blob: 7105c9894b29a62097ee492c0787aa51ab80345e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
|
<?
session_start();
require_once("functions.php");
$db = new SQLite3("../database/sqlite.db");
if(empty($_GET)){
if($_SESSION["login"]){
header("Refresh: 0; /$_SESSION[username]");
exit;
} else {
header("Refresh: 0; /login");
exit;
}
} else {
$db = new SQLite3("../database/sqlite.db");
$name = SQLite3::escapeString("$_GET[name]");
if(empty($_GET["name"])){
switch($_GET["task"]){
case("login"):
login($db);
break;
case("logout"):
logout();
break;
case("invite"):
invite($db);
break;
case("register"):
register($db);
break;
/* case("download"): //not implemented yet
download();
break;
case("user"):
user();
break;
*/ default:
get_404();
break;
}
} else {
$name_id_db = $db->query("SELECT id FROM user WHERE name='$name';");
$name_id_ar = $name_id_db->fetchArray(SQLITE3_NUM);
if(empty($name_id_ar)){
if($_SESSION["login"]){
header("Refresh: 0; /" . $_SESSION[username] . "/" . $_GET["name"] . "/" . $_GET["folder"] . ""); //rewrite the URL to include the username
// echo "Eingeloggt! Zeige deine Ordner beginnend mit '$_GET[name]' ! <br><br>";
// $_GET["folder"] = "" . $_GET["name"] . "/" . $_GET["folder"] . "";
// $_GET["name"] = $_SESSION["username"];
// select();
exit;
} else {
get_404();
}
} else {
select();
exit;
}
}
}
echo "loged in as: " . $_SESSION["username"];
$safe_name=SQLite3::escapeString("$_SESSION[username]");
$db = new SQLite3("../database/sqlite.db");
$invite_db = $db->query("SELECT invites FROM user WHERE name='$safe_name';");
$invite_ar = $invite_db->fetchArray(SQLITE3_NUM);
$invite = $invite_ar[0];
echo "<br><br>";
echo "You have currently $invite invites. <br>";
select();
|
