function __construct()
{
$this->customize();
if (get_class($this) != "CCAuftrag") {
parent::__construct();
return;
}
/*if(!isset($_POST["benutzer"])){
$_POST["benutzer"] = "Max";
$_POST["password"] = sha1("Max");
$_POST["belegart"] = "R";
$_POST["lead_id"] = "Vicidial-001";
$_POST["firma"] = "Furtmeier Hard- und Software";
$_POST["strasse"] = "Neuteile";
$_POST["nr"] = "8";
$_POST["plz"] = "86682";
$_POST["ort"] = "Genderkingen";
}*/
$this->loggedIn = true;
if (Session::currentUser() == null and !Users::login($_POST["benutzer"], $_POST["password"], "open3A")) {
$this->loggedIn = false;
}
$this->showZahlungsart = true;
$this->showButtonEditAddress = true;
$this->showButtonCheckWithGoogle = true;
}
function signInAction()
{
global $site;
$request = $site->mvc->getRequest();
switch ($request->type) {
case 'get':
if ($site->user) {
$site->redirectTo($site->urlTo('/experiments/norm-user/dashboard'));
exit;
}
$this->view->render('pages/sign-in-page');
break;
case 'post':
$error = '';
$user = $request->post('user');
$pass = $request->post('pass');
if (Users::login($user, $pass)) {
// Profit
} else {
$error = 'The user/password combination is not valid.';
}
$site->redirectTo($site->urlTo($error ? "/experiments/norm-user/sign-in?error={$error}" : "/experiments/norm-user/dashboard"));
break;
}
}
/**
* Creates a new model.
* If creation is successful, the browser will be redirected to the 'view' page.
*/
public function actionCreate()
{
// echo "lllll";
// die;
$model = new Users();
if (isset($_POST['Users'])) {
// var_dump($_POST);
$salt = bin2hex(openssl_random_pseudo_bytes(22));
// echo "salt: ".$salt;
$encrypted_password = md5($_POST['Users']['password'] . $salt);
$_POST['Users']['password'] = $encrypted_password;
$_POST['Users']['salt'] = $salt;
// $_POST['Users']['created_at'] = date('Y-m-d H:i:s');
// $_POST['Users']['updated_at'] = date('Y-m-d H:i:s');
// var_dump($_POST);
$model->attributes = $_POST['Users'];
if ($model->save()) {
// echo "ccccc";
// die;
if ($model->login()) {
// echo "ddddd";
// die;
$record = Users::model()->findByAttributes(array('username' => $_POST['Users']['username']));
Yii::app()->session['uid'] = $record['id'];
Yii::app()->session['username'] = $record['username'];
$this->redirect('/index.php?r=posts/index');
}
}
}
$this->render('create', array('model' => $model));
}
function login($parameters)
{
global $context;
if ($user = Users::login($parameters[0], $parameters[1])) {
return $user['id'];
}
return 0;
}
public function login()
{
if (Input::method() == 'POST') {
if (Users::login()) {
return Response::redirect($this->admin_url . '/posts');
}
}
Template::render('users/login');
}
/**
* 用户登录
* @Post("/login")
*/
public function loginAction()
{
$this->_validation->add('mobile', new Mobile(array('message' => '手机号码错误', 'cancelOnFail' => true)))->add('password', new PresenceOf(array('message' => '请输入密码')));
$params = $this->validate();
$user = Users::login($params['mobile'], $params['password']);
if (!$user) {
throw new Exception('用户名或者密码错误', Messages::$ERROR_SYSTEM);
}
$this->_session->set(self::HTTP_USER_AUTH, $user);
return $user;
}
function Users_login_post()
{
$passphrase = $_REQUEST['passphrase'];
if (empty($passphrase)) {
throw new Q_Exception("Please enter your pass phrase", 'passphrase');
}
$identifier = Users::requestedIdentifier();
$isHashed = !empty($_REQUEST['isHashed']) ? $_REQUEST['isHashed'] : false;
$user = Users::login($identifier, $passphrase, $isHashed);
Users::$cache['user'] = $user;
}
public function loginAjax()
{
$username = $_POST['username'];
$password = $_POST['password'];
$user = Users::login($username, $password);
if (!$user) {
$this->jsonError('Invalid username or password');
return false;
}
$_SESSION['user'] = $user->extract_data();
$this->jsonSuccess();
}
public function __construct(Site $site, &$session, $post)
{
$users = new Users($site);
$email = strip_tags($post['email']);
$password = strip_tags($post['password']);
$root = $site->getRoot();
if (isset($post['submitLogin'])) {
$user = $users->login($email, $password);
//$user = null;
if ($user === null) {
// Login failed
$this->redirect = "/index.php?e";
$session[View::ERROR_MSG] = "Incorrect username or password";
return;
} else {
$session[User::SESSION_NAME] = $user;
$this->redirect = "/tasks.php";
}
} else {
if (isset($post['submitCreate'])) {
$confirm = strip_tags($post['confirm-password']);
$name = $post['name'];
if ($name == "") {
$session[View::ERROR_MSG] = "Please enter your name";
$this->redirect = "/create-account.php?e";
return;
}
if ($email == "") {
$session[View::ERROR_MSG] = "Please enter your email address";
$this->redirect = "/create-account.php?e";
return;
}
if ($password !== $confirm) {
$session[View::ERROR_MSG] = "Passwords do not match";
$this->redirect = "/create-account.php?e";
return;
}
if (strlen($password) < 8) {
$session[View::ERROR_MSG] = "Password is too short";
$this->redirect = "/create-account.php?e";
return;
}
$ret = $users->createAccount($name, $email, $password);
if ($ret !== null) {
$session[View::ERROR_MSG] = $ret;
$this->redirect = "/create-account.php?e";
return;
}
$this->redirect = "/";
}
}
}
public function testCreateUsersWithoutPrivileges()
{
$app = new Users();
$app->ds->loadMock('users', APP_ROOT . 'data/users.txt');
$this->assertTrue($app->login('*****@*****.**', '1234'));
$app->ds->loadMock('users', APP_ROOT . 'data/users.txt');
$app->ds->loadMock('roles_definitions', APP_ROOT . 'data/roles_definitions.txt');
$app->ds->loadMock('profiles', APP_ROOT . 'data/profiles.txt');
$app->ds->data["profiles"]->index = "profile_id";
$this->assertEquals(3, $app->ds->recordCount());
$app->addUser('Standard', 'User', '*****@*****.**', '1234');
$app->ds->selectFrom(['users']);
$this->assertEquals(4, $app->ds->recordCount());
}
public function change_password_ajax()
{
$curpass = $_POST['curpass'];
$password = $_POST['password'];
$user = Users::login($_SESSION['user']->username, $curpass);
if ($user) {
if ($user->setPassword($password)) {
$this->jsonSuccess();
} else {
$this->jsonError();
}
} else {
$this->jsonError();
}
}
public function login()
{
// Process login form.
if (isset($_POST['fabid']) && isset($_POST['password'])) {
$validate = new Validation();
// Validate the user name.
try {
$validate->userName($_POST['fabid']);
} catch (ValidationException $e) {
$_SESSION['error'] = $e->getError();
}
if (!isset($_SESSION['error'])) {
// Validate the password
try {
$validate->password($_POST['password']);
} catch (ValidationException $e) {
$_SESSION['error'] = $e->getError();
}
if (!isset($_SESSION['error'])) {
$user = new Users();
$user->user = $_POST['fabid'];
$user->password = $_POST['password'];
unset($_POST['fabid']);
unset($_POST['password']);
if (!isset($_SESSION['error'])) {
// Attempt the login.
try {
$user->login();
} catch (ValidationException $e) {
$_SESSION['error'] = $e->getError();
}
if (isset($_SESSION['loggedin'])) {
header('Location: Account-Summary');
} else {
header('Location: Home');
}
} else {
header('Location: Home');
}
} else {
header('Location: Home');
}
} else {
header('Location: Home');
}
}
}
function __construct()
{
/*if(!isset($_POST["benutzer"])){
$_POST["benutzer"] = "Max";
$_POST["password"] = sha1("Max");
$_POST["belegart"] = "R";
$_POST["lead_id"] = "Vicidial-001";
$_POST["firma"] = "Furtmeier Hard- und Software";
$_POST["strasse"] = "Neuteile";
$_POST["nr"] = "8";
$_POST["plz"] = "86682";
$_POST["ort"] = "Genderkingen";
}*/
if (Session::currentUser() == null and !Users::login($_POST["benutzer"], $_POST["password"], "open3A")) {
$this->loggedIn = false;
}
}
public function action()
{
// load
$this->load->model('Users');
// variables
$user = new Users();
$username = $_POST['username'];
$password = hash('md5', $_POST['password']);
$current_user = $user->login($username, $password);
if ($user != null) {
$sess_array = array('id' => $current_user[0]->id, 'username' => $current_user[0]->username);
$this->session->set_userdata('logged_in', $sess_array);
redirect('/');
} else {
redirect('login');
}
}
function createPage($smarty)
{
if (Users::loggedIn()) {
Redirect::to('?page=profile');
}
if (Input::exists()) {
if (Input::get('action') === 'register') {
$validation = new Validate();
$validation->check($_POST, array_merge(Config::get('validation/register_info'), Config::get('validation/set_password')));
if ($validation->passed()) {
try {
Users::create(array('student_id' => Input::get('sid'), 'password' => Hash::hashPassword(Input::get('password')), 'permission_group' => 1, 'name' => Input::get('name'), 'email' => Input::get('email'), 'umail' => Input::get('sid') . '@umail.leidenuniv.nl', 'phone' => Phone::formatNumber(Input::get('phone')), 'joined' => DateFormat::sql()));
Users::login(Input::get('sid'), Input::get('password'));
Notifications::addSuccess('You have been succesfully registered!');
Redirect::to('?page=profile');
} catch (Exception $e) {
Notifications::addError($e->getMessage());
}
} else {
Notifications::addValidationFail($validation->getErrors());
}
}
if (Input::get('action') === 'login') {
$validation = new Validate();
$validation->check($_POST, Config::get('validation/login'));
if ($validation->passed()) {
$login = Users::login(Input::get('sid'), Input::get('password'), Input::getAsBool('remember'));
if ($login) {
Notifications::addSuccess('You have been logged in!');
Redirect::to('?page=profile');
} else {
Notifications::addValidationFail('Invalid student number or password.');
}
} else {
Notifications::addValidationFail($validation->getErrors());
}
}
}
$smarty->assign('remember', Input::getAsBool('remember'));
$smarty->assign('name', Input::get('name'));
$smarty->assign('sid', Input::get('sid'));
$smarty->assign('email', Input::get('email'));
$smarty->assign('phone', Input::get('phone'));
return $smarty;
}
function loginSubmit_action()
{
$form = Form::validate('wmelon.users.login', 'users/login');
$data = $form->get();
// validating
try {
Users::login($data->login, $data->pass);
} catch (WMException $e) {
if ($e->getCode() == 'users:doesNotExist') {
$form->addError('Podany użytkownik nie istnieje');
$form->fallback();
} elseif ($e->getCode() == 'users:wrongPassword') {
$form->addError('Podano złe hasło');
$form->fallback();
}
}
// redirecting
SiteRedirect(base64_decode($data->backPage));
}
function __construct()
{
require_once 'libs/config.php';
//Archivo con configuraciones.
$this->_system = System::singleton();
//contiene objeto system
if ($_POST['token'] != session_id()) {
header('location: error.php');
} else {
require_once 'libs/apps/users/class.users.php';
//Archivo con configuraciones.
$users = new Users();
$user = $this->_system->nohacker($_POST['user']);
$pwd = $this->_system->nohacker($_POST['pwd']);
$login = $users->login($user, $pwd);
/*echo "<pre>";
print_r($login);
echo "</pre>";
*/
if ($login['status'] === "Accepted") {
$_SESSION['logged'] = true;
$_SESSION['id'] = $login['message']['id'];
$_SESSION['nick'] = $_POST['user'];
$_SESSION['consumerdb'] = $login['message']['consumerdb'];
$_SESSION['dbmanager'] = $login['message']['dbmanager'];
$_SESSION['dbquality'] = $login['message']['dbquality'];
$_SESSION['dbwater'] = $login['message']['dbwater'];
$_SESSION['dbbnergy'] = $login['message']['dbbnergy'];
$_SESSION['update'] = (int) $login['message']['update'];
/*echo "<pre>";
print_r($_SESSION);
echo "</pre>";*/
header('location: home.php');
} else {
if ($login['code'] === 412) {
//code 412 password must be regenerated
header('location: pwd_recovery.php?t=regenerate');
} else {
header('location: index.php?e=login_error');
}
}
}
}
$cfg->ADMIN_USER = '';
} else {
$usrCheck = $user->getByUsername($cfg->ADMIN_USER);
if ($usrCheck) {
$cfg->error = true;
$cfg->ADMIN_USER = '';
}
}
if (!$user->isValidEmail($cfg->ADMIN_EMAIL)) {
$cfg->error = true;
$cfg->ADMIN_EMAIL = '';
}
if (!$cfg->error) {
$cfg->adminCheck = $user->add($cfg->ADMIN_USER, $cfg->ADMIN_PASS, $cfg->ADMIN_EMAIL, 2, '', '');
if (!is_numeric($cfg->adminCheck)) {
$cfg->error = true;
} else {
$user->login($cfg->adminCheck, "", 1);
}
}
}
if (!$cfg->error) {
$cfg->setSession();
header("Location: ?success");
die;
}
}
$page->smarty->assign('cfg', $cfg);
$page->smarty->assign('page', $page);
$page->content = $page->smarty->fetch('step6.tpl');
$page->render();
public function testCreateUsersWithoutPrivileges()
{
$app = new Users();
$data = new data_source_mysqli();
$data->config = self::$config;
$data->connect("");
$app->ds = $data;
$data->index_field = "user_id";
$this->assertTrue($app->login('*****@*****.**', '1234'));
$app->ds->data["profiles"]->index = "profile_id";
$app->ds->selectAllFrom("profiles");
$this->assertEquals(3, $app->ds->recordCount());
$app->addUser('Standard', 'User', '*****@*****.**', '1234');
$app->ds->selectAllFrom("users");
$this->assertEquals(4, $app->ds->recordCount());
}
/**
* Tests fetching user's data by calling ::userData with UID argument
*
* (currently it's hardcoded to always return admin's data, since there are no other users)
*/
public function testUserDataMethodWithUID()
{
Users::logout();
$this->assertEquals(self::userData(), Users::userData(0));
Users::login('radex', 'qwerty');
$this->assertEquals(self::userData(), Users::userData(1));
}
$email = $_REQUEST['email'];
$first = $_REQUEST['first'];
$last = $_REQUEST['last'];
$u = new Users('unknown', BASE_DOMAIN);
$register = $u->register($email, $password, $first, $last);
$avatar = $u->my_avatar($my_id);
}
if (!empty($_REQUEST['email']) && empty($_REQUEST['register'])) {
//LOGGING IN
//LOGGING IN
$db = Database::obtain(DB_SERVER, DB_USER, DB_PASS, DB_DATABASE);
$db->connect();
$password = $_REQUEST['password'];
$email = $_REQUEST['email'];
$u = new Users('unknown', BASE_DOMAIN);
$login = $u->login($email, $password);
//print_r($login);
//$avatar = $u->my_avatar($_SESSION['uid']);
//sessions set in users class on login
//get user data
$uid = $_SESSION['uid'];
$u = new Users('member', BASE_DOMAIN);
$user_info = $u->getUserInfo($uid);
//4 is customers, 3 is employee 2 is admin
//print_r($user_info);
$first = $user_info[0]['first'];
$last = $user_info[0]['last'];
$email = $user_info[0]['email'];
$avatar = $user_info[0]['avatar'];
$pwd_reset_code = $user_info[0]['pwd_reset_code'];
if ($avatar === "") {
<?php
include_once 'class/user.php';
$obj = new Users();
$obj->table = 'users';
$obj->connect();
if ($_POST) {
if (isset($_POST['login'])) {
echo $obj->login($_POST);
}
}
echo $obj->display_login();
public function authenticate()
{
$data = array();
$validated = $this->_submit_validate();
if ($validated) {
$username = $this->input->post("username");
$password = $this->input->post("password");
$remember = $this->input->post("remember");
$key = $this->encrypt->get_key();
$encrypted_password = $key . $password;
$logged_in = Users::login($username, $encrypted_password);
//This code checks if the credentials are valid
if ($logged_in == false) {
$data['invalid'] = true;
$data['title'] = "System Login";
$this->load->view("login_v", $data);
} else {
if (isset($logged_in["attempt"]) && $logged_in["attempt"] == "attempt" && $logged_in["user"]->Access->Indicator != "system_administrator") {
//check to see whether the user is active
if ($logged_in["user"]->Active == 0) {
$data['inactive'] = true;
$data['title'] = "System Login";
$data['login_attempt'] = "<p class='error'>The Account has been deactivated. Seek help from the Facility Administrator</p>";
$this->load->view("login_v", $data);
} else {
$data['invalid'] = false;
$data['title'] = "System Login";
$data['login_attempt'] = "enter the correct password!</p>";
$this->load->view("login_v", $data);
/*
*
//Check if there is a login attempt
if (!$this -> session -> userdata($username . '_login_attempt')) {
$login_attempt = 1;
$this -> session -> set_userdata($username . '_login_attempt', $login_attempt);
$fail = $this -> session -> userdata($username . '_login_attempt');
$data['login_attempt'] = "(Attempt: " . $fail . " )";
} else {
//Check if login Attempt is below 4
if ($this -> session -> userdata($username . '_login_attempt') && $this -> session -> userdata($username . '_login_attempt') <= 4) {
$login_attempt = $this -> session -> userdata($username . '_login_attempt');
$login_attempt++;
$this -> session -> set_userdata($username . '_login_attempt', $login_attempt);
$fail = $this -> session -> userdata($username . '_login_attempt');
$data['login_attempt'] = "(Attempt: " . $fail . " )";
}
if ($this -> session -> userdata($username . '_login_attempt') > 4) {
$fail = $this -> session -> userdata($username . '_login_attempt');
$data['login_attempt'] = "<p class='error'>The Account has been deactivated. Seek help from the Facility Administrator</p>";
$this -> session -> set_userdata($username . '_login_attempt', 0);
$this -> load -> database();
$query = $this -> db -> query("UPDATE users SET Active='0' WHERE(username='******' or email_address='$username' or phone_number='$username')");
//Log Denied User in denied_log
$new_denied_log = new Denied_Log();
$new_denied_log -> ip_address = $_SERVER['REMOTE_ADDR'];
$new_denied_log -> location = $this -> getIPLocation();
$new_denied_log -> user_id = Users::getUserID($username);
$new_denied_log -> save();
}
}
*
*/
}
} else {
if (isset($logged_in["attempt"]) && $logged_in["attempt"] == "attempt" && $logged_in["user"]->Access->Indicator == "system_administrator") {
$data['title'] = "System Login";
$data['invalid'] = true;
$this->load->view("login_v", $data);
} else {
//If the credentials are valid, continue
$today_time = strtotime(date("Y-m-d"));
$create_time = strtotime($logged_in->Time_Created);
//check to see whether the user is active
if ($logged_in->Active == "0" && $logged_in->Access->Indicator != "system_administrator") {
$data['inactive'] = true;
$data['title'] = "System Login";
$this->load->view("login_v", $data);
} else {
if ($logged_in->Active == "1" && $logged_in->Signature != 1 && $logged_in->Access->Indicator != "system_administrator") {
$user_id = Users::getUserID($username);
$this->session->set_userdata('user_id', $user_id);
$facility_details = Facilities::getCurrentFacility($logged_in->Facility_Code);
$data['unactivated'] = true;
$data['title'] = "System Login";
$this->load->view("login_v", $data);
} else {
$facility_details = Facilities::getCurrentFacility($logged_in->Facility_Code);
$phone = $logged_in->Phone_Number;
$check = substr($phone, 0);
$phone = str_replace('+254', '', $phone);
$session_data = array('user_id' => $logged_in->id, 'user_indicator' => $logged_in->Access->Indicator, 'facility_name' => $logged_in->Facility->name, 'adult_age' => $logged_in->Facility->adult_age, 'access_level' => $logged_in->Access_Level, 'username' => $logged_in->Username, 'full_name' => $logged_in->Name, 'Email_Address' => $logged_in->Email_Address, 'Phone_Number' => $phone, 'facility' => $logged_in->Facility_Code, 'facility_id' => $facility_details[0]['id'], 'county' => $facility_details[0]['county'], 'facility_phone' => $facility_details[0]['phone'], 'facility_sms_consent' => $facility_details[0]['map']);
$this->session->set_userdata($session_data);
$user = $this->session->userdata('user_id');
$sql = "update access_log set access_type='Logout' where user_id='{$user}'";
$this->db->query($sql);
$new_access_log = new Access_Log();
$new_access_log->machine_code = implode(",", $session_data);
$new_access_log->user_id = $this->session->userdata('user_id');
$new_access_log->access_level = $this->session->userdata('access_level');
$new_access_log->start_time = date("Y-m-d H:i:s");
$new_access_log->facility_code = $this->session->userdata('facility');
$new_access_log->access_type = "Login";
$new_access_log->save();
//Set session to redirect the page to the previous page before logged out
$this->session->set_userdata("prev_page", "1");
redirect("home_controller/home");
}
}
}
}
}
} else {
//Not validated
$data = array();
$data['title'] = "System Login";
$this->load->view("login_v", $data);
}
}
private function xSdkFoundAccountLogin(&$me, $game, $found_acc)
{
$users = new Users();
$me = $users->login($found_acc['username'], $found_acc['password']);
//check account banned
if ($me->_data['status'] == 'banned') {
$data = array("data" => null, "status" => ReturnStatus::ACCOUNT_WAS_BANNED, "status_msg" => "Account was banned");
parent::sendResponse($data);
}
}
public function login_submit()
{
$user = new Users();
$password = $this->input->post('password');
$username = $this->input->post('username');
$returned_user = $user->login($username, $password);
//If user successfully logs in, proceed here
if ($returned_user) {
//Create basic data to be saved in the session
$reply = Users::login($username, $password);
$user_data = $reply->toArray();
$access_typeid = $user_data['usertype_id'];
$fname = $user_data['fname'];
$user_id = $user_data['id'];
$lname = $user_data['lname'];
$district_id = $user_data['district'];
$facility_id = $user_data['facility'];
$phone = $user_data['telephone'];
$user_email = $user_data['email'];
$county_id = $user_data['county_id'];
$partner_id = $user_data['partner'];
$fullname = $fname . ' ' . $lname;
$banner_name = '';
$access_level = Access_level::get_access_level_name($access_typeid);
$user_indicator = $access_level['user_indicator'];
if ($user_indicator == 'district') {
//get county name
$district_name = districts::get_district_name_($district_id);
$banner_name = $district_name['district'] . " Sub-county";
} elseif ($user_indicator == 'county') {
//get county name
$county_name = Counties::get_county_name($county_id);
$banner_name = $county_name['county'] . " County";
} elseif ($user_indicator == 'facility' || $user_indicator == 'facility_admin') {
//get county name
$facility_name = Facilities::get_facility_name2($facility_id);
$banner_name = $facility_name['facility_name'];
}
$session_data = array('county_id' => $county_id, 'partner_id' => $partner_id, 'phone_no' => $phone, 'user_email' => $user_email, 'user_id' => $user_id, 'user_indicator' => $user_indicator, 'fname' => $fname, 'lname' => $lname, 'facility_id' => $facility_id, 'district_id' => $district_id, 'user_type_id' => $access_typeid, 'full_name' => $fullname, 'banner_name' => $banner_name);
$this->session->set_userdata($session_data);
//get menu items
$menu_items = Menu::getByUsertype($access_typeid);
//Create array that will hold all the accessible menus in the session
$menus = array();
$menuids = array();
$counter = 0;
foreach ($menu_items as $menu_item) {
$menus[$counter] = array("menu_text" => $menu_item->menu_text, "menu_url" => $menu_item->menu_url, "menu_id" => $menu_item->id, "parent_status" => $menu_item->parent_status);
$counter++;
$menuids[] = $menu_item->id;
}
$sub_menus = array();
foreach ($menuids as $parentid) {
$sub_items = Sub_menu::getByparent((int) $parentid);
foreach ($sub_items as $item) {
$sub_menus[] = array("submenu_text" => $item->subm_text, "submenu_url" => $item->subm_url, "menu_id" => $item->parent_id);
}
}
//Save this menus array in the session
$this->session->set_userdata("menus", $menus);
//Save this sub menus array in the session
$_SESSION["submenus"] = $sub_menus;
//creating a new log value
Log::update_log_out_action($this->session->userdata('user_id'));
$u1 = new Log();
$action = 'Logged In';
$u1->user_id = $this->session->userdata('user_id');
$u1->action = $action;
$u1->save();
redirect('home');
} else {
$data['popup'] = "errorpopup";
$data['title'] = "Login";
$this->load->view("shared_files/login_pages/login_v", $data);
}
}
public function testLoadRoleMenus()
{
$app = new Users();
$app->ds->loadMock('users', APP_ROOT . 'data/users.txt');
$this->assertTrue($app->login('*****@*****.**', '1234'));
$app->ds->loadMock('roles_definitions', APP_ROOT . 'data/roles_definitions.txt');
$app->loadMenuItems();
$this->assertEquals(["Index" => "index/test"], $app->menuItems);
}
public function login($email, $password)
{
$user = new Users();
return $user->login($email, $password);
}
<?php
$login = false;
require_once "lib/site.inc.php";
if (isset($_REQUEST['username']) && isset($_REQUEST['password'])) {
$users = new Users($site);
$user = $users->login($_REQUEST['username'], $_REQUEST['password']);
if ($user !== null) {
$_SESSION['user'] = $user;
$message = "success";
echo $message;
exit;
} else {
$message = 'failed login';
echo $message;
}
}
?>
function handleForm($valuesAssocArray)
{
switch ($valuesAssocArray["action"]) {
case "login":
if (!Users::login($valuesAssocArray["benutzer"], sha1($valuesAssocArray["password"]), "open3A", "default", true)) {
Red::errorD("Benutzer/Passwort unbekannt");
}
break;
}
}
}
}
$nick = Users::sha1Rounds($app->config->app->static_salt . $user_nick);
$pass = $user_password;
} else {
return $app->response->redirect("error/500")->sendHeaders();
}
$parameters = array("conditions" => "user_nick = ?1", "bind" => array(1 => $nick));
/** @var Users $user */
$user = Users::findFirst($parameters);
if (!$user) {
$user = new Users();
$salt = Users::generateSalt();
$data = array('user_nick' => $nick, 'user_password' => Users::sha1Rounds($app->config->app->static_salt . $pass . $salt), 'password_salt' => $salt, 'openid' => $token ? 1 : 0);
$user->save($data);
$user->login($user);
} else {
$userPasswordRounds = Users::sha1Rounds($app->config->app->static_salt . $pass . $user->password_salt);
if ($userPasswordRounds == $user->user_password) {
$user->login($user);
} else {
return $app->response->redirect("login?message=error_wrong_credentials")->sendHeaders();
}
}
})->setName('login');
$app->get('/logout', function () use($app) {
$app->session->destroy();
$app->response->redirect("login")->sendHeaders();
});
$app->post('/addData', function () use($app) {
if ($app->security->checkToken('token') === false) {
