$err->errorEvent(WARNING_FAILED_LOGIN, "Failed login attempt for username" . $_POST['username']); $message = "Username / Password incorrect - contact your system adminstrator for a password reset if required"; } } else { $err = Errors::getInstance(); // note we don't include username as it may contain invalid characters $err->errorEvent(WARNING_INVALID_LOGIN, "Invalid login attempt"); $message = "Invalid login - contact your system adminstrator for a password reset if required"; } } /***if not from a post or if a failed then we give login screen***/ // show expired message if ($message == '' && isset($_GET['status']) && $_GET['status'] == '-2') { $message = "Login expired"; } // default is to go to index page $goto = 'aindex'; // do we have a valid alternative to go to if (isset($_POST['location']) && $auth->securityCheck('location', $_POST['location'], $locations)) { $goto = $_POST['location']; } elseif (isset($_GET['location']) && $auth->securityCheck('location', $_GET['location'], $locations)) { $goto = $_GET['location']; } // header template $templates->includeTemplate('header', 'admin'); print "<h1>Adminstration Login</h1>"; // Error message if appropriate print "<p class=\"" . CSS_CLASS_MESSAGE . "\">{$message}</p>\n"; $auth->loginForm(ADMIN_LOGIN_FILE, $goto); // footer template $templates->includeTemplate('footer', 'admin');