defined('_JEXEC') or die('Hozzáférés megtagadva'); session_start(); header("Content-Type: text/html; charset=utf-8"); $sqltable = "users"; if (!isset($_COOKIE['hirdetes_cookie'])) { setcookie("hirdetes_cookie", "active", time()+1800); // 30 perc $_SESSION['hird'] = 1; } else { $_SESSION['hird'] = 0; } if (!isset($_SESSION['usertype'])) $_SESSION['usertype'] = 0; // NYELVEK if (isset($_GET['lang'])) $_SESSION['lang_code'] = $_GET['lang']; if ($_SESSION['lang_code']=="en") { $_SESSION['lang'] = "2"; $_SESSION['url_lang_code'] = "en/"; } else { // alapertelmezett $_SESSION['lang_code'] = "hu"; $_SESSION['lang'] = "1"; $_SESSION['url_lang_code'] = ""; } if (!isset($_SESSION['afa'])) { $sql_afa = mysql_query("SELECT ertek FROM konfig WHERE beallitas='afakulcs'"); $afakulcs = mysql_fetch_array($sql_afa); $_SESSION['afa'] = $afakulcs[0]; } if (isset($_POST['action']) && isset($_POST['query_string'])) { if ($_POST['action']=="login") { $username = mysql_real_escape_string($_POST['username']); $password = mysql_real_escape_string($_POST['password']); if (!$username) $loginerrors[] = 'Adja meg e-mail címét'; if (!$password) $loginerrors[] = 'Adja meg jelszavát'; if (count($loginerrors) == 0) { // cookie ellenorzes if (!empty($_POST['stay_in'])) { $joined =''.$username.'[]'.md5($password).''; setcookie('login_cookie', $joined, 2147483647); } $get_user = mysql_query("SELECT * FROM $sqltable WHERE username='".$username."' AND password='".md5($password)."' AND active=1") or die(mysql_error()); if (mysql_num_rows($get_user) > 0) { // BEJELENTKEZETT $user = mysql_fetch_array($get_user); mysql_query("UPDATE $sqltable SET ip='".$_SERVER['REMOTE_ADDR']."', utolso_latogatas_datuma=NOW(), bejelentkezesek_szama=bejelentkezesek_szama+1 WHERE username = '".$_POST['username']."' AND password = '".md5($_POST['password'])."'"); $_SESSION['logged_in'] = 1; $_SESSION['username'] = $username; $_SESSION['fullname'] = $user['nev']; $_SESSION['usertype'] = $user['type']; if ($_SESSION['usertype'] == 10) $_SESSION['tinybrowser_enabled'] = true; $_SESSION['alapertelmezett_cimid'] = $user['alapertelmezett_cimid']; $_SESSION['userid'] = $user['id']; $_SESSION['email'] = $user['email']; $_SESSION['loginerrorstr'] = ""; session_write_close(); // a dupla aktiválás miatt nem lehet önmagára dobni ha aktiválás után lép be $hova = $_POST['query_string']!="q" ? $_POST['query_string'] : $_SERVER['PHP_SELF']; header("Location: $hova"); } else { $loginerrors[] = 'Hibás e-mail cím, vagy jelszó'; } } if (count($loginerrors) > 0) { $_SESSION['loginerrorstr'] = '