Cryptage des mots de passe

2 years ago · 4f39cdea8c
parent 797d981465
commit 4f39cdea8c
2 changed files with 4 additions and 3 deletions
--- a/WEB/Controller/Controller.php
+++ b/WEB/Controller/Controller.php
@ -53,7 +53,8 @@ class Controller
            if (! $validation->ValidateEmail($_REQUEST['email'])) {
                throw (new Exception("Email non valide"));
            }
-            $joueur = new Joueur($_REQUEST['email'], $_REQUEST['username'], $_REQUEST['password']);
+            $password = password_hash($_REQUEST['password'], PASSWORD_DEFAULT);
            $joueur = new Joueur($_REQUEST['email'], $_REQUEST['username'], $password);
            $gateway->insert($joueur);
            $_SESSION['connected'] = 'true';
            require ($rep.$vues['main']);;
@ -70,7 +71,7 @@ class Controller
                throw new JoueurNotFoundException("Joueur introuvable");
            }
            $mdp = $gateway->getMdpByEmail($_REQUEST['email']);
-            if ($mdp != $_REQUEST['password']){
+            if (password_verify($mdp, $_REQUEST['password'])){
                throw new InvalidMdpException("Mot de passe invalide");
            }
            $_SESSION['connected'] = 'true';
--- a/WEB/View/Error/ErreurSignUp.php
+++ b/WEB/View/Error/ErreurSignUp.php
@ -1,7 +1,7 @@
 <html>
 <body>
 <h1>ERREUR</h1>
-<p>E-mail invalide</p>
+<p></p>
 <?php
 ?>