login.php
上传用户:gzy2002
上传日期:2010-02-11
资源大小:1785k
文件大小:4k
- <?php
- // +-------------------------------------------------------------+
- // | DeskPRO v [2.0.1 Production]
- // | Copyright (C) 2001 - 2004 Headstart Solutions Limited
- // | Supplied by WTN-WDYL
- // | Nullified by WTN-WDYL
- // | Distribution via WebForum, ForumRU and associated file dumps
- // +-------------------------------------------------------------+
- // | DESKPRO IS NOT FREE SOFTWARE
- // +-------------------------------------------------------------+
- // | License ID : Full Enterprise License =) ...
- // | License Owner : WTN-WDYL Team
- // +-------------------------------------------------------------+
- // | $RCSfile: login.php,v $
- // | $Date: 2004/02/10 01:34:25 $
- // | $Revision: 1.24 $
- // +-------------------------------------------------------------+
- // | File Details:
- // | - User interface login page and lost password handler.
- // +-------------------------------------------------------------+
- error_reporting(E_ALL & ~E_NOTICE);
- require_once('./global.php');
- //Nullify WTN-WDYL Team
- $template_cache = templatecache('PROFILE_login,HF_footer,HF_header');
- // globalise variables
- $global = array (
- array('username'), // the users choosen username
- array('password'), // users choosen password
- array('password2'), // users choosen password repeated
- array('email') // the users choosen email address
- );
- rg($global);
- // default do
- $_REQUEST['do'] = trim($_REQUEST['do']);
- if (!isset($_REQUEST['do']) or $_REQUEST['do'] == "") {
- $_REQUEST['do'] = "start";
- }
- $page = 'login';
-
- ############################### LOGOUT ###############################
- if ($_REQUEST['do'] == "logout") {
- delete_session();
- $session = make_session($userid='', $session[language]);
- if (!$acceptcookies) {
- $session_url = '?s='.$session[sessionid];
- $session_ampersand = '&';
- } else {
- $session_url = '';
- $session_ampersand = '?';
- }
- delete_cookies();
- jump("index.php", "redirect_logout");
- }
- ############################### LOSTPASS (username) ###############################
- if ($_REQUEST['do'] == "lostpass_u") {
- if ($_REQUEST['username']) {
- $user_details = $db->query_return("
- SELECT id, username, email
- FROM user
- WHERE username = '" . mysql_escape_string($_REQUEST[username]) . "'
- ");
-
- if ($db->num_rows()) {
-
- // setup change password and email
- $password = substr(md5(time()),0,6);
- $db->query("UPDATE user SET password = '$password' WHERE id = '$user_details[id]'");
-
- $user_details = update_user_details($user_details);;
- eval(makeemaileval('body', 'BODY_newpass', $subject));
- dp_mail($user_details['email'], $subject, $body);
- $sent_details_u = 1;
- } else {
- $bad_username = 1;
- }
- } else {
- $bad_username = 1;
- }
- }
- ############################### LOSTPASS (email) ###############################
- if ($_REQUEST['do'] == "lostpass_e") {
- if ($_REQUEST['email']) {
- $user_details = $db->query_return("
- SELECT id, username, email
- FROM user
- WHERE email = '" . mysql_escape_string($_REQUEST['email']) . "'
- ");
- if (!$db->num_rows()) {
-
- $userid = $db->query_return("
- SELECT userid
- FROM user_email
- WHERE validated
- AND email = '" . mysql_escape_string($_REQUEST['email']) . "'
- ");
- if (!$db->num_rows()) {
- $bad_email = 1;
- } else {
- $user_details = $db->query_return("
- SELECT id, username
- FROM user
- WHERE id = '$userid[userid]'
- ");
- $user_details['email'] == $_REQUEST['email'];
- }
- }
- if (!$bad_email) {
- // setup change password and email
- $password = substr(md5(time()),0,6);
- $db->query("UPDATE user SET password = '$password' WHERE id = '$user_details[id]'");
- $user_details = update_user_details($user_details);;
- eval(makeemaileval('body', 'BODY_newpass', $subject));
- dp_mail($user_details['email'], $subject, $body);
- $sent_details_e = 1;
- }
- } else {
- $bad_email = 1;
- }
- }
- ############################### LOGIN TEMPLATE ###############################
- // show form
- eval(makeeval('header', 'HF_header'));
- eval(makeeval('footer', 'HF_footer'));
- $currentpage = 'login.php' . $session_url;
- eval(makeeval('echo', 'PROFILE_login'));
- eval(makeeval('echo', 'log_out_'));