Esempio n. 1
0
$user->load($_SESSION['user_id']);
if (!empty($_POST['submitted'])) {
    if (isset($_POST['btnDelete'])) {
        $user->delete();
        unset($_SESSION['user_id']);
        DAO::getConnection()->header('Location: registration.php');
        exit;
    }
    $rules = array();
    $rules['name'] = 'length[40]';
    $rules['surname'] = 'length[40]';
    $rules['email'] = 'required|email|length[50]';
    $rules['password'] = '******';
    $rules['confirm_password'] = '******';
    $validation = new \validation_library\FormValidation();
    $validation->set_rules($rules);
    $allGood = $validation->validate();
    if (strcmp($_POST['password'], $_POST['confirm_password']) != 0) {
        $allGood = false;
    }
    if ($allGood) {
        $user->__set('name', htmlentities($_POST['name']));
        $user->__set('surname', htmlentities($_POST['surname']));
        $user->__set('email', htmlentities($_POST['email']));
        $user->__set('password', sha1($_POST['password']));
        $user->save();
        header('Location: index.php');
    } else {
        if (empty($validation->validation_errors())) {
            echo "Password doesn't match";
        } else {
Esempio n. 2
0
 * Created by PhpStorm.
 * User: martinmatak
 * Date: 10/03/16
 * Time: 10:26
 */
require_once 'Autoloader.php';
session_start();
if (isset($_SESSION['user_id'])) {
    header('Location: index.php');
}
if (!empty($_POST['submitted'])) {
    $formValidation = new \validation_library\FormValidation();
    $rules = array();
    $rules['username'] = '******';
    $rules['password'] = '******';
    $formValidation->set_rules($rules);
    if ($formValidation->validate()) {
        $query = \db\DAO::getInstance()->prepare("SELECT id FROM Users WHERE username = ? AND password = ?");
        try {
            $query->execute([htmlentities($_POST["username"]), sha1($_POST["password"])]);
            //ako je upit djelovao na neki redak
            if ($query->rowCount() > 0) {
                $row = $query->fetch();
                $_SESSION["user_id"] = $row->id;
                header('Location: index.php');
            } else {
                echo "Wrong email or password.";
            }
        } catch (PDOException $e) {
            $errorMessage = "Please, try again or contact admin.";
        }