<?phprequire 'Database.class.php';$db = new Database();class Login {

1. <?php
2.  
3. require 'Database.class.php';
4.  
5. $db = new Database();
6.  
7. class Login {
8.  
9. //array for error's messages
10. private $errors = array();
11.  
12. private $username;
13.  
14. private $password;
15.  
16. private $sql;
17.  
18. public function __construct($username, $password) {
19.  
20. $this->username = $username;
21. $this->password = $password;
22. $this->sql = "SELECT id, username, password FROM users WHERE username = :username";
23.  
24. $this->userLogin();
25.  
26. }
27.  
28. private function userLogin() {
29.  
30. $stmtX = $db->executeQuerry($this->username, $this->sql);
31.  
32. $result = $stmtX->fetch(PDO::FETCH_ASSOC);
33.  
34. if($result !== FALSE) {
35. //compare the passwords
36. $validPassword = password_verify($this->password, $result['password']);
37.  
38. if ($validPassword == TRUE) {
39. $_SESSION['user_id'] = $result['id'];
40. $_SESSION['user'] = $result['username'];
41. $_SESSION['now_logged'] = TRUE;
42. $_SESSION['logged_in'] = time();
43.  
44. header('Location: index.php');
45.  
46.  
47. }
48. else {
49. //passwords don't match
50. $stmt = NULL;
51. $db = NULL;
52. $result = NULL;
53.  
54. array_push($this->errors, "Invalid password!");
55. }
56. }
57. else {
58. $stmt = NULL;
59. $db = NULL;
60. $result = NULL;
61.  
62. array_push($this->errors, "Invalid username!");
63. }
64. }
65.  
66.  
67. }