claunia/qemudb
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2025-05-24. You can view files and clone it, but cannot push or open issues or pull requests.
Files
56aa6d18b51c231c2b84466f1d2bd883f1673edb
qemudb/account.php
Chris Morgan c2a45094e2 Add a dropdown list of vendors to the app submit page. Automatch the dropdown 
vendor selection on the admin side of there is an exact or partial name match.
Clear out the vendor field if a match is found.
Display username when logging in to the db.
2004-04-06 21:26:10 +00:00

198 lines
4.2 KiB
PHP
Raw Blame History

<?
/*
* Account Login / Logout Handler for AppDB
*
*/
include("path.php");
include(BASE."include/"."incl.php");
//set http header to not cache
header("Pragma: no-cache");
header("Cache-control: no-cache");
//check command and process
do_account($cmd);
//process according to $cmd from URL
function do_account($cmd = null)
{
global $ext_username, $ext_password, $ext_password2, $ext_realname, $ext_email;
if (! $cmd) return 0;
switch($cmd)
{
case "new":
apidb_header("New Account");
include(BASE."include/"."form_new.php");
apidb_footer();
exit;
case "do_new":
cmd_do_new();
exit;
case "login":
apidb_header("Login");
include(BASE."include/"."form_login.php");
apidb_footer();
exit;
case "do_login":
cmd_do_login();
exit;
case "send_passwd":
cmd_send_passwd();
exit;
case "logout":
apidb_session_destroy();
addmsg("You are successfully logged out.", "green");
redirect(apidb_fullurl("index.php"));
exit;
}
//not valid command, display error page
errorpage("Internal Error","This module was called with incorrect parameters");
exit;
}
//retry
function retry($cmd, $msg)
{
addmsg($msg, "red");
do_account($cmd);
}
//create new account
function cmd_do_new()
{
global $ext_username, $ext_password, $ext_password2, $ext_realname, $ext_email;
global $current;
if(ereg("^.+@.+\\..+$", $ext_username))
{
$ext_username = "";
retry("new", "Invalid Username, must not contain special characters");
return;
}
if(strlen($ext_username) < 3)
{
$ext_username = "";
retry("new", "Username must be at least 3 characters");
return;
}
if(strlen($ext_password) < 5)
{
retry("new", "Password must be at least 5 characters");
return;
}
if($ext_password != $ext_password2)
{
retry("new", "Passwords don't match");
return;
}
if(strlen($ext_realname) == 0)
{
retry("new", "You don't have a Real name?");
return;
}
if(!ereg("^.+@.+\\..+$", $ext_email))
{
$ext_email = "";
retry("new", "Invalid email address");
return;
}
$user = new User();
if($user->exists($ext_username))
{
$ext_username = "";
retry("new", "That username is already in use");
return;
}
$result = $user->create($ext_username, $ext_password, $ext_realname, $ext_email);
if($result == null)
{
$user->login($ext_username, $ext_password);
addmsg("Account created! ($ext_username)", "green");
redirect(apidb_fullurl());
}
else
retry("new", "Failed to create account: $result");
}
//email lost password
function cmd_send_passwd()
{
global $ext_username;
$user = new User();
$userid = $user->lookup_userid($ext_username);
$passwd = generate_passwd();
if ($userid)
{
if ($user->update($userid, $passwd))
{
$msg = "Application DB Lost Password\n";
$msg .= "----------------------------\n";
$msg .= "We have received a request that you lost your password.\n";
$msg .= "We will create a new password for you. You can then change\n";
$msg .= "your password at the Preferences screen.\n\n";
$msg .= "Your new password is: ".$passwd."\n\n";
if (mail($user->lookup_email($userid), '[AppDB] Lost Password', $msg))
{
addmsg("Your new password has been emailed to you.", "green");
}
else
{
addmsg("Your password has changed, but we could not email it to you. Contact Support!", "red");
}
}
else
{
addmsg("Internal Error, we could not update your password.", "red");
}
}
else
{
addmsg("Sorry, that username [$ext_username] does not exist.", "red");
}
redirect(apidb_fullurl("account.php?cmd=login"));
}
//on login handler
function cmd_do_login()
{
global $ext_username, $ext_password;
global $ext_referer;
global $current;
$user = new User();
$result = $user->login($ext_username, $ext_password);
if($result == null)
{
$current = $user;
addmsg("You are successfully logged in as '$user->username'.", "green");
redirect(apidb_fullurl("index.php"));
}
else
{
retry("login","Login failed ($result)");
$current = 0;
}
}
?>
Reference in New Issue View Git Blame Copy Permalink