/** * Actual routing + sanitizing data * * @param $class * @param array $params */ public static function connect($namespace, $class, $params = array()) { $defaults = array('indexPage' => 'index', 'loginPage' => false, 'loginRedirect' => false); static::$class = strtolower($class); $class = $namespace . '\\' . $class; $params += $defaults; extract($params); // Authenticated controllers if ($loginPage) { Auth::checkLogin($loginRedirect, $loginPage); } $method = $indexPage; $parameters = array(); if (isset($_SERVER[URI_INFO])) { $url = explode('/', substr($_SERVER[URI_INFO], 1)); array_shift($url); if ($url) { foreach ($url as $key => $element) { if (!$key && !is_numeric($element)) { $method = $element; } else { $parameters[] = $element; } } } } // Check availability try { $methodInfo = new \ReflectionMethod($class, $method); // Methods that start with _ are not accesible from browser $name = $methodInfo->getName(); if ($name[0] == '_') { $method = $indexPage; } $methodParams = $methodInfo->getParameters(); // Force cast parameters by arguments default value if ($methodParams) { foreach ($methodParams as $parameterKey => $parameterValue) { try { $defaultValue = $parameterValue->getDefaultValue(); $type = gettype($defaultValue); if ($defaultValue) { unset($methodParams[$parameterKey]); } // settype($parameters[$parameterKey], $type); } catch (\Exception $e) { continue; } } } // if(count($methodParams) != count($parameters)) { // $parameters = array(); // } } catch (\Exception $e) { $method = $indexPage; } static::$method = $method; call_user_func_array($class . '::' . $method, $parameters); return; }
function signin() { $this->doNotRenderHeader = 1; Auth::checkLogin(false); if (isset($_POST['username']) && isset($_POST['password'])) { if (Auth::login($_POST['username'], $_POST['password'])) { header("Location:" . INSTALL_FOLDER . "/home"); } else { echo "invalid password"; } } }
public function home() { $this->doNotRenderHeader = 1; Auth::checkLogin(true); $model = new $this->model(); /* //if count score then if //count where answer is 0 if less goto test else if 0 goto result if($model->countrows()==QUESTION_LIMIT) { header("Location:".INSTALL_FOLDER."/result"); } if(isset($_POST["name"])) { $model->generate_name($_POST["name"]); //$model->generateAll(); header("Location:".INSTALL_FOLDER."/test"); } */ if ($model->scoreExists()) { if (!$model->zeroCount()) { header("Location:" . INSTALL_FOLDER . "/result"); echo "r"; } else { header("Location:" . INSTALL_FOLDER . "/test"); echo "t"; } } if (isset($_POST["name"]) && !empty($_POST["name"])) { setcookie("my_cookie", '3600', time() - 7200); $model->generate_name($_POST["name"]); $model->generateAll(); header("Location:" . INSTALL_FOLDER . "/test"); } }
<?php error_reporting(E_ALL); require 'vendor/autoload.php'; $auth = new Auth(); if ($auth->checkLogin()) { $route = new Route(); // Add a route and a method to map it to require 'routes.php'; $route->submit(); }
public function __construct() { parent::__construct(); Auth::checkLogin(); }
public static function __init() { Auth::checkLogin(); }
<?php require_once '../core_nufarm/libs.php'; $login = Auth::checkLogin(); echo "<pre>"; print_r(session_save_path()); echo "</pre>"; if (isset($_POST['_token'])) { if (Token::check($_POST['_token'])) { Auth::userLogin($_POST['nf_username'], $_POST['nf_password']); } } else { Token::generate(); } Token::all(); if ($login->check) { Auth::startSession(); require_once 'select.php'; } else { require_once 'login.php'; }
function test() { $this->doNotRenderHeader = 1; Auth::checkLogin(true); $model = new $this->model(); if ($model->scoreExists()) { if (isset($_POST['answer'], $_POST['qid'])) { $model->putresult($_POST['qid'], $_POST['answer']); } $zero = $model->zeroCount(); if (!isset($_POST['next']) && empty($_POST['next']) || $_POST['next'] > QUESTION_LIMIT) { $_POST['next'] = 1; $_POST['next'] = QUESTION_LIMIT - $zero + 1; /////////////////temp only if not requred to go back } ///////////////////////////////////////////////////////////////////////////////////////// $_POST['next'] = QUESTION_LIMIT - $zero + 1; /////////////////temp only if not requred to go back if ($zero != 0) { if (isset($_COOKIE["my_cookie"])) { if ($_COOKIE["my_cookie"] == 0) { //fetch quid with zero $qid = $model->qidWithZero(); for ($j = 0; $j < $zero; $j++) { $model->putresult($qid[$j]['q_id'], -1); } unset($_COOKIE['my_cookie']); setcookie('my_cookie', null, -1, '/'); setcookie('my_cookie', null, -1, '/'); header('Location: result'); } } $this->_question = $model->get_next($_POST['next'] - 1); $_SESSION["qid"] = $this->_question['id']; $this->set("question_done", QUESTION_LIMIT - $zero + 1); $this->set("question_no", $_POST['next']); $this->set("next", $_POST['next'] + 1); $this->set("question_total", QUESTION_LIMIT); $this->set("question", $this->_question['question_name']); $this->set("answer1", $this->_question['answer1']); $this->set("answer2", $this->_question['answer2']); $this->set("answer3", $this->_question['answer3']); $this->set("answer4", $this->_question['answer4']); //$this->set("value", $this->_question['answer']);//////////////////////////////////////////////////// $this->set("qid", $this->_question['id']); if ($this->_question['code']) { //$this->set("code", '<pre class="prettyprint linenum" style="text-align:left;"><code>'.$this->_question['code'].'</code></pre>'); } if ($this->_question['img']) { $this->set("image", '<img src="photo.php?id=' . $this->_question['img'] . '"class="md-card-image">'); } } else { echo "yo"; header("Location:" . INSTALL_FOLDER . "/result"); } } else { echo "yo"; header("Location:" . INSTALL_FOLDER . "/home"); } /* if(isset($_COOKIE["my_cookie"])) { if($_COOKIE["my_cookie"]==0) { $i=QUESTION_LIMIT-$model->countrows(); for($j=0;$j<$i;$j++) { echo $model->putresult(-$j,-$j); } unset($_COOKIE['my_cookie']); setcookie('my_cookie', null, -1, '/'); setcookie('my_cookie', null, -1, '/'); header('Location: result'); } } else{ $this->_valid="0"; } if(isset($_POST['answer'],$_POST['qid'])) { if($model->putresult($_POST['answer'],$_POST['qid'])) { $this->_valid="0"; } } if($model->countrows()<QUESTION_LIMIT) { if($this->_valid=="0"){ $this->_question=$model->generate_one(); $_SESSION["qid"]=$this->_question['id']; $this->_valid="1"; } else{ $this->_question=$model->generate_withid(); } $this->set("question_no", $model->countrows()+1); $this->set("question_total", QUESTION_LIMIT); $this->set("question", $this->_question['question_name']); $this->set("answer1", $this->_question['answer1']); $this->set("answer2", $this->_question['answer2']); $this->set("answer3", $this->_question['answer3']); $this->set("answer4", $this->_question['answer4']); $this->set("qid", $this->_question['id']); if($this->_question['code']){ $this->set("code", $this->_question['code']); echo $this->_question['code']; <pre class='prettyprint linenums' style='text-align:left;'><code >${{code}} </code></pre> } if($this->_question['img']){ $this->set("image", '<img src="photo.php?id='.$this->_question['img'].'"class="md-card-image">'); } }else { header('Location: result');} } public function accept(){ //update input answer api } */ }
$displayForm = true; // FORM WAS SUBMITTED if (isset($_POST['submitted'])) { // validate user input server-side (use of exceptions in order to be able to add other error checks) try { // ensure that user filled out all compulsory fields if (empty($_POST[$FIELD_EMAIL]) || empty($_POST[$FIELD_PWD])) { throw new Exception(I18n::t('login.err.notallfields')); } // prevent HTML and SQL injection $email = htmlspecialchars($_POST[$FIELD_EMAIL]); $email = DB::escapeString($email); $email = strtolower($email); $pw = $_POST[$FIELD_PWD]; // check if login data is valid and correct if (!Auth::checkLogin($email, $pw)) { throw new Exception(I18n::t('login.err.notcorrect')); } } catch (Exception $e) { $errorMessage = $e->getMessage(); } // validation is successful if (!isset($errorMessage)) { $displayForm = false; // perform the actual login $user = User::getUserByEmail($email); if (!$user || is_null($user)) { $message = I18n::t('login.err.general'); } else { // save user object to session $_SESSION['user'] = $user;
<?php //include all the files nessary include_once 'core/init.php'; include_once 'core/sanatize.php'; //intilize the object $Auth = new Auth(); if ($Auth->checkLogin() == TRUE) { header("Location: member.php"); } else { $email = sanatize($_POST['email']); $password = sanatize($_POST['password']); if ($_POST['submit']) { if ($email) { if ($password) { if ($Auth->login($email, $password) == TRUE) { echo "Success"; } else { echo "ERROR: Invalid Email or Password"; } } else { echo "Please Enter a Password"; } } else { echo "Please Enter an Email"; } } }
<?php require $_SERVER['DOCUMENT_ROOT'] . '/../ajax.inc.php'; $act = $_REQUEST['act']; $code = 0; $msg = '操作成功'; $data = array(); switch ($act) { case 'login': //验证登录 $username = $_REQUEST['username']; $password = $_REQUEST['password']; $result = Auth::checkLogin($username, $password); $code = $result['code']; $msg = $result['msg']; break; case 'logout': session_destroy(); break; default: $code = 1; $msg = '没有这个操作'; }