inc/modules/chk_login.php

   1 <?php
   2 /************************************************************************
   3  * MXChange v0.2.1                                    Start: 11/26/2003 *
   4  * ===============                              Last change: 02/27/2004 *
   5  *                                                                      *
   6  * -------------------------------------------------------------------- *
   7  * File              : chk_login.php                                    *
   8  * -------------------------------------------------------------------- *
   9  * Short description : Check if user has logged in (delay)              *
  10  * -------------------------------------------------------------------- *
  11  * Kurzbeschreibung  : Pruefen ob die Login-Cookies gesetzt sind        *
  12  * -------------------------------------------------------------------- *
  13  * $Revision::                                                        $ *
  14  * $Date::                                                            $ *
  15  * $Tag:: 0.2.1-FINAL                                                 $ *
  16  * $Author::                                                          $ *
  17  * Needs to be in all Files and every File needs "svn propset           *
  18  * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  19  * -------------------------------------------------------------------- *
  20  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
  21  * For more information visit: http://www.mxchange.org                  *
  22  *                                                                      *
  23  * This program is free software; you can redistribute it and/or modify *
  24  * it under the terms of the GNU General Public License as published by *
  25  * the Free Software Foundation; either version 2 of the License, or    *
  26  * (at your option) any later version.                                  *
  27  *                                                                      *
  28  * This program is distributed in the hope that it will be useful,      *
  29  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
  30  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
  31  * GNU General Public License for more details.                         *
  32  *                                                                      *
  33  * You should have received a copy of the GNU General Public License    *
  34  * along with this program; if not, write to the Free Software          *
  35  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
  36  * MA  02110-1301  USA                                                  *
  37  ************************************************************************/
  38
  39 // Some security stuff...
  40 if (!defined('__SECURITY')) {
  41         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
  42         require($INC);
  43 } // END - if
  44
  45 // Initial message part
  46 $message = "<strong>{--VALIDATING_LOGIN--}</strong>";
  47
  48 if (isUserIdSet() && (isSessionVariableSet('u_hash'))) {
  49         // Is 'theme' installed and activated?
  50         if (EXT_IS_ACTIVE('theme')) {
  51                 // Login failures are supported since 0.4.7
  52                 // Do we have 0.4.7 of sql_patches or later?
  53                 $add = '';
  54                 if (GET_EXT_VERSION('sql_patches') >= '0.6.1') {
  55                         // Load them here
  56                         $add = ", `login_failures`, UNIX_TIMESTAMP(`last_failure`) AS last_failure";
  57                 } // END - if
  58
  59                 // Get theme from profile
  60                 $result = SQL_QUERY_ESC("SELECT `curr_theme`".$add." FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
  61                         array(getUserId()), __FILE__, __LINE__);
  62
  63                 // Load data
  64                 $data = SQL_FETCHARRAY($result);
  65
  66                 // Free result
  67                 SQL_FREERESULT($result);
  68
  69                 // Change to new theme
  70                 setSession('mxchange_theme', $data['curr_theme']);
  71
  72                 // Remmeber login failures if available
  73                 if (GET_EXT_VERSION('sql_patches') >= '0.6.1') {
  74                         // Reset login failures
  75                         SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data`
  76 SET `login_failures`=0, `last_failure`='0000-00-00 00:00:00'
  77 WHERE `userid`=%s
  78 LIMIT 1",
  79                                 array(getUserId()), __FILE__, __LINE__);
  80
  81                         // Store it in session
  82                         setSession('mxchange_member_failures', $data['login_failures']);
  83                         setSession('mxchange_member_last_fail', $data['last_failure']);
  84                 } // END - if
  85         } // END - if
  86
  87         // Bonus is not given by default ;-)
  88         $bonus = false;
  89         if ((GET_EXT_VERSION('sql_patches') >= '0.2.8') && (GET_EXT_VERSION('bonus') >= '0.2.1') && (getConfig('bonus_login_yn') == 'Y')) {
  90                 // Update last login if far enougth away
  91                 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data`
  92 SET `last_login`=UNIX_TIMESTAMP()
  93 WHERE `userid`=%s AND `last_login` < (UNIX_TIMESTAMP() - %s)
  94 LIMIT 1",
  95                 array(
  96                         getUserId(),
  97                         getConfig('login_timeout')
  98                 ), __FILE__, __LINE__
  99                 );
 100                 if (SQL_AFFECTEDROWS() == 1) $bonus = true;
 101         } // END - if
 102
 103         if (($bonus === true) && (REQUEST_GET('mode') == 'bonus') && (EXT_IS_ACTIVE('bonus'))) {
 104                 // Output message with added points
 105                 $message .= "<div class=\"tiny\">
 106   ".sprintf(getMessage('BONUS_LOGIN_BONUS_ADDED'), translateComma(getConfig('login_bonus')))."
 107 </div>";
 108         } elseif (EXT_IS_ACTIVE('bonus')) {
 109                 // No login bonus added!
 110                 $message .= "<div class=\"member_failed\">{--BONUS_LOGIN_BONUS_NOT_ADDED--}</div>";
 111         }
 112
 113         // Redirect to member area
 114         $message .= LOAD_TEMPLATE("member_login_js", true);
 115 } else {
 116         // Login failed!
 117         $message .= LOAD_TEMPLATE("login_failed_js", true);
 118 }
 119
 120 // Output final message
 121 LOAD_TEMPLATE('admin_settings_saved', false, $message);
 122
 123 //
 124 ?>