X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmodules%2Fchk_login.php;h=526da23c4d86f75eefee601d38d57f1e67494717;hb=f42e417c1cd63d07563965c54bf10f6e1cd4248f;hp=9be4517da900ab7d470195e236f3d02463c3aeb2;hpb=75ad748a68473ace540251427a74fb781b1145e9;p=mailer.git
diff --git a/inc/modules/chk_login.php b/inc/modules/chk_login.php
index 9be4517da9..526da23c4d 100644
--- a/inc/modules/chk_login.php
+++ b/inc/modules/chk_login.php
@@ -10,9 +10,14 @@
* -------------------------------------------------------------------- *
* Kurzbeschreibung : Pruefen ob die Login-Cookies gesetzt sind *
* -------------------------------------------------------------------- *
- * *
+ * $Revision:: $ *
+ * $Date:: $ *
+ * $Tag:: 0.2.1-FINAL $ *
+ * $Author:: $ *
+ * Needs to be in all Files and every File needs "svn propset *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
* -------------------------------------------------------------------- *
- * Copyright (c) 2003 - 2008 by Roland Haeder *
+ * Copyright (c) 2003 - 2009 by Roland Haeder *
* For more information visit: http://www.mxchange.org *
* *
* This program is free software; you can redistribute it and/or modify *
@@ -32,64 +37,87 @@
************************************************************************/
// Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
-{
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
- require($INC);
-}
+if (!defined('__SECURITY')) {
+ die();
+} // END - if
+
+// Initial message part
+$message = "{--VALIDATING_LOGIN--}";
+
+if (isUserIdSet() && (isSessionVariableSet('u_hash'))) {
+ // Is 'theme' installed and activated?
+ if (isExtensionActive('theme')) {
+ // Login failures are supported since 0.4.7
+ // Do we have 0.4.7 of sql_patches or later?
+ $add = '';
+ if (getExtensionVersion('sql_patches') >= '0.6.1') {
+ // Load them here
+ $add = ", `login_failures`, UNIX_TIMESTAMP(`last_failure`) AS last_failure";
+ } // END - if
+
+ // Get theme from profile
+ $result = SQL_QUERY_ESC("SELECT `curr_theme`".$add." FROM `{?_MYSQL_PREFIX?}_user_data` WHERE `userid`=%s LIMIT 1",
+ array(getUserId()), __FILE__, __LINE__);
-OPEN_TABLE("500", "guest_login_header dashed", "center");
+ // Load data
+ $data = SQL_FETCHARRAY($result);
-OUTPUT_HTML ("
".VALIDATING_LOGIN."
");
+ // Free result
+ SQL_FREERESULT($result);
-if (!empty($GLOBALS['userid']) && !empty($_COOKIE['u_hash']) && !empty($_COOKIE['lifetime']))
-{
- // Get theme from profile
- $result = SQL_QUERY_ESC("SELECT curr_theme FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
- array($GLOBALS['userid']), __FILE__, __LINE__);
- list($NewTheme) = SQL_FETCHROW($result);
- SQL_FREERESULT($result);
+ // Change to new theme
+ setTheme($data['curr_theme']);
- // Change to new theme
- @setcookie("mxchange_theme", $NewTheme, (time() + 60*60*24*365), COOKIE_PATH);
- $_COOKIE['mxchange_theme'] = $NewTheme;
+ // Remmeber login failures if available
+ if (getExtensionVersion('sql_patches') >= '0.6.1') {
+ // Reset login failures
+ SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_data`
+SET `login_failures`=0, `last_failure`='0000-00-00 00:00:00'
+WHERE `userid`=%s
+LIMIT 1",
+ array(getUserId()), __FILE__, __LINE__);
+ // Store it in session
+ setSession('mxchange_member_failures', $data['login_failures']);
+ setSession('mxchange_member_last_fail', $data['last_failure']);
+ } // END - if
+ } // END - if
+
+ // Bonus is not given by default ;-)
$bonus = false;
- die("
".print_r($CONFIG, true).""); - if ((GET_EXT_VERSION("sql_patches") >= "0.2.8") && (GET_EXT_VERSION("bonus") >= "0.2.1")) { - // Update last login - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data -SET last_login=UNIX_TIMESTAMP() -WHERE userid=%d AND last_login < (UNIX_TIMESTAMP() - %d) -LIMIT 1", array($GLOBALS['userid'], $CONFIG['login_timeout']), - __FILE__, __LINE__); - if (SQL_AFFECTEDROWS($link) == 1) $bonus = true; - } - if (($bonus) && ($_GET['mode'] == "bonus") && (EXT_IS_ACTIVE("bonus"))) { + if ((getExtensionVersion('sql_patches') >= '0.2.8') && (getExtensionVersion('bonus') >= '0.2.1') && (getConfig('bonus_login_yn') == 'Y')) { + // Update last login if far enougth away + SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_data` +SET `last_login`=UNIX_TIMESTAMP() +WHERE `userid`=%s AND `last_login` < (UNIX_TIMESTAMP() - %s) +LIMIT 1", + array( + getUserId(), + getConfig('login_timeout') + ), __FILE__, __LINE__ + ); + if (SQL_AFFECTEDROWS() == 1) $bonus = true; + } // END - if + + if (($bonus === true) && (getRequestElement('mode') == 'bonus') && (isExtensionActive('bonus'))) { // Output message with added points - OUTPUT_HTML(" - ".BONUS_LOGIN_BONUS_ADDED_1." - ".TRANSLATE_COMMA($CONFIG['login_bonus'])." ".POINTS." - ".BONUS_LOGIN_BONUS_ADDED_2." -"); - } - elseif (EXT_IS_ACTIVE("bonus")) - { + $message .= "