update($config->version, Config::$versions[count(Config::$versions) - 1]);
header('location: index.php');
exit;
}
// Load Rain TPL
require_once INC_DIR . 'rain.tpl.class.php';
require_once INC_DIR . 'rewriting.class.php';
RainTPL::$tpl_dir = RELATIVE_TPL_DIR . $config->template;
RainTPL::$base_url = $config->base_url;
RewriteEngine::$rewrite_base = RainTPL::$base_url;
RainTPL::$rewriteEngine = new RewriteEngine();
$tpl = new RainTPL();
$tpl->assign('start_generation_time', microtime(true), RainTPL::RAINTPL_IGNORE_SANITIZE);
$tpl->assign('config', $config);
// CSRF protection
require_once INC_DIR . 'csrf.php';
// Sharing options
require_once INC_DIR . 'share.php';
// Manage users
require_once INC_DIR . 'users.php';
if (log_user_in() === false) {
$error = array();
$error['type'] = 'error';
$error['title'] = 'Login error';
$error['content'] = '<p>The provided username or password is incorrect.</p>';
$tpl->assign('error', $error, RainTPL::RAINTPL_IGNORE_SANITIZE);
}
$tpl->assign('user', isset($_SESSION['user']) ? $_SESSION['user'] : false, RainTPL::RAINTPL_HTML_SANITIZE);
if (!isset($force_public) || !$force_public) {
check_anonymous_view();
}
<?php
require_once 'lib/lib.php';
do_page_prerequisites();
if (!(count($_POST) == 2 && array_key_exists('userid', $_POST) && array_key_exists('pass', $_POST))) {
do_http_redirect('login.php');
exit(0);
}
$userid = trim($_POST['userid']);
$pass = trim($_POST['pass']);
if (is_valid_user_and_pass($userid, $pass)) {
log_user_in($userid);
send_user_to_user_homepage();
} else {
logout_user();
send_user_to_login_page("Invalid user name and/or password.");
}
