public function isLogin($data) { if ($this->isValidate($data)) { $username = trim(htmlspecialchars($data['username'], ENT_QUOTES)); $password = md5(trim(htmlspecialchars($data['password'], ENT_QUOTES))); $sql = "SELECT count(*) FROM `users` WHERE `username`=:username AND `password`=:password OR `email`=:username AND `password`=:password"; $result = $this->getInstance()->prepare($sql); $result->execute(array(':username' => $username, ':password' => $password)); $number_of_rows = $result->fetchColumn(); if ($number_of_rows > 0) { $userId = App::getUserId($username, $password); return $userId; } else { return false; } } else { return false; } }
function actionSignUp() { $model = new Signup(); if ($model->isValidate($_POST)) { $model->Save($_POST['reg-username'], $_POST['email'], $_POST['password1'], $_POST['number']); $username = trim(htmlspecialchars($_POST['reg-username'], ENT_QUOTES)); $password = md5(trim(htmlspecialchars($_POST['password1'], ENT_QUOTES))); $user_id = App::getUserId($username, $password); $_SESSION['isGuest'] = true; $_SESSION['user_id'] = $user_id; $this->view->render('ImageUpload'); } elseif (!App::isGuest()) { header('Location: http://local.test.com/'); } else { foreach ($model->errors as $error) { echo "<div class='error_div'>" . $error . "</div>"; } $this->view->render('LoginSignUp'); } }