<?php /** * @author Jaco Ruit */ require 'startOrongo.php'; startOrongo('orongo-activation'); if (isset($_GET['code']) && !isset($_SESSION['orongo-id']) && !isset($_SESSION['orongo-session-id'])) { $code = $_GET['code']; if (User::isGoodActivationCode($code)) { $uid = User::getUserIDByActivationCode($code); if (!User::userIsActivated($uid)) { User::activateUser($uid); User::deleteActivationCode($code); header("Location: orongo-login.php?msg=6"); exit; } else { @User::deleteActivationCode($code); header("Location: orongo-login.php?msg=5"); exit; } } else { header("Location: orongo-login.php?msg=4"); exit; } } else { header("Location: orongo-login.php"); exit; }
<?php /** * @author Jaco Ruit */ require '../startOrongo.php'; startOrongo(); if (isset($_POST['username']) && isset($_POST['password']) && !isset($_SESSION['orongo-id']) && !isset($_SESSION['orongo-session-id'])) { $username = Security::escape($_POST['username']); $password = Security::hash($_POST['password']); if (User::usernameExists($username)) { $userID = User::getUserID($username); $goodLogin = User::isGoodPassword($userID, $password); if ($goodLogin) { if (!User::userIsActivated($userID)) { header("Location: ../orongo-login.php?msg=7"); exit; } else { $_SESSION['orongo-id'] = $userID; $_SESSION['orongo-session-id'] = Session::createSession($userID); header("Location: ../orongo-admin/"); exit; } } else { header("Location: ../orongo-login.php?msg=0"); exit; } } else { header("Location: ../orongo-login.php?msg=0"); exit; }