query($query); $record=$this->resultSet(); if (isset($record[0]['pass'])){ if(sha1($_POST['psw'])==$record[0]['pass']){ $_SESSION['login']=1; $_SESSION['feedback']="Login Erfolgreich"; $_SESSION['name']=$_POST['name']; $_SESSION['admin']=$record[0]['admin']; $_SESSION['wichtel']=$this->getwichtel($record[0]['Wichtel']); header("Location: /user/home"); }else{ $_SESSION['feedback']="Login nicht Erfolgreich"; } }else{ $_SESSION['feedback']="Nutzer unbekannt"; } } }else{ $_SESSION['feedback']=""; } } public function regis(){ return $this->reg; } public function register(){ $this->reg=false; if(isset($_POST['regi'])){ $this->name=$_POST['name']; $this->mail=$_POST['mail']; $this->psw=$_POST['psw']; $psw2=$_POST['psw2']; if($this->psw==$psw2){ // Insert into MySQL $this->query('INSERT INTO user (name, mail, pass, berechtigt) VALUES(:name, :mail, :pass, :ber)'); $this->bind(':name', $this->name); $this->bind(':mail', $this->mail); $this->bind(':pass', sha1($this->psw)); $this->bind(':ber', '0'); $this->execute(); $_SESSION['reg']=true; echo("erfolg"); } } } public function logout(){ $_SESSION['login']=false; $_SESSION['feedback']="Logout erfolgreich"; header("Location: /home/index"); } public function change(){ if(isset($_POST['old'])){ if($_POST['new']==$_POST['new2']){ $pass=sha1($_POST['new']); $name=$_SESSION['name']; $this->query("UPDATE user SET pass=':pass' WHERE name=':name'"); $this->bind(':pass', $pass); $this->bind(':name', $name); $this->execute(); } } } public function home(){ } }