Exemplo n.º 1
0
 static function isAdminOrDie($init)
 {
     if ($init->user->isLogged && ($init->user->role == ROLE_ADMIN || $init->user->role == ROLE_ADMIN_MODERATOR)) {
         return true;
     } else {
         App::$instance->log->logWrite(LOG_SECURITY, "Restricted access: Try to enter admin only allowed zone");
         ST::routeToErrorPage('only-admin');
         exit;
     }
 }
Exemplo n.º 2
0
 static function checkToken()
 {
     return true;
     if (!isset($_SESSION['token']) || is_null($_SESSION['token']) || is_null(Request::createFromGlobals()->get('csrf_token'))) {
         throw new RuntimeException("Bad Token initialization");
     }
     $flag = false;
     foreach ($_SESSION['token'] as $key => $token) {
         if ($token === Request::createFromGlobals()->get('csrf_token')) {
             $flag = true;
             //drop this token
             unset($_SESSION['token'][$key]);
         }
     }
     if ($flag) {
         return true;
     } else {
         ST::routeToErrorPage('bad-token');
     }
 }
Exemplo n.º 3
0
<?php

ST::deployTemplate('heads/ui_timepicker.inc');
$init = App::get_instance();
RenderEngine::MenuChanger();
if (!isset($valid) || !$valid) {
    ST::routeToErrorPage('500');
}
?>
<!--<script>-->
<!--    $(document).ready(function () {-->
<!--        requiredCapcha("#submit");-->
<!--    })-->
<!--</script>-->

<div class='container'>
    <div class=' col-md-offset-2 col-md-8 block-border-shadow'>
        <div class='col-md-offset-3 col-md-9'>

            <form class='form-horizontal' id="form1" method='post'
                  action="<?php 
echo ST::route("AuthNew/processResetPwd/" . $user->id);
?>
">
                <div class='form-group'>
                    <h4>Введите новый пароль для учетной записи <br><?php 
echo $user->login;
?>
</h4>
                    <hr>
                </div>
 public static function makeStackName($stackType = STACK_SINGLE)
 {
     Auth::isLoggedOrDie(App::$instance);
     $result = '';
     try {
         $result = sha1($stackType . date_create()->format("Y-m-d") . App::$instance->user->login . App::$instance->main->appkey);
     } catch (Exception $e) {
         ST::routeToErrorPage('500');
     }
     return $result;
 }