function xoops_user_validate($username, $password, $validate)
{
global $xoopsModuleConfig, $xoopsConfig;
if ($xoopsModuleConfig['site_user_auth'] == 1) {
if ($ret = check_for_lock(basename(__FILE__), $username, $password)) {
return $ret;
}
if (!checkright(basename(__FILE__), $username, $password)) {
mark_for_lock(basename(__FILE__), $username, $password);
return array('ErrNum' => 9, "ErrDesc" => 'No Permission for plug-in');
}
}
if ($validate['passhash'] != '') {
if ($validate['passhash'] != sha1($validate['time'] - $validate['rand'] . $validate['uname'] . $validate['pass'])) {
return array("ERRNUM" => 4, "ERRTXT" => 'No Passhash');
}
} else {
return array("ERRNUM" => 4, "ERRTXT" => 'No Passhash');
}
include_once XOOPS_ROOT_PATH . '/class/auth/authfactory.php';
include_once XOOPS_ROOT_PATH . '/language/' . $xoopsConfig['language'] . '/auth.php';
$xoopsAuth =& XoopsAuthFactory::getAuthConnection($myts->addSlashes($validate['uname']));
if (check_auth_class($xoopsAuth) == true) {
$result = $xoopsAuth->validate($validate['uname'], $validate['email'], $validate['pass'], $validate['vpass']);
return $result;
} else {
return array('ERRNUM' => 1, 'RESULT' => XoopsUserUtility::validate($validate['uname'], $validate['email'], $validate['pass'], $validate['vpass']));
}
}
function xoops_authentication($username, $password, $auth)
{
global $xoopsModuleConfig, $xoopsConfig;
if ($xoopsModuleConfig['site_user_auth'] == 1) {
if ($ret = check_for_lock(basename(__FILE__), $username, $password)) {
return $ret;
}
if (!checkright(basename(__FILE__), $username, $password)) {
mark_for_lock(basename(__FILE__), $username, $password);
return array('ErrNum' => 9, "ErrDesc" => 'No Permission for plug-in');
}
}
if ($auth['passhash'] != '') {
if ($auth['passhash'] != sha1($auth['time'] - $auth['rand'] . $auth['username'] . $auth['password'])) {
return array("ERRNUM" => 4, "ERRTXT" => 'No Passhash');
}
} else {
return array("ERRNUM" => 4, "ERRTXT" => 'No Passhash');
}
require_once XOOPS_ROOT_PATH . '/class/auth/authfactory.php';
require_once XOOPS_ROOT_PATH . '/language/' . $xoopsConfig['language'] . '/auth.php';
$xoopsAuth =& XoopsAuthFactory::getAuthConnection(addslashes($auth['username']));
$user = $xoopsAuth->authenticate(addslashes($auth['username']), addslashes($auth['password']));
if (is_object($user)) {
$row = array("uid" => $user->getVar('uid'), "uname" => $user->getVar('uname'), "email" => $user->getVar('email'), "user_from" => $user->getVar('user_from'), "name" => $user->getVar('name'), "url" => $user->getVar('url'), "user_icq" => $user->getVar('user_icq'), "user_sig" => $user->getVar('user_sig'), "user_viewemail" => $user->getVar('user_viewemail'), "user_aim" => $user->getVar('user_aim'), "user_yim" => $user->getVar('user_yim'), "user_msnm" => $user->getVar('user_msnm'), "attachsig" => $user->getVar('attachsig'), "timezone_offset" => $user->getVar('timezone_offset'), "notify_method" => $user->getVar('notify_method'), "user_occ" => $user->getVar('user_occ'), "bio" => $user->getVar('bio'), "user_intrest" => $user->getVar('user_intrest'), "user_mailok" => $user->getVar('user_mailok'));
}
if (!empty($row)) {
return array("ERRNUM" => 1, "RESULT" => $row);
} else {
return array("ERRNUM" => 3, "ERRTXT" => _ERR_FUNCTION_FAIL);
}
}
function xoops_network_disclaimer($username, $password)
{
global $xoopsModuleConfig, $xoopsConfig;
if ($xoopsModuleConfig['site_user_auth'] == 1) {
if ($ret = check_for_lock(basename(__FILE__), $username, $password)) {
return $ret;
}
if (!checkright(basename(__FILE__), $username, $password)) {
mark_for_lock(basename(__FILE__), $username, $password);
return array('ErrNum' => 9, "ErrDesc" => 'No Permission for plug-in');
}
}
include_once XOOPS_ROOT_PATH . '/class/auth/authfactory.php';
include_once XOOPS_ROOT_PATH . '/language/' . $xoopsConfig['language'] . '/auth.php';
$xoopsAuth =& XoopsAuthFactory::getAuthConnection();
if (check_auth_class($xoopsAuth) == true) {
$result = $xoopsAuth->network_disclaimer();
return $result;
} else {
$config_handler =& xoops_gethandler('config');
$xoopsConfigUser =& $config_handler->getConfigsByCat(XOOPS_CONF_USER);
return array("ERRNUM" => 1, "RESULT" => $xoopsConfigUser['reg_disclaimer']);
}
}
?>
</button>
</div>
<input type="hidden" name="xoops_redirect" value="/upgrade/index.php"/>
</form>
<?php
} else {
$myts = MyTextSanitizer::getInstance();
$uname = !isset($_POST['uname']) ? '' : $myts->addSlashes(trim($_POST['uname']));
$pass = !isset($_POST['pass']) ? '' : $myts->addSlashes(trim($_POST['pass']));
$member_handler = xoops_getHandler('member');
include_once XOOPS_ROOT_PATH . '/class/auth/authfactory.php';
if (!@(include_once XOOPS_ROOT_PATH . '/language/' . $upgrade_language . '/auth.php')) {
include_once XOOPS_ROOT_PATH . '/language/english/auth.php';
}
$xoopsAuth =& XoopsAuthFactory::getAuthConnection($uname);
$user = $xoopsAuth->authenticate($uname, $pass);
// For XOOPS 2.2*
if (!is_object($user)) {
$criteria = new CriteriaCompo(new Criteria('loginname', $uname));
$criteria->add(new Criteria('pass', md5($pass)));
list($user) = $member_handler->getUsers($criteria);
}
$isAllowed = false;
if (is_object($user) && $user->getVar('level') > 0) {
$isAllowed = true;
if ($xoopsConfig['closesite'] == 1) {
$groups = $user->getGroups();
if (in_array(XOOPS_GROUP_ADMIN, $groups) || array_intersect($groups, $xoopsConfig['closesite_okgrp'])) {
$isAllowed = true;
} else {
* @author John Neill <*****@*****.**>
* @version $Id: checklogin.php 3541 2009-08-31 23:02:37Z trabis $
*/
defined('XOOPS_ROOT_PATH') or die('Restricted access');
xoops_loadLanguage('user');
$uname = !isset($_POST['uname']) ? '' : trim($_POST['uname']);
$pass = !isset($_POST['pass']) ? '' : trim($_POST['pass']);
if ($uname == '' || $pass == '') {
redirect_header(XOOPS_URL . '/user.php', 1, _US_INCORRECTLOGIN);
exit;
}
$member_handler =& xoops_gethandler('member');
$myts =& MyTextsanitizer::getInstance();
include_once $GLOBALS['xoops']->path('class/auth/authfactory.php');
xoops_loadLanguage('auth');
$xoopsAuth =& XoopsAuthFactory::getAuthConnection($myts->addSlashes($uname));
$user = $xoopsAuth->authenticate($myts->addSlashes($uname), $myts->addSlashes($pass));
if (false != $user) {
if (0 == $user->getVar('level')) {
redirect_header(XOOPS_URL . '/index.php', 5, _US_NOACTTPADM);
exit;
}
if ($xoopsConfig['closesite'] == 1) {
$allowed = false;
foreach ($user->getGroups() as $group) {
if (in_array($group, $xoopsConfig['closesite_okgrp']) || XOOPS_GROUP_ADMIN == $group) {
$allowed = true;
break;
}
}
if (!$allowed) {
if (!defined('XOOPS_ROOT_PATH')) {
exit;
}
include_once XOOPS_ROOT_PATH . '/language/' . $xoopsConfig['language'] . '/user.php';
$uname = !isset($_POST['uname']) ? '' : trim($_POST['uname']);
$pass = !isset($_POST['pass']) ? '' : trim($_POST['pass']);
if ($uname == '' || $pass == '') {
redirect_header(XOOPS_URL . '/user.php', 1, _US_INCORRECTLOGIN);
exit;
}
$member_handler =& xoops_gethandler('member');
$myts =& MyTextsanitizer::getInstance();
// Place here the Auth class calls
//**** BEGIN AUTH ****
require_once XOOPS_ROOT_PATH . '/class/auth/authfactory.php';
$xoopsAuth =& XoopsAuthFactory::getAuthConnection();
$auth = $xoopsAuth->authenticate($myts->addSlashes($uname), $myts->addSlashes($pass));
if (!$auth) {
redirect_header(XOOPS_URL . '/user.php', 5, _US_INCORRECTLOGIN . $xoopsAuth->getHtmlErrors());
exit;
}
//**** END AUTH ****
$user =& $member_handler->loginUser($myts->addSlashes($uname), $myts->addslashes($pass));
if (false != $user) {
if (0 >= $user->getVar('level')) {
redirect_header(XOOPS_URL . '/index.php', 5, _US_NOACTTPADM);
exit;
}
if ($xoopsConfig['closesite'] == 1) {
$allowed = false;
foreach ($user->getGroups() as $group) {
function xoops_create_user($username, $password, $user, $siteinfo)
{
xoops_load("userUtility");
global $xoopsModuleConfig, $xoopsConfig;
if ($xoopsModuleConfig['site_user_auth'] == 1) {
if ($ret = check_for_lock(basename(__FILE__), $username, $password)) {
return $ret;
}
if (!checkright(basename(__FILE__), $username, $password)) {
mark_for_lock(basename(__FILE__), $username, $password);
return array('ErrNum' => 9, "ErrDesc" => 'No Permission for plug-in');
}
}
return array("Username" => $username, "password" => $password, 'user' => $user, 'siteinfo' => $siteinfo);
if ($user['passhash'] != '') {
if ($user['passhash'] != sha1($user['time'] - $user['rand'] . $user['uname'] . $user['pass'])) {
return array("ERRNUM" => 4, "ERRTXT" => 'No Passhash');
}
} else {
return array("ERRNUM" => 4, "ERRTXT" => 'No Passhash');
}
foreach ($user as $k => $l) {
${$k} = $l;
}
include_once XOOPS_ROOT_PATH . '/class/auth/authfactory.php';
include_once XOOPS_ROOT_PATH . '/language/' . $xoopsConfig['language'] . '/auth.php';
$xoopsAuth =& XoopsAuthFactory::getAuthConnection($uname);
if (check_auth_class($xoopsAuth) == true) {
$result = $xoopsAuth->create_user($user_viewemail, $uname, $email, $url, $actkey, $pass, $timezone_offset, $user_mailok, $siteinfo);
return $result;
} else {
if (strlen(userCheck($uname, $email, $pass, $pass)) == 0) {
global $xoopsConfig;
$config_handler =& xoops_gethandler('config');
$xoopsConfigUser =& $config_handler->getConfigsByCat(XOOPS_CONF_USER);
$member_handler =& xoops_gethandler('member');
$newuser =& $member_handler->createUser();
$newuser->setVar('user_viewemail', $user_viewemail, true);
$newuser->setVar('uname', $uname, true);
$newuser->setVar('email', $email, true);
if ($url != '') {
$newuser->setVar('url', formatURL($url), true);
}
$newuser->setVar('user_avatar', 'blank.gif', true);
if (empty($actkey)) {
$actkey = substr(md5(uniqid(mt_rand(), 1)), 0, 8);
}
$newuser->setVar('actkey', $actkey, true);
$newuser->setVar('pass', md5($pass), true);
$newuser->setVar('timezone_offset', $timezone_offset, true);
$newuser->setVar('user_regdate', time(), true);
$newuser->setVar('uorder', $xoopsConfig['com_order'], true);
$newuser->setVar('umode', $xoopsConfig['com_mode'], true);
$newuser->setVar('user_mailok', $user_mailok, true);
$newuser->setVar('user_intrest', _US_USERREG . ' @ ' . $xoops_url, true);
if ($xoopsConfigUser['activation_type'] == 1) {
$newuser->setVar('level', 1, true);
}
if (!$member_handler->insertUser($newuser, true)) {
$return = array('state' => 1, "text" => _US_REGISTERNG);
} else {
$newid = $newuser->getVar('uid');
if (!$member_handler->addUserToGroup(XOOPS_GROUP_USERS, $newid)) {
$return = array('state' => 1, "text" => _US_REGISTERNG);
}
if ($xoopsConfigUser['activation_type'] == 1) {
$return = array('state' => 2, "user" => $uname);
}
// Sending notification email to user for self activation
if ($xoopsConfigUser['activation_type'] == 0) {
$xoopsMailer =& xoops_getMailer();
$xoopsMailer->useMail();
$xoopsMailer->setTemplate('register.tpl');
$xoopsMailer->assign('SITENAME', $siteinfo['sitename']);
$xoopsMailer->assign('ADMINMAIL', $siteinfo['adminmail']);
$xoopsMailer->assign('SITEURL', XOOPS_URL . "/");
$xoopsMailer->setToUsers(new XoopsUser($newid));
$xoopsMailer->setFromEmail($siteinfo['adminmail']);
$xoopsMailer->setFromName($siteinfo['sitename']);
$xoopsMailer->setSubject(sprintf(_US_USERKEYFOR, $uname));
if (!$xoopsMailer->send()) {
$return = array('state' => 1, "text" => _US_YOURREGMAILNG);
} else {
$return = array('state' => 1, "text" => _US_YOURREGISTERED);
}
// Sending notification email to administrator for activation
} elseif ($xoopsConfigUser['activation_type'] == 2) {
$xoopsMailer =& xoops_getMailer();
$xoopsMailer->useMail();
$xoopsMailer->setTemplate('adminactivate.tpl');
$xoopsMailer->assign('USERNAME', $uname);
$xoopsMailer->assign('USEREMAIL', $email);
if ($siteinfo['xoops_url'] == XOOPS_URL) {
$xoopsMailer->assign('USERACTLINK', $siteinfo['xoops_url'] . '/register.php?op=actv&id=' . $newid . '&actkey=' . $actkey);
}
} else {
$xoopsMailer->assign('USERACTLINK', $siteinfo['xoops_url'] . '/register.php?op=actv&uname=' . $uname . '&actkey=' . $actkey);
}
$xoopsMailer->assign('SITENAME', $siteinfo['sitename']);
$xoopsMailer->assign('ADMINMAIL', $siteinfo['adminmail']);
$xoopsMailer->assign('SITEURL', $siteinfo['xoops_url'] . "/");
$member_handler =& xoops_gethandler('member');
$xoopsMailer->setToGroups($member_handler->getGroup($xoopsConfigUser['activation_group']));
$xoopsMailer->setFromEmail($siteinfo['adminmail']);
$xoopsMailer->setFromName($siteinfo['sitename']);
$xoopsMailer->setSubject(sprintf(_US_USERKEYFOR, $uname));
if (!$xoopsMailer->send()) {
$return = array('state' => 1, "text" => _US_YOURREGMAILNG);
} else {
$return = array('state' => 1, "text" => _US_YOURREGISTERED2);
}
}
if ($xoopsConfigUser['new_user_notify'] == 1 && !empty($xoopsConfigUser['new_user_notify_group'])) {
$xoopsMailer =& xoops_getMailer();
$xoopsMailer->useMail();
$member_handler =& xoops_gethandler('member');
$xoopsMailer->setToGroups($member_handler->getGroup($xoopsConfigUser['new_user_notify_group']));
$xoopsMailer->setFromEmail($siteinfo['adminmail']);
$xoopsMailer->setFromName($siteinfo['sitename']);
$xoopsMailer->setSubject(sprintf(_US_NEWUSERREGAT, $xoopsConfig['sitename']));
$xoopsMailer->setBody(sprintf(_US_HASJUSTREG, $uname));
$xoopsMailer->send();
}
if (strpos(strtolower($_SERVER['HTTP_HOST']), 'xortify.com')) {
define('XORTIFY_API_LOCAL', 'http://xortify.chronolabs.coop/soap/');
define('XORTIFY_API_URI', 'http://xortify.chronolabs.coop/soap/');
} else {
define('XORTIFY_API_LOCAL', 'http://xortify.com/soap/');
define('XORTIFY_API_URI', 'http://xortify.com/soap/');
}
$soap_client = @new soapclient(NULL, array('location' => XORTIFY_API_LOCAL, 'uri' => XORTIFY_API_URI));
$result = @$soap_client->__soapCall('xoops_create_user', array("username" => $username, "password" => $password, "user" => $user, "siteinfo" => $siteinfo));
return array("ERRNUM" => 1, "RESULT" => $return);
} else {
return array("ERRNUM" => 1, "RESULT" => array('state' => 1, 'text' => userCheck($uname, $email, $pass, $pass)));
}
}
}
function xoops_check_activation($username, $password, $user)
{
global $xoopsModuleConfig, $xoopsConfig;
if ($xoopsModuleConfig['site_user_auth'] == 1) {
if ($ret = check_for_lock(basename(__FILE__), $username, $password)) {
return $ret;
}
if (!checkright(basename(__FILE__), $username, $password)) {
mark_for_lock(basename(__FILE__), $username, $password);
return array('ErrNum' => 9, "ErrDesc" => 'No Permission for plug-in');
}
}
if ($user['passhash'] != '') {
if ($user['passhash'] != sha1($user['time'] - $user['rand'] . $user['uname'] . $user['actkey'])) {
return array("ERRNUM" => 4, "ERRTXT" => 'No Passhash');
}
} else {
return array("ERRNUM" => 4, "ERRTXT" => 'No Passhash');
}
foreach ($user as $k => $l) {
${$k} = $l;
}
$siteinfo = check_siteinfo($siteinfo);
include_once XOOPS_ROOT_PATH . '/class/auth/authfactory.php';
include_once XOOPS_ROOT_PATH . '/language/' . $xoopsConfig['language'] . '/auth.php';
$xoopsAuth =& XoopsAuthFactory::getAuthConnection(addslashes($uname));
if (check_auth_class($xoopsAuth) == true) {
$result = $xoopsAuth->check_activation($uname, $actkey, $siteinfo);
return $result;
} else {
global $xoopsConfig, $xoopsConfigUser;
global $xoopsDB;
$sql = "SELECT uid FROM " . $xoopsDB->prefix('users') . " WHERE uname = '{$uname}'";
$ret = $xoopsDB->query($sql);
$row = $xoopsDB->fetchArray($ret);
$member_handler =& xoops_gethandler('member');
$thisuser =& $member_handler->getUser($row['uid']);
if (!is_object($thisuser)) {
exit;
}
if ($thisuser->getVar('actkey') != $actkey) {
$return = array("state" => _US_STATE_ONE, "action" => "redirect_header", "url" => 'index.php', "opt" => 5, "text" => _US_ACTKEYNOT);
} else {
if ($thisuser->getVar('level') > 0) {
$return = array("state" => _US_STATE_ONE, "action" => "redirect_header", "url" => 'user.php', "opt" => 5, "text" => _US_ACONTACT, "set" => false);
} else {
if (false != $member_handler->activateUser($thisuser)) {
$config_handler =& xoops_gethandler('config');
$xoopsConfigUser = $config_handler->getConfigsByCat(XOOPS_CONF_USER);
if ($xoopsConfigUser['activation_type'] == 2) {
$myts =& MyTextSanitizer::getInstance();
$xoopsMailer =& xoops_getMailer();
$xoopsMailer->useMail();
$xoopsMailer->setTemplate('activated.tpl');
$xoopsMailer->assign('SITENAME', $siteinfo['sitename']);
$xoopsMailer->assign('ADMINMAIL', $siteinfo['adminmail']);
$xoopsMailer->assign('SITEURL', $siteinfo['xoops_url'] . "/");
$xoopsMailer->setToUsers($thisuser);
$xoopsMailer->setFromEmail($siteinfo['adminmail']);
$xoopsMailer->setFromName($siteinfo['sitename']);
$xoopsMailer->setSubject(sprintf(_US_YOURACCOUNT, $siteinfo['sitename']));
if (!$xoopsMailer->send()) {
$return = array("state" => _US_STATE_TWO, "text" => sprintf(_US_ACTVMAILNG, $thisuser->getVar('uname')));
} else {
$return = array("state" => _US_STATE_TWO, "text" => sprintf(_US_ACTVMAILOK, $thisuser->getVar('uname')));
}
} else {
$local = explode(' @ ', $thisuser->getVar('user_intrest'));
if ($local[0] == _US_USERREG) {
$return = array("state" => _US_STATE_ONE, "action" => "redirect_header", "url" => $local[1] . '/user.php', "opt" => 5, "text" => _US_ACTLOGIN, "set" => false);
} else {
$return = array("state" => _US_STATE_ONE, "action" => "redirect_header", "url" => 'user.php', "opt" => 5, "text" => _US_ACTLOGIN, "set" => false);
}
}
} else {
$return = array("state" => _US_STATE_ONE, "action" => "redirect_header", "url" => 'index.php', "opt" => 5, "text" => 'Activation failed!');
}
}
}
return $return;
}
}
