function login() {
try {
$A = new Auth();
} catch(Exception $e) {
die($e->getMessage());
}
if($_POST['password']) {
$P = new Password();
if(!$P->isValid($_POST['password'])) {
$pass_incorrect = true;
} else {
$set_cookie = true;
$cookieval = set_auth_cookie();
try {
$A->create($cookieval);
} catch(Exception $e) {
die($e->getMessage());
}
}
} else {
if(isset($_COOKIE['auth']) && $A->isValid($_COOKIE['auth']))
$already_set = true;
}
?>
<!DOCTYPE html>
<html>
<head><title>set scraps password</title></head>
<body>
<?php if($pass_incorrect): ?>
<p>The password entered does not match the current password.</p>
<?php elseif($set_cookie): ?>
<p>Y'all should be logged in now.</p>
<?php elseif($already_set): ?>
<p>Y'all is already logged in.</p>
<?php else: ?>
<form method="post">
<input name="password" type="password" placeholder="Password?" \>
<input type="submit" value="Login" />
</form>
</body>
</html>
<?php endif;
}
function token()
{
global $instDir, $objMessages, $entryMessage;
// Get the userid
include_once $instDir . "lib/password.php";
$password = new Password();
$token = $_GET['t'];
if ($password->tokenExists($token)) {
// Only go on when the token is not too old. If the token is too old, remove the token.
if ($password->isValid($token)) {
// Go to the correct
echo "<div id=\"main\">";
// TODO: Add form to change the password.
// TODO: Add scripts to change the password.
print "TEST: " . $userid;
echo "</div>";
} else {
// TODO: Change
print "<br/>TOKEN IS NOT VALID ANYMORE!";
}
} else {
// TODO: Change message
$entryMessage = "TOKEN DOES NOT EXIST!";
$_GET['indexAction'] = 'main';
// TODO: Return the index page
return;
}
if (sizeof($userid) > 0) {
// Clear the request
$password->removeToken($token);
// Send a mail that the request was canceled.
if (!empty($_SERVER['HTTP_CLIENT_IP'])) {
$ip = $_SERVER['HTTP_CLIENT_IP'];
} elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
$ip = $_SERVER['HTTP_X_FORWARDED_FOR'];
} else {
$ip = $_SERVER['REMOTE_ADDR'];
}
$subject = LangCancelRequestNewPasswordSubject;
$message = LangCancelRequestNewPassword1 . $ip;
$message .= LangCancelRequestNewPassword2;
$objMessages->sendEmail($subject, $message, $userid);
// Go to the DeepskyLog page and show 'Your password change request was canceled'
$entryMessage = LangCancelRequestNewPasswordSubject . ".";
}
}
public function login()
{
if ($_POST) {
$pass = new Password();
$filter = new Validations();
$auth = new Authorization();
$username = $filter->sanitizeText($_POST["username"]);
$password = $filter->sanitizeText($_POST["password"]);
$options['conditions'] = " username = '******'";
$user = $this->User->find("users", "first", $options);
if ($pass->isValid($password, $user['password'])) {
$auth->login($user);
$this->redirect(array("controller" => "users", "action" => "index"));
} else {
echo "Usuario Invalido";
}
}
}
public function login()
{
if ($_POST) {
$pass = new Password();
$filter = new Validations();
$aut = new Authorization();
$username = $filter->sanitizeText($_POST['username']);
$password = $filter->sanitizeText($_POST['password']);
$options['conditions'] = "username = '******'";
$usuario = $this->db->find('usuarios', 'first', $options);
if ($pass->isValid($password, $usuario['password'])) {
$aut->login($usuario);
$this->redirect(array('controller' => 'tareas'));
} else {
echo "Usuario Invalido";
}
}
$this->_view->renderizar('login');
}
public function login()
{
if ($_POST) {
$pass = new Password();
# code...
$filter = new Validations();
$auth = new Authorization();
$username = $filter->sanitizeText($_POST['username']);
$password = $filter->sanitizeText($_POST['password']);
$options = array('conditions' => "username='******'");
$usuario = $this->db->find('usuarios', 'first', $options);
if ($pass->isValid($password, $usuario['password'])) {
$auth->login($usuario);
$this->redirect(array('controller' => 'usuarios', 'action' => 'escritorio'));
} else {
echo "<script type='text/javascript'>\n\t\t alert('usuario no valido');\n\t\t </script>";
}
}
$this->_view->renderizar('login', 'login');
}
/**
*Metodo de los usuarios cuando inicien en la aplicacion
*/
public function login()
{
if ($_POST) {
$pass = new Password();
$filter = new Validations();
//sanear lo que se reciba en el formaulario
$auth = new Authorization();
$username = $filter->sanitizeText($_POST["username"]);
//sanea cajas
$password = $filter->sanitizeText($_POST["password"]);
$options = array("conditions" => "username = '******'");
$usuario = $this->find("usuarios", "first", $options);
if ($pass->isValid($password, $usuario["password"])) {
$auth->login($usuario);
$this->redirect(array("controller" => "tareas"));
} else {
echo "Usuario invalido";
}
}
$this->_view->renderizar("login");
}
function change_password()
{
global $instDir, $entryMessage, $baseURL;
include_once $instDir . "lib/password.php";
$password = new Password();
$token = $_GET['t'];
// Move this to control, only setting the password to this file.
// Only show the change password form when the token is known
if ($password->tokenExists($token)) {
$userid = $password->getUserId($token);
// Check if the token is not too old. If the token is too old, remove the token.
if ($password->isValid($token)) {
// Add form to change the password.
echo "<div id=\"main\">\n <form action=\"" . $baseURL . "index.php?indexAction=changepasswordToken\" method=\"post\">\n " . LangNewPassword . "\n <input type=\"hidden\" name=\"userid\" value=\"" . $userid . "\" />\n <input type=\"hidden\" name=\"token\" value=\"" . $token . "\" />\n <input type=\"password\" name=\"newPassword\" class=\"strength\" required>" . LangChangeAccountField6 . "\n <input type=\"password\" name=\"confirmPassword\" class=\"strength\" required data-show-meter=\"false\">\n <br />\n <input class=\"btn btn-danger\" type=\"submit\" name=\"changePasswordToken\" value=\"" . LangChangePassword . "\" />";
echo "</div>";
} else {
echo "<meta http-equiv=\"refresh\" content=\"0; url=/index.php\" />";
}
} else {
echo "<meta http-equiv=\"refresh\" content=\"0; url=/index.php\" />";
}
}
public function login()
{
/**
* function that allows the user to login
* @param password $pass password of the user
* @param $filter to validate that the password is correct
* @param $auth to authorize the entrance to de system
*
* @return void
*/
if ($_POST) {
$pass = new Password();
$filter = new Validations();
$auth = new Authorization();
$username = $filter->sanitizeText($_POST['username']);
$password = $filter->sanitizeText($_POST['password']);
$options = array('conditions' => "username = '******'");
$usuario = $this->db->find('usuarios', 'first', $options);
if ($pass->isValid($password, $usuario['password'])) {
$auth->login($usuario);
$this->redirect(array('controller' => 'tareas'));
} else {
echo "Usuario no valido";
}
}
$this->_view->renderizar('login');
}
function POST($matches) {
$P = new Password();
if(!$P->isValid($_POST['password'])) {
$this->layout_vars = array(
'content' => "The password you entered is incorrect.");
} else {
$A = new Article();
if($A->deleteArticle($matches[1])) {
$this->layout_vars = array(
'content' => "Congratulations, you delete a post. Everyone is so proud.");
} else {
$this->layout_vars = array(
'content' => "Couldn't delete post. Fuuuuuu-");
}
}
}
