function connexion() { global $page; global $base; global $message; $page['gabarit'] = "base"; $page['vue'] = "connexion.vue.php"; if (isset($_POST['loginForm_sent'])) { $res = connexion_user($_POST['login'], $_POST['password']); if ($res == NULL) { $page['message'] = $message['erreur_login']; } else { $_SESSION['id_user'] = $res[0]['id_user']; $_SESSION['nom_prenom'] = $res[0]['prenom_user'] . ' ' . $res[0]['nom_user']; $roles = detail_affectation($res[0]['id_user']); $tab_role = array(); foreach ($roles as $r) { array_push($tab_role, $r['id_role']); } $_SESSION['role_user'] = $tab_role; $_SESSION['id_lieu'] = $res[0]['id_organisme']; header('Location: ' . $url . '?controleur=administration&tache=base'); } } }
die('You seem to be a bot.'); } $password = strip_tags($_POST['password']); $username = strip_tags($_POST['username']); // IF USERNAME EMPTY if (empty($username)) { array_push($error, "Please fill the username."); } //IF PASSWORD EMPTY if (empty($password)) { array_push($error, "Please fill the password."); } // IF NO ERROR if (count($error) <= 0) { // CHECK WHETHER A USER EXISTS $connected = connexion_user($username, $password, $link); if ($connected == 0) { array_push($error, "Your username and password don't match."); $_SESSION['username'] = $_POST['username']; $_SESSION['error'] = $error; header('Location:../../login.php'); } else { $_SESSION['user'] = create_user_session($connected); header('Location:../../manager.php'); } } else { $_SESSION['username'] = $_POST['username']; $_SESSION['error'] = $error; header('Location:../../login.php'); } }