Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include("lib/config.php");
- session_start();
- //$password = false;
- if (!empty($_SERVER["HTTP_CF_CONNECTING_IP"])) {
- $ip = $_SERVER["HTTP_CF_CONNECTING_IP"];
- } elseif (!empty($_SERVER['HTTP_CLIENT_IP'])) {
- $ip = $_SERVER['HTTP_CLIENT_IP'];
- } elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
- $ip = $_SERVER['HTTP_X_FORWARDED_FOR'];
- } else {
- $ip = $_SERVER['REMOTE_ADDR'];
- }
- if ($_SERVER["REQUEST_METHOD"] == "POST") {
- // username and password sent from form
- $myusername = mysqli_real_escape_string($db, $_POST['username']);
- $mypassword = mysqli_real_escape_string($db, $_POST['password']);
- if ($result = $db->query("SELECT passcode FROM admin WHERE username = '$myusername'")) {
- while ($row = $result->fetch_assoc()) {
- $password = $row['passcode'];
- }
- $result->close();
- }
- if (!isset($password)) {
- $password = false;
- $hash = false;
- }
- if ($password != false && $hash != false && $password === $_POST['password']) {
- session_regenerate_id();
- $_SESSION['login_user'] = $myusername;
- $db->query("UPDATE `admin` SET `session`='" . session_id() . "',`ip`='$ip' WHERE `username`='$myusername'");
- header("location: index.php");
- } else {
- $unixtime = time();
- $db->query("UPDATE `admin` SET `faillogin`=faillogin+1, `failip`='$ip',`failtime`='$unixtime' WHERE `username`='$myusername'");
- $error = "Your Login Name or Password is invalid";
- error_log(date('d.m.Y H:i:s',$unixtime). " || Wrong login credentials => Username: ".$myusername." - IP: ".$ip."\n", 3, "/var/www/log/admin_wrongpassword.log");
- }
- // Dieser Abschnitt ist zum generieren eines neuen Passworts gedacht, solltest Du einen Benutzer registrieren!
- // $salt = substr(sha1(rand()), 0, 16);
- // $hashedPassword = "{SHA512-CRYPT}" . crypt($mypassword, '$6$' . $salt . '$');
- //
- }
- ?>
- <html>
- <head>
- <?php include('header.php'); ?>
- </head>
- <body>
- <div class="container">
- <div class="row">
- <div class="col-xs-offset-2 col-xs-8 col-sm-6 col-sm-offset-3 col-md-4 col-md-offset-4 ">
- <h1 class="text-center"><kbd>CSGORUBY SCRIPT RECODE</kbd></h1>
- <div class="panel panel-warning text-center">
- <div class="panel-heading">Login</div>
- <div class="panel-body">
- <form method="post">
- <div class="form-group">
- <label class="sr-only" for="exampleInputEmail3">Email address</label>
- <input type="text" class="form-control" name="username" placeholder="Username">
- </div>
- <div class="form-group">
- <label class="sr-only" for="exampleInputPassword3">Password</label>
- <input type="password" class="form-control" name="password" placeholder="Password">
- </div>
- <button type="submit" class="btn btn-primary">Sign in</button>
- </form>
- <div class="text-right">
- IP: <?php echo $ip; ?>
- </div>
- <div class="text-danger"><?php if(isset($error)) { echo $error; } ?></div>
- </div>
- </div>
- </div>
- </div>
- </div>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement