Viewing File: /home/rareljzw/public_html/login.php
<?php
$PageTitle = "Connect";
include_once("./layout/headerlogin.php");
if(isset($_POST['loginuser'])){
$username = inputValidation($_POST['username']);
$acct_password = inputValidation($_POST['acct_password']);
$log = "SELECT * FROM users WHERE username =:username";
$stmt = $conn->prepare($log);
$stmt->execute([
'username'=>$username
]);
$user = $stmt->fetch(PDO::FETCH_ASSOC);
$username = $user['username'];
if($stmt->rowCount() === 0){
toast_alert("error","Invalid login details");
}else{
$validPassword = password_verify($acct_password, $user['acct_password']);
if ($validPassword === false){
toast_alert("error","Invalid login details");
}else{
if($user['acct_status'] === 'hold'){
toast_alert("error","Account on Hold, Kindly contact support to activate your account");
}else {
$device = $_SERVER['HTTP_USER_AGENT'];
$ipAddress = $_SERVER['REMOTE_ADDR'];
$nowDate = date('Y-m-d H:i:s');
$username = $user['username'];
$user_email = $user['acct_email'];
// $APP_URL = APP_URL;
$APP_NAME = WEB_TITLE;
$APP_URL = WEB_URL;
$message = $sendMail->LoginMsg($username,$device,$ipAddress,$nowDate,$APP_NAME, $APP_URL);
// User Email
$subject = "Security alert: New sign-in activity";
$email_message->send_mail($user_email, $message, $subject);
// Admin Email
}
if (true) {
//session_start();
// $_SESSION['nftwallet'] = $user['username'];
$_SESSION['nftwallet'] = $user['username'];
// $_COOKIE['firstVisit'] = $acct_no;
header("Location:./my-profile.php");
exit;
}
else {
toast_alert('error', 'Sorry something went wrong');
}
}
}
}
if(isset($_POST['createAccount'])){
$user_id = "0".(substr(number_format(time() * rand(), 0, '', ''), 0, 2));
$username = $_POST['username'];
$acct_email = $_POST['acct_email'];
$acct_password = $_POST['acct_password'];
$confirmPassword = $_POST['confirmPassword'];
// $secretkey = $_POST['secretkey'];
if($acct_password !== $confirmPassword){
toast_alert('error', 'Password not matched');
}else {
//checking exiting email
$usersVerified = "SELECT * FROM users WHERE username=:username or acct_email=:acct_email";
$stmt = $conn->prepare($usersVerified);
$stmt->execute([
'username' => $username,
// 'secretkey' => $secretkey,
'acct_email' => $acct_email
]);
if ($stmt->rowCount() > 0) {
toast_alert('error', 'Email or Phone Number Already Exit');
} else {
//INSERT INTO DATABASE
$acct_status = "active";
$registered = "INSERT INTO users (user_id,username,acct_email,acct_password,acct_status) VALUES(:user_id,:username,:acct_email,:acct_password,:acct_status)";
$reg = $conn->prepare($registered);
$reg->execute([
'user_id' => $user_id,
'username' => $username,
'acct_email' => $acct_email,
'acct_password' => password_hash((string)$acct_password, PASSWORD_BCRYPT),
'acct_status' => $acct_status
//'secretkey' => $secretkey
]);
// $sql2 = "SELECT username FROM users WHERE username ='$username' AND $acct_password = '$acct_password' ";
$log = "SELECT * FROM users WHERE username =:username";
$stmt = $conn->prepare($log);
$stmt->execute([
'username'=>$username
]);
$user = $stmt->fetch(PDO::FETCH_ASSOC);
$device = $_SERVER['HTTP_USER_AGENT'];
$ipAddress = $_SERVER['REMOTE_ADDR'];
$nowDate = date('Y-m-d H:i:s');
$username = $user['username'];
$user_email = $user['acct_email'];
// $APP_URL = APP_URL;
$APP_NAME = WEB_TITLE;
$APP_URL = WEB_URL;
$message = $sendMail->regMsgUser($username,$device,$ipAddress,$nowDate,$APP_NAME, $APP_URL);
// User Email
$subject = "Welcome to $APP_NAME";
$email_message->send_mail($user_email, $message, $subject);
// Admin Email
if (true) {
toast_alert("success", "Account registered, Login Now!", "Successfully!");
}
else {
toast_alert('error', 'Sorry something went wrong');
}
}
}
}
?>
<main>
<!-- Login -->
<section class="relative h-screen">
<div class="lg:flex lg:h-full">
<!-- Left -->
<div class="relative text-center lg:w-1/2">
<a href="/">
<img src="assets/front/img/login.jpg" alt="login"
class="absolute h-full w-full object-cover" />
</a>
<!-- Logo -->
<!--<a href="/" class="relative inline-block py-36">-->
<!-- <img src="./assets/front/img/<?= $settings['image'] ?>" class="inline-block max-h-7"-->
<!-- alt="<?= $settings['web_name'] ?> | NFT Marketplace" />-->
<!--</a>-->
</div>
<!-- Right -->
<div class="relative flex items-center justify-center p-[10%] lg:w-1/2">
<picture class="pointer-events-none absolute inset-0 -z-10 dark:hidden">
<img src="./assets/front/img/gradient_light.jpg" alt="gradient" class="h-full w-full" />
</picture>
<div class="w-full max-w-[25.625rem] text-center">
<h1 class="text-jacarta-700 font-display mb-6 text-4xl dark:text-white">Sign Up/Login</h1>
<p class="dark:text-jacarta-300 mb-10 text-lg leading-normal">
Login with your existing account or create a new Account.
<a href="index.php" class="text-accent">Home</a>
</p>
<!-- Tab Content -->
<div class="tab-content">
<!-- Ethereum -->
<div class="tab-pane fade show active" role="tabpanel"
aria-labelledby="ethereum-tab">
<button
class="js-wallet bg-accent hover:bg-accent-dark mb-4 flex w-full items-center justify-center rounded-full border-2 border-transparent py-4 px-8 text-center font-semibold text-white transition-all"
data-bs-toggle="modal" data-bs-target="#walletConnect">
<img src="https://deothemes.com/envato/xhibiter/html/img/wallets/wallet_connect_24.svg"
class="mr-2.5 inline-block h-6 w-6" alt="" />
<span>Login Username/Password</span>
</button>
<button
class="dark:bg-jacarta-700 dark:border-jacarta-600 border-jacarta-100 dark:hover:bg-accent hover:bg-accent text-jacarta-700 mb-4 flex w-full items-center justify-center rounded-full border-2 bg-white py-4 px-8 text-center font-semibold transition-all hover:border-transparent hover:text-white dark:text-white dark:hover:border-transparent" data-bs-toggle="modal" data-bs-target="#walletCreate">
<img src="https://deothemes.com/envato/xhibiter/html/img/wallets/wallet_connect_24.svg"
class="mr-2.5 inline-block h-6 w-6" alt="" />
<span>Create New Account</span>
</button>
</div>
<!-- end ethereum -->
</div>
</div>
</div>
</div>
</section>
<!-- end login -->
<?php
include_once("./layout/footerlogin.php");
?>
Back to Directory
File Manager
<