yosoyhendrix
/
vesta


			
							12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273
							<?php
session_start();

define('NO_AUTH_REQUIRED',true);
$TAB = 'LOGIN';

// Logout
if (isset($_GET['logout'])) {
    session_destroy();
}

include($_SERVER['DOCUMENT_ROOT']."/inc/main.php");


// Login as someone else
if (isset($_SESSION['user'])) {
    if ($_SESSION['user'] ==  'admin' && !empty($_GET['loginas'])) {
        if ($_GET['loginas'] == 'admin') {
            unset($_SESSION['look']);
        } else {
            $_SESSION['look'] = $_GET['loginas'];
            $_SESSION['look_alert'] = $_GET['loginas'];
        }
    }
    header("Location: /");
    exit;
}

// Check system configuration
exec (VESTA_CMD . "v-list-sys-config json", $output, $return_var);
$data = json_decode(implode('', $output), true);
$sys_arr = $data['config'];
foreach ($sys_arr as $key => $value) {
    $_SESSION[$key] = $value;
}

// Set default language
if (empty($_SESSION['language'])) $_SESSION['language']=$_SESSION['LANGUAGE'];
if (empty($_SESSION['language'])) $_SESSION['language']='en';

// Auth
if (isset($_POST['user']) && isset($_POST['password'])) {
    $v_user = escapeshellarg($_POST['user']);
    $v_password = escapeshellarg($_POST['password']);
    exec(VESTA_CMD ."v-check-user-password ".$v_user." ".$v_password." '".$_SERVER["REMOTE_ADDR"]."'",  $output, $return_var);
    if ( $return_var > 0 ) {
        $ERROR = "<a class=\"error\">".__('Invalid username or password')."</a>";
        require_once($_SERVER['DOCUMENT_ROOT'].'/inc/i18n/'.$_SESSION['language'].'.php');
        require_once('../templates/header.html');
        require_once('../templates/login.html');
    } else {
        unset($output);
        exec (VESTA_CMD . "v-list-user ".$v_user." json", $output, $return_var);
        $data = json_decode(implode('', $output), true);
        $_SESSION['language'] = $data[$_POST['user']]['LANGUAGE'];
        if (empty($_SESSION['language'])) $_SESSION['language'] = 'en';
        $_SESSION['user'] = $_POST['user'];
        if ($_POST['user'] == 'root') $_SESSION['user'] = 'admin';
        if (!empty($_SESSION['request_uri'])) {
            header("Location: ".$_SESSION['request_uri']);
            unset($_SESSION['request_uri']);
            exit;
        } else {
            header("Location: /");
            exit;
        }
    }
} else {
    require_once($_SERVER['DOCUMENT_ROOT'].'/inc/i18n/'.$_SESSION['language'].'.php');
    require_once('../templates/header.html');
    require_once('../templates/login.html');
}
?>