/** * Valid User function * verifies that user is an authorized user on the system. If they * are, then will login the user to the system * @param type $username the user's username * @param type $password the user's password * @return boolean returns true if user is authorized */ public function valid_user($username, $password) { /* validate entry format and filter */ $username = Validate::validate_string($username); $password = Validate::validate_string($password); /* clear username to present on views */ Session::set('username', ''); Session::set('uid', NULL); $sql = "SELECT id, \n password, activation FROM users \n WHERE \n username = ? "; $this->_setSql($sql); $array = $this->fetch_record(array($username)); Session::clear_error_output(); if ($this->logged_in($password, $array)) { Session::set_user_data($username, $array['id']); return TRUE; } else { Session::set_error_output('Invalid login. Please re-enter your password'); return FALSE; } }