'u.id, u.group_id, u.password, u.save_pass, u.salt', 'FROM' => 'users AS u' ); if ($db_type == 'mysql' || $db_type == 'mysqli') $query['WHERE'] = 'username=\''.$pun_db->escape($form_username).'\''; else $query['WHERE'] = 'LOWER(username)=LOWER(\''.$pun_db->escape($form_username).'\')'; ($hook = get_hook('li_qr_get_login_data')) ? eval($hook) : null; $result = $pun_db->query_build($query) or error(__FILE__, __LINE__); list($user_id, $group_id, $db_password_hash, $save_pass, $salt) = $pun_db->fetch_row($result); $authorized = false; if (!empty($db_password_hash)) { $sha1_in_db = (strlen($db_password_hash) == 40) ? true : false; $form_password_hash = sha1($salt.sha1($form_password)); if ($sha1_in_db && $db_password_hash == $form_password_hash) $authorized = true; else if ((!$sha1_in_db && $db_password_hash == md5($form_password)) || ($sha1_in_db && $db_password_hash == sha1($form_password))) { $authorized = true; $salt = random_key(12); $form_password_hash = sha1($salt.sha1($form_password)); // There's an old MD5 hash or an unsalted SHA1 hash in the database, so we replace it // with a randomly generated salt and a new, salted SHA1 hash $query = array( 'UPDATE' => 'users', 'SET' => 'password=\''.$form_password_hash.'\', salt=\''.$pun_db->escape($salt).'\'', 'WHERE' => 'id='.$user_id ); ($hook = get_hook('li_qr_update_user_hash')) ? eval($hook) : null; $pun_db->query_build($query) or error(__FILE__, __LINE__); } } ($hook = get_hook('li_login_pre_auth_message')) ? eval($hook) : null; if (!$authorized) $errors[] = sprintf($lang_login['Wrong user/pass']); // Did everything go according to plan? if (empty($errors)) { // Update the status if this is the first time the user logged in if ($group_id == PUN_UNVERIFIED) { $query = array( 'UPDATE' => 'users', 'SET' => 'group_id='.$pun_config['o_default_user_group'], 'WHERE' => 'id='.$user_id ); ($hook = get_hook('li_qr_update_user_group')) ? eval($hook) : null; $pun_db->query_build($query) or error(__FILE__, __LINE__); } // Remove this user's guest entry from the online list $query = array( 'DELETE' => 'online', 'WHERE' => 'ident=\''.$pun_db->escape(get_remote_address()).'\'' ); ($hook = get_hook('li_qr_delete_online_user')) ? eval($hook) : null; $pun_db->query_build($query) or error(__FILE__, __LINE__); $expire = ($save_pass == '1') ? time() + 31536000 : 0; pun_setcookie($cookie_name, base64_encode($user_id.'|'.$form_password_hash), $expire); redirect(pun_htmlencode($_POST['redirect_url']).((substr_count($_POST['redirect_url'], '?') == 1) ? '&' : '?').'login=1', $lang_login['Login redirect']); } } // Logout else if ($action == 'out') { if ($pun_user['is_guest'] || !isset($_GET['id']) || $_GET['id'] != $pun_user['id']) { header('Location: '.pun_link($pun_url['index'])); exit; } // We validate the CSRF token. If it's set in POST and we're at this point, the token is valid. // If it's in GET, we need to make sure it's valid. if (!isset($_POST['csrf_token']) && (!isset($_GET['csrf_token']) || $_GET['csrf_token'] !== generate_form_token('logout'.$pun_user['id']))) csrf_confirm_form(); ($hook = get_hook('li_logout_selected')) ? eval($hook) : null; // Remove user from "users online" list. $query = array( 'DELETE' => 'online', 'WHERE' => 'user_id='.$pun_user['id'] ); ($hook = get_hook('li_qr_delete_online_user2')) ? eval($hook) : null; $pun_db->query_build($query) or error(__FILE__, __LINE__); // Update last_visit (make sure there's something to update it with) if (isset($pun_user['logged'])) { $query = array( 'UPDATE' => 'users', 'SET' => 'last_visit='.$pun_user['logged'], 'WHERE' => 'id='.$pun_user['id'] ); ($hook = get_hook('li_qr_update_last_visit')) ? eval($hook) : null; $pun_db->query_build($query) or error(__FILE__, __LINE__); } pun_setcookie($cookie_name, base64_encode('1|'.random_key(8, true)), time() + 31536000); // Reset tracked topics set_tracked_topics(null); ($hook = get_hook('li_logout_pre_redirect')) ? eval($hook) : null; redirect(pun_link($pun_url['index']), $lang_login['Logout redirect']); } // New password else if ($action == 'forget' || $action == 'forget_2') { if (!$pun_user['is_guest']) header('Location: '.pun_link($pun_url['index'])); ($hook = get_hook('li_forgot_pass_selected')) ? eval($hook) : null; if (isset($_POST['form_sent'])) { require PUN_ROOT.'include/email.php'; // Validate the email-address $email = strtolower(trim($_POST['req_email'])); if (!is_valid_email($email)) $errors[] = $lang_common['Invalid e-mail']; // Did everything go according to plan? if (empty($errors)) { // Fetch user matching $email $query = array( 'SELECT' => 'u.id, u.username, u.salt', 'FROM' => 'users AS u', 'WHERE' => 'u.email=\''.$pun_db->escape($email).'\'' ); ($hook = get_hook('li_qr_get_user_data')) ? eval($hook) : null; $result = $pun_db->query_build($query) or error(__FILE__, __LINE__); if ($pun_db->num_rows($result)) { ($hook = get_hook('li_forgot_pass_pre_email')) ? eval($hook) : null; // Load the "activate password" template $mail_tpl = trim(file_get_contents(PUN_ROOT.'lang/'.$pun_user['language'].'/mail_templates/activate_password.tpl')); // The first row contains the subject $first_crlf = strpos($mail_tpl, "\n"); $mail_subject = trim(substr($mail_tpl, 8, $first_crlf-8)); $mail_message = trim(substr($mail_tpl, $first_crlf)); // Do the generic replacements first (they apply to all e-mails sent out here) $mail_message = str_replace('', $base_url.'/', $mail_message); $mail_message = str_replace('', sprintf($lang_common['Forum mailer'], $pun_config['o_board_title']), $mail_message); // Loop through users we found while ($cur_hit = $pun_db->fetch_assoc($result)) { // Generate a new password activation key $new_password_key = random_key(8, true); $query = array( 'UPDATE' => 'users', 'SET' => 'activate_key=\''.$new_password_key.'\'', 'WHERE' => 'id='.$cur_hit['id'] ); ($hook = get_hook('li_qr_set_activate_key')) ? eval($hook) : null; $pun_db->query_build($query) or error(__FILE__, __LINE__); // Do the user specific replacements to the template $cur_mail_message = str_replace('', $cur_hit['username'], $mail_message); $cur_mail_message = str_replace('', str_replace('&', '&', pun_link($pun_url['change_password_key'], array($cur_hit['id'], $new_password_key))), $cur_mail_message); pun_mail($email, $mail_subject, $cur_mail_message); } message(sprintf($lang_login['Forget mail'], ''.$pun_config['o_admin_email'].'')); } else $errors[] = sprintf($lang_login['No e-mail match'], pun_htmlencode($email)); } } // Setup form $pun_page['set_count'] = $pun_page['fld_count'] = 0; $pun_page['form_action'] = $base_url.'/login.php?action=forget_2'; // Setup breadcrumbs $pun_page['crumbs'] = array( array($pun_config['o_board_title'], pun_link($pun_url['index'])), $lang_login['New password request'] ); ($hook = get_hook('li_forgot_pass_pre_header_load')) ? eval($hook) : null; define ('PUN_PAGE', 'dialogue'); require PUN_ROOT.'header.php'; ?>

'.$cur_error.''; ($hook = get_hook('li_pre_new_password_errors')) ? eval($hook) : null; ?>

'.$lang_common['Required'].'') ?>

', '' ); // Setup form information $pun_page['frm_info'] = array( '
  • '.sprintf($lang_login['Must be registered'], ''.$lang_login['Register now'].'').'
    • ', '
  • '.sprintf($lang_login['Forgotten password'], ''.$lang_login['Request pass'].'').'
    • ' ); // Setup breadcrumbs $pun_page['crumbs'] = array( array($pun_config['o_board_title'], pun_link($pun_url['index'])), $lang_common['Login'] ); ($hook = get_hook('li_login_pre_header_load')) ? eval($hook) : null; define('PUN_PAGE', 'login'); require PUN_ROOT.'header.php'; ?>

    '.$cur_error.''; ($hook = get_hook('li_pre_login_errors')) ? eval($hook) : null; ?>

    '.$lang_common['Required'].'') ?>