Your IP : 216.73.217.6

Current Path : /home/smartconb/www/armencom33/acv2026/includes/
Upload File :
Current File : /home/smartconb/www/armencom33/acv2026/includes/security.inc.php

<?php
/**
 * User: zaven
 * Date: 04.06.2018
 * Time: 18:27
 * Project: cnpa_mail
 **/
$showLogin = true;

$loginMessage = "";

/**
 * Is there some entry in the 2 fields ??
 **/
if (
    array_key_exists('adminUsername', $_REQUEST)
    && array_key_exists('adminPassword', $_REQUEST)
) {
    $adminLoggedInUser = User::getByUsernamePassword($_REQUEST['adminUsername'], $_REQUEST['adminPassword']);
    if (is_null($adminLoggedInUser) || $adminLoggedInUser === false) {
        $loginMessage = TX_MSG_LOGIN_FORM_FAILURE;

        //$_SESSION['adminLoggedInUser'] = null;
        $_SESSION['ac']['USER'] = new User();
        $_SESSION['ac']['USER_ID'] = -1;
        $_SESSION['ac']['USER_TYPE'] = UserType::SiteGuest;
        $_SESSION['ac']['INTERFACE_LANGUAGE'] = Config::get()->getMember('defaultLanguage');
        //$adminLoggedInUser = null;
    } else {
        $_SESSION['ac']['USER'] = $adminLoggedInUser;
        $_SESSION['ac']['USER_TYPE'] = $adminLoggedInUser->getType();
        $_SESSION['ac']['USER_ID'] = $adminLoggedInUser->getId();
        $_SESSION['ac']['INTERFACE_LANGUAGE'] = $adminLoggedInUser->getLanguageAbbr();
    }
    unset($adminLoggedInUser);
}

/**
 * am I logged 
 **/
if ($_SESSION['ac']['USER_ID'] > 0) {
    $showLogin = false;
}

/**
 * if not logged, show the form
 **/
if ($showLogin) {
    require_once(INCLUDES_DIR . 'top.inc.php');
    ?>
    <div class="sc-display-table uk-position-absolute uk-width-1-1 uk-height-1-1">
        <div class="sc-display-table-cell sc-vertical-align-middle uk-padding">
            <div class="uk-padding uk-width-1-3@l uk-width-1-2@m uk-width-1-1 uk-margin-auto sc-border-thin sc-bg-white sc-shadow-1 uk-border-rounded">
                <form name="loginFrm" id="loginFrm" method="post" action="<?= $_SERVER['PHP_SELF'] ?>">
                    <fieldset class="uk-fieldset">

                        <div class="uk-margin">
                            <input class="uk-input sc-shadow-2 uk-border-rounded" type="text" name="adminUsername" id="adminUsername" required="required"
                                   placeholder="<?= TX_FIELD_USERNAME ?>">
                        </div>

                        <div class="uk-margin">
                            <input class="uk-input sc-shadow-2 uk-border-rounded" type="password" name="adminPassword" id="adminPassword" required="required"
                                   placeholder="<?= TX_FIELD_PASSWORD ?>">
                        </div>

                        <div class="uk-margin uk-text-center">
                            <button name="clearBtn" class="uk-button" id="clearBtn" value="<?= TX_BUTTON_CLEAR ?>" type="reset"><?= TX_BUTTON_CLEAR ?></button>
                            <button name="loginBtn" class="uk-button uk-button-primary" id="loginBtn" value="<?= TX_BUTTON_LOGIN ?>" type="submit"><?= TX_BUTTON_LOGIN ?></button>
                        </div>


                    </fieldset>
                </form>

            </div>
        </div>
    </div>

    <?php
    /**
     * if wrong credentials, show the Ooops 
     **/
    if ($loginMessage != '') {
        ?>
        <script type="text/javascript">
            <!--
            swal({
                type: 'error',
                title: 'Oops...',
                allowOutsideClick: false,
                allowEnterKey: false,
                customClass: 'animated wobble',
                text: "<?= $loginMessage ?>"
            });
            //-->
        </script>
        <?php
    }
    ?>
    <?php
    require_once(INCLUDES_DIR . 'bottom.inc.php');
    die();
} else {
    if (isset($permission)) {
        if ((int)((int)$_SESSION['ac']["USER_TYPE"] & (int)$permission) != (int)$_SESSION['ac']["USER_TYPE"]) {
            header('location: ' . APPLICATION_RELATIVE_BASE . 'logout.php');
            die();
        }
    }
}
unset($showLogin);