bindValue(":username", test_input($_POST["user"])); $stmt->execute(); return $stmt->fetch(PDO::FETCH_ASSOC); } function validateLogin($username, $password){ // Empty username or password field if (empty($username) || empty($password)) { throw new loginException("Inloggegevens zijn niet ingevuld"); } else { $psw = test_input($password); $hash = getUser()["password"]; $userID = getUser()["userID"]; $role = getUser()["role"]; // If there's an account, go to the profile page if(password_verify($psw, $hash)) { if ($role == "banned"){ echo ""; } else if ($role == "unconfirmed"){ sendConfirmEmail(getUser()["userID"]); echo ""; } else { $_SESSION["userID"] = $userID; // if($_POST[rememberMe] == 1){ // ini_set("session.gc_maxlifetime", "10"); // } header("location: profile.php"); } } else { throw new loginException("Inloggevens zijn niet correct"); } } } class loginException extends Exception { public function __construct($message = "", $code = 0, Exception $previous = null) { parent::__construct($message, $code, $previous); } }