makary/phpbb
1
0
Fork 0
mirror of https://github.com/phpbb/phpbb.git synced 2025-06-13 14:58:52 +00:00
Code Issues Projects Releases Packages Wiki Activity

Allow admins to login to disabled board ... for admin panel access only

Browse source 
git-svn-id: file:///svn/phpbb/trunk@1490 89ea8834-ac86-4346-8a33-228a782c2dd0
This commit is contained in:
Paul S. Owen 2001-11-30 18:51:08 +00:00
parent 84856b8499
commit 153d4b548a
1 changed files with 44 additions and 23 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

67
phpBB/login.php
View file

@ -20,6 +20,12 @@
* *
***************************************************************************/ ***************************************************************************/
//
// Allow people to reach login page if
// board is shut down
//
define("IN_ADMIN", true);
$phpbb_root_path = "./"; $phpbb_root_path = "./";
include($phpbb_root_path . 'extension.inc'); include($phpbb_root_path . 'extension.inc');
include($phpbb_root_path . 'common.'.$phpEx); include($phpbb_root_path . 'common.'.$phpEx);
@ -40,7 +46,7 @@ if( isset($HTTP_POST_VARS['login']) || isset($HTTP_GET_VARS['login']) || isset($
$username = isset($HTTP_POST_VARS['username']) ? $HTTP_POST_VARS['username'] : ""; $username = isset($HTTP_POST_VARS['username']) ? $HTTP_POST_VARS['username'] : "";
$password = isset($HTTP_POST_VARS['password']) ? $HTTP_POST_VARS['password'] : ""; $password = isset($HTTP_POST_VARS['password']) ? $HTTP_POST_VARS['password'] : "";
$sql = "SELECT user_id, username, user_password, user_active $sql = "SELECT user_id, username, user_password, user_active, user_level
FROM ".USERS_TABLE." FROM ".USERS_TABLE."
WHERE username = '$username'"; WHERE username = '$username'";
$result = $db->sql_query($sql); $result = $db->sql_query($sql);
@ -53,40 +59,50 @@ if( isset($HTTP_POST_VARS['login']) || isset($HTTP_GET_VARS['login']) || isset($
if( count($rowresult) ) if( count($rowresult) )
{ {
if( md5($password) == $rowresult['user_password'] && $rowresult['user_active'] ) if( $rowresult['user_level'] != ADMIN && $board_config['board_disable'] )
{ {
$autologin = ( isset($HTTP_POST_VARS['autologin']) ) ? TRUE : 0; header("HTTP/1.0 302 Redirect");
header("Location: " . append_sid("index.$phpEx", true));
$session_id = session_begin($rowresult['user_id'], $user_ip, PAGE_INDEX, $session_length, TRUE, $autologin); }
else
if( $session_id ) {
if( md5($password) == $rowresult['user_password'] && $rowresult['user_active'] )
{ {
if( !empty($HTTP_POST_VARS['redirect']) ) $autologin = ( isset($HTTP_POST_VARS['autologin']) ) ? TRUE : 0;
$session_id = session_begin($rowresult['user_id'], $user_ip, PAGE_INDEX, $session_length, TRUE, $autologin);
if( $session_id )
{ {
header("Location: " . append_sid($HTTP_POST_VARS['redirect'], true)); if( !empty($HTTP_POST_VARS['redirect']) )
{
header("HTTP/1.0 302 Redirect");
header("Location: " . append_sid($HTTP_POST_VARS['redirect'], true));
}
else
{
header("HTTP/1.0 302 Redirect");
header("Location: " . append_sid("index.$phpEx", true));
}
} }
else else
{ {
header("Location: " . append_sid("index.$phpEx", true)); message_die(CRITICAL_ERROR, "Couldn't start session : login", __LINE__, __FILE__);
} }
} }
else else
{ {
message_die(CRITICAL_ERROR, "Couldn't start session : login", __LINE__, __FILE__); $redirect = ( !empty($HTTP_POST_VARS['redirect']) ) ? $HTTP_POST_VARS['redirect'] : "";
$template->assign_vars(array(
"META" => '<meta http-equiv="refresh" content="3;url=' . append_sid("login.$phpEx?$redirect") . '">')
);
$message = $lang['Error_login'] . "<br /><br />" . sprintf($lang['Click_return_login'], "<a href=\"" . append_sid("login.$phpEx?$redirect") . "\">", "</a> ") . "<br /><br />" . sprintf($lang['Click_return_index'], "<a href=\"" . append_sid("index.$phpEx") . "\">", "</a> ");
message_die(GENERAL_MESSAGE, $message);
} }
} }
else
{
$redirect = ( !empty($HTTP_POST_VARS['redirect']) ) ? $HTTP_POST_VARS['redirect'] : "";
$template->assign_vars(array(
"META" => '<meta http-equiv="refresh" content="3;url=' . append_sid("login.$phpEx?$redirect") . '">')
);
$message = $lang['Error_login'] . "<br /><br />" . sprintf($lang['Click_return_login'], "<a href=\"" . append_sid("login.$phpEx?$redirect") . "\">", "</a> ") . "<br /><br />" . sprintf($lang['Click_return_index'], "<a href=\"" . append_sid("index.$phpEx") . "\">", "</a> ");
message_die(GENERAL_MESSAGE, $message);
}
} }
else else
{ {
@ -110,10 +126,12 @@ if( isset($HTTP_POST_VARS['login']) || isset($HTTP_GET_VARS['login']) || isset($
if( !empty($HTTP_POST_VARS['redirect']) ) if( !empty($HTTP_POST_VARS['redirect']) )
{ {
header("HTTP/1.0 302 Redirect");
header("Location: " . append_sid($HTTP_POST_VARS['redirect'], true)); header("Location: " . append_sid($HTTP_POST_VARS['redirect'], true));
} }
else else
{ {
header("HTTP/1.0 302 Redirect");
header("Location: " . append_sid("index.$phpEx", true)); header("Location: " . append_sid("index.$phpEx", true));
} }
} }
@ -121,10 +139,12 @@ if( isset($HTTP_POST_VARS['login']) || isset($HTTP_GET_VARS['login']) || isset($
{ {
if( !empty($HTTP_POST_VARS['redirect']) ) if( !empty($HTTP_POST_VARS['redirect']) )
{ {
header("HTTP/1.0 302 Redirect");
header("Location: " . append_sid($HTTP_POST_VARS['redirect'], true)); header("Location: " . append_sid($HTTP_POST_VARS['redirect'], true));
} }
else else
{ {
header("HTTP/1.0 302 Redirect");
header("Location: " . append_sid("index.$phpEx", true)); header("Location: " . append_sid("index.$phpEx", true));
} }
} }
@ -203,6 +223,7 @@ else
} }
else else
{ {
header("HTTP/1.0 302 Redirect");
header("Location: index.$phpEx"); header("Location: index.$phpEx");
} }