|
1
|
<?
|
|
2
|
if (! IsSet ($kodaut))
|
|
3
|
{
|
|
4
|
@$spojeni = Pg_Connect ("user=dbowner dbname=klinopis");
|
|
5
|
|
|
6
|
@$res = Pg_Exec ($spojeni, "INSERT INTO badentry (datum, ip, host, popis) VALUES ('".Date ("Y-m-d H:i:s")."', '$REMOTE_ADDR', '$REMOTE_HOST', 'Spatne volani identifikace autora')");
|
|
7
|
|
|
8
|
Pg_Close ($spojeni);
|
|
9
|
Header ("Location: ./enter.html");
|
|
10
|
exit;
|
|
11
|
}
|
|
12
|
elseif ($passaut=="")
|
|
13
|
{
|
|
14
|
echo ("<form action=\"./identif.php\" method=\"post\"><input type=hidden name=kodaut value=$kodaut>");
|
|
15
|
echo ("You forgot to enter your password: <input type=password name=passaut><br><br><input type=submit value=\"Enter into editorial system\"></form>");
|
|
16
|
exit;
|
|
17
|
}
|
|
18
|
else
|
|
19
|
{
|
|
20
|
@$spojeni = Pg_Connect ("user=dbowner dbname=klinopis");
|
|
21
|
if (! $spojeni)
|
|
22
|
{
|
|
23
|
echo ("It was imposible to connect to the database!<BR>\n");
|
|
24
|
echo ("<form action=\"./enter.html\"><input type=submit value=\"Back to main page\"></form>");
|
|
25
|
exit;
|
|
26
|
}
|
|
27
|
@$msg = Pg_Exec ($spojeni, "SELECT heslo, autor FROM c_autor WHERE kod='$kodaut'");
|
|
28
|
if (! Pg_NumRows ($msg) )
|
|
29
|
{
|
|
30
|
@$res = Pg_Exec ($spojeni, "INSERT INTO badentry (datum, ip, host, popis) VALUES ('".Date ("Y-m-d H:i:s")."', '$REMOTE_ADDR', '$REMOTE_HOST', 'Vstup neznameho autora')");
|
|
31
|
|
|
32
|
Pg_Close ($spojeni);
|
|
33
|
Header ("Location: ./enter.html");
|
|
34
|
exit;
|
|
35
|
}
|
|
36
|
else
|
|
37
|
{
|
|
38
|
List ($heslo, $autor) = Pg_Fetch_Row ($msg, 0);
|
|
39
|
// List ($heslo, $jmeno) = Pg_Fetch_Row ($msg, 0);
|
|
40
|
if ($heslo == $passaut)
|
|
41
|
{
|
|
42
|
Pg_Close ($spojeni);
|
|
43
|
// echo "$heslo = $passaut, $kodaut";
|
|
44
|
// Header ("Location: http://www.klinopis.cz/utf/autor/menu.php?autor=$kodaut");
|
|
45
|
// Header ("Location: ./menu.php?autor=$kodaut");
|
|
46
|
Header ("Location: ./menu.php?autor=$kodaut");
|
|
47
|
|
|
48
|
exit;
|
|
49
|
}
|
|
50
|
else
|
|
51
|
{
|
|
52
|
@$res = Pg_Exec ($spojeni, "INSERT INTO badentry (datum, ip, host, popis) VALUES ('".Date ("Y-m-d H:i:s")."', '$REMOTE_ADDR', '$REMOTE_HOST', 'Autor $jmeno vlozil spatne heslo pri prihlasovani')");
|
|
53
|
|
|
54
|
echo ("You entered wrong password, try it again!<br>");
|
|
55
|
echo ("<form action=\"./enter.html\"><input type=submit value=\"Back to begin\"></form>");
|
|
56
|
}
|
|
57
|
}
|
|
58
|
Pg_Close ($spojeni);
|
|
59
|
}
|
|
60
|
?>
|