3 // lockout capatibility
5 // <h1> This is da default one</h1>
6 // require(INCLUDE_DIR.'ldap.inc');
8 global $db,$error,$node_id;
9 $login = mysql_real_escape_string($_POST['login']);
10 $password = $_POST['password']; //XXX nice SQLi
11 $hash = md5($password);
12 $login_type = $_POST['login_type'];
13 $referer = $_SERVER['HTTP_REFERER'];
16 $error='asi nemas zapnute cookies alebo co';
20 switch ($login_type) {
22 $q = "select * from users where login='$login' and password='$hash'";
23 $set = $db->query($q);
25 $user_id = $set->getString('user_id');
26 $user_name = $set->getString('login');
29 $q="select * from users where user_id='$login' and password='$hash'";
32 $user_id=$set->getString('user_id');
33 $user_name=$set->getString('login');
37 // $ldap_response=LDAPuser::auth($user_id,$password);
39 if (!$set) { //XXX test
40 $error="Zadal si nespravne uzivatelske meno [alebo id] alebo heslo. Rob so sebou nieco";
43 elseif ($set->getString('header_id') == 2091520) {
44 $error='Tvoja registracia este nebola schvalena.';
48 $now=date("Y-m-d H:i:s");
49 $lockout=$set->getString('acc_lockout');
50 if ($lockout >= $now ) {
52 $error="Account lockout mas aktivny. Sorry ale neprihlasis sa minimalne do $lockout.
53 Prajem prijemnu odvykacku:-)";
58 // LDAPuser::ldap_mysql_sync($user_name,$user_id,$password);
62 $cube_vector=$set->getString('cube_vector');
64 // saves friends list as an array into user session
65 $q="select distinct node_parent,node_name from nodes where node_creator='$user_id' and
66 external_link='session://friend' order by node_parent";
67 $friendset=$db->query($q);
68 while ($friendset->next()){
69 $_SESSION['friends'][$friendset->getString('node_parent')]=true;
72 // saves bookmarks as an array into user session
73 $q="select nodes.node_name,nodes.node_id from node_access left join nodes on node_access.node_id=nodes.node_id
74 where node_access.user_id='$user_id' and node_bookmark='yes' order by node_name";
75 $bookmarkset=$db->query($q);
76 while ($bookmarkset->next()){
77 $_SESSION['bookmarks'][$bookmarkset->getString('node_id')]=$bookmarkset->getString('node_name');
80 //saves ignored users as an array into user session
81 $q="select node_parent from nodes where node_creator='$user_id' and external_link='session://ignore'";
82 $ignoreset=$db->query($q);
83 while ($ignoreset->next()){
84 $_SESSION['ignore'][$ignoreset->getString('node_parent')]=true;
87 //saves fooked forums as an array into user session
88 $q="select node_parent from nodes where node_creator='$user_id' and external_link='session://fook'";
89 $fookset=$db->query($q);
90 while ($fookset->next()){
91 $_SESSION['fook'][$fookset->getString('node_parent')]=true;
94 // LDAPuser::replicate($user_name,$user_id,$password);
96 //save bookstyle into user session
97 $q="select node_content from nodes where node_parent=19 and external_link='session://bookstyl' and node_creator='$user_id'";
98 $bookstylset=$db->query($q);
100 $_SESSION['bookstyl'] = $bookstylset->getString('node_content');
103 $mset = $db->query(sprintf('select moods from users where user_id = %d', $user_id));
105 $moods_expl = explode(";",$set->getString('moods'));
106 if (!empty($moods_expl[count($moods_expl)-1])) {
107 $_SESSION['mood_id'] = $moods_expl[count($moods_expl)-1];
108 $mset = $db->query(sprintf('select node_name, node_content from nodes where node_id = %d', $moods_expl[count($moods_expl)-1]));
110 $_SESSION['mood_name'] = $mset->getString('node_name');
111 $_SESSION['mood_content'] = addslashes(substr(strip_tags($mset->getString('node_content')),0,223));
115 $db->query(sprintf('update users set date_last_login = NOW() where user_id = %d', $user_id));
117 $_SESSION['user_id']=$user_id;
118 $_SESSION['user_name']=addslashes($user_name);
119 if (!empty($cube_vector)) $_SESSION['cube_vector']=$cube_vector;
120 if (empty($_SESSION['template_set'])) $_SESSION['template_set']=$set->getString('template_set');
121 if (is_numeric($_POST['screen_width'])) $_SESSION['browser']['screen_width']=$_POST['screen_width'];
122 if (is_numeric($_POST['screen_height'])) $_SESSION['browser']['screen_height']=$_POST['screen_height'];
123 $_SESSION['listing_amount']=$set->getString('listing_amount');
124 $_SESSION['listing_order']=$set->getString('listing_order');
125 $_SESSION['header_id']=$set->getString('header_id');
127 // header("Location: $referer");