Начало Каталог Помощ
Регистрация Вход
simon
/
SRM
1
0
Разклонения 0
Файлове Задачи 0 Заявки за сливане 0 Уики
ИН на ревизия: 32263ab4a2
Клонове Маркери
SRM
/
WebPage
/
place
/
login.php

login.php 4.6 KB
История Директен файл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118 
  1. <?php
    2. 

  2. // Define variables and initialize with empty values
    3. 

  3. $username = $password = "";
    4. 

  4. $username_err = $password_err = $login_err = "";
    5. 

  5.  
    6. 

  6. // Processing form data when form is submitted
    7. 

  7. if($_SERVER["REQUEST_METHOD"] == "POST"){
    8. 

  8.  
    9. 

  9.     // Check if username is empty
    10. 

  10.     if(empty(trim($_POST["username"]))){
    11. 

  11.         $username_err = "Please enter username.";
    12. 

  12.     } else{
    13. 

  13.         $username = trim($_POST["username"]);
    14. 

  14.     }
    15. 

  15.     
    16. 

  16.     // Check if password is empty
    17. 

  17.     if(empty(trim($_POST["password"]))){
    18. 

  18.         $password_err = "Please enter your password.";
    19. 

  19.     } else{
    20. 

  20.         $password = trim($_POST["password"]);
    21. 

  21.     }
    22. 

  22.     
    23. 

  23.     // Validate credentials
    24. 

  24.     if(empty($username_err) && empty($password_err)){
    25. 

  25.         // Prepare a select statement
    26. 

  26.         $sql = "SELECT id, username, passwd FROM users WHERE username = ? and active = 1";
    27. 

  27.         
    28. 

  28.         if($stmt = mysqli_prepare($link, $sql)){
    29. 

  29.             // Bind variables to the prepared statement as parameters
    30. 

  30.             mysqli_stmt_bind_param($stmt, "s", $param_username);
    31. 

  31.             
    32. 

  32.             // Set parameters
    33. 

  33.             $param_username = $username;
    34. 

  34.             
    35. 

  35.             // Attempt to execute the prepared statement
    36. 

  36.             if(mysqli_stmt_execute($stmt)){
    37. 

  37.                 // Store result
    38. 

  38.                 mysqli_stmt_store_result($stmt);
    39. 

  39.                 
    40. 

  40.                 // Check if username exists, if yes then verify password
    41. 

  41.                 if(mysqli_stmt_num_rows($stmt) == 1){                    
    42. 

  42.                     // Bind result variables
    43. 

  43.                     mysqli_stmt_bind_result($stmt, $id, $username, $hashed_password);
    44. 

  44.                     if(mysqli_stmt_fetch($stmt)){
    45. 

  45.                         if(password_verify($password, $hashed_password)){
    46. 

  46.                             // Password is correct, so start a new session
    47. 

  47.                             session_start();
    48. 

  48.                             
    49. 

  49.                             // Store data in session variables
    50. 

  50.                             $_SESSION["loggedin"] = true;
    51. 

  51.                             $_SESSION["id"] = $id;
    52. 

  52.                             $_SESSION["username"] = $username;                            
    53. 

  53.                             
    54. 

  54.                             // Redirect user to welcome page
    55. 

  55.                             header("Refresh:0");
    56. 

  56.                         } else{
    57. 

  57.                             // Password is not valid, display a generic error message
    58. 

  58.                             $login_err = "Invalid username or password.";
    59. 

  59.                         }
    60. 

  60.                     }
    61. 

  61.                 } else{
    62. 

  62.                     // Username doesn't exist, display a generic error message
    63. 

  63.                     $login_err = "Invalid username or password.";
    64. 

  64.                 }
    65. 

  65.             } else{
    66. 

  66.                 echo "Oops! Something went wrong. Please try again later.";
    67. 

  67.             }
    68. 

  68. 

  69.             // Close statement
    70. 

  70.             mysqli_stmt_close($stmt);
    71. 

  71.         }
    72. 

  72.     }
    73. 

  73.     
    74. 

  74.     // Close connection
    75. 

  75.     mysqli_close($link);
    76. 

  76. }
    77. 

  77. ?>
    78. 

  78.  
    79. 

  79. <!DOCTYPE html>
    80. 

  80. <html lang="en">
    81. 

  81. <head>
    82. 

  82.     <meta charset="UTF-8">
    83. 

  83.     <title>Connexion</title>
    84. 

  84.     <link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.5.2/css/bootstrap.min.css">
    85. 

  85.     <style>
    86. 

  86.         body{ font: 14px sans-serif; }
    87. 

  87.         .wrapper{ width: 350px; padding: 20px; }
    88. 

  88.     </style>
    89. 

  89. </head>
    90. 

  90. <body>
    91. 

  91.     <div class="wrapper">
    92. 

  92.         <img src="images/logofull.png" alt="Umbrella Logo" style="width: 100%;">
    93. 

  93.         <p>Entrer votre nom d'utilisateur et mot de passe pour entrer.</p>
    94. 

  94. 

  95.         <?php 
    96. 

  96.         if(!empty($login_err)){
    97. 

  97.             echo '<div class="alert alert-danger">' . $login_err . '</div>';
    98. 

  98.         }        
    99. 

  99.         ?>
    100. 

  100. 

  101.         <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="post">
    102. 

  102.             <div class="form-group">
    103. 

  103.                 <label>Nom d'utilisateur</label>
    104. 

  104.                 <input type="text" name="username" class="form-control <?php echo (!empty($username_err)) ? 'is-invalid' : ''; ?>" value="<?php echo $username; ?>">
    105. 

  105.                 <span class="invalid-feedback"><?php echo $username_err; ?></span>
    106. 

  106.             </div>    
    107. 

  107.             <div class="form-group">
    108. 

  108.                 <label>Mot de passe</label>
    109. 

  109.                 <input type="password" name="password" class="form-control <?php echo (!empty($password_err)) ? 'is-invalid' : ''; ?>">
    110. 

  110.                 <span class="invalid-feedback"><?php echo $password_err; ?></span>
    111. 

  111.             </div>
    112. 

  112.             <div class="form-group">
    113. 

  113.                 <input type="submit" class="btn btn-primary" value="Connexion">
    114. 

  114.             </div>
    115. 

  115.         </form>
    116. 

  116.     </div>
    117. 

  117. </body>
    118. 

  118. </html>
    119.