-
Notifications
You must be signed in to change notification settings - Fork 0
/
loginDipendente.php
151 lines (117 loc) · 5.25 KB
/
loginDipendente.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
<!doctype html>
<html lang="en">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.5.0/css/bootstrap.min.css">
<link rel="stylesheet" href="css/style.css">
<title>LOGIN DIPENDENTE</title>
<!-- jQuery + Bootstrap JS -->
<script src="https://ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js"></script>
<script src="https://stackpath.bootstrapcdn.com/bootstrap/4.5.0/js/bootstrap.min.js"></script>
</head>
<body>
<?php
// Database connection
include('config/db.php');
global $wrongPwdErr, $accountNotExistErr, $emailPwdErr, $verificationRequiredErr, $email_empty_err, $pass_empty_err;
if(isset($_POST['login'])) {
$email_signin = $_POST['email_signin'];
$password_signin = $_POST['password_signin'];
// clean data
$user_email = filter_var($email_signin, FILTER_SANITIZE_EMAIL);
$pswd = mysqli_real_escape_string($connection, $password_signin);
/*create table employee(
-> ID INT PRIMARY KEY,
-> email varchar(255),
-> password varchar(255));*/
// Query if email exists in db
$sql = "SELECT * From employee WHERE email = '{$email_signin}' ";
$query = mysqli_query($connection, $sql);
$rowCount = mysqli_num_rows($query);
// If query fails, show the reason
if(!$query){
die("Query SQL Fallita: " . mysqli_error($connection));
}
if(!empty($email_signin) && !empty($password_signin)){
// Check if email exist
if($rowCount <= 0) {
$accountNotExistErr = '<div class="alert alert-danger">
Account non trovato.
</div>';
} else {
// Fetch user data and store in php session
while($row = mysqli_fetch_array($query)) {
$id = $row['ID'];
$email = $row['email'];
$pass_word = $row['password'];
}
// Verify password
$password = password_verify($password_signin, $pass_word);
if($email_signin == $email && $password_signin == $password) {
header("Location: ./dashboardDipendente.php");
$_SESSION['ID'] = $id;
$_SESSION['email'] = $email;
} else {
$emailPwdErr = '<div class="alert alert-danger">
Mail o Password Errata.
</div>';
}
}
} else {
if(empty($email_signin)){
$email_empty_err = "<div class='alert alert-danger email_alert'>
Inserire email.
</div>";
}
if(empty($password_signin)){
$pass_empty_err = "<div class='alert alert-danger email_alert'>
Inserire password.
</div>";
}
}
}
?>
<nav class="navbar navbar-expand-lg navbar-dark bg-primary fixed-top">
<div class="container">
<a class="navbar-brand" href="#">DRUGS SHOP - Area Riservata DIPENDENTE:</a>
<button class="navbar-toggler" type="button" data-toggle="collapse" data-target="#navbarColor02"
aria-controls="navbarColor02" aria-expanded="false" aria-label="Toggle navigation">
<span class="navbar-toggler-icon"></span>
</button>
<div class="collapse navbar-collapse" id="navbarColor02">
<ul class="navbar-nav ml-auto">
<li class="nav-item">
<a class="nav-link" href="./login.php">Area Riservata UTENTE</a>
</li>
</ul>
</div>
</div>
</nav>
<!-- Login form -->
<div class="App">
<div class="vertical-center">
<div class="inner-block">
<form action="" method="post">
<h3>Login Dipendente</h3>
<?php echo $accountNotExistErr; ?>
<?php echo $emailPwdErr; ?>
<?php echo $verificationRequiredErr; ?>
<?php echo $email_empty_err; ?>
<?php echo $pass_empty_err; ?>
<div class="form-group">
<label>Email</label>
<input type="email" class="form-control" name="email_signin" id="email_signin" />
</div>
<div class="form-group">
<label>Password</label>
<input type="password" class="form-control" name="password_signin"
id="password_signin" />
</div>
<button type="submit" name="login" id="sign_in" class="btn btn-outline-primary btn-lg btn-block">Login Dipendente</button>
</form>
</div>
</div>
</div>
</body>
</html>