<?php
/*
 * Todo is more free software. It is licensed under the WTFPL, which
 * allows you to do pretty much anything with it, without having to
 * ask permission. Commercial use is allowed, and no attribution is
 * required. We do politely request that you share your modifications
 * to benefit other developers, but you are under no enforced
 * obligation to do so :)
 * 
 * Please read the accompanying LICENSE document for the full WTFPL
 * licensing text.
 */

if(!isset($_APP)) { die("Unauthorized."); }

if(!empty($_POST['username']) && !empty($_POST['password']))
{
	try
	{
		$sUser = User::FindByUsername($_POST['username']);
	}
	catch (NotFoundException $e)
	{
		die("Invalid login details.");
	}
	
	if($sUser->VerifyPassword($_POST['password']) === false)
	{
		die("Invalid login details.");
	}
	
	$sUser->Authenticate();
	$sCurrentUser = $sUser;
}

redirect("/list");