summaryrefslogtreecommitdiff
blob: f85f7ed81654e50bd62d9ab3a1f8b427a6aa8d91 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
<?php 
# Configuration
require_once('.lib/config.php');

# Functions
require_once('.lib/functions.php');

# Clean config
$basedir = normalize_path($basedir);
$baseurl = normalize_path($baseurl);
$smarty_dir = normalize_path($smarty_dir);

# Smarty
require_once('.lib/smarty.php');

# Database class
require_once('.lib/DB.php');
$db = new DB($db_host, $db_username, $db_password, $db_name, $db_type);
if (isset($db->error)) {
  header('Content-type: text/html; charset=UTF-8');
  $smarty->assign('title', 'Database Error');
  $smarty->assign('message', $db->error);
  $smarty->display('message.tpl');
  exit(0);
}

# Database functions
require_once('.lib/DB_functions.php');

# Session class
require_once('.lib/Session.php');
$session = new Session($db, $db_sessions_table);
if (isset($session->error)) {
  header('Content-type: text/html; charset=UTF-8');
  $smarty->assign('title', 'Session Error');
  $smarty->assign('message', $session->error);
  $smarty->display('message.tpl');
  exit(0);
}

if ($_GET['logout']) {
	unset($_SESSION['userid']);
	unset($_SESSION['username']);
}
if ($_POST['username']) {
	$user = $db->select(array('userid', 'username','password','email'), "users", "username='".$_POST['username']."'");
	if($user[0]['username']) {
		if ($_POST['passwd'] and (crypt($_POST['passwd'],447470567) == $user[0]['password'])) {
			$_SESSION['userid'] = $user[0]['userid'];
			$_SESSION['username'] = $user[0]['username'];
			$_SESSION['useremail'] = $user[0]['email'];
			$_SESSION['settings'] = get_scire_settings($_SESSION['userid']);
			header("Location: " . ($_GET['afterlogin'] ? $_GET['afterlogin'] : "index.php"));
			exit;
		} else {
			print "<h1>Invalid password supplied!</h1>";
		}
	} else {
		print "<h1>Invalid user supplied!</h1>";
	}
}

$smarty->display('login.tpl');

?>