1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21
| <?php
require('../connexion/config.php');
session_start();
if (isset($_POST['username'])){
$username = stripslashes($_REQUEST['username']);
$username = mysqli_real_escape_string($conn, $username);
$password = stripslashes($_REQUEST['password']);
$password = mysqli_real_escape_string($conn, $password);
$query = "SELECT * FROM `users` WHERE email='$username' and password='".hash('sha256', $password)."'";
$result = mysqli_query($conn,$query) ;
$rows = mysqli_num_rows($result);
if($rows == 1){
$_SESSION['username'] = $username;
header("Location: ../extranet.php");
exit();
}else{
$message = "Le nom d'utilisateur ou le mot de passe est incorrect.";
}
}
?> |