INDEX HABZIN

<?php

/*======================================================================*\
| Habzin CMS - Content system manager.                                   |
| #######################################################################|
| Copyright (c) 2013, by Je4n                                            |
| http://www.pixelacao.zz.mu                                             |
| #######################################################################|
| Essa CMS usa base Lavvos, e todo seu conteúdo foi re-programado e re-  |
| feito por Je4n - Píxel Ação    / Base by: Meth0do                      |
| Todos os direitos reservados à Seus respéctivos criadores.             |
\*======================================================================*/

require_once('./data_classes/server-data.php_data_classes-core.php.php');

session_start();

if(isset($_GET['registerCancel']) && FilterText($_GET['registerCancel'] == "true")){
session_unset();
}

if(!session_is_registered(username)){

	if(isset($_POST['username']) && isset($_POST['password'])){
	$username = FilterText($_POST['username']);
	$password = HoloHash($_POST['password'], $username);
	$password2 = HoloHashMD5($_POST['password'], $username);

		if(empty($username) || empty($_POST['password'])){
			$login_error = "Usuário ou senha incorretos!";
		} else {
			$sql = mysql_query("SELECT id FROM users WHERE username = '".$username."' AND password = '".$password."' OR username = '".$username."' AND password = '".$password2."' LIMIT 1") or die(mysql_error());
			if(mysql_num_rows($sql) < 1){
				$login_error = "Usuário ou senha incorretos!";
			} else {
				$userdata = mysql_fetch_assoc($sql);
				$userid = $userdata['id'];
				$ban = mysql_query("SELECT * FROM bans WHERE value = '".$username."' AND bantype = 'user' or value = '".$remote_ip."' AND bantype = 'ip' LIMIT 1") or die(mysql_error());
				if(mysql_num_rows($ban) < 1){

					mysql_query("UPDATE users SET password = '".$password2."', ip_last = '".$remote_ip."' WHERE username = '".$username."'");

					$_SESSION['username'] = $username;
					$_SESSION['password'] = $password2;
						if ($_POST['_login_remember_me'] == "true"){
							setcookie("remember", "remember", time()+60*60*24*100, "/");
							setcookie("rusername", $_SESSION['username'], time()+60*60*24*100, "/");
							setcookie("rpassword", $_SESSION['password'], time()+60*60*24*100, "/");
						}
					header("location: $path/me"); exit;
				} else {
					$bandata = mysql_fetch_assoc($ban);
					$timestamp = time();
					if($bandata['expire'] > $timestamp){
						$login_error = "Você foi banido por: \"" . $bandata['reason'] . "\" e acaba em: " . date('d.m.Y - H:i:s', $bandata['expire']) . ".";
					} else {
						mysql_query("DELETE FROM bans WHERE value = '".$username."' AND bantype = 'user' OR value = '".$remote_ip."' AND bantype = 'ip' LIMIT 1") or die(mysql_error());
						mysql_query("UPDATE users SET password = '".$password2."', ip_last = '".$remote_ip."' WHERE username = '".$username."'");

					$_SESSION['username'] = $username;
					$_SESSION['password'] = $password2;
							if ($_POST['_login_remember_me'] == "true"){
								setcookie("remember", "remember", time()+60*60*24*100, "/");
								setcookie("rusername", $_SESSION['username'], time()+60*60*24*100, "/");
								setcookie("rpassword", $_SESSION['password'], time()+60*60*24*100, "/");
							}
						header("location: $path/me"); exit;
					}
				}
			}
		}
	}


$body_id = "index";


?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<title><?php echo $shortname; ?> - Entrar</title>
<link href="css/je4n.css" type="text/css" rel="stylesheet" media="all" />

<!-- DESIGNED & CODED BY JE4N / LOUIS -->
<!-- PROPERTY OF WWW.PIXELACAO.ZZ.MU -->

</head>
<body>
		<center>
<?php if(isset($login_error)){ ?>
<div class="mensagem-erro">Oops! Parece que você digitou seu nome de usuário ou senha incorretamente!</div>
<?php } ?>

			<div class="top">
				<div class="container">
					<div class="logo">
                    <form action="" method="POST">
                    <form action="/account/submit" method="post">
				<div class="input user">
					<input type="text" name="username" id="credentials-email" placeholder="Usuário">
				</div>
                <div class="input pass">
					<input type="password" name="password" id="credentials-password" placeholder="Senha">
				</div>
				<input type="submit" value="Entrar" id="credentials-submit" name="login">
			</form>
                    </div>
				</div>
           </div><br clear="all"/>
			<div class="main container">
				<div class="padding main">
					<div class="content left">
						<div id="load_data">
                        <div class="je4n-registro">
<span><a href="/quickregister/start" style="text-decoration:none;">Registre-se já!</a></span>
</div>
<div class="content_box"><div class="content_box bottom">
<h3><?php echo $shortname; ?>, Crie seu avatar, construa quartos, faça amigos e seja feliz!</h3>
	                                        <p><?php echo $shortname; ?>, um lugar divertido com pessoas incríveis.</p>

	                                    </div>
</div>
			  </div>
	</div>
    <div class="index-online">
      <span><?php echo $online_count; ?></span><p>
        usuários online
      </p>
    </div>
	<br clear="all"/>
</div>			</div>
					<div class="bottom container">
      <?php require_once('./templates/index_footer.php'); ?>
</div>
    </div>
</div>
<?php


} else {
header("location:me.php");
}

?>
</body>
</html>