function User() { session_defaults(); $this->xmlrpc = new XML_RPC_Client('/RPCSERVER', $_SESSION["host"], $_SESSION["port"]); $this->date = gmdate("'Y-m-d'"); if (!$_SESSION['logged']) { $this->checkSession(); } elseif (isset($_COOKIE['mtwebLogin'])) { } //echo "ERR<br>\n"; }
function check_my_login() { global $loginfailed; global $loggedin; global $AUTHUSERS; global $AUTHTOKEN; global $username; if (!empty($_SESSION['username'])) { $cUser = $_SESSION['username']; $cTime = $_SESSION['time']; $cToken = $_SESSION['token']; $lTime = date("YmdHi"); // If 2 hours have passed, log them out if ($lTime - $cTime > 120) { echo "<center>Session Expired...</center>"; session_defaults(); return; } $cHash = hash("sha256", "{$AUTHTOKEN} {$cTime} {$cUser}"); if ($cHash != $cToken) { echo "<center>Invalid token...</center>"; session_defaults(); return; } // Update the token / time $username = $cUser; $_SESSION["time"] = $lTime; $_SESSION["token"] = hash("sha256", "{$AUTHTOKEN} {$lTime} {$username}"); $loggedin = "0"; return; } // Not logged in $loggedin = "1"; if (isset($_POST['username']) and isset($_POST['password'])) { $username = $_POST['username']; $pass = $_POST['password']; $ADMINPASS = $AUTHUSERS[$username]; $ADMINUSER = $username; if ("{$pass}" == "{$ADMINPASS}" and $username == $ADMINUSER and !empty($ADMINPASS) and !empty($ADMINUSER)) { $_SESSION["username"] = "******"; $lTime = date("YmdHi"); $_SESSION["time"] = $lTime; $_SESSION["token"] = hash("sha256", "{$AUTHTOKEN} {$lTime} {$username}"); $loggedin = "0"; } else { session_defaults(); $loginfailed = 1; } } }
} if (isset($_POST['otroclub']) && $club['var'] == '-1' && $_POST['otroclub'] != '') { $otroclub['var'] = substr(htmlspecialchars($_POST['otroclub']), 0, 80); $otroclub['error'] = ""; } else { $otroclub['var'] = ""; if ($club['var'] == '-1') { $error = true; $otroclub['error'] = "*"; } } ///// FIN DEL CHEQUEO DE LA PARTE INSTIUCIONAL //Si estan todas las variables, se procede a verificar que los datos ingresados sean correctos. if ($error == false) { if ($_SESSION['logged']) { session_defaults(); } //ACA VA SQL PARA AGREGAR EL REGISTRO $user_id = mysql_real_escape_string($email['var']); if ($notemail) { $em = ""; } else { $em = mysql_real_escape_string($email['var']); } $nom = mysql_real_escape_string($nombre['var']); $ape = mysql_real_escape_string($apellido['var']); $fdc = date('c'); $fdm = date('c'); $fua = date('c'); $faa = date('c'); $cla = hash('sha512', $user_id . $clave['var'] . '1s3a3l7t');
function _logout() { session_defaults(); }
function _logout() { session_defaults(); session_write_close(); }