login.php

   1 <?php
   2 /*=====================================================================*\
   3 || ################################################################### ||
   4 || # BugStrike [#]version[#]
   5 || # --------------------------------------------------------------- # ||
   6 || # Copyright ©2002-[#]year[#] by Iris Studios, Inc. All Rights Reserved. # ||
   7 || # This file may not be reproduced in any way without permission.  # ||
   8 || # --------------------------------------------------------------- # ||
   9 || # User License Agreement at http://www.iris-studios.com/license/  # ||
  10 || ################################################################### ||
  11 \*=====================================================================*/
  12
  13 $fetchtemplates = array(
  14         'login'
  15 );
  16
  17 require_once('./global.php');
  18
  19 // ###################################################################
  20
  21 if ($bugsys->userinfo['userid'] AND $_REQUEST['do'] != 'logout' AND $_POST['do'] != 'cplogin')
  22 {
  23         echo 'You are already logged in.';
  24         exit;
  25 }
  26
  27 // ###################################################################
  28
  29 if (empty($_REQUEST['do']))
  30 {
  31         eval('$template->flush("' . $template->fetch('login') . '");');
  32 }
  33
  34 // ###################################################################
  35
  36 if ($_POST['do'] == 'login' OR $_POST['do'] == 'cplogin')
  37 {
  38         $keeplogin = intval($bugsys->in['rememberme']);
  39         if ($_POST['cplogin'])
  40         {
  41                 $keeplogin = 0;
  42         }
  43
  44         if ($_SERVER['HTTP_REFERER'] AND !$_POST['goindex'])
  45         {
  46                 $url = $_SERVER['HTTP_REFERER'];
  47         }
  48         else
  49         {
  50                 $url = 'index.php';
  51         }
  52
  53         $userinfo = $db->query_first("SELECT * FROM user WHERE email = '" . $bugsys->in['email'] . "'");
  54         if (md5(md5($bugsys->in['password']) . md5($userinfo['salt'])) == $userinfo['password'])
  55         {
  56                 $funct->cookie(COOKIE_PREFIX . 'userid', $userinfo['userid'], $keeplogin);
  57                 $funct->cookie(COOKIE_PREFIX . 'authkey', $userinfo['authkey'], $keeplogin);
  58         }
  59         else
  60         {
  61                 $funct->cookie(COOKIE_PREFIX . 'userid');
  62                 $funct->cookie(COOKIE_PREFIX . 'authkey');
  63                 echo 'Invalid email or password.';
  64                 exit;
  65         }
  66
  67         if ($_POST['do'] == 'cplogin')
  68         {
  69                 $funct->cookie(COOKIE_PREFIX . 'adminsession', md5(md5($userinfo['authkey']) . md5($userinfo['email']) . md5($userinfo['userid'])), false);
  70         }
  71
  72         echo 'You are now logged in :-)';
  73
  74         header("Location: $url");
  75 }
  76
  77 // ###################################################################
  78
  79 if ($_REQUEST['do'] == 'logout')
  80 {
  81         if ($bugsys->userinfo['userid'])
  82         {
  83                 $funct->cookie(COOKIE_PREFIX . 'userid');
  84                 $funct->cookie(COOKIE_PREFIX . 'authkey');
  85         }
  86         else
  87         {
  88                 echo 'You need to be logged in!';
  89         }
  90 }
  91
  92 /*=====================================================================*\
  93 || ###################################################################
  94 || # $HeadURL$
  95 || # $Id$
  96 || ###################################################################
  97 \*=====================================================================*/
  98 ?>