function login_verify($dataInbound) { // Something something cookie, something something database function return_failed($error) { echo '<script type="text/javascript"> window.alert("' . $error . '"); </script>'; echo '<script type="text/javascript"> window.location="/"; </script>'; die; } if (!function_exists('configure_active_database')) { require '../api/settings.php'; require '../api/api.fnc.php'; $socket = ConnectToDatabase(configure_active_database()) or die("<strong>Error:</strong> couldn't find database! Try again in a few moments."); } else { $socket = ConnectToDatabase(configure_active_database()) or die("<strong>Error:</strong> couldn't find database! Try again in a few moments."); } $uvEmailAddress = $dataInbound['emailAddress']; $uvFirstName = $dataInbound['firstName']; $uvLoginStamp = $dataInbound['loginStamped']; if (empty($uvLoginStamp)) { // Well that was easy... return_failed("No Stamp"); } else { $return = array(); $emailAddress = $socket->real_escape_string(filter_var($uvEmailAddress, FILTER_VALIDATE_EMAIL)); $firstName = $socket->real_escape_string(filter_var($uvFirstName, FILTER_SANITIZE_FULL_SPECIAL_CHARS, FILTER_FLAG_NO_ENCODE_QUOTES)); $safeQuery = "SELECT * FROM `users` WHERE `emailaddress`='{$emailAddress}' AND `firstname`='{$firstName}';"; $result = MakeDatabaseQuery($safeQuery, $socket) or return_failed("Query Failed"); $isRows = $result->num_rows; if ($isRows == 0) { // Nothing came back in the query. return_failed("No Rows"); } else { // There was a result... $returnKeys = MakeDatabaseFetch($result, $socket); if ($returnKeys[emailaddress] == $emailAddress) { if ($returnKeys[firstname] == $firstName) { $return["email_address"] = $returnKeys['emailaddress']; $return["first_name"] = $returnKeys['firstname']; //$return["user_password"] = $returnKeys['password']; } } } } return $return; }
return_failed(); } return $correctTimeStamp; } // @Build Query $safeQuery = "SELECT * FROM `administrators` WHERE `emailaddress`='{$cleanData['emailaddress']}' AND `password`='{$cleanData['password']}';"; // @Insert New User try { $result = MakeDatabaseQuery($safeQuery, $socket) or return_failed(); $isRows = $result->num_rows; if ($isRows == 0) { // Nothing came back in the query. return_failed(); } else { // There was a result... $returnKeys = MakeDatabaseFetch($result, $socket); if ($returnKeys[emailaddress] == $cleanData[emailaddress]) { if ($returnKeys[password] == $cleanData[password]) { // Vaid user. $time = fix_time(time() + 9000); echo '<script type="text/javascript"> document.cookie="emailAddress=' . $returnKeys[emailaddress] . '; expires=' . $time . ';"; document.cookie="firstName=' . $returnKeys[firstname] . '; expires=' . $time . ';"; document.cookie="loginStamped=until; expires=' . $time . ';"; window.location="./dashboard.php"; </script>'; } else { return_failed(); } } else { return_failed();