$_SESSION['message'] = 'Het account wat hoort bij ' . $gebruiker . ' is geblokkeerd! Probeer over enkele minuten weer.';
header('Location: ' . BASE_URL);
exit;
}
$match = password_verify($wachtwoord, $user_data["wachtwoord"]);
if ($match === FALSE) {
//teller toevoegen als deze niet bestaat zodat een gebruiker geblokkeerd wordt als hij tevaak met zelfde emailadres verkeerd inlogd.
if (!isset($_SESSION['blocked_couter' . $gebruiker])) {
$_SESSION['blocked_couter' . $gebruiker] = 0;
}
$_SESSION['blocked_couter' . $gebruiker]++;
$aantalpogingen = 4 - $_SESSION['blocked_couter' . $gebruiker];
$_SESSION['message'] = 'Wachtwoord onjuist. U heeft nog ' . $aantalpogingen . ' pogingen om in te loggen met dit email adres.';
if ($_SESSION['blocked_couter' . $gebruiker] >= 4) {
//gebruiker blocken
blockUser($gebruiker);
$_SESSION['blocked_couter' . $gebruiker] = 0;
$_SESSION['message'] = 'Het account wat hoort bij' . $gebruiker . 'is nu geblokkeerd voor 10 minuten!';
}
header('Location: ' . BASE_URL);
exit;
} else {
if ($user_data['account_activated'] == 0) {
$_SESSION['account_activated'] = $user_data["account_activated"];
$_SESSION['gebruiker_id'] = $user_data["gebruiker_id"];
$_SESSION['timeout'] = time();
header('Location: ' . BASE_URL . 'password/');
exit;
}
}
$_SESSION['gebruiker_id'] = $user_data["gebruiker_id"];
break;
case 'RzGetBlockingUsers':
$bBlocking = true;
//break shouldn't be here
//break shouldn't be here
case 'RzGetBlockedUsers':
if (!isset($bBlocking)) {
$bBlocking = false;
}
$aUsers = getBlockingList($sId, $bBlocking);
$sContents = parseXml($aXmlTemplates['result'], implode(",", $aUsers));
break;
case 'RzSetBlocked':
$sUser = isset($_REQUEST['user']) ? $_REQUEST['user'] : "";
$bBlocked = isset($_REQUEST['blocked']) ? $_REQUEST['blocked'] == TRUE_VAL : false;
blockUser($sId, $sUser, $bBlocked);
break;
case 'RayzGetMemberships':
$aMemberships = rzGetMemberships();
$sMemberships = "";
foreach ($aMemberships as $sId => $sName) {
$sMemberships .= rzGetMembershipValues($sId, $sName);
}
$sContents = rzGetMembershipSettings(true);
$sContents .= makeGroup($sMemberships, "memberships");
break;
case 'RayzSetMembershipSetting':
$sKey = isset($_REQUEST['key']) ? $_REQUEST['key'] : "";
$sValue = isset($_REQUEST['value']) ? $_REQUEST['value'] : "";
$aKeys = getArray("SELECT `keys`.`ID` AS `KeyID`, `values`.`ID` AS `ValueID` FROM `" . MODULE_DB_PREFIX . "MembershipsSettings` AS `keys` LEFT JOIN `" . MODULE_DB_PREFIX . "Memberships` AS `values` ON `keys`.`ID`=`values`.`Setting` AND `values`.`Membership`='" . $sId . "' WHERE `keys`.`Name`='" . $sKey . "' LIMIT 1");
if (empty($aKeys['KeyID'])) {
/*
This script and site designed and built by Mark O'Russa, Mark Pro Audio Inc. Copyright 2008-2013.
This file and it's functions are to be used solely by admin/userManagement.php in conjunction with js/userManagement.js.
*/
require_once 'siteAdmin.php';
$fileInfo = array('title' => 'Login', 'fileName' => 'includes/userManagementMethods.php');
$debug->newFile($fileInfo['fileName']);
$success = false;
if (MODE == 'buildUMLists') {
buildUMLists();
} elseif (MODE == 'buildUsers') {
buildUsers();
} elseif (MODE == 'buildBlockUsers') {
buildBlockUsers();
} elseif (MODE == 'blockUser') {
blockUser();
} elseif (MODE == 'deleteUser') {
deleteUser();
} elseif (MODE == 'updateSiteRole') {
updateSiteRole();
} elseif (MODE == 'updateFolderRole') {
updateFolderRole();
} elseif (MODE == 'updateListRole') {
updateListRole();
} elseif (MODE == 'updateUserInfo') {
updateUserInfo();
} elseif (MODE == 'updateSiteRole') {
updateSiteRole();
} elseif (MODE == 'viewUserRole') {
viewUserRole();
} else {