1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:
|
<?php
function login(user,passwort){
$connect = mysql_connect($global["dbhost"],$global["dbuser"],$global["dbpass"]);
$userini = mysql_query('SELECT * FROM users WHERE user LIKE "'.$user.'"');
if(mysql_num_rows($userini) == 0) return("flase"); else {
$row = mysql_fetch_array($userini);
if($row->passwort == $passwort){
if($row->gespert == "true") return("flase"); else {
$timestamp = time();
session_start();
$SESSION["logon"] = array();
$SESSION["logon"]["logon"] = "true";
$SESSION["logon"]["id"] = $row->id;
$SESSION["logon"]["user"] = $user;
$SESSION["logon"]["mail"] = $row->mail;
$SESSION["logon"]["passwort"] = $passwort;
$SESSION["logon"]["data"] = date("d.m.Y",$timestamp);
$SESSION["logon"]["time"] = date("H:i",$timestamp);
$SESSION["logon"]["telefon"] = $row->telefon;
$SESSION["logon"]["fax"] = $row->fax;
$SESSION["logon"]["strasse"] = $row->strasse;
$SESSION["logon"]["plz"] = $row->plz;
$SESSION["logon"]["ort"] = $row->ort;
return("true");
}
}
}
}
function update(){
if($SESSION["logon"]["logon"] == "true"){
$connect = mysql_connect($global["dbhost"],$global["dbuser"],$global["dbpass"]);
$update = mysql_query('UPDATE users Set
user="'.$SESSION["logon"]["user"].'"
mail="'.$SESSION["logon"]["mail"].'"
passwort="'.$SESSION["logon"]["passwort"].'"
telefon="'.$SESSION["logon"]["telefon"].'"
fax="'.$SESSION["logon"]["fax"].'"
strasse="'.$SESSION["logon"]["strasse"].'"
plz="'.$SESSION["logon"]["plz"].'"
ort="'.$SESSION["logon"]["ort"].'"
WHERE id="'.$SESSION["logon"]["id"].'"');
return("true");
} else return("flase");
mysql_close($connect);
}
function passwort(user){
srand(microtime()*1000000);
$newpasswort = rand(1,1000000);
$connect = mysql_connect($global["dbhost"],$global["dbuser"],$global["dbpass"]);
$userini = mysql_query('SELECT * FROM users WHERE user LIKE "'.$user.'"');
if(mysql_num_rows($userini) == 0) return("flase"); else {
$mail = mail($row->mail, "Passwort vergessen",
"Guten Tag,\n\nIhr neues Passwort lautet: ".$newpasswort."\n\nVielen Dank!",
"From: ".$global["email"]."");
mysql_close($connect);
}
}
function register(name,mail,passwort,telefon,fax,plz,ort){
$connect = mysql_connect($global["dbhost"],$global["dbuser"],$global["dbpass"]);
$register= mysql_query("INSERT INTO users (name,mail,passwort,telefon,fax,plz,ort)
VALUES ('".$name."','".$mail."',".$passwort."', '".$telefon."',".$fax."', '".$plz.",".$ort."'");
login($name,$passwort);
mysql_close($connect);
}
?> |