#!/usr/bin/perl
print "Content-type: text/html\n\n";
require 'learn/db_connect.pl';
use CGI;
use CGI::Session qw();
use DBI;
use warnings;
use Digest::SHA qw(hmac_sha512_hex);
$q = new CGI;
my $cgi = new CGI;
if($q->request_method eq "POST"){
my $uname = $q->param('uname');
my $pass = $q->param('pass');
if(defined($uname) && $uname ne ""){
if(defined($pass) && $pass ne ""){
my $pass_hash = hmac_sha512_hex($pass);
my $dbh = connectDB();
my $sth = $dbh->prepare("SELECT count(id) as counted FROM perl_users WHERE `username` = ? AND `password` = ?");
$sth->execute($uname, $pass_hash);
my $ref = $sth->fetchrow_hashref();
if($ref->{'counted'} == 1){
my $sql001 = $dbh->prepare("SELECT * FROM perl_users WHERE `username` = ? AND `password` = ?");
$sql001->execute($uname, $pass_hash);
my $result = $sql001->fetchrow_hashref();
$user_id = $result->{'id'};
$username = $result->{'username'};
my $s = CGI::Session->new;
$s->param("user_id" => $user_id);
my $id = $s->id;
print "";
}else{
print "";
}
}else{
print "";
}
}else{
print "";
}
}else{
print "";
}
####
#!/usr/bin/perl
print "Content-type: text/html\n\n";
use CGI;
use CGI::Session qw();
use DBI;
use warnings;
$get = new CGI;
$token = $get->param('token');
my $s = CGI::Session->new($token);
print $s->param("user_id");