sobre este sistemita de login que encontre en internet y hay problema cuando lo corre en mi servidor.
el error que me sale cuando el index. quiere acceder a la clase login.php
y sale errores en las lineas.. del archivo LOGIN.PHP
Código PHP:
<?PHP
if (version_compare(PHP_VERSION, '5.0.0') < 0)
{
die('The CodeFlyer Framework requires PHP 5.x.x or greater.');
}
class login
{
private $username;
private $password;
private $privilege;
private $link;
private $id;
private $table;
public $error;
public function get($var)
{
$var = trim(lcase($var));
if ($var=='privilege')
{
$ret = $this->privilege;
}
else if ($var=='username')
{
$ret = $this->username;
}
else if ($var=='password')
{
$ret = $this->password;
}
else
{
$ret = false;
}
return $ret;
}
public function isadmin()
{
return $this->privilege == 1;
}
public function isJefe()
{
return $this->privilege == 2;
}
public function isEmpleado()
{
return $this->privilege == 3;
}
//privilegios
public function getdata($data)
{
$data = $this->clean(trim($data));
$query = "SELECT $data FROM {$this->table} WHERE id='{$this->id}' LIMIT 1;";
if ($result = mysql_query($query, $this->link))
{
if ($row = mysql_fetch_assoc($result))
{
return $row[$data];
}
}
}
public function modlastlogin()
{
mysql_query("UPDATE {$this->table} SET lastactive = NOW() WHERE id = '{$this->id}';", $this->link);
return mysql_affected_rows($this->link)==1 ? true : false;
}
public function lastlogin()
{
if ($result = mysql_query("SELECT lastactive FROM {$this->table} WHERE id = '{$this->id}' LIMIT 1", $this->link))
{
if ($row = mysql_fetch_assoc($result))
{
return $row['lastactive'];
}
}
}
/**
* Login core
*/
public function inherit($session)
{
session_name(urldecode($session));
}
public function getSID()
{
return "PHPSESSID=".session_id();
}
public function login($username, $password, $remember = false)
{
$username = $this->clean($username);
$password = md5($password);
$query = "SELECT * FROM {$this->table} WHERE username = '$username' LIMIT 1;";
if ($result = mysql_query($query, $this->link))
{
if ($row = mysql_fetch_assoc($result))
{
if ($row['password']==$password)
{
return $this->setSession($row, $remember);
}
else
{
$this->logout();
$this->error = 'pi'; // Password Incorrect
return false;
}
}
$this->logout();
$this->error = 'ui'; // Username Incorrect
return false;
}
else
{
$this->logout();
return false;
}
}
// Construir la session y la cookie, y guardarlas en la base de datos.
private function setSession(&$values, $remember = false, $init = true)
{
$this->id = $values['id'];
$this->username = $values['username'];
$this->password = $values['password'];
$this->privilege = $values['privilege'];
$_SESSION['cf_login_username'] = htmlspecialchars($this->username);
$_SESSION['ID'] = $this->id;
$_SESSION['Nivel'] = $this->privilege;
$cookie = md5($values['username'].date("Y-m-d"));
if ($remember)
{
$this->update_cookie($cookie, true);
}
if ($init)
{
$session = session_id();
mysql_query("UPDATE {$this->table} SET session='{$session}', cookie='{$cookie}' WHERE id='{$this->id}'", $this->link);
$this->modlastlogin();
}
return true;
}
private function update_cookie($cookie)
{
$this->create_cookie('cf_login_cookie', serialize(array($this->username, $this->password, $cookie)), time() + 31104000);
}
public function create_cookie($name, $value='', $maxage=0, $domain='', $path='', $secure=false, $HTTPOnly=false)
{
$ob = ini_get('output_buffering');
if ($_SERVER['HTTPS'])
{
$secure = true;
}
// Abort the method if headers have already been sent, except when output buffering has been enabled
if ( headers_sent() && (bool) $ob === false || strtolower($ob) == 'off' )
{
return false;
}
if (!(bool)$maxage)
{
$maxage = time()+3600;
}
if ( !empty($domain) )
{
// Fix the domain to accept domains with and without 'www.'.
if ( strtolower( substr($domain, 0, 4) ) == 'www.' )
{
$domain = substr($domain, 4);
}
// Add the dot prefix to ensure compatibility with subdomains
if ( substr($domain, 0, 1) != '.' )
{
$domain = '.'.$domain;
}
// Remove port information.
$port = strpos($domain, ':');
if ( $port !== false )
{
$domain = substr($domain, 0, $port);
}
}
else
{
// Localhost compatibility
$domain = ($_SERVER['HTTP_HOST'] != 'localhost') ? $_SERVER['HTTP_HOST'] : false;
}
header('Set-Cookie: ' .rawurlencode($name).'='.rawurlencode($value)
.(empty($domain) ? '' : '; Domain='.$domain )
.(empty($maxage) ? '' : '; Max-Age='.$maxage)
.(empty($path) ? '' : '; Path='.$path )
.(!$secure ? '' : '; Secure' )
.(!$HTTPOnly ? '' : '; HttpOnly' )
, false);
return true;
}
// Devuelve true si el usuario está logueado. Caso contrario devuelve false.
// @return bool
public function logged()
{
$cookie = array();
if ($_COOKIE['cf_login_cookie'])
{
list($cookie['username'], $cookie['password'], $cookie['serial']) = @unserialize(stripslashes($_COOKIE['cf_login_cookie']));
}
if ($cookie['serial'] && $cookie['username'] && $cookie['password'])
{
$query = "SELECT * FROM {$this->table} WHERE (username = '{$cookie['username']}') AND (password = '{$cookie['password']}') AND (cookie = '{$cookie['serial']}') LIMIT 1;";
}
else
{
// Verificar si los datos de session son válidos.
$username = $_SESSION['cf_login_username'];
$session = session_id();
$query = "SELECT * FROM {$this->table} WHERE (username = '$username') AND (session = '$session') LIMIT 1;";
}
if ($result = mysql_query($query, $this->link))
{
if ($row = mysql_fetch_assoc($result))
{
return $this->setSession($row, false, false); // Log in
}
else
{
return false;
}
}
else
{
return false;
}
}
public function logout()
{
$_SESSION['cf_login_username'] = '';
$_SESSION['cf_login_cookie'] = 0;
$this->create_cookie('cf_login_cookie', '', time() - 3600);
mysql_query("UPDATE {$this->table} SET session='".strtoupper(md5(time()))."', cookie='".strtoupper(md5(time()))."' WHERE id='{$this->id}'", $this->link);
$this->username = '';
$this->password = '';
$this->privilege = 0;
$this->id = 0;
}
private function clean($value)
{
if (get_magic_quotes_gpc())
{
$value = stripslashes($value);
}
$value = mysql_real_escape_string( htmlspecialchars( $value ) );
return $value;
}
public function __construct($array)
{
$this->table = $array['table'] ? $array['table'] : 'login';
$this->link = mysql_connect( $array['host'] ? $array['host'] : 'localhost', $array['username'], $array['password'], true );
if (!$this->link)
{
die(mysql_error());
}
else
{
if (!mysql_select_db($array['database']))
{
die(mysql_error());
}
}
if (isset($_GET['PHPSESSID']))
{
session_id($_GET['PHPSESSID']);
}
session_start();
}
}
?>
esta corrido en xampp
ojo este sistema de logeo me funcionaba en appserver
pero en xampp no me funciona porfavor
el error en la linea 302 y 305 aparece aqui.
Código PHP:
public function __construct($array)
{
$this->table = $array['table'] ? $array['table'] : 'login';
$this->link = mysql_connect( $array['host'] ? $array['host'] : 'localhost', $array['username'], $array['password'], true );
if (!$this->link)
{
die(mysql_error());
}
else
{
if (!mysql_select_db($array['database']))
{
die(mysql_error());
}
}
if (isset($_GET['PHPSESSID']))
{
session_id($_GET['PHPSESSID']);
}
session_start();
}
Código PHP:
$cookie = array();
if ($_COOKIE['cf_login_cookie'])
{
list($cookie['username'], $cookie['password'], $cookie['serial']) = @unserialize(stripslashes($_COOKIE['cf_login_cookie']));
}
// Verificar si los datos de la cookie son válidos.
if ($cookie['serial'] && $cookie['username'] && $cookie['password'])
{
$query = "SELECT * FROM {$this->table} WHERE (username = '{$cookie['username']}') AND (password = '{$cookie['password']}') AND (cookie = '{$cookie['serial']}') LIMIT 1;";
}