|
1
|
<?php
|
|
2
|
require "../model/DB.php";
|
|
3
|
session_start();
|
|
4
|
$DB = new DB();
|
|
5
|
$result = $DB->getUser($_POST['username']);
|
|
6
|
|
|
7
|
if (count($result) == 1) {
|
|
8
|
$user = $result[0];
|
|
9
|
if (password_verify($_POST['password'], $user['password'])) {
|
|
10
|
session_regenerate_id();
|
|
11
|
$_SESSION['loggedIn'] = true;
|
|
12
|
$_SESSION['username'] = $_POST['username'];
|
|
13
|
$_SESSION['id'] = $user['id'];
|
|
14
|
$_SESSION['role'] = $user['role'];
|
|
15
|
} else {
|
|
16
|
// Incorrect password
|
|
17
|
echo 'Incorrect username and/or password!';
|
|
18
|
}
|
|
19
|
} else {
|
|
20
|
// Incorrect username
|
|
21
|
echo 'Incorrect username and/or password!';
|
|
22
|
}
|
|
23
|
|
|
24
|
|