From b4e9313612dd341e43e5dc998469ec346adea8c6 Mon Sep 17 00:00:00 2001
From: root
Date: Tue, 15 Apr 2014 20:03:48 +0200
Subject: Added failure page and fixed brutforce protection.

---
 www/index.php | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

(limited to 'www/index.php')

diff --git a/www/index.php b/www/index.php
index a8dc53f..b6dce19 100755
--- a/www/index.php
+++ b/www/index.php
@@ -5,12 +5,12 @@ if(!isset($_SESSION["login"])){
 	$_SESSION["login"] = false;
 }
 
-require_once("include.php");		// handles all the stuff that needs to be included
-
 if(!isset($_SESSION["login_attempts"])){
 	$_SESSION["login_attempts"] = 6;
 }
 
+require_once("include.php");		// handles all the stuff that needs to be included
+
 if(check_if_banned($db)){
 	echo "You are banned. ;_;";
 	exit;
@@ -101,7 +101,7 @@ if(empty($_GET)){
 						echo "Database error. Please send me a <a href'mailto:max-moehring@web.de?subject=database error'>mail</a>";
 						exit;
 					} else {
-						header("Refresh: 0; ".$scheme.$_SERVER["HTTP_HOST"]."/liste");
+						print_list($db);
 					}
 				} else {
 					print_insert();
@@ -112,13 +112,14 @@ if(empty($_GET)){
 				if($_SERVER["REQUEST_METHOD"] == "POST"){
 					$var = update_db($db);
 					if($var){
-						header("Refresh: 0; ".$scheme.$_SERVER["HTTP_HOST"]."/liste");
+						print_list($db);
 					} else {
+						echo $var."<br>";
 						echo "Database error. Please send me a <a href'mailto:max-moehring@web.de?subject=database error'>mail</a>";
 						exit;
 					}
 				} else {
-					header("Refresh: 0; ".$scheme.$_SERVER["HTTP_HOST"]."/liste");
+					print_list($db);
 				}
 
 				break;
-- 
cgit v1.2.3