function authenticate()
{
$username = trim($_POST["username"]);
$password = trim($_POST["password"]);
$captcha = trim($_POST["captcha"]);
if ($username == '' || $password == '' || $captcha == '') {
set_login_error("Any emtpy field is not allowed");
} else {
include_once "/var/www/includes/captch_code.php";
if (check_code($captcha)) {
$cr = new crypto();
$password = $cr->one_way_crypt($password);
$u = new user();
if ($u->validate_user($username, $password)) {
$session = new user_session();
setcookie('app_session_id', $session->create_session_id($u->get_uid(), $u->get_uname(), $u->get_email()));
session_register($username);
header("Location: /challenges.php");
} else {
set_login_error("Authentication Failed");
}
} else {
set_login_error("Invalid Captcha");
}
}
}
<header>
<div id="logo">
<div id="logo_text">
<!-- class="logo_colour", allows you to change the colour of the text -->
<h1><a href="index.php">HackWeek<span class="logo_colour">#hackTheFlag</span></a></h1>
<h2>Hack like ninja!, play for pride, fun and prizes!</h2>
</div>
</div>
<nav>
<?php
include_once "/var/www/includes/error.php";
$msg = get_login_error();
if ($msg != '') {
set_login_error("");
?>
<div id="menu_container">
<center><h3 id="err_msg" style="color: red"><?php
echo $msg;
?>
</h3></center>
</div>
<?php
} else {
?>
<div id="menu_container">
<center><h3 id="err_msg" style="color: red"></h3></center>
</div>
<?php
}
