die(header('Location: ?q=vm')); } $status = ''; $emailAddress = $form->post('emailAddress', '', 'strtolower'); $password = $form->post('password'); // Proceed log in whenever valid email address and password provided if ($form->isPost() && isValidEmail($emailAddress) && !empty($password)) { $db->connect(); // Get user information by email address $rows = $db->select('user', '*', 'email_address=\'' . $db->escape($emailAddress) . '\''); if ($db->affectedRows() == 1) { foreach ($rows[0] as $key => $value) { $user[$key] = $value; } // Validate password by MD5 hash if (hashed($password) == $user['password']) { // Enable log in session if user is active if ($user['is_active']) { // Reset log in attempt $db->update('user', 'login_attempt=0', 'user_id=\'' . $db->escape($user['user_id']) . '\''); if ($user['is_admin']) { $_SESSION['admin_id'] = $user['user_id']; } $_SESSION['user_id'] = $user['user_id']; $_SESSION['name'] = $user['name']; $_SESSION['language'] = $user['language']; $_SESSION['status'] = json_encode(array('vm' => '')); die(header('Location: ?q=vm')); } // Account disabled $status = '<p class="red">' . YOUR_ACCOUNT_HAS_BEEN_DISABLED . '</p>';
COLLATE=\'utf8_bin\' ENGINE=MyISAM;'; if (defined('UPGRADE')) { $sql = 'ALTER TABLE `vm` ADD COLUMN `vz_id` INT(10) NOT NULL DEFAULT \'0\' AFTER `vm_id`, ADD INDEX `idx_vz_id` (`vz_id`); ALTER TABLE `user` ADD INDEX `idx_name` (`name`), ADD INDEX `idx_language` (`language`), ADD INDEX `idx_date_created` (`date_created`);'; } $db->executeSQL($sql); // Create administrator if (!defined('UPGRADE')) { $db->insert('user', array('is_admin' => 1, 'is_active' => 1, 'name' => $_SESSION['name'], 'email_address' => $_SESSION['email_address'], 'password' => hashed($_SESSION['password']), 'language' => $_SESSION['language'], 'date_created' => date('Y-m-d H:i:s'))); } $configurations = '<?php define(\'INSTALLED\', 1); define(\'SVMC_VERSION\', \'' . $version . '\'); $config[\'dbHost\'] = \'' . $data->dbHost . '\'; $config[\'dbUser\'] = \'' . $data->dbUser . '\'; $config[\'dbPass\'] = \'' . $data->dbPass . '\'; $config[\'dbName\'] = \'' . $data->dbName . '\'; $config[\'language\'] = \'' . $_SESSION['language'] . '\'; ?>'; file_put_contents(ROOT . 'configuration.php', $configurations); if (defined('UPGRADE')) { $out .= '<h1>' . UPGRADE_COMPLETED . '</h1>
} if ($password) { if (!preg_match('/^[0-9a-zA-Z!@#\\$%\\^&*\\(\\)<>:;\\-_=\\+]{6,20}$/', $password)) { $status .= '<p class="red">' . PASSWORD_MUST_CONTAIN_ONLY_ALPHANUMERIC_CHARACTERS . '</p>'; } if ($password != $confirmPassword) { $status .= '<p class="red">' . CONFIRM_PASSWORD_IS_NOT_MATCHED . '</p>'; } } if (!in_array($language, array_keys($languages))) { $status .= '<p class="red">' . INVALID_LANGUAGE_SELECTED . '</p>'; } if (!$status) { $data['name'] = $name; if ($password) { $data['password'] = hashed($password); } if (isset($_SESSION['admin_id'])) { $data['email_address'] = $emailAddress; } $data['language'] = $language; if (!defined('DEMO')) { $db->update('user', $data, 'user_id=\'' . $db->escape($_SESSION['user_id']) . '\''); $_SESSION['name'] = $name; $_SESSION['language'] = $language; } $status .= '<p class="green">' . SETTINGS_IS_UPDATED . '</p>'; } } $title = SETTINGS; include INCLUDES . 'header.php';