Exemple #1
0
 /**
  * logs out user if logged in
  * 
  * @access private
  * @roles administrator,user,guest
  */
 function logout()
 {
     if (Authenticate::isAuthenticated()) {
         Authenticate::logout();
         return true;
     } else {
         return false;
     }
 }
 /**
  * destroy administrator session
  * role: administrator
  */
 public function logout()
 {
     $auth = new Authenticate();
     if ($auth->logout(Authenticate::SUPERUSER)) {
         transport("administrator");
     } else {
         transport("dashboard");
     }
 }
Exemple #3
0
<?php

include '../../../includes/Authenticate.php';
include '../../../classes/Admin.php';
//check whether the user is logged in or not,
if (!Authenticate::isLoggedIn()) {
    Authenticate::logout();
}
//protects the student section
if (Authenticate::getUserType() != "ADMIN") {
    Authenticate::redirect();
}
$scoreboardType = $_GET['type'];
if ($scoreboardType === 'cgf') {
    $queryResult = Admin::viewScoreboardBySourceCodeLength($_GET['qid']);
} elseif ($scoreboardType === 'prc') {
    $queryResult = Admin::viewScoreboard($_GET['qid']);
}
$index = 0;
?>
<!DOCTYPE html>
<html>
<head>
	<meta charset="utf-8">
	<meta http-equiv="X-UA-Compatible" content="IE=edge">
	<title>Gnooble: Student</title>
	<link href='http://fonts.googleapis.com/css?family=Open+Sans:700,300,600,400' rel='stylesheet' type='text/css'>
	<link rel="stylesheet" href="../../../assets/css/bootstrap.min.css">
	<link rel="stylesheet" href="../../../assets/css/main.css">
	<script>
		(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
Exemple #4
0
                    header("Location:../melnet/?sid=" . $_SESSION['user_id'] . "&token=" . ($token = $_SESSION['token'] . "&loginerrorfeed=" . rawurlencode(" User have not verified Registration! ::..")));
                } else {
                    if ($reply == 0) {
                        header("Location:../melnet/index.php?sid=" . $_SESSION['user_id'] . "&token=" . ($token = $_SESSION['token'] . "&loginerrorfeed=" . rawurlencode(" Login Successful! ::..")));
                    }
                }
            }
        }
    }
    //end if not empty
}
//end if;
if (isset($_GET['action'])) {
    $action = htmlspecialchars($_GET['action']);
    if ($action == "logout") {
        $auth->logout();
    }
    header('Location:../melnet/index.php');
}
function go_homeforlogedin()
{
    global $smarty;
    $smarty->assign('slider', $smarty->fetch('slider.tpl'));
    $smarty->assign('mainContent', $smarty->fetch("logedin.tpl"));
    $smarty->assign('title', '..::MelNet:homeView');
}
function go_homeforlogin()
{
    global $smarty;
    $smarty->assign('slider', $smarty->fetch('slider.tpl'));
    $smarty->assign('mainContent', $smarty->fetch("logedout.tpl"));
 public static function preventUnauthorisedLogin()
 {
     //check whether the user is logged in or not,
     if (!self::isLoggedIn()) {
         Authenticate::logout();
     }
     //protects the student section
     //self::redirect();
 }
Exemple #6
0
/**
 * Security action checks that the caller has the credentials to run the remote methods
 */
function securityAction(&$amfbody)
{
    $check = true;
    if (!$amfbody->noExec) {
        $classConstruct =& $amfbody->getClassConstruct();
        $methodName = $amfbody->methodName;
        $className = $amfbody->className;
        if ($methodName == "_authenticate") {
            if (method_exists($classConstruct, "_authenticate")) {
                $credentials = $amfbody->getValue();
                //Fix for error in _authenticate
                //Pass throught the executive
                $roles = Executive::doMethodCall($amfbody, $classConstruct, '_authenticate', array($credentials['userid'], $credentials['password']));
                if ($roles !== '__amfphp_error' && $roles !== false && $roles !== "") {
                    Authenticate::login($credentials['userid'], $roles);
                    return false;
                } else {
                    Authenticate::logout();
                    return false;
                }
            } else {
                $ex = new AMFException(E_USER_ERROR, "The _authenticate method was not found in the " . $className . " class", __FILE__, __LINE__, "AMFPHP_AUTHENTICATE_NOT_FOUND");
                AMFException::throwException($amfbody, $ex);
                return false;
            }
        }
        //else
        //Check for gateway restrictions
        $methodRecord = $classConstruct->methodTable[$methodName];
        // create a shortcut for the ugly path
        $instanceName = $GLOBALS['amfphp']['instanceName'];
        if (isset($instanceName) && isset($methodRecord['instance'])) {
            // see if we have an instance defined
            if ($instanceName != $methodRecord['instance']) {
                // if the names don't match die
                $ex = new AMFException(E_USER_ERROR, "The method {" . $methodName . "} instance name does not match this gateway's instance name.", __FILE__, __LINE__, "AMFPHP_INSTANCE_NAME_MISMATCH");
                AMFException::throwException($amfbody, $ex);
                return false;
            }
        } else {
            if (isset($methodRecord['instance'])) {
                // see if the method has an instance defined
                if ($instanceName != $methodRecord['instance']) {
                    // if the names don't match die
                    $ex = new AMFException(E_USER_ERROR, "The restricted method {" . $methodName . "} is not allowed through a non-restricted gateway.", __FILE__, __LINE__, "AMFPHP_INSTANCE_NAME_RESTRICTION");
                    AMFException::throwException($amfbody, $ex);
                    return false;
                }
            }
        }
        if (!isset($methodRecord['access']) || strtolower($methodRecord['access']) != "remote") {
            // make sure we can remotely call it
            $ex = new AMFException(E_USER_ERROR, "ACCESS DENIED: The method {" . $methodName . "} has not been declared a remote method.", __FILE__, __LINE__, "AMFPHP_METHOD_NOT_REMOTE");
            AMFException::throwException($amfbody, $ex);
            return false;
        }
        if (isset($methodRecord['roles']) && !Authenticate::isUserInRole($methodRecord['roles'])) {
            $ex = new AMFException(E_USER_ERROR, "This user is not does not have access to {" . $methodName . "}.", __FILE__, __LINE__, "AMFPHP_AUTH_MISMATCH");
            AMFException::throwException($amfbody, $ex);
            return false;
        }
    }
    return true;
}