-
Notifications
You must be signed in to change notification settings - Fork 2
/
login.php
71 lines (60 loc) · 2.96 KB
/
login.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="ie=edge">
<title>Twitter clone | Login </title>
<!-- Bootstrap styles cdn -->
<link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css" integrity="sha384-MCw98/SFnGE8fJT3GXwEOngsV7Zt27NXFoaoApmYm81iuXoPkFOJwJ8ERdknLPMO" crossorigin="anonymous">
</head>
<body>
<?php require_once 'header.php'; ?>
<div class="row my-5">
<div class="container col-3"></div>
<div class="container col-6">
<form action=<?php echo htmlspecialchars($_SERVER['PHP_SELF']); ?> method="post">
<div class="form-group">
<label for="username">Username</label>
<input type="text" class="form-control" name="username" id="username" placeholder="Enter username" required>
</div>
<div class="form-group">
<label for="password">Password</label>
<input type="password" class="form-control" name="password" id="password" required>
</div>
<button type="submit" class="btn btn-primary">Log in</button>
</form>
<p class="mt-4">Don't have an account? <a href="signup.php">Sign up</a></p>
</div>
<div class="container col-3"></div>
</div>
<?php
if (isset($_POST["username"]) && isset($_POST["password"])) {
// Grab login values
$username = $_POST["username"];
$password = $_POST["password"];
// Query the database with the login values
$authQuery = "select * from users where username='$username' and password='$password'";
$response = $connect->query($authQuery);
if (!$response) die("Database acces failed: " . $connection->error);
// Returns 0 or 1 to show if the user has authenticated correctly
$validUser = $response->num_rows;
// If user is found set the session variables with the user id so new messages can make use of it
if ($validUser == 1) {
$userData = $response->fetch_array(MYSQLI_NUM);
$_SESSION["username"] = $userData[0];
$_SESSION["userID"] = $userData[2];
// Redirect to homepage
redirect("./index.php");
} else {
$message = "Invalid username or password";
include_once "./components/alert.php";
}
}
?>
<!-- Bootstrap scripts -->
<script src="https://code.jquery.com/jquery-3.3.1.slim.min.js" integrity="sha384-q8i/X+965DzO0rT7abK41JStQIAqVgRVzpbzo5smXKp4YfRvH+8abtTE1Pi6jizo" crossorigin="anonymous"></script>
<script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js" integrity="sha384-ZMP7rVo3mIykV+2+9J3UJ46jBk0WLaUAdn689aCwoqbBJiSnjAK/l8WvCWPIPm49" crossorigin="anonymous"></script>
<script src="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js" integrity="sha384-ChfqqxuZUCnJSK3+MXmPNIyE6ZbWh2IMqE241rYiqJxyMiZ6OW/JmZQ5stwEULTy" crossorigin="anonymous"></script>
</body>
</html>