/**
* @todo create session after success login
*
* @param $data = userdata(id,name,email,twitter,website,phone)
*/
function setSession($data = false)
{
$session = new Session();
if ($data == false) {
return false;
}
// store session data
$dataSession = array('id' => $data['idUser'], 'name' => $data['name'], 'email' => $data['email'], 'username' => $data['username']);
// set session, parameternya (data sessi, nama sessinya)
$session->set_session($dataSession, 'login');
}
public function saveSearch($Name, $isDone, $param)
{
$db = new Database();
$session = new Session();
$Name = trim(preg_replace("@\\s+@", "_", $Name));
$param = serialize($param);
$params['Name'] = $Name;
$params['UserID'] = $session->get_session('userid');
$params['IsDone'] = $isDone;
$params['Param'] = $param;
$db->saveRecords($params, 'savesearch');
$searchId = mysql_insert_id();
$pms['SessionID'] = $session->get_session('sessionid');
$pms['SearchID'] = $searchId;
$db->saveRecords($pms, 'sessionsavelink');
$session->set_session('searchId', $searchId);
return $searchId;
}
/**
* @todo create session after success login
*
* @param $data = userdata(id,name,email,twitter,website,phone)
*/
function setSession($data = false, $password = false)
{
$session = new Session();
if ($data == false && $password == false) {
return false;
}
// store session data
$dataSession = array('id' => $data[0]['person']['id'], 'name' => $data[0]['person']['name'], 'email' => $data[0]['person']['email'], 'username' => $data[0]['person_app']['username'], 'project' => $data[0]['person']['project'], 'institutions' => $data[0]['person']['institutions'], 'twitter' => $data[0]['person']['twitter'], 'website' => $data[0]['person']['website'], 'phone' => $data[0]['person']['phone'], 'password' => $password);
// $_SESSION['login'] = $dataSession;
// set session, parameternya (data sessi, nama sessinya)
$session->set_session($dataSession, 'login');
}
function inject()
{
$session = new Session();
$data = array('id' => 1, 'name' => 'ovancop');
$session->set_session($data);
}
/**
* @todo insert image from posted data
* */
public function addImg()
{
global $CONFIG;
$data = $_POST;
$indivID = $_GET['id'];
$name = 'filename';
$path = '';
$uploaded_file = uploadFile($name, $path, 'image');
//if uploaded
if ($uploaded_file['status'] != '0') {
logFile('Upload Success');
if (extension_loaded('gd') && function_exists('gd_info')) {
logFile('GD2 is installed. Checking image data.');
//validate email and get short_namecode
$ses_user = $this->isUserOnline();
$username = $ses_user['login']['username'];
$personID = $ses_user['login']['id'];
$tmp_name = $uploaded_file['full_name'];
$entry = str_replace(array('\'', '"'), '', $uploaded_file['real_name']);
$image_name_encrypt = md5($entry);
//check filename
$dataExist = $this->imagezip->dataExist($personID, $entry);
$path_entry = $CONFIG['default']['upload_path'];
$src_tmp = $path_entry . "/" . $tmp_name;
if (!$dataExist) {
logFile('Prepare to cropping image');
$path_data = 'public_assets/';
//$path_user = $path_data.$username;
$path_img = $path_data . '/img';
$path_img_1000px = $path_img . '/1000px';
$path_img_500px = $path_img . '/500px';
$path_img_100px = $path_img . '/100px';
$fileinfo = getimagesize($path_entry . '/' . $tmp_name);
$toCreate = array($path_img, $path_img_1000px, $path_img_500px, $path_img_100px);
createFolder($toCreate, 0755);
copy($path_entry . "/" . $tmp_name, $path_img_1000px . '/' . $image_name_encrypt . '.1000px.jpg');
if (!@copy($path_entry . "/" . $tmp_name, $path_img_1000px . '/' . $image_name_encrypt . '.1000px.jpg')) {
logFile('Copy file failed');
$status = "error";
$msg = error_get_last();
} else {
logFile('Copy file success');
$dest_1000px = $CONFIG['default']['root_path'] . '/' . $path_img_1000px . '/' . $image_name_encrypt . '.1000px.jpg';
$dest_500px = $CONFIG['default']['root_path'] . '/' . $path_img_500px . '/' . $image_name_encrypt . '.500px.jpg';
$dest_100px = $CONFIG['default']['root_path'] . '/' . $path_img_100px . '/' . $image_name_encrypt . '.100px.jpg';
if ($fileinfo[0] >= 1000 || $fileinfo[1] >= 1000) {
if ($fileinfo[0] > $fileinfo[1]) {
$percentage = 1000 / $fileinfo[0];
$config['width'] = $percentage * $fileinfo[0];
$config['height'] = $percentage * $fileinfo[1];
} else {
$percentage = 1000 / $fileinfo[1];
$config['width'] = $percentage * $fileinfo[0];
$config['height'] = $percentage * $fileinfo[1];
}
$this->resize_pic($src_tmp, $dest_1000px, $config);
unset($config);
}
logFile('Cropping to 1000px image');
//Set cropping for y or x axis, depending on image orientation
if ($fileinfo[0] > $fileinfo[1]) {
$config['width'] = $fileinfo[1];
$config['height'] = $fileinfo[1];
$config['x_axis'] = $fileinfo[0] / 2 - $config['width'] / 2;
$config['y_axis'] = 0;
} else {
$config['width'] = $fileinfo[0];
$config['height'] = $fileinfo[0];
$config['x_axis'] = 0;
$config['y_axis'] = $fileinfo[1] / 2 - $config['height'] / 2;
}
$this->cropToSquare($src_tmp, $dest_500px, $config);
unset($config);
logFile('Cropping to square image');
//set new config
$config['width'] = 500;
$config['height'] = 500;
$this->resize_pic($dest_500px, $dest_500px, $config);
unset($config);
logFile('Cropping to 500px image');
$config['width'] = 100;
$config['height'] = 100;
$this->resize_pic($dest_500px, $dest_100px, $config);
unset($config);
logFile('Cropping to 100px image');
//add file information to array
$data['filename'] = $entry;
$data['md5sum'] = $image_name_encrypt;
$data['mimetype'] = $fileinfo['mime'];
$data['indivID'] = $indivID;
$data['personID'] = $personID;
$insertData = $this->insertonebyone->insertTransaction('img', $data);
if ($insertData) {
logFile('Insert Data Success');
$this->msg->add('s', 'Sukses Memperbarui Gambar');
$session = new Session();
$dataSession = array();
$sess_image = $session->get_session();
if (isset($sess_image['image_sess'])) {
logFile('Fetch image session');
foreach ($sess_image['image_sess'] as $data_before) {
array_push($dataSession, $data_before);
}
}
array_push($dataSession, $data);
$session->set_session($dataSession, 'image_sess');
//$session->delete_session('onebyone');
} else {
logFile('Insert Data Failed');
$this->msg->add('e', 'Gagal Memperbarui Gambar');
}
}
// end if copy
} else {
logFile('File Image exist');
$this->msg->add('e', 'Data Gambar Telah Ada');
}
unlink($src_tmp);
} else {
logFile('GD2 is not installed');
$this->msg->add('e', 'Sistem Error. Harap menghubungi tim developer kami.');
}
} else {
logFile('Upload Image Failed');
$this->msg->add('e', $uploaded_file['message']);
}
//header('Location: ../../browse/editIndiv/?id='.$indivID);
redirect($basedomain . '../editIndiv/?id=' . $indivID . '#img');
}
}
else
{
$query = "SELECT menuID FROM tbl_user_menu WHERE menuAksesLogin = 0 AND menuStatus = 1";
$result = $DBVAR->query($query) or die ($DBVAR->error());
while ($data = $DBVAR->fetch_object($result))
{
$menuID[] = $data->menuID;
}
if (count($menuID) > 0)
{
$implode = implode(',',$menuID);
$defaultSes = $SESSION->set_session(array('ses_name' => 'menu_without_login', 'ses_value' => $implode));
}
else
{
$USERAUTH->show_warning('Sesi user gagal di set');
}
}
// pr($_SESSION);
?>
<div id="frame_header">
<div id="header"></div>
</div>
if ($usr[0]->status == '1') {
/* get user password */
$pass = User::randpass($_POST['password']);
$sql = "SELECT `pass`,`group` FROM `user` WHERE `userid` = '{$username}'";
$l = Db::result($sql);
$c = Db::$num_rows;
foreach ($l as $v) {
# code...
//print_r($v);
$p = $v->pass;
$g = $v->group;
}
//echo $p;
if ($p == $pass) {
$vars = array('username' => $username, 'loggedin' => true, 'group' => $g);
Session::set_session($vars);
/*
$_SESSION['username'] = $_POST['username'];
$_SESSION['login'] = "******";
$_SESSION['group'] = $group;
*/
//print_r($_SESSION);
$alertgreen = "You are logged in now.";
} elseif ($p != $pass) {
$alertred[] = PASS_NOT_MATCH;
}
} else {
if ($usr[0]->activation != '') {
$alertred[] = ACOUNT_NOT_ACTIVE;
} else {
$alertred[] = ACOUNT_NOT_ACTIVE_BLOCK;
error_reporting(E_ERROR | E_WARNING | E_PARSE);
//ini_set('display_errors', '1');
$errors = array();
$_SESSION["success"] = false;
$_SESSION["error"] = true;
if ($username == '' || $password == '' || empty($username) || empty($password)) {
$_SESSION["msg"] = "User name or password cant be empty";
header('Location:index.php');
exit;
} else {
$has_user_been_found = Emp_Authendicate::authenticate($username, $password);
//$errors["user_details"]=$has_user_been_found;
if ($has_user_been_found) {
include_once './libs/class.session.php';
$session = new Session();
$session->set_session($has_user_been_found);
if ($has_user_been_found["isactive"] == 1) {
$session->set_admin_permission();
}
global $database, $db;
$qry_update = "UPDATE `" . TBL_ADMIN . "` SET `lastVisit`= NOW() WHERE `id`='" . $has_user_been_found["id"] . "' ";
$result_upload = $database->query($qry_update);
//$errors["success"]=true;
//$errors["error"]=false;
header('Location:dashboard.php');
exit;
//print_r($_SESSION['UsrPermission']);
} else {
$_SESSION["msg"] = "User name or password not valid";
header('Location:index.php');
//$errors['success']=false;
