<!DOCTYPE html><html lang="de" class="blue-grey lighten-5"><head> <

1. <!DOCTYPE html>
2.  
3. <html lang="de" class="blue-grey lighten-5">
4.  
5. <head>
6. <meta charset="UTF-8">
7. <meta name="viewport" content="width=device-width, initial-scale=1.0">
8. <meta http-equiv="X-UA-Compatible" content="ie=edge">
9. <title>Todo-App / Todo-App</title>
10. <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/materialize/1.0.0/css/materialize.min.css">
11. <link href="https://fonts.googleapis.com/icon?family=Material+Icons" rel="stylesheet">
12. <link rel="stylesheet" href="css/eigenes.css">
13.  
14.  
15. <!--Start of Tawk.to Script-->
16. <script type="text/javascript">
17. var Tawk_API=Tawk_API||{}, Tawk_LoadStart=new Date();
18. (function(){
19. var s1=document.createElement("script"),s0=document.getElementsByTagName("script")[0];
20. s1.async=true;
21. s1.src='https://embed.tawk.to/5c2de8107a79fc1bddf319e9/default';
22. s1.charset='UTF-8';
23. s1.setAttribute('crossorigin','*');
24. s0.parentNode.insertBefore(s1,s0);
25. })();
26. </script>
27. <!--End of Tawk.to Script-->
28.  
29.  
30. </head>
31.  
32. <body>
33. <div class="container">
34. <nav>
35. <div class="nav-wrapper z-depth-1">
36. <a href="index.php" class="brand-logo center hide-on-small-only marginDown"><img src="images/logo.png"></a>
37. <?php
38. if(!isset($_COOKIE["user"])){
39. echo '<a href="index.php" class="brand-logo left hide-on-med-and-up marginDown"><img id="kleinesLogo" src="images/logo.png"></a>';
40. }
41. ?>
42. <a href="index.php" class="right" id="register">Zurück</a>
43. </div>
44. </nav>
45. <div class="row">
46. <div id="margin-down" class="col s12 m6 offset-m3 blue-grey darken-1 rund">
47. <h3 class="white-text center-align">Einloggen</h3>
48. <form id="loginForm" class="col s12" action="landing.php" method="post">
49. <div class="row">
50. <div class="input-field col s6">
51. <input id="username" name="usernamelog" type="text" class="validate">
52. <label for="username">Benutzername</label>
53. </div>
54. <div class="input-field col s6">
55. <input id="password" name="passwordlog" type="password" class="validate">
56. <label for="password">Passwort</label>
57. </div>
58. </div>
59. <div class="row">
60. <input id="landinglog" type="submit" class="btn waves-effect waves-light" value="Login">
61. <a href="register.php" class="right " id="login">Registrieren</a>
62. <a href="reset.php" class="right marginRechts" id="pwreset">Passwort vergessen</a>
63. </div>
64. </form>
65. </div>
66. </div>
67.  
68. <h1 class="center-align cyan-text">ODER</h1>
69.  
70. <div class="row">
71. <div id="margin-down" class="col s12 m6 offset-m3 blue-grey darken-1 rund">
72.  
73. <h3 class="white-text center-align">Registrieren</h3>
74. <form class="col s12" action="landing.php" method="post">
75. <div class="row">
76. <div class="input-field col s12">
77. <input id="username" name="usernamereg" type="text" class="validate">
78. <label for="username">Benutzername</label>
79. </div>
80. <div class="input-field col s6">
81. <input id="password" name="passwordreg" type="password" class="validate">
82. <label for="password">Passwort</label>
83. </div>
84. <div class="input-field col s6">
85. <input id="password2" name="passwordreg2" type="password" class="validate">
86. <label for="password2">Passwort wiederholen</label>
87. </div>
88. </div>
89. <div class="row">
90. <input type="submit" class="btn waves-effect waves-light" value="Registrieren">
91. </div>
92. </form>
93.  
94. </div>
95. </div>
96. </div>
97. <div class="spacer">
98.  
99. </div>
100. <footer class="footer">
101. <h6 class="marginRechts marginNull">Copyright © 2019 Todo-App.net</h6>
102. <a href="privacy.html">Privacy Policy</a>
103. </footer>
104. <script
105. src="https://code.jquery.com/jquery-3.3.1.js"
106. integrity="sha256-2Kok7MbOyxpgUVvAk/HJ2jigOSYS2auK4Pfzbm7uH60="
107. crossorigin="anonymous"></script>
108. <script src="https://cdnjs.cloudflare.com/ajax/libs/materialize/1.0.0/js/materialize.min.js"></script>
109. </body>
110. </html>
111. <?php
112. ini_set('display_errors', 'On');
113. ini_set('html_errors', 0);
114.  
115. $db_host = ...
116. $db_name = ...
117. $db_user = ...
118. $db_pass = ...
119.  
120. try{
121. $db = new PDO('mysql:host='.$db_host.'; dbname='.$db_name, $db_user, $db_pass);
122. } catch(PDOException $e) {
123. echo "Fehler: " .htmlspecialchars($e->getMessage());
124. exit();
125. }
126.  
127.  
128. if (isset($_POST["usernamelog"]) && isset($_POST["passwordlog"]))
129. {
130. $usernamelog = $_POST["usernamelog"];
131. $passwordlog = $_POST["passwordlog"];
132.  
133. $sql = "SELECT username FROM user WHERE username = :feldwert";
134. $kommando = $db->prepare($sql);
135. $wert = $usernamelog;
136. $kommando -> bindParam(':feldwert', $wert);
137. $kommando -> execute();
138. if($kommando->rowCount() > 0){
139. $sql = "SELECT username, password FROM user WHERE username = :username;";
140. $kommando = $db->prepare($sql);
141. $kommando -> bindParam(':username', $usernamelog);
142. $kommando -> execute();
143.  
144. foreach ($kommando as $row){
145. $user = $row["username"];
146. $pass = $row["password"];
147.  
148. if(password_verify($passwordlog, $pass)){
149. setcookie("user", $user, time() + 60*60*12);
150. header("Location: index.php");
151.  
152. }else {
153. echo "Falschen Benutzernamen oder Passwort eingegeben!";
154. }
155. }
156.  
157. } else {
158. echo "Benutzerkonto existiert nicht!";
159. }
160. }
161. else {
162. //check if registration-form is filled.
163. }
164. ?>