}
$form = "loginForm.php";
$action = $_REQUEST['action'];
$loginName = $_REQUEST['loginName'];
session_register("pageAfterLogin");
if ($action == "login") {
if (strlen($loginName) == 0) {
$errMsg = Text::getText("NoUserSpecified");
} else {
$user = SecurityUser::getByLoginName($loginName);
if ($user == NULL) {
$errMsg = Text::getText("UserNotFound");
} else {
$password = $_REQUEST['password'];
$result = SecurityUser::login($loginName, $password);
if ($result->isSuccess()) {
success($user, $pageAfterLogin);
} else {
$errMsg = $result->getMessage();
}
}
}
} else if ($action == "reset") {
$user = SecurityUser::getByResetKey($_REQUEST['key']);
if ($user == NULL) {
$errMsg = Text::getText("InvalidRequestKey");
} else {
if ($_REQUEST['password1'] != $_REQUEST['password2']) {
$errMsg = Text::getText("PasswordsDoNotMatch");
$form = "passwordResetForm.php";
