Changeset 54 for administrace/SubFiles/LoginMaster.php

Timestamp:

Aug 21, 2007, 3:45:42 PM (17 years ago)

Author:

george

Message:

Oprava chyb v administraci.

File:

• administrace/SubFiles/LoginMaster.php (modified) (1 diff)

administrace/SubFiles/LoginMaster.php

@@ -1 +1 @@
 <?php
 
-require_once('../../config.php');
+$User = addslashes($_POST['user']);
+$Pass = addslashes($_POST['pass']);
 
-  $User = $_POST['user'];
-  $Pass = $_POST['pass'];
-
-    include 'SubFiles/DatabaseConection.php';
-    $Database = new Database($DatabaseHost, $DatabaseUser, $DatabasePassword);
-    $Database->SelectDatabase('wow');
-    
-    $Line = mysql_fetch_array($Database->SQLCommand("SELECT * FROM user WHERE user = '$User' AND Ban = 0"));
-    if (!$Line) {
-      die('Uživatel s touto pøezdívkou neexistuje<br />');
-    } else {
-      If ($Line['Pass'] == $Pass) {
-        // pøihlá‘ení
-        $_SESSION['Licence'] = 1;
-        $_SESSION['User'] = $User;
+$Database->select_db('wow');
+$DbResult = $Database->query('SELECT * FROM user WHERE user = "'.$User.'" AND Ban = 0');
+if($DbResult->num_rows == 0) 
+{
+  die('Uživatel s touto pøezdívkou neexistuje<br />');
+} else 
+{
+  $Line = $DbResult->fetch_array();
+  If ($Line['Pass'] == $Pass) 
+  {
+    // pøihlá‘ení
+    $_SESSION['Licence'] = 1;
+    $_SESSION['User'] = $User;
     //    echo 'Pøihlá‘ení se povedlo pokraèovat mùžete <A href="../master.php">Zde</a>';
         
         // zapsání poslení použité IP
-        $Addres = $_SERVER['REMOTE_ADDR'];    
-        $Database->SQLCommand("UPDATE user SET LastLogin = now(), LastIP = '$Addres' WHERE user = '$User'");
+    $Addres = $_SERVER['REMOTE_ADDR'];    
+    $Database->query("UPDATE user SET LastLogin = now(), LastIP = '$Addres' WHERE user = '$User'");
 
-      } else {
-        $_SESSION['Licence'] = 0;
-        die('Špatné heslo');
-        }
-    }
-    $Database->Disconnect();
+  } else 
+  {
+    $_SESSION['Licence'] = 0;
+    die('Špatné heslo');
+  }
+}
+
 ?>