首页 探索 帮助
登录
richard
/
sorbetcms
关注 1
点赞 0
派生 1
代码 工单管理 0 合并请求 0 提交历史 216 版本发布 0 百科

A tumblelog CMS built on AJAX, PHP and MySQL.

目录树: c60cdef066
分支列表 标签列表
sorbetcms/classes/user.class.php

user.class.php 4.7KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148 
  1. <?php

  2. if(!defined('entry') || !entry) die('Not a valid page');

  3. /* ===========================

  4. 

  5.   gelato CMS - A PHP based tumblelog CMS

  6.   development version

  7.   http://www.gelatocms.com/

  8. 

  9.   gelato CMS is a free software licensed under the GPL 2.0

  10.   Copyright (C) 2007 by Pedro Santana <pecesama at gmail dot com>

  11. 

  12.   =========================== */

  13. ?>

  14. <?php

  15. require_once("configuration.class.php");

  16. 

  17. class user extends Conexion_Mysql {

  18. 	var $conf;

  19. 	var $cookieString;

  20. 	var $cookieTime;

  21. 	var $persist = false;

  22. 

  23. 	function user() {

  24. 		parent::Conexion_Mysql(DB_name, DB_Server, DB_User, DB_Password);

  25. 		$this->cookie_life = 60*24*3600;

  26. 		$this->cookieTime = time();

  27. 		$this->conf = new configuration();

  28. 	}

  29. 

  30. 	function isAdmin() {		

  31. 		

  32. 		if ((!empty($_SESSION["user_id"]) && !empty($_SESSION["user_login"]))  && (isset($_SESSION['authenticated'])  && $_SESSION['authenticated']==true)) {

  33. 			return true;

  34. 		}

  35. 

  36. 		if(isset($_COOKIE["PHPSESSID"]) && $_COOKIE["PHPSESSID"]!="") {		

  37. 		

  38. 			if ((!empty($_SESSION["user_id"]) && !empty($_SESSION["user_login"]))  && (isset($_SESSION['authenticated'])  && $_SESSION['authenticated']==true)) {

  39. 				return true;

  40. 			}

  41. 		

  42. 		}

  43. 

  44. 		return false;

  45. 

  46. 	}

  47. 

  48. 	function validateUser($username="", $password="") {

  49. 

  50. 		if ($this->ejecutarConsulta("SELECT id_user, login, password  FROM ".$this->conf->tablePrefix."users WHERE login='".$this->sql_escape($username)."' AND password='".$password."'")) {

  51. 			if ($this->contarRegistros()>0) {

  52. 				$register=$this->obtenerRegistro();

  53. 				$_SESSION['user_id']=$register["id_user"];

  54. 				$_SESSION['user_login']=$register["login"];

  55. 				$_SESSION['authenticated'] = true;

  56. 				if (isset($_POST["save_pass"])) {

  57. 					$this->persist = true;

  58. 					setcookie("PHPSESSID",session_id(),$this->cookieTime+$this->cookie_life);

  59. 				}

  60. 				return true;

  61. 			} else {

  62. 				return false;

  63. 			}

  64. 		} else {

  65. 			return false;

  66. 		}

  67. 	}

  68. 

  69. 	function closeSession() {

  70. 		if (!$this->persist) session_destroy();

  71. 		return true;

  72. 	}

  73. 

  74. 	function userExist($user="") {

  75. 		if ($this->ejecutarConsulta("SELECT * FROM ".$this->conf->tablePrefix."users WHERE login='".$user."'")) {

  76. 			if ($this->contarRegistros()>0) {

  77. 				return true;

  78. 			} else {

  79. 				return false;

  80. 			}

  81. 		}

  82. 	}

  83. 

  84. 	function isAuthenticated() {

  85. 		return $this->isAdmin();

  86. 	}

  87. 

  88. 	function addUser($fieldsArray) {

  89. 		if ($this->ejecutarConsulta("SELECT id_user FROM ".$this->conf->tablePrefix."users WHERE login='".$fieldsArray['login']."'")) {

  90. 			if ($this->contarRegistros()==0) {

  91. 				$realPassword = ($fieldsArray["password"]);

  92. 				$fieldsArray["password"] = md5($fieldsArray["password"]);

  93. 				if ($this->insertarDeFormulario($this->conf->tablePrefix."users", $fieldsArray)) {

  94. 					$this->confirmationEmail($fieldsArray['email'], $fieldsArray['login'], $realPassword);

  95. 					header("Location: ".$this->conf->urlGelato."/admin/admin.php?added=true");

  96. 					die();

  97. 				} else {

  98. 					header("Location: ".$this->conf->urlGelato."/admin/admin.php?error=2&des=".$this->merror);

  99. 					die();

  100. 				}

  101. 			} else {

  102. 				header("Location: ".$this->conf->urlGelato."/admin/admin.php?error=1");

  103. 				die();

  104. 			}

  105. 		}

  106. 	}

  107. 

  108. 	function modifyUser($fieldsArray, $id_user) {

  109. 		$fieldsArray["password"] = md5($fieldsArray["password"]);

  110. 		if ($this->modificarDeFormulario($this->conf->tablePrefix."users", $fieldsArray, "id_user=$id_user")) {

  111. 			header("Location: ".$this->conf->urlGelato."/admin/admin.php?modified=true");

  112. 			die();

  113. 		} else {

  114. 			header("Location: ".$this->conf->urlGelato."/admin/admin.php?error=2&des=".$this->merror);

  115. 			die();

  116. 		}

  117. 	}

  118. 

  119. 	function deleteUser($idUser) {

  120. 		$this->ejecutarConsulta("DELETE FROM ".$this->conf->tablePrefix."users WHERE id_user=".$idUser);

  121. 	}

  122. 

  123. 	function getUsers($show="10", $from="0") {

  124. 		$sqlStr = "select * from ".$this->conf->tablePrefix."users ORDER BY id_user DESC LIMIT $from,$show";

  125. 		$this->ejecutarConsulta($sqlStr);

  126. 		return $this->mid_consulta;

  127. 	}

  128. 

  129. 	function getUserByID($idUser) {

  130. 		if ($this->ejecutarConsulta("select * from ".$this->conf->tablePrefix."users where id_user=".$idUser)) {

  131. 			if ($this->contarRegistros()>0) {

  132. 				return $registro=$this->obtenerRegistro();

  133. 			} else {

  134. 				return false;

  135. 			}

  136. 		}

  137. 	}

  138. 

  139. 	function confirmationEmail($email="", $user="", $password="") {

  140. 		$msg =  "<font face=verdana><em><font size=2>Account information on <strong>gelato CMS</strong></font></em><br/><br/>";

  141. 		$msg .=	"<font size=1>Username: <strong>".$user."</strong><br/><br/>";

  142. 		$msg .=	"Password: <strong>".$password."</strong><br/><br/>";

  143. 		$msg .=	"<em>Don't tell your password to anybody!!</em><br/><br/></font>";

  144. 

  145. 		sendMail($email, "Register conformation on gelato CMS", $msg, "no-reply@gelatocms.com");

  146. 	}

  147. }

  148. ?>