public function loginAuthonticator($userName, $userPassword)
{
$loginDao = new LoginDAO();
$dbPassword = $loginDao->getPassword($userName);
if ($dbPassword == $userPassword) {
return TRUE;
} else {
return FALSE;
}
}
public function logar()
{
$login = new Login();
$login->setLoginUsr(toTexto(GetVar('login_usr')));
$login->setSenhaUsr(toTexto(sha1(GetVar('senha_usr'))));
$loginDAO = new LoginDAO();
$return = $loginDAO->logar($login);
$result = $return ? 'Login efetuado com sucesso. Aguarde...' : 'Usuario ou Senha incorretos.';
echo json_encode(array("success" => is_string($return) ? false : $return, "msg" => is_string($return) ? $return : $result));
}
/**
*
* @param <String> $username
* @return <User>
*/
public function doLogin($username)
{
$logindao = new LoginDAO();
$user = $logindao->isUsernameAvailable($username);
if ($user) {
//session_start();
$_SESSION['loggedin_user'] = $user;
//NetDebug::trace('session started for user');
// NetDebug::trace($user);
}
return $user;
}
$resultHash['user'] = $userHash['result'][0];
JsonResponse::sendResponse(200, $resultHash);
} else {
JsonResponse::sendResponse(400, $TOKENHash['reason']);
}
} else {
JsonResponse::sendResponse(400, $TOKENHash['reason']);
}
} else {
JsonResponse::sendResponse(400, "Could not find or create a user id");
}
} else {
JsonResponse::sendResponse(400, $userFnHash['reason']);
}
} elseif (isset($_GET['check'])) {
$fnHash = LoginDAO::getUserFromToken($request_data->token);
if ($fnHash['ok']) {
JsonResponse::sendResponse(200, $fnHash['result']);
} else {
JsonResponse::sendResponse(400, $fnHash['reason']);
}
} else {
JsonResponse::sendResponse(404, "Invalid Spire API Request");
}
} elseif (isset($_GET['artist'])) {
if ($_SERVER['REQUEST_METHOD'] === "GET") {
$artist_id = $_GET['artist'];
$active_only = $_GET['activeOnly'];
$fnHash = ArtistDAO::getArtists($artist_id, $active_only);
$logger->writeLog("fnHash['ok'] = " . $fnHash['ok']);
if ($fnHash['ok']) {
<?php
session_start();
include_once "connection/DbConnection.php";
include_once "class/LoginDAO.php";
include "class/User.php";
if (isset($_REQUEST['submit'])) {
extract($_REQUEST);
$user = new User();
$user->setEmail($_POST['email']);
$user->setPasswd($_POST['password']);
$signin = new LoginDAO();
$login = $signin->check_login($user->getEmail(), $user->getPasswd());
if ($login === 1) {
//Registration Success
header("location:adminPage.php");
}
if ($login === 2) {
//Registration Success
header("location:ouroffer.php");
}
if ($login === 0) {
//Registration Failed
$response = '<h3 style="color:indianred">Pogresan email ili sifra! <br />Možda Vam korisnik nije aktivan, proverite da li imate email za potvrdu registracije!</h3>';
header("location:header.php?response={$response}");
}
}
include_once "../../DataAccessObjects/LoginDAO.php";
include_once "../../DataTransferObjects/LoginDTO.php";
// Abre a conexao com o banco de dados
$dataConnector = new DataConnector('mySql');
$dataConnector->OpenConnection();
if ($dataConnector->mysqlConnection == null) {
echo 'Não foi possível se connectar ao bando de dados!';
exit;
}
$nivelAutorizacao = GetAuthorizationLevel($dataConnector->mysqlConnection, $functionalities["administracaoSistema"]);
if ($nivelAutorizacao <= 1) {
DisplayNotAuthorizedWarning();
exit;
}
// Cria o objeto de mapeamento objeto-relacional
$loginDAO = new LoginDAO($dataConnector->mysqlConnection);
$loginDAO->showErrors = 1;
?>
<h1>Administração - Logins</h1>
<script type="text/javascript" >
$(document).ready(function() {
$("#btnBind").button({ icons: {primary:'ui-icon-transferthick-e-w' } }).click(function() {
var checkedCount = 0;
var id = 0;
$("input[type=checkbox]").each( function() {
if ($(this).is(":checked")) {
checkedCount++;
id = $(this).val();
}
});
include_once "../../DataAccessObjects/ActionLogDAO.php";
include_once "../../DataTransferObjects/ActionLogDTO.php";
if (!isset($_REQUEST["acao"])) {
echo "Erro no processamento da requisição.";
exit;
}
$acao = $_REQUEST["acao"];
// Abre a conexao com o banco de dados
$dataConnector = new DataConnector('mySql');
$dataConnector->OpenConnection();
if ($dataConnector->mysqlConnection == null) {
echo 'Não foi possível se connectar ao bando de dados!';
exit;
}
// Cria os objetos de mapeamento objeto-relacional
$loginDAO = new LoginDAO($dataConnector->mysqlConnection);
$loginDAO->showErrors = 1;
$authorizationDAO = new AuthorizationDAO($dataConnector->mysqlConnection);
$authorizationDAO->showErrors = 1;
$actionLogDAO = new ActionLogDAO($dataConnector->mysqlConnection);
$actionLogDAO->showErrors = 1;
// Cria o objeto de criptografia
$cipher = new Cipher();
if ($acao == "store") {
$id = 0;
$login = new LoginDTO();
if (isset($_REQUEST["id"]) && $_REQUEST["id"] != 0) {
$id = $_REQUEST["id"];
$login = $loginDAO->RetrieveRecord($id);
}
$login->idExterno = $_REQUEST["idExterno"];
include_once "class/LoginDAO.php";
//Checking for user logged in or not
if (isset($_REQUEST['submit'])) {
extract($_REQUEST);
$user = new User();
$user->setName($_POST['name']);
$user->setSecName($_POST['secname']);
$user->setAdress($_POST['adress']);
$user->setCity($_POST['city']);
$user->setEmail($_POST['email']);
$user->setPasswd($_POST['passwd']);
$user->setJbg($_POST['jbg']);
$user->setPhone($_POST['phone']);
$user->setMphone($_POST['mphone']);
$user->setImageUrl($_POST['image_url']);
$signup = new LoginDAO();
$register = $signup->reg_user($user->getName(), $user->getSecName(), $user->getAdress(), $user->getCity(), $user->getEmail(), $user->getPasswd(), $user->getJbg(), $user->getPhone(), $user->getMphone(), $user->getImageUrl());
if ($register) {
//echo '<h3>Registration successful <a href="loginPage.php">Click here</a> to login</h3>';
echo "Proverite Vaš email i potvrdite registraciju!";
$rowreg = $register->fetch_assoc();
$enabled = $rowreg['enabled'];
$checkuser_id = $rowreg['checkuser_id'];
$to_email = $rowreg['email'];
$url_project = URL_PROJECT;
$subject = "Prijava na Smart-Porudzbine";
$foremail = "<html><head>\n <title>Prijava na Smart-Porudzbine</title>\n </head>\n <body>\n <p>Poštovani {$user->getName()},</p>\n <p>Prijavili ste se na Smart-Porudzbine aplikaciju koristeći - {$user->getEmail()}</p>\n <p>i sifru: - {$user->getPasswd()}</p>";
$foremail .= "Proverite i <a href='{$url_project}/loginPage.php?cr={$checkuser_id}' style='color: #8b0000'>klikom na ovaj link POTVRDITE</a> registraciju!<br />";
$foremail .= "Ako je u pitanju greška obrišite ovaj email,<br />";
$foremail .= "ili možete da <a href='{$url_project}/loginPage.php?dr={$checkuser_id}' style='color: #8b0000'>klikom na ovaj link OTKAŽETE</a> registraciju.";
$email = new EmailDAO();
<tr>
<td colspan="3" align="center" >Nenhum registro encontrado!</td>
</tr>
</tbody>
</table>
</div>
</div>
</div>
<div class="column">
<div class="portlet">
<div class="portlet-header">Histórico de ações</div>
<div class="portlet-content">
<?php
$actionLogDAO = new ActionLogDAO($dataConnector->mysqlConnection);
$actionLogDAO->showErrors = 1;
$loginDAO = new LoginDAO($dataConnector->mysqlConnection);
$loginDAO->showErrors = 1;
// traz o histórico dos dez últimos minutos
$actionArray = $actionLogDAO->RetrieveRecordArray("transacao <> '' AND tipoObjeto = 'trace' AND data > DATE_SUB( NOW(), INTERVAL 10 MINUTE)");
foreach ($actionArray as $action) {
$login = $loginDAO->RetrieveRecord($action->login_id);
$username = $login->nome;
$dataHora = $action->data . ' ' . $action->hora;
$transacao = $action->transacao;
echo $username . ' ' . $dataHora . ' - ' . $transacao . "<br/>";
}
?>
</div>
</div>
<div class="portlet" id="pendingSupplies" >
<div class="portlet-header">Solicitações de consumível pendentes</div>
<?php
include "header2.php";
include "class/LoginDAO.php";
if (isset($_GET['response'])) {
echo $_GET['response'];
}
//enabling user through email
if (isset($_GET['cr'])) {
$loginco = new LoginDAO();
$confirmlogin = $loginco->confirmLogin($_GET['cr']);
echo $confirmlogin;
}
//disabling user through email
if (isset($_GET['dr'])) {
$loginco = new LoginDAO();
$disablinglogin = $loginco->disableLogin($_GET['dr']);
echo $disablinglogin;
}
?>
<script type="text/javascript" language="javascript">
function submitlogin() {
var form = document.login;
if(form.emailusername.value == ""){
alert( "Enter email." );
return false;
}
else if(form.password.value == ""){
alert( "Enter password." );
include_once "../../DataAccessObjects/LoginDAO.php";
include_once "../../DataTransferObjects/LoginDTO.php";
// Abre a conexao com o banco de dados
$dataConnector = new DataConnector('mySql');
$dataConnector->OpenConnection();
if ($dataConnector->mysqlConnection == null) {
echo 'Não foi possível se connectar ao bando de dados!';
exit;
}
$nivelAutorizacao = GetAuthorizationLevel($dataConnector->mysqlConnection, $functionalities["administracaoSistema"]);
if ($nivelAutorizacao <= 1) {
DisplayNotAuthorizedWarning();
exit;
}
// Cria o objeto de mapeamento objeto-relacional
$loginDAO = new LoginDAO($dataConnector->mysqlConnection);
$loginDAO->showErrors = 1;
$id = 0;
$login = new LoginDTO();
if (isset($_REQUEST["id"]) && $_REQUEST["id"] != 0) {
$id = $_REQUEST["id"];
$login = $loginDAO->RetrieveRecord($id);
}
?>
<h1>Administração - Login</h1>
<form name="fDados" action="Frontend/<?php
echo $currentDir;
?>
/acao.php" method="post" >
<input type="hidden" name="acao" value="store" />
<?php
include_once '../bd/LoginDAO.php';
include_once '../modelo/Modelo.php';
$login = $_POST['log'];
$pass = $_POST['password'];
$lDao = new LoginDAO();
$vet = $lDao->buscaLogin($login, $pass);
if (sizeof($vet) > 1) {
//resultado de consulta com usuário valido encontrado
$lTemp = new Login($vet['usuario'], $vet['senha'], $vet['nivel']);
session_start();
$_SESSION['nivel'] = $lTemp->getNivel();
$_SESSION['usuario'] = $lTemp->getUser();
//if($lTemp->getNivel() === "ATENDENTE")
header("Location: ../visao/vAtendente.php");
//elseif ($lTemp->getNivel() === "ADMINISTRADOR") {
//header("Location: ../visao/vAtendente.php");
//header("Location: ../visao/vAdmin.php");
//}
} elseif (sizeof($vet) < 2) {
header("Location: ../visao/vLogin.php?mess= login ou senha incorreta");
//resultado vazio de consulta
echo 'nao encontrado';
} else {
header("Location: ../visao/vLogin.php?mess= login ou senha incorreta");
//erro desconhecido ounulo
}
