Initial commit

929491e2 · 65160377 · 36a9bb68 · 929491e2 · 929491e2 · 929491e2
Commit 929491e2 authored 1 month ago by 65160377
--- a/includes/signin.php
+++ b/includes/signin.php
 <?php
 session_start();
-if(isset($_POST['signin']))
+include('db_config.php');  // เชื่อมต่อฐานข้อมูล
-{
-$email=$_POST['email'];
+if (isset($_POST['signin'])) {
-$password = $_POST['password'];
+    $email = $_POST['email'];
-$sql = "SELECT EmailId, Password FROM tblusers WHERE EmailId=:email";
+    $password = $_POST['password'];
-$query = $dbh->prepare($sql);
-$query->bindParam(':email', $email, PDO::PARAM_STR);
+    // ใช้ password_hash() กับฐานข้อมูลที่เก็บรหัสผ่าน
-$query->execute();
+    $sql = "SELECT EmailId, Password FROM tblusers WHERE EmailId = :email";
-$result = $query->fetch(PDO::FETCH_ASSOC);
+    $query = $dbh->prepare($sql);
+    $query->bindParam(':email', $email, PDO::PARAM_STR);
-if ($result && password_verify($password, $result['Password'])) {
+    $query->execute();
-    $_SESSION['login'] = $email;
-    echo "<script type='text/javascript'> document.location = 'package-list.php'; </script>";
+    $result = $query->fetch(PDO::FETCH_ASSOC);
+    if ($result && password_verify($password, $result['Password'])) {
+        $_SESSION['login'] = $email;  // เก็บข้อมูลผู้ใช้ที่ล็อกอิน
+        header("Location: package-list.php");  // ไปที่หน้าต่อไป
+    } else {
+        echo "<script>alert('Invalid Details');</script>";
+    }
+}
+if (!isset($_SESSION['login'])) {
+    echo "Please login first.";
 } else {
-    echo "<script>alert('Invalid Details');</script>";
+    echo "Welcome, " . $_SESSION['login'];
 }
+?>
-}
+<?php
+session_start();
+// ลบ Session ที่เก็บข้อมูลผู้ใช้
+session_unset();  
+session_destroy();  
+// ส่งผู้ใช้กลับไปที่หน้า Login
+header("Location: signin.php");
+exit();
 ?>
-<div class="modal fade" id="myModal4" tabindex="-1" role="dialog" aria-labelledby="myModalLabel">
-				<div class="modal-dialog" role="document">
-					<div class="modal-content modal-info">
+<!DOCTYPE html>
-						<div class="modal-header">
+<html>
-							<button type="button" class="close" data-dismiss="modal" aria-label="Close"><span aria-hidden="true">×</span></button>						
+<head>
-						</div>
+    <title>Sign In</title>
-						<div class="modal-body modal-spa">
+</head>
-							<div class="login-grids">
+<body>
-								<div class="login">
+    <form method="post">
+        <h3>Signin with your account</h3>
-									<div class="login-right">
+        <input type="text" name="email" placeholder="Enter your Email" required><br>
-										<form method="post">
+        <input type="password" name="password" placeholder="Password" required><br>
-											<h3>Signin with your account </h3>
+        <input type="submit" name="signin" value="SIGN IN"><br>
-	<input type="text" name="email" id="email" placeholder="Enter your Email"  required="">	
+    </form>
-	<input type="password" name="password" id="password" placeholder="Password" value="" required="">	
+</body>
-											<h4><a href="forgot-password.php">Forgot password</a></h4>
+</html>
-											<input type="submit" name="signin" value="SIGNIN">
-										</form>
-									</div>
-									<div class="clearfix"></div>								
-								</div>
-								<p>By logging in you agree to our <a href="page.php?type=terms">Terms and Conditions</a> and <a href="page.php?type=privacy">Privacy Policy</a></p>
-							</div>
-						</div>
-					</div>
-				</div>
-			</div>
\ No newline at end of file
--- a/includes/signup.php
+++ b/includes/signup.php
@@ -42,6 +42,21 @@ $("#loaderIcon").hide();
 error:function (){}
 });
 }
+if (isset($_POST['register'])) {
+    $email = $_POST['email'];
+    $password = $_POST['password'];
+    // เข้ารหัสรหัสผ่าน
+    $hashed_password = password_hash($password, PASSWORD_DEFAULT);
+    $sql = "INSERT INTO tblusers (EmailId, Password) VALUES (:email, :password)";
+    $query = $dbh->prepare($sql);
+    $query->bindParam(':email', $email, PDO::PARAM_STR);
+    $query->bindParam(':password', $hashed_password, PDO::PARAM_STR);
+    $query->execute();
+}
 </script>
 <div class="modal fade" id="myModal" tabindex="-1" role="dialog" aria-labelledby="myModalLabel">

--- a/package-list.php
+++ b/package-list.php
@@ -91,4 +91,18 @@ foreach($results as $result)
 <?php include('includes/write-us.php');?>			
 <!-- //write us -->
 </body>
 </html>
\ No newline at end of file
+<?php
+session_start();
+// ถ้าผู้ใช้ไม่ได้เข้าสู่ระบบ ให้ส่งกลับไปที่หน้า login
+if (!isset($_SESSION['login'])) {
+    header("Location: signin.php");
+    exit();
+}
+// ถ้ามีการเข้าสู่ระบบแล้ว
+echo "Welcome, " . $_SESSION['login'];  // แสดงชื่อผู้ใช้ที่ล็อกอิน
+?>
+<a href="logout.php">Log Off</a>