qemudb/include/form_login.php

<?php
require_once(BASE."include/util.php");

$aClean = array(); //array of filtered user input

$aClean['sUserEmail'] = makeSafe($_POST['sUserEmail']);

/**************/
/* Login Form */
/**************/
echo '<form method="post" name="sFlogin" action="account.php">',"\n";
echo html_frame_start("Login to Application DB","400","",0)
?>

<!-- start of login form -->
<script type="text/javascript">
<!--
function cmd_send_passwd() {
    document.sFlogin.sCmd.value = "send_passwd";
    document.sFlogin.submit();
}
//-->
</script>

<table border="0" width="100%" cellspacing=0 cellpadding="10">  
    <tr>
        <td class=color1> E-mail </td> 
        <td class=color0> <input type="text" name="sUserEmail" value='<?php if(!empty($aClean['sUserEmail'])) echo $aClean['sUserEmail']?>'> </td>
    </tr>
    <tr>
        <td class=color1> Password </td> 
        <td class=color0> <input type="password" name="sUserPassword"> </td>
    </tr>
    <tr>
        <td colspan=2 align=center class=color3>
            <input type="submit" name="login" value="  Login  " class=button>
        </td>
      </tr>
  </table>
  
<!-- end of login form -->

<?php

echo html_frame_end("&nbsp;");
echo '<input type="hidden" name="sCmd" value="do_login">',"\n";
echo '<input type="hidden" name="sExtReferer" value="'.$_SERVER['HTTP_REFERER'].'">',"\n";
echo '</form>',"\n";

?>
   
  <p align=center>Don't have an account yet?<br>
  [<a href="account.php?sCmd=new" onMouseOver="document.status='';return true;">Create a New Account</a>]</p>

  <p align=center>Lost your password?<br>
  [<a href="javascript:cmd_send_passwd();" onMouseOver="document.status='';return true;">Email a New Password</a>]</p>

<?php

echo p(),p(),p();

?>
- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`<?php`
Filter all user input to reduce the security impact of manipulated data 2006-06-17 06:10:10 +00:00			`require_once(BASE."include/util.php");`

			`$aClean = array(); //array of filtered user input`

Fix variable naming of preferences/account related form variables to match our coding standards 2006-07-06 04:46:13 +00:00			`$aClean['sUserEmail'] = makeSafe($_POST['sUserEmail']);`
Filter all user input to reduce the security impact of manipulated data 2006-06-17 06:10:10 +00:00
- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`/**************/`
			`/* Login Form */`
			`/**************/`
Prefix all GPC variables according to our coding standard 2006-07-06 17:27:54 +00:00			`echo '<form method="post" name="sFlogin" action="account.php">',"\n";`
Initial revision 2004-03-15 16:22:00 +00:00			`echo html_frame_start("Login to Application DB","400","",0)`
			`?>`

			`<!-- start of login form -->`
- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`<script type="text/javascript">`
			`<!--`
Initial revision 2004-03-15 16:22:00 +00:00			`function cmd_send_passwd() {`
Prefix all GPC variables according to our coding standard 2006-07-06 17:27:54 +00:00			`document.sFlogin.sCmd.value = "send_passwd";`
			`document.sFlogin.submit();`
Initial revision 2004-03-15 16:22:00 +00:00			`}`
			`//-->`
			`</script>`

- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`<table border="0" width="100%" cellspacing=0 cellpadding="10">`
			`<tr>`
This patch make email address the user's username as requested in the TODO. query_users.php is modified even if we will drop it in the future to be sure it works everywhere. 2005-01-10 22:54:04 +00:00			`<td class=color1> E-mail </td>`
Fix variable naming of preferences/account related form variables to match our coding standards 2006-07-06 04:46:13 +00:00			`<td class=color0> <input type="text" name="sUserEmail" value='<?php if(!empty($aClean['sUserEmail'])) echo $aClean['sUserEmail']?>'> </td>`
- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`</tr>`
			`<tr>`
			`<td class=color1> Password </td>`
Fix variable naming of preferences/account related form variables to match our coding standards 2006-07-06 04:46:13 +00:00			`<td class=color0> <input type="password" name="sUserPassword"> </td>`
- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`</tr>`
			`<tr>`
Initial revision 2004-03-15 16:22:00 +00:00			`<td colspan=2 align=center class=color3>`
- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`<input type="submit" name="login" value=" Login " class=button>`
Initial revision 2004-03-15 16:22:00 +00:00			`</td>`
			`</tr>`
			`</table>`

			`<!-- end of login form -->`

- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`<?php`
Initial revision 2004-03-15 16:22:00 +00:00
			`echo html_frame_end(" ");`
Prefix all GPC variables according to our coding standard 2006-07-06 17:27:54 +00:00			`echo '<input type="hidden" name="sCmd" value="do_login">',"\n";`
			`echo '<input type="hidden" name="sExtReferer" value="'.$_SERVER['HTTP_REFERER'].'">',"\n";`
Initial revision 2004-03-15 16:22:00 +00:00			`echo '</form>',"\n";`

			`?>`

			`<p align=center>Don't have an account yet?<br>`
Prefix all GPC variables according to our coding standard 2006-07-06 17:27:54 +00:00			`[<a href="account.php?sCmd=new" onMouseOver="document.status='';return true;">Create a New Account</a>]</p>`
Initial revision 2004-03-15 16:22:00 +00:00
			`<p align=center>Lost your password?<br>`
			`[<a href="javascript:cmd_send_passwd();" onMouseOver="document.status='';return true;">Email a New Password</a>]</p>`

- replaced tons of tabs with spaces - replaced <? with <?php for compatibility sake (see TODO and CODING_STANDARD to know more) - improved overall code lisibility 2004-12-12 03:51:51 +00:00			`<?php`
Initial revision 2004-03-15 16:22:00 +00:00
			`echo p(),p(),p();`

			`?>`