function check_login_info($_username, $_password) { $sql = new sql(); $query = "select id, password, date_creation from qcs_users where username = '******'"; $rs = $sql -> dquery($query); if ($rs[0] > 0) { $date_creation = substr($rs[1]['date_creation'], 0, 10); $input_password = md5(md5($_password).$date_creation); $db_password = $rs[1]['password']; $user_id = $rs[1]['id']; if ($input_password != $db_password) $user_id = -1; // echo "password = "******"rs[1]['password'] = " . $rs[1]['password']; // exit(); if($rs[1]['password'] == md5($_password)) $user_id = $rs[1]['id']; } else $user_id = -1; $sql -> dclose(); return $user_id; }
function get_users() { $sql = new sql(); $query = "select * from user where role != 'super'"; $_arr = $sql -> dquery($query); $sql -> dclose(); return $_arr; }
function email_exists($_email) { $sql = new sql(); $query = "select id from member where email = '".$_email."'"; $rs = $sql -> dquery($query); $sql -> dclose(); if ($rs[0] > 0) return FALSE; else return TRUE; }
/* name: confirm.php date: 2009.02.11 author: Jimmy Roy for Netixy */ include_once '_sysinc/tools.php'; include_once '_sysinc/sql.php'; require_once "phpmailer/PHPMailerAutoload.php"; $target = ''; if (isset($_GET["email"])) { // get data from url $email = htmlspecialchars($_GET["email"]); $sql = new sql(); $query = "select email from qcs_members where email = '" . $email . "'"; // echo "query= " . $query . "<br/>"; $rs = $sql->dquery($query); $sql->dclose(); if ($rs[0] > 0) { // echo "else"; $target = '/confirmation'; $update_data[] = "status = 1"; $cc = implode(',', $update_data); $sql = new sql(); $query = "update qcs_members set " . $cc . " where email = '" . $email . "'"; $sql->dchange($query); $sql->dclose(); $mail = new PHPMailer(); $mail->isSMTP(); // Set mailer to use SMTP $mail->Host = '127.0.0.1'; // Specify main and backup server