'), array('<', '>'), $str); return $rep; } # function htmler($str) { $srch = array('<','>',"\r\n","\n","\r"); $rep = array('<','>','
','
','
'); return str_replace($srch, $rep, $str); } # function cvtdbg() { global $dbg, $dbgstr; if ($dbg === false || $dbgstr == '') $rep = ''; else $rep = htmler($dbgstr).'
'; return $rep; } # function safeinput($txt, $len = 1024, $lf = true) { $ret = trim($txt); if ($ret != '') { if ($lf === true) $ret = preg_replace("/[^ -~\r\n]/", '', $ret); else $ret = preg_replace('/[^ -~]/', '', $ret); if ($len > 0) $ret = substr($ret, 0, $len); } return trim($ret); } # function safetext($txt, $len = 1024) { $tmp = substr($txt, 0, $len); $res = ''; for ($i = 0; $i < strlen($tmp); $i++) { $ch = substr($tmp, $i, 1); if ($ch >= ' ' && $ch <= '~') $res .= $ch; else { $c = ord($ch); $res .= sprintf('0x%02x', $c); } } if (strlen($txt) > $len) $res .= '...'; return $res; } # function dbd($data, $user) { return "
Web site is currently down"; } # function dbdown() { gopage(NULL, 'dbd', NULL, '', false, true, false); } # function f404($data) { return "
404"; } # function do404() { gopage(NULL, 'f404', NULL, '', false, true, false); } # function showPage($page, $menu, $name, $user) { # If you are doing development, use without '@' # Then switch to '@' when finished # @include_once("page_$page.php"); include_once("page_$page.php"); $fun = 'show_' . $page; if (function_exists($fun)) $fun($menu, $name, $user); else do404(); } # function showIndex() { showPage('index', NULL, '', false); } # function offline() { if (file_exists('./maintenance.txt')) { $ip = $_SERVER['REMOTE_ADDR']; if ($ip != '192.168.7.74') gopage(NULL, file_get_contents('./maintenance.txt'), NULL, '', false, false, false, false); } } # offline(); # session_start(); # include_once('db.php'); # function validUserPass($user, $pass) { $rep = checkpass($user, $pass); $ans = repDecode($rep); usleep(100000); // Max 10x per second if ($ans['STATUS'] == 'ok') { $key = 'ckp'.rand(1000000,9999999); $_SESSION['ckpkey'] = $key; $_SESSION[$key] = array('who' => $user, 'id' => $user); } } # function logout() { if (isset($_SESSION['ckpkey'])) { $key = $_SESSION['ckpkey']; if (isset($_SESSION[$key])) unset($_SESSION[$key]); unset($_SESSION['ckpkey']); } } # function requestRegister() { $reg = getparam('Register', false); if ($reg !== NULL) { logout(); return true; } return false; } # function tryLogInOut() { // If already logged in, it will ignore User/Pass if (isset($_SESSION['ckpkey'])) { $logout = getparam('Logout', false); if (!nuem($logout) && $logout == 'Logout') logout(); } else { $user = getparam('User', false); if ($user !== NULL) $user = loginStr($user); if (nuem($user)) return; $pass = getparam('Pass', false); if (nuem($pass)) return; $login = getparam('Login', false); if (nuem($login)) return; validUserPass($user, $pass); } } # function validate() { $who = ''; $whoid = ''; if (!isset($_SESSION['ckpkey'])) return false; $key = $_SESSION['ckpkey']; if (!isset($_SESSION[$key])) { logout(); return array(false, NULL); } if (!isset($_SESSION[$key]['who'])) { logout(); return array(false, NULL); } $who = $_SESSION[$key]['who']; if (!isset($_SESSION[$key]['id'])) { logout(); return array(false, NULL); } $whoid = $_SESSION[$key]['id']; return array($who, $whoid); } # function loggedIn() { list($who, $whoid) = validate(); // false if not logged in return $who; } # ?>