1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
|
<?php
class Muser extends CI_Model {
function __construct()
{
parent::__construct();
$this->load->library("session");
$this->load->helper("filebin");
$this->session->keep_flashdata("uri");
}
function logged_in()
{
return $this->session->userdata('logged_in') == true;
}
function login($username, $password)
{
$query = $this->db->query('
SELECT username, id, password
FROM `users`
WHERE `username` = ?
', array($username))->row_array();
if (!isset($query["username"]) || $query["username"] !== $username) {
return false;
}
if (!isset($query["password"])) {
return false;
}
if (crypt($password, $query["password"]) === $query["password"]) {
$this->session->set_userdata('logged_in', true);
$this->session->set_userdata('username', $username);
$this->session->set_userdata('userid', $query["id"]);
return true;
} else {
return false;
}
}
function logout()
{
$this->session->unset_userdata('logged_in');
$this->session->unset_userdata('username');
$this->session->sess_destroy();
}
function get_username()
{
if (!$this->logged_in()) {
return "";
}
return $this->session->userdata('username');
}
function get_userid()
{
if (!$this->logged_in()) {
return 0;
}
return $this->session->userdata("userid");
}
function require_access()
{
if ($this->logged_in()) {
return true;
} else {
if (is_cli_client()) {
echo "FileBin requires you to have an account, please go to the homepage for more information.\n";
exit();
} else {
if (!$this->session->userdata("flash:new:uri")) {
$this->session->set_flashdata("uri", $this->uri->uri_string());
}
redirect('user/login');
}
}
exit();
}
function username_exists($username)
{
$query = $this->db->query("
SELECT id
FROM users
WHERE username = ?
", array($username));
if ($query->num_rows() > 0) {
return true;
} else {
return false;
}
}
function hash_password($password)
{
require_once APPPATH."third_party/PasswordHash.php";
$hasher = new PasswordHash(9, false);
return $hasher->HashPassword($password);
}
}
|
