<?php
/**
* @author Jaco Ruit
*/
require 'startOrongo.php';
startOrongo('orongo-activation');
if (isset($_GET['code']) && !isset($_SESSION['orongo-id']) && !isset($_SESSION['orongo-session-id'])) {
$code = $_GET['code'];
if (User::isGoodActivationCode($code)) {
$uid = User::getUserIDByActivationCode($code);
if (!User::userIsActivated($uid)) {
User::activateUser($uid);
User::deleteActivationCode($code);
header("Location: orongo-login.php?msg=6");
exit;
} else {
@User::deleteActivationCode($code);
header("Location: orongo-login.php?msg=5");
exit;
}
} else {
header("Location: orongo-login.php?msg=4");
exit;
}
} else {
header("Location: orongo-login.php");
exit;
}
<?php
/**
* @author Jaco Ruit
*/
require '../startOrongo.php';
startOrongo();
if (isset($_POST['username']) && isset($_POST['password']) && !isset($_SESSION['orongo-id']) && !isset($_SESSION['orongo-session-id'])) {
$username = Security::escape($_POST['username']);
$password = Security::hash($_POST['password']);
if (User::usernameExists($username)) {
$userID = User::getUserID($username);
$goodLogin = User::isGoodPassword($userID, $password);
if ($goodLogin) {
if (!User::userIsActivated($userID)) {
header("Location: ../orongo-login.php?msg=7");
exit;
} else {
$_SESSION['orongo-id'] = $userID;
$_SESSION['orongo-session-id'] = Session::createSession($userID);
header("Location: ../orongo-admin/");
exit;
}
} else {
header("Location: ../orongo-login.php?msg=0");
exit;
}
} else {
header("Location: ../orongo-login.php?msg=0");
exit;
}
