<?php
if(!defined('DRK'))die('Hacking attempt...');
/////LOGIN/////
$username=get_var("username");
$password=get_var("password");
$process=get_var("process");
if(!SignupChars($username))$msg="<br/>\n<img src=\"./images/error.gif\" alt=\"[x]\">illegal chars found!!";
else if(num_rows("id",users,"LOWER(username)=LOWER('$username') AND password='$password'")==0)$msg="<br/>\n<img src=\"./images/error.gif\" alt=\"[x]\">wrong username or password!!";
else if(fetch_array("validated",users,"username='$username'")=="N")$msg="<br/>\n<img src=\"./images/point.gif\" alt=\"[!]\">account not validated yet!! this could take up to 12hrs...";
else if(fetch_array("banned",users,"username='$username'")=="Y"){
//$uid=fetch_array("id",users,"LOWER(username)=LOWER('$username')");
$uid=IdFromUser($username);
$byuser=fetch_array("byuser",banned,"LOWER(username)=LOWER('$username')");
$reason=fetch_array("reason",banned,"LOWER(username)=LOWER('$username')");
if(empty($reason))$reason="no reason specified";
$msg="<br/>\n<img src=\"./images/point.gif\" alt=\"[!]\"><small>account banned by $byuser, $reason!!</small>";
}
else{
$GetSession=fetch_array("sesid",sessions,"LOWER(username)=LOWER('$username')");
$exp_ses=get_var("old_ses");
delete(sessions,"sesid='$exp_ses'");
if(empty($GetSession))$sesid=NewSessionID($username,$_SERVER['HTTP_USER_AGENT'],ip(),subno(ip()));
else $sesid=$GetSession;
if($process==1)Location("act=login&username=$username&password=$password");
$uid=IdFromUser($username);
update(users,"visits=visits+1,mood='$mood'","id='$uid'");
loguser($uid);
$visits=users_table("visits",$uid);
$time=time();
$onlineusers=num_rows("id",users,"$time-lastseen<=$offlinetime");
$what=Array("uid2","sesid","sitename","username","password","visits","onlineusers");
$with=Array($uid,"&ses=$sesid",$sitename,users_table("username",$uid),$password,$visits,$onlineusers);
Template($what,$with,"welcome");
exit;
}
?>