Halaman utama Jelajahi Bantuan
Daftar Masuk
alancnet
/
sd-spreadsheet
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: c684759c19
Ranting Tag
sd-spreadsheet
/
www
/
api
/
login.php

login.php 990 B
Riwayat Mentahan

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950 
  1. <?php
    2. 

  2. 

  3. include '../../db.php';
    4. 

  4. 

  5. @session_start();
    6. 

  6. 

  7. 

  8. //pull auth parameters
    9. 

  9. $email = isset($_REQUEST['email']) ? $_REQUEST['email'] : null;
    10. 

  10. $password = isset($_REQUEST['password']) ? $_REQUEST['password'] : null;
    11. 

  11. 

  12. //make sure parameters are present
    13. 

  13. if(!$email || !$password)
    14. 

  14. {
    15. 

  15. 	http_response_code(400);
    16. 

  16. 	echo 'missing parameters: email or password';
    17. 

  17. 	return;
    18. 

  18. }
    19. 

  19. 

  20. //pull info on user from database
    21. 

  21. $stmt_file = $dbh->prepare("SELECT id_user, name, password FROM user WHERE email=:email");
    22. 

  22. $stmt_file->bindValue(':email', $email);
    23. 

  23. $stmt_file->execute();
    24. 

  24. $rows = $stmt_file->fetchAll(PDO::FETCH_ASSOC);
    25. 

  25. 

  26. //check if user missing
    27. 

  27. if(!count($rows))
    28. 

  28. {
    29. 

  29. 	http_response_code(404);
    30. 

  30. 	echo 'user not found';
    31. 

  31. 	return;
    32. 

  32. }
    33. 

  33. 

  34. //validate password entered
    35. 

  35. if(!password_verify($password, $rows[0]['password']))
    36. 

  36. {
    37. 

  37. 	http_response_code(403);
    38. 

  38. 	echo 'invalid password';
    39. 

  39. 	return;
    40. 

  40. }
    41. 

  41. 

  42. //set session vars for future calls
    43. 

  43. $_SESSION['id_user'] = $rows[0]['id_user'];
    44. 

  44. $_SESSION['name'] = $rows[0]['name'];
    45. 

  45. 

  46. //
    47. 

  47. echo 'OK';
    48. 

  48. 

  49. 

  50. ?>
    51.