Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // Authentication Check
- if(!isset($_SESSION['user']['is_logged_in'] || $_SESSION['user']['is_logged_in'] !== true) )
- {
- if( isset($_POST['username']) && isset($_POST['password']) )
- {
- // Query database for valid user details
- $stmt = $dbh->prepare("SELECT password FROM users WHERE username=:username LIMIT 1");
- $stmt->bindParam(':username', $_POST['username'], PDO::PARAM_STR, 24);
- $stmt->execute();
- $password = $dbh->fetch(PDO::FETCH_ASSOC);
- // Verify user password is valid
- if( $password['password'] !== sha1($_POST['password']) )
- {
- // User validation fails
- }
- else
- {
- // Set user session data
- $_SESSION['user']['is_logged_in'] = true;
- $_SESSION['user']['username'] = $_POST['username'];
- }
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement