projects / atutor.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
changed git call from https to git readonly
[atutor.git] / mods / pnATutor / ATutor / index_pn.php
1 <?php\r
2 $reqVar = '_' . $_SERVER['REQUEST_METHOD'];\r
3 $form_vars = $$reqVar;\r
4 $parm = $form_vars['parm'] ;\r
5 \r
6 $url = explode("|", $parm);\r
7 \r
8 $f_username = $url[0];\r
9 $f_usermail = $url[1];\r
10 $f_users = $url[2];\r
11 $db = $url[3] ;\r
12 $home= $url[4] ;\r
13 $home .= "user.php?op=loginscreen&module=NS-User" ;\r
14 $cid = $url[5] ;\r
15 $srt= $url[6] ;\r
16 $version= $url[7] ;\r
17 \r
18 if ($f_username==""){\r
19         header ("Location : $home") ;\r
20 }\r
21 \r
22 $_public        = true;\r
23 $page    = 'PostNuke_start';\r
24 $_user_location = 'public';\r
25 \r
26 \r
27 if ($version == '1.3.0'){\r
28         $_include_path = 'include/';\r
29         require ($_include_path.'vitals.inc.php');\r
30 } else {\r
31         define('AT_INCLUDE_PATH', 'include/');\r
32         require(AT_INCLUDE_PATH.'vitals.inc.php');\r
33 }\r
34 \r
35 $pwd = '';\r
36 \r
37 $sql = "SELECT password FROM ".TABLE_PREFIX."members WHERE login='$f_username' ";\r
38 $result = mysql_query($sql);\r
39 $num_rows = mysql_num_rows($result);\r
40 \r
41 \r
42 if ($num_rows < 1){\r
43         if ($f_users != ''){\r
44                 // Insert the new user\r
45                 $new_pwd = ranpass() ;\r
46                 $adding = "INSERT INTO ".TABLE_PREFIX."members (login, password,email,language,preferences) VALUES ( '$f_username','$new_pwd','$f_username', 'en',' ')";\r
47                 $added = mysql_query($adding) or mysql_error();\r
48                 // Run query again\r
49                 $sql = "SELECT password FROM ".TABLE_PREFIX."members WHERE login='$f_username' ";\r
50                 $result = mysql_query($sql);\r
51                 $row99 = mysql_fetch_row($result) ;\r
52                 $pwd = $row99[0];\r
53         }\r
54 } else {\r
55         $row99 = mysql_fetch_row($result) ;\r
56         $pwd = $row99[0];\r
57 }\r
58 \r
59 /* form post login */\r
60 $this_login     = $f_username;\r
61 $this_password  = $pwd;\r
62 $auto_login             = 0;\r
63 $used_cookie    = false;\r
64 \r
65 $sql = "SELECT member_id, login, preferences, PASSWORD(password) AS pass, language FROM ".TABLE_PREFIX."members WHERE login='$this_login' AND PASSWORD(password)=PASSWORD('$this_password')";\r
66 \r
67 $result = mysql_query($sql);\r
68 if ($row = mysql_fetch_array($result)) {\r
69         $_SESSION['login']              = $row['login'];\r
70         $_SESSION['valid_user'] = TRUE;\r
71         $_SESSION['member_id']  = intval($row['member_id']);\r
72         assign_session_prefs(unserialize(stripslashes($row['preferences'])));\r
73         $_SESSION['is_guest']   = 0;\r
74         $_SESSION['lang']               = $row['language'];\r
75 \r
76         $_POST['form_course_id'] = $url[5] ;\r
77         Header('Location: ./bounce.php?course='.$_POST['form_course_id']);\r
78         exit ;\r
79 } else {\r
80         $errors[] = AT_ERROR_INVALID_LOGIN;\r
81         Header('Location: ./login.php');\r
82 }\r
83 Header('Location: ./login.php');\r
84 exit ;\r
85 \r
86 \r
87 function ranpass($len = "8"){\r
88  $pass = NULL;\r
89  for($i=0; $i<$len; $i++) {\r
90    $char = chr(rand(48,122));\r
91    while (!ereg("[a-zA-Z0-9]", $char)){\r
92      if($char == $lchar) continue;\r
93      $char = chr(rand(48,90));\r
94    }\r
95    $pass .= $char;\r
96    $lchar = $char;\r
97  }\r
98  return $pass;\r
99 }\r
100 ?>
Course Management Learning Management Tools