require_once 'lib/functions.php'; require_once 'lib/user.php'; function showForm($name = '', $error = '') { $doc = new Document('base'); $doc->title = 'Login'; if ($error != '') { $error = "<p id='error'>{$error}</p>"; } $doc->content = "\r\n <h1>Authorization form</h1>\r\n <form method='post' action='login.php'>\r\n {$error}\r\n <div class='fieldset'>\r\n <label>User name:<br>\r\n <input type='text' name='user' value='{$name}' id='name'/>\r\n </label><br>\r\n <label>Password:<br>\r\n <input type='password' name='password' />\r\n </label>\r\n </div>\r\n <input type='submit' value='Enter' />\r\n </form>\r\n <script>\$(function() {\$('#name').focus();});</script>\r\n "; echo $doc->render(); } $name = get($_POST, 'user'); if ($name) { $pass = get($_POST, 'password'); $pass = md5($pass); $u = User::createFromLogin($name, $pass); if ($u->id) { if (session_start()) { $_SESSION['user_id'] = $u->id; } redirect('index.php'); } else { require_once 'lib/template.php'; showForm($name, 'Invalid user name or password!'); } } else { require_once 'lib/template.php'; showForm(); }
<?php require_once 'lib/functions.php'; require_once 'lib/db.php'; require_once 'lib/user.php'; $from = get($_POST, 'from'); if ($from == 'site') { $user = User::load(); } else { $name = get($_POST, 'user'); $password = get($_POST, 'hash'); if (!$name || !$password) { $user = User::createAnonymous(); } else { $user = User::createFromLogin($name, $password); } } if ($user->banned) { if ($from == 'site') { redirect('index.php'); die; } else { die('User is banned.'); } } else { $src_id = get($_POST, 'src_id'); if (!$src_id) { $src = get($_POST, 'src'); if (!$src) { die('Source is not provided.'); }