public function update($id) { $usuario = authentication::user_info(); $update = authentication::user_info($id); $level = $usuario['_usuarios__level']; $this->load->view("update", "Editar Usuário ", array("usuario" => $usuario, "form" => $this->form_update($id, $level))); }
public function __construct() { // Grab local path $local_path = dirname(__FILE__); // Set Authentication Data Source $this->auth_data_source = strtolower($_SESSION['auth_data_source']); // Set login status to false by default $this->status = false; // Include necessary classes require_once $_SESSION['frame_path'] . '/core/data_access/data_trans.class.php'; require_once $local_path . '/nav.class.php'; require_once $local_path . '/xml_nav.class.php'; require_once $local_path . '/authentication.class.php'; require_once $local_path . '/module_list.class.php'; //**************************************************** // Build Array NAVs //**************************************************** // User Modules $modules_dir = isset($_SESSION['modules_dir']) ? $_SESSION['modules_dir'] : 'modules'; $modules_path = $_SESSION['file_path'] . '/' . $modules_dir; if (file_exists($modules_path) && is_dir($modules_path)) { $nav = new nav($modules_path); } $_SESSION['menu_array'] = isset($nav) ? $nav->export() : array(); $_SESSION['menu_array2'] = isset($nav) ? $nav->export2() : array(); //************************************** // Authenticate //************************************** $authen = new authentication(); //************************************** // Authentication Success //************************************** if ($authen->status()) { // Build XML Nav $module_xml = new xml_nav($_SESSION['menu_array']); $_SESSION['menu_xml'] = $module_xml->export(); // Login Success $this->status = true; } else { $this->fail_login('1'); } }
public static function validateLogin($email, $password) { if ($user = user::find(array('email' => $email))) { if (authentication::verify($password, $user["password"])) { return true; } else { return false; } } else { return false; } }
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"> <?php //Common require_once '../includes/config.php'; require_once '../includes/util.php'; require_once '../admin/common/include/alert.php'; //====================================== $Util = new Util(); $alert = new alert(); require_once '../admin/class/login/authentication.php'; $auth = new authentication(); $hostname = $Util->getServerName(); ?> <html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US"> <head> <meta http-equiv="content-type" content="text/html;charset=UTF-8" /> <meta charset="UTF-8" /> <meta name="description" content="" /> <meta name="keywords" content="" /> <meta name="author" content="" /> <link rel="stylesheet" href="<?php echo $hostname . '/admin/common'; ?> /css/reset.css" /> <link rel="stylesheet" href="<?php echo $hostname . '/admin/common'; ?> /css/grid.css" /> <link rel="stylesheet" href="<?php echo $hostname . '/admin/common';
<table class="cmstable" cellspacing="0" cellpadding="0"> <tr> <td class="cmscontent" rowspan="3" valign="top"> <?php if (!$txtUID) { $txtUID = $user; } // wenn die übergebene UID nicht gleich dem // angemeldetem Benutzer ist, muss das Passwort // angegeben werden if ($txtUID != $user && !$txtPassword) { $error = 1; } else { if ($txtUID && $txtPassword) { // Passwort pruefen $auth = new authentication(); if ($auth->checkpassword($txtUID, $txtPassword)) { $error = 0; } else { $error = 2; } } else { $error = 0; } } // ändern oder eintragen einer mac adresse if (!$error) { if (isset($txtMAC) && $txtMAC != "") { $sql_query = "SELECT DISTINCT vorname, nachname \n\t\t\t\t\tFROM campus.vw_benutzer WHERE uid=" . $db->db_add_param($txtUID) . " LIMIT 1"; if ($result = $db->db_query($sql_query)) { if ($row = $db->db_fetch_object($result)) {
<?php /* * PRIMARY SYSTEM MECHANISM * Module loader, URL request grabber, Function load mechanism */ // CORE MODULE LOAD MECHANISMS ---> require_once 'src/core/controller/microframework.php'; $ObjFramework = new MicroFramework(); require_once 'src/core/controller/firewall.php'; $ObjFirewall = new firewall(); require_once 'src/core/security/authentication.php'; $ObjAuth = new authentication(); require_once 'src/core/controller/akonga.php'; $ObjAkonga = new akonga(); // <-- END CORE LOAD MECHANISMS // Run Firewall Checks before hitting authentication if ($myApp['firewall'] == "on") { if ($ObjFirewall->runIPcheck() != true) { // Your IP address is not in the approved range or implicit speicification require_once 'web/core/security/ipviolation.php'; exit; } } // Run an authentication maintain check $authcheck = $ObjAuth->maintainauth(); // Pull the correct folder and file from the page request if ($_POST['x'] != "") { // posting values to a specific function $a = db::escapechars(trim($_POST['x'])); // module
$stg = new studiengang(); $stg->getAll('typ, kurzbz', false); $stg_arr = array(); foreach ($stg->result as $row) { $stg_arr[$row->studiengang_kz] = $row->kuerzel; } echo ' <form accept-charset="UTF-8" name="search" method="GET"> Bitte Suchbegriff eingeben: <input type="text" name="searchstr" size="30" value="' . $db->convert_html_chars($searchstr) . '"> <input type="submit" value="Suchen"> </form>'; if ($searchstr != '') { $qry = "SELECT person_id FROM public.tbl_person WHERE person_id in(\n\t\t\tSELECT distinct person_id FROM public.tbl_person LEFT JOIN public.tbl_benutzer USING(person_id) WHERE\n\t\t\tnachname ~* '" . $db->db_escape($searchstr) . "' OR \n\t\t\tvorname ~* '" . $db->db_escape($searchstr) . "' OR\n\t\t\talias ~* '" . $db->db_escape($searchstr) . "' OR\n\t\t\tCOALESCE(nachname,'') || ' ' || COALESCE(vorname,'') = '" . $db->db_escape($searchstr) . "' OR \n\t\t\tCOALESCE(vorname,'') || ' ' || COALESCE(nachname,'') = '" . $db->db_escape($searchstr) . "' OR \n\t\t\tuid ~* '" . $db->db_escape($searchstr) . "'\n\t\t\t) ORDER BY nachname, vorname;"; if ($result = $db->db_query($qry)) { $auth = new authentication(); echo $db->db_num_rows($result) . ' Person(en) gefunden<br><br>'; echo '<table>'; echo '<tr class="liste" align="center">'; echo "<td colspan='5'><b>Person</b></td>"; echo "<td colspan='4'><b>Benutzer</b></td>"; echo "<td colspan='4'><b>Mitarbeiter</b></td>"; echo "<td colspan='4'><b>Student</b></td>"; echo '</tr>'; echo '<tr class="liste" align="center">'; echo "<td><b>Nachname</b></td>"; echo "<td><b>Vorname</b></td>"; echo "<td><b>Gebdatum</b></td>"; echo "<td><b>updateAmUm</b></td>"; echo "<td><b>updateVon</b></td>"; echo "<td><b>Status</b></td>";
function do_authentication() { $filename = basename($_SERVER['SCRIPT_FILENAME']); $PHP_SELF = $_SERVER['PHP_SELF']; if (!$_SESSION['nickname']) { if (!isset($this->nickname)) { authentication::login_form(); exit; } else { $_SESSION['userpassword'] = $this->userpassword; $_SESSION['nickname'] = $this->nickname; } $nickname = iconv('utf-8', 'windows-1251', $this->nickname); $userpassword = iconv('utf-8', 'windows-1251', $this->userpassword); $ObjDb = new connect_db(); $link_id = $ObjDb->db_connect(); $query = "SELECT * FROM {$this->user_tablename} WHERE nickname = '{$nickname}' AND userpassword = '******'"; $result = mysql_query($query); $query_data = mysql_fetch_assoc($result); $user_id = $query_data['user_id']; $_SESSION['user_id'] = $user_id; if (!mysql_num_rows($result)) { $_SESSION['nickname'] = null; $_SESSION['userpassword'] = null; $_SESSION['user_id'] = null; return 1; } else { $query = "SELECT user_id FROM {$this->access_log_tablename} WHERE page = '{$filename}'\n AND user_id = '{$user_id}'"; $result = mysql_query($query); if (!mysql_num_rows($result)) { $query = "INSERT INTO {$this->access_log_tablename} VALUES ('{$filename}', '{$user_id}', 1, NULL)"; } else { $query = "UPDATE {$this->access_log_tablename} SET visitcount = visitcount + 1, accessdate = NULL \n \tWHERE page = '{$filename}' AND user_id = '{$user_id}'"; } mysql_query($query); $num_rows = mysql_affected_rows($link_id); if ($num_rows != 1) { die(sql_error()); } } $ObjDb->db_close(); } elseif ($_SESSION['nickname'] && $_SESSION['userpassword']) { $nickname = $_SESSION['nickname']; $filename = basename($_SERVER['SCRIPT_FILENAME']); $ObjDb = new connect_db($this->dbhost, $this->dbusername, $this->dbuserpassword, $this->dbname); $link_id = $ObjDb->db_connect(); $nickname = iconv('utf-8', 'windows-1251', $nickname); $query = "select user_id from users where nickname='{$nickname}'"; $result = mysql_query($query); $query_data = mysql_fetch_assoc($result); $user_id = $query_data['user_id']; $nickname = iconv('windows-1251', 'utf-8', $nickname); $query = "SELECT user_id FROM {$this->access_log_tablename} WHERE page = '{$filename}' AND user_id = '{$user_id}'"; $result = mysql_query($query); if (!mysql_num_rows($result)) { $query = "INSERT INTO {$this->access_log_tablename} VALUES ('{$filename}', '{$user_id}', 1, NULL)"; } else { $query = "UPDATE {$this->access_log_tablename} SET visitcount = visitcount + 1, accessdate = NULL \n WHERE page = '{$filename}' AND user_id = '{$user_id}'"; } mysql_query($query); $num_rows = mysql_affected_rows($link_id); if ($num_rows != 1) { die(sql_error()); } $ObjDb->db_close(); } }
self::error_message(mysql_error()); } $query = "UPDATE {$this->user_tablename} SET email = '{$this->email}' WHERE user_id = '{$this->user_id}'"; $result = mysql_query($query); if (!$result) { self::error_message(mysql_error()); } $query = "COMMIT;"; $result = mysql_query($query); if (!$result) { self::error_message(mysql_error()); } $ObjDb->db_close(); echo 'Email успешно изменен.'; } function error_message($msg) { $str = "Error: {$msg}"; echo $str; exit; } } include_once "../../libraries/authentication.class.php"; $authentication = new authentication(); $auth = $authentication->do_authentication(); if ($auth == 1) { die("Аутентификация не пройдена!"); } $obj = new PassEmailSaver(); $obj->save_pass(); $obj->save_email();
?> /plugins/validator/js/languages/jquery.validationEngine-en.js"></script> <script type="text/javascript" src="<?php echo $hostname . "/admin/common"; ?> /plugins/validator/js/jquery.validationEngine.js"></script> <script type="text/javascript" src="<?php echo $hostname . "/admin/common"; ?> /plugins/gvchart/jquery.gvChart-1.0.1.min.js"></script> <script type="text/javascript" src="<?php echo $hostname . "/admin/common"; ?> /js/scriptbreaker-multiple-accordion-1.js"></script> <script src="<?php echo $hostname . "/admin/common"; ?> /js/head_scripts.js" type="text/javascript"></script> <!--=== ENABLE HTML5 TAGS FOR IE ===--> <!--[if IE]><script src="<?php echo $hostname . "/admin/common"; ?> /js/html5.js"></script><![endif]--> <title>vDeal.asia - Admin Control Panel</title> <?php require_once '../admin/class/login/authentication.php'; $checkAuth = new authentication(); echo isset($_SESSION['admin']); $checkAuth->preventUserNotLogin($Util);
/** * context所需資訊 * @param String $json * @param String $callback */ function info($json, $callback = NULL) { if (is_null($callback)) { $callback = $json; $json = NULL; } //分析json if (isset($json)) { $input_data = json_to_object($json); if (isset($input_data->anchor_navigation_type)) { $type = $input_data->anchor_navigation_type; $GLOBALS['context']->set_anchor_navigation_type($type); } } $data = array(); $data['KALS_language'] = $this->_load_lang(); $data['Window_profile'] = array('sex' => array(0, 1, 2), 'locale' => array('zh_tw', 'en_us')); require_once 'authentication.php'; $authentication = new authentication(); $data['KALS_authentication'] = $authentication->default_data(); //$data['KALS_view_manager'] = $this->_load_viewes(); // 20140517 Pulipuli Chen //$data['webpage_id'] = get_context_webpage()->get_id(); /** * @author Pulipuli Chen <*****@*****.**> 20150117 * 不,不能這樣做 * 要把navigation data拆開來之後再做快取 * 快取網址要搭配 webpage_id 跟 user_id */ //$this->output->cache($this->config->item('output.cache.info.expiration')); $this->_display_jsonp($data, $callback); }
// } //===================================================== $pass = false; if ($service == "login" && $method == "loginuser") { // if login service $pass = false; $obj = new $service(); if ($data) { // echo implode(" ",$data); $obj->{$method}($data); } else { $obj->{$method}(null); } } else { //validate user $auth = new authentication(); $pass = $auth->checkuser(true); } if ($pass) { $obj = new $service(); if ($data) { // echo implode(" ",$data); $obj->{$method}($data); } else { $obj->{$method}(null); } } ?>
<?php if (basename($_SERVER["PHP_SELF"]) == "init.php") { die("Acesso negado."); } // arquivos padrões require_once "config.php"; // arquivos comuns require_once $common_directory . "connection.class.php"; require_once $common_directory . "authentication.class.php"; require_once $common_directory . "functions.php"; require_once $common_directory . "geral.class.php"; require_once $common_directory . "user.class.php"; // arquivos da aplicação $user_info = null; $connection = new connection($db_server, $db_user, $db_pass, $db_name); if ($connection) { $authentication = new authentication(); $authentication->execute_authentication(); }
public function isAuthenticated() { $jwt = new authentication(); $token = $jwt->validate(); $this->json($token); }