/**
* logs out user if logged in
*
* @access private
* @roles administrator,user,guest
*/
function logout()
{
if (Authenticate::isAuthenticated()) {
Authenticate::logout();
return true;
} else {
return false;
}
}
/**
* destroy administrator session
* role: administrator
*/
public function logout()
{
$auth = new Authenticate();
if ($auth->logout(Authenticate::SUPERUSER)) {
transport("administrator");
} else {
transport("dashboard");
}
}
<?php
include '../../../includes/Authenticate.php';
include '../../../classes/Admin.php';
//check whether the user is logged in or not,
if (!Authenticate::isLoggedIn()) {
Authenticate::logout();
}
//protects the student section
if (Authenticate::getUserType() != "ADMIN") {
Authenticate::redirect();
}
$scoreboardType = $_GET['type'];
if ($scoreboardType === 'cgf') {
$queryResult = Admin::viewScoreboardBySourceCodeLength($_GET['qid']);
} elseif ($scoreboardType === 'prc') {
$queryResult = Admin::viewScoreboard($_GET['qid']);
}
$index = 0;
?>
<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<title>Gnooble: Student</title>
<link href='http://fonts.googleapis.com/css?family=Open+Sans:700,300,600,400' rel='stylesheet' type='text/css'>
<link rel="stylesheet" href="../../../assets/css/bootstrap.min.css">
<link rel="stylesheet" href="../../../assets/css/main.css">
<script>
(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
header("Location:../melnet/?sid=" . $_SESSION['user_id'] . "&token=" . ($token = $_SESSION['token'] . "&loginerrorfeed=" . rawurlencode(" User have not verified Registration! ::..")));
} else {
if ($reply == 0) {
header("Location:../melnet/index.php?sid=" . $_SESSION['user_id'] . "&token=" . ($token = $_SESSION['token'] . "&loginerrorfeed=" . rawurlencode(" Login Successful! ::..")));
}
}
}
}
}
//end if not empty
}
//end if;
if (isset($_GET['action'])) {
$action = htmlspecialchars($_GET['action']);
if ($action == "logout") {
$auth->logout();
}
header('Location:../melnet/index.php');
}
function go_homeforlogedin()
{
global $smarty;
$smarty->assign('slider', $smarty->fetch('slider.tpl'));
$smarty->assign('mainContent', $smarty->fetch("logedin.tpl"));
$smarty->assign('title', '..::MelNet:homeView');
}
function go_homeforlogin()
{
global $smarty;
$smarty->assign('slider', $smarty->fetch('slider.tpl'));
$smarty->assign('mainContent', $smarty->fetch("logedout.tpl"));
public static function preventUnauthorisedLogin()
{
//check whether the user is logged in or not,
if (!self::isLoggedIn()) {
Authenticate::logout();
}
//protects the student section
//self::redirect();
}
/**
* Security action checks that the caller has the credentials to run the remote methods
*/
function securityAction(&$amfbody)
{
$check = true;
if (!$amfbody->noExec) {
$classConstruct =& $amfbody->getClassConstruct();
$methodName = $amfbody->methodName;
$className = $amfbody->className;
if ($methodName == "_authenticate") {
if (method_exists($classConstruct, "_authenticate")) {
$credentials = $amfbody->getValue();
//Fix for error in _authenticate
//Pass throught the executive
$roles = Executive::doMethodCall($amfbody, $classConstruct, '_authenticate', array($credentials['userid'], $credentials['password']));
if ($roles !== '__amfphp_error' && $roles !== false && $roles !== "") {
Authenticate::login($credentials['userid'], $roles);
return false;
} else {
Authenticate::logout();
return false;
}
} else {
$ex = new AMFException(E_USER_ERROR, "The _authenticate method was not found in the " . $className . " class", __FILE__, __LINE__, "AMFPHP_AUTHENTICATE_NOT_FOUND");
AMFException::throwException($amfbody, $ex);
return false;
}
}
//else
//Check for gateway restrictions
$methodRecord = $classConstruct->methodTable[$methodName];
// create a shortcut for the ugly path
$instanceName = $GLOBALS['amfphp']['instanceName'];
if (isset($instanceName) && isset($methodRecord['instance'])) {
// see if we have an instance defined
if ($instanceName != $methodRecord['instance']) {
// if the names don't match die
$ex = new AMFException(E_USER_ERROR, "The method {" . $methodName . "} instance name does not match this gateway's instance name.", __FILE__, __LINE__, "AMFPHP_INSTANCE_NAME_MISMATCH");
AMFException::throwException($amfbody, $ex);
return false;
}
} else {
if (isset($methodRecord['instance'])) {
// see if the method has an instance defined
if ($instanceName != $methodRecord['instance']) {
// if the names don't match die
$ex = new AMFException(E_USER_ERROR, "The restricted method {" . $methodName . "} is not allowed through a non-restricted gateway.", __FILE__, __LINE__, "AMFPHP_INSTANCE_NAME_RESTRICTION");
AMFException::throwException($amfbody, $ex);
return false;
}
}
}
if (!isset($methodRecord['access']) || strtolower($methodRecord['access']) != "remote") {
// make sure we can remotely call it
$ex = new AMFException(E_USER_ERROR, "ACCESS DENIED: The method {" . $methodName . "} has not been declared a remote method.", __FILE__, __LINE__, "AMFPHP_METHOD_NOT_REMOTE");
AMFException::throwException($amfbody, $ex);
return false;
}
if (isset($methodRecord['roles']) && !Authenticate::isUserInRole($methodRecord['roles'])) {
$ex = new AMFException(E_USER_ERROR, "This user is not does not have access to {" . $methodName . "}.", __FILE__, __LINE__, "AMFPHP_AUTH_MISMATCH");
AMFException::throwException($amfbody, $ex);
return false;
}
}
return true;
}
