From 4f39cdea8cf445dfa7a55539b1fd931b13d8b09f Mon Sep 17 00:00:00 2001
From: Noe GARNIER <Noe.GARNIER@etu.uca.fr>
Date: Mon, 21 Nov 2022 19:00:01 +0100
Subject: [PATCH] Cryptage des mots de passe

---
 WEB/Controller/Controller.php   | 5 +++--
 WEB/View/Error/ErreurSignUp.php | 2 +-
 2 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/WEB/Controller/Controller.php b/WEB/Controller/Controller.php
index 7a567f43..f08f89c4 100644
--- a/WEB/Controller/Controller.php
+++ b/WEB/Controller/Controller.php
@@ -53,7 +53,8 @@ class Controller
             if (! $validation->ValidateEmail($_REQUEST['email'])) {
                 throw (new Exception("Email non valide"));
             }
-            $joueur = new Joueur($_REQUEST['email'], $_REQUEST['username'], $_REQUEST['password']);
+            $password = password_hash($_REQUEST['password'], PASSWORD_DEFAULT);
+            $joueur = new Joueur($_REQUEST['email'], $_REQUEST['username'], $password);
             $gateway->insert($joueur);
             $_SESSION['connected'] = 'true';
             require ($rep.$vues['main']);;
@@ -70,7 +71,7 @@ class Controller
                 throw new JoueurNotFoundException("Joueur introuvable");
             }
             $mdp = $gateway->getMdpByEmail($_REQUEST['email']);
-            if ($mdp != $_REQUEST['password']){
+            if (password_verify($mdp, $_REQUEST['password'])){
                 throw new InvalidMdpException("Mot de passe invalide");
             }
             $_SESSION['connected'] = 'true';
diff --git a/WEB/View/Error/ErreurSignUp.php b/WEB/View/Error/ErreurSignUp.php
index 2af01518..e27b2689 100644
--- a/WEB/View/Error/ErreurSignUp.php
+++ b/WEB/View/Error/ErreurSignUp.php
@@ -1,7 +1,7 @@
 <html>
 <body>
 <h1>ERREUR</h1>
-<p>E-mail invalide</p>
+<p></p>
 <?php
 
 ?>