} $token_row = $oAuthServerTokensDAO->getByTokenAndType($_REQUEST['oauth_token'], 'request'); if (!is_array($token_row)) { echo 'error=' . urlencode('Invalid oauth token'); exit; } // $_SESSION['token'] is used to encrypt the password from web form if (!isset($_SESSION['token'])) { $_SESSION['token'] = sha1(mt_rand() . microtime(TRUE)); } if (isset($_POST['submit'])) { $user_id = $usersDAO->Validate($addslashes($_POST['form_login']), $addslashes($_POST['form_password_hidden'])); if (!$user_id) { $msg->addError('INVALID_LOGIN'); } else { if ($usersDAO->getStatus($user_id) == TR_STATUS_DISABLED) { $msg->addError('ACCOUNT_DISABLED'); } else { $oAuthServerTokensDAO->updateUserIDByToken($_REQUEST['oauth_token'], $user_id); if (isset($_REQUEST['oauth_callback'])) { if (strpos($_REQUEST['oauth_callback'], '?') > 0) { header('Location: ' . $_REQUEST['oauth_callback'] . '&oauth_token=' . $_REQUEST['oauth_token']); } else { header('Location: ' . $_REQUEST['oauth_callback'] . '?oauth_token=' . $_REQUEST['oauth_token']); } } else { echo 'User is authenticated successfully.'; } exit; } }
/************************************************************************/ // $Id$ define('AC_INCLUDE_PATH', 'include/'); require AC_INCLUDE_PATH . 'vitals.inc.php'; require_once AC_INCLUDE_PATH . 'classes/DAO/UsersDAO.class.php'; $usersDAO = new UsersDAO(); // $_SESSION['token'] is used to encrypt the password from web form if (!isset($_SESSION['token'])) { $_SESSION['token'] = sha1(mt_rand() . microtime(TRUE)); } if (isset($_POST['submit'])) { $user_id = $usersDAO->Validate($addslashes($_POST['form_login']), $addslashes($_POST['form_password_hidden'])); if (!$user_id) { $msg->addError('INVALID_LOGIN'); } else { if ($usersDAO->getStatus($user_id) == AC_STATUS_DISABLED) { $msg->addError('ACCOUNT_DISABLED'); } else { if ($usersDAO->getStatus($user_id) == AC_STATUS_UNCONFIRMED) { $msg->addError('ACCOUNT_UNCONFIRMED'); } else { $usersDAO->setLastLogin($user_id); $_SESSION['user_id'] = $user_id; $msg->addFeedback('LOGIN_SUCCESS'); header('Location: index.php'); exit; } } } } global $onload;