engelsystem/www-ssl/nonpublic/index.php

78 lines
2.9 KiB
PHP

<?PHP
include ('../bootstrap.php');
$title = "Index";
$header = "Index";
include ("config/config_db.php");
include ("includes/crypt.php");
session_start(); // alte Session - falls vorhanden - wiederherstellen...
function LoginOK() {
include ("config/config.php");
header("HTTP/1.1 302 Moved Temporarily");
header("Location: " . $url . $ENGEL_ROOT . "nonpublic/news.php");
}
if (!IsSet ($_POST["user"])) { // User ist bereits angemeldet... normaler Inhalt...
LoginOK();
} else { // User ist noch nicht angemeldet
$sql = "SELECT * FROM `User` WHERE `Nick`='" . $_POST["user"] . "'";
$userstring = mysql_query($sql, $con);
// anzahl zeilen
$user_anz = mysql_num_rows($userstring);
if ($user_anz == 1) { // Check, ob User angemeldet wird...
if (mysql_result($userstring, 0, "Passwort") == PassCrypt($_POST["password"])) { // Passwort ok...
// Session wird eingeleitet und Session-Variablen gesetzt..
// session_start();
session_name("Himmel");
$_SESSION['UID'] = mysql_result($userstring, 0, "UID");
$_SESSION['Nick'] = mysql_result($userstring, 0, "Nick");
$_SESSION['Name'] = mysql_result($userstring, 0, "Name");
$_SESSION['Vorname'] = mysql_result($userstring, 0, "Vorname");
$_SESSION['Alter'] = mysql_result($userstring, 0, "Alter");
$_SESSION['Telefon'] = mysql_result($userstring, 0, "Telefon");
$_SESSION['Handy'] = mysql_result($userstring, 0, "Handy");
$_SESSION['DECT'] = mysql_result($userstring, 0, "DECT");
$_SESSION['email'] = mysql_result($userstring, 0, "email");
$_SESSION['ICQ'] = mysql_result($userstring, 0, "ICQ");
$_SESSION['jabber'] = mysql_result($userstring, 0, "jabber");
$_SESSION['Size'] = mysql_result($userstring, 0, "Size");
$_SESSION['Gekommen'] = mysql_result($userstring, 0, "Gekommen");
$_SESSION['Aktiv'] = mysql_result($userstring, 0, "Aktiv");
$_SESSION['Tshirt'] = mysql_result($userstring, 0, "Tshirt");
$_SESSION['Menu'] = mysql_result($userstring, 0, "Menu");
$_SESSION['color'] = mysql_result($userstring, 0, "color");
$_SESSION['Avatar'] = mysql_result($userstring, 0, "Avatar");
$_SESSION['Sprache'] = mysql_result($userstring, 0, "Sprache");
$_SESSION['Hometown'] = mysql_result($userstring, 0, "Hometown");
$_SESSION['IP'] = $_SERVER['REMOTE_ADDR'];
// CVS import Data
$SQL = "SELECT * FROM `UserCVS` WHERE `UID`='" . $_SESSION['UID'] . "'";
$Erg_CVS = mysql_query($SQL, $con);
$_SESSION['CVS'] = mysql_fetch_array($Erg_CVS);
LoginOK();
} else { // Passwort nicht ok...
$ErrorText = "pub_index_pass_no_ok";
} // Ende Passwort-Check
} else { // Anzahl der User in User-Tabelle <> 1 --> keine Anmeldung
if ($user_anz == 0)
$ErrorText = "pub_index_User_unset";
else
$ErrorText = "pub_index_User_more_as_one";
} // Ende Check, ob User angemeldet wurde
}
include ("includes/header.php");
if (isset ($ErrorText))
echo "<h2>" . Get_Text($ErrorText) . "</h2><br />\n";
include ("includes/login_eingabefeld.php");
include ("includes/footer.php");
?>