/** * \brief Affiche la page de connexion et gère la connexion d'un utilisateur. */ public function signin() { switch ($_SERVER['REQUEST_METHOD']) { case 'GET': if (isset($_SESSION['user'])) { $_SESSION['user'] = $u->pseudo(); if (Utilisateur::is_admin($_SESSION['user'])) { $_SESSION['admin'] = 1; } show_message('message_success', "You're already connected as " . $_SESSION['user']); include 'views/home.php'; } else { include 'views/connexion.php'; } break; case 'POST': if (isset($_POST['login']) && isset($_POST['pw'])) { $u = Utilisateur::get_by_login(htmlspecialchars($_POST['login'])); if (!is_null($u)) { if ($u->mdp() == sha1($_POST['pw'])) { $_SESSION['user'] = $u->pseudo(); $_SESSION['idUser'] = $u->idUtilisateur(); if (Utilisateur::is_admin($_SESSION['user'])) { $_SESSION['admin'] = 1; } show_message('message_success', "Vous êtes connecté"); include 'views/home.php'; } else { show_message('message_error', "Echec de connexion : login ou mot de passe incorrect"); include 'views/connexion.php'; } } else { show_message('message_error', "Echec de connexion : login ou mot de passe incorrect"); include 'views/connexion.php'; } } else { show_message('message_error', "Données incompletes!"); include 'views/connexion.php'; } break; } }
public function commentaires() { if (isset($_SESSION['user'])) { if (Utilisateur::is_admin($_SESSION['user'])) { $c = Commentaire::get_all(); $users = array(); for ($i = 0; $i < count($c); $i++) { $users[] = Utilisateur::get_by_id($c[$i]->idUtilisateur()); } include 'views/adminComm.php'; } else { $_SESSION['message']['type'] = 'error'; $_SESSION['message']['text'] = "Vous n'êtes pas administrateur"; include 'views/home.php'; } } else { $_SESSION['message']['type'] = 'error'; $_SESSION['message']['text'] = "You aren't connected"; include 'views/connexion.php'; } }