<?php
require "functions.php";

if (isset($_GET['do'])){
  if ($_GET['do'] == 'logout'){
    require_once "connect.php";
    dbw_query($db_conn, "UPDATE USERS SET SessionID = NULL WHERE SessionID='$_COOKIE[SessionID]'");
    setcookie("SessionID", "", time()-3600,"/");
    header('Location: index.php');
  }
}

if (isset($_COOKIE['SessionID'])){ //Ya está logueado
  header('Location: panel.php');
}

if (!isset($_POST['nick'])){
  echo $twig->render('login.twig');
}
if (isset($_POST['nick'])){
    $nick=$_POST['nick'];
    $pass= hash("sha256",$_POST['pass']);
    $finalpass = dbw_query_fetch_array($db_conn,"SELECT `Passw` FROM `USERS` WHERE nick ='$nick'");
    $passcomprobar = $finalpass[0];
	if ($pass == $passcomprobar)
	{
		$sesid = RandomString(12);
		dbw_query($db_conn, "UPDATE USERS SET SessionID = '$sesid' WHERE nick = '$nick'");
		setcookie("SessionID",$sesid,"0","/");
        header('Location: panel.php');
	}else{
		echo $twig->render('login.twig', array('status' => 'error'));
	}
	
}
?>