Mercurial Mercurial > poweradmin / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
inc/auth.inc.php
changeset 192 3d18290ac993
parent 136 c795dd75a77e
equal deleted inserted replaced
191:963d62dc1c80 192:3d18290ac993 
    45 	$_SESSION["lastmod"] = time();
 
    45 	$_SESSION["lastmod"] = time();
 
    46 
    46 
    47 	if(isset($_SESSION["userlogin"]) && isset($_SESSION["userpwd"]))
 
    47 	if(isset($_SESSION["userlogin"]) && isset($_SESSION["userpwd"]))
 
    48 	{
 
    48 	{
 
    49 		//Username and password are set, lets try to authenticate.
 
    49 		//Username and password are set, lets try to authenticate.
 
    50 		$result = $db->query("SELECT id, fullname FROM users WHERE username=". $db->quote($_SESSION["userlogin"])  ." AND password=". $db->quote(md5($_SESSION["userpwd"]))  ." AND active=1");
 
    50 		$result = $db->query("SELECT id, fullname FROM users WHERE username=". $db->quote($_SESSION["userlogin"], 'text')  ." AND password=". $db->quote(md5($_SESSION["userpwd"]), 'text')  ." AND active=1");
 
    51 		if($result->numRows() == 1)
 
    51 		if($result->numRows() == 1)
 
    52 		{
 
    52 		{
 
    53 			$rowObj = $result->fetchRow();
 
    53 			$rowObj = $result->fetchRow();
 
    54 			$_SESSION["userid"] = $rowObj["id"];
 
    54 			$_SESSION["userid"] = $rowObj["id"];
 
    55 			$_SESSION["name"] = $rowObj["fullname"];
 
    55 			$_SESSION["name"] = $rowObj["fullname"];
poweradmin