if ($check_equal && COUNT($_POST) > 0) { if (AdminController::exists()) { $cook = md5($_POST["username"]) . "|" . md5($_POST["password"]); setcookie("authenticate_user", $cook, time() + 3600 * 24 * 2, "/"); $user = $controller->findBy(array("username" => $_POST["username"])); if (!isset($_SESSION["admin_user"]) || $_SESSION["admin_user"] != $_COOKIE["authenticate_user"]) { $_SESSION["admin_user"] = $_COOKIE["authenticate_user"]; $setAccess = true; } else { $setAccess = false; } $controller->dashboardAction($user[0], $setAccess); } else { $controller->loginAction(); } } elseif ($check && $controller->isUserLogged()) { $cook = explode("|", $_COOKIE["authenticate_user"]); $user = $controller->findBy(array("md5(username)" => $cook[0])); if (!isset($_SESSION["admin_user"]) || $_SESSION["admin_user"] != $_COOKIE["authenticate_user"]) { $_SESSION["admin_user"] = $_COOKIE["authenticate_user"]; $setAccess = true; } else { $setAccess = false; } if ($check_equal) { $controller->dashboardAction($user[0], $setAccess); } else { $page = str_replace("//", "/", $_SERVER["DOCUMENT_ROOT"] . "/" . $_GET["url"]); if (file_exists($page)) { require_once $page; } else {
<?php use CMS\Conf\FileUploader; use CMS\AdminBundle\Entity\Todolist; use CMS\Conf\Config; use CMS\AdminBundle\Controller\Adm_usersController as AdminController; if (!AdminController::isUserLogged()) { echo json_encode(array("error" => "Non sei loggato", "logout" => true)); exit; } if (!isset($_POST["messaggio"])) { echo json_encode(array("error" => "Inserire il testo!")); exit; } $controller = new AdminController(); $user = $controller->getUserLogged(); if (!$user) { exit; } $params = array("testo" => trim(addslashes($_POST["messaggio"])), "data_aggiunta" => date("Y-m-d H:i:s"), "id_user" => $user->getId()); $list = new Todolist(null, $params); if (is_numeric($list->getId())) { $success = true; } else { echo json_encode(array("error" => "There was an error")); exit; } if (count($_FILES["immagini"]) > 0) { $imm = new FileUploader("immagini", "admin/upNoteImages/" . $list->getId()); $result = $imm->getResult(); $list->setGallery(implode(",", $result["success"]));