function writeData() { $user = new flexibleAccess(); $userID = $user->userID; $link = $user->dbConn; $username = $user->get_property('username'); $tweet = $_POST['tweet']; $pic = $_FILES['picture']["tmp_name"]; $b = file_get_contents($pic); $ext = getimagesize($pic); $date = date("Y-m-d H:i:s"); $type = $ext["mime"]; $img_binary = mysqli_real_escape_string($link, $b); $user->query("insert into tweets(userID, username,mention,date,picture,ext) values(" . $userID . "," . $username . ",'{$tweet}','{$date}','{$img_binary}','{$type}')"); }
require_once '../config.php'; if ($timer_generate) { require_once '../lib/timer.class.php'; $timer = new timer(); $timer->start_timer(); } require_once '../sys/functions.php'; require_once '../sys/functions.cms.php'; if (count($_GET) > 0 or count($_POST) > 0) { require_once '../sys/get.control.php'; } require_once '../lib/access.class.php'; require_once '../lib/mail.class.php'; require_once '../lib/dbsql.class.php'; $user = new flexibleAccess('', $settings); $DB = new DB_Engine('mysql', $settings['dbHost'], $settings['dbUser'], $settings['dbPass'], $settings['dbName']); $DB->prefix = $settings['dbPrefix']; $DB->show_err = FALSE; $sql = "SELECT `#__setting`.* FROM `#__setting`"; $tmp_registry = $DB->getAll($sql); foreach ($tmp_registry as $tmp) { $registry[$tmp['name']] = $tmp['value']; } if ($_GET['logout'] == 1) { $user->logout('http://' . $_SERVER['HTTP_HOST'] . $_SERVER['PHP_SELF']); } if (!$user->is_loaded()) { if (isset($_POST['uname']) && isset($_POST['pwd'])) { if (!$user->login($_POST['uname'], $_POST['pwd'], $_POST['remember']) and $component != 'cron') { $err = 2;
PRIMARY KEY (`userID`), UNIQUE KEY `username` (`username`), UNIQUE KEY `email` (`email`), KEY `active` (`active`) ) ENGINE=MyISAM DEFAULT CHARSET=utf8; ================================================================ In this example we will automatically activate the user IMPORTANT: Do not use this example as is. Here we do not validate anything. In your application you should validate the data first, but you don't have to addslashes() as the class does this operation. http://phpUserClass.com */ if (!empty($_POST['username'])){ //Register user: require_once 'authClass_php5.php'; $user = new flexibleAccess(); //The logic is simple. We need to provide an associative array, where keys are the field names and values are the values :) $data = array( 'name' => $_POST['username'], 'email' => $_POST['email'], 'password' => $_POST['pwd'], 'active' => 1 ); $userID = $user->insertUser($data);//The method returns the userID of the new user or 0 if the user is not added if ($userID==0) echo 'User not registered';//user is allready registered or something like that else echo 'User registered with user id '.$userID; }
<?php require_once 'access.class.php'; $user = new flexibleAccess(); $json_userID = $_POST['userID']; $userID = json_decode($json_userID, true); $json_tweetID = $_POST['tweetID']; $tweetID = json_decode($json_tweetID, true); $user->query("update tweets set favnumber=favnumber+1 where tweetID ='{$tweetID}'"); $user->query('insert into ' . $userID . '_fav_list(tweetID)values(' . $tweetID . ')');
<?php $successURL = 'index.php'; //Where the user can go after a successful login if ($_GET['form'] == 1) { if (isset($_POST['nameuser'])) { require_once 'access.class.php'; $user = new flexibleAccess(); if ($user->login($_POST['nameuser'], $_POST['passuser'], true)) { echo '{' . 'succes: true,' . 'title: \'<strong>Login Success</strong>\', ' . 'content: \'You have authenticated successfuly<br />' . 'click <a href="' . $successURL . '">here</a> to continue\'' . '}'; } else { echo '{' . 'succes: false,' . 'title: \'<strong>Login Failed : User and Password combination is not valid</strong>\'' . '}'; } } else { echo '<form name="ajaxform" id="ajaxform"> <label>Username</label> <input type="text" name="nameuser" id="nameuser" class="textfield" value="' . $_POST['nameuser'] . '" /> <label>Password</label> <input type="password" name="passuser" id="passuser" class="textfield" /> <input type="submit" name="submit" id="submit" class="buttonfield" value="Login" /> </form>'; } exit; } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title>ajax PHP Login with jquery</title> <meta name="robots" content="noindex,nofollow" />
function writeForm($table = '') { // rather than recursively calling query, insert all rows with one query global $general, $global_basedir, $settings; $_SESSION['errors'] = array(); // prepare POST data for storage in database: // $keys // $values if ($table) { $keys = array(); $values = array(); $i = 1; // prepare day offs if ($table == 'outlets') { $dayoffs = ''; for ($i = 1; $i <= 7; $i++) { $field = "outlet_closeday_" . $i; if (isset($_POST[$field])) { $dayoffs .= $_POST[$field] . ","; } } if ($dayoffs != '') { $dayoffs = substr($dayoffs, 0, -1); } $keys[$i] = 'outlet_closeday'; $values[$i] = "'" . $dayoffs . "'"; $i++; } // prepare arrays for database query foreach ($_POST as $key => $value) { if ($key == 'saison_start_month' || $key == 'saison_start_day' || $key == 'saison_end_month' || $key == 'saison_end_day') { $saison_start = $_POST['saison_start_month'] . $_POST['saison_start_day']; $saison_end = $_POST['saison_end_month'] . $_POST['saison_end_day']; } else { if ($key == 'password') { if ($value != "EdituseR") { $keys[$i] = $key; $dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']); $insert = new flexibleAccess('', $dbAccess); $password = $insert->hash_password($value); $values[$i] = "'" . $password . "'"; } } else { if ($key == 'outlet_child_capacity') { // make value always positive $keys[$i] = $key; $values[$i] = "'" . abs($value) . "'"; } else { if ($key == 'outlet_child_capacity') { // make value always positive $keys[$i] = $key; $values[$i] = "'" . $value . "'"; } else { if ($key == 'role') { if ($value < 1 || $value > 6) { $value = 6; } // add role field $keys[$i] = $key; $values[$i] = "'" . $value . "'"; } else { if ($key == 'contactform_color_scheme' || $key == 'contactform_background') { // settings table correct HEX color code $keys[$i] = $key; $values[$i] = "'" . substr($value, 1, 8) . "'"; } else { if ($key != "action" && $key != "email_type" && $key != "password2" && $key != "eventID" && $key != "e_datepicker" && $key != "ev_datepicker" && $key != "s_datepicker" && $key != "MAX_FILE_SIZE" && $key != "propertyID" && $key != "token" && $key != "verify" && $key != "PHPSESSID" && $key != "new" && substr($key, 0, 15) != "outlet_closeday") { // all other 'normal fields' $keys[$i] = $key; $values[$i] = "'" . $value . "'"; } } } } } } } $i++; } // END foreach $_POST // build webform field on outlets if ($table == 'outlets') { $index = array_search('webform', $keys); if (!$index) { $keys[] = 'webform'; $values[] = 0; } } // build outofill field on users if ($table == 'plc_users') { $index = array_search('autofill', $keys); if (!$index) { $keys[] = 'autofill'; $values[] = 0; } } // img & logo upload // =-=-=-=-=-= // img upload if ($_FILES['img']['error'][0] > 0) { $_SESSION['errors'][] = _sorry; } else { if (($_FILES['img']["type"][0] == "image/gif" || $_FILES['img']["type"][0] == "image/jpeg" || $_FILES['img']["type"][0] == "image/png") && $_FILES['img']["size"][0] < 2000000) { //$imgName = $_FILES['img_logo']['name']; $img_type = substr($_FILES['img']["type"][0], 6); $imgName = randomPassword(24, true, true, false) . "." . $img_type; $uploadpath = substr(dirname(__FILE__), 0, -7); $result = move_uploaded_file($_FILES['img']["tmp_name"][0], "../uploads/img/" . $imgName); $keys[] = 'img_filename'; $values[] = "'" . $imgName . "'"; } } // logo upload if ($_FILES['img']['error'][1] > 0) { $_SESSION['errors'][] = _sorry; } else { if (($_FILES['img']["type"][1] == "image/gif" || $_FILES['img']["type"][1] == "image/jpeg" || $_FILES['img']["type"][1] == "image/png") && $_FILES['img']["size"][1] < 2000000) { //$imgName = $_FILES['img_logo']['name']; $img_type = substr($_FILES['img']["type"][1], 6); $imgName = randomPassword(24, true, true, false) . "." . $img_type; $uploadpath = substr(dirname(__FILE__), 0, -7); $result = move_uploaded_file($_FILES['img']["tmp_name"][1], "../uploads/logo/" . $imgName); $keys[] = 'logo_filename'; $values[] = "'" . $imgName . "'"; } } $_SESSION['reservation_date'] = date('Y-m-d', $reservation_date); $_SESSION['recurring_date'] = date('Y-m-d', $recurring_date); // outlets build start and enddate if ($saison_start != '' && $saison_end != '') { $keys[] = 'saison_start'; $values[] = "'" . $saison_start . "'"; $keys[] = 'saison_end'; $values[] = "'" . $saison_end . "'"; } // =-=-=-=Store in database =-=-=-=-=-=-=-=-=-=-=-=-=-=-= // =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= // No reservation, everything else to store // enter into database // =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= // number of database fields $max_keys = count($keys); $query = "INSERT INTO `{$table}` (" . implode(',', $keys) . ") VALUES (" . implode(',', $values) . ") ON DUPLICATE KEY UPDATE "; // Build 'on duplicate' query for ($i = 1; $i <= $max_keys; $i++) { if ($keys[$i] != '') { $query .= $keys[$i] . "=" . $values[$i] . ","; } else { $max_keys++; } } // run sql query $query = substr($query, 0, -1); //DEbugging //echo $query; $result = query($query); $new_id = mysql_insert_id(); // Set STANDARD settings for new property if ($table == 'properties' && $_POST['new'] == 1) { include 'register/standard_settings.inc.php'; } // ----- return $new_id; } }
<?php include "../pulse.config.php"; include "libs/access.class.php"; $user = new flexibleAccess(); $user->logout('login.php');
<?php include "libs/access.class.php"; // check if already looged in $user = new flexibleAccess(); if ($user->is_loaded()) { echo "You're already logged in. Visit <a href='index.php'>Dashboard</a> or <a href='logout.php'>Log out</a>."; die; } //login if (isset($_POST['login_submit'])) { if (empty($_POST['username'])) { $error_msg .= "<li>Please enter your username</li>"; } elseif (empty($_POST['password'])) { $error_msg .= "<li>Please enter your password</li>"; } else { //all fields are submitted correctly //sanitise the variables $username = trim($_POST['username']); $password = trim($_POST['password']); $username = filter_var($username); $password = filter_var($password); //var_dump($user); die(); if ($user->login($username, $password)) { header("location:index.php"); } else { $error_msg = "<li>Username and password combination not found.</li>"; } } } ?>
<?php require_once 'access.class.php'; $user = new flexibleAccess(); $json_userID = $_POST['userID']; $userID = json_decode($json_userID, true); $json_tweetID = $_POST['tweetID']; $tweetID = json_decode($json_tweetID, true); $user->query("update tweets set favnumber=favnumber-1 where tweetID ='{$tweetID}'"); $user->query("delete from " . $userID . "_fav_list where tweetID ='{$tweetID}'");
<?php //error_reporting(0); /* */ include "function.php"; $mysql_host = 'localhost'; $mysql_user = '******'; $mysql_user_pass = ''; $mysql_dbname = 'cms'; /* */ mysql_connect($mysql_host, $mysql_user, $mysql_user_pass) or die("MySQL Hata: " . mysql_error()); mysql_select_db($mysql_dbname); @mysql_query("SET NAMES 'utf8'"); define('SITE_ADDRESS', 'http://localhost/cms/'); ///////// login $user = new flexibleAccess(); if (!isset($nonaccess)) { if (!$user->is_loaded()) { header('Location: ../index.php'); } } $ic = NULL; $not = NULL; $nav = NULL; $head = NULL; $sayi = 1; $dir = TRUE; $textarea = FALSE; $imgupload = FALSE; $date = FALSE; $login = FALSE;
<? /* Basic login example with php user class http://phpUserClass.com */ require_once 'access.class.php'; $user = new flexibleAccess(); if ( $_GET['logout'] == 1 ) $user->logout('http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']); if ( !$user->is_loaded() ) { //Login stuff: if ( isset($_POST['uname']) && isset($_POST['pwd'])){ if ( !$user->login($_POST['uname'],$_POST['pwd'],$_POST['remember'] )){//Mention that we don't have to use addslashes as the class do the job echo 'Wrong username and/or password'; }else{ //user is now loaded header('Location: http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']); } } echo '<h1>Login</h1> <p><form method="post" action="'.$_SERVER['PHP_SELF'].'" /> username: <input type="text" name="uname" /><br /><br /> password: <input type="password" name="pwd" /><br /><br /> Remember me? <input type="checkbox" name="remember" value="1" /><br /><br /> <input type="submit" value="login" /> </form> </p>'; }else{ //User is loaded echo '<a href="'.$_SERVER['PHP_SELF'].'?logout=1">logout</a>';
<?php session_start(); // ** set configuration include '../config/config.general.php'; // ** login class require_once '../PLC/plc.class.php'; $this_page = "property"; // ** LOGIN CLASS **/ $dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']); $user = new flexibleAccess('', $dbAccess); $cookie = $user->read_cookie(); $_SESSION['u_id'] = isset($user->userData[$user->tbFields['userID']]) ? $user->userData[$user->tbFields['userID']] : ''; $_SESSION['u_name'] = isset($user->userData[$user->tbFields['login']]) ? $user->userData[$user->tbFields['login']] : ''; $_SESSION['u_email'] = isset($user->userData[$user->tbFields['email']]) ? $user->userData[$user->tbFields['email']] : ''; $_SESSION['role'] = isset($user->userData['role']) ? $user->userData['role'] : ''; $_SESSION['role'] = isset($_SESSION['role']) ? $_SESSION['role'] : 6; $_SESSION['property'] = isset($user->userData['property_id']) ? $user->userData['property_id'] : ''; $_SESSION['u_time'] = date("Y-m-d H:i:s", time()); $_SESSION['u_lang'] = isset($user->userData['lang_id']) ? $user->userData['lang_id'] : ''; $_SESSION["valid_user"] = TRUE; // ** database functions include 'classes/database.class.php'; // ** localization functions include 'classes/local.class.php'; // ** business functions include 'classes/business.class.php'; // ** select cuisines styles functions include 'classes/cuisines.class.php'; // ** select country functions include 'classes/country.class.php';
<head> <link rel="stylesheet" type="text/css" href="SNS.css" media="all"> </head> <body> <?php require_once 'access.class.php'; $user = new flexibleAccess(); if (!$user->is_loaded()) { echo '<p id="asaa"><a href="loginpage.php">login</a></p>'; } else { echo '<div id="contents"><form action="writedata.php" enctype="multipart/form-data" method="post"> <div>tweet:<input type="text" name="tweet"><input type="file" name="picture"></div><input type="submit" value="投稿"></form></div>'; echo '<p id="asaa"><a href="loginpage.php?logout=1">logout</a></p>'; echo '<h1 id="asa">' . $user->get_property('username') . 'としてログイン中</h1>'; } ?> </body>
<?php require_once 'plc.class.php'; $user = new flexibleAccess(); ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title>Passwords</title> <meta name="robots" content="noindex,nofollow" /> </head> <body> <h2>Passwords</h2> <?php for ($i = 0; $i < 30; $i++) { for ($j = 0; $j < 5; $j++) { echo "<span style='margin-right:15px;'>" . $user->ramdomPassword() . "</span><br/>"; } echo "<br/>"; } ?> </body> </html>
$timer = new timer(); $timer->start_timer(); } require_once '../sys/functions.php'; require_once '../sys/functions.cms.php'; if (count($_GET) > 0 or count($_POST) > 0) { require_once '../sys/get.control.php'; } require_once '../lib/access.class.php'; require_once '../lib/mail.class.php'; require_once '../lib/dbsql.class.php'; require_once '../lib/simple_html_dom.php'; require_once '../lib/dbug.class.php'; require_once '../lib/markhtml.php'; require_once '../lib/osrLogs.php'; $user = new flexibleAccess('', $settings); $DB = new DB_Engine('mysql', $settings['dbHost'], $settings['dbUser'], $settings['dbPass'], $settings['dbName']); $DB->prefix = $settings['dbPrefix']; $DB->show_err = true; if ($user->get_property('status') == 1) { header('Location:/?logout=1'); } $sql = "SELECT `#__setting`.* FROM `#__setting`"; $tmp_registry = $DB->getAll($sql); foreach ($tmp_registry as $tmp) { $registry[$tmp['name']] = $tmp['value']; } $LOG = new osrLogs($registry, $DB); if (!isset($_COOKIE['showOrHide'])) { setcookie('showOrHide', 0); }
<?php session_start(); //error_reporting(E_ALL & ~E_NOTICE); //ini_set("display_errors", 1); // ** clear all old session variables $_SESSION = array(); $username = ""; // ** Set redirect page $forwardPage = "../web/main_page.php?p=1"; // ** set configuration include '../config/config.general.php'; // ** init plc login class require_once '../PLC/plc.class.php'; $dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']); $user = new flexibleAccess('', $dbAccess); // ** auto checkout when going to loginpage $user->logout(); // ** User LOGIN ** if (isset($_POST['submit'])) { // ** init variables $validate = true; $username = $_POST['user']; // ** Validate username and password if (strlen($username) < 4) { $message = "Username is required."; $validate = false; } else { if (strlen($_POST['token']) < 4) { $message = "Password is required."; $validate = false;
<? session_start(); $this_page = "property"; $_SESSION['role'] = ($_SESSION['role']!="1") ? $_SESSION['role'] : 6; /** Login Class**/ require_once '../PLC/plc.class.php'; if($_GET['p'] == 6 || $_GET['p'] == 5 || $_GET['logout']==1){ /** Login **/ $user = new flexibleAccess(); if ( $_GET['logout'] == 1 ){ $user->logout(); } if ( !$user->autologin()){ header("Location: ../PLC/index.php"); exit; //To ensure security }else{ $cookie = $user->read_cookie(); $_SESSION['u_id'] = $user->userData[$user->tbFields['userID']]; $_SESSION['u_name'] = $user->userData[$user->tbFields['login']]; $_SESSION['u_email'] = $user->userData[$user->tbFields['email']]; $_SESSION['role'] = $user->userData['role']; $_SESSION['property'] = $user->userData['property_id']; $_SESSION['u_time'] = date("Y-m-d H:i:s", time()); $_SESSION['u_lang'] = $user->userData['lang_id']; $_SESSION["valid_user"] = TRUE; }
<?php /* Basic login example with php user class http://phpUserClass.com */ $logout; require_once 'access.class.php'; $user = new flexibleAccess(); $url = $_SERVER['HTTP_REFERER']; if ($_GET['logout'] == 1) { $user->logout('SNS.php'); } else { if (!$user->is_loaded()) { //Login stuff: if (isset($_POST['uname']) && isset($_POST['pwd'])) { if (!$user->login($_POST['uname'], $_POST['pwd'], $_POST['remember'])) { //Mention that we don't have to use addslashes as the class do the job echo 'Wrong username and/or password'; } else { //user is now loaded header("Location:SNS.php"); } } echo '<h1>Login</h1> <p><form method="post" action="' . $_SERVER['PHP_SELF'] . '" /> username: <input type="text" name="uname" /><br /><br /> password: <input type="password" name="pwd" /><br /><br /> Remember me? <input type="checkbox" name="remember" value="1" /><br /><br /> <input type="submit" value="login" /> </form> </p>';
require_once 'sys/get.control.php'; } require_once 'lib/access.class.php'; require_once 'lib/mail.class.php'; require_once 'lib/dbsql.class.php'; require_once 'lib/class.get.image.php'; require_once 'lib/markhtml.php'; require_once 'lib/osrLogs.php'; require_once 'lib/Mobile_Detect.php'; require_once 'vendor/autoload.php'; $detect = new Mobile_Detect(); if ($component == 'rss') { require_once 'lib/rss.class.php'; } //export $user = new flexibleAccess('', $settings); $DB = new DB_Engine('mysql', $settings['dbHost'], $settings['dbUser'], $settings['dbPass'], $settings['dbName']); $DB->show_err = true; $DB->prefix = $settings['dbPrefix']; get_registry(); get_powerstatus(); $LOG = new osrLogs($registry, $DB); if ($_POST['export'] == 1) { $export = 1; include 'export.php'; } if ($_GET['logout'] == 1) { $user->logout('http://' . $_SERVER['HTTP_HOST'] . $_SERVER['PHP_SELF']); } if (!$user->is_loaded()) { if (isset($_POST['uname']) && isset($_POST['pwd'])) {
`mention` varchar(140) NOT NULL, `picture` mediumblob , `ext` varchar(15) , `favnumber` int(11) NOT NULL default'0' ); ================================================================ In this example we will automatically activate the user IMPORTANT: Do not use this example as is. Here we do not validate anything. In your application you should validate the data first, but you don't have to addslashes() as the class does this operation. http://phpUserClass.com */ if (!empty($_POST['username'])) { //Register user: require_once 'access.class.php'; $user = new flexibleAccess(); //The logic is simple. We need to provide an associative array, where keys are the field names and values are the values :) $data = array('username' => $_POST['username'], 'email' => $_POST['email'], 'password' => $_POST['pwd'], 'active' => 1); $userID = $user->insertUser($data); $sql = "CREATE TABLE " . $userID . "_fav_list(tweetID int(11) NOT NULL)"; $user->query($sql); //The method returns the userID of the new user or 0 if the user is not added; if ($userID == 0) { echo 'User not registered'; } else { echo 'User registered with user id ' . $userID; } } echo '<h1>Register</h1> <p><form method="post" action="' . $_SERVER['PHP_SELF'] . '" /> username: <input type="text" name="username" /><br /><br />
<? /* Basic login example with php user class http://phpUserClass.com */ require_once 'authClass_php5.php'; $user = new flexibleAccess(); if ( isset($_GET['logout']) && $_GET['logout'] == 1 ) $user->logout('http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']); if ( !$user->is_loaded() )//если нет userID, т.е. в конструкторе не определили, проверяем введенные данные, если ошибка - редирект на себя { //Login stuff: if ( isset($_POST['uname']) && isset($_POST['pwd'])){//если есть и логин и пароль if ( !$user->login($_POST['uname'],$_POST['pwd'],$_POST['remember'] )){//если login класса = ложь, сообщаем //Mention that we don't have to use addslashes as the class do the job echo 'Wrong username and/or password'; }else{ //если login класса = истина, редирект echo "Да,вот так вот"; //user is now loaded header('Location: http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']); } } echo '<h1>Login</h1> <p><form method="post" action="'.$_SERVER['PHP_SELF'].'" > username: <input type="text" name="uname" ><br><br > password: <input type="password" name="pwd" ><br ><br > Remember me? <input type="checkbox" name="remember" value="1" ><br ><br > <input type="submit" value="login" > </form> </p>'; die();
<?php include 'config/config.php'; require_once $_SERVER['DOCUMENT_ROOT'] . '/lib/access.class.php'; $user = new flexibleAccess('', $settings); if (USE_ACCESS_KEYS == TRUE) { if (!in_array($_GET['akey'], $access_keys) || empty($access_keys) || !$user->is_loaded()) { die('Access Denied!'); } $_GET['akey'] = strip_tags(preg_replace("/[^a-zA-Z0-9\\._-]/", '', $_GET['akey'])); if (!in_array($_GET['akey'], $access_keys) || !$user->is_loaded()) { die('Access Denied!'); } } if ($user->get_property('upload_img') != 1) { die('თქვენ არ გაქვთ წვდომა ფოტოებთან. დამატებითი ინფორმაციისთვის მიმართეთ ვებ-გვერდის ადმინისტრაციას.'); } $_SESSION['RF']["verify"] = "RESPONSIVEfilemanager"; if (isset($_POST['submit'])) { include 'upload.php'; } else { include 'include/utils.php'; if (isset($_GET['fldr']) && !empty($_GET['fldr']) && strpos($_GET['fldr'], '../') === FALSE && strpos($_GET['fldr'], './') === FALSE) { $subdir = urldecode(trim(strip_tags($_GET['fldr']), "/") . "/"); } else { $subdir = ''; } if ($subdir == "") { if (!empty($_COOKIE['last_position']) && strpos($_COOKIE['last_position'], '.') === FALSE) { $subdir = trim($_COOKIE['last_position']); }
<div id="main"> <div id="header"> <ul id="head"> <li id="contribution"> <a href="submit.php">投稿ページ</a> </li> <?php require_once 'access.class.php'; $user = new flexibleAccess(); if (!$user->is_loaded()) { echo '<p>ログインするかユーザ登録をしてください</p>'; echo '<li id="user_statue"><a href="loginpage.php">login</a></li></ul></div>'; } else { //User is loaded echo '<li id="user_statue"><a href="loginpage.php?logout=1">logout</a></li>'; echo '<li id="user_statue2">' . $user->get_property('username') . '</li></ul></div>'; echo '<div id="tweet"><ul id="tweets">'; $userID = $user->get_property('userID'); $readtweet = $user->query("select * from tweets"); while ($data = mysqli_fetch_array($readtweet)) { $img = base64_encode($data[5]); echo '<li id="parent"><p id="username"> ' . $data[2] . ' </p> <p id="date"> ' . $data[3] . '</p><p id="mention"> ' . $data[4] . '</p>'; if (!empty($data[6])) { echo '<div id="picture"><img src="data:/' . $data[6] . ';base64,' . $img . '" /></div>';
$keys[] = 'reservation_date'; $values[] = "'" . $_SESSION['selectedDate'] . "'"; $_SESSION['errors'] = array(); // prepare POST data for storage in database: // $keys // $values $keys = array(); $values = array(); $i = 2; // prepare arrays for database query foreach ($_POST as $key => $value) { if ($key == 'password') { if ($value != "EdituseR") { $keys[$i] = $key; $dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']); $insert = new flexibleAccess('', $dbAccess); $password = $insert->hash_password($value); $values[$i] = "'" . $password . "'"; } } else { if ($key != "action" && $key != "email_type" && $key != "recurring_date" && $key != "recurring_dbdate" && $key != "password2" && $key != "eventID" && $key != "s_datepicker" && $key != "MAX_FILE_SIZE" && $key != "propertyID" && $key != "old_outlet_id" && $key != "token" && $key != "recurring_span" && $key != "reservation_bookingnumber" && $key != "limit_password" && $key != "verify") { $keys[$i] = $key; $values[$i] = "'" . $value . "'"; } } // remember some values if ($key == "reservation_date") { $reservation_date = $value; $recurring_date = $reservation_date; } else { if ($key == "recurring_dbdate") {
KEY `active` (`active`) ) ENGINE=MyISAM DEFAULT CHARSET=utf8; ================================================================ IMPORTANT: Do not use this example as is. Here we do not validate anything. In your application you should validate the data first, but you don't have to addslashes() as the class does this operation. http://phpUserClass.com http://www.webdigity.com */ $settings = array( 'dbName'=>'accessuserclass', 'dbUser'=>'root', 'dbPass'=>'' ); require_once 'access.class.php'; $user = new flexibleAccess(); if (!empty($_GET['activate'])){ //This is the actual activation. User got the email and clicked on the special link we gave him/her $hash = $user->escape($_GET['activate']); $res = $user->query("SELECT `{$user->tbFields['active']}` FROM `{$user->dbTable}` WHERE `activationHash` = '$hash' LIMIT 1",__LINE__); if ( $rec = mysql_fetch_array($res) ){ if ( $rec[0] == 1 ) echo 'Your account is already activated'; else{ //Activate the account: if ($user->query("UPDATE `{$user->dbTable}` SET `{$user->tbFields['active']}` = 1 WHERE `activationHash` = '$hash' LIMIT 1", __LINE__)) echo 'Account activated. You may login now'; else echo 'Unexpected error. Please contact an administrator'; }
<?php require_once 'plc.class.php'; $user = new flexibleAccess(); $user->logout(); if ($_GET['form'] == 1) { if ($user->autologin()) { header("Location: {$_SESSION['forwardPage']}"); exit; //To ensure security } if (isset($_POST['user']) && isset($_POST['token'])) { $newpassword = ""; if (isset($_POST['nPass1']) && isset($_POST['nPass2'])) { if ($_POST['nPass1'] == $_POST['nPass2']) { $newpassword = substr($_POST['nPass1'], 0, 12); } else { $user->login_matchFalse(); exit; //To ensure security } } $loginAttempt = $user->login(substr($_POST['user'], 0, 30), substr($_POST['token'], 0, 12), $newpassword); if ($loginAttempt == 1) { $user->login_true(); } else { if ($loginAttempt == 0) { $user->login_false(); } else { if ($loginAttempt == 2) { $user->login_attemptFalse();