//else
//{
// if (!isset($_SESSION['token']))
// $_SESSION['token'] = sha1(mt_rand() . microtime(TRUE));
//}
/***
* Add comments 2 lines below to enable a remote login form.
*/
if (!isset($_SESSION['token'])) {
$_SESSION['token'] = sha1(mt_rand() . microtime(TRUE));
}
if (isset($_POST['submit'])) {
$user_id = $usersDAO->Validate($addslashes($_POST['form_login']), $addslashes($_POST['form_password_hidden']));
if (!$user_id) {
$msg->addError('INVALID_LOGIN');
} else {
if ($usersDAO->getStatus($user_id) == TR_STATUS_DISABLED) {
$msg->addError('ACCOUNT_DISABLED');
} else {
$usersDAO->setLastLogin($user_id);
$_SESSION['user_id'] = $user_id;
$msg->addFeedback('LOGIN_SUCCESS');
header('Location: index.php');
exit;
}
}
}
global $onload;
$onload = 'document.form.form_login.focus();';
//header('P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"');
$savant->display('login.tmpl.php');
