<?php
session_start();
include_once "database.php";
$bad_login = false;
$db = new Database();
if (isset($_SESSION['current_user_id'])) {
$me = $db->getUserById($_SESSION['current_user_id']);
}
if ($me === null && isset($_POST['action']) && $_POST['action'] === 'login') {
if (isset($_POST['username']) && isset($_POST['password'])) {
if ($me = $db->authenticate($_POST['username'], $_POST['password'])) {
$_SESSION['current_user_id'] = $me->id;
} else {
$bad_login = true;
}
}
}
$pages = array();
$dir = opendir("pages");
while ($entry = readdir($dir)) {
if (preg_match('/\\.php$/', $entry)) {
$pages[substr($entry, 0, -4)] = 'pages/' . $entry;
}
}
closedir($dir);
$page = isset($_GET['page']) ? $_GET['page'] : "home";
if (!isset($pages[$page])) {
$page = "home";
}
include $pages[$page];
