autologin.php

1. <?php
2.  
3. /*
4. $expected=array(
5. 'user',
6. 'pass'
7. );
8. for ($i=0;$i < count($expected);$i++)
9. $$expected[$i] = (isset($_GET[$expected[$i]]))?$_GET[$expected[$i]]:NULL;
10. */
11.  
12. $sTemp = '';
13. foreach ($HTTP_POST_VARS as $FormFieldName=>$FormFieldValue) {
14. $$FormFieldName = $FormFieldValue;
15. }
16.  
17. /*
18. print_r($HTTP_POST_VARS);
19. echo "<BR>";
20. print_r($_GET);
21. echo "<BR>" . $user;
22. echo "<BR>" . $pass;
23. */
24.  
25. foreach (array_keys($_GET) as $element) {
26. // $$element = $$_GET[$element];
27. $$element = (isset($_GET[$element]))?$_GET[$element]:NULL;
28. //echo $element . " : [" . $$element . "]";
29. }
30.  
31.  
32. //$n=$HTTP_COOKIE_VARS["user"];
33. //$p=$HTTP_COOKIE_VARS["pass"];
34. //$n="000233";
35. //$p="000233";
36. //$n=$user;
37. $n=$user;
38. //$p=$pass;
39. $p=$pass;
40.  
41.  
42. // check whether its a valid user.
43. //putenv("ORACLE_HOME=/u01/app/oracle/product/8.1.7/");
44. putenv("ORACLE_HOME=/u01/app/oracle/product/10.2/");
45. //putenv("ORACLE_SID=ptcgvas");
46. //$conn = ocilogon("ptcwap","pawptc","ptcgvas");
47. putenv("ORACLE_SID=ptcgvas");
48. $conn = ocilogon("ptcwap","pawptc","ptcgvas");
49. $chkuser_query = "select * from ptcwap_mmail_account where username='$n' and passwd='$p' and STATUS IN ('a', 'A') ";
50. $stmt = ociparse($conn, $chkuser_query);
51. ociexecute($stmt);
52. $nrows = ocifetchstatement($stmt, $results);
53. ocilogoff($conn);
54.  
55. //include ("config/config.inc.php3");
56. require("config/config.inc.php3");
57. //include ("config/dbconfig.inc.php3");
58. require("config/dbconfig.inc.php3");
59.  
60. if ($nrows < 1) { //invalid user--redirect to login page
61. //Header("Location: http://www.wapeoples.com/login_form_mo_err.htm ");
62. Header("Location: /login_form_mo_err.htm ");
63. //Header("Location: " . $config["login_url"]);
64. flush();
65. exit();
66. }
67.  
68.  
69. //valid user--proceed
70. $link=@mysql_connect($dbconfig["sqlserver"], $dbconfig["sqlusername"],
71. $dbconfig["sqlpassword"]);
72.  
73. @mysql_select_db($dbconfig["sqldatabase"]);
74. $query = "select * from twig_accounts where username='$n'";
75. $result = @mysql_query($query);
76. $row = @mysql_numrows($result);
77. @mysql_close();
78.  
79. if ($row) { //user exists in MOffy db
80. # update the password
81.  
82. @mysql_connect($dbconfig["sqlserver"],$dbconfig["sqlusername"],
83. $dbconfig["sqlpassword"]);
84. @mysql_select_db($dbconfig["sqldatabase"]);
85.  
86. $query_update1= "update twig_mail_prefs set pass1='$p', defaultalias = 1 "
87. . "where username='$n'";
88. @mysql_query($query_update1);
89.  
90. $query_update= "update twig_accounts set password=password('$p') "
91. . "where username='$n'";
92. @mysql_query($query_update);
93.  
94. @mysql_close();
95.  
96. //putenv("ORACLE_HOME=/u01/app/oracle/product/8.1.7/");
97. putenv("ORACLE_HOME=/u01/app/oracle/product/10.2/");
98. //putenv("ORACLE_SID=ptcgvas");
99. //$conn1 = ocilogon("ptcwap","pawptc","ptcgvas");
100. putenv("ORACLE_SID=ptcgvas");
101. $conn1 = ocilogon("ptcwap","pawptc","ptcgvas");
102. $chkuser_query1 = "insert into ptcwap_mmail_login_hist (username, passwd, login_date, channel) values ('$n', '$p', sysdate, 'WEB') ";
103. $stmt1 = ociparse($conn1, $chkuser_query1);
104. ociexecute($stmt1);
105. ocilogoff($conn1);
106.  
107. Header("Location: " . "index.php3?login_username=" . $n . "&login_password=" . $p);
108. flush();
109. exit();
110. } else { //user doesnot exist in MOffy db
111. //add user and let him add mail accounts
112. include( "lib/strings/" . $config["language"] . ".strings.php3" );
113. include ("config/dbconfig.inc.php3");
114.  
115. @mysql_connect($dbconfig["sqlserver"],$dbconfig["sqlusername"],
116. $dbconfig["sqlpassword"]);
117. @mysql_select_db($dbconfig["sqldatabase"]);
118.  
119. // echo $config["sqlpassword"];
120. // echo $config["sqldatabase"];
121. $query_insert2= "delete twig_mail_prefs "
122. . "where username = '$n' ";
123. @mysql_query($query_insert2);
124.  
125. $query_insert1 = "insert into twig_mail_prefs (username, user1, pass1, email1, server1, alias1) "
126. . "values ('$n', '$n', '$p', '$n@peoples.com.hk', 'pop3.peoples.com.hk', 'peoples')";
127. @mysql_query($query_insert1);
128.  
129. $query_insert = "insert into twig_accounts (username, password) "
130. . "values ('$n', password('$p'))";
131. @mysql_query($query_insert);
132.  
133. @mysql_close();
134.  
135. //putenv("ORACLE_HOME=/u01/app/oracle/product/8.1.7/");
136. putenv("ORACLE_HOME=/u01/app/oracle/product/10.2/");
137. //putenv("ORACLE_SID=ptcgvas");
138. //$conn1 = ocilogon("ptcwap","pawptc","ptcgvas");
139. putenv("ORACLE_SID=ptcgvas");
140. $conn1 = ocilogon("ptcwap","pawptc","ptcgvas");
141. $chkuser_query1 = "insert into ptcwap_mmail_login_hist (username, passwd, login_date, channel) values ('$n', '$p', sysdate, 'WEB') ";
142. $stmt1 = ociparse($conn1, $chkuser_query1);
143. ociexecute($stmt1);
144. ocilogoff($conn1);
145.  
146. Header("Location: " . "index.php3?login_username=" . $n . "&login_password=" . $p);
147. // Header("Location: " . "http://www.peoples.com.hk/");
148.  
149. flush();
150. exit();
151. }
152.  
153. ?>