Skip to content

Antti Väyrynen / Moya

Go to a project
Switch branch/tag
login.php 1.21 KB
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 
<?php
if ( $_POST['user'] AND $_POST['passwd']) {
    $user = $_POST['user'];
    $password = $_POST['passwd'];
    $row = $db->fetchRow("SELECT * FROM USER WHERE NICK = '$user' OR LOWER(NICK) = '$user' LIMIT 1");
    if (strtolower($row['NICK']) == $user AND $row['PASSWORD'] == sha1($password)) {

        # TODO: fetch details from db
        $_SESSION['nick'] = $row['NICK'];
        $_SESSION['fullname'] = $row['NAME'];
        $_SESSION['logged'] = TRUE;
        $_SESSION['uid'] = $row['ID'];
        $_SESSION['email'] = $row['EMAIL'];
        Header('Location:index.php');
    } else {
        Header('Location:index.php?loginerror');
    }

} elseif ($_SESSION['logged']) {
    $nick = $_SESSION['nick'];
    $fullname = $_SESSION['fullname'];
    $login .= "Olet kirjautunut tunnuksella: <br><br><b>$nick</b> ($fullname)";
} else {
    $login .=  <<<EOT
    <form action="index.php?pid=login" method="post">
            Tunnus<br><input type="text" name="user" id="loginfield" value="$tunnusloginiin" style='width:100px;'><br>
            Salasana <br><input type="password" name="passwd" style='width:100px;'><br>
            <input type="submit" value="Login" name="login_submit" style='width:100px;'>
    </form>    
EOT;
}
?>