public function addUser($user) { $username = $this->db->quote($user['username']); $password = $this->db->quote(Password::encode($user['password'])); $email = $this->db->quote($user['email']); $telephone = $this->db->quote($user['telephone']); $this->db->exec("INSERT INTO users VALUES (NULL, {$username}, {$password}, {$email}, {$telephone}, NOW(), NOW())"); return $this->db->lastInsertId(); }
public function loginAction() { $data = $this->getFormFields('login'); $request = $this->getRequest(); if ($request->isMethod('POST')) { $data['username'] = $request->getPost('username'); $userModel = new UserModel($this->getDatabase()); $user = $userModel->findByName($request->getPost('username')); if ($user && Password::verify($request->getPost('password'), $user['password'])) { // found user $this->getSession()->set('user', $user); $this->redirect('/welcome'); } else { // user not found, bad username or password $data['error'] = 'Username or password not correct, please try again'; } } return $this->render('login', $data); }