198 lines
8.3 KiB
PHP
198 lines
8.3 KiB
PHP
<?php
|
|
// Initialize the session
|
|
session_start();
|
|
|
|
// Check if the user is already logged in, if yes then redirect him to welcome page
|
|
if(isset($_SESSION["loggedin"]) && $_SESSION["loggedin"] === true){
|
|
header("location:tickets.php");
|
|
exit;
|
|
}
|
|
|
|
// Include config file
|
|
require_once "../assets/php/config.php";
|
|
|
|
// Define variables and initialize with empty values
|
|
$username = $password = "";
|
|
$username_err = $password_err = "";
|
|
|
|
// Processing form data when form is submitted
|
|
if($_SERVER["REQUEST_METHOD"] == "POST"){
|
|
|
|
// Check if username is empty
|
|
if(empty(trim($_POST["username"]))){
|
|
$username_err = "Please enter username.";
|
|
} else{
|
|
$username = trim($_POST["username"]);
|
|
}
|
|
|
|
// Check if password is empty
|
|
if(empty(trim($_POST["password"]))){
|
|
$password_err = "Please enter your password.";
|
|
} else{
|
|
$password = trim($_POST["password"]);
|
|
}
|
|
|
|
// Validate credentials
|
|
if(empty($username_err) && empty($password_err)){
|
|
// Prepare a select statement
|
|
$sql = "SELECT id, username, password FROM users WHERE username = ?";
|
|
|
|
if($stmt = mysqli_prepare($link, $sql)){
|
|
// Bind variables to the prepared statement as parameters
|
|
mysqli_stmt_bind_param($stmt, "s", $param_username);
|
|
|
|
// Set parameters
|
|
$param_username = $username;
|
|
|
|
// Attempt to execute the prepared statement
|
|
if(mysqli_stmt_execute($stmt)){
|
|
// Store result
|
|
mysqli_stmt_store_result($stmt);
|
|
|
|
// Check if username exists, if yes then verify password
|
|
if(mysqli_stmt_num_rows($stmt) == 1){
|
|
// Bind result variables
|
|
mysqli_stmt_bind_result($stmt, $id, $username, $hashed_password);
|
|
if(mysqli_stmt_fetch($stmt)){
|
|
if(password_verify($password, $hashed_password)){
|
|
// Password is correct, so start a new session
|
|
session_start();
|
|
|
|
// Store data in session variables
|
|
$_SESSION["loggedin"] = true;
|
|
$_SESSION["id"] = $id;
|
|
$_SESSION["username"] = $username;
|
|
|
|
// Redirect user to welcome page
|
|
header("location: tickets.php");
|
|
} else{
|
|
// Display an error message if password is not valid
|
|
$password_err = "The password you entered was not valid.";
|
|
}
|
|
}
|
|
} else{
|
|
// Display an error message if username doesn't exist
|
|
$username_err = "No account found with that username.";
|
|
}
|
|
} else{
|
|
echo "Oops! Something went wrong. Please try again later.";
|
|
}
|
|
}
|
|
|
|
// Close statement
|
|
mysqli_stmt_close($stmt);
|
|
}
|
|
|
|
// Close connection
|
|
mysqli_close($link);
|
|
}
|
|
?>
|
|
|
|
<!DOCTYPE html>
|
|
<html lang="en">
|
|
<head>
|
|
<title>SYSDesk - Login</title>
|
|
<meta charset="UTF-8">
|
|
<meta name="description" content="">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">
|
|
|
|
<link rel="shortcut icon" type="image/x-icon" href="../assets/favicon.ico" />
|
|
|
|
<link href="https://fonts.googleapis.com/css?family=Roboto:400,100,100italic,300,300italic,400italic,500,500italic,700italic,700,900,900italic" rel="stylesheet">
|
|
|
|
<!-- STYLESHEETS -->
|
|
<style type="text/css">
|
|
[fuse-cloak],
|
|
.fuse-cloak {
|
|
display: none !important;
|
|
}
|
|
</style>
|
|
|
|
<!-- Icons.css -->
|
|
<link type="text/css" rel="stylesheet" href="../assets/icons/fuse-icon-font/style.css">
|
|
<!-- Animate.css -->
|
|
<link type="text/css" rel="stylesheet" href="../assets/node_modules/animate.css/animate.min.css">
|
|
<!-- Perfect Scrollbar -->
|
|
<link type="text/css" rel="stylesheet" href="../assets/node_modules/perfect-scrollbar/css/perfect-scrollbar.css" />
|
|
<!-- Fuse Html -->
|
|
<link type="text/css" rel="stylesheet" href="../assets/fuse-html/fuse-html.min.css" />
|
|
<!-- Main CSS -->
|
|
<link type="text/css" rel="stylesheet" href="../assets/css/main.css">
|
|
<!-- Custom CSS -->
|
|
<link type="text/css" rel="stylesheet" href="../assets/css/custom.css">
|
|
<!-- / STYLESHEETS -->
|
|
|
|
<!-- JAVASCRIPT -->
|
|
<!-- jQuery -->
|
|
<script type="text/javascript" src="../assets/node_modules/jquery/dist/jquery.min.js"></script>
|
|
<!-- Mobile Detect -->
|
|
<script type="text/javascript" src="../assets/node_modules/mobile-detect/mobile-detect.min.js"></script>
|
|
<!-- Perfect Scrollbar -->
|
|
<script type="text/javascript" src="../assets/node_modules/perfect-scrollbar/dist/perfect-scrollbar.min.js"></script>
|
|
<!-- Popper.js -->
|
|
<script type="text/javascript" src="../assets/node_modules/popper.js/dist/umd/popper.min.js"></script>
|
|
<!-- Bootstrap -->
|
|
<script type="text/javascript" src="../assets/node_modules/bootstrap/dist/js/bootstrap.min.js"></script>
|
|
<!-- Fuse Html -->
|
|
<script type="text/javascript" src="../assets/fuse-html/fuse-html.min.js"></script>
|
|
<!-- Main JS -->
|
|
<script type="text/javascript" src="../assets/js/main.js"></script>
|
|
<!-- / JAVASCRIPT -->
|
|
</head>
|
|
|
|
<body class="layout layout-vertical layout-left-navigation layout-below-toolbar layout-below-footer">
|
|
<main>
|
|
<div id="wrapper">
|
|
<div class="content-wrapper">
|
|
<nav id="toolbar" class="bg-white">
|
|
<div class="row no-gutters align-items-center flex-nowrap">
|
|
<div class="no-gutters align-items-center flex-nowrap">
|
|
<p class="texttoolbar row align-items-center no-gutters px-2 px-sm-4" id="texttoolbar">SYSDesk</p>
|
|
</div>
|
|
<div class="col">
|
|
</div>
|
|
<div class="col-auto">
|
|
<div class="row no-gutters align-items-center justify-content-end">
|
|
<a href="../index.html" class="logintoolbar ripple icon row align-items-center no-gutters px-2 px-sm-4" role="button" id="logintoolbar" aria-haspopup="true" aria-expanded="false">Return</a>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</nav>
|
|
<div class="content custom-scrollbar">
|
|
|
|
<div id="login" class="p-8">
|
|
|
|
<div class="form-wrapper md-elevation-8 p-8">
|
|
|
|
<div class="logo bg-secondary icon-desktop-mac">
|
|
</div>
|
|
|
|
<div class="title mt-4">Log in to your account</div>
|
|
|
|
<form name="loginForm" novalidate action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="post">
|
|
|
|
<div class="form-group mb-4">
|
|
<label for="loginFormInputEmail">Username</label>
|
|
<input type="email" class="form-control" id="loginFormInputEmail" aria-describedby="emailHelp" value="<?php echo $username; ?>" name="username"/>
|
|
<span><?php echo $username_err; ?></span>
|
|
</div>
|
|
|
|
<div class="form-group mb-4" <?php echo (!empty($password_err)) ? 'has-error' : ''; ?>>
|
|
<label for="loginFormInputPassword">Password</label>
|
|
<input type="password" class="form-control" id="loginFormInputPassword" placeholder=" " name="password"/>
|
|
<span><?php echo $password_err; ?></span>
|
|
</div>
|
|
<button type="submit" class="submit-button btn btn-block btn-secondary my-4 mx-auto" aria-label="LOG IN">
|
|
LOG IN
|
|
</button>
|
|
<!-- <a href="reset-password.php">Reset Password </a> -->
|
|
</form>
|
|
</div>
|
|
</div>
|
|
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</main>
|
|
</body>
|
|
</html>
|