PageRenderTime 37ms CodeModel.GetById 14ms RepoModel.GetById 0ms app.codeStats 0ms

/administrator/includes/auth.php

https://bitbucket.org/dgough/annamaria-daneswood-25102012
PHP | 53 lines | 30 code | 8 blank | 15 comment | 12 complexity | 9185af646f958d92a7523b9f5056fa5f MD5 | raw file
Possible License(s): GPL-2.0, LGPL-2.1 
    

  1. <?php
    2. 

  2. /**
    3. 

  3. * @version $Id: auth.php 6022 2006-12-18 22:30:07Z friesengeist $
    4. 

  4. * @package Joomla
    5. 

  5. * @copyright Copyright (C) 2005 Open Source Matters. All rights reserved.
    6. 

  6. * @license http://www.gnu.org/copyleft/gpl.html GNU/GPL, see LICENSE.php
    7. 

  7. * Joomla! is free software. This version may have been modified pursuant
    8. 

  8. * to the GNU General Public License, and as distributed it includes or
    9. 

  9. * is derivative of works licensed under the GNU General Public License or
    10. 

  10. * other free or open source software licenses.
    11. 

  11. * See COPYRIGHT.php for copyright notices and details.
    12. 

  12. */
    13. 

  13. 

  14. // no direct access
    15. 

  15. defined( '_VALID_MOS' ) or die( 'Restricted access' );
    16. 

  16. 

  17. $basePath 	= dirname( __FILE__ );
    18. 

  18. require( $basePath . '/../../globals.php' );
    19. 

  19. 

  20. // $basepath reintialization required as globals.php will kill initial when RGs Emulation `Off` 
    21. 

  21. $basePath 	= dirname( __FILE__ );
    22. 

  22. require( $basePath . '/../../configuration.php' );
    23. 

  23. 

  24. // SSL check - $http_host returns <live site url>:<port number if it is 443>
    25. 

  25. $http_host = explode(':', $_SERVER['HTTP_HOST'] );
    26. 

  26. if( (!empty( $_SERVER['HTTPS'] ) && strtolower( $_SERVER['HTTPS'] ) != 'off' || isset( $http_host[1] ) && $http_host[1] == 443) && substr( $mosConfig_live_site, 0, 8 ) != 'https://' ) {
    27. 

  27. 	$mosConfig_live_site = 'https://'.substr( $mosConfig_live_site, 7 );
    28. 

  28. }
    29. 

  29. 

  30. if (!defined( '_MOS_MAMBO_INCLUDED' )) {
    31. 

  31. 	$path = $basePath . '/../../includes/joomla.php';
    32. 

  32. 	require( $path );
    33. 

  33. }
    34. 

  34. 

  35. session_name( md5( $mosConfig_live_site ) );
    36. 

  36. session_start();
    37. 

  37. // restore some session variables
    38. 

  38. if (!isset( $my )) {
    39. 

  39. 	$my = new mosUser( $database );
    40. 

  40. }
    41. 

  41. 

  42. $my->id 		= intval( mosGetParam( $_SESSION, 'session_user_id', '' ) );
    43. 

  43. $my->username 	= strval( mosGetParam( $_SESSION, 'session_username', '' ) );
    44. 

  44. $my->usertype 	= strval( mosGetParam( $_SESSION, 'session_usertype', '' ) );
    45. 

  45. $my->gid 		= intval( mosGetParam( $_SESSION, 'session_gid', '' ) );
    46. 

  46. $session_id 	= strval( mosGetParam( $_SESSION, 'session_id', '' ) );
    47. 

  47. $logintime 		= strval( mosGetParam( $_SESSION, 'session_logintime', '' ) );
    48. 

  48. 

  49. if ( $session_id != md5( $my->id.$my->username.$my->usertype.$logintime ) ) {
    50. 

  50. 	mosRedirect( 'index.php' );
    51. 

  51. 	die;
    52. 

  52. }
    53. 

  53. ?>
    54.