📄 cookie.auth.lib.php
字号:
<?php/* $Id: cookie.auth.lib.php,v 1.5 2001/12/24 11:15:13 loic1 Exp $ */// +--------------------------------------------------------------------------+// | Set of functions used to run cookie based authentication. |// | Thanks to Piotr Roszatycki <d3xter at users.sourceforge.net> and |// | Dan Wilson who builds this patch for the Debian package. |// +--------------------------------------------------------------------------+if (!defined('PMA_COOKIE_AUTH_INCLUDED')) { define('PMA_COOKIE_AUTH_INCLUDED', 1); /** * Sorts available languages by their true names * * @param array the array to be sorted * @param mixed a required parameter * * @return the sorted array * * @access private */ function PMA_cookie_cmp(&$a, $b) { return (strcmp($a[1], $b[1])); } // end of the 'PMA_cmp()' function /** * Displays authentication form * * @global string the font face to use * @global string the default font size to use * @global string the big font size to use * @global array the list of servers settings * @global array the list of available translations * @global string the current language * @global integer the current server id * @global array the array of cookie variables if register_globals is * off * * @return boolean always true (no return indeed) * * @access public */ function PMA_auth() { global $right_font_family, $font_size, $font_bigger; global $cfgServers, $available_languages; global $lang, $server; global $HTTP_COOKIE_VARS; // Tries to get the username from cookie whatever are the values of the // 'register_globals' and the 'variables_order' directives if (!empty($GLOBALS['pma_cookie_username'])) { $default_user = $GLOBALS['pma_cookie_username']; } else if (!empty($_COOKIE) && isset($_COOKIE['pma_cookie_username'])) { $default_user = $_COOKIE['pma_cookie_username']; } else if (!empty($HTTP_COOKIE_VARS) && isset($HTTP_COOKIE_VARS['pma_cookie_username'])) { $default_user = $HTTP_COOKIE_VARS['pma_cookie_username']; } $cell_align = ($GLOBALS['text_dir'] == 'ltr') ? 'left' : 'right'; // Title ?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="<?php echo $GLOBALS['available_languages'][$GLOBALS['lang']][2]; ?>" lang="<?php echo $GLOBALS['available_languages'][$GLOBALS['lang']][2]; ?>" dir="<?php echo $GLOBALS['text_dir']; ?>"><head><title><?php echo 'phpMyAdmin ' . PMA_VERSION . ' - ' . $GLOBALS['strLogin']; ?></title><style type="text/css"><!--body {font-family: <?php echo $right_font_family; ?>; font-size: <?php echo $font_size; ?>; color: #000000}form {font-family: <?php echo $right_font_family; ?>; font-size: <?php echo $font_size; ?>; font-weight: bold}td {font-family: <?php echo $right_font_family; ?>; font-size: <?php echo $font_size; ?>; font-weight: bold}h1 {font-family: <?php echo $right_font_family; ?>; font-size: <?php echo $font_bigger; ?>; font-weight: bold}.warning {font-family: <?php echo $right_font_family; ?>; font-size: <?php echo $font_size; ?>; font-weight: bold; color: #FF0000}//--></style></head><body bgcolor="<?php echo $GLOBALS['cfgRightBgColor']; ?>"><center><h1><?php echo sprintf($GLOBALS['strWelcome'], ' phpMyAdmin ' . PMA_VERSION); ?></h1><br /> <?php // Displays the languages form if (empty($cfgLang)) { echo "\n"; ?><!-- Language selection --><form method="post" action="index.php"> <input type="hidden" name="server" value="<?php echo $server; ?>" /> Language: <select name="lang" dir="ltr" onchange="this.form.submit();"> <?php echo "\n"; uasort($available_languages, 'PMA_cookie_cmp'); reset($available_languages); while (list($id, $tmplang) = each($available_languages)) { $lang_name = ucfirst(substr(strstr($tmplang[0], '|'), 1)); if ($lang == $id) { $selected = ' selected="selected"'; } else { $selected = ''; } echo ' '; echo '<option value="' . $id . '"' . $selected . '>' . $lang_name . ' (' . $id . ')</option>' . "\n"; } // end while ?> </select> <input type="submit" value="<?php echo $GLOBALS['strGo']; ?>" /></form><br /> <?php } echo "\n\n"; // Displays the warning message and the login form ?><p class="warning"><?php echo $GLOBALS['strCookiesRequired']; ?></p><br /><!-- Login form --><form method="post" action="index.php" name="login_form"> <table cellpadding="5"> <tr> <td align="<?php echo $cell_align; ?>"><?php echo $GLOBALS['strLogUsername']; ?> </td> <td align="<?php echo $cell_align; ?>"> <input type="text" name="pma_username" value="<?php echo (isset($default_user) ? $default_user : ''); ?>" size="24" onfocus="this.select()" /> </td> </tr> <tr> <td align="<?php echo $cell_align; ?>"><?php echo $GLOBALS['strLogPassword']; ?> </td> <td align="<?php echo $cell_align; ?>"> <input type="password" name="pma_password" value="" size="24" onfocus="this.select()" /> </td> </tr> <?php if (count($cfgServers) > 1) { echo "\n"; ?> <tr> <td align="<?php echo $cell_align; ?>"><?php echo $GLOBALS['strServerChoice']; ?> : </td> <td align="<?php echo $cell_align; ?>"> <select name="server"> <?php echo "\n"; // Displays the MySQL servers choice reset($cfgServers); while (list($key, $val) = each($cfgServers)) { if (!empty($val['host'])) { echo ' <option value="' . $key . '"'; if (!empty($server) && ($server == $key)) { echo ' selected="selected"'; } echo '>'; if ($val['verbose'] != '') { echo $val['verbose']; } else { echo $val['host']; if (!empty($val['port'])) { echo ':' . $val['port']; } // loic1: skip this because it's not a so good idea to // display sockets used to everybody // if (!empty($val['socket']) && PMA_PHP_INT_VERSION >= 30010) { // echo ':' . $val['socket']; // } } // loic1: if 'only_db' is an array and there is more than one // value, displaying such informations may not be a so // good idea if (!empty($val['only_db'])) { echo ' - ' . (is_array($val['only_db']) ? implode(', ', $val['only_db']) : $val['only_db']); } if (!empty($val['user']) && ($val['auth_type'] == 'basic')) { echo ' (' . $val['user'] . ')'; } echo ' </option>' . "\n"; } // end if (!empty($val['host'])) } // end while ?> </select> </td> </tr> <?php } // end if (server choice) echo "\n"; ?> <tr> <td colspan="2" align="center"> <?php if (count($cfgServers) == 1) { echo ' <input type="hidden" name="server" value="' . $server . '" />'; } echo "\n"; ?> <input type="hidden" name="lang" value="<?php echo $lang; ?>" /> <input type="submit" value="<?php echo $GLOBALS['strLogin']; ?>" /> </td> </tr> </table></form></center><script type="text/javascript" language="javascript">var uname = document.forms['login_form'].elements['pma_username'];var uname = document.forms['login_form'].elements['pma_password'];if (uname.value == '') { uname.focus();} else { pword.focus();}</script></body></html> <?php exit(); return TRUE; } // end of the 'PMA_auth()' function /** * Gets advanced authentication settings * * @global string the username if register_globals is on * @global string the password if register_globals is on * @global array the array of cookie variables if register_globals is * off * @global string the username sent by the login form * @global string the password sent by the login form * @global string the username of the user who logs out * @global boolean whether the login/password pair is grabbed from a * cookie or not * * @return boolean whether we get authentication settings or not * * @access public */ function PMA_auth_check() { global $PHP_AUTH_USER, $PHP_AUTH_PW; global $HTTP_COOKIE_VARS; global $pma_username, $pma_password, $old_usr; global $from_cookie; // Initialization $PHP_AUTH_USER = $PHP_AUTH_PW = ''; $from_cookie = FALSE; // The user wants to be logged out -> delete password cookie if (!empty($old_usr)) { setcookie('pma_cookie_password', ''); } // The user just logged in else if (!empty($pma_username)) { $PHP_AUTH_USER = $pma_username; $PHP_AUTH_PW = (empty($pma_password)) ? '' : $pma_password; } // At the end, try to set the $PHP_AUTH_USER & $PHP_AUTH_PW variables // from cookies whatever are the values of the 'register_globals' and // the 'variables_order' directives else { if (!empty($pma_cookie_username)) { $PHP_AUTH_USER = $pma_cookie_username; } else if (!empty($_COOKIE) && isset($_COOKIE['pma_cookie_username'])) { $PHP_AUTH_USER = $_COOKIE['pma_cookie_username']; } else if (!empty($HTTP_COOKIE_VARS) && isset($HTTP_COOKIE_VARS['pma_cookie_username'])) { $PHP_AUTH_USER = $HTTP_COOKIE_VARS['pma_cookie_username']; } if (!empty($pma_cookie_password)) { $PHP_AUTH_PW = $pma_cookie_password; $from_cookie = TRUE; } else if (!empty($_COOKIE) && isset($_COOKIE['pma_cookie_password'])) { $PHP_AUTH_PW = $_COOKIE['pma_cookie_password']; $from_cookie = TRUE; } else if (!empty($HTTP_COOKIE_VARS) && isset($HTTP_COOKIE_VARS['pma_cookie_password'])) { $PHP_AUTH_PW = $HTTP_COOKIE_VARS['pma_cookie_password']; $from_cookie = TRUE; } } // Returns whether we get authentication settings or not if (empty($PHP_AUTH_USER)) { return FALSE; } else { if (get_magic_quotes_gpc()) { $PHP_AUTH_USER = stripslashes($PHP_AUTH_USER); $PHP_AUTH_PW = stripslashes($PHP_AUTH_PW); } return TRUE; } } // end of the 'PMA_auth_check()' function /** * Set the user and password after last checkings if required * * @global array the valid servers settings * @global integer the id of the current server * @global array the current server settings * @global string the current username * @global string the current password * @global boolean whether the login/password pair has been grabbed from * a cookie or not * * @return boolean always true * * @access public */ function PMA_auth_set_user() { global $cfgServers, $server, $cfgServer; global $PHP_AUTH_USER, $PHP_AUTH_PW; global $from_cookie; // Ensures the valid 'only_db' setting is used if ($cfgServer['user'] != $PHP_AUTH_USER) { $servers_cnt = count($cfgServers); for ($i = 1; $i <= $servers_cnt; $i++) { if (isset($cfgServers[$i]) && ($cfgServers[$i]['host'] == $cfgServer['host'] && $cfgServers[$i]['user'] == $PHP_AUTH_USER)) { $server = $i; $cfgServer = $cfgServers[$i]; break; } } // end for } // end if $cfgServer['user'] = $PHP_AUTH_USER; $cfgServer['password'] = $PHP_AUTH_PW; // Set cookies if required (once per session) if (!$from_cookie) { // Duration = one month for username setcookie('pma_cookie_username', $cfgServer['user'], time() + (60 * 60 * 24 * 30)); // Duration = till the browser is closed for password setcookie('pma_cookie_password', $cfgServer['password']); } return TRUE; } // end of the 'PMA_auth_set_user()' function /** * User is not allowed to login to MySQL -> authentication failed * * @return boolean always true (no return indeed) * * @access public */ function PMA_auth_fails() { // Deletes password cookie and displays the login form setcookie('pma_cookie_password', ''); PMA_auth(); return TRUE; } // end of the 'PMA_auth()' function} // $__PMA_COOKIE_AUTH_LIB__?>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -