}
//If there are input validation errors, redirect back to the login form
if ($errflag) {
$_SESSION['errors'] = $msg_arr;
session_write_close();
header("location: ../login.php");
exit;
}
// the actual login
// this is here to avoid a notice Undefined index
if (isset($_POST['rememberme'])) {
$rememberme = $_POST['rememberme'];
} else {
$rememberme = 'off';
}
if ($user->login($username, $_POST['password'], $rememberme)) {
if (isset($_COOKIE['redirect'])) {
$location = $_COOKIE['redirect'];
} else {
$location = '../experiments.php';
}
header('location: ' . $location);
exit;
} else {
// log the attempt if the login failed
dblog('Warning', $_SERVER['REMOTE_ADDR'], 'Failed login attempt');
// inform the user
$msg_arr[] = _("Login failed. Either you mistyped your password or your account isn't activated yet.");
if (!isset($_SESSION['failed_attempt'])) {
$_SESSION['failed_attempt'] = 1;
} else {
