public function require_login($userlvl = "user") { switch ($userlvl) { case "user": $allowed = $this->is_logged_in; break; case "moderator": $allowed = $this->is_moderator; break; case "admin": $allowed = $this->is_admin; break; default: $allowed = FALSE; break; } if (!$allowed && !$this->is_logged_in) { //Redirect to login page $urlnew = encode_decode_redirect_url($_SERVER["REQUEST_URI"]); if ($urlnew == "") { redirect_to_url('/login.php'); } else { redirect_to_url('/login.php?url=' . urlencode($urlnew)); } } else { if (!$allowed && $this->is_logged_in) { //They Shouldn't be here. Redirect to homepage. redirect_to_url(''); } else { return TRUE; } } }
if (!defined('IN_TATT')) { exit; } //TODO: REMOVE THIS LINE BEFORE SITE GOES LIVE /****************** DEBUG LINE *********************/ $_GET['pagedebug'] = 'true'; /********************* END ********************/ //Establish session session_start(); //------- COMMON VARIABLES $page = new Page(); $auth = new Auth($db); //Checks Auth at object creation $user = NULL; $page->assign('logged_in', $auth->is_logged_in()); $page->assign('redirect_url', encode_decode_redirect_url($_SERVER['REQUEST_URI'])); $page->load_javascript_include('jquery-1.6.4.min.js'); if ($auth->is_logged_in()) { $user_id = $auth->get_user_id(); $user = new User($user_id); $page->assign('username', $user->get_username()); $page->assign('user_id', $user_id); } //Query logging $db->enable_query_logging(FALSE); $page_debugging = FALSE; if (isset($_GET['pagedebug']) && $_GET['pagedebug'] == 'true' && $auth->is_moderator()) { ini_set('display_errors', 'On'); error_reporting(E_ALL | E_STRICT); $page_debugging = TRUE; $db->enable_query_logging(TRUE);
<?php namespace tatt; require_once 'tatt/webcommon.php'; if(isset($_GET['url'])){ $redirect_url = encode_decode_redirect_url($_GET['url']); } else { $redirect_url = ''; } if(isset($_GET['action'])){ if($_GET['action'] == 'logout'){ $auth->logout(); redirect_to_url('/' . $redirect_url); } $username = $_POST['username']; $password = $_POST['password']; $auth->login($username,$password); if($auth->is_logged_in()){ redirect_to_url('/' . $redirect_url); } } //TODO Bad login, display login pagei $page->assign('redirect_url',$redirect_url); $page->assign('page_title', 'Login Failed'); $page->display('login.tpl');