aboutsummaryrefslogtreecommitdiff
path: root/actions/login.php
blob: 936d0a7d99b58f8eac905b5558a1971b4e642a3e (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
<?php
/**
 * Elgg login action
 *
 * @package Elgg.Core
 * @subpackage User.Authentication
 */

$username = get_input('username');
$password = get_input("password");
$persistent = get_input("persistent", FALSE);
$result = FALSE;

if (empty($username) || empty($password)) {
	register_error(elgg_echo('loginerror'));
	forward();
}

// check first if logging in with email address
if (strpos($username, '@') !== FALSE && ($users = get_user_by_email($username))) {
	$username = $users[0]->username;
}

if ($user = authenticate($username, $password)) {
	$result = login($user, $persistent);
}

// forward to correct page
if ($result) {
	system_message(elgg_echo('loginok'));

	if (isset($_SESSION['last_forward_from']) && $_SESSION['last_forward_from']) {
		$forward_url = $_SESSION['last_forward_from'];
		unset($_SESSION['last_forward_from']);

		forward($forward_url);
	} else {
		if (get_input('returntoreferer')) {
			forward(REFERER);
		} else {
			// forward to index for front page overrides.
			// index will forward to dashboard if appropriate.
			forward('index.php');
		}
	}
} else {
	register_error(elgg_echo('loginerror'));
	//	// let a plugin hook say why login failed or react to it.
	//	$params = array(
	//		'username' => $username,
	//		'password' => $password,
	//		'persistent' => $persistent,
	//		'user' => $user
	//	);
	//
	//	// Returning FALSE to this function will generate a standard
	//	// "Could not log you in" message.
	//	// Plugins should use this hook to provide details, and then return TRUE.
	//	if (!elgg_trigger_plugin_hook('failed_login', 'user', $params, FALSE)) {
	//		register_error(elgg_echo('loginerror'));
	//	}
}

forward(REFERRER);