31 lines
992 B
PHP
31 lines
992 B
PHP
<?php
|
|
|
|
include '../../config/config.php';
|
|
|
|
try {
|
|
|
|
$bdd = new \PDO("mysql:host=$db_server;dbname=$db_name", $db_username, $db_password);
|
|
if (isset($_POST['nom_connecte']) && isset($_POST['mdp']) != "") {
|
|
|
|
$params["username"] = $_POST['nom_connecte'];
|
|
$requete = "SELECT username, password
|
|
FROM users
|
|
WHERE username = :username";
|
|
$query = $bdd->prepare($requete);
|
|
$query->execute($params);
|
|
$row = $query->fetch(PDO::FETCH_ASSOC);
|
|
if (password_verify($_POST['mdp'],$row['password'])) {
|
|
session_start();
|
|
$_SESSION['user']=$row['username'];
|
|
echo '{"valide":true,"username":"'.$row['username'].'"}';
|
|
} else {
|
|
echo '{"valide":false}';
|
|
}
|
|
} else {
|
|
$response['status'] = 200;
|
|
$response['message'] = "Invalid Request!";
|
|
}
|
|
} catch (PDOException $e) {
|
|
echo "Erreur : " . $e->getMessage() . "<br/>";
|
|
}
|