From f6be9edd401664d95e60ae3c81aeaf36723ba891 Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@ffgraz.net>
Date: Sun, 8 Feb 2009 04:48:53 +0000
Subject: added login capability

---
 check_user.php | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 check_user.php

(limited to 'check_user.php')

diff --git a/check_user.php b/check_user.php
new file mode 100644
index 0000000..4b89267
--- /dev/null
+++ b/check_user.php
@@ -0,0 +1,18 @@
+<?php
+require_once("db.class.php");
+
+function check_user($username, $password)
+{
+  require_once("config.php");
+  $db = new DB($conf['db']['user'], $conf['db']['password'], $conf['db']['host'], $conf['db']['database']);
+
+  $escaped_username = $db->escape_string($username);
+
+  $db->query("SELECT password FROM person WHERE email='".$escaped_username."'");
+  $data = $db->getNextObject();
+  if($data->password == md5($password)) 
+    return true;
+
+  return false;
+}
+?>
-- 
cgit v1.2.1