<?php $objUser = new clsUser(); $objUser->getFromRequest(); if ($objUser->exists('password')) { if ($objUser->verify()) { $_SESSION['objUser'] = $objUser; $objUser->setCookie(); header("Location: index.php?message=login_successful"); } else { if ($objUser->verifyTemp()) { $_SESSION['objUser'] = $objUser; $objUser->setCookie(); header("Location: index.php?action=members&subaction=view&" . $objUser->getIDPair() . "&message=login_successfultemp"); } else { header("Location: index.php?action=login&error=login_failed&" . $objUser->getValuePair('username')); } } exit; } if ($objUser->isNew()) { $objTemplate->setText('PAGETITLE', "Logging in"); $objBreadcrumbs->add('Login', 'index.php?action=login'); $objMiniMenu->add('Register', 'index.php?action=members&subaction=view'); if ($objUser->exists('username')) { $objTemplate->setText('ONLOAD', "\$('" . $objUser->getFieldName('password') . "').focus();"); } else { $objTemplate->setText('ONLOAD', "\$('" . $objUser->getFieldName('username') . "').focus();"); } ?> <form action='<?php
<?php require_once 'cls/clsAlbum.php'; require_once 'cls/clsGroup.php'; require_once 'cls/clsParameters.php'; require_once 'cls/clsPicture.php'; require_once 'cls/clsTemplate.php'; require_once 'cls/clsThumbnail.php'; $objAlbum = new clsAlbum(); $objAlbum->getFromRequest(); $objAlbum->load(); $objMember = new clsUser(); $objMember->getFromRequest(); $objMember->load(); $objGroup = new clsGroup(); $objGroup->getFromRequest(); $objGroup->load(); $arrSimplePermissions = array(-1 => "Don't change", 0 => "Use same permission as parent", 1 => "Public (anybody can see the album and post comments)", 2 => "Public with rating (same as Public, but users can rate pictures)", 3 => "Public with group posting (same as Public, except group members can post pictures)", 4 => "Private (only group members can see)", 5 => "Private with rating (same as Private, but users can rate pictures)", 6 => "Private with group posting (same as Private, except group members can post pictures)"); if ($strSubAction == '' && $objMember->isNew()) { if (!$objAlbum->canView($objUser)) { throw new Exception('exception_accessdenied'); } /* Do they have access? */ if (!$objAlbum->canView($objUser)) { throw new Exception('exception_accessdenied'); } /* Are they filtering? */ if ($objUser && $objUser->get('remember_filter') && $objUser->get('filter_user')) { header("Location: index.php?action=albums&subaction=useralbums&user_id=" . $objUser->get('filter_user')); } $objBreadcrumbs->add('Albums', 'index.php?action=albums');
<?php if ($strSubAction == '') { $objTemplate->setText('PAGETITLE', "Password Recovery"); $objBreadcrumbs->add('Password Recovery', 'index.php?action=forgotpassword'); $objRecoverUser = new clsUser(); print "<form action='index.php' method='get'>"; print "<input type='hidden' name='action' value='forgotpassword'>"; print "<input type='hidden' name='subaction' value='go'>"; print "Your account name: " . $objRecoverUser->getTextField('username') . "<br>"; print $objRecoverUser->getSubmit('Recover'); print "</form>"; } if ($strSubAction == 'go') { $objRecoverUser = new clsUser(); $objRecoverUser->getFromRequest(); $strResult = clsUser::attemptRecover($objRecoverUser->get('username')); header("Location: index.php?message={$strResult}"); }