postfixadmin/users/login.php

<?php
// 
// Postfix Admin 
// by Mischa Peters <mischa at high5 dot net>
// Copyright (c) 2002 - 2005 High5!
// Licensed under GPL for more info check GPL-LICENSE.TXT
//
// File: login.php
//
// Template File: login.tpl
//
// Template Variables:
//
//  tMessage
//  tUsername
//
// Form POST \ GET Variables:  
//
//  fUsername
//  fPassword
//

require_once("../common.php");


if ($_SERVER['REQUEST_METHOD'] == "GET")
{
   include ("../templates/header.tpl");
   include ("../templates/users_login.tpl");
   include ("../templates/footer.tpl");
}

if ($_SERVER['REQUEST_METHOD'] == "POST")
{
   $fUsername = escape_string ($_POST['fUsername']);
   $fPassword = escape_string ($_POST['fPassword']);

   $query = "SELECT password FROM $table_mailbox WHERE username='$fUsername' AND active='1'";
   if ('pgsql'==$CONF['database_type'])
   {
      $query = "SELECT password FROM $table_mailbox WHERE username='$fUsername' AND active=true";
   }
   $result = db_query ($query);
   if ($result['rows'] == 1)
   {
      $row = db_array ($result['result']);
      $password = pacrypt ($fPassword, $row['password']);

      $query = "SELECT * FROM $table_mailbox WHERE username='$fUsername' AND password='$password' AND active='1'";
      if ('pgsql'==$CONF['database_type'])
      {
         $query = "SELECT * FROM $table_mailbox WHERE username='$fUsername' AND password='$password' AND active=true";
      }
      $result = db_query ($query);
      if ($result['rows'] != 1)
      {
         $error = 1;
         $tMessage = $PALANG['pLogin_password_incorrect'];
         $tUsername = $fUsername;
      }
   }
   else
   {
      $error = 1;
      $tMessage = $PALANG['pLogin_username_incorrect'];
   }

   if ($error != 1)
   {
      session_regenerate_id();
      $_SESSION['sessid'] = array();
      $_SESSION['sessid']['roles'] = array();
      $_SESSION['sessid']['roles'][] = 'user';
      $_SESSION['sessid']['username'] = $fUsername;
      header("Location: main.php");
      exit;
   }
   
   include ("../templates/header.tpl");
   include ("../templates/users_login.tpl");
   include ("../templates/footer.tpl");
}
/* vim: set expandtab softtabstop=3 tabstop=3 shiftwidth=3: */
?>
Initial Import in SourceForge git-svn-id: https://svn.code.sf.net/p/postfixadmin/code/trunk@1 a1433add-5e2c-0410-b055-b7f2511e0802 18 years ago			`<?php`
			`//`
			`// Postfix Admin`
			`// by Mischa Peters <mischa at high5 dot net>`
			`// Copyright (c) 2002 - 2005 High5!`
			`// Licensed under GPL for more info check GPL-LICENSE.TXT`
			`//`
			`// File: login.php`
			`//`
			`// Template File: login.tpl`
			`//`
			`// Template Variables:`
			`//`
			`// tMessage`
			`// tUsername`
			`//`
			`// Form POST \ GET Variables:`
			`//`
			`// fUsername`
			`// fPassword`
			`//`
admin/, users/ - code refactoring git-svn-id: https://svn.code.sf.net/p/postfixadmin/code/trunk@67 a1433add-5e2c-0410-b055-b7f2511e0802 17 years ago
			`require_once("../common.php");`


Initial Import in SourceForge git-svn-id: https://svn.code.sf.net/p/postfixadmin/code/trunk@1 a1433add-5e2c-0410-b055-b7f2511e0802 18 years ago			`if ($_SERVER['REQUEST_METHOD'] == "GET")`
			`{`
			`include ("../templates/header.tpl");`
			`include ("../templates/users_login.tpl");`
			`include ("../templates/footer.tpl");`
			`}`

			`if ($_SERVER['REQUEST_METHOD'] == "POST")`
			`{`
			`$fUsername = escape_string ($_POST['fUsername']);`
			`$fPassword = escape_string ($_POST['fPassword']);`

			`$query = "SELECT password FROM $table_mailbox WHERE username='$fUsername' AND active='1'";`
			`if ('pgsql'==$CONF['database_type'])`
			`{`
			`$query = "SELECT password FROM $table_mailbox WHERE username='$fUsername' AND active=true";`
			`}`
			`$result = db_query ($query);`
			`if ($result['rows'] == 1)`
			`{`
			`$row = db_array ($result['result']);`
			`$password = pacrypt ($fPassword, $row['password']);`

			`$query = "SELECT * FROM $table_mailbox WHERE username='$fUsername' AND password='$password' AND active='1'";`
			`if ('pgsql'==$CONF['database_type'])`
			`{`
			`$query = "SELECT * FROM $table_mailbox WHERE username='$fUsername' AND password='$password' AND active=true";`
			`}`
			`$result = db_query ($query);`
			`if ($result['rows'] != 1)`
			`{`
			`$error = 1;`
			`$tMessage = $PALANG['pLogin_password_incorrect'];`
			`$tUsername = $fUsername;`
			`}`
			`}`
			`else`
			`{`
			`$error = 1;`
			`$tMessage = $PALANG['pLogin_username_incorrect'];`
			`}`

			`if ($error != 1)`
			`{`
admin/, users/ - code refactoring git-svn-id: https://svn.code.sf.net/p/postfixadmin/code/trunk@67 a1433add-5e2c-0410-b055-b7f2511e0802 17 years ago			`session_regenerate_id();`
			`$_SESSION['sessid'] = array();`
			`$_SESSION['sessid']['roles'] = array();`
			`$_SESSION['sessid']['roles'][] = 'user';`
			`$_SESSION['sessid']['username'] = $fUsername;`
Initial Import in SourceForge git-svn-id: https://svn.code.sf.net/p/postfixadmin/code/trunk@1 a1433add-5e2c-0410-b055-b7f2511e0802 18 years ago			`header("Location: main.php");`
			`exit;`
			`}`

			`include ("../templates/header.tpl");`
			`include ("../templates/users_login.tpl");`
			`include ("../templates/footer.tpl");`
			`}`
			`/* vim: set expandtab softtabstop=3 tabstop=3 shiftwidth=3: */`
			`?>`