public function updateUserToDb($VAR, $id)
{
#Passwort absichern
$PassSec = new password();
if (!empty($VAR['0']['password'])) {
$passwort = $PassSec->createPassword($VAR['0']['password']);
#Neues Passwort an Array
$VAR['0']['password'] = $passwort;
} else {
unset($VAR['0']['password']);
}
#Senden var löschen
unset($VAR['0']['update']);
#User in die DB eintragen
\DB::update('accounts', $VAR, "id=%s", $id);
}
//$newsListing = DB::query("SELECT * FROM news WHERE is_aktiv=%s AND login_news=%s", '1', '1');
$app->render('authentication/login.phtml', compact('newsListing'));
})->name('login');
// fuehrt den login des benutzers durch
$app->post('/login', function () use($app) {
$username = $app->request()->post('username');
$password = $app->request()->post('password');
if (!$username || !$password) {
$app->redirect('/login', 303);
}
$account = DB::queryFirstRow("SELECT * FROM accounts WHERE kundennummer=%s", $username);
if (!$account) {
$app->flash('error', _('Keinen Account gefunden'));
$app->redirect('/', 303);
}
$passwordIsCorrect = password::verifyPassword($password, $account['password']);
if (!$passwordIsCorrect || !$account['is_aktiv']) {
$app->flash('error', _('Benutzer nicht gefunden!'));
$app->redirect('/login', 303);
}
$config = DB::queryFirstRow("SELECT wartungsmodus FROM config WHERE id=%s", '1');
if ($config['wartungsmodus'] == 1 and $account['usr_grp'] != 'adm') {
$growl = new \core\sp_special\growl();
$app->flash('error', _('Keinen Account gefunden'));
$app->redirect('/', 303);
}
# Session setzen
if (empty($account['local'])) {
$local = DB::queryFirstRow("SELECT default_local FROM config WHERE id=%s", '1');
$_SESSION['local'] = $local['default_local'];
} else {
