PageRenderTime 25ms CodeModel.GetById 17ms RepoModel.GetById 0ms app.codeStats 0ms

/htroot/manager/processors/login.processor.php

https://github.com/gunf/novo-isaak.local
PHP | 301 lines | 281 code | 11 blank | 9 comment | 29 complexity | bbbacf173b95e4d964f5769b5481ab4c MD5 | raw file
    

  1. <?php
    2. 

  2. require_once(strtr(realpath(dirname(__FILE__)), '\\', '/').'/../includes/protect.inc.php');
    3. 

  3. 

  4. // set the include_once path
    5. 

  5. if(version_compare(phpversion(), "4.3.0")>=0) {
    6. 

  6.     set_include_path(get_include_path() . PATH_SEPARATOR . "../includes/");
    7. 

  7. } else {
    8. 

  8.     ini_set("include_path", "../includes/"); // include path the old way
    9. 

  9. }
    10. 

  10. 

  11. define("IN_MANAGER_MODE", "true");  // we use this to make sure files are accessed through
    12. 

  12.                                     // the manager instead of seperately.
    13. 

  13. // include the database configuration file
    14. 

  14. include_once "config.inc.php";
    15. 

  15. 

  16. // start session
    17. 

  17. startCMSSession();
    18. 

  18. 

  19. // connect to the database
    20. 

  20. if(@!$modxDBConn = mysql_connect($database_server, $database_user, $database_password)) {
    21. 

  21.     die("Failed to create the database connection!");
    22. 

  22. } else {
    23. 

  23.     mysql_select_db($dbase);
    24. 

  24.     @mysql_query("{$database_connection_method} {$database_connection_charset}");
    25. 

  25. }
    26. 

  26. 

  27. // get the settings from the database
    28. 

  28. include_once "settings.inc.php";
    29. 

  29. 

  30. // include version info
    31. 

  31. include_once "version.inc.php";
    32. 

  32. 

  33. // include the logger
    34. 

  34. include_once "log.class.inc.php";
    35. 

  35. 

  36. // include the crypto thing
    37. 

  37. include_once "crypt.class.inc.php";
    38. 

  38. 

  39. // Initialize System Alert Message Queque
    40. 

  40. if (!isset($_SESSION['SystemAlertMsgQueque'])) $_SESSION['SystemAlertMsgQueque'] = array();
    41. 

  41. $SystemAlertMsgQueque = &$_SESSION['SystemAlertMsgQueque'];
    42. 

  42. 

  43. // include_once the error handler
    44. 

  44. include_once "error.class.inc.php";
    45. 

  45. $e = new errorHandler;
    46. 

  46. 

  47. // initiate the content manager class
    48. 

  48. include_once "document.parser.class.inc.php";
    49. 

  49. $modx = new DocumentParser;
    50. 

  50. $modx->loadExtension("ManagerAPI");
    51. 

  51. $modx->getSettings();
    52. 

  52. $etomite = &$modx; // for backward compatibility
    53. 

  53. 

  54. $username = $modx->db->escape($_REQUEST['username']);
    55. 

  55. $givenPassword = $modx->db->escape($_REQUEST['password']);
    56. 

  56. $captcha_code = $_REQUEST['captcha_code'];
    57. 

  57. $rememberme= $_REQUEST['rememberme'];
    58. 

  58. $failed_allowed = $modx->config["failed_login_attempts"];
    59. 

  59. 

  60. // invoke OnBeforeManagerLogin event
    61. 

  61. $modx->invokeEvent("OnBeforeManagerLogin",
    62. 

  62.                         array(
    63. 

  63.                             "username"      => $username,
    64. 

  64.                             "userpassword"  => $givenPassword,
    65. 

  65.                             "rememberme"    => $rememberme
    66. 

  66.                         ));
    67. 

  67. 

  68. $sql = "SELECT $dbase.`".$table_prefix."manager_users`.*, $dbase.`".$table_prefix."user_attributes`.* FROM $dbase.`".$table_prefix."manager_users`, $dbase.`".$table_prefix."user_attributes` WHERE BINARY $dbase.`".$table_prefix."manager_users`.username = '".$username."' and $dbase.`".$table_prefix."user_attributes`.internalKey=$dbase.`".$table_prefix."manager_users`.id;";
    69. 

  69. $rs = mysql_query($sql);
    70. 

  70. $limit = mysql_num_rows($rs);
    71. 

  71. 

  72. if($limit==0 || $limit>1) {
    73. 

  73.     jsAlert($e->errors[900]);
    74. 

  74.     return;
    75. 

  75. }
    76. 

  76. 

  77. $row = mysql_fetch_assoc($rs);
    78. 

  78. 

  79. $internalKey            = $row['internalKey'];
    80. 

  80. $dbasePassword          = $row['password'];
    81. 

  81. $failedlogins           = $row['failedlogincount'];
    82. 

  82. $blocked                = $row['blocked'];
    83. 

  83. $blockeduntildate       = $row['blockeduntil'];
    84. 

  84. $blockedafterdate       = $row['blockedafter'];
    85. 

  85. $registeredsessionid    = $row['sessionid'];
    86. 

  86. $role                   = $row['role'];
    87. 

  87. $lastlogin              = $row['lastlogin'];
    88. 

  88. $nrlogins               = $row['logincount'];
    89. 

  89. $fullname               = $row['fullname'];
    90. 

  90. $email                  = $row['email'];
    91. 

  91. 

  92. // get the user settings from the database
    93. 

  93. $sql = "SELECT setting_name, setting_value FROM $dbase.`".$table_prefix."user_settings` WHERE user='".$internalKey."' AND setting_value!=''";
    94. 

  94. $rs = mysql_query($sql);
    95. 

  95. while ($row = mysql_fetch_assoc($rs)) {
    96. 

  96.     ${$row['setting_name']} = $row['setting_value'];
    97. 

  97. }
    98. 

  98. // blocked due to number of login errors.
    99. 

  99. if($failedlogins>=$failed_allowed && $blockeduntildate>time()) {
    100. 

  100.         @session_destroy();
    101. 

  101.         session_unset();
    102. 

  102.         jsAlert($e->errors[902]);
    103. 

  103.         return;
    104. 

  104. }
    105. 

  105. 

  106. // blocked due to number of login errors, but get to try again
    107. 

  107. if($failedlogins>=$failed_allowed && $blockeduntildate<time()) { 
    108. 

  108.     $sql = "UPDATE $dbase.`".$table_prefix."user_attributes` SET failedlogincount='0', blockeduntil='".(time()-1)."' where internalKey=$internalKey";
    109. 

  109.     $rs = mysql_query($sql);
    110. 

  110. }
    111. 

  111. 

  112. // this user has been blocked by an admin, so no way he's loggin in!
    113. 

  113. if($blocked=="1") { 
    114. 

  114.     @session_destroy();
    115. 

  115.     session_unset();
    116. 

  116.     jsAlert($e->errors[903]);
    117. 

  117.     return;
    118. 

  118. }
    119. 

  119. 

  120. // blockuntil: this user has a block until date
    121. 

  121. if($blockeduntildate>time()) {
    122. 

  122.     @session_destroy();
    123. 

  123.     session_unset();
    124. 

  124.     jsAlert("You are blocked and cannot log in! Please try again later.");
    125. 

  125.     return;
    126. 

  126. }
    127. 

  127. 

  128. // blockafter: this user has a block after date
    129. 

  129. if($blockedafterdate>0 && $blockedafterdate<time()) {
    130. 

  130.     @session_destroy();
    131. 

  131.     session_unset();
    132. 

  132.     jsAlert("You are blocked and cannot log in! Please try again later.");
    133. 

  133.     return;
    134. 

  134. }
    135. 

  135. 

  136. // allowed ip
    137. 

  137. if ($allowed_ip) {
    138. 

  138.         if(($hostname = gethostbyaddr($_SERVER['REMOTE_ADDR'])) && ($hostname != $_SERVER['REMOTE_ADDR'])) {
    139. 

  139.           if(gethostbyname($hostname) != $_SERVER['REMOTE_ADDR']) {
    140. 

  140.             jsAlert("Your hostname doesn't point back to your IP!");
    141. 

  141.             return;
    142. 

  142.           }
    143. 

  143.         }
    144. 

  144.         if(!in_array($_SERVER['REMOTE_ADDR'], explode(',',str_replace(' ','',$allowed_ip)))) {
    145. 

  145.           jsAlert("You are not allowed to login from this location.");
    146. 

  146.           return;
    147. 

  147.         }
    148. 

  148. }
    149. 

  149. 

  150. // allowed days
    151. 

  151. if ($allowed_days) {
    152. 

  152.     $date = getdate();
    153. 

  153.     $day = $date['wday']+1;
    154. 

  154.     if (strpos($allowed_days,"$day")===false) {
    155. 

  155.         jsAlert("You are not allowed to login at this time. Please try again later.");
    156. 

  156.         return;
    157. 

  157.     }
    158. 

  158. }
    159. 

  159. 

  160. // invoke OnManagerAuthentication event
    161. 

  161. $rt = $modx->invokeEvent("OnManagerAuthentication",
    162. 

  162.                         array(
    163. 

  163.                             "userid"        => $internalKey,
    164. 

  164.                             "username"      => $username,
    165. 

  165.                             "userpassword"  => $givenPassword,
    166. 

  166.                             "savedpassword" => $dbasePassword,
    167. 

  167.                             "rememberme"    => $rememberme
    168. 

  168.                         ));
    169. 

  169. 

  170. // check if plugin authenticated the user
    171. 

  171. if (!$rt||(is_array($rt) && !in_array(TRUE,$rt))) {
    172. 

  172.     // check user password - local authentication
    173. 

  173.     if($dbasePassword != md5($givenPassword)) {
    174. 

  174.             jsAlert($e->errors[901]);
    175. 

  175.             $newloginerror = 1;
    176. 

  176.     }
    177. 

  177. }
    178. 

  178. 

  179. if($use_captcha==1) {
    180. 

  180. 	if (!isset ($_SESSION['veriword'])) {
    181. 

  181. 		jsAlert('Captcha is not configured properly.');
    182. 

  182. 		return;
    183. 

  183. 	}
    184. 

  184. 	elseif ($_SESSION['veriword'] != $captcha_code) {
    185. 

  185.         jsAlert($e->errors[905]);
    186. 

  186.         $newloginerror = 1;
    187. 

  187.     }
    188. 

  188. }
    189. 

  189. 

  190. if($newloginerror) {
    191. 

  191. 	//increment the failed login counter
    192. 

  192.     $failedlogins += 1;
    193. 

  193.     $sql = "update $dbase.`".$table_prefix."user_attributes` SET failedlogincount='$failedlogins' where internalKey=$internalKey";
    194. 

  194.     $rs = mysql_query($sql);
    195. 

  195.     if($failedlogins>=$failed_allowed) { 
    196. 

  196. 		//block user for too many fail attempts
    197. 

  197.         $sql = "update $dbase.`".$table_prefix."user_attributes` SET blockeduntil='".(time()+($blocked_minutes*60))."' where internalKey=$internalKey";
    198. 

  198.         $rs = mysql_query($sql);
    199. 

  199.     } else {
    200. 

  200. 		//sleep to help prevent brute force attacks
    201. 

  201.         $sleep = (int)$failedlogins/2;
    202. 

  202.         if($sleep>5) $sleep = 5;
    203. 

  203.         sleep($sleep);
    204. 

  204.     }
    205. 

  205. 	@session_destroy();
    206. 

  206. 	session_unset();
    207. 

  207.     return;
    208. 

  208. }
    209. 

  209. 

  210. $currentsessionid = session_id();
    211. 

  211. 

  212. $_SESSION['usertype'] = 'manager'; // user is a backend user
    213. 

  213. 

  214. // get permissions
    215. 

  215. $_SESSION['mgrShortname']=$username;
    216. 

  216. $_SESSION['mgrFullname']=$fullname;
    217. 

  217. $_SESSION['mgrEmail']=$email;
    218. 

  218. $_SESSION['mgrValidated']=1;
    219. 

  219. $_SESSION['mgrInternalKey']=$internalKey;
    220. 

  220. $_SESSION['mgrFailedlogins']=$failedlogins;
    221. 

  221. $_SESSION['mgrLastlogin']=$lastlogin;
    222. 

  222. $_SESSION['mgrLogincount']=$nrlogins; // login count
    223. 

  223. $_SESSION['mgrRole']=$role;
    224. 

  224. $sql="SELECT * FROM $dbase.`".$table_prefix."user_roles` WHERE id=".$role.";";
    225. 

  225. $rs = mysql_query($sql);
    226. 

  226. $row = mysql_fetch_assoc($rs);
    227. 

  227. $_SESSION['mgrPermissions'] = $row;
    228. 

  228. 

  229. // successful login so reset fail count and update key values
    230. 

  230. if(isset($_SESSION['mgrValidated'])) {
    231. 

  231.     $sql = "update $dbase.`".$table_prefix."user_attributes` SET failedlogincount=0, logincount=logincount+1, lastlogin=thislogin, thislogin=".time().", sessionid='$currentsessionid' where internalKey=$internalKey";
    232. 

  232.     $rs = mysql_query($sql);
    233. 

  233. }
    234. 

  234. 

  235. // get user's document groups
    236. 

  236. $dg='';$i=0;
    237. 

  237. $tblug = $dbase.".`".$table_prefix."member_groups`";
    238. 

  238. $tbluga = $dbase.".`".$table_prefix."membergroup_access`";
    239. 

  239. $sql = "SELECT uga.documentgroup
    240. 

  240.         FROM $tblug ug
    241. 

  241.         INNER JOIN $tbluga uga ON uga.membergroup=ug.user_group
    242. 

  242.         WHERE ug.member =".$internalKey;
    243. 

  243. $rs = mysql_query($sql);
    244. 

  244. while ($row = mysql_fetch_row($rs)) $dg[$i++]=$row[0];
    245. 

  245. $_SESSION['mgrDocgroups'] = $dg;
    246. 

  246. 

  247. if($rememberme == '1') {
    248. 

  248.     $_SESSION['modx.mgr.session.cookie.lifetime']= intval($modx->config['session.cookie.lifetime']);
    249. 

  249. 	
    250. 

  250. 	// Set a cookie separate from the session cookie with the username in it. 
    251. 

  251. 	// Are we using secure connection? If so, make sure the cookie is secure
    252. 

  252. 	global $https_port;
    253. 

  253. 	
    254. 

  254. 	$secure = (  (isset ($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) == 'on') || $_SERVER['SERVER_PORT'] == $https_port);
    255. 

  255. 	if ( version_compare(PHP_VERSION, '5.2', '<') ) {
    256. 

  256. 		setcookie('modx_remember_manager', $_SESSION['mgrShortname'], time()+60*60*24*365, MODX_BASE_URL, '; HttpOnly' , $secure );
    257. 

  257. 	} else {
    258. 

  258. 		setcookie('modx_remember_manager', $_SESSION['mgrShortname'], time()+60*60*24*365, MODX_BASE_URL, NULL, $secure, true);
    259. 

  259. 	}
    260. 

  260. } else {
    261. 

  261.     $_SESSION['modx.mgr.session.cookie.lifetime']= 0;
    262. 

  262. 	
    263. 

  263. 	// Remove the Remember Me cookie
    264. 

  264. 	setcookie ('modx_remember_manager', "", time() - 3600, MODX_BASE_URL);
    265. 

  265. }
    266. 

  266. 

  267. $log = new logHandler;
    268. 

  268. $log->initAndWriteLog("Logged in", $modx->getLoginUserID(), $_SESSION['mgrShortname'], "58", "-", "MODx");
    269. 

  269. 

  270. // invoke OnManagerLogin event
    271. 

  271. $modx->invokeEvent("OnManagerLogin",
    272. 

  272.                         array(
    273. 

  273.                             "userid"        => $internalKey,
    274. 

  274.                             "username"      => $username,
    275. 

  275.                             "userpassword"  => $givenPassword,
    276. 

  276.                             "rememberme"    => $rememberme
    277. 

  277.                         ));
    278. 

  278. 

  279. // check if we should redirect user to a web page
    280. 

  280. $tbl = $modx->getFullTableName("user_settings");
    281. 

  281. $id = $modx->db->getValue("SELECT setting_value FROM $tbl WHERE user='$internalKey' AND setting_name='manager_login_startup'");
    282. 

  282. if(isset($id) && $id>0) {
    283. 

  283.     $header = 'Location: '.$modx->makeUrl($id,'','','full');
    284. 

  284.     if($_POST['ajax']==1) echo $header;
    285. 

  285.     else header($header);
    286. 

  286. }
    287. 

  287. else {
    288. 

  288.     $header = 'Location: '.$modx->config['site_url'].'manager/';
    289. 

  289.     if($_POST['ajax']==1) echo $header;
    290. 

  290.     else header($header);
    291. 

  291. }
    292. 

  292. 

  293. // show javascript alert
    294. 

  294. function jsAlert($msg){
    295. 

  295. 	global $modx;
    296. 

  296.     if($_POST['ajax']==1) echo $msg."\n";
    297. 

  297.     else {
    298. 

  298.         echo "<script>window.setTimeout(\"alert('".addslashes($modx->db->escape($msg))."')\",10);history.go(-1)</script>";
    299. 

  299.     }
    300. 

  300. }
    301. 

  301. ?>
    302.