Startseite Erkunden Hilfe
Registrieren Anmelden
DoubleVee
/
prirp-samp
1
0
Fork 0
Dateien
Branch: master
Branches Tags
prirp-samp
/
website
/
includes
/
func_login.php

func_login.php 5.0 KB
Permalink Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164 
  1. <?php
    2. 

  2. 

  3. require_once($_SERVER['DOCUMENT_ROOT'] . "/modules/core/config.php"); 
    4. 

  4. 

  5. session_start();
    6. 

  6. 

  7. if(isset($_SESSION["playersqlid"])) exit("false");
    8. 

  8. 

  9. // Processing form data when form is submitted
    10. 

  10. if($_SERVER["REQUEST_METHOD"] == "POST")
    11. 

  11. {
    12. 

  12. 	$username = $_POST["username"];
    13. 

  13. 	$password = $_POST['password'];
    14. 

  14. 

  15. 	
    16. 

  16. 	if(empty($username) || empty($password)) { 
    17. 

  17. 	    $errors++;
    18. 

  18. 	    $gabim = "Please fill in all the fields.";
    19. 

  19. 	}
    20. 

  20. 	
    21. 

  21. 	if(!$errors)
    22. 

  22. 	{
    23. 

  23. 		$link = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME);
    24. 

  24. 

  25. 		if($link === false){
    26. 

  26. 			die("ERROR: Could not connect. " . mysqli_connect_error());
    27. 

  27. 		}
    28. 

  28. 

  29. 		$username = mysqli_real_escape_string($link, $username);
    30. 

  30. 		$password = mysqli_real_escape_string($link, $password); 		
    31. 

  31. 

  32. 		$user_check_query = "SELECT ID, Password, Quiz, Admin, Email, Namechanges, Phonechanges, Discord, Forum, DonateRank FROM accounts WHERE Username = '$username' LIMIT 1";
    33. 

  33. 		$result = mysqli_query($link, $user_check_query);
    34. 

  34. 		$result2 = mysqli_fetch_array($result, MYSQLI_ASSOC);
    35. 

  35. 		
    36. 

  36. 		$rowcount = $result->num_rows;	
    37. 

  37. 		
    38. 

  38. 		if($rowcount > 0)
    39. 

  39. 		{
    40. 

  40. 			$passi_numer_dy = hash('whirlpool', $password); 
    41. 

  41. 			$passi_numer_dy = strtoupper($passi_numer_dy);
    42. 

  42. 			
    43. 

  43. 			$passi = $result2['Password'];
    44. 

  44. 			$adminlevel = $result2['Admin'];
    45. 

  45. 			$useridja = $result2['ID'];
    46. 

  46. 			$emaili = $result2['Email'];
    47. 

  47. 			$namech = $result2['Namechanges'];
    48. 

  48. 			$phonech = $result2['Phonechanges'];
    49. 

  49. 			$discordauth = $result2['Discord'];
    50. 

  50. 			$forumauth = $result2['Forum'];
    51. 

  51. 			$donaterank = $result2['DonateRank'];
    52. 

  52. 			$quiz = $result2['Quiz'];
    53. 

  53. 

  54. 			mysqli_free_result($result);
    55. 

  55. 

  56. 			$user_check_query = "SELECT reason, date FROM bans WHERE name = '$username' LIMIT 1";
    57. 

  57. 			$result = mysqli_query($link, $user_check_query);
    58. 

  58. 

  59. 			$rowcount = $result->num_rows;
    60. 

  60. 		
    61. 

  61. 			if($rowcount == 0)
    62. 

  62. 			{
    63. 

  63. 				if($passi_numer_dy == $passi)
    64. 

  64. 				{				
    65. 

  65. 					$chars = array( 
    66. 

  66. 						array("N/A", -1, 0),
    67. 

  67. 						array("N/A", -1, 0),
    68. 

  68. 						array("N/A", -1, 0),
    69. 

  69. 						array("N/A", -1, 0),
    70. 

  70. 						array("N/A", -1, 0),
    71. 

  71. 						array("N/A", -1, 0)
    72. 

  72. 					);		
    73. 

  73. 			
    74. 

  74. 					$user_check_query = "SELECT ID, char_name, Model FROM characters WHERE master = '$useridja' LIMIT 6";
    75. 

  75. 					$result = mysqli_query($link, $user_check_query);
    76. 

  76. 					
    77. 

  77. 					$count = 0;
    78. 

  78. 					while($result2 = mysqli_fetch_array($result, MYSQLI_ASSOC))
    79. 

  79. 					{
    80. 

  80. 						$emri = $result2['char_name'];
    81. 

  81. 						$playid = $result2['ID'];
    82. 

  82. 						$Model = $result2['Model'];
    83. 

  83. 

  84. 						$chars[$count][0] = returnName($emri);
    85. 

  85. 						$chars[$count][1] = $playid;
    86. 

  86. 						$chars[$count][2] = $Model;
    87. 

  87. 

  88. 						$count++;
    89. 

  89. 					}
    90. 

  90. 

  91. 					//mysqli_free_result($result);
    92. 

  92. 

  93. 					//if($count > 0)
    94. 

  94. 					//{
    95. 

  95. 						//$averagehours = averageHours($link, $username);
    96. 

  96. 					//}
    97. 

  97. 					$averagehours = 0.0;
    98. 

  98. 					
    99. 

  99. 					$client_ip = returnIpAddress();
    100. 

  100. 					$client_browser = getBrowser();
    101. 

  101. 					$client_os = getOS();
    102. 

  102. 					
    103. 

  103. 					$user_check_query = "INSERT INTO ucp_logins(User, IP, Browser, OS) VALUES ('$username', '$client_ip', '$client_browser', '$client_os')";
    104. 

  104. 					$result = mysqli_query($link, $user_check_query);
    105. 

  105. 

  106. 					$_SESSION['username'] = $username;	
    107. 

  107. 					$_SESSION['quiz'] = $quiz;	
    108. 

  108. 					$_SESSION['donaterank'] = $donaterank;			
    109. 

  109. 					$_SESSION['adminlevel'] = $adminlevel;					
    110. 

  110. 					$_SESSION['playersqlid'] = $useridja;
    111. 

  111. 					$_SESSION['playeremail'] = $emaili;	
    112. 

  112. 					$_SESSION['namechanges'] = $namech;	
    113. 

  113. 					$_SESSION['phonechanges'] = $phonech;					
    114. 

  114. 					$_SESSION['characters'] = $chars;
    115. 

  115. 					$_SESSION['discord_auth'] = $discordauth;		
    116. 

  116. 					$_SESSION['forum_auth'] = $forumauth;
    117. 

  117. 					$_SESSION['averagehours'] = $averagehours;
    118. 

  118. 

  119. 					exit("true");
    120. 

  120.                     mysqli_free_result($result);
    121. 

  121.                     mysqli_close($link);
    122. 

  122. 				}
    123. 

  123. 				else 
    124. 

  124. 				{
    125. 

  125. 					mysqli_close($link);
    126. 

  126. 					
    127. 

  127. 					$gabim = "Invalid credentials given";
    128. 

  128. 				}
    129. 

  129. 			}
    130. 

  130. 			else
    131. 

  131. 			{
    132. 

  132. 				$BanData = mysqli_fetch_array($result, MYSQLI_ASSOC);
    133. 

  133. 				
    134. 

  134. 				mysqli_free_result($result);
    135. 

  135. 				
    136. 

  136. 				?>
    137. 

  137. 				
    138. 

  138. 				<app-popup _nghost-kmh-c158="">
    139. 

  139. 					<div _ngcontent-kmh-c158="" class="popper">
    140. 

  140. 						<div _ngcontent-kmh-c158="" class="popup">
    141. 

  141. 							<header _ngcontent-kmh-c158=""><span _ngcontent-kmh-c158="">You've been banned!</span><span _ngcontent-kmh-c158="" class="close" onclick="document.getElementById('app-alerts').innerHTML = '';"><i _ngcontent-kmh-c158="" class="far fa-fw fa-times"></i></span></header>
    142. 

  142. 							<div _ngcontent-kmh-c158="" class="popup-content">	
    143. 

  143. 							<p>It appears there is an active ban on your account.<br><br>Ban for "<?php echo $BanData['reason']; ?>", issued <?php echo $BanData['date']; ?><br><br>If you feel that you've been banned wrongly, please appeal in the <strong>Ban Appeal section</strong> of our forum.</p>
    144. 

  144. 							</div>
    145. 

  145. 						</div>
    146. 

  146. 					</div>
    147. 

  147. 				</app-popup>
    148. 

  148. 

  149. 				<?php
    150. 

  150. 				
    151. 

  151. 				mysqli_close($link);
    152. 

  152. 				exit();
    153. 

  153. 			}
    154. 

  154. 		}
    155. 

  155. 		else $gabim = "Account was not found";		
    156. 

  156. 	}
    157. 

  157. 	//else $gabim = "There are a few errors with the form, correct them";
    158. 

  158. }
    159. 

  159. ?>
    160. 

  160. 

  161. 					<ul _ngcontent-kmh-c147="" class="message_pop_n">
    162. 

  162. 						<li _ngcontent-kmh-c147="" class="info"><span _ngcontent-kmh-c147="" class="icon"><i _ngcontent-kmh-c147="" class="fa fa-fw fa-info-circle"></i></span><span _ngcontent-kmh-c147="" translate="" class="message"> <?php echo $gabim; ?> </span></li>
    163. 

  163. 						<!---->
    164. 

  164. 					</ul>
    165.