forked from MarcHoutreille/getflixProject
/
login_post.php
57 lines (48 loc) · 1.83 KB
/
login_post.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
<?php
session_start();
include("connexion_db.php");
if (((isset($_POST['username'])) & (isset($_POST['password']))) & !empty($_POST['username']) & !empty($_POST['password']))
{
$username = strtolower($_POST['username']);
$password = $_POST['password'];
$req = $db->prepare('SELECT * FROM users WHERE username = :username');
$req->execute(array('username' => $username));
$resultat = $req->fetch();
// Comparaison du pass envoyé via le formulaire avec la base
$isPasswordCorrect = password_verify($_POST['password'], $resultat['password']);
if ($isPasswordCorrect) {
$_SESSION['id'] = $resultat['id'];
$_SESSION["username"] = $resultat['username'];
$_SESSION["userid"] = $resultat['id'];
$_SESSION["email"] = $resultat['email'];
$_SESSION["password_hash"] = $resultat['password'];
$_SESSION["id_avatar"] = $resultat['id_avatar'];
setcookie('username', $resultat['username'], time() + 365 * 24 * 3600, null, null, false, true);
// echo $_SESSION["username"];
// echo $_SESSION["email"];
// echo $_SESSION["id_avatar"];
header("Location: home.php");
} else
{
header("Location: index.php");
}
/*if ($check_connexion == 1)
{
$sql_data_user ="SELECT * FROM users WHERE username =". $username;
$_SESSION['auth'] = array
(
"username"=>$username,
"password"=>$password,
"email"=>$email,
"avatar"=>$avatar
);
header("Location: account.php");
}
*/
}
else
{
$login_error ="Oops ! Wrong username or password !";
echo $login_error;
}
?>