function login()
{
require_once 'DBConnect.php';
require_once 'DBCalls.php';
require_once 'secSession.php';
sec_session_start();
$username = isset($_SESSION['username']) ? $_SESSION['username'] : false;
$userType = isset($_SESSION['userType']) ? $_SESSION['userType'] : false;
if ($userType == "reader") {
$con = new DBConnect('marketplace');
} else {
if ($userType == "author") {
$con = new DBConnect('workbench');
} else {
$con = false;
}
}
if ($con) {
$calls = new DBCalls();
$loggedIn = $calls->loginCheck($con);
} else {
$loggedIn = false;
}
$GLOBALS['username'] = $username;
$GLOBALS['userType'] = $userType;
return $loggedIn;
}
require_once "HTMLTemplate.php";
sec_session_start();
$redirectURL = isset($_GET['redirectURL']) ? $_GET['redirectURL'] : false;
$username = isset($_SESSION['username']) ? $_SESSION['username'] : false;
$userType = isset($_SESSION['userType']) ? $_SESSION['userType'] : false;
if ($userType == "reader") {
$con = new DBConnect('marketplace');
} else {
if ($userType == "author") {
$con = new DBConnect('workbench');
} else {
$con = false;
}
}
if ($con) {
$calls = new DBCalls();
$loggedIn = $calls->loginCheck($con);
} else {
$loggedIn = false;
}
if ($loggedIn) {
// logged in
if ($userType == "reader") {
new HTMLTemplate('readerHomepage', array('{curUser}', '{curType}'), array($username, $userType));
} else {
if ($userType == "author") {
new HTMLTemplate('authorHomepage', array('{curUser}', '{curType}'), array($username, $userType));
}
}
} else {
new HTMLTemplate('readerHomepage', false, false);
if ($username) {
$con = new DBConnect('marketplace');
$calls = new DBCalls();
$products = $calls->getReaderBooks($con, $username);
} else {
echo "Not logged in";
}
} else {
if ($type == "new") {
$con = new DBConnect('marketplace');
$calls = new DBCalls();
$products = $calls->getNewBooks($con, $username);
} else {
if ($type == "recommended") {
$con = new DBConnect('marketplace');
$calls = new DBCalls();
$products = $calls->getRecommendedBooks($con);
}
}
}
if ($products && gettype($products) == "array" && count($products) > 0) {
$returnStr = '';
$lineDel = '|';
// $products is now an array of book ids. So we need to fetch each book for construction.
foreach ($products as $product) {
$book = $calls->getBookInfoByID($con, $product);
$returnStr = $returnStr . $book . $lineDel;
}
echo $returnStr;
} else {
echo "No products yet";
<?php
/**
* Created by PhpStorm.
* User: cristina
* Date: 3/3/2016
* Time: 2:58 PM
*/
require_once '../../includes/main.php';
set_include_path(getIncludePath());
require 'DBConnect.php';
require 'DBCalls.php';
require 'secSession.php';
sec_session_start();
$passcode = filter_input(INPUT_POST, 'passAct', FILTER_SANITIZE_STRING);
$bookID = filter_input(INPUT_POST, 'bookID', FILTER_SANITIZE_STRING);
$con = new DBConnect('marketplace');
$calls = new DBCalls();
$bookURL = $calls->getBookURLFromID($con, $bookID);
$passCorrect = $calls->checkBookPasscode($con, $bookID, $passcode);
if ($passCorrect && $bookURL) {
// SESSION var, so cleared when you exit the browser.
$_SESSION['lastPass'] = $passcode;
header("location:../books/{$bookURL}/index.php?");
} else {
header("location:../books/{$bookURL}/index.php?badPass=true");
}
require 'DBCalls.php';
require 'HTMLTemplate.php';
require 'secSession.php';
// Clear the URL get variables (buy);
$url = $_SERVER['REQUEST_URI'];
$newURL = strtok($url, '?');
if ($newURL !== $url) {
header("location:{$newURL}");
}
sec_session_start();
$depVersion = 16;
// TODO: Call the function to return the latest version
$releaseVersion = 1;
$username = isset($_SESSION['username']) ? $_SESSION['username'] : false;
$con = new DBConnect('marketplace');
$calls = new DBCalls();
$url = $_SERVER['PHP_SELF'];
$urlArr = explode("/", $url);
$bookName = array_pop($urlArr);
if ($bookName == "index.php") {
$bookName = array_pop($urlArr);
}
$bookID = $calls->getBookIDFromURLName($con, $bookName);
$readerID = $calls->getIDFromReaderName($con, $username);
$ownsBook = $calls->ownsBook($con, $readerID, $bookID);
if (isset($_SESSION['lastPass'])) {
$lastPass = $_SESSION['lastPass'];
$passCheck = $calls->checkBookPasscode($con, $bookID, $lastPass);
}
$passCheck = isset($passCheck) ? $passCheck : false;
if ($ownsBook || isset($bookIsFree) && $bookIsFree || $passCheck) {
* User: cristina
* Date: 2/22/2016
* Time: 9:19 PM
*/
require_once '../../includes/main.php';
set_include_path(getIncludePath());
require_once "DBConnect.php";
require_once 'DBCalls.php';
require_once 'secSession.php';
sec_session_start();
$username = isset($_SESSION['username']) ? $_SESSION['username'] : false;
$call = false;
$products = false;
if ($username) {
$con = new DBConnect('workbench');
$calls = new DBCalls();
$products = $calls->getAuthorProjects($con, $username);
} else {
echo "Not logged in";
}
$publisherCon = new DBConnect('publishers');
$publisherID = $calls->getPublisherIDByAuthorName($con, $username);
$publisherName = $calls->getPublisherNameByID($publisherCon, $publisherID);
if ($products && gettype($products) == "array" && count($products) > 0) {
// $products is now an array of book ids. So we need to fetch each book for construction.
$ret = array();
foreach ($products as $product) {
$project = $calls->getProjectInfoByID($con, $product);
// $project["publisherName"] => $publisherName;
array_push($ret, $project);
}
$password = filter_input(INPUT_POST, 'p', FILTER_SANITIZE_STRING);
$username = filter_input(INPUT_POST, 'username', FILTER_SANITIZE_STRING);
$usertype = filter_input(INPUT_POST, 'userType', FILTER_SANITIZE_STRING);
if (isset($username, $password, $usertype)) {
if (strlen($password) != 128) {
// The hashed pwd should be 128 characters long.
// If it's not, something really odd has happened
header("Location:../error.php?num=512");
} else {
if ($usertype == "reader") {
$con = new DBConnect('marketplace');
$calls = new DBCalls();
} else {
if ($usertype == "author") {
$con = new DBConnect('workbench');
$calls = new DBCalls();
} else {
echo "error: Bad usertype of {$usertype}";
}
}
if ($con) {
$loggedIn = $calls->login($con, $username, $password, $usertype);
if ($loggedIn === true) {
header("Location:../loggedIn.php");
} else {
$error = explode(":", $loggedIn);
if ($error[0] == "dev error") {
$mesgForMe = $error[1];
// TODO: Handle development errors somehow...
header("Location:../error.php");
} else {
