yosoyhendrix
/
vesta


			
							1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798
							<?php

define('NO_AUTH_REQUIRED',true);


// Main include
include($_SERVER['DOCUMENT_ROOT']."/inc/main.php");

//echo $_SESSION['request_uri'];


$TAB = 'LOGIN';

// Logout
if (isset($_GET['logout'])) {
    session_destroy();
}


// Login as someone else
if (isset($_SESSION['user'])) {
    if ($_SESSION['user'] == 'admin' && !empty($_GET['loginas'])) {
        $return_var = v_exec('v-list-user', [$_GET['loginas'], 'json'], false, $output);
        if ($return_var == 0) {
            $data = json_decode($output, true);
            reset($data);
            $_SESSION['look'] = key($data);
            $_SESSION['look_alert'] = 'yes';
        }
    }
    header("Location: /");
    exit;
}

// Basic auth
if (isset($_POST['user']) && isset($_POST['password'])) {
    $v_user = $_POST['user'];

    // Send password via tmp file
    $v_password = exec('mktemp -p /tmp');
    $fp = fopen($v_password, "w");
    fwrite($fp, $_POST['password']."\n");
    fclose($fp);

    // Check user & password
    $return_var = v_exec('v-check-user-password', [$v_user, $v_password, $_SERVER['REMOTE_ADDR']]);

    // Remove tmp file
    unlink($v_password);

    // Check API answer
    if ($return_var > 0) {
        $ERROR = "<a class=\"error\">".__('Invalid username or password')."</a>";
    } else {
        // Make root admin user
        if ($_POST['user'] == 'root') $v_user = 'admin';

        // Get user speciefic parameters
        v_exec('v-list-user', [$v_user, 'json'], false, $output);
        $data = json_decode($output, true);

        // Define session user
        $_SESSION['user'] = key($data);
        $v_user = $_SESSION['user'];

        // Get user favorites
        get_favourites();

        // Define language
        if (!empty($data[$v_user]['LANGUAGE'])) $_SESSION['language'] = $data[$v_user]['LANGUAGE'];

        // Redirect request to control panel interface
        if (!empty($_SESSION['request_uri'])) {
            header('Location: '.$_SESSION['request_uri']);
            unset($_SESSION['request_uri']);
            exit;
        } else {
            header("Location: /");
            exit;
        }
    }
}

// Check system configuration
v_exec('v-list-sys-config', ['json'], false, $output);
$data = json_decode($output, true);
$sys_arr = $data['config'];
foreach ($sys_arr as $key => $value) {
    $_SESSION[$key] = $value;
}

// Detect language
if (empty($_SESSION['language'])) $_SESSION['language'] = detect_user_language();

require_once($_SERVER['DOCUMENT_ROOT'].'/inc/i18n/'.$_SESSION['language'].'.php');
require_once('../templates/header.html');
require_once('../templates/login.html');