Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- //Created by Thomas FARINEAU the 3 feb 2018 at 10:25 AM
- //Ctrlr == Controller
- class AccountCtrlr
- {
- function register()
- {
- //INCLUDE DB
- global $db;
- //DEFINE 3 SALT FOR PROTECTION
- define('PRE_SALT', 'rthrthtrh');
- define('SUF_SALT', 'hrthrthh');
- define('NEW_SALT', 'rhhtrrtthr');
- //VARIABLE FOR POST
- $username = htmlspecialchars($_POST['username'], ENT_QUOTES);
- $email = htmlspecialchars($_POST['email'], ENT_QUOTES);
- $password = hash('sha256', PRE_SALT.$_POST['password'].SUF_SALT.NEW_SALT);
- $session = md5(rand());
- //VERIFY USERNAME EXIST
- $reqUserVerify = $db->prepare('SELECT * FROM users WHERE username=:username');
- $reqUserVerify->execute(array(
- 'username' => $username
- ));
- $userVerify = $reqUserVerify->rowCount();
- //VERIFY EMAIL EXIST
- $reqEmailVerify = $db->prepare('SELECT * FROM users WHERE email=:email');
- $reqEmailVerify->execute(array(
- 'email' => $email
- ));
- $emailVerify = $reqEmailVerify->rowCount();
- //IF DONT EXIST USER
- if ($userVerify == "0"):
- //IF DONT EXIST EMAIL
- if ($emailVerify == "0"):
- //ADD IN DB
- $regUser = $db->prepare('INSERT INTO users SET username=:username, email=:email, password=:password, session=:session');
- $regUser->execute(array(
- 'username' => $username,
- 'email' => $email,
- 'password' => $password,
- 'session' => $session
- ));
- $_SESSION['isSuccessRegister'] = true;
- echo "success";
- else:
- echo "email";
- endif;
- else:
- echo "username";
- endif;
- }
- function login()
- {
- //INCLUDE DB
- global $db;
- //DEFINE 3 SALT FOR PROTECTION
- define('PRE_SALT', 'rthrthtrh');
- define('SUF_SALT', 'hrthrthh');
- define('NEW_SALT', 'rhhtrrtthr');
- //VARIABLE FOR POST
- $username = htmlspecialchars($_POST['username_log'], ENT_QUOTES);
- $password = hash('sha256', PRE_SALT.$_POST['password_log'].SUF_SALT.NEW_SALT);
- $session = md5(rand());
- //VERIFY USERNAME EXIST
- $reqUserVerify = $db->prepare('SELECT * FROM users WHERE username=:username');
- $reqUserVerify->execute(array(
- 'username' => $username
- ));
- $userVerify = $reqUserVerify->rowCount();
- //IF USER EXIST
- if($userVerify != "0"):
- //VERIFY USERNAME AND PASS MATCH
- $reqUserValidPass = $db->prepare('SELECT * FROM users WHERE username=:username AND password=:password');
- $reqUserValidPass->execute(array(
- 'username' => $username,
- 'password' => $password
- ));
- $userValidPass = $reqUserValidPass->rowCount();
- //IF SESSION EXIST
- if($userValidPass != "0"):
- $userFetch = $reqUserValidPass->fetch();
- $logUser = $db->prepare('UPDATE users SET session=:session WHERE id=:id');
- $logUser->execute(array(
- 'session' => $session,
- 'id' => $userFetch['id']
- ));
- $_SESSION['session'] = $session;
- echo "success";
- else:
- echo "session";
- endif;
- else:
- echo "username";
- endif;
- }
- function userLogout()
- {
- global $isConnected;
- if ($isConnected)
- session_destroy();
- }
- function isConnected()
- {
- if(!empty($_SESSION['session']))
- return true;
- }
- function getUser()
- {
- global $db;
- $getUserInfo = $db->prepare('SELECT * FROM users WHERE session=:session');
- $getUserInfo->execute(array(
- 'session' => $_SESSION['session']
- ));
- $getUser = $getUserInfo->fetch();
- return $getUser;
- }
- function getRank($rid)
- {
- global $db;
- $getRankInfo = $db->prepare('SELECT * FROM ranks WHERE rid=:rid');
- $getRankInfo->execute(array(
- 'rid' => $rid
- ));
- $getRank = $getRankInfo->fetch();
- return $getRank;
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement