public function add()
{
//assume there's no problem with authentication
$noauth = false;
//perform the authentication check and redirect on success
Session::delete('default');
$response = file_get_contents("http://ipinfo.io/{$_SERVER['REMOTE_ADDR']}");
$IPResponse = json_decode($response);
if ($IPResponse->tor) {
// Display error message or something
$user = "";
Session::delete('default');
return false;
}
$user = Users::find("first", array("conditions" => array("username" => $this->request->data['username'])));
$default = array('username' => $user['username'], '_id' => $user['_id'], 'firstname' => $user['firstname'], 'lastname' => $user['lastname'], 'email' => $user['email'], 'walletid' => $user['walletid']);
if (password_verify($this->request->data['password'], $user['password'])) {
//Redirect on successful login
$loginpassword = $this->request->data['loginpassword'];
Session::write('default', $default);
$details = Details::find('first', array('conditions' => array('username' => $default['username'], 'user_id' => (string) $default['_id'])));
if ($details['active'] == "No") {
Session::delete('default');
return $this->redirect('/');
exit;
}
if ($details["EmailPasswordSecurity"] === "true" || $details["EmailPasswordSecurity"] === null) {
if ($details['oneCode'] === $this->request->data['loginpassword']) {
$data = array('oneCodeused' => 'Yes', 'lastconnected' => array('IP' => $IPResponse->ip, 'ISO' => $IPResponse->country, 'hostname' => $IPResponse->hostname, 'city' => $IPResponse->city, 'region' => $IPResponse->region, 'loc' => $IPResponse->loc, 'org' => $IPResponse->org, 'postal' => $IPResponse->postal, 'DateTime' => new \MongoDate()));
$details = Details::find('first', array('conditions' => array('username' => $default['username'], 'user_id' => (string) $default['_id'])))->save($data);
$details = Details::find('first', array('conditions' => array('username' => $default['username'], 'user_id' => (string) $default['_id'])));
if ($details["TOTP.Validate"] == 1 && $details["TOTP.Login"] == true) {
$totp = $this->request->data['totp'];
$ga = new GoogleAuthenticator();
if ($totp == "") {
Session::delete('default');
} else {
$checkResult = $ga->verifyCode($details['secret'], $totp, 2);
if ($checkResult == 1) {
Session::write('default', $default);
$user = Session::read('default');
/////////////////////////////////////////////////////////////////////////////////
$function = new Functions();
$IP = $function->get_ip_address();
$data = array('username' => $user['username'], 'IP' => $IPResponse->ip, 'ISO' => $IPResponse->country, 'hostname' => $IPResponse->hostname, 'city' => $IPResponse->city, 'region' => $IPResponse->region, 'loc' => $IPResponse->loc, 'org' => $IPResponse->org, 'postal' => $IPResponse->postal, 'DateTime' => new \MongoDate());
Logins::create()->save($data);
/////////////////////////////////////////////////////////////////////////////////
$user = Session::read('default');
return $this->redirect('ex::dashboard');
exit;
} else {
Session::delete('default');
}
}
} else {
Session::write('default', $default);
$user = Session::read('default');
/////////////////////////////////////////////////////////////////////////////////
$function = new Functions();
$IP = $function->get_ip_address();
$data = array('username' => $user['username'], 'IP' => $IPResponse->ip, 'ISO' => $IPResponse->country, 'hostname' => $IPResponse->hostname, 'city' => $IPResponse->city, 'region' => $IPResponse->region, 'loc' => $IPResponse->loc, 'org' => $IPResponse->org, 'postal' => $IPResponse->postal, 'DateTime' => new \MongoDate());
Logins::create()->save($data);
/////////////////////////////////////////////////////////////////////////////////
$user = Session::read('default');
return $this->redirect('ex::dashboard');
exit;
}
} else {
Session::delete('default');
}
} else {
$data = array('oneCodeused' => 'Yes', 'lastconnected' => array('IP' => $IPResponse->ip, 'ISO' => $IPResponse->country, 'hostname' => $IPResponse->hostname, 'city' => $IPResponse->city, 'region' => $IPResponse->region, 'loc' => $IPResponse->loc, 'org' => $IPResponse->org, 'postal' => $IPResponse->postal, 'DateTime' => new \MongoDate()));
$details = Details::find('first', array('conditions' => array('username' => $default['username'], 'user_id' => (string) $default['_id'])))->save($data);
$details = Details::find('first', array('conditions' => array('username' => $default['username'], 'user_id' => (string) $default['_id'])));
Session::write('default', $default);
$user = Session::read('default');
/////////////////////////////////////////////////////////////////////////////////
$function = new Functions();
$IP = $function->get_ip_address();
$data = array('username' => $user['username'], 'IP' => $IPResponse->ip, 'ISO' => $IPResponse->country, 'hostname' => $IPResponse->hostname, 'city' => $IPResponse->city, 'region' => $IPResponse->region, 'loc' => $IPResponse->loc, 'org' => $IPResponse->org, 'postal' => $IPResponse->postal, 'DateTime' => new \MongoDate());
Logins::create()->save($data);
/////////////////////////////////////////////////////////////////////////////////
$user = Session::read('default');
return $this->redirect('ex::dashboard');
}
}
//if theres still post data, and we weren't redirected above, then login failed
if ($this->request->data) {
//Login failed, trigger the error message
if (isset($this->request->query['check']) && $this->request->query['check'] == SECURITY_CHECK) {
$check = $this->request->query['check'];
}
$noauth = true;
}
//Return noauth status
$page = Pages::find('first', array('conditions' => array('pagename' => 'login')));
$title = $page['title'];
$keywords = $page['keywords'];
$description = $page['description'];
return compact('noauth', 'title', 'keywords', 'description');
return $this->redirect('/');
exit;
// Handle failed authentication attempts
}
public function detail($username = null)
{
if ($this->__init() == false) {
$this->redirect('ex::dashboard');
}
$transactions = Transactions::find('all', array('conditions' => array('username' => $username, 'Currency' => 'BTC'), 'order' => array('DateTime' => 'DESC')));
$transactionsXGC = Transactions::find('all', array('conditions' => array('username' => $username, 'Currency' => 'XGC'), 'order' => array('DateTime' => 'DESC')));
$Fiattransactions = Transactions::find('all', array('conditions' => array('username' => $username, 'Currency' => array('$nin' => array('BTC', 'XGC'))), 'order' => array('DateTime' => -1)));
$details = Details::find('all', array('conditions' => array('username' => $username)));
$userdetail = Details::find('first', array('conditions' => array('username' => $username)));
$id = $userdetail['user_id'];
$user = Users::find('all', array('conditions' => array('username' => $username)));
$logins = Logins::find('first', array('conditions' => array('username' => $username), 'order' => array('DateTime' => -1)));
$loginCount = Logins::find('count', array('conditions' => array('username' => $username)));
$UserOrders = Orders::find('all', array('conditions' => array('username' => $username, 'Completed' => 'N'), 'order' => array('DateTime' => -1)));
$UserCompleteOrders = Orders::find('all', array('conditions' => array('username' => $username, 'Completed' => 'Y'), 'order' => array('DateTime' => -1)));
$title = "Detail user";
$keywords = "Admin, Detail user";
$description = "Admin Panel for user";
$trades = Trades::find('all');
$ex = new ExController();
$YourOrders = array();
foreach ($trades as $t) {
$YourOrders['Buy'] = $ex->YourOrders($id, 'Buy', substr($t['trade'], 0, 3), substr($t['trade'], 4, 3));
$YourOrders['Sell'] = $ex->YourOrders($id, 'Sell', substr($t['trade'], 0, 3), substr($t['trade'], 4, 3));
$YourCompleteOrders['Buy'] = $ex->YourCompleteOrders($id, 'Buy', substr($t['trade'], 0, 3), substr($t['trade'], 4, 3));
$YourCompleteOrders['Sell'] = $ex->YourCompleteOrders($id, 'Sell', substr($t['trade'], 0, 3), substr($t['trade'], 4, 3));
}
$Commissions = $ex->TotalCommissions($id);
$CompletedCommissions = $ex->CompletedTotalCommissions($id);
$RequestFriends = $ex->RequestFriend($id);
$UsersRegistered = Details::count();
$functions = new Functions();
$OnlineUsers = $functions->OnlineUsers();
foreach ($trades as $t) {
$TotalOrders['Buy'] = $ex->TotalOrders($id, 'Buy', substr($t['trade'], 0, 3), substr($t['trade'], 4, 3));
$TotalOrders['Sell'] = $ex->TotalOrders($id, 'Sell', substr($t['trade'], 0, 3), substr($t['trade'], 4, 3));
$TotalCompleteOrders['Buy'] = $ex->TotalCompleteOrders($id, 'Buy', substr($t['trade'], 0, 3), substr($t['trade'], 4, 3));
$TotalCompleteOrders['Sell'] = $ex->TotalCompleteOrders($id, 'Sell', substr($t['trade'], 0, 3), substr($t['trade'], 4, 3));
}
return compact('title', 'transactions', 'transactionsXGC', 'details', 'user', 'UserOrders', 'Fiattransactions', 'UserCompleteOrders', 'title', 'keywords', 'description', 'logins', 'loginCount', 'YourOrders', 'YourCompleteOrders', 'Commissions', 'CompletedCommissions', 'TotalOrders', 'TotalCompleteOrders');
}