JasonWoof Got questions, comments, patches, etc.? Contact Jason Woofenden
gitweb / contractor-progress.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
added real logins, login administration, task viewer page, contractor main page
[contractor-progress.git] / login.php
diff --git a/login.php b/login.php
index 0d77fa2..5dcaa64 100644 (file)
--- a/login.php
+++ b/login.php
@@ -21,14 +21,20 @@ function login_main() {
        if(isset($_REQUEST['username'])) {
                list($username, $password, $url) = login_get_fields();
 
-               if($username == 'test' && $password == 'test') {
-                       message("Logged in successfully.");
-                       session_new();
-                       session_set('auth_username', "admin:$id");
-                       if($url) {
-                               return $url;
-                       } else {
-                               return './';
+               $row = db_get_row('people', 'id,password', 'where username=%"', $username);
+
+               if($row) {
+                       list($id, $password_hash) = $row;
+
+                       if($password_hash && check_password($password_hash, $password)) {
+                               message("Logged in successfully.");
+                               session_new();
+                               session_set('auth_username', "$id");
+                               if($url) {
+                                       return $url;
+                               } else {
+                                       return './';
+                               }
                        }
                }
 
Contractor Progress; a website for tracking projects including itemized pricing