1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58
| <?php
session_start();
ob_start();
require_once('config/cn.php');
?>
<?php
if(!isset($_SESSION['id_clt']) && !isset($_SESSION['pseudo'])){
if (!empty($_GET) && strlen($_GET['pseudo']) >= 4 && $_GET['password'] != "")
{
$pseudo = htmlspecialchars($_GET['pseudo']);
$pass = htmlspecialchars($_GET['password']);
$password = sha1($pass);
$sql = 'SELECT id_clt, pseudo, email FROM compte_bicf WHERE pseudo =:pseudo AND password = :password';
$req = $bdd -> prepare($sql);
$req -> bindValue('pseudo', $pseudo, PDO::PARAM_STR);
$req -> bindValue('password', $password, PDO::PARAM_STR);
$req -> execute();
$count = $req -> fetch();
if (!$count)
{
$error_code = 'Identifiants incorrects';
}
else
{
$_SESSION['pseudo'] = $pseudo;
$_SESSION['id_clt'] = $count['id_clt'];
$_SESSION['email'] = $count['email'];
if(isset($_GET['cookie']))
{
setcookie('pseudo', $_SESSION['pseudo'], time() + 365*24*3600, null, null, false, true);
setcookie('email', $_SESSION['email'], time() + 365*24*3600, null, null, false, true);
}
}
header('location:accueil1.php');
}
else
{
if (!empty($_GET) && strlen($_GET['pseudo']) < 4) {
$error_pseudo = 'Pseudo trop court';
}
if (!empty($_GET) && $_GET['password'] == "") {
$error_password = 'Mot de passe obligatoire';
}
}
}
else{
header('location:accueil.php');
}
ob_end_flush();
?> |
Partager