Merge branch 'master' of https://codefirst.iut.uca.fr/git/nathan.boileau/Scripted

3 years ago · 761dbdb926
parent 743f8aca5e 39265ebb74
commit 761dbdb926
2 changed files with 4 additions and 3 deletions
--- a/WEB/Controller/Controller.php
+++ b/WEB/Controller/Controller.php
@ -53,13 +53,14 @@ class Controller
            if (! $validation->ValidateEmail($_REQUEST['email'])) {
                throw (new Exception("Email non valide"));
            }
+            $password = password_hash($_REQUEST['password'], PASSWORD_DEFAULT);
            if(! $validation->ValidateUsername($_REQUEST['username'])){
                throw(new Exception("Pseudo non valide"));
            }
            if(! $validation->ValidatePassword($_REQUEST['password'])){
                throw(new InvalidMdpException("Mot de passe non valide"));
            }
-            $joueur = new Joueur($_REQUEST['email'], $_REQUEST['username'], $_REQUEST['password']);
+            $joueur = new Joueur($_REQUEST['email'], $_REQUEST['username'], $password);
            $gateway->insert($joueur);
            $_SESSION['connected'] = 'true';
            require ($rep.$vues['main']);
@ -76,7 +77,7 @@ class Controller
                throw new JoueurNotFoundException("Joueur introuvable");
            }
            $mdp = $gateway->getMdpByEmail($_REQUEST['email']);
-            if ($mdp != $_REQUEST['password']){
+            if (password_verify($mdp, $_REQUEST['password'])){
                throw new InvalidMdpException("Mot de passe invalide");
            }
            $_SESSION['connected'] = 'true';
--- a/WEB/View/Error/ErreurSignUp.php
+++ b/WEB/View/Error/ErreurSignUp.php
@ -1,7 +1,7 @@
 <html>
 <body>
 <h1>ERREUR</h1>
-<p>E-mail invalide</p>
+<p></p>
 <?php

 ?>