Here is what I have so far:
Code: Select all
<?php
class Authenticate{
private $data;
//private $session;
private $db;
private $authorized;
public function __construct(Registry $Registry, $use_token=false, $hash="sha1"){
$this->data = $Registry->get('Request');
//$this->session = $Registry->get('Session');
$this->db = $Registry->get('MySQL');
}
public function verify($input, $match){
if($this->hash($input) == $match) $this->authorized = true;
}
public function is_authorized(){
return $this->authorized;
}
}
?>Code: Select all
<?php
include('classes/Registry.inc.php');
$Registry = new Registry('classes/');
$Registry->register('Request');
$Registry->register('Session');
$Registry->register('MySQL', null, 'localhost', 'username', 'password', 'my_database');
$Request = $Registry->get('Request');
$Session = $Registry->get('Session');
$Db = $Registry->get('MySQL');
$Registry->register('Authenticate', null, $Registry);
// Want this to be more oop - I don't like all this...
if($Request->is_post()){
if($Request->has('username')){
$input_user = $Request->get('username');
$select_user = "SELECT * FROM `users` WHERE `username` = '" . $input_user . "';";
echo $select_user;
$User = $Db->query($select_user);
if($User->length() == 1){
$auth = $Registry->get('Authenticate');
$auth->verify($Request->get('password'), $User->password);
if($auth->is_authorized()){
echo "You are in!";
}
}
}
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8"/>
<title>Authenticate</title>
</head>
<body>
<pre><?php
print_r($Registry);
//print_r($auth);
?></pre>
<form name="form" method="post" action="">
<input type="text" name="username" value="<?php echo $Request->get('username'); ?>" />
<input type="password" name="password" value="" />
<input type="hidden" name="" value="" />
<input type="submit" value="Login" />
</form>
</body>
</html>