Show sourcecode

The following files exists in this folder. Click to view.

Webserver1/Ovningar/Quiz/

account.php
create_quiz.js
create_quiz.php
fetch_table.php
frontpage.php
header.php
login.php
quiz.php
quiz_answer_finished.php
quiz_creation_finished.php
signup.php
style.css

`login.php`

81 lines UTF-8 Windows (CRLF)

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81


<?php

session_start();

include('../../incl/dbconnection.php');

/**

 * @var PDO $dbconn

 */

?>





<!DOCTYPE html>

<html lang="sv">



<head>

  <meta charset="UTF-8">

  <meta name="viewport" content="width=device-width, initial-scale=1.0">

  <title>Inloggning</title>

  <link rel="stylesheet" href="style.css">



</head>



<body>

  <div class="center-container" style="height: 95vh;">

    <div>

      <form action="" method="post">

        <?php

        // Försök logga in

        try {

          $username = isset($_POST['username']) ? $_POST['username'] : null;

          $password = isset($_POST['password']) ? $_POST['password'] : null;



          if ($username && $password) {

            $sqlSelect = "SELECT * FROM quiz_users WHERE username=?";

            $selectStmt = $dbconn->prepare($sqlSelect);

            $selectStmt->execute([$username]);

            $result = $selectStmt->fetch(PDO::FETCH_ASSOC);

            if ($result && password_verify($password, $result['password'])) {

              echo "<p class='text-center'>Inloggning lyckades! Skickar vidare dig...</p>";

              $_SESSION['isLoggedIn'] = true;

              $_SESSION['userId'] = $result['user_id'];

              $_SESSION['isAdmin'] = $result['is_admin'];

              $pageToSendTo = isset($_SESSION['lastVisited']) ? $_SESSION['lastVisited'] : "frontpage.php";

              header("Location:$pageToSendTo");

            } else {

              echo "<p class='text-center'>Inloggning misslyckades: Användarnamn eller lösenord hittades inte</p>";

            }

          }

        } catch (PDOException $e) {

          echo "<br>" . $e->getMessage();

        }



        // Kolla om vi blivit redirectade hit

        $redirect = isset($_GET["redirect"]) ? $_GET["redirect"] : "";

        if ($redirect == true) {

        ?>

          <h1 class="text-center">För att fortsätta måste du logga in!</h1>

          <hr style="width: 100%;">

        <?php

        }

        ?>



        <h2>Logga in</h2>

        <div class="row">

          <label for="username">Användarnamn:</label>

          <input type="text" name="username" id="username" autocomplete="off" required>

        </div>

        <div class="row">

          <label for="password">Lösenord:</label>

          <input type="password" name="password" id="password" autocomplete="off" required>

        </div>

        <div class="row">

          <input type="submit" value="Logga in">

        </div>

        <div class="row">

          <p style="font-size:small">Inget konto? <a href="signup.php">Skapa ett konto</a></p>

        </div>

      </form>

    </div>

  </div>

</body>



</html>