function userIsLoggedIn()
{
if (isset($_POST['action']) and $_POST['action'] == 'login') {
if (!isset($_POST['userlogin']) or $_POST['userlogin'] == '' or !isset($_POST['password']) or $_POST['password'] == '') {
$GLOBALS['loginError'] = 'Oba pola muszą zostać wypełnione';
return FALSE;
}
$password = md5($_POST['password'] . 'voapp');
if (databaseContainsAuthor($_POST['userlogin'], $password)) {
session_start();
$_SESSION['loggedIn'] = TRUE;
$_SESSION['userid'] = $GLOBALS['userID'];
$_SESSION['userlogin'] = $_POST['userlogin'];
$_SESSION['password'] = $password;
include $_SERVER['DOCUMENT_ROOT'] . '/voteonline/include/db.inc.php';
try {
$sql = 'INSERT INTO adminlog SET inituserinfo = :inituser, action = :action, actiondate = NOW()';
$s = $pdo->prepare($sql);
$s->bindValue(':inituser', $_SESSION['userlogin']);
$s->bindValue(':action', 'Logowanie do aplikacji z IP:' . $_SERVER['REMOTE_ADDR']);
$s->execute();
} catch (PDOException $e) {
$error = 'Błąd przy aktualizacji danych użytkownika.' . $e->getMessage();
include $_SERVER['DOCUMENT_ROOT'] . '/voteonline/templates/error.html.php';
exit;
}
return TRUE;
} else {
session_start();
unset($_SESSION['loggedIn']);
unset($_SESSION['userid']);
unset($_SESSION['userlogin']);
unset($_SESSION['password']);
$GLOBALS['loginError'] = 'Login lub hasło są niepoprawne.';
return FALSE;
}
}
if (isset($_POST['action']) and $_POST['action'] == 'logout') {
session_start();
unset($_SESSION['loggedIn']);
unset($_SESSION['userlogin']);
unset($_SESSION['password']);
header('Location: ' . $_POST['goto']);
exit;
}
session_start();
if (isset($_SESSION['loggedIn'])) {
return databaseContainsAuthor($_SESSION['userlogin'], $_SESSION['password']);
}
}
function userIsLoggedIn(&$loginError = '')
{
if (isset($_POST['action']) and $_POST['action'] == 'login') {
if (!isset($_POST['name']) or $_POST['name'] == '' or !isset($_POST['password']) or $_POST['password'] == '') {
$loginError = 'Пожалуйста заполните оба поля!';
return FALSE;
}
$password = md5($_POST['password'] . $_POST['name']);
if (databaseContainsAuthor($_POST['name'], $password)) {
session_start();
$_SESSION['loggedIn'] = TRUE;
$_SESSION['name'] = $_POST['name'];
$_SESSION['password'] = $password;
return TRUE;
} else {
session_start();
unset($_SESSION['loggedIn']);
unset($_SESSION['name']);
unset($_SESSION['password']);
unset($_SESSION['user_id']);
unset($_SESSION['privelege']);
$loginError = 'Неверное имя пользователя или пароль.';
return FALSE;
}
}
if (isset($_POST['action']) and $_POST['action'] == 'logout') {
session_start();
unset($_SESSION['loggedIn']);
unset($_SESSION['name']);
unset($_SESSION['password']);
unset($_SESSION['user_id']);
unset($_SESSION['privelege']);
header('Location: /index.php');
exit;
}
session_start();
if (isset($_SESSION['loggedIn'])) {
return databaseContainsAuthor($_SESSION['name'], $_SESSION['password']);
}
return FALSE;
}
function userIsLoggedIn()
{
if (isset($_POST['action']) and $_POST['action'] == 'login') {
if (!isset($_POST['email']) or $_POST['email'] == '' or !isset($_POST['password']) or $_POST['password'] == '') {
$GLOBALS['loginError'] = 'Please fill in both fields';
return FALSE;
}
$password = md5($_POST['password'] . 'ijdb');
if (databaseContainsAuthor($_POST['email'], $password)) {
session_start();
$_SESSION['loggedIn'] = TRUE;
$_SESSION['email'] = $_POST['email'];
$_SESSION['password'] = $password;
return TRUE;
} else {
session_start();
unset($_SESSION['loggedIn']);
unset($_SESSION['email']);
unset($_SESSION['password']);
$GLOBALS['loginError'] = 'The specified email address or password was incorrect.';
return FALSE;
}
}
if (isset($_POST['action']) and $_POST['action'] == 'logout') {
session_start();
unset($_SESSION['loggedIn']);
unset($_SESSION['email']);
unset($_SESSION['password']);
header('Location: ' . $_POST['goto']);
exit;
}
session_start();
if (isset($_SESSION['loggedIn'])) {
return databaseContainsAuthor($_SESSION['email'], $_SESSION['password']);
}
}
