added login thing
This commit is contained in:
nilsding
parent
4a9bf1565d
commit
780651e8b3
@ -68,6 +68,10 @@ if (!isset($notemplate)) {
|
|||||||
$res = $sql->query("SELECT `value` FROM `config` WHERE `key` = \"sitename\";")->fetch_assoc();
|
$res = $sql->query("SELECT `value` FROM `config` WHERE `key` = \"sitename\";")->fetch_assoc();
|
||||||
$site_name = htmlspecialchars($res['value']);
|
$site_name = htmlspecialchars($res['value']);
|
||||||
|
|
||||||
|
// user name
|
||||||
|
$res = $sql->query("SELECT `value` FROM `config` WHERE `key` = \"username\";")->fetch_assoc();
|
||||||
|
$user_name = htmlspecialchars($res['value']);
|
||||||
|
|
||||||
// the flash
|
// the flash
|
||||||
$message = null;
|
$message = null;
|
||||||
if (isset($_SESSION['flash'])) {
|
if (isset($_SESSION['flash'])) {
|
||||||
@ -77,6 +81,7 @@ if (!isset($notemplate)) {
|
|||||||
|
|
||||||
$tpl->assign("logged_in", $_SESSION['logged_in']);
|
$tpl->assign("logged_in", $_SESSION['logged_in']);
|
||||||
$tpl->assign("site_name", $site_name);
|
$tpl->assign("site_name", $site_name);
|
||||||
|
$tpl->assign("user_name", $user_name);
|
||||||
$tpl->assign("words_total", $words_total_count);
|
$tpl->assign("words_total", $words_total_count);
|
||||||
$tpl->assign("inbox_count", $new_words_count);
|
$tpl->assign("inbox_count", $new_words_count);
|
||||||
$tpl->assign("message", $message);
|
$tpl->assign("message", $message);
|
||||||
|
|||||||
39
ucp.php
39
ucp.php
@ -20,12 +20,47 @@
|
|||||||
|
|
||||||
include_once 'config.php';
|
include_once 'config.php';
|
||||||
|
|
||||||
|
function check_privileges() {
|
||||||
|
if (!$_SESSION['logged_in']) {
|
||||||
|
$_SESSION['flash'] = "Log in to continue.";
|
||||||
|
header('Location: ucp.php?page=login');
|
||||||
|
exit();
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
switch ($_GET['page']) {
|
switch ($_GET['page']) {
|
||||||
case "login": {
|
case "login": {
|
||||||
|
if ($_SESSION['logged_in']) {
|
||||||
|
$_SESSION['flash'] = "You're already logged in.";
|
||||||
|
header('Location: ucp.php');
|
||||||
|
exit();
|
||||||
|
}
|
||||||
|
if (!isset($_POST['login'])) {
|
||||||
$tpl->draw("login");
|
$tpl->draw("login");
|
||||||
|
} else {
|
||||||
|
$res = $sql->query("SELECT `value` FROM `config` WHERE `key` = \"username\";")->fetch_assoc();
|
||||||
|
$username = $res['value'];
|
||||||
|
$res = $sql->query("SELECT `value` FROM `config` WHERE `key` = \"password\";")->fetch_assoc();
|
||||||
|
$password = $res['value'];
|
||||||
|
$post_pass = crypt($_POST['password'], $password);
|
||||||
|
if (($_POST['username'] === $username) && ($post_pass === $password)) {
|
||||||
|
// successful login
|
||||||
|
$_SESSION['logged_in'] = true;
|
||||||
|
$_SESSION['flash'] = "You are now logged in.";
|
||||||
|
header('Location: ucp.php');
|
||||||
|
exit();
|
||||||
|
} else {
|
||||||
|
// failed login
|
||||||
|
$_SESSION['flash'] = "Wrong user name or password";
|
||||||
|
header('Location: ucp.php?page=login');
|
||||||
|
exit();
|
||||||
|
}
|
||||||
|
}
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
case "logout": {
|
case "logout": {
|
||||||
|
check_privileges();
|
||||||
|
|
||||||
session_destroy();
|
session_destroy();
|
||||||
session_start();
|
session_start();
|
||||||
$_SESSION['flash'] = "Sucessfully logged out";
|
$_SESSION['flash'] = "Sucessfully logged out";
|
||||||
@ -34,11 +69,15 @@ switch ($_GET['page']) {
|
|||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
case "settings": {
|
case "settings": {
|
||||||
|
check_privileges();
|
||||||
|
|
||||||
$tpl->draw("settings");
|
$tpl->draw("settings");
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
case "inbox":
|
case "inbox":
|
||||||
default: {
|
default: {
|
||||||
|
check_privileges();
|
||||||
|
|
||||||
$tpl->draw("inbox");
|
$tpl->draw("inbox");
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@ -4,10 +4,10 @@
|
|||||||
{if="$message"}
|
{if="$message"}
|
||||||
<div class="alert alert-info">{$message}</div>
|
<div class="alert alert-info">{$message}</div>
|
||||||
{/if}
|
{/if}
|
||||||
<form role="form" method="POST">
|
<form role="form" method="POST" action="ucp.php?page=login">
|
||||||
<div class="form-group">
|
<div class="form-group">
|
||||||
<label for="InputUsername">Username</label>
|
<label for="InputUsername">Username</label>
|
||||||
<input type="text" class="form-control" id="InputUsername" name="user_name" placeholder="Enter username">
|
<input type="text" class="form-control" id="InputUsername" name="username" placeholder="Enter username">
|
||||||
</div>
|
</div>
|
||||||
<div class="form-group">
|
<div class="form-group">
|
||||||
<label for="InputPassword">Password</label>
|
<label for="InputPassword">Password</label>
|
||||||
|
|||||||
@ -18,8 +18,10 @@
|
|||||||
<li class="dropdown">
|
<li class="dropdown">
|
||||||
<a href="#" class="dropdown-toggle" data-toggle="dropdown">{$user_name}<b class="caret"></b></a>
|
<a href="#" class="dropdown-toggle" data-toggle="dropdown">{$user_name}<b class="caret"></b></a>
|
||||||
<ul class="dropdown-menu">
|
<ul class="dropdown-menu">
|
||||||
<li><a href="ucp.php">Inbox{if="$new_words_count > 0"}{$new_words_count}{/if}</a></li>
|
<li><a href="ucp.php">Inbox{if="$new_words_count > 0"} ({$new_words_count}){/if}</a></li>
|
||||||
<li><a href="ucp.php?page=settings">Settings</a></li>
|
<li><a href="ucp.php?page=settings">Settings</a></li>
|
||||||
|
<li class="divider"></li>
|
||||||
|
<li><a href="ucp.php?page=logout">Logout</a></li>
|
||||||
{else}
|
{else}
|
||||||
<li><a href="ucp.php?page=login">Login</a></li>
|
<li><a href="ucp.php?page=login">Login</a></li>
|
||||||
{/if}
|
{/if}
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user