public function login() { $auth = $this->loadModel('AuthenticationModel'); require LIBS_PATH . '/password.php'; $data = json_decode(file_get_contents('php://input')); $authenticated = false; if (isset($data->email) && isset($data->password)) { $user = $auth->getUserData(array('email' => $data->email), true); if (password_verify($data->password, $user["password"])) { $authenticated = true; $token = md5(myuniqid()); $auth->insertAuthToken($token, $user["id"]); } } require 'application/views/_templates/header.json.php'; require 'application/views/json/login.php'; require 'application/views/_templates/footer.json.php'; }
/** * Inserts a new authentication token for the supplied userid * @param string $token authToken * @param int userid */ public function insertAuthToken($token, $userid) { $sql = "INSERT INTO `authentication_tokens` (`id`, `token`, `lastused`, `userid`) VALUES ('" . myuniqid() . "', '" . $token . "', CURRENT_TIMESTAMP(), {$userid});"; $query = $this->db->prepare($sql); $query->execute(); }