if ($USER_DATA = $cpg_udb->login($superCage->post->getEscaped('username'), $superCage->post->getEscaped('password'), $superCage->post->getInt('remember_me'))) { //$referer=preg_replace("'&'","&",$referer); // Write the log entry if ($CONFIG['log_mode'] == CPG_LOG_ALL) { log_write('The user ' . $USER_DATA['user_name'] . ' (user ID ' . $USER_DATA['user_id'] . ") logged in.", CPG_ACCESS_LOG); } // Set the language preference $sql = "UPDATE {$CONFIG['TABLE_USERS']} SET user_language = '{$USER['lang']}' WHERE user_id = {$USER_DATA['user_id']}"; $result = cpg_db_query($sql); $cpg_udb->authenticate(); if (!$USER_DATA['has_admin_access']) { unset($USER['am']); user_save_profile(); } $redirect = $CPG_REFERER && strpos($CPG_REFERER, 'login.php') === false ? $CPG_REFERER : 'index.php'; $pending_approvals = $USER_DATA['has_admin_access'] && cpg_get_pending_approvals() > 0 ? '<br />' . $lang_gallery_admin_menu['upl_app_title'] : ''; cpgRedirectPage($redirect, $lang_login_php['login'], sprintf($lang_login_php['welcome'], $USER_DATA['user_name']) . $pending_approvals, 3, 'success'); exit; } else { // Write the log entry log_write("Failed login attempt at IP {$hdr_ip} with Username: "******"2" class="tableh2"> <div id="cpgMessage" class="cpg_user_message cpg_message_validation"> {$lang_login_php['err_login']} </div> </td> </tr> EOT; // get IP address of the person who tried to log in, look it up on the banning table and increase the brute force counter. If the brute force counter has reached a critical limit, set a regular banning record
function theme_admin_mode_menu() { global $cat; global $lang_gallery_admin_menu, $lang_user_admin_menu; global $template_gallery_admin_menu, $template_user_admin_menu; global $CONFIG; $cat_l = isset($cat) ? "?cat={$cat}" : ''; static $admin_menu = ''; // Populate the admin menu only if empty to avoid template errors if ($admin_menu == '') { if (GALLERY_ADMIN_MODE) { if ($CONFIG['log_ecards'] == 0) { template_extract_block($template_gallery_admin_menu, 'log_ecards'); } if (cpg_get_pending_approvals() == 0) { template_extract_block($template_gallery_admin_menu, 'admin_approval'); } // do the docs exist on the webserver? if (file_exists('docs/index.htm') == true) { $documentation_href = 'docs/index.htm'; } else { $documentation_href = 'http://coppermine-gallery.net/demo/cpg14x/docs/index.htm'; } $param = array('{CATL}' => $cat_l, '{UPL_APP_TITLE}' => $lang_gallery_admin_menu['upl_app_title'], '{UPL_APP_LNK}' => $lang_gallery_admin_menu['upl_app_lnk'], '{ADMIN_TITLE}' => $lang_gallery_admin_menu['admin_title'], '{ADMIN_LNK}' => $lang_gallery_admin_menu['admin_lnk'], '{ALBUMS_TITLE}' => $lang_gallery_admin_menu['albums_title'], '{ALBUMS_LNK}' => $lang_gallery_admin_menu['albums_lnk'], '{CATEGORIES_TITLE}' => $lang_gallery_admin_menu['categories_title'], '{CATEGORIES_LNK}' => $lang_gallery_admin_menu['categories_lnk'], '{USERS_TITLE}' => $lang_gallery_admin_menu['users_title'], '{USERS_LNK}' => $lang_gallery_admin_menu['users_lnk'], '{GROUPS_TITLE}' => $lang_gallery_admin_menu['groups_title'], '{GROUPS_LNK}' => $lang_gallery_admin_menu['groups_lnk'], '{COMMENTS_TITLE}' => $lang_gallery_admin_menu['comments_title'], '{COMMENTS_LNK}' => $lang_gallery_admin_menu['comments_lnk'], '{SEARCHNEW_TITLE}' => $lang_gallery_admin_menu['searchnew_title'], '{SEARCHNEW_LNK}' => $lang_gallery_admin_menu['searchnew_lnk'], '{MY_PROF_TITLE}' => $lang_user_admin_menu['my_prof_title'], '{MY_PROF_LNK}' => $lang_user_admin_menu['my_prof_lnk'], '{UTIL_TITLE}' => $lang_gallery_admin_menu['util_title'], '{UTIL_LNK}' => $lang_gallery_admin_menu['util_lnk'], '{BAN_TITLE}' => $lang_gallery_admin_menu['ban_title'], '{BAN_LNK}' => $lang_gallery_admin_menu['ban_lnk'], '{DB_ECARD_TITLE}' => $lang_gallery_admin_menu['db_ecard_title'], '{DB_ECARD_LNK}' => $lang_gallery_admin_menu['db_ecard_lnk'], '{PICTURES_TITLE}' => $lang_gallery_admin_menu['pictures_title'], '{PICTURES_LNK}' => $lang_gallery_admin_menu['pictures_lnk'], '{DOCUMENTATION_HREF}' => $documentation_href, '{DOCUMENTATION_TITLE}' => $lang_gallery_admin_menu['documentation_title'], '{DOCUMENTATION_LNK}' => $lang_gallery_admin_menu['documentation_lnk']); $html = template_eval($template_gallery_admin_menu, $param); $html .= cpg_alert_dev_version(); } elseif (USER_ADMIN_MODE) { $param = array('{ALBMGR_TITLE}' => $lang_user_admin_menu['albmgr_title'], '{ALBMGR_LNK}' => $lang_user_admin_menu['albmgr_lnk'], '{MODIFYALB_TITLE}' => $lang_user_admin_menu['modifyalb_title'], '{MODIFYALB_LNK}' => $lang_user_admin_menu['modifyalb_lnk'], '{MY_PROF_TITLE}' => $lang_user_admin_menu['my_prof_title'], '{MY_PROF_LNK}' => $lang_user_admin_menu['my_prof_lnk'], '{PICTURES_TITLE}' => $lang_gallery_admin_menu['pictures_title'], '{PICTURES_LNK}' => $lang_gallery_admin_menu['pictures_lnk']); $html = template_eval($template_user_admin_menu, $param); } else { $html = ''; } $admin_menu = $html; } return $admin_menu; }
function theme_admin_mode_menu() { global $cat; global $lang_gallery_admin_menu, $lang_user_admin_menu; global $template_gallery_admin_menu, $template_user_admin_menu; global $CONFIG; $cat_l = isset($cat) ? "?cat={$cat}" : ''; static $admin_menu = ''; // Populate the admin menu only if empty to avoid template errors if ($admin_menu == '') { if (GALLERY_ADMIN_MODE) { if ($CONFIG['log_ecards'] == 0) { template_extract_block($template_gallery_admin_menu, 'log_ecards'); } if (cpg_get_pending_approvals() == 0) { template_extract_block($template_gallery_admin_menu, 'admin_approval'); } // do the docs exist on the webserver? if (file_exists('docs/index.htm') == true) { $documentation_href = 'docs/index.htm'; } else { $documentation_href = 'http://coppermine.sf.net/docs/cpg14/index.php'; } if (!$CONFIG['enable_plugins']) { template_extract_block($template_gallery_admin_menu, 'plugin_manager'); } if (!$CONFIG['log_mode']) { template_extract_block($template_gallery_admin_menu, 'view_log_files'); } if (!$CONFIG['hit_details']) { template_extract_block($template_gallery_admin_menu, 'overall_stats'); } if (!$CONFIG['clickable_keyword_search']) { template_extract_block($template_gallery_admin_menu, 'keyword_manager'); } if (!$CONFIG['read_exif_data']) { template_extract_block($template_gallery_admin_menu, 'exif_manager'); } $param = array('{CATL}' => $cat_l, '{UPL_APP_TITLE}' => $lang_gallery_admin_menu['upl_app_title'], '{UPL_APP_LNK}' => $lang_gallery_admin_menu['upl_app_lnk'], '{ADMIN_TITLE}' => $lang_gallery_admin_menu['admin_title'], '{ADMIN_LNK}' => $lang_gallery_admin_menu['admin_lnk'], '{ALBUMS_TITLE}' => $lang_gallery_admin_menu['albums_title'], '{ALBUMS_LNK}' => $lang_gallery_admin_menu['albums_lnk'], '{CATEGORIES_TITLE}' => $lang_gallery_admin_menu['categories_title'], '{CATEGORIES_LNK}' => $lang_gallery_admin_menu['categories_lnk'], '{USERS_TITLE}' => $lang_gallery_admin_menu['users_title'], '{USERS_LNK}' => $lang_gallery_admin_menu['users_lnk'], '{GROUPS_TITLE}' => $lang_gallery_admin_menu['groups_title'], '{GROUPS_LNK}' => $lang_gallery_admin_menu['groups_lnk'], '{COMMENTS_TITLE}' => $lang_gallery_admin_menu['comments_title'], '{COMMENTS_LNK}' => $lang_gallery_admin_menu['comments_lnk'], '{SEARCHNEW_TITLE}' => $lang_gallery_admin_menu['searchnew_title'], '{SEARCHNEW_LNK}' => $lang_gallery_admin_menu['searchnew_lnk'], '{MY_PROF_TITLE}' => $lang_user_admin_menu['my_prof_title'], '{MY_PROF_LNK}' => $lang_user_admin_menu['my_prof_lnk'], '{UTIL_TITLE}' => $lang_gallery_admin_menu['util_title'], '{UTIL_LNK}' => $lang_gallery_admin_menu['util_lnk'], '{BAN_TITLE}' => $lang_gallery_admin_menu['ban_title'], '{BAN_LNK}' => $lang_gallery_admin_menu['ban_lnk'], '{DB_ECARD_TITLE}' => $lang_gallery_admin_menu['db_ecard_title'], '{DB_ECARD_LNK}' => $lang_gallery_admin_menu['db_ecard_lnk'], '{PICTURES_TITLE}' => $lang_gallery_admin_menu['pictures_title'], '{PICTURES_LNK}' => $lang_gallery_admin_menu['pictures_lnk'], '{DOCUMENTATION_HREF}' => $documentation_href, '{DOCUMENTATION_TITLE}' => $lang_gallery_admin_menu['documentation_title'], '{DOCUMENTATION_LNK}' => $lang_gallery_admin_menu['documentation_lnk'], '{PLUGINMGR_TITLE}' => $lang_gallery_admin_menu['pluginmgr_title'], '{PLUGINMGR_LNK}' => $lang_gallery_admin_menu['pluginmgr_lnk'], '{BRIDGEMGR_TITLE}' => $lang_gallery_admin_menu['bridgemgr_title'], '{BRIDGEMGR_LNK}' => $lang_gallery_admin_menu['bridgemgr_lnk'], '{PHPINFO_TITLE}' => $lang_gallery_admin_menu['phpinfo_title'], '{PHPINFO_LNK}' => $lang_gallery_admin_menu['phpinfo_lnk'], '{UPDATE_DATABASE_TITLE}' => $lang_gallery_admin_menu['update_database_title'], '{UPDATE_DATABASE_LNK}' => $lang_gallery_admin_menu['update_database_lnk'], '{VIEW_LOG_FILES_TITLE}' => $lang_gallery_admin_menu['view_log_files_title'], '{VIEW_LOG_FILES_LNK}' => $lang_gallery_admin_menu['view_log_files_lnk'], '{CHECK_VERSIONS_TITLE}' => $lang_gallery_admin_menu['check_versions_title'], '{CHECK_VERSIONS_LNK}' => $lang_gallery_admin_menu['check_versions_lnk'], '{OVERALL_STATS_TITLE}' => $lang_gallery_admin_menu['overall_stats_title'], '{OVERALL_STATS_LNK}' => $lang_gallery_admin_menu['overall_stats_lnk'], '{KEYWORDMGR_TITLE}' => $lang_gallery_admin_menu['keywordmgr_title'], '{KEYWORDMGR_LNK}' => $lang_gallery_admin_menu['keywordmgr_lnk'], '{EXIFMGR_TITLE}' => $lang_gallery_admin_menu['exifmgr_title'], '{EXIFMGR_LNK}' => $lang_gallery_admin_menu['exifmgr_lnk']); $html = template_eval($template_gallery_admin_menu, $param); //$html.= cpg_alert_dev_version(); } elseif (USER_ADMIN_MODE) { $param = array('{ALBMGR_TITLE}' => $lang_user_admin_menu['albmgr_title'], '{ALBMGR_LNK}' => $lang_user_admin_menu['albmgr_lnk'], '{MODIFYALB_TITLE}' => $lang_user_admin_menu['modifyalb_title'], '{MODIFYALB_LNK}' => $lang_user_admin_menu['modifyalb_lnk'], '{MY_PROF_TITLE}' => $lang_user_admin_menu['my_prof_title'], '{MY_PROF_LNK}' => $lang_user_admin_menu['my_prof_lnk'], '{PICTURES_TITLE}' => $lang_gallery_admin_menu['pictures_title'], '{PICTURES_LNK}' => $lang_gallery_admin_menu['pictures_lnk']); $html = template_eval($template_user_admin_menu, $param); } else { $html = ''; } $admin_menu = $html; } return $admin_menu; }
function theme_admin_mode_menu() { global $cat; global $lang_gallery_admin_menu, $lang_user_admin_menu, $lang_cat_list, $lang_common; global $template_gallery_admin_menu, $template_user_admin_menu; global $CONFIG; global $THEME_DIR; $cat_l = isset($cat) ? "?cat={$cat}" : ''; static $admin_menu = ''; // Populate the admin menu only if empty to avoid template errors if ($admin_menu == '') { $admin_menu = '<!-- -->'; // set in case an error occurs here; otherwise, theme_cpg_die will call this function and crash if (GALLERY_ADMIN_MODE) { if ($CONFIG['log_ecards'] == 0) { template_extract_block($template_gallery_admin_menu, 'log_ecards'); } if (cpg_get_pending_approvals() == 0) { template_extract_block($template_gallery_admin_menu, 'admin_approval'); } // Determine the documentation target $available_doc_folders_array = form_get_foldercontent('docs/', 'folder', '', array('images', 'js', 'style', '.svn')); // Query the languages table $help_lang = ''; $results = cpg_db_query("SELECT lang_id, abbr FROM {$CONFIG['TABLE_LANGUAGE']} WHERE available='YES' AND enabled='YES'"); while ($row = mysql_fetch_array($results)) { if ($CONFIG['lang'] == $row['lang_id']) { $help_lang = $row['abbr']; } } // while mysql_free_result($results); unset($row); if ($help_lang == '') { $help_lang = 'en'; } // do the docs exist on the webserver? if (file_exists('docs/' . $help_lang . '/index.htm') == true) { $documentation_href = 'docs/' . $help_lang . '/index.htm'; } else { $documentation_href = 'http://documentation.coppermine-gallery.net/'; } if (!$CONFIG['enable_plugins']) { template_extract_block($template_gallery_admin_menu, 'plugin_manager'); } if (!$CONFIG['log_mode']) { template_extract_block($template_gallery_admin_menu, 'view_log_files'); } if (!$CONFIG['hit_details']) { template_extract_block($template_gallery_admin_menu, 'overall_stats'); } if (!$CONFIG['clickable_keyword_search']) { template_extract_block($template_gallery_admin_menu, 'keyword_manager'); } if (!$CONFIG['read_exif_data']) { template_extract_block($template_gallery_admin_menu, 'exif_manager'); } if ($CONFIG['display_coppermine_news'] != 0) { template_extract_block($template_gallery_admin_menu, 'show_news'); } if ($CONFIG['bridge_enable'] != 0) { template_extract_block($template_gallery_admin_menu, 'banmgr'); template_extract_block($template_gallery_admin_menu, 'admin_profile'); } $param = array('{CATL}' => $cat_l, '{UPL_APP_TITLE}' => $lang_gallery_admin_menu['upl_app_title'], '{UPL_APP_LNK}' => $lang_gallery_admin_menu['upl_app_lnk'], '{UPL_APP_ICO}' => cpg_fetch_icon('file_approval', 1), '{ADMIN_TITLE}' => $lang_gallery_admin_menu['admin_title'], '{ADMIN_LNK}' => $lang_gallery_admin_menu['admin_lnk'], '{ADMIN_ICO}' => cpg_fetch_icon('config', 1), '{ALBUMS_TITLE}' => $lang_gallery_admin_menu['albums_title'], '{ALBUMS_LNK}' => $lang_gallery_admin_menu['albums_lnk'], '{ALBUMS_ICO}' => cpg_fetch_icon('alb_mgr', 1), '{CATEGORIES_TITLE}' => $lang_gallery_admin_menu['categories_title'], '{CATEGORIES_LNK}' => $lang_gallery_admin_menu['categories_lnk'], '{CATEGORIES_ICO}' => cpg_fetch_icon('cat_mgr', 1), '{USERS_TITLE}' => $lang_gallery_admin_menu['users_title'], '{USERS_LNK}' => $lang_gallery_admin_menu['users_lnk'], '{USERS_ICO}' => cpg_fetch_icon('user_mgr', 1), '{GROUPS_TITLE}' => $lang_gallery_admin_menu['groups_title'], '{GROUPS_LNK}' => $lang_gallery_admin_menu['groups_lnk'], '{GROUPS_ICO}' => cpg_fetch_icon('groups_mgr', 1), '{COMMENTS_TITLE}' => $lang_gallery_admin_menu['comments_title'], '{COMMENTS_LNK}' => $lang_gallery_admin_menu['comments_lnk'], '{COMMENTS_ICO}' => cpg_fetch_icon('comment_approval', 1), '{SEARCHNEW_TITLE}' => $lang_gallery_admin_menu['searchnew_title'], '{SEARCHNEW_LNK}' => $lang_gallery_admin_menu['searchnew_lnk'], '{SEARCHNEW_ICO}' => cpg_fetch_icon('searchnew', 1), '{FILES_TITLE}' => $lang_cat_list['pictures'], '{FILES_LNK}' => $lang_cat_list['pictures'], '{FILES_ICO}' => cpg_fetch_icon('searchnew', 1), '{INFO_TITLE}' => $lang_common['information'], '{INFO_LNK}' => $lang_common['information'], '{INFO_ICO}' => cpg_fetch_icon('info', 1), '{MY_PROF_TITLE}' => $lang_user_admin_menu['my_prof_title'], '{MY_PROF_LNK}' => $lang_user_admin_menu['my_prof_lnk'], '{MY_PROF_ICO}' => cpg_fetch_icon('my_profile', 1), '{UTIL_TITLE}' => $lang_gallery_admin_menu['util_title'], '{UTIL_LNK}' => $lang_gallery_admin_menu['util_lnk'], '{UTIL_ICO}' => cpg_fetch_icon('util', 1), '{BAN_TITLE}' => $lang_gallery_admin_menu['ban_title'], '{BAN_LNK}' => $lang_gallery_admin_menu['ban_lnk'], '{BAN_ICO}' => cpg_fetch_icon('ban_user', 1), '{DB_ECARD_TITLE}' => $lang_gallery_admin_menu['db_ecard_title'], '{DB_ECARD_LNK}' => $lang_gallery_admin_menu['db_ecard_lnk'], '{DB_ECARD_ICO}' => cpg_fetch_icon('ecard_review', 1), '{PICTURES_TITLE}' => $lang_gallery_admin_menu['pictures_title'], '{PICTURES_LNK}' => $lang_gallery_admin_menu['pictures_lnk'], '{PICTURES_ICO}' => cpg_fetch_icon('picture_sort', 1), '{DOCUMENTATION_HREF}' => $documentation_href, '{DOCUMENTATION_TITLE}' => $lang_gallery_admin_menu['documentation_title'], '{DOCUMENTATION_LNK}' => $lang_gallery_admin_menu['documentation_lnk'], '{DOCUMENTATION_ICO}' => cpg_fetch_icon('documentation', 1), '{PLUGINMGR_TITLE}' => $lang_gallery_admin_menu['pluginmgr_title'], '{PLUGINMGR_LNK}' => $lang_gallery_admin_menu['pluginmgr_lnk'], '{PLUGINMGR_ICO}' => cpg_fetch_icon('plugin_mgr', 1), '{BRIDGEMGR_TITLE}' => $lang_gallery_admin_menu['bridgemgr_title'], '{BRIDGEMGR_LNK}' => $lang_gallery_admin_menu['bridgemgr_lnk'], '{BRIDGEMGR_ICO}' => cpg_fetch_icon('bridge_mgr', 1), '{PHPINFO_TITLE}' => $lang_gallery_admin_menu['phpinfo_title'], '{PHPINFO_LNK}' => $lang_gallery_admin_menu['phpinfo_lnk'], '{PHPINFO_ICO}' => cpg_fetch_icon('phpinfo', 1), '{UPDATE_DATABASE_TITLE}' => $lang_gallery_admin_menu['update_database_title'], '{UPDATE_DATABASE_LNK}' => $lang_gallery_admin_menu['update_database_lnk'], '{UPDATE_DATABASE_ICO}' => cpg_fetch_icon('update_database', 1), '{VIEW_LOG_FILES_TITLE}' => $lang_gallery_admin_menu['view_log_files_title'], '{VIEW_LOG_FILES_LNK}' => $lang_gallery_admin_menu['view_log_files_lnk'], '{VIEW_LOG_FILES_ICO}' => cpg_fetch_icon('view_logs', 1), '{CHECK_VERSIONS_TITLE}' => $lang_gallery_admin_menu['check_versions_title'], '{CHECK_VERSIONS_LNK}' => $lang_gallery_admin_menu['check_versions_lnk'], '{CHECK_VERSIONS_ICO}' => cpg_fetch_icon('check_versions', 1), '{OVERALL_STATS_TITLE}' => $lang_gallery_admin_menu['overall_stats_title'], '{OVERALL_STATS_LNK}' => $lang_gallery_admin_menu['overall_stats_lnk'], '{OVERALL_STATS_ICO}' => cpg_fetch_icon('stats', 1), '{KEYWORDMGR_TITLE}' => $lang_gallery_admin_menu['keywordmgr_title'], '{KEYWORDMGR_LNK}' => $lang_gallery_admin_menu['keywordmgr_lnk'], '{KEYWORDMGR_ICO}' => cpg_fetch_icon('keyword_mgr', 1), '{EXIFMGR_TITLE}' => $lang_gallery_admin_menu['exifmgr_title'], '{EXIFMGR_LNK}' => $lang_gallery_admin_menu['exifmgr_lnk'], '{EXIFMGR_ICO}' => cpg_fetch_icon('exif_mgr', 1), '{SHOWNEWS_TITLE}' => $lang_gallery_admin_menu['shownews_title'], '{SHOWNEWS_LNK}' => $lang_gallery_admin_menu['shownews_lnk'], '{SHOWNEWS_ICO}' => cpg_fetch_icon('news_show', 1), '{TIME_STAMP}' => date('His') . trim(floor(rand(0, 1000)))); $html = template_eval($template_gallery_admin_menu, $param); // $html.= cpg_alert_dev_version(); } elseif (USER_ADMIN_MODE) { $param = array('{ALBMGR_TITLE}' => $lang_user_admin_menu['albmgr_title'], '{ALBMGR_LNK}' => $lang_user_admin_menu['albmgr_lnk'], '{ALBUMS_ICO}' => cpg_fetch_icon('alb_mgr', 1), '{MODIFYALB_TITLE}' => $lang_user_admin_menu['modifyalb_title'], '{MODIFYALB_LNK}' => $lang_user_admin_menu['modifyalb_lnk'], '{MODIFYALB_ICO}' => cpg_fetch_icon('modifyalb', 1), '{MY_PROF_TITLE}' => $lang_user_admin_menu['my_prof_title'], '{MY_PROF_LNK}' => $lang_user_admin_menu['my_prof_lnk'], '{MY_PROF_ICO}' => cpg_fetch_icon('my_profile', 1), '{PICTURES_TITLE}' => $lang_gallery_admin_menu['pictures_title'], '{PICTURES_LNK}' => $lang_gallery_admin_menu['pictures_lnk'], '{PICTURES_ICO}' => cpg_fetch_icon('picture_sort', 1)); $html = template_eval($template_user_admin_menu, $param); } else { $html = ''; } $admin_menu = CPGPluginAPI::filter('admin_menu', $html); } return $admin_menu; }