function SET_logout() { session_start(); global $SET_THEMYSQLHOSTNAME; global $SET_THEMYSQLUSERNAME; global $SET_THEMYSQLPASSWORD; global $SET_THEMYSQLDBNAME; global $SET_THEMYSQLLOGINTABLE; global $SET_COOKIEEXPIRY; global $SET_THEMULTIPLELOGIN; global $SET_BASIC_MYSQL_CONNECT; global $SET_BASIC_SELECT_DATABASE; $USERID = $_COOKIE['userid']; $LASTTIMESTAMPAUTHKEY = $_SESSION['authkey']; $thecurrenttimestamp = time(); $ifsession_set = false; if (session_id()) { $ifsession_set = true; } if ($ifsession_set) { $_SESSION['authkey'] = ""; session_destroy(); } $cookie1 = setcookie("authkey", "", $thecurrenttimestamp - 60 * 60); $cookie2 = setcookie("base", "", $thecurrenttimestamp - 60 * 60); $cookie3 = setcookie("userid", "", $thecurrenttimestamp - 60 * 60); $cookie4 = setcookie("PHPSESSID", "", $thecurrenttimestamp - 60 * 60); //extract details from the database $query_extr_all_details = mysql_query("SELECT * FROM {$SET_THEMYSQLLOGINTABLE} WHERE USERID='{$USERID}'"); $answer_extr_all_details = mysql_fetch_array($query_extr_all_details); $againanswer_extr_all_details = mysql_fetch_array($query_extr_all_details); if (!$answer_extr_all_details) { error_log("[[[[[[[SET]>>>the logout function could not extract the details of the USERID ({$USERID})"); SET_whisk(5); return false; } $USER = $answer_extr_all_details['NAME']; $logged_till_now = $answer_extr_all_details['TOTALLOGGEDTIME']; $logintimestamp = $answer_extr_all_details['LOGINTIMESTAMP']; $loggedtotal = $logged_till_now + ($thecurrenttimestamp - $logintimestamp); //update the database $query_update = mysql_query("UPDATE {$SET_THEMYSQLLOGINTABLE} SET LOGGED='0',LASTTIMESTAMP='{$thecurrenttimestamp}',LASTTIMESTAMPAUTHKEY='{$LASTTIMESTAMPAUTHKEY}',LOGOUTTIMESTAMP='{$thecurrenttimestamp}',TOTALLOGGEDTIME='{$loggedtotal}',SESSIONID='',BASE='',SALT='',AUTHKEY='',COOKIEEXPIRY='{$thecurrenttimestamp}' WHERE USERID='{$USERID}'"); if (mysql_error()) { error_log("[[[[[[[SET]>>>" . mysql_error()); } $answer_update = mysql_affected_rows(); if (!$answer_update) { error_log("[[[[[[[SET]>>>the logout function could not update the database for the USER,USERID ({$USER},{$USERID}) the query failed"); whisk(5); return false; } return true; }
function SET_checklogin($USERNAME, $PASS) { global $SET_THEMYSQLHOSTNAME; global $SET_THEMYSQLUSERNAME; global $SET_THEMYSQLPASSWORD; global $SET_THEMYSQLDBNAME; global $SET_THEMYSQLLOGINTABLE; global $SET_COOKIEEXPIRY; global $SET_THEMULTIPLELOGIN; global $SET_BASIC_MYSQL_CONNECT; global $SET_BASIC_SELECT_DATABASE; $USERNAME = mysql_real_escape_string($USERNAME); $HASHEDPASS = mysql_real_escape_string(md5(mysql_real_escape_string($PASS))); $query_checklogin = mysql_query("SELECT * FROM {$SET_THEMYSQLLOGINTABLE} WHERE NAME='{$USERNAME}'"); if (mysql_error()) { error_log("[[[[[[[SET]>>>" . mysql_error()); } $answer_checklogin = mysql_fetch_array($query_checklogin); $ansagain_checklogin = mysql_fetch_array($query_checklogin); if ($ansagain_checklogin) { $useridfirst = $answer_checklogin['USERID']; $useridsecond = $ansagain_checklogin['USERID']; error_log("[[[[[[SET]>>>MULTIPLE ENTRIES FOUND FOR SAME USERNAME AND USERID ({$USERNAME},{$useridfirst},{$useridsecond})"); SET_whisk(73); return 0; } $answer_checklogin_AFTER = false; $thereturnedpass = $answer_checklogin['PASSWORD']; if ($thereturnedpass == $HASHEDPASS) { $answer_checklogin_AFTER = true; } var_dump($thereturnedpass, $HASHEDPASS); if (!$answer_checklogin_AFTER) { return 0; exit(1); } else { if ($answer_checklogin_AFTER) { $theloggedin = $answer_checklogin['LOGGED']; if ($SET_THEMULTIPLELOGIN) { return 1; } else { if (!$SET_THEMULTIPLELOGIN) { if (!$theloggedin) { return 1; } else { return 7; } } } } } }
function SET_register($regusername, $regpass) { global $SET_THEMYSQLHOSTNAME; global $SET_THEMYSQLUSERNAME; global $SET_THEMYSQLPASSWORD; global $SET_THEMYSQLDBNAME; global $SET_THEMYSQLLOGINTABLE; global $SET_COOKIEEXPIRY; global $SET_THEMULTIPLELOGIN; global $SET_BASIC_MYSQL_CONNECT; global $SET_BASIC_SELECT_DATABASE; $theregusername = mysql_real_escape_string($regusername); $md5theregpass = md5(mysql_real_escape_string($regpass)); $querytoevaluate = mysql_query("SELECT * FROM {$SET_THEMYSQLLOGINTABLE} WHERE NAME='{$theregusername}'"); $ansevaluate = mysql_fetch_array($querytoevaluate); if ($ansevaluate) { return 7; exit(1); } $querytoregister = "INSERT INTO {$SET_THEMYSQLLOGINTABLE} (NAME,PASSWORD,LOGGED,LOGINTIMESTAMP,LASTTIMESTAMP,LASTTIMESTAMPAUTHKEY,AUTHKEY,BASE,SALT,COOKIEEXPIRY,SESSIONID,LOGOUTTIMESTAMP,TOTALLOGGEDTIME) VALUES('{$theregusername}','{$md5theregpass}','x','xxxxxxx','xxxxxxx','xxxxxxx','xxxxxxx','xxxxxxx','xxxxxxx','xxxxxxx','xxxxxxx','xxxxxxx','xxxxxxx')"; $ansregwuer = mysql_query($querytoregister); if (mysql_error()) { error_log("[[[[[[[SET]>>>" . mysql_error()); } $affred = mysql_affected_rows(); if ($affred == -1) { error_log("[[[[[[[SET]>>>the SET_register function could not update the database for the user registration for USER ({$theregusername})"); SET_whisk(2); return 0; exit(1); } else { if ($affred == 1) { return 1; } } }