home()); }else{ if ($_SERVER['REQUEST_METHOD'] == 'POST'){ $user_email = htmlspecialchars(strtolower($_POST['user_email'])); $user_password = htmlspecialchars($_POST["user_password"]); $encrtypted_password = hash('sha512', $user_password); if (empty($user_email)) { $errors[] = $translation['tr_158']; } elseif (!filter_var($user_email, FILTER_VALIDATE_EMAIL)) { $errors[] = $translation['tr_163']; }else{ $validateEmail = true; } if (empty($user_password)) { $errors[] = $translation['tr_160']; }else{ $validatePassword = true; } if ($validatePassword && $validateEmail) { try{ $connect; }catch (PDOException $e){ $errors[] = $e->getMessage(); } $statement = $connect->prepare("SELECT * FROM users WHERE user_email = :user_email AND user_status = 1"); $statement->execute(array(':user_email' => $user_email)); $result = $statement->fetch(); if ($result == false) { $errors[] = $translation['tr_172']; } } if (empty($errors)) { try{ $connect; }catch (PDOException $e){ $errors[] = $e->getMessage(); } $statement = $connect->prepare("SELECT * FROM users WHERE user_email = :user_email AND user_password = :user_password AND user_status = 1"); $statement->execute(array( ':user_email' => $user_email, ':user_password' => $encrtypted_password )); $result_login = $statement->fetch(); if ($result_login !== false){ $_SESSION['signedin'] = true; $_SESSION['user_email'] = $user_email; $_SESSION['user_name'] = $result_login['user_name']; if ((isset($_SERVER['HTTP_REFERER']) && !empty($_SERVER['HTTP_REFERER']))) { if (strtolower(parse_url($_SERVER['HTTP_REFERER'], PHP_URL_HOST)) != strtolower($_SERVER['HTTP_HOST'])) { header('Location: '. $urlPath->home()); }else{ header('Location: ' . $_SERVER['HTTP_REFERER']); } }else{ header('Location: '. $urlPath->home()); } }else{ $errors[] = $translation['tr_174']; } } } } require './header.php'; require './views/signin.view.php'; require './footer.php'; ?>