public static function login()
{
$username = null;
$password = null;
$valid = false;
if (isset($_SESSION['username']) && isset($_SESSION['password'])) {
// a session is active
$username = $_SESSION['username'];
$password = $_SESSION['password'];
$valid = true;
} else {
if (isset($_POST['username']) && isset($_POST['password'])) {
// a login is requested via HTTP POST
$username = $_POST['username'];
$password = $_POST['password'];
} else {
if (isset($_GET['username']) && isset($_GET['password'])) {
// a login is requested via HTTP GET
$username = $_GET['username'];
$password = $_GET['password'];
}
}
}
// validate the credentials
if (!$valid) {
$user_id = UserC::login($username, $password);
} else {
return true;
}
if ($user_id == -1) {
// invalid credentials
return false;
}
// valid credentials
// so store everything as part of the session
$_SESSION['username'] = strtolower($username);
$_SESSION['password'] = $password;
$_SESSION['userid'] = $user_id;
$_SESSION['userconf'] = getConfiguration();
$_SESSION['feed_new'] = '00.00';
$_SESSION['feed_old'] = microtime(true);
return true;
}
