0) { $user_data = mysqli_fetch_array($q,MYSQLI_ASSOC); $token = insertToken($user_data['cuid']); $statusnya = $user_data['status']; if($statusnya == 1){ $password = $user_data['pass']; if(password_verify($pass,$password)){ $userID = $user_data['cuid']; $level = $user_data['level']; $_SESSION['user'] = $user; $_SESSION['token'] = $token; $update = mysqli_query($conn,"UPDATE `tb_user` SET last_login = '$last_login' WHERE user = '".$_SESSION['user']."'") or die(mysqli_error()); header('location:m/'); } else { $_SESSION['user'] == ''; unset($_SESSION['user']); session_destroy(); header('location:index.php?notif=3'); exit; } } else { $_SESSION['user'] == ''; unset($_SESSION['user']); session_destroy(); header('location:index.php?notif=3'); exit; } } else { header('location:index.php?notif=3'); } function insertToken($user_id = 0){ $conn = $GLOBALS['conn']; if(empty($user_id) && $user_id === 0){ return false; } $token = generateToken(); $sql_insert_token = "INSERT INTO tb_token (token) VALUES ('$token')"; $query_insert_token = mysqli_query($conn,$sql_insert_token) or die(mysqli_error($conn)); $token_id = mysqli_insert_id($conn); // update table user $sql_update_user = "UPDATE tb_user SET token_id = $token_id WHERE cuid = $user_id;"; $query_update_user = mysqli_query($conn,$sql_update_user) or die(mysqli_error($conn)); return $token; } function generateToken(){ $length = 10; $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ'; $charactersLength = strlen($characters); $randomString = ''; for ($i = 0; $i < $length; $i++) { $randomString .= $characters[rand(0, $charactersLength - 1)]; } $token = md5(microtime(true).$characters); return $token; } ?>