37 lines
991 B
PHP
37 lines
991 B
PHP
<?php
|
|
require_once "../../../bootstrap.php";
|
|
require_once "Admin.php";
|
|
|
|
use Backend\Models\AdminUser;
|
|
|
|
//Start the php session
|
|
session_start();
|
|
|
|
if (isset($_POST['aLogin'])) {
|
|
|
|
$userName = $_POST["userName"];
|
|
$password = $_POST["password"];
|
|
|
|
$user = AdminUser::firstWhere('user_name', $userName);
|
|
if ($user) {
|
|
$hashedPassword = $user->password;
|
|
if (password_verify($password, $hashedPassword)) {
|
|
$_SESSION['userName'] = $userName;
|
|
$_SESSION['admin'] = true;
|
|
//$_SESSION['success'] = "You are now logged in";
|
|
http_response_code(200);
|
|
makeAdminLogin($userName);
|
|
} else {
|
|
session_destroy();
|
|
http_response_code(401);
|
|
echo json_encode(["message" => "wrong password"]);
|
|
}
|
|
|
|
} else {
|
|
session_destroy();
|
|
http_response_code(401);
|
|
echo json_encode(["message" => "admin don't exist"]);
|
|
}
|
|
} else {
|
|
http_response_code(400);
|
|
} |