require_once $srkEnv->appPath . '/modules/user.php'; require_once $srkEnv->appPath . '/modules/render.php'; if ($srkEnv->reqURLLength == 1 && $srkEnv->reqMethod == 'GET') { $srkEnv->pageTitle .= '.login'; srkRender('loginpage', array()); } elseif ($srkEnv->reqURLLength >= 2 && $srkEnv->reqURL[2] == 'edit') { if ($srkEnv->reqMethod == 'GET') { srkRender('loginman', array()); } } elseif ($srkEnv->reqURLLength >= 2 && $srkEnv->reqURL[2] == 'auth') { if ($srkEnv->reqURLLength == 2) { $userId = $_POST['userId']; $passwd = $_POST['passwd']; $user = new UserData(); $user->readUser($userId); $authRes = $user->authenticate($passwd); if ($authRes === false) { $_SESSION['userId'] = $user->id; srkSend((object) array('res' => 'successful')); } else { srkSend((object) array('res' => $authRes)); } } elseif ($srkEnv->reqURLLength == 3 && $srkEnv->reqURL[3] == 'register') { $user = new UserData(); $regRes = $user->register($_POST['userId'], $_POST); if ($regRes->res !== false) { srkSend($regRes); } else { $writeRes = $user->writeUser(); if ($writeRes === false) { $_SESSION['userId'] = $user->id;
<?php if (!defined('srkVersion')) { exit(403); } require_once $srkEnv->appPath . '/modules/file.php'; require_once $srkEnv->appPath . '/modules/user.php'; require_once $srkEnv->appPath . '/modules/pen.php'; require_once $srkEnv->appPath . '/modules/render.php'; require_once $srkEnv->appPath . '/modules/cache.php'; $srkEnv->pageTitle .= '.admin'; $user = new UserData(); if (isset($_POST['userId']) && isset($_POST['passwd'])) { $user->readUser($_POST['userId']); $authRes = $user->authenticate($_POST['passwd']); if ($authRes) { srkSend((object) array('error' => $authRes)); return; } } else { $user->readUser($_SESSION['userId']); } if ($user->status != 'normal') { if ($srkEnv->reqMethod == 'GET') { srkRender('error', array('error' => array('status' => '403', 'stack' => 'Access denied'))); } else { srkSend((object) array('error' => 'Access denied')); } return; } elseif ($srkEnv->reqMethod == 'GET') { srkRender('admin', array());