public function testCheckUserPassword() { // bad user and password $this->assertEquals(checkUserPassword("badUser", "baduser"), false); // good user and password all permission $this->assertEquals(checkUserPassword("user_with_allPermissions", "allPermissions"), true); }
<?php require "manageDB.php"; $email = $_POST['email']; $password = $_POST['password']; $result = checkUserPassword($email, $password); echo "{$result}";
<?php // if user isn't connected if (!isConnected()) { $loginError = false; // if form submitted if (isset($_POST["login"]) && isset($_POST["password"])) { // check credentials if (checkUserPassword($_POST["login"], $_POST["password"])) { // connect user and redirect connectUser($_POST["login"]); redirect('accueil'); } // notice view there is an error in login $loginError = true; } // include view include_once 'views/loginForm.php'; } else { // user already connected redirect('accueil'); }
if (strcmp($password, $mail_array[0]) == 0) { mysql_close($connect); return TRUE; } } return FALSE; mysql_close($connect); } if (isEmpty($mail, $password) == TRUE) { $answer = "Empty field"; header("Location: index.php?CheckResult=Emptyield"); exit; } if (isUser($mail) == TRUE) { echo "User<br>"; if (checkUserPassword($password, $mail) == TRUE) { echo "User login ok <br>"; $answer = "Access Ok"; session_start(); $_SESSION["user"] = $mail; header("Location: UserPlace.php?name={$mail}"); exit; } else { $answer = "Wrong password"; header("Location: index.php?CheckResult=Wrong password"); exit; } } if (isAdmin($mail) == TRUE) { echo "Admin<br>"; if (checkAdminPassword($password, $mail) == TRUE) {
} echo json_encode(array("AuthHeader" => $authHeader, "Hash_Token" => $jwt, "token" => $token)); //print_r($app->jwt); }); $app->post('/testManager/transformToLatLng/', function () use($app, $proj4) { transformToLatLng($app, $proj4); }); $app->get('/testManager/simpleGeoJSON/', function () use($app) { simpleGeoJSON($app); }); $app->get('/testManager/callWebService/', function () use($app, $client) { callWebService($app, $client); }); /* Login manager */ $app->post('/loginManager/checkUserPassword/', function () use($app, $pdo, $db, $conn_db2, $key) { checkUserPassword($app, $pdo, $db, $conn_db2, $key); }); $app->post('/loginManager/logout/', function () use($app, $pdo, $db) { logout($app, $pdo, $db); }); $app->get('/loginManager/getJWT/', function () use($app) { getJWT($app); }); $app->post('/loginManager/checkJWT/', function () use($app, $key) { checkJWT($app, $key); }); $app->post('/loginManager/checkPermission/', function () use($app, $pdo, $db, $key) { checkPermission($app, $pdo, $db, $key); }); /* WLMA manager */ $app->post('/wlmaManager/checkUserPasswordFromWLMA/', function () use($app, $pdo, $conn_db2) {
<div class="login-form"> <?php if (isset($_GET['action']) && $_GET['action'] == "login") { if ($_POST['username'] != "" && $_POST['password'] != "") { $username = $_POST['username']; $password = $_POST['password']; if (userExists($username)) { if (!userIsDisabled($username)) { $email_status = getUserInfo($_POST['username'], 'email-status'); if ($email_status == 'verified') { if (checkUserPassword($username, $password)) { echo '<p>Username and password correct!</p>'; logUserIn($username, $password); header('Location: ./'); } else { echo '<p>Incorrect username or password.</p>'; } } else { echo '<p>Please verify your account to login.<br/>Check your email.</p>'; } } else { echo '<p>Your account has been disabled.</p>'; } } else { echo '<p>Incorrect username or password.</p>'; } } else { echo '<p>Please enter your username & password.</p>'; } ?> <a href="./?page=login">Go Back</a> <?php
function logUserIn($username, $password) { if (checkUserPassword($username, $password)) { session_start(); $_SESSION['username'] = $username; $_SESSION['userhash'] = hashPassword($username, $password); } }