************************************************************************/
// Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
-{
+if (!defined('__SECURITY')) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
require($INC);
}
-OPEN_TABLE("500", "guest_login_header dashed", "center");
+// Initial message part
+$MSG = "<strong>{--VALIDATING_LOGIN--}</strong>";
-OUTPUT_HTML("<br /><STRONG>".VALIDATING_LOGIN."</STRONG><br />");
+if (!empty($GLOBALS['userid']) && (isSessionVariableSet('u_hash'))) {
+ // Login failures are supported since 0.4.7
+ // Do we have 0.4.7 of sql_patches or later?
+ $ADD = "";
+ if (GET_EXT_VERSION("sql_patches") >= "0.6.1") {
+ // Load them here
+ $ADD = ", login_failures, UNIX_TIMESTAMP(last_failure) AS last_failure";
+ } // END - if
-if (!empty($GLOBALS['userid']) && !empty($_COOKIE['u_hash']) && !empty($_COOKIE['lifetime']))
-{
// Get theme from profile
- $result = SQL_QUERY_ESC("SELECT curr_theme FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
- array($GLOBALS['userid']), __FILE__, __LINE__);
- list($NewTheme) = SQL_FETCHROW($result);
+ $result = SQL_QUERY_ESC("SELECT curr_theme".$ADD." FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
+ array($GLOBALS['userid']), __FILE__, __LINE__);
+
+ // Load data
+ $data = SQL_FETCHARRAY($result);
+
+ // Free result
SQL_FREERESULT($result);
// Change to new theme
- @setcookie("mxchange_theme", $NewTheme, (time() + 60*60*24*365), COOKIE_PATH);
- $_COOKIE['mxchange_theme'] = $NewTheme;
+ set_session('mxchange_theme', $data['curr_theme']);
+
+ // Remmeber login failures if available
+ if (GET_EXT_VERSION("sql_patches") >= "0.6.1") {
+ // Reset login failures
+ SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data`
+SET login_failures=0, last_failure='0000-00-00 00:00:00'
+WHERE userid=%s
+LIMIT 1",
+ array($GLOBALS['userid']), __FILE__, __LINE__);
+
+ // Store it in session
+ set_session('mxchange_member_failures', $data['login_failures']);
+ set_session('mxchange_member_last_fail', $data['last_failure']);
+ } // END - if
+ // Bonus is not given by default ;-)
$bonus = false;
- if ((GET_EXT_VERSION("sql_patches") >= "0.2.8") && (GET_EXT_VERSION("bonus") >= "0.2.1") && ($CONFIG['bonus_login_yn'] == 'N') && ($CONFIG['bonus_login_yn'] == 'Y')) {
- // Update last login
- $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data
+ if ((GET_EXT_VERSION("sql_patches") >= "0.2.8") && (GET_EXT_VERSION("bonus") >= "0.2.1") && (getConfig('bonus_login_yn') == "Y")) {
+ // Update last login if far enougth away
+ SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data`
SET last_login=UNIX_TIMESTAMP()
-WHERE userid=%d AND last_login < (UNIX_TIMESTAMP() - %d)
-LIMIT 1", array($GLOBALS['userid'], $CONFIG['login_timeout']),
- __FILE__, __LINE__);
- if (SQL_AFFECTEDROWS($link) == 1) $bonus = true;
- }
- if (($bonus) && ($_GET['mode'] == "bonus") && (EXT_IS_ACTIVE("bonus"))) {
+WHERE userid=%s AND last_login < (UNIX_TIMESTAMP() - %s)
+LIMIT 1",
+ array(
+ $GLOBALS['userid'],
+ getConfig('login_timeout')
+ ), __FILE__, __LINE__
+ );
+ if (SQL_AFFECTEDROWS() == 1) $bonus = true;
+ } // END - if
+
+ if (($bonus) && (REQUEST_GET('mode') == "bonus") && (EXT_IS_ACTIVE("bonus"))) {
// Output message with added points
- OUTPUT_HTML("<FONT class=\"tiny\">
- ".BONUS_LOGIN_BONUS_ADDED_1."
- <STRONG>".TRANSLATE_COMMA($CONFIG['login_bonus'])." ".POINTS."</STRONG>
- ".BONUS_LOGIN_BONUS_ADDED_2."
-</FONT>");
- }
- elseif (EXT_IS_ACTIVE("bonus"))
- {
+ $MSG .= "<div class=\"tiny\">
+ {--BONUS_LOGIN_BONUS_ADDED_1--}
+ <strong>".TRANSLATE_COMMA(getConfig('login_bonus'))." {!POINTS!}</strong>
+ {--BONUS_LOGIN_BONUS_ADDED_2--}
+</div>";
+ } elseif (EXT_IS_ACTIVE("bonus")) {
// No login bonus added!
- OUTPUT_HTML("<FONT class=\"member_failed\">".BONUS_LOGIN_BONUS_NOT_ADDED."</FONT>");
+ $MSG .= "<div class=\"member_failed\">{--BONUS_LOGIN_BONUS_NOT_ADDED--}</div>";
}
// Redirect to member area
- LOAD_TEMPLATE("member_login_js");
-}
- else
-{
+ $MSG .= LOAD_TEMPLATE("member_login_js", true);
+} else {
// Login failed!
- LOAD_TEMPLATE("login_failed_js");
+ $MSG .= LOAD_TEMPLATE("login_failed_js", true);
}
-// Close table
-CLOSE_TABLE();
+// Output final message
+LOAD_TEMPLATE("admin_settings_saved", false, $MSG);
//
?>
projects / mailer.git / blobdiff