/** * Function to handle HTTP-POST-requests. * @param Array, $requestData are the requested data */ function post(array $requestData) { $logger = Logger::getLogger(basename(__FILE__)); if (!isEmpty($requestData, 'username') && !isEmpty($requestData, 'password')) { sessionDestroy(); if (__checkPassword('ADMINS', $requestData)) { $_SESSION['user:isAdmin'] = true; } elseif (__checkPassword('PASSWORDS', $requestData)) { $_SESSION['user:isAdmin'] = false; } else { header(HTTP_VERSION . ' ' . HTTP_401); return; } $_SESSION['user:id'] = $requestData['username']; $_SESSION['user:loggedin'] = date('YmdHi'); session_write_close(); $responseData = array('session_name' => session_name(), 'session_id' => session_id(), 'username' => $requestData['username']); if ($_SESSION['user:isAdmin']) { $responseData['isAdmin'] = true; } $logger->info("Login was successful for " . $_SESSION['user:id'] . ". Current session: " . session_id()); header(HTTP_VERSION . ' ' . HTTP_200); return $responseData; } header(HTTP_VERSION . ' ' . HTTP_401); }
/** * Function to handle HTTP-POST-requests. * @param Array, $requestData are the requested data */ function get(array $requestData) { $logger = Logger::getLogger(basename(__FILE__)); sessionDestroy(); unset($_SESSION['user:id']); unset($_SESSION['user:loggedin']); session_write_close(); header(HTTP_VERSION . ' ' . HTTP_200); }
eOgr - elearning project Developer Site: http://yunus.sourceforge.net Demo Site: http://yunus.sourceforge.net/eogr Source Track: http://eogr.googlecode.com Support: http://www.ohloh.net/p/eogr This project is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 3 of the License, or any later version. See the GNU Lesser General Public License for more details. */ header("Content-Type: text/html; charset=iso-8859-9"); ob_start(); // Buffer output session_start(); $_SESSION['ready'] = TRUE; require "conf.php"; if (!check_source()) { die("<font id='hata'>{$metin['295']}</font>"); } if (md5($_SERVER['HTTP_USER_AGENT']) == $_SESSION['aThing']) { $adi = temizle(substr(isset($_SESSION["usern"]) ? $_SESSION["usern"] : "", 0, 15)); $par = temizle(isset($_SESSION["userp"]) ? $_SESSION["userp"] : ""); if (temizle($_GET["sonSayfa"]) > 0) { echo trackUserLesson(getUserID($adi, $par), temizle($_GET["konuID"]), temizle($_GET["sure"]), temizle($_GET["sonSayfa"])); } } else { sessionDestroy(); }
function mobiquo_exit($str = '') { global $request_name, $context, $topic, $board; switch ($request_name) { case 'authorize_user': if (preg_match('/^action=login2;sa=check;member=/', $str)) { return; } break; case 'update_push_status': if (preg_match('/^action=login2;sa=check;member=/', $str)) { return; } break; //case 'login': if (preg_match('/^action=login2;sa=check;member=/', $str)) return; break; //case 'login': if (preg_match('/^action=login2;sa=check;member=/', $str)) return; break; case 'login': return; case 'login_user': if (preg_match('/^action=login2;sa=check;member=/', $str)) { return; } break; case 'logout_user': if (isset($_COOKIE['PHPSESSID'])) { sessionDestroy($_COOKIE['PHPSESSID']); } return; break; case 'delete_message': return; case 'create_message': if ($str == $context['current_label_redirect']) { return; } case 'subscribe_topic': if ($str == 'topic=' . $topic . '.' . $_REQUEST['start']) { return; } break; case 'unsubscribe_topic': if ($str == 'topic=' . $topic . '.' . $_REQUEST['start']) { return; } break; case 'subscribe_forum': if ($str == 'board=' . $board . '.' . $_REQUEST['start']) { return; } break; case 'unsubscribe_forum': if ($str == 'board=' . $board . '.' . $_REQUEST['start']) { return; } break; case 'report_post': return; case 'mark_all_as_read': return; case 'm_ban_user': return; case 'upload_avatar': if ('action=profile;area=forumprofile;updated' == $str) { return; } break; case 'update_email': if (preg_match('/^action=profile;area=account;updated/', $str)) { return; } break; case 'm_stick_topic': if (preg_match("/^topic={$topic}/", $str)) { return; } break; case 'm_close_topic': if (preg_match("/^topic={$topic}/", $str)) { return; } break; case 'm_delete_topic': if ($str == 'board=' . $board . '.0') { return; } break; case 'm_delete_post': if ($str == 'action=recent') { return; } break; case 'm_move_topic': if ($str == 'board=' . $board . '.0') { return; } break; case 'm_merge_topic': if (preg_match("/^action=mergetopics;sa=done;to=/", $str)) { return; } break; case 'thank_post': if (preg_match("/^topic={$topic}/", $str)) { return; } break; } get_error('Unknown error'); }
function checkLoginLang($lgn, $lng, $src) { global $metin; global $adi; global $taraDili; global $_defaultLang; if ($lng) { $taraDili = isset($_COOKIE["lng"]) ? $_COOKIE["lng"] : ""; if (!($taraDili == "TR" || $taraDili == "EN")) { $taraDili = $_defaultLang; } dilCevir($taraDili); } if ($lgn) { $adi = temizle(substr(isset($_SESSION["usern"]) ? $_SESSION["usern"] : "", 0, 15)); $par = temizle(isset($_SESSION["userp"]) ? $_SESSION["userp"] : ""); if ($adi == "" || $par == "") { //EMPTY? @header("Location: error.php?error=2"); die("<font id='hata'> " . $metin[403] . "</font><br/>" . $metin[402]); } $tur = checkRealUser($adi, $par); if ($tur <= -1 || $tur > 2) { sessionDestroy(); @header("Location: error.php?error=7"); die("<font id='hata'> " . $metin[404] . " (0)</font><br/>" . $metin[402]); } else { $_SESSION["tur"] = $tur; $_SESSION["usern"] = $adi; $_SESSION["userp"] = $par; } } if (!empty($src)) { currentFileCheck($src); } }