WordPress.org
Get WordPress

Make WordPress Core


Ignore:
Timestamp:
10/04/2004 08:03:52 AM (20 years ago)
Author:
saxmatt
Message:

Code cleanup and some fixes from the WP Japan folks.

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/wp-includes/functions-user.php

    r1525 r1734  
    11<?php
    22
    3 function verify_login($user, $password) {
    4     global $wpdb;
    5     $user = $wpdb->escape($user);
    6     $password = $password;
     3function login($username, $password, $already_md5 = false) {
     4    global $wpdb, $error;
     5    if ( !$already_md5 )
     6        $pwd = md5($password);
    77
    8     if ( $user = $wpdb->get_row("SELECT user_login, user_pass FROM $wpdb->users WHERE user_login = '$user'") ) {
    9         if ( $user->user_pass = md5($password) )
    10             return true;
    11         else
    12             return false;
    13     } else {
     8    if ( !$username )
    149        return false;
    15     }
    16 }
    1710
    18 function verify_current() {
    19     if (!empty($_COOKIE['wordpressuser_' . COOKIEHASH])) {
    20         $user_login = $_COOKIE['wordpressuser_' . COOKIEHASH];
    21         $user_pass = $_COOKIE['wordpresspass_' . COOKIEHASH];
    22     } else {
     11    if ( !$password ) {
     12        $error = __('<strong>Error</strong>: The password field is empty.');
    2313        return false;
    2414    }
    2515
    26     if ('' == $user_login)
     16    $login = $wpdb->get_row("SELECT ID, user_login, user_pass FROM $wpdb->users WHERE user_login = '$username'");
     17
     18    if (!$login) {
     19        $error = __('<strong>Error</strong>: Wrong login.');
     20        $pwd = '';
    2721        return false;
    28     if ('' == $user_pass)
    29         return false;
     22    } else {
    3023
    31     if ( verify_login($user_login, $user_pass) ) {
    32         return true;
    33     } else {
    34         header('Expires: Wed, 11 Jan 1984 05:00:00 GMT');
    35         header('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT');
    36         header('Cache-Control: no-cache, must-revalidate');
    37         header('Pragma: no-cache');
    38         header('Location: ' . get_settings('siteurl') . '/wp-login.php?redirect_to=' . urlencode($_SERVER['REQUEST_URI']) );
    39         exit();
     24        if ( $login->user_login == $username && $login->user_pass == $pwd ) {
     25            return true;
     26        } else {
     27            $error = __('<strong>Error</strong>: Incorrect password.');
     28            $pwd = '';
     29            return false;
     30        }
    4031    }
    4132}
Note: See TracChangeset for help on using the changeset viewer.