summaryrefslogtreecommitdiff
path: root/www-ssl/nonpublic/auth.php
blob: 7d58988ce2da3be5d6e3041e4d33eb8edd3b33c2 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
<?php
require_once ('../bootstrap.php');

header("Content-Type: application/json");

include "includes/config.php";
include "includes/config_db.php";

$User = $_POST['user'];
$Pass = $_POST['pw'];
$SourceOuth = $_POST['so'];

if (isset ($CurrentExternAuthPass) && $SourceOuth == $CurrentExternAuthPass) {
	$sql = "SELECT * FROM `User` WHERE `Nick`='" . $User . "'";
	$Erg = mysql_query($sql, $con);

	if (mysql_num_rows($Erg) == 1) {
		if (mysql_result($Erg, 0, "Passwort") == $Pass) {
			$UID = mysql_result($Erg, 0, "UID");

			// get CVS import Data
			$SQL = "SELECT * FROM `UserCVS` WHERE `UID`='" . $UID . "'";
			$Erg_CVS = mysql_query($SQL, $con);
			$CVS = mysql_fetch_array($Erg_CVS);

			$msg = array (
				'status' => 'success',
				'rights' => $CVS
			);
			echo json_encode($msg);
		} else
			echo json_encode(array (
				'status' => 'failed'
			));
	} else
		echo json_encode(array (
			'status' => 'failed'
		));
} else
	echo json_encode(array (
		'status' => 'failed'
	));
?>