diff options
| author | Paul S. Owen <psotfx@users.sourceforge.net> | 2001-03-21 23:16:41 +0000 |
|---|---|---|
| committer | Paul S. Owen <psotfx@users.sourceforge.net> | 2001-03-21 23:16:41 +0000 |
| commit | c33d7500fb4fecf97fbd070bfe8da242faed5269 (patch) | |
| tree | dfe8ae458ae9068a7bebc92bbf843ee61f8bead4 /phpBB/login.php | |
| parent | 19c5037dd52d16b925682b2d614d761f64db7dcd (diff) | |
| download | forums-c33d7500fb4fecf97fbd070bfe8da242faed5269.tar forums-c33d7500fb4fecf97fbd070bfe8da242faed5269.tar.gz forums-c33d7500fb4fecf97fbd070bfe8da242faed5269.tar.bz2 forums-c33d7500fb4fecf97fbd070bfe8da242faed5269.tar.xz forums-c33d7500fb4fecf97fbd070bfe8da242faed5269.zip | |
Changed to tie in with session code updates
git-svn-id: file:///svn/phpbb/trunk@119 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB/login.php')
| -rw-r--r-- | phpBB/login.php | 71 |
1 files changed, 50 insertions, 21 deletions
diff --git a/phpBB/login.php b/phpBB/login.php index bb59dd5acc..1c8d4207c6 100644 --- a/phpBB/login.php +++ b/phpBB/login.php @@ -24,34 +24,63 @@ include('extension.inc'); include('common.'.$phpEx); -if($submit) +if(isset($HTTP_POST_VARS['submit']) || isset($HTTP_GET_VARS['submit'])) { - $userdata = get_userdata($username, $db); - if($userdata["error"]) - { - error_die($db, LOGIN_FAILED); + if($HTTP_POST_VARS['submit'] == "Login" && !$userdata['session_logged_in']) + { + + $username = $HTTP_POST_VARS["username"]; + $password = $HTTP_POST_VARS["password"]; + $sql = "SELECT * + FROM ".USERS_TABLE." + WHERE username = '$username'"; + $result = $db->sql_query($sql); + if(!$result) + { + error_die($db, "Error in obtaining userdata : login"); + } + + $rowresult = $db->sql_fetchrow($result); + if(count($rowresult)) + { + if(md5($password) == $rowresult["user_password"]) + { + $session_id = session_begin($db, $rowresult["user_id"], $user_ip, $session_length, 1, $rowresult["user_password"]); + if($session_id) + { + header("Location: index.$phpEx"); + } + else + { + error_die($db, "Couldn't start session : login"); + } + } + else + { + error_die($db, LOGIN_FAILED); + } + } + else + { + error_die($db, LOGIN_FAILED); + } } - else + else if($HTTP_GET_VARS['submit'] == "logout" && $userdata['session_logged_in']) { - if(!auth("login", $db)) - { - error_die($db, LOGIN_FAILED); - } - else - { - $sessid = new_session($userdata[user_id], $user_ip, $session_cookie_time, $db); - set_session_cookie($sessid, $session_cookie_time, $session_cookie, "", "", 0); - header("Location: index.$phpEx"); + if($userdata['session_logged_in']) + { + session_end($db, $userdata["session_id"], $userdata["user_id"]); } + header("Location: index.$phpEx"); } -} -else if($logout) -{ - if($user_logged_in) + else { - end_user_session($userdata["user_id"], $db); + header("Location: index.$phpEx"); } +} +else +{ header("Location: index.$phpEx"); } - + ?> |