admin/pass: form to change current password

[minimedit.git] / login.php

diff --git a/login.php b/login.php
index 3b590641649ed69d6237d8fba0e78a144114acc6..1c7dfe0c2c5f6878fe893235887be4848611cdda 100644 (file)
--- a/login.php
+++ b/login.php
@@ -3,7 +3,7 @@ $message = NULL;
 
 if (isset($_POST['login'])) {
        if ($User = login($_POST['login'], $_POST['pass'])) {
-               setcookie('login', $User['auth'], 0, '/');
+               login_setcookie();
        }
        else {
                $message = 'Ongeldige gebruikersnaam of wachtwoord.';
@@ -15,20 +15,26 @@ elseif (isset($_GET['logout'])) {
        $message = 'Uitgelogd.';
 }
 
-if (isset($_GET['goto']) and isset($User)) {
+if (empty($User)) {
+       ob_clean();
+       require_once 'login.inc.php';
+       return TRUE;
+}
+
+if (isset($_GET['goto'])) {
        ob_clean();
        $target = ltrim($_GET['goto'], '/');
        header("Location: /$target");
        http_response_code(302);
        exit;
 }
-
-if (empty($User)) {
-       ob_clean();
-       require_once 'login.inc.php';
-       return TRUE;
-}
 ?>
 <p>Ingelogd als <em><?php print $User['name']; ?></em>.</p>
 
 <p class="nav"><a href="?logout">Uitloggen</a></p>
+
+<?php
+if (!empty($User['admin'])) {
+       include_once 'admin/index.html';
+       include_once 'admin.php';
+}