public function logIn() { //acquire user input if (isset($_POST)) { $username = $_POST['username']; // echo '$username='******'<br/>'; $password = $_POST['password']; // echo '$password='******'<br/>'; } else { } //check username and password $query = 'SELECT * FROM aca_user WHERE username = "******" AND password="******"'; // $query = "SELECT * FROM aca_user WHERE username = $username AND password = $password"; $this->db->setQuery($query); $user = $this->db->loadObject(); // session_start(); symfony does it for you if (empty($user)) { $this->setLoggedOut(); $this->setErrorMessage('Login Failed. Please Try Again'); } else { $this->setLoggedIn(); $this->setName($user->name); $this->setUserId($user->user_id); } }
public function login($username, $password) { // Check username and password $query = 'SELECT * FROM aca_user WHERE username="******" AND password="******"'; $this->db->setQuery($query); $user = $this->db->loadObject(); // fetches ONE row from the database! if (empty($user)) { $this->session->set('logged_in', 0); $this->session->set('error_message', 'Login failed, please try again'); } else { $this->session->set('logged_in', 1); $this->session->set('name', $user->name); // $user->name doesn't feel like it's right $this->session->set('user_id', $user->user_id); // $user->user_id doesn't feel like it's right } return new RedirectResponse('/'); }