<?php
$objUser = new clsUser();
$objUser->getFromRequest();
if ($objUser->exists('password')) {
if ($objUser->verify()) {
$_SESSION['objUser'] = $objUser;
$objUser->setCookie();
header("Location: index.php?message=login_successful");
} else {
if ($objUser->verifyTemp()) {
$_SESSION['objUser'] = $objUser;
$objUser->setCookie();
header("Location: index.php?action=members&subaction=view&" . $objUser->getIDPair() . "&message=login_successfultemp");
} else {
header("Location: index.php?action=login&error=login_failed&" . $objUser->getValuePair('username'));
}
}
exit;
}
if ($objUser->isNew()) {
$objTemplate->setText('PAGETITLE', "Logging in");
$objBreadcrumbs->add('Login', 'index.php?action=login');
$objMiniMenu->add('Register', 'index.php?action=members&subaction=view');
if ($objUser->exists('username')) {
$objTemplate->setText('ONLOAD', "\$('" . $objUser->getFieldName('password') . "').focus();");
} else {
$objTemplate->setText('ONLOAD', "\$('" . $objUser->getFieldName('username') . "').focus();");
}
?>
<form action='<?php
<?php
require_once 'cls/clsAlbum.php';
require_once 'cls/clsGroup.php';
require_once 'cls/clsParameters.php';
require_once 'cls/clsPicture.php';
require_once 'cls/clsTemplate.php';
require_once 'cls/clsThumbnail.php';
$objAlbum = new clsAlbum();
$objAlbum->getFromRequest();
$objAlbum->load();
$objMember = new clsUser();
$objMember->getFromRequest();
$objMember->load();
$objGroup = new clsGroup();
$objGroup->getFromRequest();
$objGroup->load();
$arrSimplePermissions = array(-1 => "Don't change", 0 => "Use same permission as parent", 1 => "Public (anybody can see the album and post comments)", 2 => "Public with rating (same as Public, but users can rate pictures)", 3 => "Public with group posting (same as Public, except group members can post pictures)", 4 => "Private (only group members can see)", 5 => "Private with rating (same as Private, but users can rate pictures)", 6 => "Private with group posting (same as Private, except group members can post pictures)");
if ($strSubAction == '' && $objMember->isNew()) {
if (!$objAlbum->canView($objUser)) {
throw new Exception('exception_accessdenied');
}
/* Do they have access? */
if (!$objAlbum->canView($objUser)) {
throw new Exception('exception_accessdenied');
}
/* Are they filtering? */
if ($objUser && $objUser->get('remember_filter') && $objUser->get('filter_user')) {
header("Location: index.php?action=albums&subaction=useralbums&user_id=" . $objUser->get('filter_user'));
}
$objBreadcrumbs->add('Albums', 'index.php?action=albums');
<?php
if ($strSubAction == '') {
$objTemplate->setText('PAGETITLE', "Password Recovery");
$objBreadcrumbs->add('Password Recovery', 'index.php?action=forgotpassword');
$objRecoverUser = new clsUser();
print "<form action='index.php' method='get'>";
print "<input type='hidden' name='action' value='forgotpassword'>";
print "<input type='hidden' name='subaction' value='go'>";
print "Your account name: " . $objRecoverUser->getTextField('username') . "<br>";
print $objRecoverUser->getSubmit('Recover');
print "</form>";
}
if ($strSubAction == 'go') {
$objRecoverUser = new clsUser();
$objRecoverUser->getFromRequest();
$strResult = clsUser::attemptRecover($objRecoverUser->get('username'));
header("Location: index.php?message={$strResult}");
}
