} //If there are input validation errors, redirect back to the login form if ($errflag) { $_SESSION['errors'] = $msg_arr; session_write_close(); header("location: ../login.php"); exit; } // the actual login // this is here to avoid a notice Undefined index if (isset($_POST['rememberme'])) { $rememberme = $_POST['rememberme']; } else { $rememberme = 'off'; } if ($user->login($username, $_POST['password'], $rememberme)) { if (isset($_COOKIE['redirect'])) { $location = $_COOKIE['redirect']; } else { $location = '../experiments.php'; } header('location: ' . $location); exit; } else { // log the attempt if the login failed dblog('Warning', $_SERVER['REMOTE_ADDR'], 'Failed login attempt'); // inform the user $msg_arr[] = _("Login failed. Either you mistyped your password or your account isn't activated yet."); if (!isset($_SESSION['failed_attempt'])) { $_SESSION['failed_attempt'] = 1; } else {