-
Notifications
You must be signed in to change notification settings - Fork 0
/
loginverify.php
61 lines (48 loc) · 1.47 KB
/
loginverify.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
<?php
$username = $_POST['username'];
$password = $_POST['password'];
$hashpass = password_hash($_POST['password'], PASSWORD_DEFAULT);
$user_type = $_POST['user_type'];
$POSTPASS = "okere9898461";
$hash = '$2y$10$4QOBoDHIZidxHGDPk0y2bedE0bT33oPfrAKR5wFcCHMkojRHETEuK';
$servername = '66.228.53.178';
$dbusername = 'chukwuma';
$dbpassword = 'Z_Q7tM"VQaGyqx3n';
$dbname = 'chukwuma_ophion';
$conn = new PDO("mysql:host=$servername;dbname=$dbname", $dbusername, $dbpassword); //connects to database
$conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); //shows errors
$userquery = "SELECT username,password FROM user";
function getHashedPassword($username, $conn) {
$stmt = $conn->prepare('SELECT password FROM user WHERE username = :username');
$stmt->execute(
array(
'username'=>$username
)
);
$row = $stmt->fetch();
var_dump($row);
if ($row == false) {
return false;
}
return $row['password'];
}
$passwordHash = getHashedPassword($username, $conn);
password_verify($password, $passwordHash);
var_dump($hashpass);
/* foreach ( $conn->query($userquery) as $row ) {
echo $row['username']. " - " .$row['password']."<br>";
}
//this also works
if (password_verify($password, $hash)) {
echo 'Password is valid!';
} else {
echo 'Invalid password.';
}
*/
var_dump($password);
var_dump($hash);
//var_dump($row);
//var_dump(checkPassword($password, $conn));
var_dump($userquery);
//take the input, hash it and match it up against the db
var_dump($passwordHash);