siteWeb/sign_in.php

<!-- Il est conseillé d'aller à l'adresse https://serny-nsi.alwaysdata.net/-->
<?php
/*
Faire de la sécurité et de l'optimisation
Ce code est mauvais
*/
$servername = 'mysql-serny-nsi.alwaysdata.net';
$username = 'serny-nsi';
$mdp = 'ecole9090*';

$bdd = new PDO('mysql:host=mysql-serny-nsi.alwaysdata.net;dbname=serny-nsi_main', $username, $mdp);


if (isset($_POST['submit'])) {
	$response ="here2";
  if (isset($_POST['f_email']) AND !empty($_POST['f_email']) AND isset($_POST['f_password']) AND !empty($_POST['f_password'])) {
    $email = htmlspecialchars($_POST['f_email']);
    $password = htmlspecialchars($_POST['f_password']);
    $look = $bdd->prepare("SELECT * FROM membres WHERE mail = ?");
    $look->execute(array($email));
	$check = $look->fetch();
	$response ="here";
    if ($check['mail'] != $email) {
	  $response = "Ce compte n'existe pas.";
    }
    else {
      if (password_verify($password, $check['password'])) {
		$response = "Vous êtes maintenant connecté.";
		$response ="Vous avez été correctement connecté";
        // header('location: https://serny-nsi.alwaysdata.net');
        } else {
        $response = "Le mot de passe n'est pas valide.";
      }
    }
  } else {
  $response ="Veuillez remplir les champs ci-dessus.";
  }
} 

?>
<!DOCTYPE html>
<html lang="fr">

<head>
	<title>Conenxion</title>
	<meta charset="UTF-8">
	<link href="style/style_log.css" rel="stylesheet">
	<link rel="icon" type="image/x-icon" href="_content/favicon-32x32.png">
</head>

<body>
	<div class="log-area">
		<p>Connecte-toi pour accéder à plus de foncitonnalités</p>
		<form method="POST">
			<div class="f_inputs">
				<div>
					<label for="f_email">Adresse mail : </label><input type="email" name="f_email" id="f_email" maxlength="70"
						placeholder="Adresse mail">
				</div>
				<div>
					<label for="f_password">Mot de passe : </label><input type="password" name="f_password" id="f_password" maxlength="40"
						placeholder="Mot de passe">
				</div>
			</div>
			<div class="buttons">
				<div class="sign_up">
					<a href="sign_up.php">Pas de compte ?</a>
				</div>
				<div class="sign_in">
					<input type="submit" name="submit" value="Se connecter" id="submit">
				</div>
			</div>
			<p><?= $response ?></p>
		</form>
	</div>
</body>
</html>
rendu prefix 2 3 years ago			`<!-- Il est conseillé d'aller à l'adresse https://serny-nsi.alwaysdata.net/-->`
			`<?php`
			`/*`
			`Faire de la sécurité et de l'optimisation`
			`Ce code est mauvais`
			`*/`
sw 3 years ago			`$servername = 'mysql-serny-nsi.alwaysdata.net';`
			`$username = 'serny-nsi';`
			`$mdp = 'ecole9090*';`

			`$bdd = new PDO('mysql:host=mysql-serny-nsi.alwaysdata.net;dbname=serny-nsi_main', $username, $mdp);`


			`if (isset($_POST['submit'])) {`
			`$response ="here2";`
			`if (isset($_POST['f_email']) AND !empty($_POST['f_email']) AND isset($_POST['f_password']) AND !empty($_POST['f_password'])) {`
			`$email = htmlspecialchars($_POST['f_email']);`
			`$password = htmlspecialchars($_POST['f_password']);`
			`$look = $bdd->prepare("SELECT * FROM membres WHERE mail = ?");`
			`$look->execute(array($email));`
			`$check = $look->fetch();`
			`$response ="here";`
			`if ($check['mail'] != $email) {`
			`$response = "Ce compte n'existe pas.";`
			`}`
			`else {`
			`if (password_verify($password, $check['password'])) {`
rendu prefix 2 3 years ago			`$response = "Vous êtes maintenant connecté.";`
			`$response ="Vous avez été correctement connecté";`
			`// header('location: https://serny-nsi.alwaysdata.net');`
sw 3 years ago			`} else {`
			`$response = "Le mot de passe n'est pas valide.";`
			`}`
			`}`
			`} else {`
			`$response ="Veuillez remplir les champs ci-dessus.";`
			`}`
			`}`

			`?>`
			`<!DOCTYPE html>`
			`<html lang="fr">`

			`<head>`
			`<title>Conenxion</title>`
			`<meta charset="UTF-8">`
			`<link href="style/style_log.css" rel="stylesheet">`
			`<link rel="icon" type="image/x-icon" href="_content/favicon-32x32.png">`
			`</head>`

			`<body>`
			`<div class="log-area">`
			`<p>Connecte-toi pour accéder à plus de foncitonnalités</p>`
Check W3C Validator 3 years ago			`<form method="POST">`
sw 3 years ago			`<div class="f_inputs">`
			`<div>`
			`<label for="f_email">Adresse mail : </label><input type="email" name="f_email" id="f_email" maxlength="70"`
			`placeholder="Adresse mail">`
			`</div>`
			`<div>`
			`<label for="f_password">Mot de passe : </label><input type="password" name="f_password" id="f_password" maxlength="40"`
			`placeholder="Mot de passe">`
			`</div>`
			`</div>`
			`<div class="buttons">`
			`<div class="sign_up">`
			`<a href="sign_up.php">Pas de compte ?</a>`
			`</div>`
			`<div class="sign_in">`
			`<input type="submit" name="submit" value="Se connecter" id="submit">`
			`</div>`
			`</div>`
			`<p><?= $response ?></p>`
			`</form>`
			`</div>`
			`</body>`
sw 3 years ago			`</html>`