function SET_login($NAME, $PASS, $CHECKED)
{
global $SET_THEMYSQLHOSTNAME;
global $SET_THEMYSQLUSERNAME;
global $SET_THEMYSQLPASSWORD;
global $SET_THEMYSQLDBNAME;
global $SET_THEMYSQLLOGINTABLE;
global $SET_COOKIEEXPIRY;
error_log($SET_THEMYSQLHOSTNAME);
$NAME = mysql_real_escape_string($NAME);
$PASS = mysql_real_escape_string(md5(mysql_real_escape_string($PASS)));
if (!$CHECKED) {
return false;
exit(1);
} else {
if ($CHECKED) {
session_start();
$query_all_details = mysql_query("SELECT * FROM {$SET_THEMYSQLLOGINTABLE} WHERE NAME='{$NAME}' AND PASSWORD='******'");
$answer_all_details = mysql_fetch_array($query_all_details);
error_log("^&^*&^*&^*^*^**^^" . var_dump($answer_all_details));
if (!$answer_all_details) {
error_log("[[[[[[[SET]>>>the SET_checklogin script allowed the user access to the SET_login but no entry corressponding to the NAME and PASS ({$NAME},{$PASS}) was found in the SET_THEMYSQLLOGINTABLE");
return false;
whisk(1);
exit(1);
}
$extracted_user_id = $answer_all_details['USERID'];
$thecurrenttimestamp = time();
$extracted_authkey = SET_randomstring();
$salt = SET_salt();
$hashedextracted_authkey = md5($extracted_authkey);
$base_main = SET_baserandomstring();
$base = md5($thecurrenttimestamp . $salt . $thecurrenttimestamp . $extracted_user_id . $base_main . $NAME);
$cookie_expiry_timestamp = $SET_COOKIEEXPIRY + $thecurrenttimestamp;
$THESESSIONID = session_id();
$query_update_database = mysql_query("UPDATE {$SET_THEMYSQLLOGINTABLE} SET 'LOGINTIMESTAMP'='{$thecurrenttimestamp}','LASTTIMESTAMP'='{$thecurrenttimestamp}','AUTHKEY'='{$extracted_authkey}','BASE'='{$base_main}','SALT'='{$salt}','COOKIEEXPIRY'='{$cookie_expiry_timestamp}','LOGGED'='1','SESSIONID'='{$THESESSIONID}' WHERE USERID='{$extracted_user_id}'");
$answer_update_database = mysql_affected_rows();
if (!$answer_update_database) {
error_log("[[[[[[[SET]>>>the SET_login function could not update the database for the user login for USER,USERID ({$NAME},{$extracted_user_id})");
whisk(2);
return false;
exit(1);
}
$_SESSION['authkey'] = $hashedextracted_authkey;
$cookie1 = setcookie("authkey", $hashedextracted_authkey, $SET_COOKIEEXPIRY + $thecurrenttimestamp);
$cookie2 = setcookie("base", $base, $SET_COOKIEEXPIRY + $thecurrenttimestamp);
$cookie3 = setcookie('userid', $extracted_user_id, $SET_COOKIEEXPIRY + $thecurrenttimestamp);
if ($cookie1 && ($cookie2 && $cookie3)) {
return true;
} else {
if (!($cookie1 && $cookie2)) {
error_log("[[[[[[[SET]>>>seems like every thing else went correctly fo the SET_login function but the setcookie variables either of them or both gave false so the function returned false for the user USER,USERID like ({$NAME},{$extracted_user_id})");
whisk(3);
return false;
exit(1);
}
}
}
}
}
function SET_update()
{
global $SET_THEMYSQLHOSTNAME;
global $SET_THEMYSQLUSERNAME;
global $SET_THEMYSQLPASSWORD;
global $SET_THEMYSQLDBNAME;
global $SET_THEMYSQLLOGINTABLE;
global $SET_COOKIEEXPIRY;
global $SET_THEMULTIPLELOGIN;
global $SET_BASIC_MYSQL_CONNECT;
global $SET_BASIC_SELECT_DATABASE;
$USERID = $_COOKIE['userid'];
$_SESSION = array();
$getalldetails_query = mysql_query("SELECT * FROM {$SET_THEMYSQLLOGINTABLE} where USERID='{$USERID}'");
if (mysql_error()) {
error_log("[[[[[[[SET]>>>" . mysql_error());
}
$fetchalldetails = mysql_fetch_array($getalldetails_query);
$thelogintimestamp = $fetchalldetails['LOGINTIMESTAMP'];
$usernameindb = $fetchalldetails['NAME'];
$thebeforeauthkey = $fetchalldetails['AUTHKEY'];
$regenerate = session_regenerate_id(true);
$dnewsessionid = session_id();
$dthecurrenttimestamp = time();
$dextracted_authkey = mysql_real_escape_string(SET_randomstring());
$dsalt = mysql_real_escape_string(SET_salt());
$dhashedextracted_authkey = md5($dextracted_authkey);
$dbase_main = mysql_real_escape_string(SET_baserandomstring());
error_log("to update i am using" . $thelogintimestamp . " " . $dsalt . " " . $dthecurrenttimestamp . " " . $USERID . " " . $dbase_main . " " . $usernameindb);
$dbase = md5($thelogintimestamp . $dsalt . $dthecurrenttimestamp . $USERID . $dbase_main . $usernameindb);
$dcookie_expiry_timestamp = $SET_COOKIEEXPIRY + $dthecurrenttimestamp;
$_SESSION['authkey'] = $dhashedextracted_authkey;
$dcookie1 = setcookie("authkey", $dhashedextracted_authkey, $dcookie_expiry_timestamp);
$dcookie2 = setcookie("base", $dbase, $dcookie_expiry_timestamp);
$dcookie3 = setcookie("userid", $USERID, $dcookie_expiry_timestamp);
if (!($dcookie1 && $dcookie2 && $dcookie3)) {
error_log("[[[[[[[SET]>>>the SET_update function could not set all the cookies properly USERID({$USERID})");
whisk(29);
return false;
exit(1);
}
$dupdatequery = "UPDATE {$SET_THEMYSQLLOGINTABLE} set AUTHKEY='{$dextracted_authkey}', BASE='{$dbase_main}',SALT='{$dsalt}',COOKIEEXPIRY='{$dcookie_expiry_timestamp}',LASTTIMESTAMP='{$dthecurrenttimestamp}',LASTTIMESTAMPAUTHKEY='{$thebeforeauthkey}',SESSIONID='{$dnewsessionid}' ";
$dqueried = mysql_query("{$dupdatequery}");
if (mysql_error()) {
error_log("[[[[[[[SET]>>>" . mysql_error());
}
if (!mysql_affected_rows()) {
error_log("[[[[[[[SET]>>>the SET_update function could not update the updated parameters for the USERID({$USERID})");
whisk(28);
return false;
exit(1);
} else {
return true;
}
}
function SET_logout()
{
session_start();
global $SET_THEMYSQLHOSTNAME;
global $SET_THEMYSQLUSERNAME;
global $SET_THEMYSQLPASSWORD;
global $SET_THEMYSQLDBNAME;
global $SET_THEMYSQLLOGINTABLE;
global $SET_COOKIEEXPIRY;
global $SET_THEMULTIPLELOGIN;
global $SET_BASIC_MYSQL_CONNECT;
global $SET_BASIC_SELECT_DATABASE;
$USERID = $_COOKIE['userid'];
$LASTTIMESTAMPAUTHKEY = $_SESSION['authkey'];
$thecurrenttimestamp = time();
$ifsession_set = false;
if (session_id()) {
$ifsession_set = true;
}
if ($ifsession_set) {
$_SESSION['authkey'] = "";
session_destroy();
}
$cookie1 = setcookie("authkey", "", $thecurrenttimestamp - 60 * 60);
$cookie2 = setcookie("base", "", $thecurrenttimestamp - 60 * 60);
$cookie3 = setcookie("userid", "", $thecurrenttimestamp - 60 * 60);
$cookie4 = setcookie("PHPSESSID", "", $thecurrenttimestamp - 60 * 60);
//extract details from the database
$query_extr_all_details = mysql_query("SELECT * FROM {$SET_THEMYSQLLOGINTABLE} WHERE USERID='{$USERID}'");
$answer_extr_all_details = mysql_fetch_array($query_extr_all_details);
$againanswer_extr_all_details = mysql_fetch_array($query_extr_all_details);
if (!$answer_extr_all_details) {
error_log("[[[[[[[SET]>>>the logout function could not extract the details of the USERID ({$USERID})");
SET_whisk(5);
return false;
}
$USER = $answer_extr_all_details['NAME'];
$logged_till_now = $answer_extr_all_details['TOTALLOGGEDTIME'];
$logintimestamp = $answer_extr_all_details['LOGINTIMESTAMP'];
$loggedtotal = $logged_till_now + ($thecurrenttimestamp - $logintimestamp);
//update the database
$query_update = mysql_query("UPDATE {$SET_THEMYSQLLOGINTABLE} SET LOGGED='0',LASTTIMESTAMP='{$thecurrenttimestamp}',LASTTIMESTAMPAUTHKEY='{$LASTTIMESTAMPAUTHKEY}',LOGOUTTIMESTAMP='{$thecurrenttimestamp}',TOTALLOGGEDTIME='{$loggedtotal}',SESSIONID='',BASE='',SALT='',AUTHKEY='',COOKIEEXPIRY='{$thecurrenttimestamp}' WHERE USERID='{$USERID}'");
if (mysql_error()) {
error_log("[[[[[[[SET]>>>" . mysql_error());
}
$answer_update = mysql_affected_rows();
if (!$answer_update) {
error_log("[[[[[[[SET]>>>the logout function could not update the database for the USER,USERID ({$USER},{$USERID}) the query failed");
whisk(5);
return false;
}
return true;
}
function SET_logout($USERID)
{
require_once "SET_mysqlconnection.php";
$thecurrenttimestamp = time();
$ifsession_set = false;
if (session_id()) {
$ifsession_set = true;
}
if ($ifsession_set) {
$_SESSION['authkey'] = "";
session_destroy();
}
$cookie1 = setcookie("authkey", "", $thecurrenttimestamp - 60 * 60);
$cookie2 = setcookie("base", "", $thecurrenttimestamp - 60 * 60);
$cookie3 = setcookie("userid", "", $thecurrenttimestamp - 60 * 60);
$cookie4 = setcookie("PHPSESSID", "", $thecurrenttimestamp - 60 * 60);
//extract details from the database
$query_extr_all_details = mysql_query("SELECT * FROM {$SETTHEMYSQLLOGINTABLE} WHERE 'USERID'='{$USERID}'");
$answer_extr_all_details = mysql_fetch_array();
$againanswer_extr_all_details = mysql_fetch_array();
if ($againanswer_extr_all_details) {
error_log("[[[[[[[SET]>>>the logout function could not extract the details of the USERID ({$USERID})");
return false;
whisk(5);
exit(1);
}
$USER = $answer_extr_all_details['USER'];
$logged_till_now = $answer_extr_all_details['TOTALLOGGEDTIME'];
$logintimestamp = $answer_extr_all_details['LOGINTIMESTAMP'];
$loggedtotal = $logged_till_now + ($thecurrenttimestamp - $logintimestamp);
//update the database
$query_update = mysql_query("UPDATE {$SET_THEMYSQLLOGINTABLE} SET 'LOGGED'='0','LOGOUTSTAMP'='{$thecurrenttimestamp}','TOTALLOGGEDTIME'='{$loggedtotal}','LASTIMESTAMP'='0','SESSIONID'='','BASE'='',SALT='','AUTHKEY'='','COOKIEEXPIRY='{$thecurrenttimestamp}'");
$answer_update = mysql_affected_rows();
if (!$answer_update) {
error_log("[[[[[[[SET]>>>the logout function could not update the database for the USER,USERID ({$USER},{$USERID}) the query failed");
return false;
whisk(4);
exit(1);
}
return true;
}
function SET_login($NAME, $PASS, $CHECKED)
{
global $SET_THEMYSQLHOSTNAME;
global $SET_THEMYSQLUSERNAME;
global $SET_THEMYSQLPASSWORD;
global $SET_THEMYSQLDBNAME;
global $SET_THEMYSQLLOGINTABLE;
global $SET_COOKIEEXPIRY;
global $SET_THEMULTIPLELOGIN;
global $SET_BASIC_MYSQL_CONNECT;
global $SET_BASIC_SELECT_DATABASE;
if (!$CHECKED || $CHECKED == 7) {
return false;
exit(1);
} else {
if ($CHECKED) {
session_start();
$NAME = mysql_real_escape_string($NAME);
$PASS = md5(mysql_real_escape_string($PASS));
//this is redundant yet necessary as i need two functions
$query_all_details = mysql_query("SELECT * FROM {$SET_THEMYSQLLOGINTABLE} WHERE NAME='{$NAME}' AND PASSWORD='******'");
var_dump(mysql_error());
$answer_all_details = mysql_fetch_array($query_all_details);
if (!$answer_all_details) {
error_log("[[[[[[[SET]>>>the SET_checklogin script allowed the user access to the SET_login but no entry corressponding to the NAME and PASS ({$NAME},{$PASS}) was found in the SET_THEMYSQLLOGINTABLE");
return false;
whisk(1);
exit(1);
}
$extracted_user_id = $answer_all_details['USERID'];
$extracted_logged = $answer_all_details['LOGGED'];
//check may be redundant
if (!$SET_THEMULTIPLELOGIN && $extracted_logged) {
error_log("[[[[[[[SET]>>>the SET_checklogin script allowed the user access to the SET_login and but multiple login incurred and multiple login disabled for (NAME,PASS)({$NAME})");
return false;
}
$thecurrenttimestamp = time();
$extracted_authkey = mysql_real_escape_string(SET_randomstring());
$salt = mysql_real_escape_string(SET_salt());
$hashedextracted_authkey = md5($extracted_authkey);
$base_main = mysql_real_escape_string(SET_baserandomstring());
$base = md5($thecurrenttimestamp . $salt . $thecurrenttimestamp . $extracted_user_id . $base_main . $NAME);
$cookie_expiry_timestamp = $SET_COOKIEEXPIRY + $thecurrenttimestamp;
$THESESSIONID = session_id();
$query_update_database = mysql_query("UPDATE {$SET_THEMYSQLLOGINTABLE} SET LOGINTIMESTAMP='{$thecurrenttimestamp}',LASTTIMESTAMP='{$thecurrenttimestamp}',AUTHKEY='{$extracted_authkey}',BASE='{$base_main}',SALT='{$salt}',COOKIEEXPIRY='{$cookie_expiry_timestamp}',LOGGED='1',SESSIONID='{$THESESSIONID}' WHERE USERID='{$extracted_user_id}'");
$answer_update_database = mysql_affected_rows();
if (!$answer_update_database) {
error_log("[[[[[[[SET]>>>the SET_login function could not update the database for the user login for USER,USERID ({$NAME},{$extracted_user_id})");
whisk(2);
return false;
exit(1);
}
$_SESSION['authkey'] = $hashedextracted_authkey;
$cookie1 = setcookie("authkey", $hashedextracted_authkey, $SET_COOKIEEXPIRY + $thecurrenttimestamp);
$cookie2 = setcookie("base", $base, $SET_COOKIEEXPIRY + $thecurrenttimestamp);
$cookie3 = setcookie('userid', $extracted_user_id, $SET_COOKIEEXPIRY + $thecurrenttimestamp);
if ($cookie1 && ($cookie2 && $cookie3)) {
return true;
} else {
if (!($cookie1 && $cookie2)) {
error_log("[[[[[[[SET]>>>seems like every thing else went correctly fo the SET_login function but the setcookie variables either of them or both gave false so the function returned false for the user USER,USERID like ({$USER},{$extracted_user_id})");
whisk(3);
return false;
exit(1);
}
}
}
}
}
