Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require("connect.php");#
- $username = "";
- $password = "";
- $rows = '';
- if (isset($_POST['username']) && isset($_POST['password'])) {
- $username = $_POST['username'];
- $password = $_POST['password'];
- if (empty($username) || empty($password)) {
- $return_data['success'] = false;
- $return_data['errors'][] = "You are missing some key fields!";
- }
- if (!ctype_alnum($username) && $username != false) {
- $return_data['success'] = false;
- $return_data['errors'][] = "Username is incorrect. Use your college username.";
- }
- if (strlen($username) > 10) {
- $return_data['errors'][] = "You have exceeded the maximum length of a username.";
- }
- authenticate($username, $password);
- }
- function authenticate($username, $password){
- global $pdo;
- $hash = password_hash($password, PASSWORD_DEFAULT);
- $sql = "SELECT * FROM users WHERE username='" . $username . "'";
- $result = $pdo->query($sql);
- $user = $result->fetchColumn(2);
- print_r("test");
- if (password_verify($password, $user)) { // Havent hashed in database yet (does work)
- $_SESSION['login_user'] = $username;
- if ($rows == 1) {
- header("location: ../app/adminlogin.php");
- }
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement