/**
* \brief Affiche la page de connexion et gère la connexion d'un utilisateur.
*/
public function signin()
{
switch ($_SERVER['REQUEST_METHOD']) {
case 'GET':
if (isset($_SESSION['user'])) {
$_SESSION['user'] = $u->pseudo();
if (Utilisateur::is_admin($_SESSION['user'])) {
$_SESSION['admin'] = 1;
}
show_message('message_success', "You're already connected as " . $_SESSION['user']);
include 'views/home.php';
} else {
include 'views/connexion.php';
}
break;
case 'POST':
if (isset($_POST['login']) && isset($_POST['pw'])) {
$u = Utilisateur::get_by_login(htmlspecialchars($_POST['login']));
if (!is_null($u)) {
if ($u->mdp() == sha1($_POST['pw'])) {
$_SESSION['user'] = $u->pseudo();
$_SESSION['idUser'] = $u->idUtilisateur();
if (Utilisateur::is_admin($_SESSION['user'])) {
$_SESSION['admin'] = 1;
}
show_message('message_success', "Vous êtes connecté");
include 'views/home.php';
} else {
show_message('message_error', "Echec de connexion : login ou mot de passe incorrect");
include 'views/connexion.php';
}
} else {
show_message('message_error', "Echec de connexion : login ou mot de passe incorrect");
include 'views/connexion.php';
}
} else {
show_message('message_error', "Données incompletes!");
include 'views/connexion.php';
}
break;
}
}
public function commentaires()
{
if (isset($_SESSION['user'])) {
if (Utilisateur::is_admin($_SESSION['user'])) {
$c = Commentaire::get_all();
$users = array();
for ($i = 0; $i < count($c); $i++) {
$users[] = Utilisateur::get_by_id($c[$i]->idUtilisateur());
}
include 'views/adminComm.php';
} else {
$_SESSION['message']['type'] = 'error';
$_SESSION['message']['text'] = "Vous n'êtes pas administrateur";
include 'views/home.php';
}
} else {
$_SESSION['message']['type'] = 'error';
$_SESSION['message']['text'] = "You aren't connected";
include 'views/connexion.php';
}
}
