Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <script>
- function ajaxSubmit(){
- var formData = {
- 'username' : $('input[name=username]').val(),
- 'password' : $('input[name=password]').val(),
- 'submit' : true
- };
- $.ajax({
- url: "includes/sign_in.php",
- type: "POST",
- data: formData,
- success: function(result){$("#outputDiv").html(result);},
- error: function(result){$("#outputDiv").html("Error!");}
- })
- }
- </script>
- <?php
- require('dbconnect.php');
- if (isset($_POST["submit"])){
- @session_destroy();
- @session_start();
- $user = $_POST['username'] ?? "Guest";
- $pass = $_POST['password'] ?? "";
- $stmt = $pdo->prepare('SELECT * FROM users WHERE username = ?');
- $stmt->execute([$user]);
- $row = $stmt->fetch();
- if (password_verify($pass, $row['password'])){
- $_SESSION['username'] = $user;
- $_SESSION['accessLevel'] = $row['accessLevel'];
- $stmt = $pdo->prepare('INSERT INTO login_log (username,logDate) VALUES (?,?)');
- $stmt->execute([$_SESSION['username'],date("Y-m-d H:i:s")]);
- echo '<script>alert("Successfully logged in!");</script>';
- echo '<script>window.location="index.php";</script>';
- }
- else{
- die ("Invalid username or password.<br/>");
- }
- $username = $_SESSION['username'] ?? "Guest";
- echo $username;
- }
- else{
- ?>
- <fieldset >
- <legend>Login</legend>
- <input type='hidden' name='submitted' id='submitted' value='1'/>
- <label for='username' >Username:
- </label>
- <input type='text' name='username' id='username'/>
- <label for='password' >Password:
- </label>
- <input type='password' name='password' id='password'/>
- <button name="submit" onclick="ajaxSubmit();">log in</button>
- </fieldset>
- <div id= "outputDiv"> </div>
- <?php } ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement