public function testCheckUserPassword()
{
// bad user and password
$this->assertEquals(checkUserPassword("badUser", "baduser"), false);
// good user and password all permission
$this->assertEquals(checkUserPassword("user_with_allPermissions", "allPermissions"), true);
}
<?php
require "manageDB.php";
$email = $_POST['email'];
$password = $_POST['password'];
$result = checkUserPassword($email, $password);
echo "{$result}";
<?php
// if user isn't connected
if (!isConnected()) {
$loginError = false;
// if form submitted
if (isset($_POST["login"]) && isset($_POST["password"])) {
// check credentials
if (checkUserPassword($_POST["login"], $_POST["password"])) {
// connect user and redirect
connectUser($_POST["login"]);
redirect('accueil');
}
// notice view there is an error in login
$loginError = true;
}
// include view
include_once 'views/loginForm.php';
} else {
// user already connected
redirect('accueil');
}
if (strcmp($password, $mail_array[0]) == 0) {
mysql_close($connect);
return TRUE;
}
}
return FALSE;
mysql_close($connect);
}
if (isEmpty($mail, $password) == TRUE) {
$answer = "Empty field";
header("Location: index.php?CheckResult=Emptyield");
exit;
}
if (isUser($mail) == TRUE) {
echo "User<br>";
if (checkUserPassword($password, $mail) == TRUE) {
echo "User login ok <br>";
$answer = "Access Ok";
session_start();
$_SESSION["user"] = $mail;
header("Location: UserPlace.php?name={$mail}");
exit;
} else {
$answer = "Wrong password";
header("Location: index.php?CheckResult=Wrong password");
exit;
}
}
if (isAdmin($mail) == TRUE) {
echo "Admin<br>";
if (checkAdminPassword($password, $mail) == TRUE) {
}
echo json_encode(array("AuthHeader" => $authHeader, "Hash_Token" => $jwt, "token" => $token));
//print_r($app->jwt);
});
$app->post('/testManager/transformToLatLng/', function () use($app, $proj4) {
transformToLatLng($app, $proj4);
});
$app->get('/testManager/simpleGeoJSON/', function () use($app) {
simpleGeoJSON($app);
});
$app->get('/testManager/callWebService/', function () use($app, $client) {
callWebService($app, $client);
});
/* Login manager */
$app->post('/loginManager/checkUserPassword/', function () use($app, $pdo, $db, $conn_db2, $key) {
checkUserPassword($app, $pdo, $db, $conn_db2, $key);
});
$app->post('/loginManager/logout/', function () use($app, $pdo, $db) {
logout($app, $pdo, $db);
});
$app->get('/loginManager/getJWT/', function () use($app) {
getJWT($app);
});
$app->post('/loginManager/checkJWT/', function () use($app, $key) {
checkJWT($app, $key);
});
$app->post('/loginManager/checkPermission/', function () use($app, $pdo, $db, $key) {
checkPermission($app, $pdo, $db, $key);
});
/* WLMA manager */
$app->post('/wlmaManager/checkUserPasswordFromWLMA/', function () use($app, $pdo, $conn_db2) {
<div class="login-form">
<?php
if (isset($_GET['action']) && $_GET['action'] == "login") {
if ($_POST['username'] != "" && $_POST['password'] != "") {
$username = $_POST['username'];
$password = $_POST['password'];
if (userExists($username)) {
if (!userIsDisabled($username)) {
$email_status = getUserInfo($_POST['username'], 'email-status');
if ($email_status == 'verified') {
if (checkUserPassword($username, $password)) {
echo '<p>Username and password correct!</p>';
logUserIn($username, $password);
header('Location: ./');
} else {
echo '<p>Incorrect username or password.</p>';
}
} else {
echo '<p>Please verify your account to login.<br/>Check your email.</p>';
}
} else {
echo '<p>Your account has been disabled.</p>';
}
} else {
echo '<p>Incorrect username or password.</p>';
}
} else {
echo '<p>Please enter your username & password.</p>';
}
?>
<a href="./?page=login">Go Back</a> <?php
function logUserIn($username, $password)
{
if (checkUserPassword($username, $password)) {
session_start();
$_SESSION['username'] = $username;
$_SESSION['userhash'] = hashPassword($username, $password);
}
}
