public function getAccessForm() { session_init(); $objSecurity = new Security(); $objSecurity->setCompany(request_var("company")); $objSecurity->setOffice(request_var("office")); $objSecurity->setUserId(request_var("uid")); $objSecurity->setForm(request_var("forma")); $page = $objSecurity->getAccessForm(); //set_session_var(VAR_MAINPAGE, "../view/{$page}.php"); set_session_var(VAR_MAINPAGE, "../controller/laboratory/controlOrder.php"); send_redirect("../view/main/master.php"); }
public function configureUser() { $_response = User::login(request_var('cmbCompany'), request_var('userId')); if (is_array($_response) && count($_response)) { session_init(); $objUser = new User(); $objUser->setId($_response["ParticipanteId"]); $objUser->setIdentification($_response["Identificacion"]); $objUser->setFirstName($_response["Nombre"]); $objUser->setLastName($_response["Apellido"]); $objUser->setFullName($_response["Nombre"] . " " . $_response["Apellido"]); $objUser->setUsername($_response["UsuarioId"]); $objUser->setCompany(request_var('cmbCompany')); $objUser->setOffice(request_var("cmbOffice")); set_session_var(VAR_USER, $objUser); send_redirect("../view/main/master.php"); } }
//print(getBadgerTranslation2('badger_login', 'wrong_password')."<br /><br />"); $Feedback .= getBadgerTranslation2('badger_login', 'wrong_password') . "<br /><br />"; } if (isset($_GET['send_password']) && $_GET['send_password'] == "true") { //print(getBadgerTranslation2('badger_login', 'ask_really_send')."<br/>"); $Feedback .= getBadgerTranslation2('badger_login', 'ask_really_send') . "<br/>"; //print("<a href=\"".$_SERVER['PHP_SELF'].$signature."send_password=truetrue\">".getBadgerTranslation2('badger_login', 'ask_really_send_link')."</a><br/>"); $Feedback .= "<a href=\"" . $_SERVER['PHP_SELF'] . $signature . "send_password=truetrue\">" . getBadgerTranslation2('badger_login', 'ask_really_send_link') . "</a><br/>"; } if (isset($_GET['send_password']) && $_GET['send_password'] == "truetrue") { //send an E-Mail with a new password to the email adress read from the user settings object $newpassword = rand(0, 16000); $newpassword = md5($newpassword); $newpassword = substr($newpassword, 0, 12); if (mail($us->getProperty('badgerPassword'), getBadgerTranslation2('badger_login', 'password_sent_mail_subject'), getBadgerTranslation2('badger_login', 'password_sent_mail_part_1') . $newpassword . getBadgerTranslation2('badger_login', 'password_sent_mail_part_2'), 'From: forgottenpassword@donotreply.com')) { //print(getBadgerTranslation2('badger_login', 'sent_password')."<br /><br />"); $Feedback .= getBadgerTranslation2('badger_login', 'sent_password') . "<br /><br />"; } else { //print(getBadgerTranslation2('badger_login', 'sent_password_failed')."<br/>"); $Feedback .= getBadgerTranslation2('badger_login', 'sent_password_failed') . "<br/>"; } } if (isset($_GET['logout']) && $_GET['logout'] == true) { //echo getBadgerTranslation2('badger_login', 'you_are_logout'); $Feedback .= getBadgerTranslation2('badger_login', 'you_are_logout'); } eval("echo \"" . $tpl->getTemplate("Login/login2") . "\";"); exit; } else { set_session_var('number_of_login_attempts', 0); }
<?php /* * ____ _____ _____ ______ _____ *| _ \ /\ | __ \ / ____| ____| __ \ *| |_) | / \ | | | | | __| |__ | |__) | *| _ < / /\ \ | | | | | |_ | __| | _ / *| |_) / ____ \| |__| | |__| | |____| | \ \ *|____/_/ \_\_____/ \_____|______|_| \_\ * Open Source Finance Management * Visit http://www.badger-finance.org * **/ //Retrieve md5´ed password from user settings $readoutpassword = $us->getProperty('badgerPassword'); $passwordcorrect = false; if (isset($_session['password']) && $readoutpassword == $_session['password']) { $passwordcorrect = true; } elseif (isset($_POST['password']) && md5(getGPC($_POST, 'password')) == $readoutpassword) { $passwordcorrect = true; //create session variable set_session_var('password', md5(getGPC($_POST, 'password'))); } if ($passwordcorrect != true) { die(getBadgerTranslation2('badger_login', 'backend_not_login')); }
public static function setMessageInfo($msg) { set_session_var(VAR_MESSAGE, new SystemMessage(INFORMATION_TYPE, $msg)); }
You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ // Initiate Badger Root constant define("BADGER_ROOT", "../.."); //Include Session Management include BADGER_ROOT . "/core/SessionManager/session.ses.php"; // If form was sent (marked with value s == 1) // then set a new session variable with the // transmitted name and value if (isset($_GET['s']) && $_GET['s'] == 1) { set_session_var($_GET['variable'], $_GET['value']); } set_session_var("agent", $_SERVER['HTTP_USER_AGENT']); ?> <b>Session Handler Tester</b><br> Sid: <?php echo $sess; ?> <br> You have been logged for <?php print get_session_length(); ?> seconds.<br> Variables:<br><?php print_r($_session); ?> <br>
<?php /* * ____ _____ _____ ______ _____ *| _ \ /\ | __ \ / ____| ____| __ \ *| |_) | / \ | | | | | __| |__ | |__) | *| _ < / /\ \ | | | | | |_ | __| | _ / *| |_) / ____ \| |__| | |__| | |____| | \ \ *|____/_/ \_\_____/ \_____|______|_| \_\ * Open Source Finance Management * Visit http://www.badger-finance.org * **/ //Retrieve md5´ed password from user settings $readoutpassword = $us->getProperty('badgerPassword'); $passwordcorrect = false; if (isset($_session['password']) && $readoutpassword == $_session['password']) { $passwordcorrect = true; } elseif (isset($_POST['password']) && md5($_POST['password']) == $readoutpassword) { $passwordcorrect = true; //create session variable set_session_var('password', md5($_POST['password'])); } if ($passwordcorrect != true) { die(getBadgerTranslation2('badger_login', 'backend_not_login')); }
/** * Generate a complex unique token and token value and store it in a session value. * * @access public * @param string $unique_name * @return string */ function generate_session_token($unique_name) { if (function_exists('hash_algos') && in_array('sha512', hash_algos())) { $token = hash('sha512', uniqid('', true)); } else { $token = ''; for ($i = 0; $i < 128; $i++) { $r = mt_rand(0, 35); $token .= chr($r < 26 ? ord('a') + $r : ord('0') + $r - 26); } } set_session_var($unique_name, $token); set_cached_token($unique_name); return $token; }