Размер файла: 2.85Kb
<?php
// MyForum - Сервис форумов
// Copyright © A'lex и KO. All Rights Reserved
// По всем вопросам обращайтесь на email [email protected] или в асю 376920428
include 'config.php';
include 'functions.php';
$wmode=getwmode($w);
$formhtml=<<<END
<form action="login.php" method="post">
<input type="hidden" name="f" value="$f"/>
<input type="hidden" name="w" value="$w"/>
<input type="hidden" name="mode" value="login"/>
Nick: <input type="text" name="nick" cols="60"/></td></tr>
<tr><td bgcolor="#C3F6FD">
Пароль: <input type="password" name="pass" cols="60"/></td></tr>
<tr><td bgcolor="#C3F6FD">
Символов на странице: <select name="size">
<option value="2000">2000</option>
<option value="5000">5000</option>
<option value="10000">10000</option>
</select></td></tr>
<tr><td bgcolor="#79EBFB"><p align="center">
<input type="submit" name="submit" value="Вход"/></p>
</form>
END;
$formwml=<<<END
Nick: <input name="nick" title="Nick" type="text"/><br/>
Пароль: <input name="pass" title="Пароль" type="password"/><br/>
Символов на странице: <select name="size">
<option value="2000">2000</option>
<option value="5000">5000</option>
<option value="10000">10000</option>
</select><br/><br/>
<anchor>Вход<go href="login.php" accept-charset="UTF-8" method="post">
<postfield name="f" value="$f"/>
<postfield name="w" value="$w"/>
<postfield name="mode" value="login"/>
<postfield name="nick" value="<dol>(nick)"/>
<postfield name="pass" value="<dol>(pass)"/>
<postfield name="size" value="<dol>(size)"/>
</go></anchor><br/>
END;
if ($mode==FALSE) {
if ($wmode=='html') {
displayHTML('Авторизация', $Banner, $formhtml, "<a href=\"index.php?f=$f\">Назад</a>");
} else {
displayWML('Авторизация', $Banner, $formwml, "<a href=\"index.php?f=$f\">Назад</a>");
}
} else {
$nick = ereg_replace('<','<',$nick);
$nick = ereg_replace('>','>',$nick);
$nick = ereg_replace("'","'",$nick);
$r = mysql_query("SELECT * FROM {$table}{$f}_users WHERE Nick='$nick' AND Password='$pass'");
if (mysql_numrows($r) == 0) {
displaytext('Ошибка', $Banner, 'Неверный nick или пароль', "<a href=\"login.php?f=$f\">Назад</a>", $w);
} else {
$l = 0;
while ($l==0) {
$BSID=randstr(8);
$r=mysql_query("SELECT * FROM {$table}{$f}_users WHERE BSID='$BSID'");
if (mysql_numrows($r) == 0) {$l=1;}
}
if ($size == 2000) {$size=1;}
if ($size == 5000) {$size=2;}
if ($size == 10000) {$size=3;}
$FSID=$BSID . randstr(7) . $size;
mysql_query("UPDATE {$table}{$f}_users SET BSID='$BSID', FSID='$FSID' WHERE Nick='$nick' AND Password='$pass'");
header("Location: index.php?f=$f&sid=$FSID&w=$w");
}
}
mysql_close($lnk);
?>