<?phpinclude '../User.class.php';session_start();include '../bdd.php';

1. <?php
2.  
3. include '../User.class.php';
4. session_start();
5. include '../bdd.php';
6. if(isset($_POST['submit'])){
7. $username = htmlspecialchars(trim($_POST['username']));
8. $password = htmlspecialchars(trim($_POST['password']));
9. if(empty($username)){
10. $_SESSION['error'] = "Veuillez saisir votre nom d'utilisateur !";
11. header('Location:../member.php');
12. }else if(empty($password)){
13. $_SESSION['error'] = "Veuillez saisir votre mot de passe !";
14. header('Location:../member.php');
15. }else{
16. $password = md5($password);
17. $req = $bdd->prepare('SELECT email FROM users WHERE username = :username AND password = :password');
18. $req->execute(array(
19. 'username' => $username,
20. 'password' => $password
21. ));
22. $resultat = $req->fetch();
23. if (!$resultat){
24. $_SESSION['error'] = "Mauvais nom d'utilisateur ou mot de passe !";
25. header('Location:../member.php');
26. }else{
27. $email = $resultat[0];
28. $user = new User($username, $email, $password);
29. $_SESSION['user'] = $user;
30. $_SESSION['action'] = "";
31. $_SESSION['error'] = "";
32. header('Location: ../member.php');
33. }
34. }
35. }else{
36. header('Location:../member.php');
37. }
38. ?>