p_errormsg(lng('error'), lng('noadmincredentialserror'), '?step=login'); exit; } $stmt = $pdo->prepare(<<<SQL SELECT userid FROM {$pref}user WHERE username = :username AND userpassword = :password AND userisadmin = 1 SQL ); $stmt->bindValue(':username', $_POST['login-username'], PDO::PARAM_STR); $stmt->bindValue(':password', md5($_POST['login-password']), PDO::PARAM_STR); $stmt->execute(); if (!$stmt->rowCount()) { p_errormsg(lng('error'), lng('wrongadmincredentialserror'), '?step=login'); exit; } $_SESSION['authenticated'] = true; header('Location: ' . $_SERVER['PHP_SELF'] . '?step=update-select'); exit; } echo $template->render('update-login', ['about_handler' => 'install.php?step=about', 'languages' => $a_lang, 'step' => 'login']); break; } } catch (PDOException $e) { p_errormsg(lng('error'), sprintf(lng('queryerror'), '', $e->getMessage())); }
if (isset($_POST['submit'])) { $_SESSION['license-accept'] = isset($_REQUEST['license-accept']) && $_REQUEST['license-accept'] == 'true'; if (!$_SESSION['license-accept']) { p_errormsg(lng('error'), lng('licaccept'), '?step=license'); exit; } header('Location: ' . $_SERVER['PHP_SELF'] . '?step=database-credentials'); exit; } echo $template->render('install-license', ['about_handler' => 'install.php?step=about', 'accept' => $_SESSION['license-accept'], 'license' => implode('', file('../COPYING')), 'step' => 'license']); break; case 'about': echo $template->render('install-about', ['about_handler' => 'install.php?step=about']); break; case 'deny': p_errormsg(lng('denied'), lng('deniedtxt')); exit; break; case 'welcome': if (isset($_POST['submit'])) { header('Location: ' . $_SERVER['PHP_SELF'] . '?step=license'); exit; } echo $template->render('install-welcome', ['about_handler' => 'install.php?step=about', 'step' => 'welcome']); break; case 'install-language': default: if (isset($_POST['submit'])) { $_SESSION['lang'] = $_POST['lang']; header('Location: ' . $_SERVER['PHP_SELF'] . '?step=welcome'); exit;