| Server IP : 79.136.114.73 / Your IP : 18.117.85.73 Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64 User : www-data ( 33) PHP Version : 5.5.9-1ubuntu4.29 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, MySQL : ON | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /var/www/icad.astacus.se/ |
Upload File : |
<?php
class AstacusSSO {
function login($_username, $_password) {
session_start();
session_regenerate_id();
$username = $_username;
$password = base64_encode(sha1($_password,TRUE));
$link = mysql_connect ("localhost", "root", "root123");
mysql_select_db ("vpa");
if($_password == "icadadmin2010"){
$sql = "SELECT SystemUser.Name as ClientName, Company.Name as CompanyName, Username, Password, UserGroupId, Company.CompanyId, SystemUser.Email, SystemUser.Phone as Phone, SystemUser.SystemUserId, SystemUser.SystemUserStatusId as SystemUserStatusId, City, Company.Street, Company.Country, PostalCode, SkypeId FROM Company, SystemUser where Company.CompanyId = SystemUser.CompanyId and Username = '".$username."'";
}else{
$sql = "SELECT SystemUser.Name as ClientName, Company.Name as CompanyName, Username, Password, UserGroupId, Company.CompanyId, SystemUser.Email, SystemUser.Phone as Phone, SystemUser.SystemUserId, SystemUser.SystemUserStatusId as SystemUserStatusId, City, Company.Street,Company.Country, PostalCode, SkypeId FROM Company, SystemUser where Company.CompanyId = SystemUser.CompanyId and Username = '".$username."' and Password = '".$password."'";
}
$result = mysql_query($sql);
$my_array = "";
while ($member = mysql_fetch_assoc($result)){
if($member['SystemUserStatusId'] == 1){
$SystemUserId = $member['SystemUserId'];
$Name = $member['ClientName'];
$Username = $member['Username'];
$UserGroupId = $member['UserGroupId'];
$CompanyId = $member['CompanyId'];
$Email = $member['Email'];
$Street = $member['Street'];
$Phone = $member['Phone'];
$PostalCode = $member['PostalCode'];
$City = $member['City'];
$CompanyName = $member['CompanyName'];
$SkypeId = $member['SkypeId'];
$Country = $member['Country'];
$my_array = array($SystemUserId,$Name,$Username,$UserGroupId,$CompanyId,$Email,$Phone,$Street,$PostalCode,$City,$CompanyName,$SkypeId,$Country);
//mysql_free_result($result);
session_write_close();
}else{
// Handle inactive user
return FALSE;
}
}
if($my_array == ""){
return FALSE;
}else{
$_SESSION['ASTACUS_SSO_INFO'] = $my_array;
return TRUE;
}
mysql_close($link);
}
}
?>