kanker

1. <?php
2. // Start the session
3. session_start();
4.  
5. $servername = "localhost";
6. $serverUsername = "root";
7. $serverPassword = "";
8. $dbname = "rocthat";
9. $tableNameUser = "user";
10.  
11. //create connection
12. $conn = new mysqli($servername, $serverUsername, $serverPassword, $dbname);
13.  
14. if ($conn->connect_error)
15. {
16. die("connection failed". $conn->connect_error);
17. }
18. else
19. {
20. if(isset($_POST["submit"])){
21. $errors = array();
22.  
23. $_SESSION["username"] = $_POST["username"];
24. $_SESSION["password"] = $_POST["password"];
25.  
26. foreach($_POST as $key => $value)
27. {
28. if($value == "")
29. {
30. $errors[] = "vul je " . $key . "in.";
31. }
32. }
33. $queryPassword = mysqli_query($conn, "SELECT 'password' FROM user WHERE username='".$_SESSION["username"]."'");
34. $queryUsernameAndPassword = mysqli_query($conn, "SELECT * FROM user WHERE username='".$_SESSION["username"]."' AND password='".password_verify($_SESSION["password"], $queryPassword)."'");
35. if(mysqli_num_rows($queryUsernameAndPassword) <= 0)
36. {
37. $errors[] = "geen geldig wachtwoord of username";
38. }
39.  
40. if(count($errors) > 0)
41. {
42. echo "<ul>";
43. for($x = 0; $x < count($errors); $x++)
44. {
45. echo "<li>";
46. echo $errors[$x];
47. echo "<li>";
48. }
49. echo "</ul>";
50. }
51. else
52. {
53. echo "logged in";
54. }
55.  
56. }
57. }
58. ?>
59. <html>
60. <head>
61. <link rel="stylesheet" type="text/css" href="../stylesheet.css">
62. </head>
63. <body>
64. <div class="main">
65. <div class="Form">
66. <form method="POST" action="login.php">
67. Username: <input type="text" name="username"/><br />
68. Password: <input type="password" name="password"/><br />
69. <input type="submit" name="submit" value="login"/>
70. </form>
71. </div>
72. </div>
73. </body>
74. </html>