탐색 도움말
로그인
richard
/
sorbetcms
Watch 1
Star 0
포크 1
코드 이슈 0 풀 리퀘스트 0 커밋 79 릴리즈 0 위키

A tumblelog CMS built on AJAX, PHP and MySQL.

트리: 8dabf4065d
브랜치 태그
sorbetcms/classes/user.class.php

user.class.php 4.5KB
히스토리 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144 
  1. <?php

  2. if(!defined('entry') || !entry) die('Not a valid page'); 

  3. /* ===========================

  4. 

  5.   gelato CMS - A PHP based tumblelog CMS

  6.   development version

  7.   http://www.gelatocms.com/

  8. 

  9.   gelato CMS is a free software licensed under the GPL 2.0

  10.   Copyright (C) 2007 by Pedro Santana <pecesama at gmail dot com>

  11. 

  12.   =========================== */

  13. ?>

  14. <?php

  15. require_once("configuration.class.php");

  16. 

  17. class user extends Conexion_Mysql {

  18. 	var $conf;

  19. 	var $cookieString;

  20. 	var $cookieTime;

  21. 	var $persist = false;

  22. 

  23. 

  24. 	function user() {

  25. 		parent::Conexion_Mysql(DB_name, DB_Server, DB_User, DB_Password);

  26. 		$this->cookie_life = 60*24*3600;

  27. 		$this->cookieTime = time();

  28. 		$this->conf = new configuration();

  29. 	}

  30. 

  31. 	function isAdmin() {

  32. 		

  33. 		if ((!empty($_SESSION["user_id"]) && !empty($_SESSION["user_login"]))  && (isset($_SESSION['authenticated'])  && $_SESSION['authenticated']==true)) {

  34. 			return true;

  35. 		}

  36. 		

  37. 		if(isset($_COOKIE["PHPSESSID"]) && $_COOKIE["PHPSESSID"]!="") {

  38. 			if ((!empty($_SESSION["user_id"]) && !empty($_SESSION["user_login"]))  && (isset($_SESSION['authenticated'])  && $_SESSION['authenticated']==true)) {

  39. 				return true;

  40. 			} 

  41. 		}

  42. 		

  43. 		return false;

  44. 		

  45. 	}

  46. 

  47. 	function validateUser($username="", $password="") {

  48. 

  49. 		if ($this->ejecutarConsulta("SELECT id_user, login, password  FROM ".$this->conf->tablePrefix."users WHERE login='".sql_escape($username)."' AND password='".$password."'")) {

  50. 			if ($this->contarRegistros()>0) {

  51. 				$register=$this->obtenerRegistro();

  52. 				$_SESSION['user_id']=$register["id_user"];

  53. 				$_SESSION['user_login']=$register["login"];

  54. 				$_SESSION['authenticated'] = true;

  55. 				if (isset($_POST["save_pass"])) {

  56. 					$this->persist = true;

  57. 					setcookie("PHPSESSID",session_id(),$this->cookieTime+$this->cookie_life);

  58. 				} 

  59. 				return true;

  60. 			} else {

  61. 				return false;

  62. 			}

  63. 		} else {

  64. 			return false;

  65. 		}

  66. 	}

  67. 

  68. 	function closeSession() {	

  69. 		if (!$this->persist) session_destroy();

  70. 		return true;	

  71. 	}

  72. 

  73. 	function userExist($user="") {

  74. 		if ($this->ejecutarConsulta("SELECT * FROM ".$this->conf->tablePrefix."users WHERE login='".$user."'")) {

  75. 			if ($this->contarRegistros()>0) {

  76. 				return true;

  77. 			} else {

  78. 				return false;

  79. 			}

  80. 		}

  81. 	}

  82. 	

  83. 	function isAuthenticated(){

  84. 		return $this->isAdmin();

  85. 	}

  86. 

  87. 	function addUser($fieldsArray) {

  88. 		if ($this->ejecutarConsulta("SELECT id_user FROM ".$this->conf->tablePrefix."users WHERE login='".$fieldsArray['login']."'")) {

  89. 			if ($this->contarRegistros()==0) {

  90. 				if ($this->insertarDeFormulario($this->conf->tablePrefix."users", $fieldsArray)) {

  91. 					$this->confirmationEmail($fieldsArray['email'], $fieldsArray['login'], $fieldsArray['password']);

  92. 					header("Location: ".$this->conf->urlGelato."/admin/admin.php?added=true");

  93. 					die();

  94. 				} else {

  95. 					header("Location: ".$this->conf->urlGelato."/admin/admin.php?error=2&des=".$this->merror);

  96. 					die();

  97. 				}

  98. 			} else {

  99. 				header("Location: ".$this->conf->urlGelato."/admin/admin.php?error=1");

  100. 				die();

  101. 			}

  102. 		}

  103. 	}

  104. 

  105. 	function modifyUser($fieldsArray, $id_user) {

  106. 		if ($this->modificarDeFormulario($this->conf->tablePrefix."users", $fieldsArray, "id_user=$id_user")) {

  107. 			header("Location: ".$this->conf->urlGelato."/admin/admin.php?modified=true");

  108. 			die();

  109. 		} else {

  110. 			header("Location: ".$this->conf->urlGelato."/admin/admin.php?error=2&des=".$this->merror);

  111. 			die();

  112. 		}

  113. 	}

  114. 

  115. 	function deleteUser($idUser) {

  116. 		$this->ejecutarConsulta("DELETE FROM ".$this->conf->tablePrefix."users WHERE id_user=".$idUser);

  117. 	}

  118. 

  119. 	function getUsers($show="10", $from="0") {

  120. 		$sqlStr = "select * from ".$this->conf->tablePrefix."users ORDER BY id_user DESC LIMIT $from,$show";

  121. 		$this->ejecutarConsulta($sqlStr);

  122. 		return $this->mid_consulta;

  123. 	}

  124. 

  125. 	function getUserByID($idUser) {

  126. 		if ($this->ejecutarConsulta("select * from ".$this->conf->tablePrefix."users where id_user=".$idUser)) {

  127. 			if ($this->contarRegistros()>0) {

  128. 				return $registro=$this->obtenerRegistro();

  129. 			} else {

  130. 				return false;

  131. 			}

  132. 		}

  133. 	}	

  134. 

  135. 	function confirmationEmail($email="", $user="", $password="") {

  136. 		$msg =  "<font face=verdana><em><font size=2>Account information on <strong>gelato CMS</strong></font></em><br/><br/>";

  137. 		$msg .=	"<font size=1>Username: <strong>".$user."</strong><br/><br/>";

  138. 		$msg .=	"Password: <strong>".$password."</strong><br/><br/>";

  139. 		$msg .=	"<em>Don't tell your password to anybody!!</em><br/><br/></font>";

  140. 

  141. 		sendMail($email, "Register conformation on gelato CMS", $msg, "no-reply@gelatocms.com");

  142. 	}

  143. }

  144. ?>