<?php
if (isset($_POST['login'])) {
- if ($user = login($_POST['login'], $_POST['pass'])) {
- setcookie('login', $user['auth'], 0, '/');
-
- ob_clean();
- $target = ltrim(@$_GET['goto'], '/');
- header("Location: /$target");
- http_response_code(302);
- exit;
+ if ($User = login($_POST['login'], $_POST['pass'])) {
+ setcookie('login', $User['auth'], 0, '/');
+ }
+ else {
+ echo '<p class="warn">Ongeldige gebruikersnaam of wachtwoord.</p>'."\n\n";
}
-
- echo '<p class="warn">Ongeldige gebruikersnaam of wachtwoord.</p>'."\n\n";
}
-elseif (!empty($User)) {
+elseif (isset($_GET['logout'])) {
setcookie('login', '', time(), '/'); # expire immediately
+ $User = NULL;
echo '<p class="warn">Uitgelogd.</p>'."\n\n";
}
+if (isset($_GET['goto']) and isset($User)) {
+ ob_clean();
+ $target = ltrim($_GET['goto'], '/');
+ header("Location: /$target");
+ http_response_code(302);
+ exit;
+}
+
+if (empty($User)) {
?>
<form action="" method="post">
<input id="login" name="login" placeholder="Huisnummer" />
<input id="pass" name="pass" type="password" value="" placeholder="Wachtwoord" />
<input type="submit" value="Log in" />
</form>
+<?php
+ return;
+}
+
+ob_clean();
+?>
+<h2>Ingelogd</h2>
+
+<p>Ingelogd als <em><?php print $User['name']; ?></em>.</p>
+
+<p class="nav"><a href="?logout">Uitloggen</a></p>