return false;
}
+function gwvp_AskForBasicAuth()
+{
+ if(!isset($_SERVER["PHP_AUTH_USER"])) {
+ header('WWW-Authenticate: Basic realm="My Realm"');
+ header('HTTP/1.0 401 Unauthorized');
+ exit(0);
+ } else return;
+}
+
// $levels is checked against $LOGIN_TYPE, levels can be either just "admin" or admin,user anon,user anon, etc.
function gwvp_CheckAuthLevel($levels)
{
return false;
}
+function gwvp_fourZeroThree()
+{
+ header("HTTP/1.0 403 Permission Denied");
+ exit(0);
+}
+
function gwvp_AuthNoPerms()
{
gwvp_goMainPage("gwvp_AuthNoPermsBody");
}
}
+function gwvp_authUserPass($user, $pass)
+{
+ $details = gwvp_getUser($user);
+ if($details == false) {
+ return false;
+ }
+
+ if(sha1($pass)!=$details["password"]) return false;
+
+ return $details["username"];
+}
+
function gwvp_AuthHandleLogin()
{
global $BASE_URL;
if(isset($_REQUEST["username"])) $user = $_REQUEST["username"];
if(isset($_REQUEST["password"])) $pass = $_REQUEST["password"];
- $details = gwvp_getUser($user);
- if($details == false) {
- gwvp_SendMessage("error", "Login Failed");
- header("Location: $BASE_URL");
- return false;
- }
-
- if(sha1($pass)!=$details["password"]) {
+ if(gwvp_authUserPass($user, $pass) === false) {
gwvp_SendMessage("error", "Login Failed");
header("Location: $BASE_URL");
- return false;
} else {
$_SESSION["isloggedin"] = true;
$_SESSION["username"] = "$user";
<?php
}
+function gwvp_checkBasicAuthLogin()
+{
+ $user = false;
+ $pass = false;
+ if(isset($_SERVER["PHP_AUTH_USER"])) {
+ $user = $_SERVER["PHP_AUTH_USER"];
+ } else return false;
+
+ if(isset($_SERVER["PHP_AUTH_PW"])) {
+ $pass = $_SERVER["PHP_AUTH_PW"];
+ } else return false;
+
+ return gwvp_authUserPass($user, $pass);
+}
+
function gwvp_IsLoggedIn()
{
if(isset($_SESSION["isloggedin"])) {