public function actionLogin()
{
$access = $this->getAccess();
$defaultUrl = $this->createUrl("default/index");
if (0 < $access) {
$this->success(Ibos::lang("Login succeed"), $defaultUrl);
}
if (!EnvUtil::submitCheck("formhash")) {
$data = array("userName" => !empty($this->user) ? $this->user["username"] : "");
$this->render("login", $data);
} else {
$userName = EnvUtil::getRequest("username");
$passWord = EnvUtil::getRequest("password");
if (!$passWord || $passWord != addslashes($passWord)) {
$this->error(Ibos::lang("Passwd illegal"));
}
$identity = new ICUserIdentity($userName, $passWord);
$result = $identity->authenticate(true);
if (0 < $result) {
Ibos::app()->user->login($identity);
if (Ibos::app()->user->uid != 1) {
MainUtil::checkLicenseLimit(true);
}
$this->success(Ibos::lang("Login succeed"), $defaultUrl);
} else {
$passWord = preg_replace("/^(.{" . round(strlen($passWord) / 4) . "})(.+?)(.{" . round(strlen($passWord) / 6) . "})\$/s", "***", $passWord);
$log = array("user" => $userName, "password" => $passWord, "ip" => Ibos::app()->setting->get("clientip"));
Log::write($log, "illegal", "module.dashboard.login");
$this->error(Ibos::lang("Login failed"));
}
}
}
protected function doLogin($userName, $passWord, $loginType, $account, $autoLogin = 1, $cookieTime = 0, $inajax = 0)
{
if (!$passWord || $passWord != addslashes($passWord)) {
$this->error(Ibos::lang("Passwd illegal"));
}
$errornum = $this->loginCheck($account);
$ip = Ibos::app()->setting->get("clientip");
$identity = new ICUserIdentity($userName, $passWord, $loginType);
$result = $identity->authenticate();
if (0 < $result) {
$user = Ibos::app()->user;
if (empty($autoLogin)) {
$user->setState($user::AUTH_TIMEOUT_VAR, TIMESTAMP + $account["timeout"]);
} else {
MainUtil::setCookie("autologin", 1, $cookieTime);
}
$user->login($identity, $cookieTime);
if ($user->uid != 1) {
MainUtil::checkLicenseLimit(true);
}
if (!$inajax) {
$urlForward = EnvUtil::referer();
$log = array("terminal" => "web", "password" => StringUtil::passwordMask($passWord), "ip" => $ip, "user" => $userName, "loginType" => $loginType, "address" => "", "gps" => "");
Log::write($log, "login", sprintf("module.user.%d", $user->uid));
$rule = UserUtil::updateCreditByAction("daylogin", $user->uid);
if (!$rule["updateCredit"]) {
UserUtil::checkUserGroup($user->uid);
}
$this->success(Ibos::lang("Login succeed", "", array("{username}" => $user->realname)), $urlForward);
} else {
$this->ajaxReturn(array("isSuccess" => true));
}
} elseif ($result === 0) {
$this->error(Ibos::lang("User not fount", "", array("{username}" => $userName)), "", array(), array("error" => $result));
} elseif ($result === -1) {
$this->error(Ibos::lang("User lock", "", array("{username}" => $userName)), "", array(), array("error" => $result));
} elseif ($result === -2) {
$this->error(Ibos::lang("User disabled", "", array("{username}" => $userName)), "", array(), array("error" => $result));
} elseif ($result === -3) {
FailedLogin::model()->updateFailed($ip);
list($ip1, $ip2) = explode(".", $ip);
$newIp = $ip1 . "." . $ip2;
FailedIp::model()->insertIp($newIp);
$log = array("user" => $userName, "password" => StringUtil::passwordMask($passWord), "ip" => $ip);
Log::write($log, "illegal", "module.user.login");
if ($errornum) {
$this->error("登录失败,您还可以尝试" . ($errornum - 1) . "次");
} else {
$this->error(Ibos::lang("User name or password is not correct"), "", array(), array("error" => $result));
}
}
}
public function login($userName, $passWord)
{
if (!$passWord || $passWord != addslashes($passWord)) {
return false;
}
$identity = new ICUserIdentity($userName, $passWord);
$result = $identity->authenticate(true);
if (0 < $result) {
Yii::app()->user->login($identity);
return true;
} else {
return false;
}
}
if ($status["ret"] == 0) {
$config = @(include PATH_ROOT . "/system/config/config.php");
if (empty($config)) {
throw new Exception(Ibos::Lang("Config not found", "error"));
} else {
define("IN_MOBILE", EnvUtil::checkInMobile());
$global = array("clientip" => EnvUtil::getClientIp(), "config" => $config, "timestamp" => time());
Ibos::app()->setting->copyFrom($global);
handleloadsyscache();
$saltkey = MainUtil::getCookie("saltkey");
if (empty($saltkey)) {
$saltkey = StringUtil::random(8);
MainUtil::setCookie("saltkey", $saltkey, 86400 * 30, 1, 1);
}
$curUser = User::model()->fetchByUid($uid);
$identity = new ICUserIdentity($curUser["username"], $curUser["password"]);
$identity->setId($uid);
$identity->setPersistentStates($curUser);
$ip = Ibos::app()->setting->get("clientip");
foreach ($_COOKIE as $k => $v) {
$cookiePath = $config["cookie"]["cookiepath"];
$cookieDomain = $config["cookie"]["cookiedomain"];
$secure = $_SERVER["SERVER_PORT"] == 443 ? 1 : 0;
@setcookie($k, "", time() - 86400, $cookiePath, $cookieDomain, $secure, false);
}
$account = Ibos::app()->setting->get("setting/account");
$user = Ibos::app()->user;
if ($account["allowshare"] != 1) {
$user->setStateKeyPrefix(Ibos::app()->setting->get("sid"));
}
$user->login($identity);
public function actionLogin()
{
if (!Ibos::app()->user->isGuest) {
$return = array("login" => true, "formhash" => FORMHASH, "uid" => Yii::app()->user->uid, "user" => user::model()->fetchByUid(Ibos::app()->user->uid), "APPID" => Ibos::app()->setting->get("setting/iboscloud/appid"));
if (EnvUtil::getRequest("issetuser") != "true") {
$userData = UserUtil::getUserByPy();
$return["userData"] = $userData;
}
if (ModuleUtil::getIsEnabled("weibo")) {
$udata = UserData::model()->getUserData();
}
$return["user"]["following_count"] = isset($udata["following_count"]) ? $udata["following_count"] : 0;
$return["user"]["follower_count"] = isset($udata["follower_count"]) ? $udata["follower_count"] : 0;
$return["user"]["weibo_count"] = isset($udata["weibo_count"]) ? $udata["weibo_count"] : 0;
$this->ajaxReturn($return, "JSONP");
}
$account = Ibos::app()->setting->get("setting/account");
$userName = EnvUtil::getRequest("username");
$passWord = EnvUtil::getRequest("password");
$gps = EnvUtil::getRequest("gps");
$address = EnvUtil::getRequest("address");
$ip = Ibos::app()->setting->get("clientip");
$cookieTime = 0;
if (!$passWord || $passWord != addslashes($passWord)) {
$this->ajaxReturn(array("login" => false, "msg" => Ibos::lang("Passwd illegal", "user.default")), "JSONP");
}
$identity = new ICUserIdentity($userName, $passWord);
$result = $identity->authenticate(false);
if (0 < $result) {
$user = Ibos::app()->user;
if ($account["allowshare"] != 1) {
$user->setStateKeyPrefix(Ibos::app()->setting->get("sid"));
}
MainUtil::setCookie("autologin", 1, $cookieTime);
$user->login($identity, $cookieTime);
if ($user->uid != 1) {
MainUtil::checkLicenseLimit(true);
}
$urlForward = EnvUtil::referer();
$log = array("terminal" => "app", "password" => StringUtil::passwordMask($passWord), "ip" => $ip, "user" => $userName, "loginType" => "username", "address" => $address, "gps" => $gps);
Log::write($log, "login", sprintf("module.user.%d", Ibos::app()->user->uid));
$return = array("login" => true, "formhash" => EnvUtil::formHash(), "uid" => Ibos::app()->user->uid, "user" => user::model()->fetchByUid(Ibos::app()->user->uid), "APPID" => Ibos::app()->setting->get("setting/iboscloud/appid"));
if (ModuleUtil::getIsEnabled("weibo")) {
$udata = UserData::model()->getUserData();
}
$return["user"]["following_count"] = isset($udata["following_count"]) ? $udata["following_count"] : 0;
$return["user"]["follower_count"] = isset($udata["follower_count"]) ? $udata["follower_count"] : 0;
$return["user"]["weibo_count"] = isset($udata["weibo_count"]) ? $udata["weibo_count"] : 0;
if (EnvUtil::getRequest("issetuser") != "true") {
$userData = UserUtil::getUserByPy();
$return["userData"] = $userData;
}
$this->ajaxReturn($return, "JSONP");
} elseif ($result === 0) {
$this->ajaxReturn(array("login" => false, "msg" => Ibos::lang("User not fount", "user.default", array("{username}" => $userName))), "JSONP");
} elseif ($result === -1) {
$this->ajaxReturn(array("login" => false, "msg" => Ibos::lang("User lock", "user.default", array("{username}" => $userName))), "JSONP");
} elseif ($result === -2) {
$this->ajaxReturn(array("login" => false, "msg" => Ibos::lang("User disabled", "", array("{username}" => $userName))), "JSONP");
} elseif ($result === -3) {
$log = array("user" => $userName, "password" => StringUtil::passwordMask($passWord), "ip" => $ip);
Log::write($log, "illegal", "module.user.login");
$this->ajaxReturn(array("login" => false, "msg" => Ibos::lang("User name or password is not correct", "user.default")), "JSONP");
}
}