Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // @: app/controller/user.class.php(loginSubmit)
- if ($user === false){
- $this->_loginDisplay(LNG('password_error'),false);
- }else if (md5($password)!=$user['password']){
- function pdo_ping($dbconn){
- try{
- $dbconn->getAttribute(PDO::ATTR_SERVER_INFO);
- } catch (PDOException $e) {
- if(strpos($e->getMessage(), 'MySQL server has gone away')!==false){
- return false;
- }
- }
- return true;
- }
- $passwdOK = false;
- if(
- defined('WP_PATH') &&
- defined('DB_HOST') &&
- defined('DB_NAME') &&
- defined('DB_USER') &&
- defined('DB_PASSWORD') &&
- defined('DB_PREF')
- ){
- include(WP_PATH . 'wp-includes/class-phpass.php');
- $db = new PDO('mysql:host='.DB_HOST.';dbname='.DB_NAME, DB_USER, DB_PASSWORD);
- if(!pdo_ping($db)){
- var_dump('数据库链接失败');
- exit();
- }else{
- $prepared = $db->prepare(
- "SELECT ID, user_activation_key, user_pass FROM ".DB_PREF."users WHERE user_login = :uname",array(PDO::ATTR_CURSOR => PDO::CURSOR_FWDONLY));
- $prepared->execute([':uname'=>$name]);
- if ($userInfo = $prepared->fetch(PDO::FETCH_ASSOC)){
- $wp_hasher = new PasswordHash( 8, true );
- $sigPassword = $userInfo['user_pass'];
- if($wp_hasher->CheckPassword($password,$sigPassword)){
- $passwdOK = true;
- }
- }
- }
- }
- if(!$passwdOK){$this->_loginDisplay(LNG('password_error'),false);}
- }else if($user['status'] == 0){
- $this->_loginDisplay(LNG('login_error_user_not_use'),false);
- }else if($user['role']==''){
- $this->_loginDisplay(LNG('login_error_role'),false);
- }
Add Comment
Please, Sign In to add comment
