@ 2014-02-27T15:21:55Z <?php
################################################################################
# @Name : login.php
# @Desc : login page
# @call : index.php
# @paramters :
# @Autor : Flox
# @Create : 07/03/2010
# @Update : 29/01/2014
# @Version : 3.0.6
################################################################################
//initialize variables
if(!isset($state)) $state = '';
if(!isset($userid)) $userid = '';
if(!isset($techread)) $techread = '';
if(!isset($findnom)) $findnom = '';
if(!isset($profile)) $profile = '';
if(!isset($newpassword)) $newpassword = '';
if(!isset($salt)) $salt= '';
if(!isset($dcgen)) $dcgen= '';
if(!isset($ldap_type)) $ldap_type= '';
if(!isset($message)) $message= '';
if(!isset($_SESSION['user_id'])) $_SESSION['user_id'] = '';
if(!isset($_SESSION['login'])) $_SESSION['login'] = '';
if(!isset($_GET['page'])) $_GET['page'] = '';
if(!isset($_GET['state'])) $_GET['state'] = '';
if(!isset($_GET['techread'])) $_GET['techread'] = '';
if(!isset($_GET['userid'])) $_GET['userid'] = '';
if(!isset($_GET['userid'])) $_GET['userid'] = '';
if(!isset($_GET['id'])) $_GET['id'] = '';
//default values
if($_GET['state']=='') $_GET['state'] = '%';
if($_GET['state']=='') $_GET['state'] = '%';
//actions on submit
if (isset($_POST['submit']))
{
$login = (isset($_POST['login'])) ? $_POST['login'] : '';
$pass = (isset($_POST['pass'])) ? $_POST['pass'] : '';
$qusr = mysql_query("SELECT * FROM `tusers` WHERE 1");
while ($row=mysql_fetch_array($qusr))
{
////Uppercase login converter
$login = strtoupper($login);
$nom = strtoupper($row['login']);
//double (OR) test for crypted password transition
if ($nom == $login && ($row['password']==$pass || $row['password']==md5($row['salt'] . md5($pass))) && $row['password']!='' && $row['disable']==0)
{
$findnom=$row['login'];
$findpwd=$row['password'];
$user_id=$row['id'];
$profile=$row['profile'];
$findsalt=$row['salt'];
//update no crypted password to crypted password
if($row['password']==$pass)
{
//password conversion
$salt = substr(md5(uniqid(rand(), true)), 0, 5); // Generate a random key
$newpassword=md5($salt . md5($row['password'])); // store in md5, md5 password + salt
//update query
$query = "UPDATE tusers SET password='$newpassword', salt='$salt' WHERE id LIKE '$user_id'";
$exec = mysql_query($query) or die('Erreur SQL !<br /><br />'.mysql_error());
}
}
}
if ($findnom != "")
{
$_SESSION['login'] = "$findnom";
$_SESSION['user_id'] = "$user_id";
//update last time connection
$query = "UPDATE tusers SET last_login='$datetime' WHERE id LIKE '$user_id'";
$exec = mysql_query($query) or die('Erreur SQL !<br /><br />'.mysql_error());
echo "Chargement...";
//select page to redirect for email link case
if($_GET['id']) {
$www = './index.php?page=ticket&id='.$_GET['id'].'';
} else {
$www = "./index.php?page=dashboard&userid=$user_id&state=1";
}
//web redirection
echo "<SCRIPT LANGUAGE='JavaScript'>
<!--
function redirect()
{
window.location='$www'
}
setTimeout('redirect()');
-->
</SCRIPT>";
}
else if (($rparameters['ldap'])=='1' && ($rparameters['ldap_auth']=='1'))
{
/////////// if Gestsup user is not found and LDAP is enable search in LDAP///////////
// LDAP connect
$ldap=ldap_connect($rparameters['ldap_server'],$rparameters['ldap_port']) or die("Impossible de se connecter au serveur LDAP.");
ldap_set_option($ldap, LDAP_OPT_NETWORK_TIMEOUT, 1);
ldap_set_option($ldap, LDAP_OPT_PROTOCOL_VERSION, 3);
$domain=$rparameters['ldap_domain'];
if ($rparameters['ldap_type']==0)
{
@$ldapbind = ldap_bind($ldap, "$login@$domain", $pass);
} else {
//Generate DC Chain from domain parameter
$dcpart=explode(".",$domain);
$i=0;
while($i<count($dcpart)) {
$dcgen="$dcgen,dc=$dcpart[$i]";
$i++;
}
$ldapbind = ldap_bind($ldap, "uid=$login,$rparameters[ldap_url]$dcgen", $pass);
}
if ($ldapbind && $pass!='')
{
$_SESSION['login'] = "$login";
$q = mysql_query("SELECT id FROM tusers where login='$login'");
$r = mysql_fetch_array($q);
$_SESSION['user_id'] = "$r[0]";
if($r['0']=='')
{
// if error with login or password
$message= '<div class="alert alert-danger">
<button type="button" class="close" data-dismiss="alert">
<i class="icon-remove"></i>
</button>
<strong>
<i class="icon-remove"></i>
Erreur
</strong>
Votre compte est inexistant dans ce logiciel.
<br>
</div>';
$www = "./index.php";
session_destroy();
//web redirection to login page
echo "<SCRIPT LANGUAGE='JavaScript'>
<!--
function redirect()
{
window.location='$www'
}
setTimeout('redirect()',$rparameters[time_display_msg]);
-->
</SCRIPT>";
} else {
//update last time connection
$query = "UPDATE tusers SET last_login='$datetime' WHERE id LIKE '$r[0]'";
$exec = mysql_query($query) or die('Erreur SQL !<br /><br />'.mysql_error());
$www = "./index.php?page=dashboard&userid=$r[0]&state=1";
//web redirection
echo "<SCRIPT LANGUAGE='JavaScript'>
<!--
function redirect()
{
window.location='$www'
}
setTimeout('redirect()');
-->
</SCRIPT>";
}
} else {
// if error with login or password
$message= '<div class="alert alert-danger">
<button type="button" class="close" data-dismiss="alert">
<i class="icon-remove"></i>
</button>
<strong>
<i class="icon-remove"></i>
Erreur
</strong>
<br />
Votre nom d\'utilisateur ou mot de passe, n\'est pas correct
</div>';
$www = "./index.php";
session_destroy();
//web redirection to login page
echo "<SCRIPT LANGUAGE='JavaScript'>
<!--
function redirect()
{
window.location='$www'
}
setTimeout('redirect()',$rparameters[time_display_msg]);
-->
</SCRIPT>";
}
}
else
{
// if error with login or password
$message= '<div class="alert alert-danger">
<button type="button" class="close" data-dismiss="alert">
<i class="icon-remove"></i>
</button>
<strong>
<i class="icon-remove"></i>
Erreur
</strong>
Votre nom d\'utilisateur ou mot de passe, n\'est pas correct.
<br>
</div>';
$www = "./index.php";
session_destroy();
//web redirection to login page
echo "<SCRIPT LANGUAGE='JavaScript'>
<!--
function redirect()
{
window.location='$www'
}
setTimeout('redirect()',$rparameters[time_display_msg]);
-->
</SCRIPT>";
}
};
// if user isn't connected then display authentication else display dashboard
if ($_SESSION['login'] == '')
{
if($rparameters['ldap_auth']==1)
{
if ($rparameters['ldap_type']==0) $ldap_type='Windows'; else $ldap_type='OpenLDAP';
$info='<i title="Vous pouvez utiliser votre identifiant et mot de passe '.$ldap_type.'" class="icon-question-sign smaller-80"></i>';
} else { $info='';}
echo '
<body class="login-layout">
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<div class="main-container">
<div class="main-content">
<div class="row">
<div class="col-sm-10 col-sm-offset-1">
<div class="login-container">
<div class="center">
<h1>
<i class="icon-ticket green"></i>
<span class="white">GestSup</span>
<font size="2px">'.$rparameters['version'].'</font>
</h1>
<h4 class="blue">';if (isset($rparameters['company'])) echo $rparameters['company']; echo' </h4>
<img style="border-style: none" alt="logo" src="./upload/logo/'; if (isset($rparameters['logo'])) echo $rparameters['logo']; echo '" />
</div>
<br />
'.$message.'
<div class="space-6"></div>
<div class="position-relative">
<div id="login-box" class="login-box visible widget-box no-border">
<div class="widget-body">
<div class="widget-main">
<h4 class="header blue lighter bigger">
<i class="icon-lock green"></i>
Saissisez vos identifiants
'.$info.'
</h4>
<div class="space-6"></div>
<form id="conn" method="post" action="">
<fieldset>
<label class="block clearfix">
<span class="block input-icon input-icon-right">
<input class="form-control" type="text" id="login" name="login" class="span12" placeholder="Nom d\'utilisateur" />
<i class="icon-user"></i>
</span>
</label>
<label class="block clearfix">
<span class="block input-icon input-icon-right">
<input class="form-control" type="password" id="pass" name="pass" class="span12" placeholder="Mot de passe" />
<i class="icon-lock"></i>
</span>
</label>
<div class="space"></div>
<div class="clearfix">
<button onclick="submit()" type="submit" id="submit" name="submit" class="pull-right btn btn-sm btn-primary">
<i class="icon-ok"></i>
Connexion
</button>
</div>
<div class="space-4"></div>
</fieldset>
</form>
</div><!--/widget-main-->
</div><!--/widget-body-->
</div><!--/login-box-->
</div><!--/position-relative-->
</div>
</div><!--/.span-->
</div><!--/.row-fluid-->
</div>
<span style="position: absolute; bottom: 0; right: 0;"><a href="http://gestsup.fr">GestSup.fr</a></span>
</div><!--/.main-container-->
<script type="text/JavaScript">
document.getElementById("login").focus();
</script>
';
}
?>
Enable javascript to submit You have javascript disabled. You will not be able to edit any code.
Here you find the average performance (time & memory) of each version. A grayed out version indicates it didn't complete successfully (based on exit-code).
Version System time (s) User time (s) Memory (MiB) 7.4.0 0.008 0.011 14.88 7.3.12 0.011 0.011 15.05 7.3.11 0.019 0.006 14.55 7.3.10 0.004 0.018 14.35 7.3.9 0.016 0.004 14.72 7.3.8 0.021 0.005 15.05 7.3.7 0.008 0.016 14.99 7.3.6 0.012 0.016 15.13 7.3.5 0.014 0.009 15.03 7.3.4 0.016 0.010 14.62 7.3.3 0.011 0.011 14.80 7.3.2 0.010 0.007 16.43 7.3.1 0.011 0.011 16.70 7.3.0 0.009 0.012 16.82 7.2.25 0.008 0.016 14.81 7.2.24 0.011 0.014 15.36 7.2.23 0.008 0.012 14.98 7.2.22 0.014 0.010 14.82 7.2.21 0.006 0.021 15.00 7.2.20 0.023 0.005 14.91 7.2.19 0.010 0.014 15.22 7.2.18 0.020 0.008 14.83 7.2.17 0.007 0.013 14.97 7.1.33 0.000 0.020 15.80 7.1.32 0.004 0.016 15.58 7.1.31 0.003 0.017 15.93 7.1.30 0.011 0.011 16.03 7.1.29 0.012 0.012 15.62 7.1.28 0.013 0.010 15.66 7.1.27 0.000 0.019 15.77 7.1.26 0.005 0.015 15.91 7.1.7 0.004 0.004 16.93 7.1.6 0.016 0.010 19.32 7.1.5 0.011 0.011 16.86 7.1.0 0.007 0.073 22.45 7.0.20 0.003 0.005 16.46 7.0.14 0.007 0.067 22.12 7.0.10 0.053 0.057 20.16 7.0.9 0.003 0.063 20.07 7.0.8 0.017 0.063 19.99 7.0.7 0.013 0.080 20.16 7.0.6 0.033 0.043 20.07 7.0.5 0.010 0.077 20.49 7.0.4 0.010 0.077 20.01 7.0.3 0.007 0.073 20.04 7.0.2 0.003 0.087 20.00 7.0.1 0.020 0.070 20.14 7.0.0 0.010 0.073 20.09 5.6.28 0.003 0.073 20.98 5.6.25 0.003 0.090 20.73 5.6.24 0.003 0.047 20.63 5.6.23 0.003 0.063 20.71 5.6.22 0.003 0.073 20.64 5.6.21 0.010 0.060 20.82 5.6.20 0.007 0.070 21.17 5.6.19 0.003 0.053 21.10 5.6.18 0.010 0.077 21.01 5.6.17 0.013 0.067 21.10 5.6.16 0.007 0.043 21.07 5.6.15 0.003 0.047 21.14 5.6.14 0.017 0.080 21.07 5.6.13 0.010 0.043 21.16 5.6.12 0.003 0.067 21.08 5.6.11 0.010 0.063 21.16 5.6.10 0.003 0.050 20.98 5.6.9 0.007 0.100 21.08 5.6.8 0.000 0.050 20.48 5.6.7 0.007 0.073 20.45 5.6.6 0.003 0.047 20.45 5.6.5 0.017 0.033 20.49 5.6.4 0.007 0.053 20.37 5.6.3 0.010 0.047 20.42 5.6.2 0.010 0.070 20.52 5.6.1 0.017 0.060 20.59 5.6.0 0.017 0.033 20.50 5.5.38 0.007 0.050 20.39 5.5.37 0.007 0.083 20.58 5.5.36 0.010 0.050 20.42 5.5.35 0.007 0.043 20.49 5.5.34 0.027 0.043 20.96 5.5.33 0.000 0.063 20.86 5.5.32 0.007 0.050 20.89 5.5.31 0.003 0.070 20.84 5.5.30 0.003 0.063 20.92 5.5.29 0.007 0.080 20.82 5.5.28 0.003 0.090 20.95 5.5.27 0.010 0.067 20.86 5.5.26 0.010 0.070 20.98 5.5.25 0.010 0.080 20.75 5.5.24 0.007 0.043 20.32 5.5.23 0.003 0.077 20.20 5.5.22 0.017 0.073 20.29 5.5.21 0.007 0.037 20.32 5.5.20 0.010 0.073 20.34 5.5.19 0.010 0.067 20.29 5.5.18 0.010 0.070 20.33 5.5.16 0.003 0.050 20.34 5.5.15 0.010 0.073 20.19 5.5.14 0.013 0.047 20.21 5.5.13 0.010 0.070 20.24 5.5.12 0.007 0.053 20.27 5.5.11 0.010 0.077 20.33 5.5.10 0.010 0.077 20.08 5.5.9 0.007 0.077 20.13 5.5.8 0.007 0.080 20.21 5.5.7 0.010 0.083 20.20 5.5.6 0.013 0.073 20.21 5.5.5 0.007 0.063 20.21 5.5.4 0.020 0.067 20.14 5.5.3 0.013 0.043 20.21 5.5.2 0.007 0.077 20.15 5.5.1 0.010 0.073 20.10 5.5.0 0.007 0.077 20.11 5.4.45 0.013 0.033 19.38 5.4.44 0.010 0.077 19.11 5.4.43 0.007 0.077 19.45 5.4.42 0.007 0.070 19.14 5.4.41 0.010 0.073 18.98 5.4.40 0.007 0.050 19.16 5.4.39 0.007 0.070 19.20 5.4.38 0.010 0.037 19.03 5.4.37 0.010 0.037 18.95 5.4.36 0.007 0.070 19.06 5.4.35 0.013 0.077 19.06 5.4.34 0.003 0.047 18.96 5.4.32 0.003 0.063 19.00 5.4.31 0.010 0.053 19.13 5.4.30 0.010 0.033 18.80 5.4.29 0.003 0.040 19.09 5.4.28 0.010 0.073 18.78 5.4.27 0.010 0.070 18.89 5.4.26 0.013 0.073 19.09 5.4.25 0.013 0.067 18.89 5.4.24 0.007 0.037 18.96 5.4.23 0.010 0.067 18.91 5.4.22 0.007 0.067 19.22 5.4.21 0.010 0.040 19.04 5.4.20 0.003 0.047 19.14 5.4.19 0.010 0.083 19.11 5.4.18 0.000 0.047 19.14 5.4.17 0.000 0.050 18.84 5.4.16 0.010 0.050 18.80 5.4.15 0.010 0.077 19.01 5.4.14 0.003 0.043 16.41 5.4.13 0.020 0.030 16.39 5.4.12 0.003 0.043 16.38 5.4.11 0.010 0.030 16.36 5.4.10 0.003 0.037 16.50 5.4.9 0.007 0.030 16.40 5.4.8 0.003 0.033 16.27 5.4.7 0.003 0.037 16.25 5.4.6 0.003 0.037 16.45 5.4.5 0.007 0.037 16.35 5.4.4 0.007 0.030 16.19 5.4.3 0.007 0.033 16.48 5.4.2 0.007 0.027 16.36 5.4.1 0.000 0.040 16.35 5.4.0 0.000 0.040 15.84 5.3.29 0.003 0.047 14.60 5.3.28 0.007 0.040 14.51 5.3.27 0.010 0.070 14.65 5.3.26 0.017 0.037 14.64 5.3.25 0.013 0.057 14.61 5.3.24 0.017 0.033 14.63 5.3.23 0.003 0.050 14.66 5.3.22 0.000 0.040 14.60 5.3.21 0.007 0.037 14.61 5.3.20 0.007 0.030 14.50 5.3.19 0.003 0.040 14.50 5.3.18 0.003 0.037 14.51 5.3.17 0.000 0.040 14.63 5.3.16 0.010 0.030 14.47 5.3.15 0.000 0.040 14.47 5.3.14 0.000 0.040 14.64 5.3.13 0.003 0.043 14.46 5.3.12 0.007 0.030 14.61 5.3.11 0.007 0.033 14.58 5.3.10 0.000 0.040 14.06 5.3.9 0.007 0.037 14.05 5.3.8 0.007 0.027 14.07 5.3.7 0.003 0.043 14.07 5.3.6 0.020 0.050 14.08 5.3.5 0.007 0.033 13.93 5.3.4 0.003 0.030 14.00 5.3.3 0.003 0.030 13.94 5.3.2 0.000 0.033 13.74 5.3.1 0.003 0.033 13.67 5.3.0 0.000 0.037 13.66
preferences:dark mode live preview
38.92 ms | 400 KiB | 5 Q