set_charset("utf8mb4");
if ($_SERVER["REQUEST_METHOD"] === "POST")
{
if (isset($_POST["email"]) && isset($_POST["heslo"]))
{
$email = htmlspecialchars(trim($_POST["email"]));
$heslo = trim($_POST["heslo"]);
$dotaz = $db->prepare("SELECT uzivatele_registrace.email FROM uzivatele_registrace WHERE uzivatele_registrace.email LIKE ?");
$dotaz->bind_param("s", $email);
$dotaz->execute();
$vysledek = $dotaz->get_result();
if ($vysledek->num_rows == 1)
{
$heslo = "uigtunAFisofjoeGOP".$heslo."4fw8fe4gAWudjwof48";
$hash = hash("sha512", $heslo);
$hash = "fskoef784QW65fs53Xpwqfk".$hash;
$hash = hash("sha512", $hash);
$dotaz = $db->prepare("SELECT uzivatele_registrace.heslo FROM uzivatele_registrace WHERE uzivatele_registrace.heslo LIKE ?");
$dotaz->bind_param("s", $hash,);
$dotaz->execute();
$novyvysledek = $dotaz->get_result();
if ($novyvysledek->num_rows == 1)
{
$data = $novyvysledek->fetch_assoc();
session_start();
$_SESSION["id"] = $data["id"];
$_SESSION["email"] = $data["email"];
echo "Uzivatel nalezen
";
}
else
{
echo "Neplatne heslo
";
}
}
else
{
echo "Neexistuje uzivatel s timto Emailem
";
}
}
print_r($_POST);
}
?>