Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- //Start sessie
- session_start();
- //Kijk of variables gegeven zijn
- if (!isset($_POST) || !array_key_exists("name", $_POST) || !array_key_exists("pass", $_POST)) {
- echo "Gebruikersnaam of wachtwoord niet correct verstuurd.";
- return;
- }
- //Verkrijg variables
- $name = strtolower($_POST["name"]);
- $pass = $_POST["pass"];
- //Encrypt & salt het wachtwoord
- $encryptedpass = sha1($pass . "9NHQgM3e5GzbBBMj975N" . $name);
- //Mysql
- $databasename = "gamereviews";
- $dbusername = "jonathan";
- $dbpassword = "priverino";
- // Create connection
- $conn = mysqli_connect("localhost", $dbusername, $dbpassword, $databasename);
- // Check connection
- if (!$conn) {
- die("Connection failed: " . mysqli_connect_error());
- }
- @mysqli_select_db($conn, "gamereviews") or die("Unable to select database");
- $stmt = $conn->prepare("SELECT * FROM users WHERE username = ?");
- $stmt->bind_param('s', $name);
- $stmt->execute();
- $result = $stmt->get_result();
- $dbpass = is_bool($result) ? "" : mysqli_fetch_assoc($result)["password"];
- if (is_bool($result)) {
- echo "Warning: Result was boolean.<br>";
- }
- if ($encryptedpass == $dbpass) {
- $_SESSION["login"] = $name;
- echo "true";
- } elseif (empty($dbpass)) {
- echo "Je gebruikersnaam is incorrect.";
- } else {
- echo "Je wachtwoord is incorrect.";
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
