Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- if (isset($_POST['login'])) {
- $post_username = mysqli_real_escape_string($db, trim($_POST['username']));
- $post_password = mysqli_real_escape_string($db, trim($_POST['password']));
- $captcha = isset($_POST['g-recaptcha-response']) ? $_POST['g-recaptcha-response']:'';
- $secret_key = ''; //masukkan secret key-nya berdasarkan secret key masig-masing saat create api key nya
- $error = 'Gagal kirim form: periksa nama, komentar dan captcha nya';
- if (empty($post_username) || empty($post_password)) {
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Mohon mengisi semua input.";
- } else if (!$captcha) {
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Anda bukan manusia.";
- } else if ($captcha != '' && $post_username != '' && $post_password != '') {
- $url = 'https://www.google.com/recaptcha/api/siteverify?secret=' . urlencode($secret_key) . '&response=' . $captcha;
- $recaptcha = file_get_contents($url);
- $recaptcha = json_decode($recaptcha, true);
- if (!$recaptcha['success']) {
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Anda bukan manusia.";
- } else {
- $check_user = mysqli_query($db, "SELECT * FROM users WHERE username = '$post_username'");
- if (mysqli_num_rows($check_user) == 0) {
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Username atau password salah.";
- } else {
- $data_user = mysqli_fetch_assoc($check_user);
- if(!password_verify($post_password, $data_user['password'])) { //
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Username atau password salah.";
- } else if ($data_user['status'] == "Suspended") {
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Akun nonaktif.";
- } else {
- $_SESSION['user'] = $data_user;
- header("Location: ".$cfg_baseurl);
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement