FETCH_ASSOC);
- $categorie = $row['categorie'];
- $naam = $row['naam'];
- $userid = $row['id'];
- $functie = $row['functie'];
- if ($categorie == 'Prospecteurs') {
- $_SESSION["username"] = $naam;
- $_SESSION["categorie"] = $categorie;
- header("Location: dashboard.php");
- exit();
- }
- if ($categorie == 'Vertegenwoordigers') {
- $_SESSION["user"] = $username;
- $_SESSION["username"] = $naam;
- $_SESSION["categorie"] = $categorie;
- $_SESSION["functie"] = $functie;
- header("Location: dashboard.php");
- exit();
- }
- if ($categorie == 'Management') {
- $formErrors[] = 'Management heeft geen toegang';
- }
- }
- catch(PDOException $e)
- {
- echo $e->getMessage();
- }
- }
- }
- ?>
- <!DOCTYPE html>
- <html lang="en">
- <head>
- <meta charset="utf-8">
- <meta http-equiv="X-UA-Compatible" content="IE=edge">
- <meta name="viewport" content="width=device-width, initial-scale=1.0" />
- <meta name="description" content="" />
- <meta name="author" content="" />
- <title><?php include ('version.tpl'); ?></title>
- <link rel="stylesheet" href="http://fonts.googleapis.com/css?family=Arimo:400,700,400italic">
- <link rel="stylesheet" href="assets/css/fonts/linecons/css/linecons.css">
- <link rel="stylesheet" href="assets/css/fonts/fontawesome/css/font-awesome.min.css">
- <link rel="stylesheet" href="assets/css/bootstrap.css">
- <link rel="stylesheet" href="assets/css/xenon-core.css">
- <link rel="stylesheet" href="assets/css/xenon-forms.css">
- <link rel="stylesheet" href="assets/css/xenon-components.css">
- <link rel="stylesheet" href="assets/css/xenon-skins.css">
- <link rel="stylesheet" href="assets/css/custom.css">
- <script src="assets/js/jquery-1.11.1.min.js"></script>
- <!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
- <!--[if lt IE 9]>
- <script src="https://oss.maxcdn.com/html5shiv/3.7.2/html5shiv.min.js"></script>
- <script src="https://oss.maxcdn.com/respond/1.4.2/respond.min.js"></script>
- <![endif]-->
- </head>
- <body class="page-body login-page login-light">
- <div class="login-container">
- <div class="row">
- <div class="col-sm-6">
- <!-- Errors container -->
- <div class="errors-container">
- <?php
- if(sizeof($formErrors) > 0) {
- for($formErrors as $error) {
- echo '
- <div class="alert alert-danger">' .
- $error
- . '</div>' . PHP_EOL;
- }
- }
- ?>
- </div>
- <!-- Add class "fade-in-effect" for login form effect -->
- <form method="post" class="login-form">
- <div class="login-header">
- <a href="dashboard.php" class="logo">
- <img src="assets/images/logo-klein.png" alt="" width="180" />
- </a>
- </div>
- <div class="form-group">
- <label class="control-label" for="username">Gebruikersnaam</label>
- <input type="text" class="form-control" name="username" id="username" autocomplete="off" />
- </div>
- <div class="form-group">
- <label class="control-label" for="passwd">Paswoord</label>
- <input type="password" class="form-control" name="passwd" id="passwd" autocomplete="off" />
- </div>
- <div class="form-group">
- <div class="captcha_wrapper">
- <div class="g-recaptcha" data-sitekey="6LfVSDMUAAAAALQdBMCX2SJpZ3Tt0RA9SLuMRNMj"></div>
- </div>
- </div>
- <div class="form-group">
- <button type="submit" name="Submit" class="btn btn-primary btn-block text-left">
- <i class="fa-lock"></i>
- Inloggen
- </button>
- </div>
- </form>
- </div>
- </div>
- </div>
- <!-- Bottom Scripts -->
- <script src="assets/js/bootstrap.min.js"></script>
- <script src="assets/js/TweenMax.min.js"></script>
- <script src="assets/js/resizeable.js"></script>
- <script src="assets/js/joinable.js"></script>
- <script src="assets/js/xenon-api.js"></script>
- <script src="assets/js/xenon-toggles.js"></script>
- <script src="assets/js/jquery-validate/jquery.validate.min.js"></script>
- <script src="assets/js/toastr/toastr.min.js"></script>
- <!-- JavaScripts initializations and stuff -->
- <script src="assets/js/xenon-custom.js"></script>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement