]> git.mxchange.org Git - friendica.git/blob - include/auth.php
projects / friendica.git / blob
? search:


05d5dfd6fc72b21421bd912ce5a54d7e57ee5187
[friendica.git] / include / auth.php
1 <?php
2
3 // login/logout 
4
5 if((isset($_SESSION)) && (x($_SESSION,'authenticated')) && ((! (x($_POST,'auth-params'))) || ($_POST['auth-params'] !== 'login'))) {
6
7         if(((x($_POST,'auth-params')) && ($_POST['auth-params'] === 'logout')) || ($a->module === 'logout')) {
8         
9                 // process logout request
10
11                 unset($_SESSION['authenticated']);
12                 unset($_SESSION['uid']);
13                 unset($_SESSION['visitor_id']);
14                 unset($_SESSION['administrator']);
15                 unset($_SESSION['cid']);
16                 unset($_SESSION['theme']);
17                 unset($_SESSION['page_flags']);
18                 notice( t('Logged out.') . EOL);
19                 goaway($a->get_baseurl());
20         }
21
22         if(x($_SESSION,'uid')) {
23
24                 // already logged in user returning
25
26                 $r = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
27                         intval($_SESSION['uid'])
28                 );
29
30                 if(! count($r)) {
31                         unset($_SESSION['authenticated']);
32                         unset($_SESSION['uid']);
33                         goaway($a->get_baseurl());
34                 }
35
36                 // initialise user environment
37
38                 $a->user = $r[0];
39                 $_SESSION['theme'] = $a->user['theme'];
40                 $_SESSION['page_flags'] = $a->user['page-flags'];
41                 if(strlen($a->user['timezone']))
42                         date_default_timezone_set($a->user['timezone']);
43
44                 $_SESSION['my_url'] = $a->get_baseurl() . '/profile/' . $a->user['nickname'];
45
46                 $r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `self` = 1 LIMIT 1",
47                         intval($_SESSION['uid']));
48                 if(count($r)) {
49                         $a->contact = $r[0];
50                         $a->cid = $r[0]['id'];
51                         $_SESSION['cid'] = $a->cid;
52
53                 }
54                 header('X-Account-Management-Status: active; name="' . $a->user['username'] . '"; id="' . $a->user['nickname'] .'"');
55         }
56 }
57 else {
58
59         if(isset($_SESSION)) {
60                 unset($_SESSION['authenticated']);
61                 unset($_SESSION['uid']);
62                 unset($_SESSION['visitor_id']);
63                 unset($_SESSION['administrator']);
64                 unset($_SESSION['cid']);
65                 unset($_SESSION['theme']);
66                 unset($_SESSION['my_url']);
67                 unset($_SESSION['page_flags']);
68         }
69
70         if((x($_POST,'password')) && strlen($_POST['password']))
71                 $encrypted = hash('whirlpool',trim($_POST['password']));
72         else {
73                 if((x($_POST,'openid_url')) && strlen($_POST['openid_url'])) {
74
75                         $openid_url = trim($_POST['openid_url']);
76
77                         // validate_url alters the calling parameter
78
79                         $temp_string = $openid_url;
80
81                         // if it's an email address or doesn't resolve to a URL, fail.
82
83                         if((strpos($temp_string,'@')) || (! validate_url($temp_string))) {
84                                 $a = get_app();
85                                 notice( t('Login failed.') . EOL);
86                                 goaway($a->get_baseurl());
87                                 // NOTREACHED
88                         }
89
90                         // Otherwise it's probably an openid.
91
92                         require_once('library/openid.php');
93                         $openid = new LightOpenID;
94                         $openid->identity = $openid_url;
95                         $_SESSION['openid'] = $openid_url;
96                         $a = get_app();
97                         $openid->returnUrl = $a->get_baseurl() . '/openid'; 
98
99                         $r = q("SELECT `uid` FROM `user` WHERE `openid` = '%s' LIMIT 1",
100                                 dbesc($openid_url)
101                         );
102                         if(count($r)) { 
103                                 // existing account
104                                 goaway($openid->authUrl());
105                                 // NOTREACHED   
106                         }
107                         else {
108                                 if($a->config['register_policy'] == REGISTER_CLOSED) {
109                                         $a = get_app();
110                                         notice( t('Login failed.') . EOL);
111                                         goaway($a->get_baseurl());
112                                         // NOTREACHED
113                                 }
114                                 // new account
115                                 $_SESSION['register'] = 1;
116                                 $openid->required = array('namePerson/friendly', 'contact/email', 'namePerson');
117                                 $openid->optional = array('namePerson/first','media/image/aspect11');
118                                 goaway($openid->authUrl());
119                                 // NOTREACHED   
120                         }
121                 }
122         }
123         if((x($_POST,'auth-params')) && $_POST['auth-params'] === 'login') {
124
125                 // process login request
126
127                 $r = q("SELECT * FROM `user` 
128                         WHERE ( `email` = '%s' OR `nickname` = '%s' ) AND `password` = '%s' AND `blocked` = 0 AND `verified` = 1 LIMIT 1",
129                         dbesc(trim($_POST['openid_url'])),
130                         dbesc(trim($_POST['openid_url'])),
131                         dbesc($encrypted));
132                 if(($r === false) || (! count($r))) {
133                         notice( t('Login failed.') . EOL );
134                         goaway($a->get_baseurl());
135                 }
136                 $_SESSION['uid'] = $r[0]['uid'];
137                 $_SESSION['theme'] = $r[0]['theme'];
138                 $_SESSION['authenticated'] = 1;
139                 $_SESSION['page_flags'] = $r[0]['page-flags'];
140                 $_SESSION['my_url'] = $a->get_baseurl() . '/profile/' . $r[0]['nickname'];
141
142                 notice( t("Welcome back ") . $r[0]['username'] . EOL);
143                 $a->user = $r[0];
144                 if(strlen($a->user['timezone']))
145                         date_default_timezone_set($a->user['timezone']);
146
147                 $r = q("SELECT * FROM `contact` WHERE `uid` = %s AND `self` = 1 LIMIT 1",
148                         intval($_SESSION['uid']));
149                 if(count($r)) {
150                         $a->contact = $r[0];
151                         $a->cid = $r[0]['id'];
152                         $_SESSION['cid'] = $a->cid;
153                 }
154
155                 header('X-Account-Management-Status: active; name="' . $a->user['username'] . '"; id="' . $a->user['nickname'] .'"');
156                 if(($a->module !== 'home') && isset($_SESSION['return_url']))
157                         goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
158         }
159 }
160
161 // Returns an array of group id's this contact is a member of.
162 // This array will only contain group id's related to the uid of this
163 // DFRN contact. They are *not* neccessarily unique across the entire site. 
164
165
166 if(! function_exists('init_groups_visitor')) {
167 function init_groups_visitor($contact_id) {
168         $groups = array();
169         $r = q("SELECT `gid` FROM `group_member` 
170                 WHERE `contact-id` = %d ",
171                 intval($contact_id)
172         );
173         if(count($r)) {
174                 foreach($r as $rr)
175                         $groups[] = $rr['gid'];
176         }
177         return $groups;
178 }}
179
180
Unnamed repository; edit this file 'description' to name the repository.