Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require_once "global.php";
- if (LOGGED_IN) {
- header("Location: " . WWW . "/me");
- exit;
- }
- LANG_MGR::addLocale(array('landing.header', 'landing.login'));
- define("PAGE_NAME", LANG_MGR::$loc['pagename.home']);
- $errMessage = NULL;
- if (WP::hasDataProvided(array('username', 'password'), $_POST)) {
- // Don't worry, this already gets filtered in global.php :P
- $username = $_POST['username'];
- $password = $_POST['password'];
- if (empty($username) || empty($password)) {
- $errMessage = "Provide both your username and password, please!";
- } else {
- $hashed_password = WP::secretHash($password, strtolower($username));
- $check = DB::queryFirstField("SELECT COUNT(*) FROM users WHERE username = %s AND password = %s LIMIT 1", $username, $hashed_password);
- if ($check < 1) {
- $errMessage = "Wrong password or username provided!";
- }
- if (strlen($errMessage) === 0) {
- $userID = DB::queryFirstField("SELECT id FROM users WHERE username = %s LIMIT 1", $username);
- $_SESSION['securityCheck_ID'] = $userID;
- if (isset($_GET['page']) && strpos($_GET['page'], WWW)) {
- header("Location: " . $_GET['page']);
- EXIT;
- }
- header("Location: ". WWW ."/security_check");
- EXIT;
- }
- }
- }
- $page = new RainTPL();
- $page->assign(array(
- "LOGIN_ERROR" => $errMessage,
- "REDIRECT_PAGE" => (isset($_GET['page']) ? $_GET['page'] : null),
- "POST_NAME" => (isset($username) ? WP::filterInputString($username) : null),
- "POST_PASS" => (isset($password) ? WP::filterInputString($password) : null),
- "SERVER_ONLINE" => (WP::getServerStatsValue("status") == "true"),
- "ONLINE_COUNT" => WP::getServerStatsValue("users_online"),
- "UNIQUE_SITE_VISITS" => WP::getServerStatsValue("site_visits"),
- "USERS_REGISTERED" => DB::queryFirstField("SELECT COUNT(*) FROM users"),
- "USERS_JOINED_TODAY" => DB::queryFirstField("SELECT COUNT(*) FROM users WHERE signedup >= CURDATE()")
- ));
- $page->draw('login');
- ?>
Add Comment
Please, Sign In to add comment