X-Git-Url: https://jasonwoof.com/gitweb/?a=blobdiff_plain;f=login.php;h=5dcaa647e58c2fa5bab3bffa48fa15569a6ea737;hb=a8968f20cd3b06b2cc19de6871019d4aaae6b79b;hp=0d77fa27968371af888e0abdf1ea928e575f3264;hpb=5cc6274a058be9a9cf9d7d3e1d169870cad90353;p=contractor-progress.git

diff --git a/login.php b/login.php
index 0d77fa2..5dcaa64 100644
--- a/login.php
+++ b/login.php
@@ -21,14 +21,20 @@ function login_main() {
 	if(isset($_REQUEST['username'])) {
 		list($username, $password, $url) = login_get_fields();
 
-		if($username == 'test' && $password == 'test') {
-			message("Logged in successfully.");
-			session_new();
-			session_set('auth_username', "admin:$id");
-			if($url) {
-				return $url;
-			} else {
-				return './';
+		$row = db_get_row('people', 'id,password', 'where username=%"', $username);
+
+		if($row) {
+			list($id, $password_hash) = $row;
+
+			if($password_hash && check_password($password_hash, $password)) {
+				message("Logged in successfully.");
+				session_new();
+				session_set('auth_username', "$id");
+				if($url) {
+					return $url;
+				} else {
+					return './';
+				}
 			}
 		}