function userIsLoggedIn() { if (isset($_POST['action']) and $_POST['action'] == 'login') { if (!isset($_POST['userlogin']) or $_POST['userlogin'] == '' or !isset($_POST['password']) or $_POST['password'] == '') { $GLOBALS['loginError'] = 'Oba pola muszą zostać wypełnione'; return FALSE; } $password = md5($_POST['password'] . 'voapp'); if (databaseContainsAuthor($_POST['userlogin'], $password)) { session_start(); $_SESSION['loggedIn'] = TRUE; $_SESSION['userid'] = $GLOBALS['userID']; $_SESSION['userlogin'] = $_POST['userlogin']; $_SESSION['password'] = $password; include $_SERVER['DOCUMENT_ROOT'] . '/voteonline/include/db.inc.php'; try { $sql = 'INSERT INTO adminlog SET inituserinfo = :inituser, action = :action, actiondate = NOW()'; $s = $pdo->prepare($sql); $s->bindValue(':inituser', $_SESSION['userlogin']); $s->bindValue(':action', 'Logowanie do aplikacji z IP:' . $_SERVER['REMOTE_ADDR']); $s->execute(); } catch (PDOException $e) { $error = 'Błąd przy aktualizacji danych użytkownika.' . $e->getMessage(); include $_SERVER['DOCUMENT_ROOT'] . '/voteonline/templates/error.html.php'; exit; } return TRUE; } else { session_start(); unset($_SESSION['loggedIn']); unset($_SESSION['userid']); unset($_SESSION['userlogin']); unset($_SESSION['password']); $GLOBALS['loginError'] = 'Login lub hasło są niepoprawne.'; return FALSE; } } if (isset($_POST['action']) and $_POST['action'] == 'logout') { session_start(); unset($_SESSION['loggedIn']); unset($_SESSION['userlogin']); unset($_SESSION['password']); header('Location: ' . $_POST['goto']); exit; } session_start(); if (isset($_SESSION['loggedIn'])) { return databaseContainsAuthor($_SESSION['userlogin'], $_SESSION['password']); } }
function userIsLoggedIn(&$loginError = '') { if (isset($_POST['action']) and $_POST['action'] == 'login') { if (!isset($_POST['name']) or $_POST['name'] == '' or !isset($_POST['password']) or $_POST['password'] == '') { $loginError = 'Пожалуйста заполните оба поля!'; return FALSE; } $password = md5($_POST['password'] . $_POST['name']); if (databaseContainsAuthor($_POST['name'], $password)) { session_start(); $_SESSION['loggedIn'] = TRUE; $_SESSION['name'] = $_POST['name']; $_SESSION['password'] = $password; return TRUE; } else { session_start(); unset($_SESSION['loggedIn']); unset($_SESSION['name']); unset($_SESSION['password']); unset($_SESSION['user_id']); unset($_SESSION['privelege']); $loginError = 'Неверное имя пользователя или пароль.'; return FALSE; } } if (isset($_POST['action']) and $_POST['action'] == 'logout') { session_start(); unset($_SESSION['loggedIn']); unset($_SESSION['name']); unset($_SESSION['password']); unset($_SESSION['user_id']); unset($_SESSION['privelege']); header('Location: /index.php'); exit; } session_start(); if (isset($_SESSION['loggedIn'])) { return databaseContainsAuthor($_SESSION['name'], $_SESSION['password']); } return FALSE; }
function userIsLoggedIn() { if (isset($_POST['action']) and $_POST['action'] == 'login') { if (!isset($_POST['email']) or $_POST['email'] == '' or !isset($_POST['password']) or $_POST['password'] == '') { $GLOBALS['loginError'] = 'Please fill in both fields'; return FALSE; } $password = md5($_POST['password'] . 'ijdb'); if (databaseContainsAuthor($_POST['email'], $password)) { session_start(); $_SESSION['loggedIn'] = TRUE; $_SESSION['email'] = $_POST['email']; $_SESSION['password'] = $password; return TRUE; } else { session_start(); unset($_SESSION['loggedIn']); unset($_SESSION['email']); unset($_SESSION['password']); $GLOBALS['loginError'] = 'The specified email address or password was incorrect.'; return FALSE; } } if (isset($_POST['action']) and $_POST['action'] == 'logout') { session_start(); unset($_SESSION['loggedIn']); unset($_SESSION['email']); unset($_SESSION['password']); header('Location: ' . $_POST['goto']); exit; } session_start(); if (isset($_SESSION['loggedIn'])) { return databaseContainsAuthor($_SESSION['email'], $_SESSION['password']); } }