$db->connect($DbHost, $DbUser, $DbPassword, $DbDatabase, $DBPrefix); } $system = new global_class(); $template = new template(); $user = new user(); set_error_handler('WeBidErrorHandler', $error_reporting); include $include_path . 'messages.inc.php'; // add auction types $system->SETTINGS['auction_types'] = array(1 => $MSG['1021'], 2 => $MSG['1020']); // Atuomatically login user is necessary "Remember me" option if (!$user->logged_in && isset($_COOKIE['WEBID_RM_ID'])) { $query = "SELECT userid FROM " . $DBPrefix . "rememberme WHERE hashkey = :RM_ID"; $params = array(); $params[] = array(':RM_ID', alphanumeric($_COOKIE['WEBID_RM_ID']), 'str'); $db->query($query, $params); if ($db->numrows() > 0) { // generate a random unguessable token $_SESSION['csrftoken'] = md5(uniqid(rand(), true)); $id = $db->result('userid'); $query = "SELECT hash, password FROM " . $DBPrefix . "users WHERE id = :user_id"; $params = array(); $params[] = array(':user_id', $id, 'int'); $db->query($query, $params); $password = $db->result('password'); $_SESSION['WEBID_LOGGED_IN'] = $id; $_SESSION['WEBID_LOGGED_NUMBER'] = strspn($password, $db->result('hash')); $_SESSION['WEBID_LOGGED_PASS'] = $password; } } if ($user->logged_in) { $system->tdiff = ($user->user_data['timecorrection'] + date('I')) * 3600;