1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
|
<?php
/***************************************************************************
* identification.php *
* ------------------ *
* application : PhpWebGallery 1.3 <http://phpwebgallery.net> *
* author : Pierrick LE GALL <pierrick@z0rglub.com> *
* *
* $Id$
* *
***************************************************************************/
/***************************************************************************
* *
* This program is free software; you can redistribute it and/or modify *
* it under the terms of the GNU General Public License as published by *
* the Free Software Foundation; *
* *
***************************************************************************/
//----------------------------------------------------------- personnal include
include_once( "./include/init.inc.php" );
//-------------------------------------------------------------- identification
$errors = array();
if ( isset( $_POST['login'] ) )
{
// retrieving the encrypted password of the login submitted
$query = 'SELECT password';
$query.= ' FROM '.PREFIX_TABLE.'users';
$query.= " WHERE username = '".$_POST['login']."';";
$row = mysql_fetch_array( mysql_query( $query ) );
if( $row['password'] == md5( $_POST['pass'] ) )
{
$session_id = session_create( $_POST['login'] );
$url = 'category.php?id='.$session_id;
header( 'Request-URI: '.$url );
header( 'Content-Location: '.$url );
header( 'Location: '.$url );
exit();
}
else
{
array_push( $errors, $lang['invalid_pwd'] );
}
}
//----------------------------------------------------- template initialization
//
// Start output of page
//
$title = $lang['ident_page_title'];
include('include/page_header.php');
$handle = $vtp->Open( './template/'.$user['template'].'/identification.vtp' );
// language
$vtp->setGlobalVar( $handle, 'ident_title', $lang['ident_title'] );
$vtp->setGlobalVar( $handle, 'login', $lang['login'] );
$vtp->setGlobalVar( $handle, 'password', $lang['password'] );
$vtp->setGlobalVar( $handle, 'submit', $lang['submit'] );
$vtp->setGlobalVar( $handle, 'ident_guest_visit',$lang['ident_guest_visit'] );
$vtp->setGlobalVar( $handle, 'ident_register', $lang['ident_register'] );
$vtp->setGlobalVar( $handle, 'ident_forgotten_password',
$lang['ident_forgotten_password'] );
// conf
$vtp->setGlobalVar( $handle, 'mail_webmaster', $conf['mail_webmaster'] );
// user
$vtp->setGlobalVar( $handle, 'user_template', $user['template'] );
initialize_template();
//-------------------------------------------------------------- errors display
if ( sizeof( $errors ) != 0 )
{
$vtp->addSession( $handle, 'errors' );
foreach ( $errors as $error ) {
$vtp->addSession( $handle, 'li' );
$vtp->setVar( $handle, 'li.li', $error );
$vtp->closeSession( $handle, 'li' );
}
$vtp->closeSession( $handle, 'errors' );
}
//------------------------------------------------------------------ users list
// retrieving all the users login
$query = 'select username from '.PREFIX_TABLE.'users;';
$result = mysql_query( $query );
if ( mysql_num_rows ( $result ) < $conf['max_user_listbox'] )
{
$vtp->addSession( $handle, 'select_field' );
while ( $row = mysql_fetch_array( $result ) )
{
if ( $row['username'] != 'guest' )
{
$vtp->addSession( $handle, 'option' );
$vtp->setVar( $handle, 'option.option', $row['username'] );
$vtp->closeSession( $handle, 'option' );
}
}
$vtp->closeSession( $handle, 'select_field' );
}
else
{
$vtp->addSession( $handle, 'text_field' );
$vtp->closeSession( $handle, 'text_field' );
}
//-------------------------------------------------------------- visit as guest
if ( $conf['access'] == 'free' )
{
$vtp->addSession( $handle, 'guest_visit' );
$vtp->closeSession( $handle, 'guest_visit' );
}
//---------------------------------------------------------------- registration
if ( $conf['access'] == 'free' )
{
$vtp->addSession( $handle, 'register' );
$vtp->closeSession( $handle, 'register' );
}
//----------------------------------------------------------- html code display
$output.= $vtp->Display( $handle, 0 );
include('include/page_tail.php');
?>
|