DFiNE
/
OdenseTrack
Tarkkaile 1
Äänestä 1
Fork 0
Koodi Ongelmat 3 Pull-pyynnöt 0 Julkaisut 2 Wiki Activity
"OdenseTrack" is a school assignment/project from AspIT https://aspit.dfine.net/odensetrack
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
70 Commitit
1 Haara
Puu: rls1
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from 'rls1'
${ noResults }
OdenseTrack/classes/user.class.php

user.class.php 2.1KB
Pysyvä linkki Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. <?php

  2. 

  3. class User {

  4. 

  5.     public static function hashPass($password) {

  6.         return password_hash($password, PASSWORD_ARGON2I);

  7.     }

  8. 

  9.     private static function verifyPass($password, $hash) {

  10.         if (password_verify($password, $hash)) {

  11.             return true;

  12.         } else {

  13.             return false;

  14.         }

  15.     }

  16. 

  17.     public static function checkLogin() {

  18.         if (isset($_SESSION['user'])) {

  19.             $db = new DBClass();

  20.             $query = "SELECT * FROM `" . Config::$db_tableusers . "` WHERE `id` = '" . $_SESSION['user'] . "'";

  21.             if ($db->numRows($db->query($query)) != 1) {

  22.                 return false;

  23.             } else {

  24.                 return true;

  25.             }

  26.         } else {

  27.             return false;

  28.         }

  29.     }

  30. 

  31.     public static function checkLevel($requiredlevel) {

  32.         if (User::checkLogin()) { // We are logged in, lets continue this check

  33.             $db = new DBClass();

  34.             $query = "SELECT level FROM `" . Config::$db_tableusers . "` WHERE `id` = '" . $_SESSION['user'] . "'";

  35.             $result = $db->fetchAll($db->query($query))[0];

  36. 

  37.             if ($result['level'] >= $requiredlevel) { // OK, our user DOES have the required level, return true

  38.                 return true;

  39.             } else { // User was authenticated, but doesnt have the required level

  40.                 return false;

  41.             }

  42.         } else { // If user wasnt logged in, we return false

  43.             return false;

  44.         }

  45.     }

  46. 

  47.     public static function userLevel() {

  48. 

  49.         // _SESSION['userlevel'] shows users current level. 50 = admin, 80 = leadadmin 100 = sysop

  50.         if (!isset($_SESSION['lvl'])) {

  51.             return 0;

  52.         } else {

  53.             $level = $_SESSION['lvl'];

  54. 

  55.             $db = new DBClass();

  56.             $query = "SELECT * FROM `" . Config::$db_tableusers . "` WHERE `id` = '" . $_SESSION['user'] . "' AND `level` = '" . $level . "'";

  57.             // We check the userlevel, and verifies that the userlevel exist on the user.

  58.             if ($db->numRows($db->query($query)) != 1) {

  59.                 return 0;

  60.             } else {

  61.                 return $level;

  62.             }

  63.         }

  64.     }

  65. 

  66. }