Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- /***************************************************************************
- * index.php
- * -------------------
- * Project : PingueCMS
- * Begin : April 23, 2009
- * Copyright : (C) 2009 Robert Herman ( maverfax@gmail.com )
- *
- ***************************************************************************/
- #Check for index
- if( !defined( "IPC_LOADED" ) ) die ( "File Protected" );
- $login_msg = ' ';
- $login_color = 'red';
- if(isset($_POST['admin_login'])) {
- $account = new mysql;
- $username = mysql_real_escape_string($_POST['username']);
- $password = mysql_real_escape_string($_POST['password']);
- $encrypted = sha1(strtoupper($username) . ':' . strtoupper($password));
- $account->connect($host['realm'], $user['realm'], $pass['realm'], true, $db['accounts']);
- $query = $account->query(get_login($username, $encrypted));
- if($account->num_rows($query) > 0) {
- $row = $account->fetch_array($query);
- if($row['gm'] != 'az' && $row['gm'] != '2' && $row['gm'] != '3' && $row['gm'] != '4') {
- $login_msg = 'You do not have permission to access the ACP';
- } else {
- $login_msg = 'Logging in';
- $login_color = 'green';
- $_SESSION['ulogged_in'] = true;
- $_SESSION['acct'] = $row['acct'];
- $_SESSION['login'] = $_POST['username'];
- $_SESSION['lastip'] = $_SERVER['REMOTE_ADDR'];
- $_SESSION['encrypted_password'] = $row['encrypted_password'];
- $_SESSION['gm'] = $row['gm'];
- $_SESSION['banned'] = $row['banned'];
- $_SESSION['lastlogin'] = $row['lastlogin'];
- $_SESSION['lastip'] = $row['lastip'];
- $_SESSION['email'] = $row['email'];
- $_SESSION['flags'] = $row['flags'];
- $_SESSION['vpoints'] = (!empty($row['vpoints']) ? $row['vpoints'] : ' 0 ');
- $_SESSION['alogged_in'] = true;
- $_SESSION['ip'] = $_SERVER['REMOTE_ADDR'];
- $_SESSION['username'] = $_POST['username'];
- $_SESSION['email'] = $row['email'];
- header( 'Location: ?p=index' ) ;
- }
- } else $login_msg = 'Incorrect Username/Password';
- }
- if(isset($_GET['act'])) {
- if($_GET['act'] == 'logout') {
- $_SESSION['alogged_in'] = false;
- }
- }
- $tmp->set_var('login_msg', $login_msg);
- $tmp->set_var('login_color', $login_color);
- $tmp->add_file('login');
- $page = $tmp->parse();
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement