broken sign in delete lock Revision 353839396430 (Sat Jun 19 2010 at 17:00) - Diff Link to this snippet: https://friendpaste.com/59JoSblxHX5yadkg5jVKTd Embed: manni perldoc borland colorful default murphy trac fruity autumn bw emacs pastie friendly Show line numbers Wrap lines 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130--- the signin php main page --<?php $pathToRoot=dirname($_SERVER['SCRIPT_FILENAME'])."/"; ?><?php include($pathToRoot."includes/phpheader.php"); ?><?php include($pathToRoot."includes/httpheader.php"); ?><?php include($pathToRoot."includes/signin.php"); ?><?php// Check if we have established a sessionif (isUserSignedIn()){ // There is a user logged on outputSignedOnPage($_SESSION["authenticatedUser"]);}else{ // No session established, no POST variables // display the sign-in form + any message outputSignInPage($_SESSION["sessionMessage"]); session_destroy();}?>--- the signin.php include is listed below ---<?php// include guardsif (!$INCLUDED_SIGN_IN_PHP):$INCLUDED_SIGN_IN_PHP = 1;//// Function that returns the HTML FORM that is // used to collect the username and password//function outputSignInPage($sessionMessage){ global $pathToRoot; global $URLToRoot; global $queryVars; ?><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd"><html><head><?php include($pathToRoot."includes/htmlheader.php"); ?><title>Sign In</title></head><body><?php include($pathToRoot."includes/banner.php"); ?> <table width=<?php echo "\"".getPageWidth()."\"" ?> border="0"> <tr> <?php if (!(int)$queryVars['isPrintable']) include($pathToRoot."includes/navigation.php"); ?> <td valign="top"><div class="headerImageText">Sign In</div><?php // Include the formatted sign in message if (isset($sessionMessage)) echo "<p class=\"sessionMessage\">".$sessionMessage."</p>"; // Deduce the URL to go to after authentication. If we aren't told, // just go to the main page if (!array_key_exists('fromURL', $queryVars)) $queryVars['fromURL'] = $URLToRoot;?> <form method="POST" action=<?php echo "\"".$URLToRoot."authentication.php?fromURL=".urlencode($queryVars['fromURL'])."\""?>> <table align="center"> <tr> <td colspan="2"><h3>Sign In</h3></td> </tr> <tr><td colspan="2"> </td></tr> <tr><td>Username:</td> <td><input type="text" size=15 maxlength=25 name="formUsername"></td></tr> <tr><td>Password:</td> <td><input type="password" size=15 maxlength=25 name="formPassword"></td></tr> <tr><td colspan="2"> </td></tr> <tr><td colspan="2" align="right"><input type="submit" value="Sign in"></td></tr> </table> </form> </td> </tr> </table><?php include($pathToRoot."includes/info.php"); ?></body></html><?php} //// Function that returns HTML page showing that // the user with the $currentSignInName is signed on//function outputSignedOnPage($currentSignInName){ global $pathToRoot; global $URLToRoot; global $queryVars;?><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd"><html><head><?php include($pathToRoot."includes/htmlheader.php"); ?><title>Sign In</title></head><body><?php include($pathToRoot."includes/banner.php"); ?> <table width=<?php echo "\"".getPageWidth()."\"" ?> border="0"> <tr> <?php if (!(int)$queryVars['isPrintable']) include($pathToRoot."includes/navigation.php"); ?> <td valign="top"><div class="headerImageText">Sign In</div> <p class="sessionMessage">You are currently signed in as <?php echo "\"".$currentSignInName."\".</p>"; ?> <p align="center"><a href=<?php echo "\"".$URLToRoot."signout.php\""?>>Sign Out</a></p> </td> </tr> </table><?php include($pathToRoot."includes/info.php"); ?></body></html><?php} endif; // $INCLUDED_SIGN_IN_PHP?>