Changeset 3447 for branches/2.2
- Timestamp:
- 11/03/10 08:01:49 (14 years ago)
- Location:
- branches/2.2
- Files:
-
- 2 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/2.2/login.php
r3446 r3447 99 99 $GLOBALS['phpgw']->session->phpgw_setcookie('serverID', $GLOBALS['phpgw_info']['server']['use_frontend_id']); 100 100 } 101 if($GLOBALS['phpgw_info']['server']['captcha']==1) 102 { 103 $key_convert = md5_file( __DIR__ . '/header.inc.php'); 104 if(!$key_convert) 105 { 106 echo '<b>' . lang('Error in access. Please, alert the Administrator.') . '</b>'; 107 exit(); 108 } 109 session_name('ZABX'); 110 if($_COOKIE['ZABX'] && $key_convert) 111 { 112 $aux = session_convert(base64_decode($_COOKIE['ZABX']),$key_convert); 113 if(substr($aux,0,32) == $key_convert) 114 { 115 session_id(substr($aux,32)); 116 } 117 else 118 { 119 $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=5')); 120 } 121 } 122 session_start(); 123 } 101 102 if( $GLOBALS[ 'phpgw_info' ][ 'server' ][ 'captcha' ] == 1 ) 103 { 104 $key_convert = md5_file( dirname( __FILE__ ) . '/header.inc.php' ); 105 if ( ! $key_convert ) 106 { 107 echo '<b>' . lang( 'Error in access. Please, alert the Administrator.' ) . '</b>'; 108 exit; 109 } 110 session_name('ZABX'); 111 if($_COOKIE['ZABX'] && $key_convert) 112 { 113 $aux = session_convert(base64_decode($_COOKIE['ZABX']),$key_convert); 114 if(substr($aux,0,32) == $key_convert) 115 { 116 session_id(substr($aux,32)); 117 } 118 else 119 { 120 $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=5')); 121 } 122 } 123 session_start(); 124 } 125 124 126 include(personalize_include_path('phpgwapi','login')); 125 127 ?> -
branches/2.2/security/captcha.php
r3445 r3447 150 150 151 151 function session_convert($str,$ky='') 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 152 { 153 if($ky=='') return $str; 154 $ky=str_replace(chr(32),'',$ky); 155 if(strlen($ky)<8) return ''; 156 $kl=strlen($ky)<32?strlen($ky):32; 157 $k=array(); 158 for($i=0;$i<$kl;$i++) 159 { 160 $k[$i]=ord($ky{$i})&0x1F; 161 } 162 $j=0; 163 for($i=0;$i<strlen($str);$i++) 164 { 165 $e=ord($str{$i}); 166 $str{$i}=$e&0xE0?chr($e^$k[$j]):chr($e); 167 $j++;$j=$j==$kl?0:$j; 168 } 169 return $str; 170 } 171 171 172 $key_convert = md5_file($_SERVER["DOCUMENT_ROOT"].'header.inc.php'); 173 //Cria o CAPTCHA, gera o string e a imagem ... 174 $GLOBALS['captcha'] = new captcha; 175 // Guarda o string do captcha na session... 176 session_name('ZABX'); 177 session_id(substr(session_convert(base64_decode($_REQUEST['ZABX']),$key_convert),32)); 178 session_start(); 179 $_SESSION['CAPTCHAString'] = $GLOBALS['captcha'] ->GetCaptchaString(); 180 // Vai exibir a imagem do captcha... 181 $GLOBALS['captcha'] ->Showcaptcha(); 172 $key_convert = md5_file( realpath( dirname( __FILE__ ) . '/../header.inc.php' ) ); 173 174 //Cria o CAPTCHA, gera o string e a imagem ... 175 $GLOBALS['captcha'] = new captcha; 176 177 // Guarda o string do captcha na session... 178 session_name( 'ZABX' ); 179 session_id( substr( session_convert( base64_decode( $_REQUEST['ZABX'] ), $key_convert ), 32 ) ); 180 session_start( ); 181 $_SESSION[ 'CAPTCHAString' ] = $GLOBALS[ 'captcha' ] -> GetCaptchaString( ); 182 183 // Vai exibir a imagem do captcha... 184 $GLOBALS['captcha'] ->Showcaptcha(); 182 185 ?>
Note: See TracChangeset
for help on using the changeset viewer.