Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- $user = $_POST['uzivatel'];
- $pass = md5($_POST['heslo']);
- require_once('includes/connect.php');
- $sql = "SELECT * FROM zamestnanci WHERE uzivatel='$user'";
- $vysledek = mysqli_query($conn, $sql);
- foreach($vysledek as $v){
- print_r($v);
- $db_id = $v['id'];
- $db_user = $v['uzivatel'];
- $db_pass = $v['heslo'];
- $db_jmeno = $v['jmeno'];
- $db_prijmeni = $v['prijmeni'];
- $db_pravomoce = $v['pravomoce'];
- }
- mysqli_close($conn);
- $errors = array();
- if ($_POST['login']) {
- if(empty($user) && ($pass == 'd41d8cd98f00b204e9800998ecf8427e')){
- $errors[] = "Žádná data nebyla odeslána";
- } else if (empty($user)) {
- $errors[] = "Nebylo zadáno jméno";
- } else if ($pass == 'd41d8cd98f00b204e9800998ecf8427e') {
- $errors[] = "Nebylo zadáno heslo";
- }
- if (empty($errors)) {
- if($user == $db_user && $pass == $db_pass){
- $_SESSION['id'] = $db_id;
- $_SESSION['username'] = $db_user;
- $_SESSION['jmeno'] = $db_jmeno;
- $_SESSION['prijmeni'] = $db_prijmeni;
- $_SESSION['pravomoce'] = $db_pravomoce;
- header("location:index.php");
- exit;
- }
- if($user != $db_user && $pass != $db_pass){
- $errors[] = "Neznámá kombinace jména a hesla";
- } else if($user != $db_user){
- $errors[] = "Uživatelské jméno nebylo zadáno správně";
- } else if($pass != $db_pass){
- $errors[] = "Heslo nebylo zadáno správně";
- }
- }
- } else {
- header('Location:403.php');
- }
- if (!empty($errors)) {
- $_SESSION['errors'] = $errors;
- header('Location:login.php');
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement