Example #1
0
 public function actionLoginout()
 {
     session_start();
     session_destroy();
     session_unset();
     $this->redirect("/");
 }
Example #2
0
 public function logoutAction()
 {
     session_unset();
     session_destroy();
     $ret["statusCode"] = CODE_SUCCESS;
     echo UtilsModel::getUrlJson($ret);
 }
Example #3
0
 public function logout()
 {
     // remove and destroy session variables
     session_unset();
     session_destroy();
     header('Location: ' . $this->base_url());
 }
Example #4
0
 public function clear()
 {
     session_unset();
     @session_regenerate_id(true);
     @session_start();
     $this->data = $_SESSION = array();
 }
Example #5
0
function createSession($login, $nombre, $apellido, $email)
{
    //Creo un token para mas seguridad
    $token = md5(rand() . $login);
    //Creo un Jugador
    $j = new jugador();
    $j->setLogin($login);
    $j->setToken($token);
    //Actualizo token en la DB
    $j->updateToken($token);
    //Inicio sesion y borro lo que haya guardado dentro de ella
    session_start();
    session_unset();
    //Variables del usuario
    $_SESSION['login'] = $login;
    $_SESSION['nombre'] = $nombre;
    $_SESSION['apellido'] = $apellido;
    $_SESSION['email'] = $email;
    //Variables para seguridad de sesion
    $_SESSION['registered'] = 1;
    $_SESSION['userAgent'] = $_SERVER['HTTP_USER_AGENT'];
    $_SESSION['IPaddress'] = $_SERVER['REMOTE_ADDR'];
    $_SESSION['LastActivity'] = $_SERVER['REQUEST_TIME'];
    $_SESSION['token'] = $token;
}
 public function teardown()
 {
     session_unset();
     if (session_id() !== '') {
         session_destroy();
     }
 }
Example #7
0
function check_login($link, $user, $pass)
{
    if (!ctype_alnum(str_replace(array('@', '.', '-'), '', $user))) {
        return false;
    }
    $pass = escapeshellcmd($pass);
    $result = mysqli_query($link, "SELECT password FROM admin WHERE superadmin='1' AND username='******'");
    while ($row = mysqli_fetch_array($result, MYSQL_NUM)) {
        $row = "'" . $row[0] . "'";
        if (strpos(shell_exec("echo {$pass} | doveadm pw -s SHA512-CRYPT -t {$row}"), "verified") !== false) {
            return "admin";
        }
    }
    $result = mysqli_query($link, "SELECT password FROM admin WHERE superadmin='0' AND active='1' AND username='******'");
    while ($row = mysqli_fetch_array($result, MYSQL_NUM)) {
        $row = "'" . $row[0] . "'";
        if (strpos(shell_exec("echo {$pass} | doveadm pw -s SHA512-CRYPT -t {$row}"), "verified") !== false) {
            return "domainadmin";
        }
    }
    $result = mysqli_query($link, "SELECT password FROM mailbox WHERE active='1' AND username='******'");
    while ($row = mysqli_fetch_array($result, MYSQL_NUM)) {
        $row = "'" . $row[0] . "'";
        if (strpos(shell_exec("echo {$pass} | doveadm pw -s SHA512-CRYPT -t {$row}"), "verified") !== false) {
            return "user";
        }
    }
    session_unset();
    session_destroy();
    session_write_close();
    setcookie(session_name(), '', 0, '/');
    sleep(1);
    return false;
}
Example #8
0
function check_user($secret_key, &$db)
{
    if (!isset($_SESSION['userid']) || !isset($_SESSION['hash'])) {
        header("Location: ../index.php");
        exit;
    } else {
        $check = sha1($_SESSION['userid'] . $_SERVER['REMOTE_ADDR'] . $secret_key);
        if ($check != $_SESSION['hash']) {
            session_unset();
            session_destroy();
            header("Location: ../logout.php");
            exit;
        } else {
            $query = $db->execute("select * from `players` where `id`=?", array($_SESSION['userid']));
            $userarray = $query->fetchrow();
            if ($query->recordcount() == 0) {
                session_unset();
                session_destroy();
                header("Location: ../logout.php");
                exit;
            }
            foreach ($userarray as $key => $value) {
                $user->{$key} = $value;
            }
            return $user;
        }
    }
}
Example #9
0
 public function logout()
 {
     $title = 'Logout';
     session_start();
     session_unset();
     return header('Location: http://localhost/music/public/login');
 }
Example #10
0
 public function setDeconnexion()
 {
     // On détruit les variables de notre session
     session_unset();
     // On détruit notre session
     session_destroy();
 }
Example #11
0
 public function loggedOutProtect()
 {
     if ($this->loggedIn() === false) {
         header('Location: ' . BASE_URL . 'login');
         exit;
     }
     // source: http://stackoverflow.com/a/1270960/2790481
     // last request was more than 1 day ago
     if (isset($_SESSION['LAST_ACTIVITY']) && time() - $_SESSION['LAST_ACTIVITY'] > 86400) {
         session_unset();
         // unset $_SESSION variable for the run-time
         session_destroy();
         // destroy session data in storage
         header('Location: ' . BASE_URL . 'login');
         exit;
     }
     $_SESSION['LAST_ACTIVITY'] = time();
     // update last activity time stamp
     if (!isset($_SESSION['CREATED'])) {
         $_SESSION['CREATED'] = time();
     } else {
         if (time() - $_SESSION['CREATED'] > 3600) {
             // session started more than 1 hour ago
             $id = $_SESSION['id'];
             // better security - avoid fixation attack.
             session_regenerate_id(true);
             // change session ID for the current session and invalidate old session ID
             $_SESSION['CREATED'] = time();
             // update creation time
             $_SESSION['id'] = $id;
             $_SESSION['LAST_ACTIVITY'] = time();
             // update last activity time stamp
         }
     }
 }
Example #12
0
 function groundup_new_user_cookie()
 {
     // start a new session to track new visits expires after 30 minutes
     session_start();
     if (isset($_SESSION['last_activity']) && time() - $_SESSION['last_activity'] > 1800) {
         // last request was more than 30 minutes ago
         session_unset();
         // unset $_SESSION variable for the run-time
         session_destroy();
         // destroy session data in storage
     }
     $_SESSION['last_activity'] = time();
     // update last activity time stamp
     if (!isset($_SESSION['new_user_check'])) {
         $_SESSION['new_user_check'] = '1';
         if (!is_admin() && !is_login() && !is_register()) {
             if (!isset($_COOKIE['new_user'])) {
                 $visit = 0;
             } else {
                 $visit = $_COOKIE['new_user'] + 1;
             }
             setcookie('new_user', $visit, time() + 3600 * 24 * 100, '/', COOKIE_DOMAIN, false);
         }
     }
 }
Example #13
0
 function testControllerFlash()
 {
     session_unset();
     $controller = new Controller();
     # sets the ceva from the flash to altceva
     $test = new TestController();
     $this->assertTrue(empty($test->flash));
     $test->index();
     $this->assertEqual($test->flash["ceva"], "altceva");
     # calls the destruct method that puts the flash into the session
     unset($test);
     # reinit test
     $test = new TestController();
     $this->assertEqual($test->flash["ceva"], "altceva");
     $test->index();
     $test->flash["altceva"] = "ceva";
     $this->assertEqual($test->flash["ceva"], "altceva");
     $this->assertEqual($test->flash["altceva"], "ceva");
     # the flash remainds unmodified
     unset($test);
     # the flash is now destroyed
     $test = new TestController();
     $this->assertEqual($test->flash["altceva"], "ceva");
     session_destroy();
 }
 public function ajaxAction()
 {
     $this->_helper->viewRenderer->setNoRender(true);
     if (!empty($_POST)) {
         $method = $_POST['method'];
         header('Content-Type: application/json');
         switch ($method) {
             case 'userLogin':
                 $data = $this->_WeTransfer_Users->login($_POST['username'], $_POST['password']);
                 $json = array();
                 $json['data'] = $data;
                 if ($data == 'LOGIN_OK') {
                     $json['status'] = 'OK';
                 } else {
                     session_unset();
                     session_destroy();
                     $json['status'] = 'ERROR';
                     switch ($data) {
                         default:
                             $json['error'] = $data;
                     }
                 }
                 break;
             default:
                 $json = array();
                 $json['status'] = 'ERROR';
                 $json['error'] = 'UNHANDLED_EXCEPTION';
         }
         exit(json_encode($json));
     } else {
         header('Location: ' . BASEURL . '');
     }
 }
Example #15
0
 function action_index()
 {
     session_start();
     session_unset();
     session_destroy();
     header('Location: home');
 }
 function logout()
 {
     session(null);
     session_unset();
     session('[destroy]');
     $this->redirect("Home/Index/index");
 }
Example #17
0
 /**
  * Does the checks and decides whether to render a mobile or normal website
  *
  * @package MobilePress
  * @since 1.0
  */
 public function mopr_load_site()
 {
     if (isset($_GET['killsession']) || $_SESSION['MOPR_FORCE_MOBILE'] == TRUE && !mopr_get_option('force_mobile', 1)) {
         session_unset();
         session_destroy();
         $_SESSION['MOPR_MOBILE_ACTIVE'] = '';
         $_SESSION['MOPR_MOBILE_BROWSER'] = '';
         $_SESSION['MOPR_MOBILE_THEME'] = '';
     }
     // Plugin preference is set to render entire site in mobile.
     if (mopr_get_option('force_mobile', 1)) {
         $_SESSION['MOPR_FORCE_MOBILE'] = TRUE;
         $_SESSION['MOPR_MOBILE_ACTIVE'] = TRUE;
         $_SESSION['MOPR_MOBILE_BROWSER'] = 'mobile';
         $_SESSION['MOPR_MOBILE_THEME'] = mopr_get_option('mobile_theme', 1);
     }
     // Check if mobile sesison var exists
     // Also, check if ?mobile or ?nomobile is set. If so, establish the session var so that subsequent page calls will render in the desired mode.
     if (!isset($_SESSION['MOPR_MOBILE_ACTIVE']) || trim($_SESSION['MOPR_MOBILE_ACTIVE']) == '' || isset($_GET['mobile']) || isset($_GET['nomobile'])) {
         require_once MOPR_PATH . 'classes/check.php';
         $mobilepress_check = new Mobilepress_check();
         $mobilepress_check->mopr_detect_device();
     }
     if ($_SESSION['MOPR_MOBILE_ACTIVE'] === TRUE) {
         // Double check session var for theme, fall back on default if any problems
         if (!isset($_SESSION['MOPR_MOBILE_THEME']) || trim($_SESSION['MOPR_MOBILE_THEME']) == '') {
             $_SESSION['MOPR_MOBILE_THEME'] = mopr_get_option('mobile_theme', 1);
         }
         require_once MOPR_PATH . 'classes/render.php';
         $Mobilepress_render = new Mobilepress_render();
         $Mobilepress_render->mopr_render_theme();
     }
 }
 public function DestroySession()
 {
     // remove all session variables
     session_unset();
     // destroy the session
     session_destroy();
 }
Example #19
0
 public function logout()
 {
     session_unset();
     session_destroy();
     session_start();
     $_SESSION['user_is_logged_in'] = false;
 }
Example #20
0
 /**
  * Reset session
  */
 public function reset()
 {
     // Clear session vars
     session_unset();
     // Create new session id
     session_regenerate_id(false);
 }
Example #21
0
 /**
  *This method erases all session data
  *
  *@param null
  *@return void
  */
 public static function flush()
 {
     // remove all session variables
     session_unset();
     // destroy the session
     session_destroy();
 }
Example #22
0
 public function run()
 {
     $_SESSION = array();
     session_unset();
     session_destroy();
     header("Location: " . cfg::$web_root);
 }
Example #23
0
 public static function destroy()
 {
     if (self::$_sessionStarted == true) {
         session_unset();
         session_destroy();
     }
 }
Example #24
0
 public function getArrayUsuario1($parametros)
 {
     $arrayAux = $this->dLogin->getArrayUsuario('2', $parametros['p2'], $parametros['p3']);
     //$this->dLogin->getArrayUsuario1($parametros['p4'],$parametros['p2'],$parametros['p3']);
     //sistema,usuario,clave
     $ok = $arrayAux[0]['ok'];
     if ($ok == 'ok') {
         $array = $arrayAux[0];
         if (isset($_SESSION)) {
             session_unset();
             // Finalmente, destruye la sesión
             session_destroy();
         }
         session_start();
         //echo 'sesion iniciada';
         // session_id(time());
         $_SESSION['iid_sistema'] = '2';
         $_SESSION['login_user'] = $array['vlogin_usuario'];
         $_SESSION['id_usuario'] = $array['iid_usuario'];
         $_SESSION['host'] = gethostbyaddr($_SERVER['REMOTE_ADDR']);
         $_SESSION['ip'] = $_SERVER['REMOTE_ADDR'];
         $_SESSION['id_persona'] = $array['c_cod_per'];
         $_SESSION['nombre'] = $array['v_nomcompleto'];
         $_SESSION['iCodigoEmpleado'] = $array['iCodigoEmpleado'];
         if (isset($array['c_id_caja'])) {
             $_SESSION["c_id_caja"] = $array['c_id_caja'];
         } else {
             $_SESSION["c_id_caja"] = "nada";
         }
         $_SESSION['path_principal'] = '../../../';
     }
     return $ok;
 }
Example #25
0
 public function loginoutOp()
 {
     session_unset();
     session_destroy();
     setNcCookie('goodsnum', '', -3600);
     showDialog(L('login_logout_success'), '', 'succ', '', 2);
 }
Example #26
0
 public function logout()
 {
     session_unset("username");
     session_destroy();
     //header("location:login.php");
     echo "<meta http-equiv='refresh' content='0;URL=login.php'>";
 }
Example #27
0
 public static function logout()
 {
     // clear $_SESSION array
     session_unset();
     // delete session data on the server and send the client a new cookie
     session_regenerate_id(true);
 }
function logout()
{
    session_start();
    session_unset();
    session_destroy();
    header("location:admin_login.php");
}
Example #29
0
 /**
  * Destroy session
  *
  * @access public
  * @return void
  */
 public function destroy()
 {
     if (PHP_SESSION_ACTIVE === session_status()) {
         session_unset();
         session_destroy();
     }
 }
Example #30
0
 public function checkLogin()
 {
     session_start();
     if (isset($_SESSION['LAST_ACTIVITY']) && time() - $_SESSION['LAST_ACTIVITY'] > 1800) {
         // last request was more than 30 minutes ago
         session_unset();
         // unset $_SESSION variable for the run-time
         session_destroy();
         // destroy session data in storage
         session_write_close();
         setcookie(session_name(), '', 0, '/');
         session_regenerate_id(true);
     }
     $_SESSION['LAST_ACTIVITY'] = time();
     // update last activity time stamp
     $input = Request::only('username', 'password');
     // param was set in the query string
     if (!empty($input['username']) && !is_null($input['username'])) {
         // query string had param set to nothing ie ?param=&param2=something
         $_SESSION['username'] = $input['username'];
         $_SESSION['password'] = $input['password'];
     }
     if (!empty($_SESSION['username']) && !is_null($_SESSION['password'])) {
         $count = Admin::where('username', $_SESSION['username'])->where('password', md5(md5($_SESSION['password'])))->count();
         if ($count) {
             return true;
         }
     }
     session_unset();
     session_destroy();
     session_write_close();
     setcookie(session_name(), '', 0, '/');
     session_regenerate_id(true);
     return false;
 }