Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // - wIRCnet © 2010.
- include_once './sql.php';
- session_start();
- $List_News = '';
- $News = mysql_query("SELECT * FROM `news` LIMIT 100");
- While( $Rows = mysql_fetch_array( $News ) ){
- $List_News .= 'Poster par: '. $Rows['createur'] .' - Créée le '. gmdate( "M d Y H:i:s", $Rows['time_create'] ) .'<br /><br />
- Titre: '. $Rows['titre'] .'<br />
- '. $Rows['news'] .'<br /><hr><br />';
- }
- $Display_News = '<br /><marquee direction="up" scrollamount="1" width="30%">
- '. $List_News .'
- </marquee>';
- if( isset( $_SESSION['Login'] ) ){
- if( isset( $_SESSION['Time_Cr'] ) And ( $_SESSION['Time_Cr'] + ( Session_Exp * 3600 ) >= time() ) ){
- if( isset( $_SESSION['User'] ) And !empty( $_SESSION['User'] ) And is_numeric( $_SESSION['Login'] ) And ( $_SESSION['Login'] == 1 ) And is_numeric( $_SESSION['Rang'] ) And in_array( $_SESSION['Rang'], Array( 0, 1 ) ) ){
- $Menu = '<a href="./">Accueil</a> || <a href="./index.php?type=profil">Modifier votre profil</a><br />';
- if( $_SESSION['Rang'] == 1 ){ // - Les administrateurs.
- $Menu .= '<a href="./index.php?type=news">Créer une nouveautées</a> || <a href="./index.php?type=edit">Modifier une nouveautées</a> || <a href="./index.php?type=del">Supprimer une nouveautées</a>';
- }
- $Type = ( ( isset( $_GET['type'] ) ) ? htmlspecialchars( strip_tags( trim( $_GET['type'] ) ) ) : "");
- if( in_array( $Type, Array( '', 'profil', 'news', 'edit', 'del' ) ) ){
- $Name_File = Array( '' => 'accueil', 'profil' => 'options', 'news' => 'create_news', 'edit' => 'edit_news', 'del' => 'delete_news' );
- include_once './'. $Name_File[$Type] .'.php';
- } else {
- header("Location: ./");
- }
- $Display_Page = $Menu;
- } else {
- Closed_Session();
- Die('La session n\'est pas valide !');
- }
- } else {
- Closed_Session();
- Die('La session a expirer !');
- }
- } else {
- if( isset( $_POST['submit'] ) ){
- if( !empty( $_POST['user'] ) And !empty( $_POST['pass'] ) ){
- $User = mysql_real_escape_string( strip_tags( trim( $_POST['user'] ) ) );
- $Pass = mysql_real_escape_string( strip_tags( trim( $_POST['pass'] ) ) );
- $Menbres = mysql_query("SELECT * FROM `menbres` WHERE `utilisateur` = '". $User ."' AND `password` = '". md5( $Pass ) ."' LIMIT 1");
- $Membres = mysql_fetch_array( $Menbres );
- if( mysql_num_rows( $Menbres ) == 1 ){
- $_SESSION['User'] = htmlspecialchars( $User );
- $_SESSION['Rang'] = $Membres['rang'];
- $_SESSION['IP_User'] = $_SERVER["REMOTE_ADDR"];
- $_SESSION['Time_Cr'] = time();
- $_SESSION['Login'] = 1;
- header("Location: ./");
- } else {
- $Erreurs = 'Votre identifiant de connexion n\'est pas correcte !';
- }
- }
- }
- $Display_Page = '<form method="POST" action="">
- Nom d\'utilisateur: <input type="text" name="user" value="Utilisateur"><br />
- Mot de passe: <input type="password" name="pass" value=""><br />
- <input type="submit" name="submit" value="Connexion">
- </form><br />';
- }
- echo $Display_Page;
- echo $Display_News;
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement