Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- *** index.php ***
- if (LoggedIn()) {
- userbox();
- } else {
- if (isset($_POST['quickLogin'])) {
- if (checkLogin($_POST['quickUser'], $_POST['quickPass'])) {
- userbox();
- } else {
- quickLogin();
- unset($_SESSION);
- session_destroy();
- }
- } else {
- quickLogin();
- }
- *** display_form.php ***
- function quickLogin() {
- $username = $_POST['quickUser'];
- $password = $_POST['quickPass'];
- echo "<form action='./index.php' method='POST'>
- <table cellspacing='0' cellpadding='0' border='0' align='center'>
- <tr>
- <td align='right'>Username </td><td align='left'><input type='text' class='input' name='quickUser' value='$username' maxlength='30'></td>
- </tr><tr>
- <td colspan='2' align='right'>";
- if ($_SESSION['error']['quickUser'] != NULL){
- $error = $_SESSION['error']['quickUser'];
- echo "<font color='#FF0000'>$error</font>";
- } else {
- echo " ";
- }
- echo "</td>
- </tr><tr>
- <td align='right'>Password </td><td align='left'><input type='password' class='input' name='quickPass' value='$password' maxlength='30'></td>
- </tr><tr>
- <td colspan='2' align='right'>";
- if ($_SESSION['error']['quickPass'] != NULL){
- $error = $_SESSION['error']['quickPass'];
- echo "<font color='#FF0000'>$error</font>";
- } else {
- echo " ";
- }
- echo "</td></tr>";
- if(REMEMBER_ME) {
- echo "<tr><td colspan='2' align='right'><br />Remember Me<input type='checkbox' class='checkbox' name='rememberMe' $rememberMe><input type='hidden' name='quickLogin' value='1'>
- <input type='submit' name='quickLogin' class='submit' value='Login' onclick='this.disabled=true;return true;'></td>
- </tr><tr>
- <td colspan='2' align='right'><br />[ <a href='forgotpass.php'>Forgot Pass</a> ] - [ <a href='register.php'>Register</a> ]</td>
- </tr></table></form>";
- } else {
- echo "<tr><td colspan='2' align='right'><input type='hidden' name='quickLogin' value='1'><br />
- <input type='submit' name='quickLogin' class='submit' value='Login' onclick='this.disabled=true;return true;'></td>
- </tr><tr>
- <td colspan='2' align='right'><br />[ <a href='forgotpass.php'>Forgot Pass</a> ] - [ <a href='register.php'>Register</a> ]</td>
- </tr></table></form>";
- }
- }
- *** user_functions.php ***
- function checkLogin($username, $password) {
- if (Username($username) || Password($password)) {
- $username = sanitize($username);
- $dbpass = hashpassdb($username,$password);
- $query = "SELECT loginid FROM `login` WHERE username = '$username' AND password = '$dbpass' AND disabled = 0 AND activated = 1";
- $result = mysql_query($query);
- sleep(2); // Pause script for 2 seconds to help prevent attacks
- if (mysql_num_rows($result) != 1) {
- return false;
- } else {
- $row = mysql_fetch_array($result);
- $_SESSION['loginid'] = $row['loginid'];
- $_SESSION['username'] = $username;
- return true;
- }
- return false;
- } else {
- return false;
- }
- }
- *** user_validation ***
- function Username($username, $maxlength=32) {
- $username = trim($username);
- if(strlen($username) == 0) {
- $_SESSION['error']['quickUser'] = "Username Blank";
- $_POST['quickUser'] = NULL;
- return false;
- }
- if(strlen($username) > $maxlength) {
- $_SESSION['error']['quickUser'] = "Username Too Long";
- return false;
- }
- if (ctype_alnum($username)) {
- return true;
- } else {
- $_SESSION['error']['quickUser'] = "Username Must Be Alphanumeric";
- return false;
- }
- return false;
- }
- function Password($password, $maxlength=32) {
- $password = trim($password);
- if(strlen($password) == 0) {
- $_SESSION['error']['quickPass'] = "Password Blank";
- $_POST['quickPass'] = NULL;
- return false;
- }
- if(strlen($password) > $maxlength) {
- $_SESSION['error']['quickPass'] = "Password Too Long";
- return false;
- } else {
- return true;
- }
- return false;
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
