/Control/LoginLogic.php
PHP | 95 lines | 81 code | 10 blank | 4 comment | 25 complexity | 18d449284799e044406c8e452941d3ec MD5 | raw file
Possible License(s): LGPL-2.1
- <?php
- function IsTempBanned($Username) {
- $Query = "SELECT *, TIMEDIFF(bl_date + INTERVAL 2 MONTH, NOW()) AS bl_timediff FROM `blacklisttemp` WHERE `bl_user` ='".$Username."'";
-
- if ($QueryRun = mysql_query ($Query)) {
- $QueryNumRows = mysql_num_rows ($QueryRun);
- if ($QueryNumRows == 0 ) {
- return false;
- } else if ($QueryNumRows == 1){
- //return true;
- $TimeDifference = mysql_result ($QueryRun, 0, 'bl_timediff');
- if ($TimeDifference <= '0:0:0') {
- $QueryDelete = "DELETE FROM `blacklisttemp` WHERE bl_user = '".$Username."'";
- $QueryUpdateRun = mysql_query ($QueryUpdate);
- return false;
- } else {
- //have to mention time
- return true;
- }
- }
- }
- }
-
- function Check($Username, $Password) {
- $PasswordHash = md5 ($Password);
- $QueryCheck = "SELECT * FROM `user` WHERE `us_username` ='".$Username."' AND `us_password` = '".$PasswordHash."'";
-
- if ($QueryCheckRun = mysql_query ($QueryCheck)) {
- $QueryNumRows = mysql_num_rows ($QueryCheckRun);
- if ($QueryNumRows == 0 ) {
- return $PasswordHash;
- } else if ($QueryNumRows == 1){
- SetSession($QueryCheckRun);
- return true;
- }
- }
- }
-
- function SetSession($QueryCheckRun) {
- $SessionUsername = mysql_result ($QueryCheckRun, 0, 'us_username');
- $SessionRole = mysql_result ($QueryCheckRun, 0, 'us_role');
- $SessionPlayerID = mysql_result ($QueryCheckRun, 0, 'us_id');
- $_SESSION['username'] = $SessionUsername;
- $_SESSION['role'] = $SessionRole;
- $_SESSION['playerID'] = $SessionPlayerID;
- $_SESSION['timeout'] = time();
- return true;
- }
-
- function IsAuthenticated($Username) {
- $QueryAuthenticated = "SELECT * FROM `user` WHERE `us_username` ='".$Username."'";
- $QueryAuthenticatedRun = mysql_query ($QueryAuthenticated);
- $UserStatus = mysql_result ($QueryAuthenticatedRun, 0, 'us_status');
-
- if ($UserStatus == "Inactive") {
- return false;
- } else {
- UpdateStatusLogIn($Username);
- return true;
- }
- }
-
- function UpdateStatusLogIn ($Username) {
- $QueryUpdate = "UPDATE `user` SET us_status = 'LoggedIn' WHERE us_username = '".$Username."'";
- $QueryUpdateRun = mysql_query ($QueryUpdate);
- }
-
- function CheckAnswer($Username, $Answer) {
-
- $Query = "SELECT * FROM `user` WHERE us_username = '".$Username."'";
- if($QueryRun = mysql_query($Query)) {
- if (mysql_num_rows($QueryRun) == 1) {
- $SecA = mysql_result ($QueryRun, 0, 'us_securityqanswer');
- if($SecA == $Answer) {
- return true;
- } else {
- return false;
- }
- } else {
- return 'You have not signed up yet. Please Sign Up to proceed';
- }
- //return 'Done';
- } else {
- return 'Error';
- }
- }
-
- function UpdatePassword($Email,$Password) {
- //echo '<script language="javascript">alert("inside update.")</script>';
- $PasswordHash = md5($Password);
- $Query1 = "UPDATE `user` SET us_password = '".$PasswordHash."' WHERE us_username = '".$Email."'";
- $Query1Run = mysql_query($Query1);
- return true;
- }
- ?>