system($cmd);
}
-function login() {
+function login_check($login, $password, $login_type='id') {
global $db,$error,$node_id;
- $login = mysql_real_escape_string($_POST['login']);
- $password = $_POST['password']; // Not SQLi but be carefull
+ $login = mysql_real_escape_string($login); //Not SQLi in $password but be carefull
$password_hash_algos=array('sha256','sha1','md5'); //List of supported algos can be obtained using: php -r 'print_r(hash_algos());'
$hash_query='(';
}
$hash_query.='false )';
- $login_type = $_POST['login_type'];
$referer = $_SERVER['HTTP_REFERER'];
if (!session_id()) {
$error="Zadal si nespravne uzivatelske meno [alebo id] alebo heslo. Rob so sebou nieco";
return false;
}
- elseif ($set->getString('header_id') == 2091520) {
+ elseif ($set->getString('hash')) {
$error='Tvoja registracia este nebola schvalena.';
return false;
}
// header("Location: $referer");
return true;
}
-?>
+
+function login() {
+ $login = $_POST['login'];
+ $password = $_POST['password'];
+ $login_type = $_POST['login_type'];
+ return login_check($login, $password, $login_type);
+}