session_cache_limiter('private_no_cache'); //session_cache_limiter('public'); function show_login($message = '') { global $_SERVER; print body(form($_SERVER['PHP_SELF'], $message . table(row2("Username:"******"username")) . row2("Password:"******"password")) . row2('', submit('Log In'))))); } if (isset($_POST['username'])) { if (succeeds(authenticate($_POST['username'], $_POST['password'], AUTH_VERIFY))) { if (authorized($_POST['username'], LOGIN_SERVICE, AUTH_VERIFY)) { session_start(); $LOGIN_USERNAME = $_POST['username']; $LOGIN_PASSWORD = $_POST['password']; $_SESSION['LOGIN_USERNAME'] = $LOGIN_USERNAME; $_SESSION['LOGIN_PASSWORD'] = $LOGIN_PASSWORD; http_302($SCRIPT_NAME); exit; } else { $message = "You are not authorized for this operation"; unset($_SESSION['LOGIN_USERNAME']); unset($_SESSION['LOGIN_PASSWORD']); unset($LOGIN_PASSWORD); unset($LOGIN_USERNAME); } } else { $message = "Login Failed"; } } if ($message) { unset($LOGIN_USERNAME); unset($LOGIN_PASSWORD);
require_once dirname(__FILE__) . "/livejournal.php"; if ($REQUEST_METHOD == 'POST' and is_logged_in() and authorized($LOGIN_USERNAME, 'updatejournal')) { if (!$contenttype) { $contenttype = 'text/wiki'; } if ($timezone) { setcookie('timezone', $timezone, 782000); $date = timezone_date($timezone, 'Y-m-d H:i:s', $entrydate); print $date; } else { $timezone = 'Universal'; } $q = "INSERT INTO journal (" . "date, timezone, subject, data, contenttype, username" . ") VALUES (" . "'{$date}', '{$timezone}', " . ($subject ? "'{$subject}'" : "NULL") . ", '{$data}', '{$contenttype}', " . "'" . JOURNAL_USERNAME . "');"; if (mysql_query($q)) { if ($livejournal_submit) { insert_livejournal(stripslashes($subject), stripslashes($data), $date); } http_302($PHP_SELF); } else { print mysql_error() . "(Query = {$q})"; } } else { if (!authorized($LOGIN_USERNAME, 'updatejournal')) { print 'Please log in'; } else { if (!$timezone) { $timezone = 'America/Los_Angeles'; } print form($PHP_SELF, table(row2("Date:", hidden('entrydate', time()) . timezone_date($timezone, 'Y-m-d H:i:s T')) . row2("Subject:", field('subject')) . row2("Timezone:", select('timezone', timezones_list(), $timezone)) . row2('', "<textarea name='data' cols='50' rows='10'>" . ($template != 'default' ? join('', file($template)) : '') . "</textarea>") . row2("Content-type:", "<input type='radio' name='contenttype' " . "value='text/wiki' / checked='checked'>WikiWiki " . "<input type='radio' name='contenttype' " . "value='text/html' /> HTML") . ((defined('LIVEJOURNAL_USER') and defined('LIVEJOURNAL_PASSWD')) ? row2("Submit to LiveJournal?", checkbox('livejournal_submit', FALSE)) : '') . row2('', submit('Post')))); } }
} print "</dl>"; } elseif ($action == 'info') { print "SCRIPT_NAME = " . $_SERVER['SCRIPT_NAME']; print "PHP_SELF = " . $_SERVER['PHP_SELF']; phpinfo(); } elseif (succeeds($page = wiki_load($pagename, $version))) { if (isset($page['mtime']) and $action != 'edit') { header("Last-Modified: " . gmdate('r', $page['mtime'])); } if ($action == 'view') { if (WIKI_TRACK_VERSIONS and isset($_COOKIE['autodiff'])) { if ($seen_versions[$pagename] and !$initialpage) { $initialversion = $seen_versions[$pagename]; if (rcs_cmpver($initialversion, $real_version) == -1) { http_302($_SERVER['SCRIPT_NAME'] . $PATH_INFO . ";{$initialversion}:Current"); ob_exit(); } } $seen_versions[$pagename] = $real_version; setcookie('versions', serialize($seen_versions), time() + 30 * 24 * 60 * 60, '/'); } if (isset($_GET['as']) and $_GET['as'] == 'text/plain') { while (ob_get_level()) { ob_end_clean(); } header('Content-type: text/plain'); print $page['body']; exit; } if (isset($initialpage)) {
// require_once(dirname(__FILE__)."/db.php"); require_once dirname(__FILE__) . "/../login/login.php"; require_once dirname(__FILE__) . "/../http.php"; if (!($journal_db = mysql_connect("localhost", "ljk", "ljk"))) { print mysql_error(); exit; } mysql_select_db("ljk", $journal_db); $messageboard_db =& $journal_db; if ($QUERY_STRING) { $QUERY_STRING = '?' . $QUERY_STRING; } $SCRIPT_URI = preg_replace('!' . preg_quote($PATH_INFO) . '$!', '', $PHP_SELF); if ($action == 'login' and $REQUEST_METHOD == 'POST') { if (is_logged_in()) { http_302($SCRIPT_URI); } else { print p("Invalid username or password. Please try again."); } } unset($mode); require_once dirname(__FILE__) . "/paths.php"; if (!$mode) { if ($REQUEST_METHOD == 'GET') { $mode = 'read'; } else { $mode = 'post'; } } ?> </head>