3 function login_get_fields() {
4 $username = format_oneline($_REQUEST['username']);
5 tem_set('username', $username);
7 $password = format_oneline($_REQUEST['password']);
9 $url = format_unix($_REQUEST['url']);
12 return array($username, $password, $url);
15 function login_main() {
16 if(isset($GLOBALS['url'])) {
17 $_REQUEST['url'] = $GLOBALS['url'];
18 tem_set('url', $GLOBALS['url']);
21 if(isset($_REQUEST['username'])) {
22 list($username, $password, $url) = login_get_fields();
24 $row = db_get_row('people', 'id,password', 'where username=%"', $username);
27 list($id, $password_hash) = $row;
29 if($password_hash && check_password($password_hash, $password)) {
30 message("Logged in successfully.");
32 session_set('auth_username', "$id");