Advertisement
Guest User

Untitled

a guest
May 31st, 2017
106
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 0.88 KB | None | 0 0
  1. <?php
  2. // Authentication Check
  3. if(!isset($_SESSION['user']['is_logged_in'] || $_SESSION['user']['is_logged_in'] !== true) )
  4. {
  5.     if( isset($_POST['username']) && isset($_POST['password']) )
  6.     {
  7.         // Query database for valid user details
  8.         $stmt = $dbh->prepare("SELECT password FROM users WHERE username=:username LIMIT 1");
  9.        
  10.         $stmt->bindParam(':username', $_POST['username'], PDO::PARAM_STR, 24);
  11.         $stmt->execute();
  12.        
  13.         $password = $dbh->fetch(PDO::FETCH_ASSOC);
  14.  
  15.         // Verify user password is valid
  16.         if( $password['password'] !== sha1($_POST['password']) )
  17.         {
  18.             // User validation fails
  19.         }
  20.         else
  21.         {
  22.             // Set user session data
  23.             $_SESSION['user']['is_logged_in'] = true;
  24.             $_SESSION['user']['username'] = $_POST['username'];
  25.         }
  26.     }
  27. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement