[mirrors/SokoMan.git] / lib / Sklad_Auth.class / mysql.php

<?php
/*
 * SkladovySystem - Storage management system compatible with LMS
 * Copyright (C) 2011  Thomas Mudrunka
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as
 * published by the Free Software Foundation, either version 3 of the
 * License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

/**
* Trida zajistuje autorizaci vuci LMS
*
* @package  Sklad_Auth
* @author   Tomas Mudrunka
* @author   Martin Krusinsky
*/

class Sklad_Auth extends Sklad_Auth_common {
	function check_auth($user, $pass) {

		$LMS_CONFIG = (array)parse_ini_file('/etc/lms/lms.ini', true);
		define('BACKEND_AUTH_MYSQL_HOST', $LMS_CONFIG['database']['host']);
		define('BACKEND_AUTH_MYSQL_USER', $LMS_CONFIG['database']['user']);
		define('BACKEND_AUTH_MYSQL_PASS', $LMS_CONFIG['database']['password']);
		define('BACKEND_AUTH_MYSQL_DB', $LMS_CONFIG['database']['database']);

		$dblink = @mysql_connect(BACKEND_AUTH_MYSQL_HOST, BACKEND_AUTH_MYSQL_USER, BACKEND_AUTH_MYSQL_PASS);
		mysql_select_db(BACKEND_AUTH_MYSQL_DB, $dblink);

		mysql_query("SET NAMES utf8");

		$lQ = mysql_query("SELECT id, name, passwd, hosts, lastlogindate, lastloginip FROM users WHERE login='".$user."' AND deleted=0");
		$lA = mysql_fetch_array($lQ, MYSQL_ASSOC);
		@mysql_close($dblink);

		if(!is_array($lA)) return false;

		if(crypt($pass, $lA['passwd']) != $lA['passwd']) return false;

		$this->user['name'] = $lA['name'];
		$this->user['id'] = $lA['id'];
		$this->user['gid'] = 0; //TODO: rights
		return true;

	}
}
Commit	Line	Data
96fcd5f4 TM	1	<?php
	2	/*
	3	* SkladovySystem - Storage management system compatible with LMS
	4	* Copyright (C) 2011 Thomas Mudrunka
	5	*
	6	* This program is free software: you can redistribute it and/or modify
	7	* it under the terms of the GNU Affero General Public License as
	8	* published by the Free Software Foundation, either version 3 of the
	9	* License, or (at your option) any later version.
	10	*
	11	* This program is distributed in the hope that it will be useful,
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	* GNU Affero General Public License for more details.
	15	*
	16	* You should have received a copy of the GNU Affero General Public License
	17	* along with this program. If not, see <http://www.gnu.org/licenses/>.
	18	*/
	19
	20	/**
	21	* Trida zajistuje autorizaci vuci LMS
	22	*
	23	* @package Sklad_Auth
	24	* @author Tomas Mudrunka
	25	* @author Martin Krusinsky
	26	*/
	27
	28	class Sklad_Auth extends Sklad_Auth_common {
	29	function check_auth($user, $pass) {
	30
	31	$LMS_CONFIG = (array)parse_ini_file('/etc/lms/lms.ini', true);
	32	define('BACKEND_AUTH_MYSQL_HOST', $LMS_CONFIG['database']['host']);
	33	define('BACKEND_AUTH_MYSQL_USER', $LMS_CONFIG['database']['user']);
	34	define('BACKEND_AUTH_MYSQL_PASS', $LMS_CONFIG['database']['password']);
	35	define('BACKEND_AUTH_MYSQL_DB', $LMS_CONFIG['database']['database']);
	36
	37	$dblink = @mysql_connect(BACKEND_AUTH_MYSQL_HOST, BACKEND_AUTH_MYSQL_USER, BACKEND_AUTH_MYSQL_PASS);
	38	mysql_select_db(BACKEND_AUTH_MYSQL_DB, $dblink);
	39
	40	mysql_query("SET NAMES utf8");
	41
	42	$lQ = mysql_query("SELECT id, name, passwd, hosts, lastlogindate, lastloginip FROM users WHERE login='".$user."' AND deleted=0");
	43	$lA = mysql_fetch_array($lQ, MYSQL_ASSOC);
	44	@mysql_close($dblink);
	45
	46	if(!is_array($lA)) return false;
	47
	48	if(crypt($pass, $lA['passwd']) != $lA['passwd']) return false;
	49
	50	$this->user['name'] = $lA['name'];
	51	$this->user['id'] = $lA['id'];
	52	$this->user['gid'] = 0; //TODO: rights
	53	return true;
	54
	55	}
	56	}