X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmodules%2Fchk_login.php;h=2fe52f798660309a1cf46b857e7bbcbe921f9d1e;hp=d034bc87ba9a34d47349a706d9819444a6b2fe4e;hb=f3e4c2c048761589836fdbe6bd2e46599a1833a7;hpb=79fab9206a9c2c7fc989396a797e2f7d78fa99b6

diff --git a/inc/modules/chk_login.php b/inc/modules/chk_login.php
index d034bc87ba..2fe52f7986 100644
--- a/inc/modules/chk_login.php
+++ b/inc/modules/chk_login.php
@@ -10,7 +10,12 @@
  * -------------------------------------------------------------------- *
  * Kurzbeschreibung  : Pruefen ob die Login-Cookies gesetzt sind        *
  * -------------------------------------------------------------------- *
- *                                                                      *
+ * $Revision:: 856                                                    $ *
+ * $Date:: 2009-03-06 20:24:32 +0100 (Fr, 06. Mär 2009)              $ *
+ * $Tag:: 0.2.1-FINAL                                                 $ *
+ * $Author:: stelzi                                                   $ *
+ * Needs to be in all Files and every File needs "svn propset           *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  * -------------------------------------------------------------------- *
  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
  * For more information visit: http://www.mxchange.org                  *
@@ -32,63 +37,87 @@
  ************************************************************************/
 
 // Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
-{
+if (!defined('__SECURITY')) {
 	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
 	require($INC);
 }
 
-OPEN_TABLE("500", "guest_login_header dashed", "center");
+// Initial message part
+$MSG = "<strong>{--VALIDATING_LOGIN--}</strong>";
 
-OUTPUT_HTML ("<BR><STRONG>".VALIDATING_LOGIN."</STRONG><BR>");
+if (!empty($GLOBALS['userid']) && (isSessionVariableSet('u_hash'))) {
+	// Login failures are supported since 0.4.7
+	// Do we have 0.4.7 of sql_patches or later?
+	$ADD = "";
+	if (GET_EXT_VERSION("sql_patches") >= "0.6.1") {
+		// Load them here
+		$ADD = ", login_failures, UNIX_TIMESTAMP(last_failure) AS last_failure";
+	} // END - if
 
-if (!empty($GLOBALS['userid']) && !empty($_COOKIE['u_hash']) && !empty($_COOKIE['lifetime']))
-{
 	// Get theme from profile
-	$result = SQL_QUERY_ESC("SELECT curr_theme FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
-	 array($GLOBALS['userid']), __FILE__, __LINE__);
-	list($NewTheme) = SQL_FETCHROW($result);
+	$result = SQL_QUERY_ESC("SELECT curr_theme".$ADD." FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
+		array($GLOBALS['userid']), __FILE__, __LINE__);
+
+	// Load data
+	$data = SQL_FETCHARRAY($result);
+
+	// Free result
 	SQL_FREERESULT($result);
 
 	// Change to new theme
-	@setcookie("mxchange_theme", $NewTheme, (time() + 60*60*24*365), COOKIE_PATH);
-	$_COOKIE['mxchange_theme'] = $NewTheme;
+	set_session('mxchange_theme', $data['curr_theme']);
+
+	// Remmeber login failures if available
+	if (GET_EXT_VERSION("sql_patches") >= "0.6.1") {
+		// Reset login failures
+		SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data`
+SET login_failures=0, last_failure='0000-00-00 00:00:00'
+WHERE userid=%s
+LIMIT 1",
+			array($GLOBALS['userid']), __FILE__, __LINE__);
+
+		// Store it in session
+		set_session('mxchange_member_failures', $data['login_failures']);
+		set_session('mxchange_member_last_fail', $data['last_failure']);
+	} // END - if
 
+	// Bonus is not given by default ;-)
 	$bonus = false;
-	if ((GET_EXT_VERSION("sql_patches") >= "0.2.8") && (GET_EXT_VERSION("bonus") >= "0.2.1") && ($CONFIG['bonus_login_yn'] == 'N') && ($CONFIG['bonus_login_yn'] == 'Y')) {
-		// Update last login
-		$result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data
+	if ((GET_EXT_VERSION("sql_patches") >= "0.2.8") && (GET_EXT_VERSION("bonus") >= "0.2.1") && (getConfig('bonus_login_yn') == "Y")) {
+		// Update last login if far enougth away
+		SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data`
 SET last_login=UNIX_TIMESTAMP()
-WHERE userid=%d AND last_login < (UNIX_TIMESTAMP() - %d)
-LIMIT 1", array($GLOBALS['userid'], $CONFIG['login_timeout']),
- __FILE__, __LINE__);
-		if (SQL_AFFECTEDROWS($link) == 1) $bonus = true;
-	}
-	if (($bonus) && ($_GET['mode'] == "bonus") && (EXT_IS_ACTIVE("bonus"))) 	{
+WHERE userid=%s AND last_login < (UNIX_TIMESTAMP() - %s)
+LIMIT 1",
+			array(
+				$GLOBALS['userid'],
+				getConfig('login_timeout')
+			), __FILE__, __LINE__
+		);
+		if (SQL_AFFECTEDROWS() == 1) $bonus = true;
+	} // END - if
+
+	if (($bonus) && (REQUEST_GET('mode') == "bonus") && (EXT_IS_ACTIVE("bonus"))) {
 		// Output message with added points
-		OUTPUT_HTML("<FONT class=\"tiny\">
-  ".BONUS_LOGIN_BONUS_ADDED_1."
-  <STRONG>".TRANSLATE_COMMA($CONFIG['login_bonus'])." ".POINTS."</STRONG>
-  ".BONUS_LOGIN_BONUS_ADDED_2."
-</FONT>");
-	}
-	 elseif (EXT_IS_ACTIVE("bonus"))
-	{
+		$MSG .= "<div class=\"tiny\">
+  {--BONUS_LOGIN_BONUS_ADDED_1--}
+  <strong>".TRANSLATE_COMMA(getConfig('login_bonus'))." {!POINTS!}</strong>
+  {--BONUS_LOGIN_BONUS_ADDED_2--}
+</div>";
+	} elseif (EXT_IS_ACTIVE("bonus")) {
 		// No login bonus added!
-		OUTPUT_HTML("<FONT class=\"member_failed\">".BONUS_LOGIN_BONUS_NOT_ADDED."</FONT>");
+		$MSG .= "<div class=\"member_failed\">{--BONUS_LOGIN_BONUS_NOT_ADDED--}</div>";
 	}
 
 	// Redirect to member area
-	LOAD_TEMPLATE("member_login_js");
-}
- else
-{
+	$MSG .= LOAD_TEMPLATE("member_login_js", true);
+} else {
 	// Login failed!
-	LOAD_TEMPLATE("login_failed_js");
+	$MSG .= LOAD_TEMPLATE("login_failed_js", true);
 }
 
-// Close table
-CLOSE_TABLE();
+// Output final message
+LOAD_TEMPLATE("admin_settings_saved", false, $MSG);
 
 //
 ?>