2 date_default_timezone_set('Europe/Amsterdam');
6 function __construct($dir, $existing = TRUE)
8 if (!file_exists($dir) and $existing) {
9 throw new Exception("Gebruiker niet gevonden in $dir");
12 $this->login = basename($dir);
17 return $this->$col = $this->$col(); # run method and cache
22 return rtrim(@file_get_contents("{$this->dir}/name.txt"));
27 return htmlspecialchars(implode(' & ', explode("\n", $this->rawname)));
32 return $this->name ?: $this->login;
37 return rtrim(@file_get_contents("{$this->dir}/email.txt"));
40 function admin($permission = NULL)
42 if (isset($permission)) {
44 return FALSE; # empty results
46 preg_match_all('{[ /]}', $permission, $parts, PREG_OFFSET_CAPTURE);
47 foreach ($parts[0] as $part) {
48 if (isset($this->admin[substr($permission, 0, $part[1])])) {
49 return TRUE; # partial match
52 return isset($this->admin[$permission]); # check level
54 if (!@file_exists("{$this->dir}/.admin")) {
55 return FALSE; # not an admin
57 return array_fill_keys(explode("\n", file_get_contents("{$this->dir}/.admin")), TRUE);
62 return @filemtime("{$this->dir}/last.log");
67 if ($log = @fopen("{$this->dir}/last.log", 'w')) {
68 $line = $_SERVER['REMOTE_ADDR'].' '.$_SERVER['HTTP_USER_AGENT'];
69 fwrite($log, $line."\n");
74 function login_password_verify($input, $test)
76 if (substr($test, 0, 1) != '$') {
77 # plaintext match for uncrypted passwords
78 return $input === $test;
80 return password_verify($input, $test);
83 function login_setcookie()
86 return setcookie('login', $User->auth, 0, '/');
89 function login($inuser, $inpass = NULL)
91 if (empty($inuser)) return;
92 if (!isset($inpass)) {
93 @list ($inuser, $inauth) = explode(':', $inuser, 2);
96 # find password data by user name
97 $userdir = 'profile/'.preg_replace('/[^a-z0-9]+/', '-', strtolower($inuser));
98 $pwfile = "$userdir/.passwd";
99 if (!file_exists($pwfile)) return;
100 $usertest = trim(file_get_contents($pwfile));
101 if (!$usertest) return;
104 $authhash = md5($usertest);
105 if (isset($inpass)) {
106 if (!login_password_verify($inpass, $usertest)) return;
109 if ($inauth !== $authhash) return;
112 if (function_exists('apache_note')) apache_note('user', $inuser);
114 $user = new User($userdir);
116 $user->pass = $usertest;
117 $user->auth = "$inuser:$authhash";
121 if (isset($_COOKIE['login'])) {
123 $User = login($_COOKIE['login']);