9sNUZ7C3

1<?php
2	header('Access-Control-Allow-Origin: *');
3    header('Access-Control-Allow-Methods: GET, POST');
4    header("Access-Control-Allow-Headers: X-Requested-With");
5
6  $nickname = $_POST["nickname"];
7  $password_db = $_POST["password"];
8  
9  	$hostname = "localhost";
10	$username = "nicoladenigris";
11	$password = "";
12	$database = "my_nicoladenigris";
13  
14    $connessione = mysql_connect($hostname, $username, $password)
15    or die("Impossibile connettersi al server");
16    
17    mysql_select_db($database)
18    or die("Impossibile connettersi al database scelto");
19    
20    $sql_utente = "SELECT * FROM utenti WHERE nikname = '$nickname' AND password='$password_db' ";
21    $sql = mysql_query($sql_utente);
22    
23    if (mysql_num_rows($sql) == 1)
24    {
25    	$msg = "Ti sei loggato con successo!";
26        
27        	$secret_key = 'weee';
28            
29            $row = mysql_fetch_assoc($sql);
30            
31            $campi = array(
32              'nickname' => $nickname,
33              'email' => $row["email"],
34              'nome' => $row["nome"],
35              'cognome' => $row["cognome"]
36          	);
37            
38            $token = getJwt($campi, $secret_key);
39    }
40    else
41    	$msg = "Nickname e password non esatti!";
42    
43    $result = array("msg" => $msg, "token" => $token);
44 
45 	echo json_encode($result);
46    mysql_close();
47    
48    function getJwt($fields = array(), $secretkey = NULL) 
49    {
50        $encoded_header = base64_encode('{"alg": "HS256","typ": "JWT"}');
51        $encoded_payload = base64_encode(json_encode($fields));
52        $header_payload = $encoded_header . '.' . $encoded_payload;
53        $signature = base64_encode(hash_hmac('sha256', $header_payload, $secretkey, true));
54        $jwt_token = $header_payload . '.' . $signature;
55
56        return $jwt_token;
57    }
58?>