/
login.php
53 lines (47 loc) · 1.33 KB
/
login.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
<?php
$killOverride = true;
$pageTitle = "SeaAuth - Unidentified Account";
require_once "authlib.php";
if(isValidID()) {
$conn = $altConn = null;
header('Location: index.php');
die('');
}
//Check if it's a new ip
$addr = $_SERVER['REMOTE_ADDR'];
$cmd = $conn->prepare("select userID, active from $userTable where addr = :addr");
$cmd->bindParam(":addr", $addr, PDO::PARAM_STR, 16);
$cmd->execute();
$results = $cmd->fetchAll();
if(count($results) === 0) {
//For Debugging
if(isset($_SESSION['userID'])) {
unset($_SESSION);
session_destroy();
}
//End of debugging
logEvent($conn, $logTable, "Foreign device connected $addr");
$conn = $altConn = null;
header("Location: new-user.php");
die('');
}
else if($results[0]['active'] == '0') {
header('Location: lockout.php');
die('');
}
$_SESSION['userID'] = $results[0]['userID'];
require_once "header.php";
?>
<main class="container">
<div class="page-header">
<h1>SeaAuth <small>You must login to continue</small></h1>
</div>
<form class="form" method="POST" action="validate.php">
<div class="form-group">
<label for="ccode" class="control-label">Enter SeaCode:</label>
<input type="text" class="form-control" name="ccode" id="ccode" required />
</div>
<button type="submit" class="btn btn-warning">Request Access</button>
</form>
</main>
<?php require_once "footer.php"; ?>