<?php include_once $_SERVER['DOCUMENT_ROOT'] . "/engine/engine.php"; unset($_SESSION["data"]); parse_str($_SERVER["REQUEST_URI"], $req); $role = dict_filter_value("user_role", "code", $_SESSION["user-role"]); $tpl = $role["tpl"]; $__page = getTemplate($tpl); if ($_SERVER["SCRIPT_NAME"] == "/engine/index.php" and $_SESSION["user_role"] == "admin") { $engine = true; } else { $engine = false; } contentAppends($__page); $__page->contentTargeter(); if (is_callable("aikiBeforeShowHtml")) { aikiBeforeShowHtml($__page); } $__page->contentTargeter(); echo $__page->outerHtml(); aikiClearMemory();
function aikiLogin() { if (isset($_POST["mode"]) && $_POST["mode"] == "login") { $_SESSION["user"] = $_SESSION["User"] = $_SESSION["user_id"] = $_SESSION["user-id"] = $_SESSION["user_role"] = $_SESSION["user-role"] = ""; if ($_POST["login"] == $_SESSION["settings"]["login"] and $_POST["pass"] == $_SESSION["settings"]["pass"]) { setcookie("user_id", "", time() - 3600, "/"); unset($_COOKIE["user_id"]); $_SESSION["User"] = $_SESSION["user"] = "******"; $_SESSION["user-id"] = $_SESSION["user_id"] = "admin"; $_SESSION["user-role"] = $_SESSION["user_role"] = "admin"; } else { $users = aikiListItems("users", " {$_SESSION['settings']['elogin']} = '{$_POST['login']}' "); $users = $users["result"]; $res = false; foreach ($users as $user) { if ($res == false) { if ($user[$_SESSION['settings']['elogin']] == $_POST["login"]) { $error = ""; if ($user["active"] != "on") { $error = "active"; } if ($user["password"] == $_POST["pass"] or $user["password"] == md5($_POST["pass"])) { } else { $error = "pass"; } if ($error == "") { $_SESSION["User"] = $_SESSION["user"] = $user[$_SESSION['settings']['elogin']]; $_SESSION["user-id"] = $_SESSION["user_id"] = $user["id"]; $_SESSION["user-role"] = $_SESSION["user_role"] = $user["role"]; $res = true; } } } } unset($user); } if ($_SESSION["user"] > "") { if (isset($_POST["login-remember-me"]) && $_POST["login-remember-me"] == "on") { setcookie("user_id", $_SESSION["user_id"], time() + 3600 * 24 * 30, "/"); } $role = dict_filter_value("user_role", "code", $_SESSION["user_role"]); $redirect = $role["redirect"]; $scheme = "http"; if (isset($_SERVER["HTTP_X_FORWARDED_PROTOCOL"])) { $scheme = $_SERVER["HTTP_X_FORWARDED_PROTOCOL"]; } if (isset($_SERVER["REQUEST_SCHEME"])) { $scheme = $_SERVER["REQUEST_SCHEME"]; } header("Refresh: 0; URL={$scheme}://{$_SERVER["HTTP_HOST"]}{$redirect}"); echo "Вход успешно выполнен, ждите..."; die; } } if (isset($_GET["form"]) && ($_GET["form"] == "logout" or $_GET["form"] == "page") && $_GET["id"] == "logout") { $_SESSION["User"] = $_SESSION["user"] = $_SESSION["user-role"] = $_SESSION["user_role"] = $_SESSION["user-id"] = $_SESSION["user_id"] = ""; setcookie("user_id", "", time() - 3600, "/"); unset($_COOKIE["user_id"]); $_GET["mode"] = "home"; header("Refresh: 0; URL=http://{$_SERVER["HTTP_HOST"]}"); echo "Выход из системы, ждите..."; die; } if (isset($_COOKIE["user_id"]) && $_COOKIE["user_id"] > "") { if ($_SESSION["user_id"] > "") { setcookie("user_id", $_SESSION["user_id"], time() + 60 * 60 * 24 * 30, "/"); } // запоминаем на месяц $user = aikiReadItem("users", $_COOKIE["user_id"]); $_SESSION["User"] = $_SESSION["user"] = $user[$_SESSION['settings']['elogin']]; $_SESSION["user-id"] = $_SESSION["user_id"] = $user["id"]; $_SESSION["user-role"] = $_SESSION["user_role"] = $user["role"]; } if (!isset($_SESSION["user_role"]) or $_SESSION["user_role"] == "") { $_SESSION["user-role"] = $_SESSION["user_role"] = "noname"; } }