06.05
php
saved
stevieboy
Note
This is the users_controller.php
This is the users_controller.php
- <?php
- class UsersController extends AppController {
- var $name = 'Users';
- function login()
- {
- //Don't show the error message if no data has been submitted.
- $this->set('error', false);
- // If a user has submitted form data:
- {
- // First, let's see if there are any users in the database
- // with the username supplied by the user using the form:
- $someone = $this->User->findByUsername($this->data['User']['username']);
- // At this point, $someone is full of user data, or its empty.
- // Let's compare the form-submitted password with the one in
- // the database.
- {
- // Note: hopefully your password in the DB is hashed,
- // so your comparison might look more like:
- // md5($this->data['User']['password']) == ...
- // This means they were the same. We can now build some basic
- // session information to remember this user as 'logged-in'.
- $this->Session->write('User', $someone['User']);
- // Now that we have them stored in a session, forward them on
- // to a landing page for the application.
- $path=$this->Session->read('returnPath');
- $this->redirect($path);
- $this->Session->del('returnPath');
- }else{
- $this->redirect('/admin/actors/');
- }
- }
- // Else, they supplied incorrect data:
- else
- {
- // Remember the $error var in the view? Let's set that to true:
- $this->set('error', true);
- }
- }
- }
- function logout()
- {
- // Redirect users to this action if they click on a Logout button.
- // All we need to do here is trash the session information:
- $this->Session->delete('User');
- // And we should probably forward them somewhere, too...
- $this->redirect('/');
- }
- }
- ?>
Parsed in 0.086 seconds, using GeSHi 1.0.7.14