public static function login() { $username = null; $password = null; $valid = false; if (isset($_SESSION['username']) && isset($_SESSION['password'])) { // a session is active $username = $_SESSION['username']; $password = $_SESSION['password']; $valid = true; } else { if (isset($_POST['username']) && isset($_POST['password'])) { // a login is requested via HTTP POST $username = $_POST['username']; $password = $_POST['password']; } else { if (isset($_GET['username']) && isset($_GET['password'])) { // a login is requested via HTTP GET $username = $_GET['username']; $password = $_GET['password']; } } } // validate the credentials if (!$valid) { $user_id = UserC::login($username, $password); } else { return true; } if ($user_id == -1) { // invalid credentials return false; } // valid credentials // so store everything as part of the session $_SESSION['username'] = strtolower($username); $_SESSION['password'] = $password; $_SESSION['userid'] = $user_id; $_SESSION['userconf'] = getConfiguration(); $_SESSION['feed_new'] = '00.00'; $_SESSION['feed_old'] = microtime(true); return true; }