From c37113c2666d65015f967b6cf1a5d2e8836d920d Mon Sep 17 00:00:00 2001 From: Patrick Davison Date: Fri, 9 Sep 2011 16:55:14 -0700 Subject: changes to pathery.com --- pages/login.php | 19 +++++++++++++++++-- 1 file changed, 17 insertions(+), 2 deletions(-) (limited to 'pages/login.php') diff --git a/pages/login.php b/pages/login.php index c730846..1c16fe8 100644 --- a/pages/login.php +++ b/pages/login.php @@ -39,7 +39,9 @@ try { //I know just where to put this stuff! require './includes/db.inc.php'; //Unless I already have this information... - $sql = "SELECT `ID`, `isAdmin` FROM `users` WHERE `openID` = '$claimedid'"; + //* Modify this to WHERE `email` + $sql = "SELECT `ID`, `isAdmin`, `openID` FROM `users` WHERE `email` = '$email'"; + //$sql = "SELECT `ID`, `isAdmin` FROM `users` WHERE `openID` = '$claimedid'"; $result = mysql_query($sql); $_SESSION['isAdmin'] = false; @@ -51,6 +53,19 @@ try { if (mysql_result($result, 0, 'isAdmin') == 1) $_SESSION['isAdmin'] = true; + //TEMPORARY CODE + //Check openID; and update it if necessary + if (mysql_result($result, 0, 'openID') == $claimedid) { + //Don't need to do anything + } else { + //Update the OpenID Code + $sql = "UPDATE `users` + SET `openID` = '$claimedid' + WHERE `ID` = '$userID'"; + mysql_query($sql); + } + // + //I last-see you now! $sql = "UPDATE `users` SET `dateLogin` = NOW() @@ -96,7 +111,7 @@ try { $two = MD5($one.$salt); $three = MD5($pepper.$two); - $expire = time() + (7 * 24 * 60 * 60); + $expire = time() + (31 * 24 * 60 * 60); setcookie("userID", $userID, $expire); setcookie("doLogin", "yes", $expire); setcookie("auth", $three, $expire); -- cgit v1.2.3