update($config->version, Config::$versions[count(Config::$versions) - 1]); header('location: index.php'); exit; } // Load Rain TPL require_once INC_DIR . 'rain.tpl.class.php'; require_once INC_DIR . 'rewriting.class.php'; RainTPL::$tpl_dir = RELATIVE_TPL_DIR . $config->template; RainTPL::$base_url = $config->base_url; RewriteEngine::$rewrite_base = RainTPL::$base_url; RainTPL::$rewriteEngine = new RewriteEngine(); $tpl = new RainTPL(); $tpl->assign('start_generation_time', microtime(true), RainTPL::RAINTPL_IGNORE_SANITIZE); $tpl->assign('config', $config); // CSRF protection require_once INC_DIR . 'csrf.php'; // Sharing options require_once INC_DIR . 'share.php'; // Manage users require_once INC_DIR . 'users.php'; if (log_user_in() === false) { $error = array(); $error['type'] = 'error'; $error['title'] = 'Login error'; $error['content'] = '<p>The provided username or password is incorrect.</p>'; $tpl->assign('error', $error, RainTPL::RAINTPL_IGNORE_SANITIZE); } $tpl->assign('user', isset($_SESSION['user']) ? $_SESSION['user'] : false, RainTPL::RAINTPL_HTML_SANITIZE); if (!isset($force_public) || !$force_public) { check_anonymous_view(); }
<?php require_once 'lib/lib.php'; do_page_prerequisites(); if (!(count($_POST) == 2 && array_key_exists('userid', $_POST) && array_key_exists('pass', $_POST))) { do_http_redirect('login.php'); exit(0); } $userid = trim($_POST['userid']); $pass = trim($_POST['pass']); if (is_valid_user_and_pass($userid, $pass)) { log_user_in($userid); send_user_to_user_homepage(); } else { logout_user(); send_user_to_login_page("Invalid user name and/or password."); }