diff options
| author | Paul S. Owen <psotfx@users.sourceforge.net> | 2002-07-16 17:31:19 +0000 |
|---|---|---|
| committer | Paul S. Owen <psotfx@users.sourceforge.net> | 2002-07-16 17:31:19 +0000 |
| commit | bab8906f1301cc5b886d0a21fbfc23c9ab7dac25 (patch) | |
| tree | 622209b9f486a3dfca7038810a7078a85468bb94 | |
| parent | 183718f25f049b34a1c339dc63f01c7629c2d313 (diff) | |
| download | forums-bab8906f1301cc5b886d0a21fbfc23c9ab7dac25.tar forums-bab8906f1301cc5b886d0a21fbfc23c9ab7dac25.tar.gz forums-bab8906f1301cc5b886d0a21fbfc23c9ab7dac25.tar.bz2 forums-bab8906f1301cc5b886d0a21fbfc23c9ab7dac25.tar.xz forums-bab8906f1301cc5b886d0a21fbfc23c9ab7dac25.zip | |
Add acl, remove user_level ... this needs fixing to ensure user can admin if board is disabled
git-svn-id: file:///svn/phpbb/trunk@2699 89ea8834-ac86-4346-8a33-228a782c2dd0
| -rw-r--r-- | phpBB/login.php | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/phpBB/login.php b/phpBB/login.php index 425d934fcb..637b96b9df 100644 --- a/phpBB/login.php +++ b/phpBB/login.php @@ -34,6 +34,9 @@ include($phpbb_root_path . 'common.'.$phpEx); // Set page ID for session management // $userdata = $session->start(); +$session->configure($userdata); + +$acl = new auth('list', $userdata); // // End session management // @@ -41,7 +44,6 @@ $userdata = $session->start(); // // Configure style, language, etc. // -$session->configure($userdata); $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: '; @@ -57,7 +59,7 @@ if ( isset($HTTP_POST_VARS['login']) || isset($HTTP_GET_VARS['login']) || isset( $username = ( isset($HTTP_POST_VARS['username']) ) ? $HTTP_POST_VARS['username'] : ''; $password = ( isset($HTTP_POST_VARS['password']) ) ? $HTTP_POST_VARS['password'] : ''; - $sql = "SELECT user_id, username, user_email, user_password, user_active, user_level + $sql = "SELECT user_id, username, user_email, user_password, user_active FROM " . USERS_TABLE . " WHERE username = '" . str_replace("\'", "''", $username) . "'"; $result = $db->sql_query($sql); |