function writeData()
{
$user = new flexibleAccess();
$userID = $user->userID;
$link = $user->dbConn;
$username = $user->get_property('username');
$tweet = $_POST['tweet'];
$pic = $_FILES['picture']["tmp_name"];
$b = file_get_contents($pic);
$ext = getimagesize($pic);
$date = date("Y-m-d H:i:s");
$type = $ext["mime"];
$img_binary = mysqli_real_escape_string($link, $b);
$user->query("insert into tweets(userID, username,mention,date,picture,ext) values(" . $userID . "," . $username . ",'{$tweet}','{$date}','{$img_binary}','{$type}')");
}
require_once '../config.php';
if ($timer_generate) {
require_once '../lib/timer.class.php';
$timer = new timer();
$timer->start_timer();
}
require_once '../sys/functions.php';
require_once '../sys/functions.cms.php';
if (count($_GET) > 0 or count($_POST) > 0) {
require_once '../sys/get.control.php';
}
require_once '../lib/access.class.php';
require_once '../lib/mail.class.php';
require_once '../lib/dbsql.class.php';
$user = new flexibleAccess('', $settings);
$DB = new DB_Engine('mysql', $settings['dbHost'], $settings['dbUser'], $settings['dbPass'], $settings['dbName']);
$DB->prefix = $settings['dbPrefix'];
$DB->show_err = FALSE;
$sql = "SELECT `#__setting`.* FROM `#__setting`";
$tmp_registry = $DB->getAll($sql);
foreach ($tmp_registry as $tmp) {
$registry[$tmp['name']] = $tmp['value'];
}
if ($_GET['logout'] == 1) {
$user->logout('http://' . $_SERVER['HTTP_HOST'] . $_SERVER['PHP_SELF']);
}
if (!$user->is_loaded()) {
if (isset($_POST['uname']) && isset($_POST['pwd'])) {
if (!$user->login($_POST['uname'], $_POST['pwd'], $_POST['remember']) and $component != 'cron') {
$err = 2;
PRIMARY KEY (`userID`),
UNIQUE KEY `username` (`username`),
UNIQUE KEY `email` (`email`),
KEY `active` (`active`)
) ENGINE=MyISAM DEFAULT CHARSET=utf8;
================================================================
In this example we will automatically activate the user
IMPORTANT:
Do not use this example as is. Here we do not validate anything. In your application you should validate the data first, but you don't have to addslashes() as the class does this operation.
http://phpUserClass.com
*/
if (!empty($_POST['username'])){
//Register user:
require_once 'authClass_php5.php';
$user = new flexibleAccess();
//The logic is simple. We need to provide an associative array, where keys are the field names and values are the values :)
$data = array(
'name' => $_POST['username'],
'email' => $_POST['email'],
'password' => $_POST['pwd'],
'active' => 1
);
$userID = $user->insertUser($data);//The method returns the userID of the new user or 0 if the user is not added
if ($userID==0)
echo 'User not registered';//user is allready registered or something like that
else
echo 'User registered with user id '.$userID;
}
<?php
require_once 'access.class.php';
$user = new flexibleAccess();
$json_userID = $_POST['userID'];
$userID = json_decode($json_userID, true);
$json_tweetID = $_POST['tweetID'];
$tweetID = json_decode($json_tweetID, true);
$user->query("update tweets set favnumber=favnumber+1 where tweetID ='{$tweetID}'");
$user->query('insert into ' . $userID . '_fav_list(tweetID)values(' . $tweetID . ')');
<?php
$successURL = 'index.php';
//Where the user can go after a successful login
if ($_GET['form'] == 1) {
if (isset($_POST['nameuser'])) {
require_once 'access.class.php';
$user = new flexibleAccess();
if ($user->login($_POST['nameuser'], $_POST['passuser'], true)) {
echo '{' . 'succes: true,' . 'title: \'<strong>Login Success</strong>\', ' . 'content: \'You have authenticated successfuly<br />' . 'click <a href="' . $successURL . '">here</a> to continue\'' . '}';
} else {
echo '{' . 'succes: false,' . 'title: \'<strong>Login Failed : User and Password combination is not valid</strong>\'' . '}';
}
} else {
echo '<form name="ajaxform" id="ajaxform">
<label>Username</label>
<input type="text" name="nameuser" id="nameuser" class="textfield" value="' . $_POST['nameuser'] . '" />
<label>Password</label>
<input type="password" name="passuser" id="passuser" class="textfield" />
<input type="submit" name="submit" id="submit" class="buttonfield" value="Login" />
</form>';
}
exit;
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>ajax PHP Login with jquery</title>
<meta name="robots" content="noindex,nofollow" />
function writeForm($table = '')
{
// rather than recursively calling query, insert all rows with one query
global $general, $global_basedir, $settings;
$_SESSION['errors'] = array();
// prepare POST data for storage in database:
// $keys
// $values
if ($table) {
$keys = array();
$values = array();
$i = 1;
// prepare day offs
if ($table == 'outlets') {
$dayoffs = '';
for ($i = 1; $i <= 7; $i++) {
$field = "outlet_closeday_" . $i;
if (isset($_POST[$field])) {
$dayoffs .= $_POST[$field] . ",";
}
}
if ($dayoffs != '') {
$dayoffs = substr($dayoffs, 0, -1);
}
$keys[$i] = 'outlet_closeday';
$values[$i] = "'" . $dayoffs . "'";
$i++;
}
// prepare arrays for database query
foreach ($_POST as $key => $value) {
if ($key == 'saison_start_month' || $key == 'saison_start_day' || $key == 'saison_end_month' || $key == 'saison_end_day') {
$saison_start = $_POST['saison_start_month'] . $_POST['saison_start_day'];
$saison_end = $_POST['saison_end_month'] . $_POST['saison_end_day'];
} else {
if ($key == 'password') {
if ($value != "EdituseR") {
$keys[$i] = $key;
$dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']);
$insert = new flexibleAccess('', $dbAccess);
$password = $insert->hash_password($value);
$values[$i] = "'" . $password . "'";
}
} else {
if ($key == 'outlet_child_capacity') {
// make value always positive
$keys[$i] = $key;
$values[$i] = "'" . abs($value) . "'";
} else {
if ($key == 'outlet_child_capacity') {
// make value always positive
$keys[$i] = $key;
$values[$i] = "'" . $value . "'";
} else {
if ($key == 'role') {
if ($value < 1 || $value > 6) {
$value = 6;
}
// add role field
$keys[$i] = $key;
$values[$i] = "'" . $value . "'";
} else {
if ($key == 'contactform_color_scheme' || $key == 'contactform_background') {
// settings table correct HEX color code
$keys[$i] = $key;
$values[$i] = "'" . substr($value, 1, 8) . "'";
} else {
if ($key != "action" && $key != "email_type" && $key != "password2" && $key != "eventID" && $key != "e_datepicker" && $key != "ev_datepicker" && $key != "s_datepicker" && $key != "MAX_FILE_SIZE" && $key != "propertyID" && $key != "token" && $key != "verify" && $key != "PHPSESSID" && $key != "new" && substr($key, 0, 15) != "outlet_closeday") {
// all other 'normal fields'
$keys[$i] = $key;
$values[$i] = "'" . $value . "'";
}
}
}
}
}
}
}
$i++;
}
// END foreach $_POST
// build webform field on outlets
if ($table == 'outlets') {
$index = array_search('webform', $keys);
if (!$index) {
$keys[] = 'webform';
$values[] = 0;
}
}
// build outofill field on users
if ($table == 'plc_users') {
$index = array_search('autofill', $keys);
if (!$index) {
$keys[] = 'autofill';
$values[] = 0;
}
}
// img & logo upload
// =-=-=-=-=-=
// img upload
if ($_FILES['img']['error'][0] > 0) {
$_SESSION['errors'][] = _sorry;
} else {
if (($_FILES['img']["type"][0] == "image/gif" || $_FILES['img']["type"][0] == "image/jpeg" || $_FILES['img']["type"][0] == "image/png") && $_FILES['img']["size"][0] < 2000000) {
//$imgName = $_FILES['img_logo']['name'];
$img_type = substr($_FILES['img']["type"][0], 6);
$imgName = randomPassword(24, true, true, false) . "." . $img_type;
$uploadpath = substr(dirname(__FILE__), 0, -7);
$result = move_uploaded_file($_FILES['img']["tmp_name"][0], "../uploads/img/" . $imgName);
$keys[] = 'img_filename';
$values[] = "'" . $imgName . "'";
}
}
// logo upload
if ($_FILES['img']['error'][1] > 0) {
$_SESSION['errors'][] = _sorry;
} else {
if (($_FILES['img']["type"][1] == "image/gif" || $_FILES['img']["type"][1] == "image/jpeg" || $_FILES['img']["type"][1] == "image/png") && $_FILES['img']["size"][1] < 2000000) {
//$imgName = $_FILES['img_logo']['name'];
$img_type = substr($_FILES['img']["type"][1], 6);
$imgName = randomPassword(24, true, true, false) . "." . $img_type;
$uploadpath = substr(dirname(__FILE__), 0, -7);
$result = move_uploaded_file($_FILES['img']["tmp_name"][1], "../uploads/logo/" . $imgName);
$keys[] = 'logo_filename';
$values[] = "'" . $imgName . "'";
}
}
$_SESSION['reservation_date'] = date('Y-m-d', $reservation_date);
$_SESSION['recurring_date'] = date('Y-m-d', $recurring_date);
// outlets build start and enddate
if ($saison_start != '' && $saison_end != '') {
$keys[] = 'saison_start';
$values[] = "'" . $saison_start . "'";
$keys[] = 'saison_end';
$values[] = "'" . $saison_end . "'";
}
// =-=-=-=Store in database =-=-=-=-=-=-=-=-=-=-=-=-=-=-=
// =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
// No reservation, everything else to store
// enter into database
// =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
// number of database fields
$max_keys = count($keys);
$query = "INSERT INTO `{$table}` (" . implode(',', $keys) . ") VALUES (" . implode(',', $values) . ") ON DUPLICATE KEY UPDATE ";
// Build 'on duplicate' query
for ($i = 1; $i <= $max_keys; $i++) {
if ($keys[$i] != '') {
$query .= $keys[$i] . "=" . $values[$i] . ",";
} else {
$max_keys++;
}
}
// run sql query
$query = substr($query, 0, -1);
//DEbugging
//echo $query;
$result = query($query);
$new_id = mysql_insert_id();
// Set STANDARD settings for new property
if ($table == 'properties' && $_POST['new'] == 1) {
include 'register/standard_settings.inc.php';
}
// -----
return $new_id;
}
}
<?php
include "../pulse.config.php";
include "libs/access.class.php";
$user = new flexibleAccess();
$user->logout('login.php');
<?php
include "libs/access.class.php";
// check if already looged in
$user = new flexibleAccess();
if ($user->is_loaded()) {
echo "You're already logged in. Visit <a href='index.php'>Dashboard</a> or <a href='logout.php'>Log out</a>.";
die;
}
//login
if (isset($_POST['login_submit'])) {
if (empty($_POST['username'])) {
$error_msg .= "<li>Please enter your username</li>";
} elseif (empty($_POST['password'])) {
$error_msg .= "<li>Please enter your password</li>";
} else {
//all fields are submitted correctly
//sanitise the variables
$username = trim($_POST['username']);
$password = trim($_POST['password']);
$username = filter_var($username);
$password = filter_var($password);
//var_dump($user); die();
if ($user->login($username, $password)) {
header("location:index.php");
} else {
$error_msg = "<li>Username and password combination not found.</li>";
}
}
}
?>
<?php
require_once 'access.class.php';
$user = new flexibleAccess();
$json_userID = $_POST['userID'];
$userID = json_decode($json_userID, true);
$json_tweetID = $_POST['tweetID'];
$tweetID = json_decode($json_tweetID, true);
$user->query("update tweets set favnumber=favnumber-1 where tweetID ='{$tweetID}'");
$user->query("delete from " . $userID . "_fav_list where tweetID ='{$tweetID}'");
<?php
//error_reporting(0);
/* */
include "function.php";
$mysql_host = 'localhost';
$mysql_user = '******';
$mysql_user_pass = '';
$mysql_dbname = 'cms';
/* */
mysql_connect($mysql_host, $mysql_user, $mysql_user_pass) or die("MySQL Hata: " . mysql_error());
mysql_select_db($mysql_dbname);
@mysql_query("SET NAMES 'utf8'");
define('SITE_ADDRESS', 'http://localhost/cms/');
///////// login
$user = new flexibleAccess();
if (!isset($nonaccess)) {
if (!$user->is_loaded()) {
header('Location: ../index.php');
}
}
$ic = NULL;
$not = NULL;
$nav = NULL;
$head = NULL;
$sayi = 1;
$dir = TRUE;
$textarea = FALSE;
$imgupload = FALSE;
$date = FALSE;
$login = FALSE;
<?
/*
Basic login example with php user class
http://phpUserClass.com
*/
require_once 'access.class.php';
$user = new flexibleAccess();
if ( $_GET['logout'] == 1 )
$user->logout('http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']);
if ( !$user->is_loaded() )
{
//Login stuff:
if ( isset($_POST['uname']) && isset($_POST['pwd'])){
if ( !$user->login($_POST['uname'],$_POST['pwd'],$_POST['remember'] )){//Mention that we don't have to use addslashes as the class do the job
echo 'Wrong username and/or password';
}else{
//user is now loaded
header('Location: http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']);
}
}
echo '<h1>Login</h1>
<p><form method="post" action="'.$_SERVER['PHP_SELF'].'" />
username: <input type="text" name="uname" /><br /><br />
password: <input type="password" name="pwd" /><br /><br />
Remember me? <input type="checkbox" name="remember" value="1" /><br /><br />
<input type="submit" value="login" />
</form>
</p>';
}else{
//User is loaded
echo '<a href="'.$_SERVER['PHP_SELF'].'?logout=1">logout</a>';
<?php
session_start();
// ** set configuration
include '../config/config.general.php';
// ** login class
require_once '../PLC/plc.class.php';
$this_page = "property";
// ** LOGIN CLASS **/
$dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']);
$user = new flexibleAccess('', $dbAccess);
$cookie = $user->read_cookie();
$_SESSION['u_id'] = isset($user->userData[$user->tbFields['userID']]) ? $user->userData[$user->tbFields['userID']] : '';
$_SESSION['u_name'] = isset($user->userData[$user->tbFields['login']]) ? $user->userData[$user->tbFields['login']] : '';
$_SESSION['u_email'] = isset($user->userData[$user->tbFields['email']]) ? $user->userData[$user->tbFields['email']] : '';
$_SESSION['role'] = isset($user->userData['role']) ? $user->userData['role'] : '';
$_SESSION['role'] = isset($_SESSION['role']) ? $_SESSION['role'] : 6;
$_SESSION['property'] = isset($user->userData['property_id']) ? $user->userData['property_id'] : '';
$_SESSION['u_time'] = date("Y-m-d H:i:s", time());
$_SESSION['u_lang'] = isset($user->userData['lang_id']) ? $user->userData['lang_id'] : '';
$_SESSION["valid_user"] = TRUE;
// ** database functions
include 'classes/database.class.php';
// ** localization functions
include 'classes/local.class.php';
// ** business functions
include 'classes/business.class.php';
// ** select cuisines styles functions
include 'classes/cuisines.class.php';
// ** select country functions
include 'classes/country.class.php';
<head>
<link rel="stylesheet" type="text/css" href="SNS.css" media="all">
</head>
<body>
<?php
require_once 'access.class.php';
$user = new flexibleAccess();
if (!$user->is_loaded()) {
echo '<p id="asaa"><a href="loginpage.php">login</a></p>';
} else {
echo '<div id="contents"><form action="writedata.php" enctype="multipart/form-data" method="post"> <div>tweet:<input type="text" name="tweet"><input type="file" name="picture"></div><input type="submit" value="投稿"></form></div>';
echo '<p id="asaa"><a href="loginpage.php?logout=1">logout</a></p>';
echo '<h1 id="asa">' . $user->get_property('username') . 'としてログイン中</h1>';
}
?>
</body>
<?php
require_once 'plc.class.php';
$user = new flexibleAccess();
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Passwords</title>
<meta name="robots" content="noindex,nofollow" />
</head>
<body>
<h2>Passwords</h2>
<?php
for ($i = 0; $i < 30; $i++) {
for ($j = 0; $j < 5; $j++) {
echo "<span style='margin-right:15px;'>" . $user->ramdomPassword() . "</span><br/>";
}
echo "<br/>";
}
?>
</body>
</html>
$timer = new timer();
$timer->start_timer();
}
require_once '../sys/functions.php';
require_once '../sys/functions.cms.php';
if (count($_GET) > 0 or count($_POST) > 0) {
require_once '../sys/get.control.php';
}
require_once '../lib/access.class.php';
require_once '../lib/mail.class.php';
require_once '../lib/dbsql.class.php';
require_once '../lib/simple_html_dom.php';
require_once '../lib/dbug.class.php';
require_once '../lib/markhtml.php';
require_once '../lib/osrLogs.php';
$user = new flexibleAccess('', $settings);
$DB = new DB_Engine('mysql', $settings['dbHost'], $settings['dbUser'], $settings['dbPass'], $settings['dbName']);
$DB->prefix = $settings['dbPrefix'];
$DB->show_err = true;
if ($user->get_property('status') == 1) {
header('Location:/?logout=1');
}
$sql = "SELECT `#__setting`.* FROM `#__setting`";
$tmp_registry = $DB->getAll($sql);
foreach ($tmp_registry as $tmp) {
$registry[$tmp['name']] = $tmp['value'];
}
$LOG = new osrLogs($registry, $DB);
if (!isset($_COOKIE['showOrHide'])) {
setcookie('showOrHide', 0);
}
<?php
session_start();
//error_reporting(E_ALL & ~E_NOTICE);
//ini_set("display_errors", 1);
// ** clear all old session variables
$_SESSION = array();
$username = "";
// ** Set redirect page
$forwardPage = "../web/main_page.php?p=1";
// ** set configuration
include '../config/config.general.php';
// ** init plc login class
require_once '../PLC/plc.class.php';
$dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']);
$user = new flexibleAccess('', $dbAccess);
// ** auto checkout when going to loginpage
$user->logout();
// ** User LOGIN **
if (isset($_POST['submit'])) {
// ** init variables
$validate = true;
$username = $_POST['user'];
// ** Validate username and password
if (strlen($username) < 4) {
$message = "Username is required.";
$validate = false;
} else {
if (strlen($_POST['token']) < 4) {
$message = "Password is required.";
$validate = false;
<?
session_start();
$this_page = "property";
$_SESSION['role'] = ($_SESSION['role']!="1") ? $_SESSION['role'] : 6;
/** Login Class**/
require_once '../PLC/plc.class.php';
if($_GET['p'] == 6 || $_GET['p'] == 5 || $_GET['logout']==1){
/** Login **/
$user = new flexibleAccess();
if ( $_GET['logout'] == 1 ){
$user->logout();
}
if ( !$user->autologin()){
header("Location: ../PLC/index.php");
exit; //To ensure security
}else{
$cookie = $user->read_cookie();
$_SESSION['u_id'] = $user->userData[$user->tbFields['userID']];
$_SESSION['u_name'] = $user->userData[$user->tbFields['login']];
$_SESSION['u_email'] = $user->userData[$user->tbFields['email']];
$_SESSION['role'] = $user->userData['role'];
$_SESSION['property'] = $user->userData['property_id'];
$_SESSION['u_time'] = date("Y-m-d H:i:s", time());
$_SESSION['u_lang'] = $user->userData['lang_id'];
$_SESSION["valid_user"] = TRUE;
}
<?php
/*
Basic login example with php user class
http://phpUserClass.com
*/
$logout;
require_once 'access.class.php';
$user = new flexibleAccess();
$url = $_SERVER['HTTP_REFERER'];
if ($_GET['logout'] == 1) {
$user->logout('SNS.php');
} else {
if (!$user->is_loaded()) {
//Login stuff:
if (isset($_POST['uname']) && isset($_POST['pwd'])) {
if (!$user->login($_POST['uname'], $_POST['pwd'], $_POST['remember'])) {
//Mention that we don't have to use addslashes as the class do the job
echo 'Wrong username and/or password';
} else {
//user is now loaded
header("Location:SNS.php");
}
}
echo '<h1>Login</h1>
<p><form method="post" action="' . $_SERVER['PHP_SELF'] . '" />
username: <input type="text" name="uname" /><br /><br />
password: <input type="password" name="pwd" /><br /><br />
Remember me? <input type="checkbox" name="remember" value="1" /><br /><br />
<input type="submit" value="login" />
</form>
</p>';
require_once 'sys/get.control.php';
}
require_once 'lib/access.class.php';
require_once 'lib/mail.class.php';
require_once 'lib/dbsql.class.php';
require_once 'lib/class.get.image.php';
require_once 'lib/markhtml.php';
require_once 'lib/osrLogs.php';
require_once 'lib/Mobile_Detect.php';
require_once 'vendor/autoload.php';
$detect = new Mobile_Detect();
if ($component == 'rss') {
require_once 'lib/rss.class.php';
}
//export
$user = new flexibleAccess('', $settings);
$DB = new DB_Engine('mysql', $settings['dbHost'], $settings['dbUser'], $settings['dbPass'], $settings['dbName']);
$DB->show_err = true;
$DB->prefix = $settings['dbPrefix'];
get_registry();
get_powerstatus();
$LOG = new osrLogs($registry, $DB);
if ($_POST['export'] == 1) {
$export = 1;
include 'export.php';
}
if ($_GET['logout'] == 1) {
$user->logout('http://' . $_SERVER['HTTP_HOST'] . $_SERVER['PHP_SELF']);
}
if (!$user->is_loaded()) {
if (isset($_POST['uname']) && isset($_POST['pwd'])) {
`mention` varchar(140) NOT NULL,
`picture` mediumblob ,
`ext` varchar(15) ,
`favnumber` int(11) NOT NULL default'0'
);
================================================================
In this example we will automatically activate the user
IMPORTANT:
Do not use this example as is. Here we do not validate anything. In your application you should validate the data first, but you don't have to addslashes() as the class does this operation.
http://phpUserClass.com
*/
if (!empty($_POST['username'])) {
//Register user:
require_once 'access.class.php';
$user = new flexibleAccess();
//The logic is simple. We need to provide an associative array, where keys are the field names and values are the values :)
$data = array('username' => $_POST['username'], 'email' => $_POST['email'], 'password' => $_POST['pwd'], 'active' => 1);
$userID = $user->insertUser($data);
$sql = "CREATE TABLE " . $userID . "_fav_list(tweetID int(11) NOT NULL)";
$user->query($sql);
//The method returns the userID of the new user or 0 if the user is not added;
if ($userID == 0) {
echo 'User not registered';
} else {
echo 'User registered with user id ' . $userID;
}
}
echo '<h1>Register</h1>
<p><form method="post" action="' . $_SERVER['PHP_SELF'] . '" />
username: <input type="text" name="username" /><br /><br />
<?
/*
Basic login example with php user class
http://phpUserClass.com
*/
require_once 'authClass_php5.php';
$user = new flexibleAccess();
if ( isset($_GET['logout']) && $_GET['logout'] == 1 )
$user->logout('http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']);
if ( !$user->is_loaded() )//если нет userID, т.е. в конструкторе не определили, проверяем введенные данные, если ошибка - редирект на себя
{
//Login stuff:
if ( isset($_POST['uname']) && isset($_POST['pwd'])){//если есть и логин и пароль
if ( !$user->login($_POST['uname'],$_POST['pwd'],$_POST['remember'] )){//если login класса = ложь, сообщаем
//Mention that we don't have to use addslashes as the class do the job
echo 'Wrong username and/or password';
}else{ //если login класса = истина, редирект
echo "Да,вот так вот";
//user is now loaded
header('Location: http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']);
}
}
echo '<h1>Login</h1>
<p><form method="post" action="'.$_SERVER['PHP_SELF'].'" >
username: <input type="text" name="uname" ><br><br >
password: <input type="password" name="pwd" ><br ><br >
Remember me? <input type="checkbox" name="remember" value="1" ><br ><br >
<input type="submit" value="login" >
</form>
</p>';
die();
<?php
include 'config/config.php';
require_once $_SERVER['DOCUMENT_ROOT'] . '/lib/access.class.php';
$user = new flexibleAccess('', $settings);
if (USE_ACCESS_KEYS == TRUE) {
if (!in_array($_GET['akey'], $access_keys) || empty($access_keys) || !$user->is_loaded()) {
die('Access Denied!');
}
$_GET['akey'] = strip_tags(preg_replace("/[^a-zA-Z0-9\\._-]/", '', $_GET['akey']));
if (!in_array($_GET['akey'], $access_keys) || !$user->is_loaded()) {
die('Access Denied!');
}
}
if ($user->get_property('upload_img') != 1) {
die('თქვენ არ გაქვთ წვდომა ფოტოებთან. დამატებითი ინფორმაციისთვის მიმართეთ ვებ-გვერდის ადმინისტრაციას.');
}
$_SESSION['RF']["verify"] = "RESPONSIVEfilemanager";
if (isset($_POST['submit'])) {
include 'upload.php';
} else {
include 'include/utils.php';
if (isset($_GET['fldr']) && !empty($_GET['fldr']) && strpos($_GET['fldr'], '../') === FALSE && strpos($_GET['fldr'], './') === FALSE) {
$subdir = urldecode(trim(strip_tags($_GET['fldr']), "/") . "/");
} else {
$subdir = '';
}
if ($subdir == "") {
if (!empty($_COOKIE['last_position']) && strpos($_COOKIE['last_position'], '.') === FALSE) {
$subdir = trim($_COOKIE['last_position']);
}
<div id="main">
<div id="header">
<ul id="head">
<li id="contribution">
<a href="submit.php">投稿ページ</a>
</li>
<?php
require_once 'access.class.php';
$user = new flexibleAccess();
if (!$user->is_loaded()) {
echo '<p>ログインするかユーザ登録をしてください</p>';
echo '<li id="user_statue"><a href="loginpage.php">login</a></li></ul></div>';
} else {
//User is loaded
echo '<li id="user_statue"><a href="loginpage.php?logout=1">logout</a></li>';
echo '<li id="user_statue2">' . $user->get_property('username') . '</li></ul></div>';
echo '<div id="tweet"><ul id="tweets">';
$userID = $user->get_property('userID');
$readtweet = $user->query("select * from tweets");
while ($data = mysqli_fetch_array($readtweet)) {
$img = base64_encode($data[5]);
echo '<li id="parent"><p id="username"> ' . $data[2] . ' </p> <p id="date"> ' . $data[3] . '</p><p id="mention"> ' . $data[4] . '</p>';
if (!empty($data[6])) {
echo '<div id="picture"><img src="data:/' . $data[6] . ';base64,' . $img . '" /></div>';
$keys[] = 'reservation_date';
$values[] = "'" . $_SESSION['selectedDate'] . "'";
$_SESSION['errors'] = array();
// prepare POST data for storage in database:
// $keys
// $values
$keys = array();
$values = array();
$i = 2;
// prepare arrays for database query
foreach ($_POST as $key => $value) {
if ($key == 'password') {
if ($value != "EdituseR") {
$keys[$i] = $key;
$dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']);
$insert = new flexibleAccess('', $dbAccess);
$password = $insert->hash_password($value);
$values[$i] = "'" . $password . "'";
}
} else {
if ($key != "action" && $key != "email_type" && $key != "recurring_date" && $key != "recurring_dbdate" && $key != "password2" && $key != "eventID" && $key != "s_datepicker" && $key != "MAX_FILE_SIZE" && $key != "propertyID" && $key != "old_outlet_id" && $key != "token" && $key != "recurring_span" && $key != "reservation_bookingnumber" && $key != "limit_password" && $key != "verify") {
$keys[$i] = $key;
$values[$i] = "'" . $value . "'";
}
}
// remember some values
if ($key == "reservation_date") {
$reservation_date = $value;
$recurring_date = $reservation_date;
} else {
if ($key == "recurring_dbdate") {
KEY `active` (`active`)
) ENGINE=MyISAM DEFAULT CHARSET=utf8;
================================================================
IMPORTANT:
Do not use this example as is. Here we do not validate anything. In your application you should validate the data first, but you don't have to addslashes() as the class does this operation.
http://phpUserClass.com
http://www.webdigity.com
*/
$settings = array(
'dbName'=>'accessuserclass',
'dbUser'=>'root',
'dbPass'=>''
);
require_once 'access.class.php';
$user = new flexibleAccess();
if (!empty($_GET['activate'])){
//This is the actual activation. User got the email and clicked on the special link we gave him/her
$hash = $user->escape($_GET['activate']);
$res = $user->query("SELECT `{$user->tbFields['active']}` FROM `{$user->dbTable}` WHERE `activationHash` = '$hash' LIMIT 1",__LINE__);
if ( $rec = mysql_fetch_array($res) ){
if ( $rec[0] == 1 )
echo 'Your account is already activated';
else{
//Activate the account:
if ($user->query("UPDATE `{$user->dbTable}` SET `{$user->tbFields['active']}` = 1 WHERE `activationHash` = '$hash' LIMIT 1", __LINE__))
echo 'Account activated. You may login now';
else
echo 'Unexpected error. Please contact an administrator';
}
<?php
require_once 'plc.class.php';
$user = new flexibleAccess();
$user->logout();
if ($_GET['form'] == 1) {
if ($user->autologin()) {
header("Location: {$_SESSION['forwardPage']}");
exit;
//To ensure security
}
if (isset($_POST['user']) && isset($_POST['token'])) {
$newpassword = "";
if (isset($_POST['nPass1']) && isset($_POST['nPass2'])) {
if ($_POST['nPass1'] == $_POST['nPass2']) {
$newpassword = substr($_POST['nPass1'], 0, 12);
} else {
$user->login_matchFalse();
exit;
//To ensure security
}
}
$loginAttempt = $user->login(substr($_POST['user'], 0, 30), substr($_POST['token'], 0, 12), $newpassword);
if ($loginAttempt == 1) {
$user->login_true();
} else {
if ($loginAttempt == 0) {
$user->login_false();
} else {
if ($loginAttempt == 2) {
$user->login_attemptFalse();
