* but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
 *
 * @copyright       (c) 2000-2016 XOOPS Project (www.xoops.org)
 * @license             GNU GPL 2 (http://www.gnu.org/licenses/gpl-2.0.html)
 * @package             core
 * @since               2.0.0
 */
defined('XOOPS_ROOT_PATH') || exit('Restricted access');
xoops_loadLanguage('user');
// from $_POST we use keys: uname, pass, rememberme, xoops_redirect
XoopsLoad::load('XoopsRequest');
$uname = XoopsRequest::getString('uname', '', 'POST');
$pass = XoopsRequest::getString('pass', '', 'POST');
$rememberme = XoopsRequest::getString('rememberme', '', 'POST');
$redirect = XoopsRequest::getUrl('xoops_redirect', '', 'POST');
if ($uname == '' || $pass == '') {
    redirect_header(XOOPS_URL . '/user.php', 1, _US_INCORRECTLOGIN);
}
$member_handler = xoops_getHandler('member');
$myts = MyTextSanitizer::getInstance();
include_once $GLOBALS['xoops']->path('class/auth/authfactory.php');
xoops_loadLanguage('auth');
$xoopsAuth = XoopsAuthFactory::getAuthConnection($myts->addSlashes($uname));
$user = $xoopsAuth->authenticate($uname, $pass);
if (false !== $user) {
    if (0 == $user->getVar('level')) {
        redirect_header(XOOPS_URL . '/index.php', 5, _US_NOACTTPADM);
    }
    if ($xoopsConfig['closesite'] == 1) {
        $allowed = false;
Exemple #2
0
         echo '<span class="red bold">' . $er . '</span><br>';
     }
     echo '</div><br>';
     $op = 'editprofile';
 } else {
     $member_handler = xoops_getHandler('member');
     $edituser = $member_handler->getUser($uid);
     $edituser->setVar('name', XoopsRequest::getString('name', ''));
     if ($xoopsConfigUser['allow_chgmail'] == 1) {
         $edituser->setVar('email', $email, true);
     }
     if ($password != '') {
         $edituser->setVar('pass', password_hash($password, PASSWORD_DEFAULT));
         //$edituser->setVar('last_pass_change', time());
     }
     $edituser->setVar('url', XoopsRequest::getUrl('url', ''));
     $edituser->setVar('user_icq', XoopsRequest::getString('user_icq', ''));
     $edituser->setVar('user_from', XoopsRequest::getString('user_from', ''));
     $edituser->setVar('user_sig', xoops_substr(XoopsRequest::getString('user_sig', ''), 0, 255));
     $edituser->setVar('user_viewemail', XoopsRequest::getBool('user_viewemail', 0));
     $edituser->setVar('user_aim', XoopsRequest::getString('user_aim', ''));
     $edituser->setVar('user_yim', XoopsRequest::getString('user_yim', ''));
     $edituser->setVar('user_msnm', XoopsRequest::getString('user_msnm', ''));
     $edituser->setVar('attachsig', XoopsRequest::getBool('attachsig', 0));
     $edituser->setVar('timezone_offset', XoopsRequest::getFloat('timezone_offset', 0.0));
     $edituser->setVar('uorder', XoopsRequest::getInt('uorder', 0));
     $edituser->setVar('umode', XoopsRequest::getString('umode', 'flat'));
     $edituser->setVar('notify_method', XoopsRequest::getInt('notify_method', 1));
     $edituser->setVar('notify_mode', XoopsRequest::getInt('notify_mode', 1));
     $edituser->setVar('bio', substr(XoopsRequest::getString('bio', ''), 0, 255));
     $edituser->setVar('user_occ', XoopsRequest::getString('user_occ', ''));