From 64b1ec0fabbf7328a79a20ff58502ebfa80fad8b Mon Sep 17 00:00:00 2001
From: Jonas Kohl
Date: Thu, 10 Oct 2024 17:33:13 +0200
Subject: Break up actions into individual files

---
 src/application/actions/auth/post.php | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 src/application/actions/auth/post.php

(limited to 'src/application/actions/auth/post.php')

diff --git a/src/application/actions/auth/post.php b/src/application/actions/auth/post.php
new file mode 100644
index 0000000..e9b5138
--- /dev/null
+++ b/src/application/actions/auth/post.php
@@ -0,0 +1,21 @@
+<?php
+
+use mystic\forum\orm\User;
+use mystic\forum\utils\RequestUtils;
+
+$formId = "login";
+$username = RequestUtils::getRequiredField("username", $formId);
+$password = RequestUtils::getRequiredField("password", $formId);
+
+$user = new User();
+$user->name = $username;
+if (!$db->fetchWhere($user, "name") || !password_verify($password, $user->passwordHash)) {
+    RequestUtils::triggerFormError(__("Username or password incorrect!"), $formId);
+}
+
+if (!$user->activated) {
+    RequestUtils::triggerFormError(__("Please activate your user account first!"), $formId);
+}
+
+RequestUtils::setAuthorizedUser($user);
+header("Location: " . ($_GET["next"] ?? "."));
-- 
cgit v1.2.3