From 07becd45026edf2837be96c224ba548877137f96 Mon Sep 17 00:00:00 2001 From: Grisu Date: Thu, 9 Jun 2022 20:47:50 +0200 Subject: [PATCH] added login check to the pages which add entries to the tables --- app/public/add_entry.php | 2 ++ app/public/add_station.php | 1 + app/public/add_team.php | 1 + app/public/login.php | 1 + 4 files changed, 5 insertions(+) diff --git a/app/public/add_entry.php b/app/public/add_entry.php index 620002d..a9a16e1 100644 --- a/app/public/add_entry.php +++ b/app/public/add_entry.php @@ -2,6 +2,8 @@ session_start(); include("../scripts/connection.php"); include("../scripts/functions.php"); + $user_data = check_login($con); + if($_SERVER['REQUEST_METHOD'] == "POST") { $points = $_POST['points']; $minutes = $_POST['minutes']; diff --git a/app/public/add_station.php b/app/public/add_station.php index a1e818c..580858b 100644 --- a/app/public/add_station.php +++ b/app/public/add_station.php @@ -2,6 +2,7 @@ session_start(); include("../scripts/connection.php"); include("../scripts/functions.php"); + $user_data = check_login($con); if($_SERVER['REQUEST_METHOD'] == "POST") { write_station($con, $_POST['station_name'], $_POST['station_pos']); diff --git a/app/public/add_team.php b/app/public/add_team.php index 0843d0e..c90ea44 100644 --- a/app/public/add_team.php +++ b/app/public/add_team.php @@ -2,6 +2,7 @@ session_start(); include("../scripts/connection.php"); include("../scripts/functions.php"); + $user_data = check_login($con); if($_SERVER['REQUEST_METHOD'] == "POST") { write_team($con, $_POST['team_name'], $_POST['fire_department']); diff --git a/app/public/login.php b/app/public/login.php index 1446890..00c57dc 100644 --- a/app/public/login.php +++ b/app/public/login.php @@ -13,6 +13,7 @@ $phash = generate_password_hash($password, $user_data['salt']); if($user_data['password'] === $phash) { $_SESSION['user_id'] = $user_data['user_id']; + $_SESSION['user_group'] = $user_data['user_group']; header("Location: index.php"); die; } else {