Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- //login
- if($_GET["func"]=="login")
- {
- $connect = new mysqli($dbhost, $dbusername, $dbpassword, $dbname);
- if ($connect->connect_errno!=0) {
- echo "Error: ".$connect->connect_errno." Description: ".$connect->connect_error;
- }
- else {
- $login = $_POST["user"];
- $password = $_POST["passwd"];
- $query = "SELECT username, password, loginreqkey FROM users WHERE username='$login' AND password='$password'";
- if ($stmt = $connect->prepare($query)) {
- $stmt->execute();
- $stmt->bind_result($username, $password, $loginreqkey);
- while ($stmt->fetch()) {
- echo "{";
- echo '"state": "1",';
- echo '"loginreqkey": "' . $loginreqkey . '",';
- echo "}";
- }
- /* close statement */
- $stmt->close();
- }
- $connect->close();
- }
- }
- //register
- if($_GET["func"]=="register") {
- $connect = new mysqli($dbhost, $dbusername, $dbpassword, $dbname);
- if($connect->connect_errno!=0) {
- echo "Error: ".$connect->connect_errno." Descruption: ".$connect->connect_error;
- }
- else {
- $login = $_POST["user"];
- $password = $_POST["passwd"];
- $SecretKey = mt_rand(1,50);
- $authkey = hash_hmac('sha512', '', $SecretKey);
- $sql = "INSERT INTO users VALUES(NULL, '$login', '$password', '$authkey', NULL, NULL, NULL, NULL, NULL, NULL, NULL)";
- if($result = $connect->query($sql)) {}
- else {
- echo "ERROR";
- }
- $connect->close();
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
