Zeile 3 | Zeile 3 |
---|
* MyBB 1.2 * Copyright � 2006 MyBB Group, All Rights Reserved *
|
* MyBB 1.2 * Copyright � 2006 MyBB Group, All Rights Reserved *
|
* Website: http://www.mybboard.com * License: http://www.mybboard.com/eula.html
| * Website: http://www.mybboard.net * License: http://www.mybboard.net/eula.html
|
*
|
*
|
* $Id: global.php 2175 2006-08-31 04:27:16Z Tikitiki $
| * $Id: global.php 2932 2007-03-10 05:48:55Z chris $
|
*/
// Lets pretend we're a level higher
| */
// Lets pretend we're a level higher
|
Zeile 20 | Zeile 20 |
---|
$config['admin_dir'] = "admin"; }
|
$config['admin_dir'] = "admin"; }
|
require_once dirname(dirname(__FILE__))."/inc/init.php";
| require_once "../inc/init.php";
|
define('MYBB_ADMIN_DIR', MYBB_ROOT.$config['admin_dir'].'/');
| define('MYBB_ADMIN_DIR', MYBB_ROOT.$config['admin_dir'].'/');
|
Zeile 49 | Zeile 49 |
---|
$mybb->settings['bbname'] = stripslashes($mybb->settings['bbname']);
$time = time();
|
$mybb->settings['bbname'] = stripslashes($mybb->settings['bbname']);
$time = time();
|
| header("Content-type: text/html; charset={$lang->settings['charset']}");
|
if(is_dir(MYBB_ROOT."install") && !file_exists(MYBB_ROOT."install/lock")) {
| if(is_dir(MYBB_ROOT."install") && !file_exists(MYBB_ROOT."install/lock")) {
|
Zeile 73 | Zeile 75 |
---|
if($user['uid']) {
|
if($user['uid']) {
|
| $sid = md5(uniqid(microtime()));
|
// Create a new admin session for this user $admin_session = array(
|
// Create a new admin session for this user $admin_session = array(
|
"sid" => md5(uniqid(microtime())),
| "sid" => $sid,
|
"uid" => $user['uid'], "loginkey" => $user['loginkey'], "ip" => $db->escape_string(get_ip()),
| "uid" => $user['uid'], "loginkey" => $user['loginkey'], "ip" => $db->escape_string(get_ip()),
|
Zeile 83 | Zeile 87 |
---|
"lastactive" => time() ); $db->insert_query(TABLE_PREFIX."adminsessions", $admin_session);
|
"lastactive" => time() ); $db->insert_query(TABLE_PREFIX."adminsessions", $admin_session);
|
| $url = "index.php?adminsid=$sid"; if($mybb->input['goto']) { $url .= "&goto=".urlencode($mybb->input['goto']); } header("Location: $url");
|
} } else if($mybb->input['action'] == "logout")
| } } else if($mybb->input['action'] == "logout")
|
Zeile 114 | Zeile 124 |
---|
// Fetch the user from the admin session $query = $db->simple_select(TABLE_PREFIX."users", "*", "uid='{$admin_session['uid']}'"); $user = $db->fetch_array($query);
|
// Fetch the user from the admin session $query = $db->simple_select(TABLE_PREFIX."users", "*", "uid='{$admin_session['uid']}'"); $user = $db->fetch_array($query);
|
|
|
// Login key has changed - force logout if(!$user['uid'] && $user['loginkey'] != $admin_session['loginkey']) {
| // Login key has changed - force logout if(!$user['uid'] && $user['loginkey'] != $admin_session['loginkey']) {
|
Zeile 157 | Zeile 167 |
---|
} } }
|
} } }
|
}
| }
|
}
$mybbgroups = $user['usergroup'].",".$user['additionalgroups'];
| }
$mybbgroups = $user['usergroup'].",".$user['additionalgroups'];
|
Zeile 221 | Zeile 231 |
---|
if(!empty($_SERVER['QUERY_STRING'])) { $goto .= '?'.$_SERVER['QUERY_STRING'];
|
if(!empty($_SERVER['QUERY_STRING'])) { $goto .= '?'.$_SERVER['QUERY_STRING'];
|
$goto = preg_replace('#(&?|&?|\??)adminsid=([a-zA-Z0-9]{1,32})#i', '', $goto);
| if(strpos($goto, '&') !== false) { $goto = preg_replace('#(&?|&?|\??)adminsid=([a-zA-Z0-9]{1,32})(&?|&?)#i', '\\1', $goto); } else { $goto = preg_replace('#\?adminsid=([a-zA-Z0-9]{1,32})#i', '', $goto); }
|
} } else
| } } else
|