if (strlen($username) < 4) {
$message = "Username is required.";
$validate = false;
} else {
if (strlen($_POST['token']) < 4) {
$message = "Password is required.";
$validate = false;
}
}
// ** Check if user wants to change the password
$newpassword = "";
if (isset($_POST['nPass1']) && isset($_POST['nPass2'])) {
if ($_POST['nPass1'] == $_POST['nPass2']) {
$newpassword = substr($_POST['nPass1'], 0, 12);
} else {
$user->login_matchFalse();
exit;
//To ensure security
}
}
// ** User LOGIN process if $validate is true
if ($validate) {
$loginAttempt = $user->login(substr($_POST['user'], 0, 30), substr($_POST['token'], 0, 12), $newpassword);
if ($loginAttempt == 1) {
$message = "Login Success.";
header("Location: " . $forwardPage);
exit;
//To ensure security
} else {
if ($loginAttempt == 0) {
$l = 1 + $user->loginAttempts - $user->fAtmp;
