Rev 11 | Only display areas with differences | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
Rev 11 | Rev 14 | ||
---|---|---|---|
1 | <?php |
1 | <?php |
2 | 2 | ||
3 | if (!defined('IBLEGAL')) die('Kann nicht ohne Personal WebBase ausgeführt werden.'); |
3 | if (!defined('WBLEGAL')) die('Kann nicht ohne Personal WebBase ausgeführt werden.'); |
4 | 4 | ||
5 | if (($konfiguration[$m2]['enable_gast'] == '1') && ($konfiguration[$m2]['wipe_gastkonto'])) |
5 | if (($konfiguration[$m2]['enable_gast'] == '1') && ($konfiguration[$m2]['wipe_gastkonto'])) |
6 | { |
6 | { |
7 | $rs = db_query("SELECT `id` FROM `".$mysql_zugangsdaten['praefix']."users` WHERE `username` = '".$konfiguration[$m2]['gast_username']."' AND MD5('".$konfiguration[$m2]['gast_passwort']."') = `passwort`");// TODO: use sha3 hash, salted and peppered |
7 | $rs = db_query("SELECT `id` FROM `".$mysql_zugangsdaten['praefix']."users` WHERE `username` = '".$konfiguration[$m2]['gast_username']."' AND MD5('".$konfiguration[$m2]['gast_passwort']."') = `passwort`");// TODO: use sha3 hash, salted and peppered |
8 | 8 | ||
9 | if (db_num($rs) == 1) |
9 | if (db_num($rs) == 1) |
10 | { |
10 | { |
11 | $rw = db_fetch($rs); |
11 | $rw = db_fetch($rs); |
12 | $my_id = $rw['id']; |
12 | $my_id = $rw['id']; |
13 | 13 | ||
14 | $res = db_query("SELECT * FROM `".$mysql_zugangsdaten['praefix']."konfig` WHERE `name` = 'last_wipe' AND CONCAT(`wert`, ' ', '".$konfiguration[$m2]['wipe_uhrzeit']."') <= DATE_SUB(NOW(), INTERVAL 1 DAY) AND `modul` = '".db_escape($m2)."'"); |
14 | $res = db_query("SELECT * FROM `".$mysql_zugangsdaten['praefix']."konfig` WHERE `name` = 'last_wipe' AND CONCAT(`wert`, ' ', '".$konfiguration[$m2]['wipe_uhrzeit']."') <= DATE_SUB(NOW(), INTERVAL 1 DAY) AND `modul` = '".db_escape($m2)."'"); |
15 | if (db_num($res) > 0) |
15 | if (db_num($res) > 0) |
16 | { |
16 | { |
17 | // Für was den ganzen Fetz? Wenn PHP und MySQL Zeit verschieden sind (z.B. auf unterschiedliche Server verteilt), gäbe es Probleme! |
17 | // Für was den ganzen Fetz? Wenn PHP und MySQL Zeit verschieden sind (z.B. auf unterschiedliche Server verteilt), gäbe es Probleme! |
18 | $rs = db_query("SELECT NOW()"); |
18 | $rs = db_query("SELECT NOW()"); |
19 | $rw = db_fetch($rs); |
19 | $rw = db_fetch($rs); |
20 | $ary = explode(' ', $rw[0]); |
20 | $ary = explode(' ', $rw[0]); |
21 | $dat = $ary[0]; |
21 | $dat = $ary[0]; |
22 | 22 | ||
23 | ib_change_config('last_wipe', $dat, $m2); |
23 | ib_change_config('last_wipe', $dat, $m2); |
24 | 24 | ||
25 | foreach($tabellen as $m1 => $m2) |
25 | foreach($tabellen as $m1 => $m2) |
26 | { |
26 | { |
27 | if (isset($datenbanktabellen[$mysql_zugangsdaten['praefix'].$m2]['user'])) |
27 | if (isset($datenbanktabellen[$mysql_zugangsdaten['praefix'].$m2]['user'])) |
28 | db_query("DELETE FROM `".$mysql_zugangsdaten['praefix']."$m2` WHERE `user` = '$my_id'"); |
28 | db_query("DELETE FROM `".$mysql_zugangsdaten['praefix']."$m2` WHERE `user` = '$my_id'"); |
29 | } |
29 | } |
30 | 30 | ||
31 | unset($m1); |
31 | unset($m1); |
32 | unset($m2); |
32 | unset($m2); |
33 | } |
33 | } |
34 | } |
34 | } |
35 | } |
35 | } |
36 | 36 | ||
37 | ?> |
37 | ?> |
38 | 38 |