Can always login from login page, even if already logged
This commit is contained in:
parent
0fdc0703f6
commit
ee2147cf74
@ -1,34 +1,29 @@
|
||||
<?php
|
||||
if (!defined('ONYX')) exit;
|
||||
|
||||
if ($SESS->level < 1)
|
||||
if (isset($_POST['username']) && isset($_POST['password']))
|
||||
{
|
||||
if (isset($_POST['username']) && isset($_POST['password']))
|
||||
{
|
||||
$username = $_POST['username'];
|
||||
$password = $_POST['password'];
|
||||
$username = $_POST['username'];
|
||||
$password = $_POST['password'];
|
||||
|
||||
$bdd = new BDD();
|
||||
$bdd = new BDD();
|
||||
|
||||
// TODO: use function
|
||||
$hash = mdp($bdd->escape($username), $bdd->escape($password));
|
||||
$result = $bdd->unique_query("SELECT username, auth_level FROM users
|
||||
// TODO: use function
|
||||
$bdd->escape($username);
|
||||
$bdd->escape($password);
|
||||
$hash = mdp($username, $password);
|
||||
$result = $bdd->unique_query("SELECT id, username, auth_level FROM users
|
||||
WHERE username='$username'
|
||||
AND password=unhex('$hash')");
|
||||
|
||||
if (!empty($result) && $result['auth_level'] != 0)
|
||||
{
|
||||
$SESS->level = $result['auth_level'];
|
||||
$SESS->values = $result;
|
||||
$SESS->put($username);
|
||||
header("Location: /home");
|
||||
exit;
|
||||
}
|
||||
}
|
||||
$page = "public/login";
|
||||
}
|
||||
else
|
||||
{
|
||||
// Show some page ?
|
||||
if (!empty($result) && $result['auth_level'] != 0)
|
||||
{
|
||||
$SESS->level = $result["auth_level"];
|
||||
$SESS->values = $result;
|
||||
$SESS->put($result["id"]);
|
||||
header("Location: /home");
|
||||
exit;
|
||||
}
|
||||
}
|
||||
|
||||
$page = "public/login";
|
||||
|
Loading…
Reference in New Issue
Block a user