<?php
/*
* @package MiwoFTP
* @copyright Copyright (C) 2009-2014 Miwisoft, LLC. All rights reserved.
* @license GNU General Public License version 2 or later
*
*/
// no direct access
defined('ABSPATH') or die('MIWI');
/*------------------------------------------------------------------------------
The contents of this file are subject to the Mozilla Public License
Version 1.1 (the "License"); you may not use this file except in
compliance with the License. You may obtain a copy of the License at
http://www.mozilla.org/MPL/
Software distributed under the License is distributed on an "AS IS"
basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See the
License for the specific language governing rights and limitations
under the License.
The Original Code is login.php, released on 2003-03-31.
The Initial Developer of the Original Code is The QuiX project.
Alternatively, the contents of this file may be used under the terms
of the GNU General Public License Version 2 or later (the "GPL"), in
which case the provisions of the GPL are applicable instead of
those above. If you wish to allow use of your version of this file only
under the terms of the GPL and not to allow others to use
your version of this file under the MPL, indicate your decision by
deleting the provisions above and replace them with the notice and
other provisions required by the GPL. If you do not delete
the provisions above, a recipient may use your version of this file
under either the MPL or the GPL."
------------------------------------------------------------------------------*/
/*------------------------------------------------------------------------------
Author: The QuiX project
quix@free.fr
http://www.quix.tk
http://quixplorer.sourceforge.net
Comment:
QuiXplorer Version 2.3
User Authentication Functions
Have Fun...
------------------------------------------------------------------------------*/
//------------------------------------------------------------------------------
require MPATH_MIWOFTP_QX."/_include/user.php";
user_load();
//------------------------------------------------------------------------------
if (!isset($_SESSION)) {
session_start();
}
if(isset($_SESSION)) $GLOBALS['__SESSION']=&$_SESSION;
elseif(isset($HTTP_SESSION_VARS)) $GLOBALS['__SESSION']=&$HTTP_SESSION_VARS;
else logout();
//------------------------------------------------------------------------------
function login() {
//print_r($GLOBALS['__SESSION']);
if(isset($GLOBALS['__SESSION']["s_user"])) {
if(!user_activate($GLOBALS['__SESSION']["s_user"],$GLOBALS['__SESSION']["s_pass"])) {
logout();
}
} else {
if(isset($GLOBALS['__POST']["p_pass"])) $p_pass=$GLOBALS['__POST']["p_pass"];
else $p_pass="";
if(isset($GLOBALS['__POST']["p_user"])) {
// Check Login
if(!user_activate(stripslashes($GLOBALS['__POST']["p_user"]), md5(stripslashes($p_pass)))) {
logout();
}
// authentication sucessfull
return;
} else {
// Ask for Login
show_header($GLOBALS["messages"]["actlogin"]);
echo "<BR><TABLE width=\"300\"><TR><TD colspan=\"2\" class=\"header\" nowrap><B>";
echo $GLOBALS["messages"]["actloginheader"]."</B></TD></TR>\n<FORM name=\"login\" action=\"";
echo make_link("login",NULL,NULL)."\" method=\"post\">\n";
echo "<TR><TD>".$GLOBALS["messages"]["miscusername"].":</TD><TD align=\"right\">";
echo "<INPUT name=\"p_user\" type=\"text\" size=\"25\"></TD></TR>\n";
echo "<TR><TD>".$GLOBALS["messages"]["miscpassword"].":</TD><TD align=\"right\">";
echo "<INPUT name=\"p_pass\" type=\"password\" size=\"25\"></TD></TR>\n";
echo "<TR><TD>".$GLOBALS["messages"]["misclang"].":</TD><TD align=\"right\">";
echo "<SELECT name=\"lang\">\n";
@include MPATH_MIWOFTP_QX."/_lang/_info.php";
echo "</SELECT></TD></TR>\n";
echo "<TR><TD colspan=\"2\" align=\"right\"><INPUT type=\"submit\" value=\"";
echo $GLOBALS["messages"]["btnlogin"]."\"></TD></TR>\n</FORM></TABLE><BR>\n";
?><script language="JavaScript1.2" type="text/javascript">
<!--
if(document.login) document.login.p_user.focus();
// -->
</script><?php
show_footer();
exit;
}
}
}
//------------------------------------------------------------------------------
function logout() {
$GLOBALS['__SESSION']=array();
session_destroy();
header("location: ".$GLOBALS["script_name"]);
}
//------------------------------------------------------------------------------
/**
This function determines if a user has been authenticated or not.
*/
function login_ok ()
{
if(!isset($GLOBALS['__SESSION']["s_user"]))
return false;
return user_activate($GLOBALS['__SESSION']["s_user"],$GLOBALS['__SESSION']["s_pass"]);
}
?>
|
Download
