function Page_Main()
{
$qs = new cQueryString();
if ($qs->Count > 0) {
$Sql = $qs->getValue("s");
$Sql = TEAdecrypt($Sql, EW_RANDOM_KEY);
if ($Sql != "") {
// Get the filter values (for "IN")
$Value = ew_AdjustSql($qs->getConvertedValue("f"));
if ($Value != "") {
$arValue = explode(",", $Value);
$FldType = $qs->getValue("lft");
// Filter field data type
if (is_numeric($FldType)) {
$FldType = intval($FldType);
}
$cnt = count($arValue);
for ($i = 0; $i < $cnt; $i++) {
$arValue[$i] = ew_QuotedValue($arValue[$i], $FldType);
}
$Sql = str_replace("{filter_value}", implode(",", $arValue), $Sql);
}
// get the query value (for "LIKE" or "=")
$Value = ew_AdjustSql($qs->getConvertedValue("q"));
if ($Value != "") {
$Sql = str_replace("{query_value}", $Value, $Sql);
}
$this->GetLookupValues($Sql);
}
} else {
die("Missing querystring.");
}
}
function Page_Main()
{
$post = ew_StripSlashes($_POST);
if (count($post) == 0) {
die("Missing post data.");
}
//$sql = $qs->getValue("s");
$sql = $post["s"];
$sql = TEAdecrypt($sql, EW_RANDOM_KEY);
if ($sql == "") {
die("Missing SQL.");
}
if (strpos($sql, "{filter}") > 0) {
$filters = "";
for ($i = 0; $i < 5; $i++) {
// Get the filter values (for "IN")
$filter = TEAdecrypt($post["f" . $i], EW_RANDOM_KEY);
if ($filter != "") {
$value = $post["v" . $i];
if ($value == "") {
if ($i > 0) {
// Empty parent field
//continue; // Allow
ew_AddFilter($filters, "1=0");
}
// Disallow
continue;
}
$arValue = explode(",", $value);
$fldtype = intval($post["t" . $i]);
for ($j = 0, $cnt = count($arValue); $j < $cnt; $j++) {
$arValue[$j] = ew_QuotedValue($arValue[$j], ew_FieldDataType($fldtype));
}
$filter = str_replace("{filter_value}", implode(",", $arValue), $filter);
ew_AddFilter($filters, $filter);
}
}
$sql = str_replace("{filter}", $filters != "" ? $filters : "1=1", $sql);
}
// Get the query value (for "LIKE" or "=")
$value = ew_AdjustSql(@$post["q"]);
if ($value != "") {
$sql = preg_replace('/LIKE \'(%)?\\{query_value\\}%\'/', ew_Like('\'$1{query_value}%\''), $sql);
$sql = str_replace("{query_value}", $value, $sql);
}
// Check custom function
$fn = @$post["fn"];
if ($fn != "" && function_exists($fn)) {
// Custom function(&$sql)
$sql = $fn($sql);
}
$this->GetLookupValues($sql);
}
function AutoLogin()
{
if (@$_COOKIE[EW_PROJECT_NAME]['AutoLogin'] == "autologin") {
$usr = TEAdecrypt(@$_COOKIE[EW_PROJECT_NAME]['Username'], EW_RANDOM_KEY);
$pwd = TEAdecrypt(@$_COOKIE[EW_PROJECT_NAME]['Password'], EW_RANDOM_KEY);
$AutoLogin = $this->ValidateUser($usr, $pwd, TRUE);
} else {
$AutoLogin = FALSE;
}
return $AutoLogin;
}
include "phpfn50.php";
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
// Date in the past
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT");
// Always modified
header("Cache-Control: private, no-store, no-cache, must-revalidate");
// HTTP/1.1
header("Cache-Control: post-check=0, pre-check=0", false);
header("Pragma: no-cache");
// HTTP/1.0
$LnkFldType = 0;
$LnkCount = 0;
$qs = new cQueryString();
if ($qs->Count > 0) {
$Sql = $qs->getValue("s");
$Sql = TEAdecrypt($Sql, EW_RANDOM_KEY);
$Value = $qs->getConvertedValue("q");
$Value = ew_AdjustSql($Value);
$LnkType = $qs->getValue("lt");
// Get link type
if ($LnkType == "2") {
// Auto fill
$LnkCount = 1;
$LnkFld = -1;
$LnkDisp1 = 0;
$LnkDisp2 = -1;
} elseif ($LnkType == "1") {
// Auto suggest
$LnkCount = 2;
$LnkFld = -1;
$LnkDisp1 = 0;
function Page_Main()
{
global $Security, $Language, $UserProfile, $gsFormError;
$sPassword = "";
$sLastUrl = $Security->LastUrl();
// Get last URL
if ($sLastUrl == "") {
$sLastUrl = "index.php";
}
if (IsLoggingIn()) {
$this->Username = @$_SESSION[EW_SESSION_USER_PROFILE_USER_NAME];
$sPassword = @$_SESSION[EW_SESSION_USER_PROFILE_PASSWORD];
$this->LoginType = @$_SESSION[EW_SESSION_USER_PROFILE_LOGIN_TYPE];
$bValidPwd = $Security->ValidateUser($this->Username, $sPassword, FALSE);
if ($bValidPwd) {
$_SESSION[EW_SESSION_USER_PROFILE_USER_NAME] = "";
$_SESSION[EW_SESSION_USER_PROFILE_PASSWORD] = "";
$_SESSION[EW_SESSION_USER_PROFILE_LOGIN_TYPE] = "";
}
} else {
if (!$Security->IsLoggedIn()) {
$Security->AutoLogin();
}
$this->Username = "";
// Initialize
if (@$_POST["username"] != "") {
// Setup variables
$this->Username = ew_RemoveXSS(ew_StripSlashes(@$_POST["username"]));
$sPassword = ew_RemoveXSS(ew_StripSlashes(@$_POST["password"]));
$this->LoginType = strtolower(ew_RemoveXSS(@$_POST["type"]));
}
if ($this->Username != "") {
$bValidate = $this->ValidateForm($this->Username, $sPassword);
if (!$bValidate) {
$this->setFailureMessage($gsFormError);
}
$_SESSION[EW_SESSION_USER_PROFILE_USER_NAME] = $this->Username;
// Save login user name
$_SESSION[EW_SESSION_USER_PROFILE_LOGIN_TYPE] = $this->LoginType;
// Save login type
} else {
if ($Security->IsLoggedIn()) {
if ($this->getFailureMessage() == "") {
$this->Page_Terminate($sLastUrl);
}
// Return to last accessed page
}
$bValidate = FALSE;
// Restore settings
if (@$_COOKIE[EW_PROJECT_NAME]['Checksum'] == strval(crc32(md5(EW_RANDOM_KEY)))) {
$this->Username = TEAdecrypt(@$_COOKIE[EW_PROJECT_NAME]['Username'], EW_RANDOM_KEY);
}
if (@$_COOKIE[EW_PROJECT_NAME]['AutoLogin'] == "autologin") {
$this->LoginType = "a";
} elseif (@$_COOKIE[EW_PROJECT_NAME]['AutoLogin'] == "rememberusername") {
$this->LoginType = "u";
} else {
$this->LoginType = "";
}
}
$bValidPwd = FALSE;
if ($bValidate) {
// Call Logging In event
$bValidate = $this->User_LoggingIn($this->Username, $sPassword);
if ($bValidate) {
$bValidPwd = $Security->ValidateUser($this->Username, $sPassword, FALSE);
// Manual login
if (!$bValidPwd) {
if ($this->getFailureMessage() == "") {
$this->setFailureMessage($Language->Phrase("InvalidUidPwd"));
}
// Invalid user id/password
}
} else {
if ($this->getFailureMessage() == "") {
$this->setFailureMessage($Language->Phrase("LoginCancelled"));
}
// Login cancelled
}
}
}
if ($bValidPwd) {
// Write cookies
if ($this->LoginType == "a") {
// Auto login
setcookie(EW_PROJECT_NAME . '[AutoLogin]', "autologin", EW_COOKIE_EXPIRY_TIME);
// Set autologin cookie
setcookie(EW_PROJECT_NAME . '[Username]', TEAencrypt($this->Username, EW_RANDOM_KEY), EW_COOKIE_EXPIRY_TIME);
// Set user name cookie
setcookie(EW_PROJECT_NAME . '[Password]', TEAencrypt($sPassword, EW_RANDOM_KEY), EW_COOKIE_EXPIRY_TIME);
// Set password cookie
setcookie(EW_PROJECT_NAME . '[Checksum]', crc32(md5(EW_RANDOM_KEY)), EW_COOKIE_EXPIRY_TIME);
} elseif ($this->LoginType == "u") {
// Remember user name
setcookie(EW_PROJECT_NAME . '[AutoLogin]', "rememberusername", EW_COOKIE_EXPIRY_TIME);
// Set remember user name cookie
setcookie(EW_PROJECT_NAME . '[Username]', TEAencrypt($this->Username, EW_RANDOM_KEY), EW_COOKIE_EXPIRY_TIME);
// Set user name cookie
setcookie(EW_PROJECT_NAME . '[Checksum]', crc32(md5(EW_RANDOM_KEY)), EW_COOKIE_EXPIRY_TIME);
} else {
setcookie(EW_PROJECT_NAME . '[AutoLogin]', "", EW_COOKIE_EXPIRY_TIME);
// Clear auto login cookie
}
// Call loggedin event
$this->User_LoggedIn($this->Username);
$this->Page_Terminate($sLastUrl);
// Return to last accessed URL
} elseif ($this->Username != "" && $sPassword != "") {
// Call user login error event
$this->User_LoginError($this->Username, $sPassword);
}
}
