1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
|
<?php namespace HashOver;
// Copyright (C) 2018 Jacob Barkdull
// This file is part of HashOver.
//
// HashOver is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as
// published by the Free Software Foundation, either version 3 of the
// License, or (at your option) any later version.
//
// HashOver is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with HashOver. If not, see <http://www.gnu.org/licenses/>.
// Redirects the user back to where they came from
function redirect ($url = '')
{
// Check if we're redirecting to a specific URL
if (!empty ($url)) {
// If so, use it
header ('Location: ' . $url);
} else {
// If not, check if there is a redirect specified
if (!empty ($_GET['redirect'])) {
// If so, use it
header ('Location: ' . $_GET['redirect']);
} else {
// If not, redirect to moderation
header ('Location: ../moderation/');
}
}
// Exit after redirect
exit;
}
try {
// View setup
require (realpath ('../view-setup.php'));
// Check if the user submitted login information
if (!empty ($_POST['name']) and !empty ($_POST['password'])) {
// If so, attempt to log them in
$hashover->login->setLogin ();
// Check if the user is not admin
if ($hashover->setup->adminLogin ($hashover->login->loginHash) === false) {
// If so, logout
$hashover->login->clearLogin ();
// Sleep 5 seconds
sleep (5);
}
// And redirect user to desired view
redirect ();
}
// Check if we're logging out
if (isset ($_GET['logout'])) {
// If so, attempt to log the user out
$hashover->login->clearLogin ();
// And redirect user to main admin page
redirect ($hashover->setup->getHttpPath ('admin'));
}
// Template data
$template = array (
'title' => $hashover->locale->text['login'],
'logout' => $logout->asHTML ("\t\t\t"),
'sub-title' => $hashover->locale->text['admin-required'],
'name' => $hashover->locale->text['name'],
'password' => $hashover->locale->text['password'],
'email' => $hashover->locale->optionalize ('email'),
'website' => $hashover->locale->optionalize ('website'),
'login' => $hashover->locale->text['login']
);
// Load and parse HTML template
echo $hashover->templater->parseTemplate ('login.html', $template);
} catch (\Exception $error) {
$misc = new Misc ('php');
$message = $error->getMessage ();
$misc->displayError ($message);
}
|