Página inicial Explorar Ajuda
Entrar
richard
/
sorbetcms
Observar 1
Favorito 0
Fork 1
Código Issues 0 Pull requests 0 Commits 252 Versões 0 Wiki

A tumblelog CMS built on AJAX, PHP and MySQL.

Tree: f95f856b49
Branches Tags
sorbetcms/classes/user.class.php

user.class.php 4.7KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151 
  1. <?php

  2. if(!defined('entry') || !entry) die('Not a valid page');

  3. /* ===========================

  4. 

  5.   gelato CMS - A PHP based tumblelog CMS

  6.   development version

  7.   http://www.gelatocms.com/

  8. 

  9.   gelato CMS is a free software licensed under the GPL 2.0

  10.   Copyright (C) 2007 by Pedro Santana <pecesama at gmail dot com>

  11. 

  12.   =========================== */

  13. ?>

  14. <?php

  15. class user {

  16. 	var $conf;

  17. 	var $db;

  18. 	var $cookieString;

  19. 	var $cookieTime;

  20. 	var $persist = false;

  21. 

  22. 	function user() {

  23. 		global $db;

  24. 		global $conf;

  25. 		

  26. 		$this->db = $db;

  27. 		$this->conf = $conf;		

  28. 		$this->cookie_life = 60*24*3600;

  29. 		$this->cookieTime = time();

  30. 	}

  31. 

  32. 	function isAdmin() {		

  33. 		

  34. 		if ((!empty($_SESSION["user_id"]) && !empty($_SESSION["user_login"]))  && (isset($_SESSION['authenticated'])  && $_SESSION['authenticated']==true)) {

  35. 			return true;

  36. 		}

  37. 

  38. 		if(isset($_COOKIE["PHPSESSID"]) && $_COOKIE["PHPSESSID"]!="") {		

  39. 		

  40. 			if ((!empty($_SESSION["user_id"]) && !empty($_SESSION["user_login"]))  && (isset($_SESSION['authenticated'])  && $_SESSION['authenticated']==true)) {

  41. 				return true;

  42. 			}

  43. 		

  44. 		}

  45. 

  46. 		return false;

  47. 

  48. 	}

  49. 

  50. 	function validateUser($username="", $password="") {

  51. 

  52. 		if ($this->db->ejecutarConsulta("SELECT id_user, login, password  FROM ".$this->conf->tablePrefix."users WHERE login='".$this->db->sql_escape($username)."' AND password='".$password."'")) {

  53. 			if ($this->db->contarRegistros()>0) {

  54. 				$register = $this->db->obtenerRegistro();

  55. 				$_SESSION['user_id']=$register["id_user"];

  56. 				$_SESSION['user_login']=$register["login"];

  57. 				$_SESSION['authenticated'] = true;

  58. 				if (isset($_POST["save_pass"])) {

  59. 					$this->persist = true;

  60. 					setcookie("PHPSESSID",session_id(),$this->cookieTime+$this->cookie_life);

  61. 				}

  62. 				return true;

  63. 			} else {

  64. 				return false;

  65. 			}

  66. 		} else {

  67. 			return false;

  68. 		}

  69. 	}

  70. 

  71. 	function closeSession() {

  72. 		if (!$this->persist) session_destroy();

  73. 		return true;

  74. 	}

  75. 

  76. 	function userExist($user="") {

  77. 		if ($this->db->ejecutarConsulta("SELECT * FROM ".$this->conf->tablePrefix."users WHERE login='".$user."'")) {

  78. 			if ($this->db->contarRegistros()>0) {

  79. 				return true;

  80. 			} else {

  81. 				return false;

  82. 			}

  83. 		}

  84. 	}

  85. 

  86. 	function isAuthenticated() {

  87. 		return $this->isAdmin();

  88. 	}

  89. 

  90. 	function addUser($fieldsArray) {

  91. 		if ($this->db->ejecutarConsulta("SELECT id_user FROM ".$this->conf->tablePrefix."users WHERE login='".$fieldsArray['login']."'")) {

  92. 			if ($this->db->contarRegistros()==0) {

  93. 				$realPassword = ($fieldsArray["password"]);

  94. 				$fieldsArray["password"] = md5($fieldsArray["password"]);

  95. 				if ($this->db->insertarDeFormulario($this->conf->tablePrefix."users", $fieldsArray)) {

  96. 					$this->confirmationEmail($fieldsArray['email'], $fieldsArray['login'], $realPassword);

  97. 					header("Location: ".$this->conf->urlGelato."/admin/admin.php?added=true");

  98. 					die();

  99. 				} else {

  100. 					header("Location: ".$this->conf->urlGelato."/admin/admin.php?error=2&des=".$this->merror);

  101. 					die();

  102. 				}

  103. 			} else {

  104. 				header("Location: ".$this->conf->urlGelato."/admin/admin.php?error=1");

  105. 				die();

  106. 			}

  107. 		}

  108. 	}

  109. 

  110. 	function modifyUser($fieldsArray, $id_user) {

  111. 		$fieldsArray["password"] = md5($fieldsArray["password"]);

  112. 		if ($this->db->modificarDeFormulario($this->conf->tablePrefix."users", $fieldsArray, "id_user=$id_user")) {

  113. 			header("Location: ".$this->conf->urlGelato."/admin/admin.php?modified=true");

  114. 			die();

  115. 		} else {

  116. 			header("Location: ".$this->conf->urlGelato."/admin/admin.php?error=2&des=".$this->merror);

  117. 			die();

  118. 		}

  119. 	}

  120. 

  121. 	function deleteUser($idUser) {

  122. 		$this->db->ejecutarConsulta("DELETE FROM ".$this->conf->tablePrefix."users WHERE id_user=".$idUser);

  123. 	}

  124. 

  125. 	function getUsers($show="10", $from="0") {

  126. 		$sqlStr = "select * from ".$this->conf->tablePrefix."users ORDER BY id_user DESC LIMIT $from,$show";

  127. 		$this->db->ejecutarConsulta($sqlStr);

  128. 		return $this->db->mid_consulta;

  129. 	}

  130. 

  131. 	function getUserByID($idUser) {

  132. 		if ($this->db->ejecutarConsulta("select * from ".$this->conf->tablePrefix."users where id_user=".$idUser)) {

  133. 			if ($this->db->contarRegistros()>0) {

  134. 				return $registro=$this->db->obtenerRegistro();

  135. 			} else {

  136. 				return false;

  137. 			}

  138. 		}

  139. 	}

  140. 

  141. 	function confirmationEmail($email="", $user="", $password="") {

  142. 		$msg =  "<font face=verdana><em><font size=2>Account information on <strong>gelato CMS</strong></font></em><br/><br/>";

  143. 		$msg .=	"Visit the <a href=\"".$this->conf->urlGelato."/admin/\">tumblelog panel</a> <br/><br/>";

  144. 		$msg .=	"<font size=1>Username: <strong>".$user."</strong><br/><br/>";

  145. 		$msg .=	"Password: <strong>".$password."</strong><br/><br/>";		

  146. 		$msg .=	"<em>Don't tell your password to anybody!!</em><br/><br/></font>";

  147. 

  148. 		sendMail($email, "Register confirmation on gelato CMS", $msg, "no-reply@gelatocms.com");

  149. 	}

  150. }

  151. ?>