36 lines
940 B
PHP
36 lines
940 B
PHP
<?php
|
|
require_once "../../../bootstrap.php";
|
|
require_once "Admin.php";
|
|
|
|
use Backend\Models\AdminUser;
|
|
|
|
//Start the php session
|
|
session_start();
|
|
|
|
if(isset($_POST['aLogin'])){
|
|
|
|
$userName = $_POST["userName"];
|
|
$password = $_POST["password"];
|
|
|
|
$user = AdminUser::firstWhere('user_name', $userName );
|
|
if($user){
|
|
$hashedPassword = $user->password;
|
|
if(password_verify($password, $hashedPassword )){
|
|
$_SESSION['userName'] = $userName;
|
|
$_SESSION['admin'] = true;
|
|
$_SESSION['success'] = "You are now logged in";
|
|
http_response_code(200);
|
|
}else{
|
|
session_destroy();
|
|
http_response_code(401);
|
|
echo json_encode(["message" => "wrong password"]);
|
|
}
|
|
|
|
}else{
|
|
session_destroy();
|
|
http_response_code(401);
|
|
echo json_encode(["message" => "admin don't exist"]);
|
|
}
|
|
}else{
|
|
http_response_code(400);
|
|
} |