site_session_name); session_start(); } include $xerte_toolkits_site->php_library_path . "login_library.php"; include $xerte_toolkits_site->php_library_path . "display_library.php"; /** * Check to see if anything has been posted to distinguish between log in attempts */ if((!isset($_POST["login"]))&&(!isset($_POST["password"]))){ $buffer = login_page_format_top(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_top")); $buffer .= $form_string; $buffer .= login_page_format_bottom(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_bottom")); echo $buffer; } /* * Some data has bee posted, interpret as attempt to login */ if ($_SERVER['REQUEST_METHOD'] == 'POST') { /** * Username and password left empty */ if(($_POST["login"]=="")&&($_POST["password"]=="")){ $buffer = login_page_format_top(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_top")); $buffer .= "
Please enter your username and password
"; $buffer .= login_page_format_bottom(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_bottom")); echo $buffer; /* * Username left empty */ }else if($_POST["login"]==""){ $buffer = login_page_format_top(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_top")); $buffer .= "Please enter your username
"; $buffer .= login_page_format_bottom(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_bottom")); echo $buffer; /* * Password left empty */ }else if($_POST["password"]==""){ $buffer = login_page_format_top(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_top")); $buffer .= "Please enter your password
"; $buffer .= login_page_format_bottom(file_get_contents($xerte_toolkits_site->root_file_path . $xerte_toolkits_site->website_code_path . "login_bottom")); echo $buffer; /* * Password and username provided, so try to authenticate */ }else if(($_POST["login"]!="")&&($_POST["password"]!="")){ /* * See if the submitted values are valid logins */ $authenticated = false; function set_user_details($firstname, $surname){ $_SESSION['toolkits_firstname'] = $firstname; $_SESSION['toolkits_surname'] = $surname; } switch($_POST["login"]){ case "simonbarne": if($_POST["password"]=="xxx"){ $authenticated = true; set_user_details("Simon","Barne");}; break; case "paulhullock": if($_POST["password"]=="xxx"){ $authenticated = true; set_user_details("Paul","Hullock"); }; break; case "matthewperry": if($_POST["password"]=="xxx"){ $authenticated = true; set_user_details("Matthew","Perry"); }; break; case "intoteacher": if($_POST["password"]=="xxx"){ $authenticated = true; set_user_details("INTO","Teacher"); }; break; case "tonyprince": if($_POST["password"]=="xxx"){ $authenticated = true; set_user_details("Tony","Prince"); }; break; case "emmawyatt": if($_POST["password"]=="xxx"){ $authenticated = true; set_user_details("Emma","Wyatt"); }; break; case "richardingate": if($_POST["password"]=="xxx"){ $authenticated = true; set_user_details("Richard","Ingate"); }; break; case "michellebeare": if($_POST["password"]=="xxx"){ $authenticated = true; set_user_details("Michelle","Beare"); }; break; default: $authenticated = false; break; } if($authenticated){ /* * Give the session its own session id */ $_SESSION['toolkits_sessionid'] = $session_id; include $xerte_toolkits_site->php_library_path . "database_library.php"; include $xerte_toolkits_site->php_library_path . "user_library.php"; $mysql_id=database_connect("index.php database connect success","index.php database connect fail"); $_SESSION['toolkits_logon_username'] = $_POST["login"]; /* * Check to see if this is a users' first time on the site */ if(check_if_first_time($_SESSION['toolkits_logon_username'])){ /* * create the user a new id */ $_SESSION['toolkits_logon_id'] = create_user_id(); /* * create a virtual root folder for this user */ create_a_virtual_root_folder(); }else{ /* * User exists so update the user settings */ $_SESSION['toolkits_logon_id'] = get_user_id(); update_user_logon_time(); } recycle_bin(); /* * Output the main page, including the user's and blank templates */ echo file_get_contents($xerte_toolkits_site->website_code_path . "management_headers"); echo "