-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathauth.inc.php
More file actions
57 lines (41 loc) · 1.89 KB
/
auth.inc.php
File metadata and controls
57 lines (41 loc) · 1.89 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
<?php
if (!defined('WC_BASE')) define('WC_BASE', __DIR__);
include WC_BASE . "/config/conf.php";
include WC_BASE . "/lib/crypto.php";
include WC_BASE . "/lib/log.php";
session_name('web-cyradm-session');
session_start();
$session_ok = $_SESSION['session_ok'];
$login = $_POST['login'];
$password = $_POST['login_password'];
$LANG = $_POST['LANG'];
if ($login && $password){
// Log access
logger(sprintf("LOGIN : %s %s %s %s %s%s", $_SERVER['REMOTE_ADDR'], $login, $_SERVER['HTTP_USER_AGENT'], $_SERVER['HTTP_REFERER'], $_SERVER['REQUEST_METHOD'], "\n"));
$pwd=new password;
$result=$pwd->check("adminuser",$login,$password,$CRYPT);
if ($result){
// Log successfull login
logger(sprintf("PASS : %s %s %s %s %s%s", $_SERVER['REMOTE_ADDR'], $login, $_SERVER['HTTP_USER_AGENT'], $_SERVER['HTTP_REFERER'], $_SERVER['REQUEST_METHOD'], "\n"));
$_SESSION['session_ok'] = TRUE;
$_SESSION['timestamp'] = time();
$_SESSION['user'] = $login;
$_SESSION['LANG'] = $LANG;
$_SESSION['init'] = 'init';
header ("Location: index.php");
} else {
// Log login failure
logger(sprintf("FAIL : %s %s %s %s %s%s", $_SERVER['REMOTE_ADDR'], $login, $_SERVER['HTTP_USER_AGENT'], $_SERVER['HTTP_REFERER'], $_SERVER['REQUEST_METHOD'], "\n"),"WARN");
$_SESSION = [];
#include ("failed.php");
header ("Location: failed.php?LANG=".$LANG);
}
} else {
print "<center><h4><font face=Verdana,Geneva,Arial,Helvetica,sans-serif>"
._("Web-cyradm is for authorized users only.").
"<br>"._("Make sure you entered the right password.").
"<br>"._("Push the back button in your browser to try again.").
"<br>"._(" Your attempt to login has been stored.")."</font></h4></center>";
}
?>
<!-- ###################################### End auth.inc.php ################################################ --!>