API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 27th, 2017
94
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.10 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2.  
  3. session_start();
  4.  
  5. $connect = mysqli_connect("localhost","root","","dbvasco");
  6.  
  7. if(!empty($_POST["user"]) && !empty($_POST["pass"])) {
  8.  
  9. // $user = $_POST["user"];
  10. //$pass = $_POST["pass"];
  11.  
  12. $user = htmlspecialchars(mysqli_real_escape_string($connect, $user));
  13. $pass = htmlspecialchars(mysqli_real_escape_string($connect, $pass));
  14.  
  15. //consulta para obtener la passwd
  16. $sql2 = "SELECT * FROM users_profesores WHERE User = '$user' OR EMail = '$user'";
  17.  
  18. $resulta=mysqli_query($connect, $sql2);
  19.  
  20. if(mysqli_num_rows($resulta)==1) {
  21.  
  22. $datas = mysqli_fetch_assoc($resulta);
  23.  
  24. if( password_verify($pass, $datas['Passwd'] ) ) {
  25. //logueamos ussueriO
  26. $sql = "SELECT User FROM users_profesores WHERE (User='$user' OR EMail='$user') AND Passwd='$pass'";
  27. //$sql = "SELECT User FROM users_profesores WHERE User='$user'";
  28. $result = mysqli_query($connect, $sql);
  29.  
  30. $num_row = mysqli_num_rows($result);
  31.  
  32. if ($num_row == "1") {
  33. $data = mysqli_fetch_assoc($result);
  34. $_SESSION["user"] = $data["User"];
  35. echo "1";
  36.  
  37. } else {
  38. echo "error";
  39. }
  40. } //fin pass_verify
  41.  
  42. }//fin rows
  43.  
  44. }//fin if isset
  45. else {
  46. echo "error";
  47. }
  48.  
  49.  
  50. ?>
  51.  
  52. // Si existe usuario y contraseña
  53. if ( !empty( $_POST['user'] ) && !empty( $_POST['pass'] ) ) {
  54. // Credenciales
  55. $user = htmlspecialchars( mysqli_real_escape_string( $connect , $_POST['user'] ) );
  56. $pass = htmlspecialchars( mysqli_real_escape_string( $connect , $_POST['pass'] ) );
  57.  
  58. // Datos del usuario
  59. $sql2 = "SELECT * FROM users_profesores WHERE User='$user' OR Email='$user'" ;
  60.  
  61. // Ejecuta el query
  62. $resulta = mysqli_query( $connect , $sql2 );
  63.  
  64. // Si se obtiene un unico registro
  65. if ( mysql_num_rows( $resulta ) == 1 ) {
  66. // Datos de la consulta
  67. $datas = mysql_fetch_assoc( $resulta );
  68.  
  69. // Si coinciden los password
  70. if ( password_verify( $pass , $datas['Passwd'] ) ) {
  71. // Agrega los datos a la sesión
  72. $_SESSION['USER'] = $datas['User'] ;
  73. # Otros datos de la sesión ...
  74. } else {
  75. # Excepción ...
  76. }
  77. } else {
  78. # Excepción ...
  79. }
  80. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!