wpstudio/majestic
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

add login check by regular expression

Browse Source 
git-svn-id: svn+ssh://code.netmonsters.ru/svn/majestic/trunk@12 4cb57b5f-5bbd-dd11-951b-001d605cbbc5
This commit is contained in:
ejikharev
2008-12-03 15:21:43 +00:00
parent 3c08d0f902
commit 017d1c2cc9
1 changed files with 21 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
User.class.php
View File

@ -16,15 +16,19 @@ class User
static function login($login, $password)
{
if (empty($login)) {
if (empty($login) || empty($password)) {
return false;
}
if (! self::$user = self::getByLogin($login) ) {
if(!preg_match("/^[a-z0-9_-]{3,20}$/i", $login)) {
return false;
}
if (self::$user->password != md5($password)) {
if (!self::$user = self::getByLogin(strtolower($login)) ) {
return false;
}
if (self::$user->pass != $password) {
return false;
}
@ -54,7 +58,7 @@ class User
static function setSession()
{
Env::setCookie('login', self::$user->login, TIME_NOW + LOGIN_COOKIE_TTL);
Env::setCookie('login_hash', self::getHash(), TIME_NOW + LOGIN_COOKIE_TTL);
Env::setCookie('login_hash', self::getHash(), TIME_NOW + LOGIN_COOKIE_TTL);
session_start();
@ -76,7 +80,7 @@ class User
static function getHash()
{
return md5(self::$user->id.'hckrz'.self::$user->login.'mst'.self::$user->password.'dai');
return md5(self::$user->id.'hckrz'.self::$user->login.'mst'.self::$user->pass.'dai');
}
static function getInfo()
@ -91,7 +95,7 @@ class User
static function getByLogin($login)
{
return Load::model('UserData')->getByLogin($login);
return Load::model('UserData')->getByLogin($login);
}
}
?>