PHP ver gevorderde |
|
dit is mijn inlog script:
<?php /* ------------------------- */
include("_include-config.php");
if(isset($_POST['login'],$_POST['pass'])) {
$dbres = mysql_query("SELECT `login`,`activated` FROM `[users]` WHERE `login`='{$_POST['login']}' AND `pass`=MD5('{$_POST['pass']}')");
if(($data = mysql_fetch_object($dbres)) && $data->activated == 1) {
$validate = md5(rand(0,1000));
setcookie("login",$data->login,time()+60*60*24,"/",".members.lycos.nl/*");
setcookie("validate",$validate,time()+60*60*24,"/",".members.lycos.nl/*");
mysql_query("REPLACE INTO `[online]`(`time`,`login`,`IP`,`validate`) values(NOW(),'{$_SERVER['REMOTE_ADDR']}','{$data->login}','$validate')");
$_SESSION['login'] = $data->login;
$_SESSION['IP'] = $_SERVER['REMOTE_ADDR'];
$dbres = mysql_query("SELECT *,UNIX_TIMESTAMP(`signup`) AS `signup` FROM `[users]` WHERE `login`='{$_SESSION['login']}'");
$_SESSION['data'] = mysql_fetch_object($dbres);
}
}
else if($_GET['x'] == "logout") {
mysql_query("DELETE FROM `[online]` WHERE `login`='{$_COOKIE['login']}' AND `validate`='{$_COOKIE['validate']}' AND `IP`='{$_SERVER['REMOTE_ADDR']}'");
setcookie("login",'',time()-24*60*60,"/","");
setcookie("validate",'',time()-24*60*60,"/","");
unset($_SESSION['login']);
unset($_SESSION['IP']);
unset($_SESSION['data']);
}
/* ------------------------- */ ?>
<html>
<head>
<title>[( ** )]</title>
<link rel="stylesheet" type="text/css" href="<?php echo ($_COOKIE['v'] == 2) ? "css-v2.css" : "css-v1.css"; ?>">
</head>
<body style="background: #AA3C3C; margin: 0px;">
<table align="center" width=100%>
<?php /* ------------------------- */
if($_GET['x'] == "logout")
print " <tr><td class=\"subTitle\"><b>Login</b></td></tr>\n <tr><td class=\"mainTxt\">Je bent nu uitgelogd\n <script language=\"javascript\">setTimeout('parent.window.location.reload()',500)</script></td></tr>\n";
else if($_GET['x'] == "lostpass") {
print " <tr><td class=\"subTitle\"><b>Wachtwoord vergeten</b></td></tr>\n";
if(isset($_GET['id'],$_GET['code'])) {
$dbres = mysql_query("SELECT `login` FROM `[temp]` WHERE `id`='{$_GET['id']}' AND `code`='{$_GET['code']}' AND `area`='lostpass'");
if($data = mysql_fetch_object($dbres)) {
$dbres = mysql_query("SELECT `login`,`email` FROM `[users]` WHERE `login`='{$data->login}'");
$data = mysql_fetch_object($dbres);
$newpass = rand(100000,999999);
mysql_query("UPDATE `[users]` SET `pass`=MD5('$newpass') WHERE `login`='{$data->login}'");
mysql_query("DELETE FROM `[temp]` WHERE `id`='{$_GET['id']}'");
mail($data->email,"** password","Je wachtwoord is gereset, je kan nu inloggen met: $newpass","From: *<**@*.com>\n");
print " <tr><td class=\"mainTxt\">Je nieuwe wachtwoord is ge-emailed naar {$data->email}</td></tr>\n";
}
}
else if(isset($_POST['email'],$_POST['login'])) {
$dbres = mysql_query("SELECT `login`,`email` FROM `[users]` WHERE `login`='{$_POST['login']}' AND `email`='{$_POST['email']}'AND `activated`=1");
if($data = mysql_fetch_object($dbres)) {
$code = rand(100000,999999);
mysql_query("INSERT INTO `[temp]`(`login`,`code`,`area`,`time`) values('{$data->login}',$code,'lostpass',NOW())");
$id = mysql_insert_id();
mail($data->email,"* password","Er is een aanvraag binnengekomen om je wachtwoord te resetten. Als jij dit niet hebt aangevraagd, negeer deze email dan. Heb jij dit wel gedaan, klik dan op deze link:\n**","From: * <**@*.com>");
print " <tr><td class=\"mainTxt\">Er is een email gestuurd naar {$data->email} met verdere instructies</td></tr>\n";
}
else
print " <tr><td class=\"mainTxt\">Er is geen gebruiker met die login en e-mail</td></tr>\n";
}
print <<<ENDHTML
<tr><td class="mainTxt" align="center"><br>
<form method="post"><table>
<tr><td width=100>Login:</td> <td><input type="text" name="login"></td></tr>
<tr><td width=100>E-Mail:<td> <td><input type="text" name="email"></td></tr>
<tr><td></td> <td align="right"><input type="submit" value="Ok" style="width: 100"></td></tr>
</form></table></td></tr>
ENDHTML;
}
else if($data) {
if($data->activated == 0)
print " <tr><td class=\"mainTxt\">Je account is nog niet geactiveerd</td></tr>\n";
else
print " <tr><td class=\"subTitle\"><b>Login</b></td></tr>\n <tr><td class=\"mainTxt\">Je bent nu ingelogd\n <script language=\"javascript\">setTimeout('parent.window.location.reload()',500)</script>\n </td></tr>\n";
}
else {
print " <tr><td class=\"subTitle\"><b>Login</b></td></tr>\n";
if(isset($_POST['login'],$_POST['pass']))
print " <tr><td class=\"mainTxt\">Verkeerde login of wachtwoord</td></tr>\n";
print <<<ENDHTML
<tr><td class="mainTxt">
<form method="post"><table align="center">
<tr><td width=100>Login:</td> <td><input type="text" name="login" maxlength=16 style="width: 150;"></td></tr>
<tr><td width=100>Wachtwoord:</td> <td><input type="password" name="pass" maxlength=16 style="width: 150;"></td></tr>
<tr><td></td><td align="right"><input type="submit" name="submit" style="width: 100;" value="Login"></td></tr>
</table></form>
</td></tr>
<tr><td class="mainTxt" align="center"><a href="login.php?x=lostpass">Wachtwoord vergeten?</a></td></tr>
ENDHTML;
}
/* ------------------------- */ ?>
</table>
</body>
</html>
<?php /* ------------------------- */ include("_include-config.php"); if(isset($_POST['login'],$_POST['pass'])) { $dbres = mysql_query("SELECT `login`,`activated` FROM `[users]` WHERE `login`='{$_POST['login']}' AND `pass`=MD5('{$_POST['pass']}')"); setcookie("login",$data->login,time()+60*60*24,"/",".members.lycos.nl/*"); setcookie("validate",$validate,time()+60*60*24,"/",".members.lycos.nl/*"); mysql_query("REPLACE INTO `[online]`(`time`,`login`,`IP`,`validate`) values(NOW(),'{$_SERVER['REMOTE_ADDR']}','{$data->login}','$validate')"); $_SESSION['login'] = $data->login; $_SESSION['IP'] = $_SERVER['REMOTE_ADDR']; $dbres = mysql_query("SELECT *,UNIX_TIMESTAMP(`signup`) AS `signup` FROM `[users]` WHERE `login`='{$_SESSION['login']}'"); } } else if($_GET['x'] == "logout") { mysql_query("DELETE FROM `[online]` WHERE `login`='{$_COOKIE['login']}' AND `validate`='{$_COOKIE['validate']}' AND `IP`='{$_SERVER['REMOTE_ADDR']}'"); unset($_SESSION['login']); unset($_SESSION['data']); } /* ------------------------- */ ?> <html> <head> <title>[( ** )]</title> <link rel="stylesheet" type="text/css" href=" <?php echo ($_COOKIE['v'] == 2) ? "css-v2.css" : "css-v1.css"; ?>"> </head> <body style="background: #AA3C3C; margin: 0px;"> <table align="center" width=100%> <?php /* ------------------------- */ if($_GET['x'] == "logout") print " <tr><td class=\"subTitle\"><b>Login</b></td></tr>\n <tr><td class=\"mainTxt\">Je bent nu uitgelogd\n <script language=\"javascript\">setTimeout('parent.window.location.reload()',500)</script></td></tr>\n"; else if($_GET['x'] == "lostpass") { print " <tr><td class=\"subTitle\"><b>Wachtwoord vergeten</b></td></tr>\n"; if(isset($_GET['id'],$_GET['code'])) { $dbres = mysql_query("SELECT `login` FROM `[temp]` WHERE `id`='{$_GET['id']}' AND `code`='{$_GET['code']}' AND `area`='lostpass'"); $dbres = mysql_query("SELECT `login`,`email` FROM `[users]` WHERE `login`='{$data->login}'"); $newpass = rand(100000,999999); mysql_query("UPDATE `[users]` SET `pass`=MD5('$newpass') WHERE `login`='{$data->login}'"); mysql_query("DELETE FROM `[temp]` WHERE `id`='{$_GET['id']}'"); mail($data->email,"** password","Je wachtwoord is gereset, je kan nu inloggen met: $newpass","From: *<**@*.com>\n"); print " <tr><td class=\"mainTxt\">Je nieuwe wachtwoord is ge-emailed naar {$data->email}</td></tr>\n"; } } else if(isset($_POST['email'],$_POST['login'])) { $dbres = mysql_query("SELECT `login`,`email` FROM `[users]` WHERE `login`='{$_POST['login']}' AND `email`='{$_POST['email']}'AND `activated`=1"); $code = rand(100000,999999); mysql_query("INSERT INTO `[temp]`(`login`,`code`,`area`,`time`) values('{$data->login}',$code,'lostpass',NOW())"); mail($data->email,"* password","Er is een aanvraag binnengekomen om je wachtwoord te resetten. Als jij dit niet hebt aangevraagd, negeer deze email dan. Heb jij dit wel gedaan, klik dan op deze link:\n**","From: * <**@*.com>"); print " <tr><td class=\"mainTxt\">Er is een email gestuurd naar {$data->email} met verdere instructies</td></tr>\n"; } else print " <tr><td class=\"mainTxt\">Er is geen gebruiker met die login en e-mail</td></tr>\n"; } <tr><td class="mainTxt" align="center"><br> <form method="post"><table> <tr><td width=100>Login:</td> <td><input type="text" name="login"></td></tr> <tr><td width=100>E-Mail:<td> <td><input type="text" name="email"></td></tr> <tr><td></td> <td align="right"><input type="submit" value="Ok" style="width: 100"></td></tr> </form></table></td></tr> ENDHTML; } else if($data) { if($data->activated == 0) print " <tr><td class=\"mainTxt\">Je account is nog niet geactiveerd</td></tr>\n"; else print " <tr><td class=\"subTitle\"><b>Login</b></td></tr>\n <tr><td class=\"mainTxt\">Je bent nu ingelogd\n <script language=\"javascript\">setTimeout('parent.window.location.reload()',500)</script>\n </td></tr>\n"; } else { print " <tr><td class=\"subTitle\"><b>Login</b></td></tr>\n"; if(isset($_POST['login'],$_POST['pass'])) print " <tr><td class=\"mainTxt\">Verkeerde login of wachtwoord</td></tr>\n"; <tr><td class="mainTxt"> <form method="post"><table align="center"> <tr><td width=100>Login:</td> <td><input type="text" name="login" maxlength=16 style="width: 150;"></td></tr> <tr><td width=100>Wachtwoord:</td> <td><input type="password" name="pass" maxlength=16 style="width: 150;"></td></tr> <tr><td></td><td align="right"><input type="submit" name="submit" style="width: 100;" value="Login"></td></tr> </table></form> </td></tr> <tr><td class="mainTxt" align="center"><a href="login.php?x=lostpass">Wachtwoord vergeten?</a></td></tr> ENDHTML; } /* ------------------------- */ ?> </table> </body> </html>
Welke code moet ik daarvoor gebruiken? |