From 2098bf444afadcf0363d89b4cc1dca5d2213d754 Mon Sep 17 00:00:00 2001
From: cflip <36554078+cflip@users.noreply.github.com>
Date: Sat, 24 Apr 2021 19:40:50 -0600
Subject: Remove all uses of db_inc.php

This method of importing the database login every time wasn't very good.
Now everything uses the new Database singleton class.
---
 signin.php | 25 +++++++------------------
 1 file changed, 7 insertions(+), 18 deletions(-)

(limited to 'signin.php')

diff --git a/signin.php b/signin.php
index 9017d37..2c43309 100644
--- a/signin.php
+++ b/signin.php
@@ -18,8 +18,6 @@
 
 <?php
 
-include_once 'includes/db_inc.php';
-
 function validate($data)
 {
 	$data = trim($data);
@@ -50,26 +48,17 @@ if ($_SERVER['REQUEST_METHOD'] == 'POST') {
 		}
 		echo '</ul>';
 	} else {
-		$sql = "SELECT user_id, user_name, user_pass FROM users WHERE user_name = '" . $user_name . "';";
-		$result = mysqli_query($dbc, $sql);
+		$user = new User();
+		$result = $user->get_by_name($user_name);
 
 		if (!$result) {
-			echo 'An error occurred while signing in: ' . mysqli_error($dbc);
+			echo 'There is no user with that name. Did you mean to <a href="register.php">create a new account?</a>';
 		} else {
-			if (mysqli_num_rows($result) == 0) {
-				echo 'There is no user with that name. Did you mean to <a href="register.php">create a new account?</a>';
+			if (!password_verify($user_pass, $user->password)) {
+				echo 'Password does not match!';
 			} else {
-				while ($row = mysqli_fetch_assoc($result)) {
-					if (!password_verify($user_pass, $row['user_pass'])) {
-						echo 'Password does not match!';
-					} else {
-						$_SESSION['signed_in'] = true;
-						$_SESSION['user_id'] = $row['user_id'];
-						$_SESSION['user_name'] = $row['user_name'];
-
-						header("Location: index.php");
-					}
-				}
+			    Session::get()->sign_in($user);
+				header("Location: index.php");
 			}
 		}
 	}
-- 
cgit v1.2.3