function userLogIn($username = "", $password = "", $remember = false) { global $database_cfg; if (isset($_COOKIE["tmcms_" . $database_cfg["prefix"] . "remember"])) { $user = userGetById($_COOKIE["tmcms_" . $database_cfg["prefix"] . "remember"]); if (userExistsById($user["id"])) { $_SESSION["tmcms_" . $database_cfg["prefix"] . "user_id"] = intval($user["id"]); $_SESSION["tmcms_" . $database_cfg["prefix"] . "user_nickname"] = stringDecode($user["nickname"]); databaseQuery("update " . $database_cfg["prefix"] . "users set last_visit='" . stringEncode(date("H:i, d.m.Y")) . "' where id='" . intval($user["id"]) . "'"); setcookie("tmcms_" . $database_cfg["prefix"] . "remember", $user["id"], time() + 31104000, '/'); return; } } $user = userGetByName($username); if ($user["password"] != md5(stringEncode($password))) { return array("Wrong password"); } if (is_array($user) && isset($user["id"]) && userExistsById($user["id"])) { $_SESSION["tmcms_" . $database_cfg["prefix"] . "user_id"] = intval($user["id"]); $_SESSION["tmcms_" . $database_cfg["prefix"] . "user_nickname"] = stringDecode($user["nickname"]); } else { return array("User doesn't exist"); } if ($remember == true) { setcookie("tmcms_" . $database_cfg["prefix"] . "remember", $user["id"], time() + 31104000, '/'); } }
if (count($topics) > 0) { echo "<p class=\"item_top\">User's topics:</p>"; foreach ($topics as $i) { if (!topicCheckPrivate($i["id"])) { echo "<a href=\"index.php?topic_id=" . $i["id"] . "\">" . stringDecode($i["title"]) . "</a><br />"; } } } } else { echo "<b>Error:</b> user not found"; } } else { $topics = topicGetByIdRange(-1, 0, 5); for ($i = 0; $i < count($topics); $i++) { if (!topicCheckPrivate($topics[$i]["id"]) || topicCheckReader($topics[$i]["id"], $user["id"])) { echo "<a href=\"index.php?topic_id=" . intval($topics[$i]["id"]) . "\">" . stringDecode($topics[$i]["title"]) . "</a> <br />"; } } $user = userGetLoggedIn(); if (userExistsById($user["id"])) { echo "<br /><br />"; echo "<p class=\"item_top\">Create new topic</p>"; echo "<form action=\"index.php?newtopic\" method=\"post\">"; echo "Title:<br /><input type=\"text\" name=\"title\" /><br />"; echo "Message:<br /><textarea name=\"message\"></textarea><br />"; echo "<input type=\"submit\" value=\"create\" />"; echo "</form>"; echo "<br /><br />"; } } }