<?php
+date_default_timezone_set('Europe/Amsterdam');
+
+class User
+{
+ public $dir, $login;
+
+ function __construct($dir = NULL, $existing = TRUE)
+ {
+ if (empty($dir)) {
+ return;
+ }
+ if (!file_exists($dir) and $existing) {
+ throw new Exception("Gebruiker niet gevonden in $dir");
+ }
+ $this->dir = $dir;
+ $this->login = preg_replace('{.*/}', '', $dir);
+ }
+
+ function __get($col)
+ {
+ return $this->$col = $this->$col(); # run method and cache
+ }
+
+ function rawname()
+ {
+ return rtrim(@file_get_contents("{$this->dir}/name.txt"));
+ }
+
+ function name()
+ {
+ return htmlspecialchars(implode(' & ', explode("\n", $this->rawname)));
+ }
+
+ function html()
+ {
+ $name = htmlspecialchars($this->login);
+ if ($this->name and $this->name != $name) {
+ $name = "{$this->name}<small> @$name</small>";
+ }
+ return $name;
+ }
+
+ function email()
+ {
+ return rtrim(@file_get_contents("{$this->dir}/email.txt"));
+ }
+
+ function admin($permission = NULL)
+ {
+ if (isset($permission)) {
+ if (!$this->admin) {
+ return FALSE; # empty results
+ }
+ preg_match_all('{[ /]}', $permission, $parts, PREG_OFFSET_CAPTURE);
+ foreach ($parts[0] as $part) {
+ if (isset($this->admin[substr($permission, 0, $part[1])])) {
+ return TRUE; # partial match
+ }
+ }
+ return isset($this->admin[$permission]); # check level
+ }
+ if (!$this->dir or !@file_exists("{$this->dir}/.admin")) {
+ return FALSE; # not an admin
+ }
+ return array_fill_keys(explode("\n", file_get_contents("{$this->dir}/.admin")), TRUE);
+ }
+
+ function seen()
+ {
+ return @filemtime("{$this->dir}/last.log");
+ }
+
+ function logclient()
+ {
+ if ($log = @fopen("{$this->dir}/last.log", 'w')) {
+ $line = $_SERVER['REMOTE_ADDR'].' '.$_SERVER['HTTP_USER_AGENT'];
+ fwrite($log, $line."\n");
+ }
+ }
+}
+
function login_password_verify($input, $test)
{
if (substr($test, 0, 1) != '$') {
function login_setcookie()
{
global $User;
- return setcookie('login', $User['auth'], 0, '/');
+ return setcookie('login', $User->auth, 0, '/');
}
function login($inuser, $inpass = NULL)
}
# find password data by user name
- $userdir = 'profile/'.strtolower($inuser);
+ $userdir = 'profile/'.preg_replace('/[^a-z0-9]+/', '-', strtolower($inuser));
$pwfile = "$userdir/.passwd";
if (!file_exists($pwfile)) return;
$usertest = trim(file_get_contents($pwfile));
if (function_exists('apache_note')) apache_note('user', $inuser);
- if ($log = @fopen("$userdir/last.log", 'w')) {
- fwrite($log, "{$_SERVER['REMOTE_ADDR']} {$_SERVER['HTTP_USER_AGENT']}\n");
- }
-
- return [
- 'name' => $inuser,
- 'dir' => $userdir,
- 'admin' => file_exists("$userdir/.admin"),
- 'pass' => $usertest,
- 'auth' => "$inuser:$authhash",
- ];
+ $user = new User($userdir);
+ $user->logclient();
+ $user->pass = $usertest;
+ $user->auth = "$inuser:$authhash";
+ return $user;
}
+global $User;
if (isset($_COOKIE['login'])) {
- global $User;
$User = login($_COOKIE['login']);
}
+if (!$User) {
+ $User = new User;
+}
git.shiar.nl / minimedit.git / blobdiff