Viewing file:  secure.php (5.49 KB) -rwxr-xr-x
Select action/file-type:
 (+) |  (+) |  (+) | Code (+) | Session (+) |  (+) | SDB (+) |  (+) |  (+) |  (+) |  (+) |  (+) |
<?php
/**************************************************************/
/* phpSecurePages version 0.25 beta */
/* Written by Paul Kruyt - kruyt@email.com */
/* Start of phpSecurePages Configuration */
/**************************************************************/
/****** Installation ******/
$cfgProgDir = '/login/user/phpSecurePages/';
// location of phpSecurePages calculated from the root of the server
// Example: if you installed phpSecurePages on http://www.mydomain.com/phpSecurePages/
// the value would be $cfgProgDir = '/phpSecurePages/'
$cfgIndexpage = '/index.php3';
// page to go to, if login is cancelled
// Example: if your main page is http://www.mydomain.com/index.php
// the value would be $cfgIndexpage = '/index.php'
$admEmail = 'daniloc@mnnews.net';
// E-mail adres of the site administrator
// (This is being showed to the users on an error, so you can be notified by the users)
$noDetailedMessages = true;
// Show detailed error messages (false) or give one single message for all errors (true).
// If set to 'false', the error messages shown to the user describe what went wrong.
// This is more user-friendly, but less secure, because it could allow someone to probe
// the system for existing users.
//$passwordEncryptedWithMD5 = true; // Set this to true if the passwords are encrypted with the
// MD5 algorithm
// (not yet implanted, expect this in a next release)
$languageFile = 'lng_english.php'; // Choose the language file
$bgImage = 'bg_gun.gif'; // Choose the background image
$bgRotate = false; // Rotate the background image from list
// (This overrides the $bgImage setting)
/****** Lists ******/
// List of backgrounds to rotate through
$backgrounds[] = 'bg_lock.gif';
$backgrounds[] = 'bg_lock2.gif';
$backgrounds[] = 'bg_gun.gif';
/****** Database ******/
$useDatabase = true; // choose between using a database or data as input
/* this data is necessary if a database is used */
$cfgServerHost = 'localhost'; // MySQL hostname
$cfgServerPort = ''; // MySQL port - leave blank for default port
$cfgServerUser = 'root'; // MySQL user
$cfgServerPassword = ''; // MySQL password
$cfgDbDatabase = 'db10505s'; // MySQL database name containing phpSecurePages table
$cfgDbTableUsers = 'phpSP_users'; // MySQL table name containing phpSecurePages user fields
$cfgDbLoginfield = 'user'; // MySQL field name containing login word
$cfgDbPasswordfield = 'password'; // MySQL field name containing password
$cfgDbUserLevelfield = 'userlevel'; // MySQL field name containing user level
$cfgDbTableSessionVars = 'phpSP_sessionVars';
$cfgDbTableSessions = 'phpSP_sessions';
// Choose a number which represents the category of this users authorization level.
// Leave empty if authorization levels are not used.
// See readme.txt for more info.
$cfgDbUserIDfield = 'primary_key'; // MySQL field name containing user identification
// enter a distinct ID if you want to be able to identify the current user
// Leave empty if no ID is necessary.
// See readme.txt for more info.
/****** Data ******/
$useData = false; // choose between using a database or data as input
/* this data is necessary if no database is used */
$cfgLogin[1] = ''; // login word
$cfgPassword[1] = ''; // password
$cfgUserLevel[1] = ''; // user level
// Choose a number which represents the category of this users authorization level.
// Leave empty if authorization levels are not used.
// See readme.txt for more info.
$cfgUserID[1] = ''; // user identification
// enter a distinct ID if you want to be able to identify the current user
// Leave empty if no ID is necessary.
// See readme.txt for more info.
$cfgLogin[2] = '';
$cfgPassword[2] = '';
$cfgUserLevel[2] = '';
$cfgUserID[2] = '';
$cfgLogin[3] = '';
$cfgPassword[3] = '';
$cfgUserLevel[3] = '';
$cfgUserID[3] = '';
/**************************************************************/
/* End of phpSecurePages Configuration */
/**************************************************************/
// https support
if (getenv("HTTPS") == 'on') {
$cfgUrl = 'https://';
} else {
$cfgUrl = 'http://';
}
// getting other login variables
$cfgHtmlDir = $cfgUrl . getenv("HTTP_HOST") . $cfgProgDir;
$cfgProgDir = getenv("DOCUMENT_ROOT") . $cfgProgDir;
if ($message) $messageOld = $message;
$message = false;
// Create a constant that can be checked inside the files to be included.
// This gives an indication if secure.php has been loaded correctly.
define("LOADED_PROPERLY", true);
// include functions and variables
function admEmail() {
// create administrators email link
global $admEmail;
return("<A HREF='mailto:$admEmail'>$admEmail</A>");
}
include($cfgProgDir . "lng/" . $languageFile);
include($cfgProgDir . "session.php");
// choose between login or logout
if ($logout && !($HTTP_GET_VARS["logout"] || $HTTP_POST_VARS["logout"])) {
// logout
include($cfgProgDir . "logout.php");
} else {
// loading login check
include($cfgProgDir . "checklogin.php");
}
?>
|