blob: 1b4fbe1fdf6516f92c406943417f13eecdd85391 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
|
<?php
/**
* Elgg login action
*
* @package Elgg.Core
* @subpackage User.Authentication
*/
$username = get_input('username');
$password = get_input("password");
$persistent = get_input("persistent", FALSE);
$result = FALSE;
if (empty($username) || empty($password)) {
register_error(elgg_echo('login:empty'));
forward();
}
// check if logging in with email address
// @todo Are usernames with @ not allowed?
if (strpos($username, '@') !== FALSE && ($users = get_user_by_email($username))) {
$username = $users[0]->username;
}
$result = elgg_authenticate($username, $password);
if ($result !== true) {
register_error($result);
forward(REFERER);
}
$user = get_user_by_username($username);
if (!$user) {
register_error(elgg_echo('login:baduser'));
forward(REFERER);
}
try {
login($user, $persistent);
} catch (LoginException $e) {
register_error($e->getMessage());
forward(REFERER);
}
// forward to correct page
if (isset($_SESSION['last_forward_from']) && $_SESSION['last_forward_from']) {
$forward_url = $_SESSION['last_forward_from'];
unset($_SESSION['last_forward_from']);
} elseif (get_input('returntoreferer')) {
$forward_url = REFERER;
} else {
// forward to main index page
$forward_url = '';
}
system_message(elgg_echo('loginok'));
forward($forward_url);
|