141 lines
		
	
	
		
			5.9 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			141 lines
		
	
	
		
			5.9 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php
 | |
| require_once 'includes/connect.php';
 | |
| require_once 'includes/checkuser.php';
 | |
| 
 | |
| require_once 'includes/i18n/languages.php';
 | |
| require_once 'includes/i18n/getlang.php';
 | |
| require_once 'includes/i18n/' . $lang . '.php';
 | |
| 
 | |
| require_once 'includes/version.php';
 | |
| 
 | |
| if ($userCount == 0) {
 | |
|     header("Location: registration.php");
 | |
|     exit();
 | |
| }
 | |
| 
 | |
| session_start();
 | |
| if (isset($_SESSION['loggedin']) && $_SESSION['loggedin'] === true) {
 | |
|     $db->close();
 | |
|     header("Location: .");
 | |
|     exit();
 | |
| } 
 | |
| 
 | |
| $theme = "light";
 | |
| if (isset($_COOKIE['theme'])) {
 | |
|     $theme = $_COOKIE['theme'];
 | |
| }
 | |
| 
 | |
| $colorTheme = "blue";
 | |
| if (isset($_COOKIE['colorTheme'])) {
 | |
|     $colorTheme = $_COOKIE['colorTheme'];
 | |
| }
 | |
| 
 | |
| $loginFailed = false;
 | |
| if (isset($_POST['username']) && isset($_POST['password'])) {
 | |
|     $username = $_POST['username'];
 | |
|     $password = $_POST['password'];
 | |
|     $rememberMe = isset($_POST['remember']) ? true : false;
 | |
| 
 | |
|     $query = "SELECT id, password, main_currency, language FROM user WHERE username = :username";
 | |
|     $stmt = $db->prepare($query);
 | |
|     $stmt->bindValue(':username', $username, SQLITE3_TEXT);
 | |
|     $result = $stmt->execute();
 | |
|     $row = $result->fetchArray(SQLITE3_ASSOC);
 | |
| 
 | |
|     if ($row) {
 | |
|         $hashedPasswordFromDb = $row['password'];
 | |
|         $userId = $row['id'];
 | |
|         $main_currency = $row['main_currency'];
 | |
|         $language = $row['language'];
 | |
|         if (password_verify($password, $hashedPasswordFromDb)) {
 | |
|             $_SESSION['username'] = $username;
 | |
|             $_SESSION['loggedin'] = true;
 | |
|             $_SESSION['main_currency'] = $main_currency;
 | |
|             $_SESSION['userId'] = $userId;
 | |
|             $cookieExpire = time() + (30 * 24 * 60 * 60);
 | |
|             setcookie('language', $language, $cookieExpire);
 | |
|             if ($rememberMe) {
 | |
|                 $token = bin2hex(random_bytes(32));
 | |
|                 $addLoginTokens = "INSERT INTO login_tokens (user_id, token) VALUES (?, ?)";
 | |
|                 $addLoginTokensStmt = $db->prepare($addLoginTokens);
 | |
|                 $addLoginTokensStmt->bindValue(1, $userId, SQLITE3_INTEGER);
 | |
|                 $addLoginTokensStmt->bindValue(2, $token, SQLITE3_TEXT);
 | |
|                 $addLoginTokensStmt->execute();
 | |
|                 $_SESSION['token'] = $token;
 | |
|                 $cookieValue = $username . "|" . $token . "|" . $main_currency;
 | |
|                 setcookie('wallos_login', $cookieValue, $cookieExpire);
 | |
|             }
 | |
|             $db->close();
 | |
|             header("Location: .");
 | |
|             exit();
 | |
|         } else {
 | |
|             $loginFailed = true;
 | |
|         }
 | |
|     } else {
 | |
|         $loginFailed = true;
 | |
|     }
 | |
| }
 | |
| ?>
 | |
| <!DOCTYPE html>
 | |
| <html dir="<?= $languages[$lang]['dir'] ?>">
 | |
| <head>
 | |
|     <meta charset="UTF-8">
 | |
|     <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no">
 | |
|     <meta name="theme-color" content="<?= $theme == "light" ? "#FFFFFF" : "#222222" ?>"/>
 | |
|     <title>Wallos - Subscription Tracker</title>
 | |
|     <link rel="icon" type="image/png" href="images/icon/favicon.ico" sizes="16x16">
 | |
|     <link rel="apple-touch-icon" sizes="180x180" href="images/icon/apple-touch-icon.png">
 | |
|     <link rel="manifest" href="manifest.json">
 | |
|     <link rel="stylesheet" href="styles/theme.css?<?= $version ?>">
 | |
|     <link rel="stylesheet" href="styles/login.css?<?= $version ?>">
 | |
|     <link rel="stylesheet" href="styles/themes/red.css?<?= $version ?>" id="red-theme" <?= $colorTheme != "red" ? "disabled" : "" ?>>
 | |
|     <link rel="stylesheet" href="styles/themes/green.css?<?= $version ?>" id="green-theme" <?= $colorTheme != "green" ? "disabled" : "" ?>>
 | |
|     <link rel="stylesheet" href="styles/themes/yellow.css?<?= $version ?>" id="yellow-theme" <?= $colorTheme != "yellow" ? "disabled" : "" ?>>
 | |
|     <link rel="stylesheet" href="styles/barlow.css">
 | |
|     <link rel="stylesheet" href="styles/login-dark-theme.css?<?= $version ?>" id="dark-theme" <?= $theme == "light" ? "disabled" : "" ?>>
 | |
| </head>
 | |
| <body class="<?= $languages[$lang]['dir'] ?>">
 | |
|     <div class="content">
 | |
|         <section class="container">
 | |
|             <header>
 | |
|                 <?php 
 | |
|                     if ($theme == "light") {
 | |
|                         ?> <img src="images/siteicons/<?= $colorTheme ?>/wallos.png" alt="Wallos Logo" title="Wallos - Subscription Tracker" width="215" /> <?php
 | |
|                     } else {
 | |
|                         ?> <img src="images/siteicons/<?= $colorTheme ?>/walloswhite.png" alt="Wallos Logo" title="Wallos - Subscription Tracker" width="215" /> <?php
 | |
|                     }
 | |
|                 ?>
 | |
|                 <p>
 | |
|                     <?= translate('please_login', $i18n) ?>
 | |
|                 </p>
 | |
|             </header>
 | |
|             <form action="login.php" method="post">
 | |
|                 <div class="form-group">
 | |
|                     <label for="username"><?= translate('username', $i18n) ?>:</label>
 | |
|                     <input type="text" id="username" name="username" required>
 | |
|                 </div>
 | |
|                 <div class="form-group">
 | |
|                     <label for="password"><?= translate('password', $i18n) ?>:</label>
 | |
|                     <input type="password" id="password" name="password" required>
 | |
|                 </div>
 | |
|                 <div class="form-group-inline">
 | |
|                     <input type="checkbox" id="remember" name="remember">
 | |
|                     <label for="remember"><?= translate('stay_logged_in', $i18n) ?></label>
 | |
|                 </div>
 | |
|                 <?php
 | |
|                     if ($loginFailed) {
 | |
|                         ?>
 | |
|                         <sup class="error">
 | |
|                             <?= translate('login_failed', $i18n) ?>.
 | |
|                         </sup>
 | |
|                         <?php
 | |
|                     }
 | |
|                 ?>
 | |
|                 <div class="form-group">
 | |
|                     <input type="submit" value="<?= translate('login', $i18n) ?>">
 | |
|                 </div>
 | |
|             </form>
 | |
|         </section>
 | |
|     </div>
 | |
| </body>
 | |
| </html>
 |