Почетна Преглед Помоћ
Пријавите се
Medowar
/
feuerwehr-freising-antragsformular
1
0
Креирај огранак 0
Датотеке Дискусије 0 Захтеви за спајање 0 Вики
Дрво: 5926c55573
Гране Ознаке
feuerwehr-freis...
/
admin
/
login.php

login.php 2.4 KB
Историја Датотека

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. <?php
    2. 

  2. 

  3. declare(strict_types=1);
    4. 

  4. 

  5. use App\App\Bootstrap;
    6. 

  6. use App\Admin\Auth;
    7. 

  7. use App\Security\Csrf;
    8. 

  8. 

  9. require dirname(__DIR__) . '/src/autoload.php';
    10. 

  10. Bootstrap::init();
    11. 

  11. $app = Bootstrap::config('app');
    12. 

  12. 

  13. $auth = new Auth();
    14. 

  14. 

  15. if (isset($_GET['logout']) && $_GET['logout'] === '1') {
    16. 

  16.     $auth->logout();
    17. 

  17.     header('Location: ' . Bootstrap::url('admin/login.php'));
    18. 

  18.     exit;
    19. 

  19. }
    20. 

  20. 

  21. if ($auth->isLoggedIn()) {
    22. 

  22.     header('Location: ' . Bootstrap::url('admin/index.php'));
    23. 

  23.     exit;
    24. 

  24. }
    25. 

  25. 

  26. $error = '';
    27. 

  27. if ($_SERVER['REQUEST_METHOD'] === 'POST') {
    28. 

  28.     if (!Csrf::validate((string) ($_POST['csrf'] ?? ''))) {
    29. 

  29.         $error = 'Ungültiges CSRF-Token.';
    30. 

  30.     } else {
    31. 

  31.         $password = (string) ($_POST['password'] ?? '');
    32. 

  32.         if ($auth->login($password)) {
    33. 

  33.             header('Location: ' . Bootstrap::url('admin/index.php'));
    34. 

  34.             exit;
    35. 

  35.         }
    36. 

  36.         $error = 'Login fehlgeschlagen.';
    37. 

  37.     }
    38. 

  38. }
    39. 

  39. 

  40. $csrf = Csrf::token();
    41. 

  41. ?><!doctype html>
    42. 

  42. <html lang="de">
    43. 

  43. <head>
    44. 

  44.     <meta charset="utf-8">
    45. 

  45.     <meta name="viewport" content="width=device-width, initial-scale=1">
    46. 

  46.     <title>Admin Login</title>
    47. 

  47.     <link rel="stylesheet" href="<?= htmlspecialchars(Bootstrap::url('assets/css/tokens.css')) ?>">
    48. 

  48.     <link rel="stylesheet" href="<?= htmlspecialchars(Bootstrap::url('assets/css/base.css')) ?>">
    49. 

  49. </head>
    50. 

  50. <body class="admin-page">
    51. 

  51. <header class="site-header">
    52. 

  52.     <div class="container header-inner">
    53. 

  53.         <a class="brand" href="<?= htmlspecialchars(Bootstrap::url('admin/login.php')) ?>">
    54. 

  54.             <img class="brand-logo" src="<?= htmlspecialchars(Bootstrap::url('assets/images/feuerwehr-Logo-invers.webp')) ?>" alt="Feuerwehr Logo">
    55. 

  55.             <div class="brand-title"><?= htmlspecialchars((string) ($app['project_name'] ?? 'Admin')) ?></div>
    56. 

  56.         </a>
    57. 

  57.     </div>
    58. 

  58. </header>
    59. 

  59. <main class="container">
    60. 

  60.     <section class="card auth-container">
    61. 

  61.         <h1>Admin Login</h1>
    62. 

  62.         <?php if ($error !== ''): ?>
    63. 

  63.             <p class="alert alert-error"><?= htmlspecialchars($error) ?></p>
    64. 

  64.         <?php endif; ?>
    65. 

  65.         <form method="post">
    66. 

  66.             <input type="hidden" name="csrf" value="<?= htmlspecialchars($csrf) ?>">
    67. 

  67.             <div class="field">
    68. 

  68.                 <label for="password">Passwort</label>
    69. 

  69.                 <input id="password" name="password" type="password" required>
    70. 

  70.             </div>
    71. 

  71.             <button type="submit" class="btn">Anmelden</button>
    72. 

  72.         </form>
    73. 

  73.     </section>
    74. 

  74. </main>
    75. 

  75. </body>
    76. 

  76. </html>
    77.