diff options
Diffstat (limited to 'user/login.php')
-rw-r--r-- | user/login.php | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/user/login.php b/user/login.php new file mode 100644 index 0000000..7c892e8 --- /dev/null +++ b/user/login.php @@ -0,0 +1,23 @@ +<?php +require '../config.php'; +require_once(TEMPLATES_PATH . "/header.php"); +session_start(); + +$conn = new PDO($config['db']['dsn'], $config['db']['username'], $config['db']['password']); + +// Performing SQL query +$query = "SELECT id, username, password FROM users WHERE username = '$_POST[username]'"; +$result = $conn->query($query)->fetch(); + +if(password_verify($_POST['password'], $result['password'])) { + echo 'password verified'; + $_SESSION['user_name'] = $result['username']; + $_SESSION['user_id'] = $result['id']; +} else { + echo 'wrong password'; +} + +header("Refresh: 2; URL=$_SERVER[HTTP_REFERER]"); + +require_once(TEMPLATES_PATH . "/footer.php"); +?> |