login.php

vpn虚拟专用网络的一个开源搭建工具

<?
include('lib/conf.php');
require_once 'lib/Session.php';
//session_start();

if (($_POST['post']) && ($_POST['post'])==1) {
	$user_name = $_POST['user_name'];
	$pass = md5($_POST['pass']);
}
else {
	$user_name = $_SESSION['user_name'];
	$pass = $_SESSION['pass'];
	$uid = $_SESSION['uid'];
}

if ((!isset($user_name)) | (!isset($pass))) {

//@mkdir("/tmp/ovpnwc_sessions", 0766);
//ini_set("memory_limit", "16M");
//session_save_path("/tmp/ovpnwc_sessions");

include('head.php');
// escape from php mode.
?>
		<div id="maincontent">
			<div class="item">
				<h2 class="title">.: User LOGIN :.</h2>
<form action="<?=$_SERVER["PHP_SELF"]?><?if($_SERVER["QUERY_STRING"]){ echo"?". $_SERVER["QUERY_STRING"];}?>" method="POST">
<p align="left">Reserved area, you have to login first to continue.</p>
			<p align="left">User Name:
			<input type="text" name="user_name" size="30" maxlength="30" /></p>
			<p align="left">Password:
			<input type="password" name="pass" size="30" maxlength="30" /></p>
			<input type="hidden" name="post" value="1">
			<input type="submit" value="Go" />
</form>
<p align="center"><a href="index.php?pag=useradd">Make a new registration</a> | <a href="index.php">Go to homepage</a></p>
			</div>
		</div>
<?
include('foot.php');
exit();
}

if ((isset($_POST['user_name'])) | (isset($_POST['pass']))) {
	session_register("user_name");
	session_register("pass"); // register user_name and pass as session variables.
}
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
mysql_select_db($dbname);

$query="SELECT * FROM USERS WHERE user_name='$user_name' AND pass='$pass'";
$result = mysql_query($query)
or die("<br>Invalid query: $query\n<BR>\n" . mysql_error());
$row = mysql_fetch_array($result);
if (!$result || mysql_num_rows($result) < 1) {
	$uid = -1;
	$valid_user = 0;
}
else {
	$uid = $row['id'];
	session_register("uid");

	if (mysql_result($result,0,'status') == '1') $valid_user = 1;
	else $valid_user = 0;
}

if ($valid_user!=1) {

session_unset();   // Unset session variables.
session_destroy(); // End Session we created earlier.

//mysql_close($conn);
include('head.php');
// escape from php mode.
?>
		<div id="maincontent">
			<div class="item">
				<h2 class="title">.: User LOGIN :.</h2>
<form action="<?=$PHP_SELF?><?if($QUERY_STRING){ echo"?". $QUERY_STRING;}?>" method="POST">
<p align="left">Access problems, this came from bad data entry or account suspended.<br>
Please verify and try again!</p>
			<p align="left">User Name:
			<input type="text" name="user_name" size="30" maxlength="30" /></p>
			<p align="left">Password:
			<input type="password" name="pass" size="30" maxlength="30" /></p>
			<input type="hidden" name="post" value="1">
			<input type="submit" value="Go" />
</form>
<p align="center"><a href="index.php?pag=useradd">Make a new registration</a> | <a href="index.php">Go to homepage</a></p>
			</div>
		</div>
<?
include('foot.php');
exit();
}
?>