<?php include "includes/header.php"; ?> <?php include_once 'includes/connection.php'; ?> <?php //Start the session session_start(); //Require the class require 'formkey.class.php'; //Start the class $formKey = new formKey(); $error = 'No error'; //Is request? if ($_SERVER['REQUEST_METHOD'] == 'post') { //Validate the form key if (!isset($_POST['form_key']) || !$formKey->validate()) { //Form key is invalid, show an error $error = 'Form key error!'; } else { //Do the rest of your validation here $error = 'No form key error!'; } } ?>
<?php session_start(); define('ROOT', dirname(__FILE__) . '/'); require ROOT . 'includes/config.php'; require ROOT . 'classes/formKey.class.php'; $formKey = new formKey(); require ROOT . 'classes/pexinator.class.php'; $pexinator = new pexinator($settings['mysql']['host'], $settings['mysql']['username'], $settings['mysql']['password'], $settings['mysql']['database']); require ROOT . 'classes/server.class.php'; $server = new server($pexinator->getSetting('wsAddress'), $pexinator->getSetting('wsPassword')); require ROOT . 'includes/check_loggin.php'; if (isset($_POST['submit']) && $logged_in) { $source = $_POST['source']; if ($source == 'fromPlayerRemove' || $source == 'fromGroupRemove') { if (!isset($_POST['form_key']) || !$formKey->validate()) { die('A problem was detected, please press back and refresh your browser.'); } } switch ($source) { default: die('<h1>Not Authorized Foo!</h1><img src="http://i.imgur.com/iEGC2.jpg" alt="Not Autoized." />'); break; ////////////////////////////// ////////////////////////////// case 'fromPlayerRemove': $array = $_POST['deleteUserPerm']; if (!$array) { header("location: index.php?player=" . $_POST['user'] . "&error=101"); die; }
<!-- Ionicons --> <link href="css/ionicons.min.css" rel="stylesheet" type="text/css" /> <!-- Theme style --> <link href="css/AdminLTE.css" rel="stylesheet" type="text/css" /> <?php require 'usersc.php'; require 'cargosc.php'; require_once 'tiposc.php'; $userc = new usersc(); $user = $userc->busca_user($_REQUEST['id']); $cargos = new cargosc(); $lista_cargos = $cargos->genera_select_cargos($user->id_carg); $tipos = new tiposc(); $lista_tipos = $tipos->genera_select_tipos($user->id_tipo); require 'formkey.php'; $formKey = new formKey(); ?> </head> <body class="skin-blue"> <?php include 'includes/header.php'; ?> <div class="wrapper row-offcanvas row-offcanvas-left"> <?php include 'includes/asides.php'; ?> <!-- Right side column. Contains the navbar and content of the page --> <aside class="right-side">
$data['password'] = trim($_REQUEST['password']); } if (isset($_REQUEST['id_tipo'])) { $data['id_tipo'] = trim($_REQUEST['id_tipo']); } if (isset($_FILES["user_img"]['name']) && $_FILES['user_img']['name'] != "") { $file = $_FILES["user_img"]; } else { $file = null; } $usersc = new usersc(); $usersc->crear_user($data, $file); } } if ($_REQUEST['func'] == 4) { $formKey = new formKey(); if (!isset($_REQUEST['form_key']) || !$formKey->validate($_REQUEST['form_key'])) { echo 5; } else { if ($_REQUEST['email_old'] == $_REQUEST['email']) { $switch = true; } else { $switch = false; } $usersc = new usersc(); $data = array(); if (isset($_REQUEST['f_name'])) { $data['f_name'] = trim($_REQUEST['f_name']); } if (isset($_REQUEST['l_name'])) { $data['l_name'] = trim($_REQUEST['l_name']);