function action_login() { $this->template->content = new View('kwalbum/user/login'); if (isset($_POST['act'])) { $user = Model_Kwalbum_User::login($_POST['name'], $_POST['password'], $_POST['length']); if ($user) { $this->template->content->success = true; $this->user = $user; $this->template->set_global('user', $this->user); } else { $this->template->content->error = '<p class="error">You\'re login name or password was wrong.</p>'; } } $this->template->title = 'Logging In'; }
<big><b><?php echo html::anchor($kwalbum_url . '/~admin', 'Admin Options'); ?> : Editing User Accounts</b></big> <table border="1" cellspacing="0"> <tr> <th style="width:255px;">Displayed Name</th> <th>Login Name</th> <th>Email</th> <th>Last Visit</th> <th style="width:250px;">Permission</th> <th>Delete?</th> </tr> <?php $users = Model_Kwalbum_User::getAllArray(); foreach ($users as $u) { $delete_link = $u->id > 2 ? "<a href='#' onClick='deleteUser({$u->id});return false;'>[X]</a>" : " "; $permission_class = 'kwalbumPermission'; if ($u->id == $user->id or $u->id <= 2) { $permission_class = 'kwalbumPermissionFixed'; } echo <<<ROW <tr id='row{$u->id}'> <td><span id='user{$user->id}'>{$u->name}</span></td> <td>{$u->login_name}</td> <td>{$u->email}</td> <td>{$u->visit_date}</td> <td> <span class="{$permission_class}" id="kwalbumPermission_{$u->id}">{$u->permission_description}</span> </td>
public function action_upload() { if (!$this->user->is_logged_in) { if (!isset($_SERVER['PHP_AUTH_USER'])) { header('WWW-Authenticate: Basic realm="Upload"'); header('HTTP/1.1 401 Unauthorized'); die('Invalid login'); } $this->user = Model_Kwalbum_User::login($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']); if (!$this->user) { die('Invalid login'); } } if (!$this->user->can_add) { $this->request->response()->status(500); die('You do not have permission to add items'); } if (!empty($_FILES)) { $adder = new Kwalbum_ItemAdder($this->user); $errors = array(); $files = array(); if (isset($_FILES['files'])) { $files = is_array($_FILES['files']) ? $_FILES['files'] : array($_FILES['files']); } elseif (isset($_FILES['userfile'])) { $files = array($_FILES['userfile']); } try { foreach ($files as $file) { $result = $adder->save_upload($file); if ($result != (int) $result) { $errors[] = $result; } } } catch (Exception $e) { $errors[] = $e->getMessage(); } if (!empty($errors)) { $this->request->response()->status(500); echo json_encode(array('errors' => $errors)); } else { echo 'success'; } return; } $this->request->response()->status(500); echo 'No files sent'; }