$this_page = "property"; $_SESSION['role'] = ($_SESSION['role']!="1") ? $_SESSION['role'] : 6; /** Login Class**/ require_once '../PLC/plc.class.php'; if($_GET['p'] == 6 || $_GET['p'] == 5 || $_GET['logout']==1){ /** Login **/ $user = new flexibleAccess(); if ( $_GET['logout'] == 1 ){ $user->logout(); } if ( !$user->autologin()){ header("Location: ../PLC/index.php"); exit; //To ensure security }else{ $cookie = $user->read_cookie(); $_SESSION['u_id'] = $user->userData[$user->tbFields['userID']]; $_SESSION['u_name'] = $user->userData[$user->tbFields['login']]; $_SESSION['u_email'] = $user->userData[$user->tbFields['email']]; $_SESSION['role'] = $user->userData['role']; $_SESSION['property'] = $user->userData['property_id']; $_SESSION['u_time'] = date("Y-m-d H:i:s", time()); $_SESSION['u_lang'] = $user->userData['lang_id']; $_SESSION["valid_user"] = TRUE; } }
<?php require_once 'plc.class.php'; $user = new flexibleAccess(); $user->logout(); if ($_GET['form'] == 1) { if ($user->autologin()) { header("Location: {$_SESSION['forwardPage']}"); exit; //To ensure security } if (isset($_POST['user']) && isset($_POST['token'])) { $newpassword = ""; if (isset($_POST['nPass1']) && isset($_POST['nPass2'])) { if ($_POST['nPass1'] == $_POST['nPass2']) { $newpassword = substr($_POST['nPass1'], 0, 12); } else { $user->login_matchFalse(); exit; //To ensure security } } $loginAttempt = $user->login(substr($_POST['user'], 0, 30), substr($_POST['token'], 0, 12), $newpassword); if ($loginAttempt == 1) { $user->login_true(); } else { if ($loginAttempt == 0) { $user->login_false(); } else { if ($loginAttempt == 2) { $user->login_attemptFalse();