$loggedin = false;
session_start();
-if(isset($_SESSION["loggedin"])) if($_SESSION["loggedin"]) {
- error_log("session exists, poof!");
+if(isset($_SESSION["user_loggedin"])) if($_SESSION["user_loggedin"]) {
$loggedin = true;
} else {
- error_log("no session");
$loggedin = false;
}
if(isset($_REQUEST["action"])) {
error_log("action set: ".$_REQUEST["action"]);
switch($_REQUEST["action"]) {
+ case "actuallygettoken":
+ $otkid = $_REQUEST["otkid"];
+ $username = $_REQUEST["username"];
+ error_log("requesting otk, $otk");
+ $otk_img = $myAC->getOtkPng($username,$otkid);
+ header("Content-type: image/png");
+ echo $otk_img;
+ exit(0);
+ break;
case "login":
error_log("being login");
$username = $_REQUEST["username"];
if($myAC->authUserToken($username, $token)) {
- $_SESSION["loggedin"] = true;
+ $_SESSION["user_loggedin"] = true;
$_SESSION["username"] = $username;
header("Location: index.php");
} else {
header("Location: index.php?message=loginfail");
}
break;
+ case "logout":
+ $_SESSION["user_loggedin"] = false;
+ $_SESSION["username"] = "";
+ header("Location: index.php?message=".urlencode("logged out"));
+ exit(0);
+ break;
+
}
}
?>
\ No newline at end of file