source: trunk/identification.php @ 1052

Last change on this file since 1052 was 1052, checked in by rvelices, 18 years ago

fix: permissioning not working (2 bugs)

fix: locked gallery cannot be unlocked (impossible to login)

improvement: nicer display in redirect.tpl

improvement: when a page is not accessible because of permissions (accessed
through bookmark or email), redirect to identification.php and after
identification to the initially requested page
  • Property svn:eol-style set to native
  • Property svn:keywords set to Author Date Id Revision
File size: 4.7 KB
Line 
1<?php
2// +-----------------------------------------------------------------------+
3// | PhpWebGallery - a PHP based picture gallery                           |
4// | Copyright (C) 2002-2003 Pierrick LE GALL - pierrick@phpwebgallery.net |
5// | Copyright (C) 2003-2005 PhpWebGallery Team - http://phpwebgallery.net |
6// +-----------------------------------------------------------------------+
7// | branch        : BSF (Best So Far)
8// | file          : $RCSfile$
9// | last update   : $Date: 2006-02-23 05:12:32 +0000 (Thu, 23 Feb 2006) $
10// | last modifier : $Author: rvelices $
11// | revision      : $Revision: 1052 $
12// +-----------------------------------------------------------------------+
13// | This program is free software; you can redistribute it and/or modify  |
14// | it under the terms of the GNU General Public License as published by  |
15// | the Free Software Foundation                                          |
16// |                                                                       |
17// | This program is distributed in the hope that it will be useful, but   |
18// | WITHOUT ANY WARRANTY; without even the implied warranty of            |
19// | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU      |
20// | General Public License for more details.                              |
21// |                                                                       |
22// | You should have received a copy of the GNU General Public License     |
23// | along with this program; if not, write to the Free Software           |
24// | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, |
25// | USA.                                                                  |
26// +-----------------------------------------------------------------------+
27
28//--------------------------------------------------------------------- include
29define('PHPWG_ROOT_PATH','./');
30include_once( PHPWG_ROOT_PATH.'include/common.inc.php' );
31
32//-------------------------------------------------------------- identification
33$errors = array();
34
35$redirect_to = '';
36if ( !empty($_GET['redirect']) )
37{
38  $redirect_to = $_GET['redirect'];
39  if ( $user['is_the_guest'] )
40  {
41    array_push($errors, $lang['access_forbiden']);
42  }
43}
44
45if (isset($_POST['login']))
46{
47  $redirect_to = $_POST['redirect'];
48  $username = mysql_escape_string($_POST['username']);
49  // retrieving the encrypted password of the login submitted
50  $query = '
51SELECT '.$conf['user_fields']['id'].' AS id,
52       '.$conf['user_fields']['password'].' AS password
53  FROM '.USERS_TABLE.'
54  WHERE '.$conf['user_fields']['username'].' = \''.$username.'\'
55;';
56  $row = mysql_fetch_array(pwg_query($query));
57  if ($row['password'] == $conf['pass_convert']($_POST['password']))
58  {
59    $session_length = $conf['session_length'];
60    if ($conf['authorize_remembering']
61        and isset($_POST['remember_me'])
62        and $_POST['remember_me'] == 1)
63    {
64      $session_length = $conf['remember_me_length'];
65    }
66    session_set_cookie_params($session_length);
67    session_start();
68    $_SESSION['id'] = $row['id'];
69    redirect(empty($redirect_to) ? 'category.php' : $redirect_to);
70  }
71  else
72  {
73    array_push( $errors, $lang['invalid_pwd'] );
74  }
75}
76//----------------------------------------------------- template initialization
77//
78// Start output of page
79//
80$title = $lang['identification'];
81$page['body_id'] = 'theIdentificationPage';
82include(PHPWG_ROOT_PATH.'include/page_header.php');
83
84$template->set_filenames( array('identification'=>'identification.tpl') );
85
86$template->assign_vars(
87  array(
88    'L_TITLE' => $lang['identification'],
89    'L_USERNAME' => $lang['login'],
90    'L_PASSWORD' => $lang['password'],
91    'L_LOGIN' => $lang['submit'],
92    'L_GUEST' => $lang['ident_guest_visit'],
93    'L_REGISTER' => $lang['ident_register'],
94    'L_FORGET' => $lang['ident_forgotten_password'],
95    'L_REMEMBER_ME'=>$lang['remember_me'],
96
97    'U_REGISTER' => PHPWG_ROOT_PATH.'register.php',
98    'U_LOST_PASSWORD' => PHPWG_ROOT_PATH.'password.php',
99    'U_HOME' => PHPWG_ROOT_PATH.'category.php',
100    'U_REDIRECT' => $redirect_to,
101   
102    'F_LOGIN_ACTION' => PHPWG_ROOT_PATH.'identification.php'
103    ));
104
105if ($conf['authorize_remembering'])
106{
107  $template->assign_block_vars('remember_me',array());
108}
109//-------------------------------------------------------------- errors display
110if ( sizeof( $errors ) != 0 )
111{
112  $template->assign_block_vars('errors',array());
113  for ( $i = 0; $i < sizeof( $errors ); $i++ )
114  {
115    $template->assign_block_vars('errors.error',array('ERROR'=>$errors[$i]));
116  }
117}
118//-------------------------------------------------------------- visit as guest
119$template->assign_block_vars('free_access',array());
120//----------------------------------------------------------- html code display
121$template->parse('identification');
122include(PHPWG_ROOT_PATH.'include/page_tail.php');
123?>
Note: See TracBrowser for help on using the repository browser.