<?php
/**
Account Form Index View
*/
if (!acl::may('/account/tax-form')) {
radix_session::flash('fail', 'Access Denied');
radix::redirect();
}
$_ENV['h1'] = $_ENV['title'] = array('Accounting', 'Tax Forms');
$res = radix_db_sql::fetchAll("select id,name from account_tax_form order by name");
echo '<p>Choose a Tax Form to Print!</p>';
echo '<ul>';
foreach ($res as $i => $f) {
echo '<li><a href="' . radix::link('/account/tax-form/view?id=' . $f['id']) . '">' . $f['name'] . '</a></li>';
}
echo '</ul>';
<?php
/**
*/
namespace Edoceo\Imperium;
use Edoceo\Radix;
use Edoceo\Radix\Session;
use Edoceo\Radix\DB\SQL;
switch (strtolower($_POST['a'])) {
case 'sign in':
if (!acl::may('/auth/sign-in', 'POST')) {
Session::flash('fail', 'Access Denied');
Radix::redirect('/auth/sign-in');
}
$sql = 'SELECT * FROM auth_user WHERE username = ? ';
$sql .= ' AND (password = ? OR password = ? )';
$arg = array(strtolower($_POST['username']), $_POST['password'], sha1($_POST['username'] . $_POST['username']));
$res = SQL::fetch_row($sql, $arg);
if (empty($res)) {
// @todo Random Sleep
Session::flash('fail', 'Invalid username or password');
Radix::redirect();
}
// Radix::dump($res);
$_SESSION['uid'] = $res['id'];
acl::permit('/index');
acl::permit('/dashboard');
acl::permit('/search');
acl::permit('/block*');
acl::permit('/email*');
