<?php
/**
 * PDNS-Admin
 * Copyright (c) 2006-2008 Roger Libiez http://www.iguanadons.net
 *
 * Based on Quicksilver Forums
 * Copyright (c) 2005 The Quicksilver Forums Development Team
 *  http://www.quicksilverforums.com/
 * 
 * Based on MercuryBoard
 * Copyright (c) 2001-2005 The Mercury Development Team
 *  http://www.mercuryboard.com/
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 **/

if (!defined('PDNSADMIN')) {
	header('HTTP/1.0 403 Forbidden');
	die;
}

require_once $set['include_path'] . '/global.php';

/**
 * Allows user to log in and out of their accounts
 *
 * @author Jason Warner <jason@mercuryboard.com>
 * @since Beta 2.0
 **/
class login extends pdnsadmin
{
	function execute()
	{
		if (!isset($this->get['s'])) {
			$this->get['s'] = null;
		}

		switch($this->get['s'])
		{
		case 'off':
			return $this->do_logout();

		case 'pass':
			return $this->reset_pass();

		case 'request':
			return $this->request_pass();

		case 'on':
			return $this->do_login();

		default:
			return $this->message( $this->lang->login_header, $this->lang->login_cant_logged );
		}
	}

	function do_login()
	{
		$this->set_title($this->lang->login_header);

		if (!isset($this->post['submit'])) {
			$request_uri = $this->get_uri();

			if (substr($request_uri, -8) == 'register') {
				$request_uri = $this->self;
			}

			return eval($this->template('LOGIN_MAIN'));
		} else {
			if( !isset($this->post['user']) )
				return $this->message( $this->lang->login_header, $this->lang->login_cant_logged );

			$username = str_replace('\\', '&#092;', $this->format($this->post['user'], FORMAT_HTMLCHARS));

			$data  = $this->db->fetch("SELECT user_id, user_password FROM users WHERE REPLACE(LOWER(user_name), ' ', '')='%s' AND user_id != %d LIMIT 1",
				str_replace(' ', '', strtolower($username)), USER_GUEST_UID);
			$pass  = $data['user_password'];
			$user  = $data['user_id'];

			if( !isset($this->post['pass']) )
				return $this->message( $this->lang->login_header, $this->lang->login_cant_logged );

			$this->post['pass'] = str_replace('$', '', $this->post['pass']);
			$this->post['pass'] = md5($this->post['pass']);

			if ($this->post['pass'] == $pass) {
				if( version_compare( PHP_VERSION, '5.2.0', '<' ) ) {
					setcookie($this->sets['cookie_prefix'] . 'user', $user, $this->time + $this->sets['logintime'], $this->sets['cookie_path'], $this->sets['cookie_domain'].'; HttpOnly', $this->sets['cookie_secure']);
					setcookie($this->sets['cookie_prefix'] . 'pass', $pass, $this->time + $this->sets['logintime'], $this->sets['cookie_path'], $this->sets['cookie_domain'].'; HttpOnly', $this->sets['cookie_secure']);
				} else {
					setcookie($this->sets['cookie_prefix'] . 'user', $user, $this->time + $this->sets['logintime'], $this->sets['cookie_path'], $this->sets['cookie_domain'], $this->sets['cookie_secure'], true );
					setcookie($this->sets['cookie_prefix'] . 'pass', $pass, $this->time + $this->sets['logintime'], $this->sets['cookie_path'], $this->sets['cookie_domain'], $this->sets['cookie_secure'], true );
				}
				$_SESSION['user'] = $user;
				$_SESSION['pass'] = md5($pass . $this->ip);
				
				return $this->message($this->lang->login_header, $this->lang->login_logged, $this->lang->continue, str_replace('&', '&amp;', $this->post['request_uri']), $this->post['request_uri']);
			} else {
				return $this->message($this->lang->login_header, sprintf($this->lang->login_cant_logged, $this->self));
			}
		}
	}

	function do_logout()
	{
		$this->set_title($this->lang->login_out);

		if (!isset($this->get['sure']) && !$this->perms->is_guest) {
			return $this->message($this->lang->login_out, sprintf($this->lang->login_sure, $this->user['user_name']), $this->lang->continue, "$this->self?a=login&amp;s=off&amp;sure=1");
		} else {
			$this->db->query("UPDATE users SET user_lastlogon=%d, user_lastlogonip='%s' WHERE user_id=%d",
				$this->time, $this->ip, $this->user['user_id']);

			if( version_compare( PHP_VERSION, '5.2.0', '<' ) ) {
				setcookie($this->sets['cookie_prefix'] . 'user', '', $this->time - 9000, $this->sets['cookie_path'], $this->sets['cookie_domain'].'; HttpOnly', $this->sets['cookie_secure']);
				setcookie($this->sets['cookie_prefix'] . 'pass', '', $this->time - 9000, $this->sets['cookie_path'], $this->sets['cookie_domain'].'; HttpOnly', $this->sets['cookie_secure']);
			} else {
				setcookie($this->sets['cookie_prefix'] . 'user', '', $this->time - 9000, $this->sets['cookie_path'], $this->sets['cookie_domain'], $this->sets['cookie_secure'], true );
				setcookie($this->sets['cookie_prefix'] . 'pass', '', $this->time - 9000, $this->sets['cookie_path'], $this->sets['cookie_domain'], $this->sets['cookie_secure'], true );
			}
			unset($_SESSION['user']);
			unset($_SESSION['pass']);

			$this->perms->is_guest = true;

			return $this->message($this->lang->login_out, sprintf($this->lang->login_now_out, $this->self, $this->self));
		}
	}

	function reset_pass()
	{
		$this->set_title($this->lang->login_pass_reset);

		if (!isset($this->post['submit'])) {
			return eval($this->template('LOGIN_PASS'));
		} else {
			$target = $this->db->fetch("SELECT user_id, user_name, user_password, user_created, user_email
				FROM users WHERE user_name='%s' AND user_id != %d LIMIT 1",
				$this->format($this->post['user'], FORMAT_HTMLCHARS), USER_GUEST_UID);
			if (!isset($target['user_id'])) {
				return $this->message($this->lang->login_pass_reset, $this->lang->login_pass_no_id);
			}

			$mailer = new $this->modules['mailer']($this->sets['admin_incoming'], $this->sets['admin_outgoing'], $this->sets['site_name'], false);

			$message  = "{$this->sets['site_name']}\n\n";
			$message .= "Someone has requested a password reset for your DNS account, {$this->post['user']}.\n";
			$message .= "If you do not want to reset your password, please ignore or delete this email.\n\n";
			$message .= "Go to the below URL to continue with the password reset:\n";
			$message .= "{$this->sets['site_url']}{$this->mainfile}?a=login&s=request&e=" . md5($target['user_email'] . $target['user_name'] . $target['user_password'] . $target['user_created']) . "\n\n";
			$message .= "Request IP: {$this->ip}";

			$mailer->setSubject("{$this->sets['site_name']} - Reset Password");
			$mailer->setMessage($message);
			$mailer->setRecipient($target['user_email']);
			$mailer->setServer($this->sets['mailserver']);
			$mailer->doSend();

			return $this->message($this->lang->login_pass_reset, $this->lang->login_pass_request);
		}
	}

	function request_pass()
	{
		$this->set_title($this->lang->login_pass_reset);

		if (!isset($this->get['e'])) {
			$this->get['e'] = null;
		}

		$target = $this->db->fetch("SELECT user_id, user_name, user_email FROM users
			WHERE MD5(CONCAT(user_email, user_name, user_password, user_created))='%s' AND user_id != %d LIMIT 1",
			 preg_replace('/[^a-z0-9]/', '', $this->get['e']), USER_GUEST_UID);
		if (!isset($target['user_id'])) {
			return $this->message($this->lang->login_pass_reset, $this->lang->login_pass_no_id);
		}

		$mailer = new $this->modules['mailer']($this->sets['admin_incoming'], $this->sets['admin_outgoing'], $this->sets['site_name'], false);

		$newpass = $this->generate_pass(8);

		$message  = "{$this->sets['site_name']}\n\n";
		$message .= "Your password has been reset to:\n$newpass\n\n";
		$message .= "{$this->sets['site_url']}{$this->mainfile}?a=login";

		$mailer->setSubject("{$this->sets['site_name']} - Reset Password");
		$mailer->setMessage($message);
		$mailer->setRecipient($target['user_email']);
		$mailer->setServer($this->sets['mailserver']);
		$mailer->doSend();

		$this->db->query("UPDATE users SET user_password='%s' WHERE user_id=%d",
			md5($newpass), $target['user_id']);

		return $this->message($this->lang->login_pass_reset, $this->lang->login_pass_sent);
	}

	function get_uri()
	{
		if (!isset($this->server['HTTP_REFERER'])) {
			return $this->self;
		}

		$url = parse_url($this->server['HTTP_REFERER']);

		if (!isset($url['path'])) {
			return $this->self;
		}

		if (($url['path'] == $this->self)
		&& (($url['host'] . (isset($url['port']) ? ':' . $url['port'] : null)) == $this->server['HTTP_HOST'])
		&& (!empty($url['query']) && !stristr($url['query'], 'login'))) {
			return $this->format($url['path'] . (!empty($url['query']) ? '?' . $url['query'] : null), FORMAT_HTMLCHARS);
		} else {
			return $this->self;
		}
	}
}
?>