/** * Check if user is authorized * * @access public * @static * @return boolean Returns TRUE if authorized and FALSE otherwise */ public static function is_authorized() { if (isset($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW'])) { $user = new User_Model(); if ($user->login($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW'])) { return true; } else { return false; } } else { return false; } }
public function action_login($request) { $username = $request->get("username"); $password = $request->get("password"); if (empty($username) || empty($password)) { DKY_Output::raiseMessage("Email and Password are required.", DKY_MSG_ERROR); DKY_HTTP::redirect("/"); } $UserModel = new User_Model(); $aUser = $UserModel->login($username, $password); if (!empty($aUser["user_id"])) { $_SESSION["user_id"] = $aUser["user_id"]; $_SESSION["username"] = $aUser["username"]; $_SESSION["aGroupId"] = implode(",", $UserModel->getUserGroupIds($aUser["user_id"])); DKY_Output::raiseMessage("You are now logged in as " . $aUser["username"] . ".", DKY_MSG_SUCCESS); } else { DKY_Output::raiseMessage("Email or Password incorrect.", DKY_MSG_ERROR); } DKY_HTTP::redirect("/"); }