0byt3m1n1-V2

Path: /home/nlpacade/www/calendar/bcup/includes/ [ Home ]
File: login.php
<?php 
/*
 * Copyright 2009 Sean Proctor
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

if(!defined('IN_PHPC')) {
       die("Hacking attempt");
}

function login()
{
	global $vars, $day, $month, $year, $phpc_script, $phpc_valid_actions;

	$html = tag('div');

	//Check password and username
	if(isset($vars['username'])){
		$user = $vars['username'];
		$password = $vars['password'];

		if(login_user($user, $password)){
                        $string = "$phpc_script?";
                        $arguments = array();
                        if(!empty($vars['lastaction'])) {
				$lastaction = $vars['lastaction'];
				if(!in_array($lastaction, $phpc_valid_actions,
							true))
					soft_error(_('Invalid action'));
                                $arguments[] = "action=$lastaction";
			}
                        if(!empty($vars['year']))
                                $arguments[] = "year=$year";
                        if(!empty($vars['month']))
                                $arguments[] = "month=$month";
                        if(!empty($vars['day']))
                                $arguments[] = "day=$day";
                        if(isset($vars['phpcid']))
                                $arguments[] = "phpcid={$vars['phpcid']}";
                        redirect($string . implode('&', $arguments));
			return tag('h2', _('Logged in.'));
		}

		$html->add(tag('h2', _('Sorry, Invalid Login')));

	}

	$html->add(login_form());
	return $html;
}


function login_form()
{
        global $vars, $phpc_script, $phpc_valid_actions, $day, $year, $month;

        $submit_data = tag('td', attributes('colspan="2"'),
                                create_hidden('action', 'login'),
                                create_submit(_('Log in')));

        if(!empty($vars['lastaction'])) {
		$lastaction = $vars['lastaction'];
		if(!in_array($lastaction, $phpc_valid_actions, true))
			soft_error(_('Invalid action'));
                $submit_data->prepend(create_hidden('lastaction',
                                        $lastaction));
	}

        if(isset($vars['phpcid']))
                $submit_data->prepend(create_hidden('phpcid', $vars['phpcid']));

        if(!empty($vars['day']))
                $submit_data->prepend(create_hidden('day', $day));

        if(!empty($vars['month']))
                $submit_data->prepend(create_hidden('month', $month));

        if(!empty($vars['year']))
                $submit_data->prepend(create_hidden('year', $year));

	return tag('form', attributes("action=\"$phpc_script\"",
				'method="post"'),
		tag('table',
			tag('caption', _('Log in')),
                        tag('thead',
                                tag('tr',
                                        tag('th', attributes('colspan="2"'),
                                                _('You must have cookies enabled to login.')))),
			tag('tfoot',
				tag('tr', $submit_data)),
			tag('tbody',
				tag('tr',
					tag('th', _('Username')),
					tag('td', create_text('username'))),
				tag('tr',
					tag('th', _('Password')),
					tag('td', create_password('password'))))));
}

?>