function checkLoginStatus($config_username, $config_password, $post_username, $post_password)
{
if (!empty($post_username) && !empty($post_password)) {
if ($config_username == $post_username && password_verify($post_password, $config_password)) {
$_SESSION["activeLogin"] = true;
$_SESSION["username"] = $post_username;
$_SESSION["loginID"] = hash("sha256", $_SERVER["HTTP_USER_AGENT"] . $_SERVER['REMOTE_ADDR'], false);
$_SESSION["timeout"] = time();
return "Success";
} else {
return "Wrong login information";
}
} else {
if ($_SESSION["activeLogin"] != true || $_SESSION["username"] == "" || $_SESSION["loginID"] == "") {
$_SESSION = array();
return "";
} else {
$status = login_validation($config_username, $config_password);
return $status;
}
}
}
//start session
session_start();
//unset/destroy/empty session post
if (isset($_POST['unset']) && $_POST['unset'] == "unset") {
session_destroy();
$_SESSION = array();
header('location: index.php');
}
//verify with post, which form we are recieving posts from
//then decide where we should go, register, login, or exit.
//inside we will pass the entire post through to the function
if (isset($_POST['register']) && $_POST['register'] == "register") {
register_validation($_POST);
} else {
if (isset($_POST['login']) && $_POST['login'] == "login") {
login_validation($_POST);
} else {
session_destroy();
header('location:index.php');
}
}
//register validaiton
function register_validation($post)
{
//set error flags to 0
$error_flags = 0;
//first_name errors
if (!empty($_POST['first_name'])) {
$first_name = trim($_POST['first_name']);
$_SESSION['first_name'] = $first_name;
if (preg_match("/^[a-zA-Z ]*\$/", $first_name)) {
<?php
$error = '';
if (isset($_POST['submit'])) {
if (empty($_POST['usertype']) || empty($_POST['email']) || empty($_POST['password'])) {
$error = "Username or Password is invalid";
} else {
$dbc = dbConnect('local');
/*$usertype =mysql_real_escape_string($_POST['usertype']);
$email =mysql_real_escape_string($_POST['email']);
$password= mysql_real_escape_string($_POST['password']);*/
$usertype = $dbc->real_escape_string($_POST['usertype']);
$email = $dbc->real_escape_string($_POST['email']);
$password = $dbc->real_escape_string($_POST['password']);
$result = login_validation($usertype, $email, $password);
if ($result == 1) {
redirect_to("profile.php");
} else {
$error = $result;
}
}
}
function custom_login_function()
{
if (isset($_POST['submit'])) {
login_validation($_POST['username'], $_POST['password']);
// sanitize user form input
global $username, $password;
$username = sanitize_user($_POST['username']);
$password = esc_attr($_POST['password']);
// call @function complete_login to login
// only when no WP_error is found
complete_login($username, $password);
}
login_form($username, $password);
}
<?php
session_start();
// Config file/files
require "config/config.php";
require "functions.php";
$returnData = array();
$loginStatus = login_validation($username, $password);
if ($loginStatus == "Success") {
$outputDir = "uploads/";
//Thumbnail creation
function createThumb($fileName)
{
$outputDir = "uploads/";
$thumbDir = "uploads/thumb/";
if (preg_match('/[.](jpg)$/', $fileName) || preg_match('/[.](jpeg)$/', $fileName)) {
$image = imagecreatefromjpeg($outputDir . $fileName);
} else {
if (preg_match('/[.](gif)$/', $fileName)) {
$image = imagecreatefromgif($outputDir . $fileName);
} else {
if (preg_match('/[.](png)$/', $fileName)) {
$image = imagecreatefrompng($outputDir . $fileName);
}
}
}
$originalX = imagesx($image);
$originalY = imagesy($image);
$newX = 150;
$newY = floor($originalY * (150 / $originalX));
//$newXY = 100;
