'Login') */ class LoginPage extends BasePage { public function getOutput() { return "content"; } /** * @Secured * */ public function actionLogin() { global $kdb; $uname = $_POST['username']; $pwd = $_POST['password']; $ret = $kdb->query("SELECT uname FROM psyhvel_users WHERE approved=True AND uname='".$uname."' AND pwd='".$pwd."'"); $num = mysql_num_rows($ret); if ( $num == 1) { // OK $res = mysql_fetch_array($ret); if ( ! strcmp($res[0], $uname)) { $_SESSION['logged_in'] = True; $_SESSION['userid'] = $uname; } } else { $ret = $kdb->query("SELECT uname FROM psyhvel_users WHERE approved=False and uname='".$uname."' AND pwd='".$pwd."'"); $num = mysql_num_rows($ret); if ( $num == 1) { // pending user return array('pid' => 'Register', 'mode' => 'pending'); } } return array(); } } ?>