user registration
I keep finding problems.
no matter if the user has confirm his/her email they are still able to login.
I need to only give access to people who have confirmed their email.
when they register, they receive an email which when they select the email will change the UserEmailVerified value to 1.
so far so good
but my problem now is that at the moment anyone can login
Can you please tell me the location and the code I need to add in order to disallow access to registers who haven't confirmed their email.
Pseudocode:
if UserEmailVerified=1 && username = username && password = password
then
access allow
Location:users_Profile.php
else
access not allow
echo "please check your emails";
Location:users_LogIn.php
I have removed a small part of the code from the loging page because it will not allow users to receive the confirmation email (the same problem I had on my first post):
-------------------------------------------------
&& (isset($_SERVER["HTTP_REFERER"]) && strpos(urldecode($_SERVER["HTTP_REFERER"]), urldecode($_SERVER["SERVER_NAME"].$_SERVER["PHP_SELF"])) > 0) && isset($_POST))
-------------------------------------------------
here is my login page which works fine apart the access control problem:
users_LogIn.txt
looking forward hearing from you.
I think that after this I will manage to complete my project.
Thanks in advance.
