0,0 → 1,108 |
<?php |
/************************* |
Coppermine Photo Gallery |
************************ |
Copyright (c) 2003-2005 Coppermine Dev Team |
v1.1 originaly written by Gregory DEMAR |
|
This program is free software; you can redistribute it and/or modify |
it under the terms of the GNU General Public License as published by |
the Free Software Foundation; either version 2 of the License, or |
(at your option) any later version. |
******************************************** |
Coppermine version: 1.3.3 |
$Source: /cvsroot/coppermine/stable/login.php,v $ |
$Revision: 1.6 $ |
$Author: gaugau $ |
$Date: 2005/04/19 03:17:11 $ |
**********************************************/ |
|
define('IN_COPPERMINE', true); |
define('LOGIN_PHP', true); |
|
require('include/init.inc.php'); |
|
if (USER_ID) cpg_die(ERROR, $lang_login_php['err_already_logged_in'], __FILE__, __LINE__); |
|
if (defined('UDB_INTEGRATION')) udb_login_page(); |
|
$referer = $HTTP_GET_VARS['referer'] ? $HTTP_GET_VARS['referer'] : 'index.php'; |
$login_failed = ''; |
$cookie_warning = ''; |
|
if (isset($HTTP_POST_VARS['submitted'])) { |
$results = db_query("SELECT user_id, user_name, user_password FROM {$CONFIG['TABLE_USERS']} WHERE user_name = '" . addslashes($HTTP_POST_VARS['username']) . "' AND BINARY user_password = '" . addslashes($HTTP_POST_VARS['password']) . "' AND user_active = 'YES'"); |
$lastvisit = db_query("UPDATE {$CONFIG['TABLE_USERS']} SET user_lastvisit = NOW() WHERE user_name = '" . addslashes($HTTP_POST_VARS['username']) . "' AND BINARY user_password = '" . addslashes($HTTP_POST_VARS['password']) . "' AND user_active = 'YES'"); |
if (mysql_num_rows($results)) { |
$USER_DATA = mysql_fetch_array($results); |
if (isset($HTTP_POST_VARS['remember_me'])) { |
$cookie_life_time = 86400 * 30; |
} else { |
$cookie_life_time = 86400; |
} |
setcookie($CONFIG['cookie_name'] . '_uid', $USER_DATA['user_id'], time() + $cookie_life_time, $CONFIG['cookie_path']); |
setcookie($CONFIG['cookie_name'] . '_pass', md5($HTTP_POST_VARS['password']), time() + $cookie_life_time, $CONFIG['cookie_path']); |
|
pageheader($lang_login_php['login'], "<META http-equiv=\"refresh\" content=\"3;url=$referer\">"); |
msg_box($lang_login_php['login'], sprintf($lang_login_php['welcome'], $USER_DATA['user_name']), $lang_continue, $referer); |
pagefooter(); |
exit; |
} else { |
$login_failed = <<<EOT |
<tr> |
<td colspan="2" align="center" class="tableh2"> |
<font size="1" color="red"><b>{$lang_login_php['err_login']}<b></font> |
</td> |
</tr> |
|
EOT; |
} |
} |
|
if (!isset($HTTP_COOKIE_VARS[$CONFIG['cookie_name'] . '_data'])) { |
$cookie_warning = <<<EOT |
<tr> |
<td colspan="2" align="center" class="tableh2"> |
<font size="1" color="red"><b>Warning your browser does not accept script's cookies<b></font> |
</td> |
</tr> |
|
EOT; |
} |
|
pageheader($lang_login_php['login']); |
$referer = urlencode($referer); |
starttable('-1', $lang_login_php['enter_login_pswd'], 2); |
echo <<< EOT |
$login_failed |
$cookie_warning |
<tr> |
<form action="login.php?referer=$referer" method="post" name="loginbox"> |
<td class="tableb" width="40%">{$lang_login_php['username']}</td> |
<td class="tableb" width="60%"><input type="text" class="textinput" name="username" style="width: 100%"></td> |
<script language="javascript" type="text/javascript"> |
<!-- |
document.loginbox.username.focus(); |
--> |
</script> |
</tr> |
<tr> |
<td class="tableb">{$lang_login_php['password']}</td> |
<td class="tableb"><input type="password" class="textinput" name="password" style="width: 100%"></td> |
</tr> |
<tr> |
<td colspan="2" align="center" class="tableb">{$lang_login_php['remember_me']} <input name="remember_me" type="checkbox" class="checkbox" value="1"></td> |
</tr> |
<tr> |
<td align="center" class="tablef"><a href="forgot_passwd.php" class="topmenu">{$lang_login_php['forgot_password_link']}</a></td> |
<td align="left" class="tablef"><input name="submitted" type="submit" class="button" value="{$lang_login_php['login']}"></td> |
</form> |
</tr> |
|
EOT; |
|
endtable(); |
pagefooter(); |
ob_end_flush(); |
|
?> |