<?php//session_start();include 'dbConnect.php';function loginaction(){

1. <?php
2.  
3. //session_start();
4. include 'dbConnect.php';
5. function loginaction(){
6. include 'dbConnect.php';
7. $time = time();
8.  
9.  
10.  
11. if(isset($_REQUEST['login'])){
12. $key = $_GET['telegram_key'];
13.  
14. $query = $db->prepare("SELECT operators.operator_id, telegramlog.telegram_key FROM
15. telegramlog LEFT JOIN operators ON telegramlog.operator_id = operators.operator_id WHERE telegramlog.telegram_key = ?, key_time = ? ;");
16. $query->execute(array($key,$time));
17. $result = $query->fetchAll();
18.  
19. if(isset($_REQUEST['error'])){
20. $error= $_REQUEST['error'];
21. echo errorDefine($err);
22. }
23.  
24. statements ($row,$sResult,$result,$time,$squery);
25.  
26. }
27. else if (isset($_REQUEST['loginnorm'])){
28. $username=$_REQUEST['user'];
29. $password=$_REQUEST['pass'];
30. if(isset($_REQUEST['error'])){
31. $error= $_REQUEST['error'];
32. echo errorDefine($err);
33. }
34.  
35. $squery = $db->prepare("SELECT * FROM operators WHERE email = ? and heslo = ?;");
36. $sResult = $squery->execute(array($username,$password));
37.  
38.  
39. statements($row,$sResult,$result,$time,$squery);
40. }
41. else if($_SERVER['REQUEST_METHOD'] == 'POST'){
42.  
43. if(isset($_GET['token'])) {
44.  
45. if ($_GET['token'] == "yes") {
46.  
47.  
48. $newtoken = generateRandomString();
49. $time = time() + (0 * 0 * 0 * 60);
50. $pquery= $db ->prepare ("UPDATE telegramlog SET telegram_key = ? and key_time = ? WHERE telegram_key = ? ;");
51. $presult = $pquery ->execute (array($newtoken, $time,$key));
52. }
53.  
54. }
55. }
56.  
57. //external
58. //$error = errorDefine(2);
59. // echo $error;
60. //funkce se string bude volaná na jiné stránce
61. //if isset get error
62.  
63.  
64. }
65. function generateRandomString($length) {
66. $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
67. $charactersLength = strlen($characters);
68. $randomString = '';
69.  
70. for ($i = 0; $i < $length; $i++) {
71. $randomString .= $characters[rand(0, $charactersLength - 1)];
72. }
73. return $randomString;
74. }
75. function errorDefine($err){
76. if ($err=="1"){
77. $deferr="Čas vypršel";
78. }
79. else if ($err=="2"){
80. $deferr="Špatné příhlášení";
81. }
82. else if ($err=="3"){
83. $deferr="Vyplňte všechna pole";
84. }
85. return $deferr;
86. }
87.  
88.  
89.  
90. function statements($row,$sResult,$result,$time,$squery){
91. if($time > $row['key_time']){
92. if($result){
93. header('location: user.php');
94. }
95. }
96. elseif($sResult){
97. while($row = $squery ->fetch(PDO::FETCH_ASSOC)){
98. echo '<script type="text/javascript">alert("You are logged in as user '. $row['users'] . '")</script>';
99.  
100. if($row['users']=="a"){
101. header('location: admin.php');
102. }
103. elseif($row['users']=="b"){
104. header('location: leader.php');
105. }
106. elseif($row['users']=="c"){
107. header('location: user.php');
108. }
109. else{
110. header("location: function.php?error=2");
111. }
112. }
113. }
114. else if ($time < $row['key_time']) {
115. header("location: function.php?error=1");
116. }
117. if('empty'){
118. header("location: function.php?error=3");
119. }
120. }
121.  
122. loginaction();
123. ?>