-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
-{
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
- require($INC);
-}
+if (!defined('__SECURITY')) {
+ die();
+} // END - if
+
+// Initial message part
+$message = "<strong>{--VALIDATING_LOGIN--}</strong>";
+
+if (isUserIdSet() && (isSessionVariableSet('u_hash'))) {
+ // Is 'theme' installed and activated?
+ if (isExtensionActive('theme')) {
+ // Login failures are supported since 0.4.7
+ // Do we have 0.4.7 of sql_patches or later?
+ // @TODO Rewrite this into a filter
+ $add = '';
+ if (getExtensionVersion('sql_patches') >= '0.6.1') {
+ // Load them here
+ $add = ", `login_failures`, UNIX_TIMESTAMP(`last_failure`) AS last_failure";
+ } // END - if
+
+ // Get theme from profile
+ $result = SQL_QUERY_ESC("SELECT `curr_theme`".$add." FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1",
+ array(getUserId()), __FILE__, __LINE__);