return -1;
}
- $res = XDB::query('SELECT user_id, password
- FROM auth_user_md5
- WHERE user_id = {?} AND perms IN(\'admin\', \'user\')',
- Cookie::i('uid'));
+ $res = XDB::query('SELECT uid, password
+ FROM accounts
+ WHERE uid = {?} AND state = \'active\'',
+ Cookie::i('ORGuid'));
if ($res->numRows() != 0) {
list($uid, $password) = $res->fetchOneRow();
- require_once 'secure_hash.inc.php';
- $expected_value = hash_encrypt($password);
+ $expected_value = sha1($password);
- if ($expected_value == Cookie::v('ORGaccess')) {
+ if ($expected_value == Cookie::v('access')) {
S::set('auth_by_cookie', $uid);
return 0;
} else {
} else {
$logger = S::logger($uid);
$logger->saveLastSession();
- setcookie('ORGuid', $uid, (time() + 25920000), '/', '', 0);
+ Cookie::set('uid', $uid, 300);
if (S::i('auth_by_cookie') == $uid || Post::v('remember', 'false') == 'true') {
- $cookie = sha1($sess['password']);
- setcookie('ORGaccess', $cookie, (time() + 25920000), '/', '', 0);
- Cookie::set('access', hash_encrypt($sess['password']), 300);
++ Cookie::set('access', sha1($sess['password']), 300);
if (S::i('auth_by_cookie') != $uid) {
$logger->log("cookie_on");
}
$log = S::v('log');
S::logger()->log('passwd', '');
- if (Cookie::v('ORGaccess')) {
- setcookie('ORGaccess', sha1($password), (time()+25920000), '/', '' ,0);
+ if (Cookie::v('access')) {
- require_once('secure_hash.inc.php');
- Cookie::set('access', hash_encrypt($password), 300);
++ Cookie::set('access', sha1($password), 300);
S::logger()->log('cookie_on', '');
}
projects / platal.git / commitdiff