ES_Sami7777/easystream-main
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0b7e2d0a5b91591d6dab6ebd6bac1af6542c5bb6
easystream-main/f_core/f_classes/class.login.php
SamiAhmed7777 0b7e2d0a5b feat: Add comprehensive documentation suite and reorganize project structure 
- Created complete documentation in docs/ directory
- Added PROJECT_OVERVIEW.md with feature highlights and getting started guide
- Added ARCHITECTURE.md with system design and technical details
- Added SECURITY.md with comprehensive security implementation guide
- Added DEVELOPMENT.md with development workflows and best practices
- Added DEPLOYMENT.md with production deployment instructions
- Added API.md with complete REST API documentation
- Added CONTRIBUTING.md with contribution guidelines
- Added CHANGELOG.md with version history and migration notes
- Reorganized all documentation files into docs/ directory for better organization
- Updated README.md with proper documentation links and quick navigation
- Enhanced project structure with professional documentation standards
2025-10-21 00:39:45 -07:00

230 lines
12 KiB
PHP
Raw Blame History

<?php
/*******************************************************************************************************************
| Software Name : EasyStream
| Software Description : High End YouTube Clone Script with Videos, Shorts, Streams, Images, Audio, Documents, Blogs
| Software Author : (c) Sami Ahmed
|*******************************************************************************************************************
|
|*******************************************************************************************************************
| This source file is subject to the EasyStream Proprietary License Agreement.
|
| By using this software, you acknowledge having read this Agreement and agree to be bound thereby.
|*******************************************************************************************************************
| Copyright (c) 2025 Sami Ahmed. All rights reserved.
|*******************************************************************************************************************/
defined('_ISVALID') or header('Location: /error');
class VLogin
{
/* check subscription when logged in */
public function checkSubscription()
{
global $cfg, $backend_access_url;
$u_id = intval($_SESSION['USER_ID']);
$_section = (strstr($_SERVER['REQUEST_URI'], $backend_access_url) == true) ? 'backend' : 'frontend';
if ($u_id > 0 and $_section == 'frontend' and $cfg['paid_memberships'] == 1) {
$membership_check = VPayment::checkSubscription($u_id);
}
}
/* update login activity */
public function updateOnLogin($user_id)
{
global $db, $class_filter, $cfg;
$do_count = $cfg['frontend_signin_count'] == 1 ? ', usr_logins=usr_logins+1' : null;
$db->execute(sprintf("UPDATE `db_accountuser` SET `usr_lastlogin`='%s', `usr_IP`='%s' " . $do_count . " WHERE `usr_id`='%s' LIMIT 1;", date("Y-m-d H:i:s"), $class_filter->clr_str($_SERVER[REM_ADDR]), intval($user_id)));
}
/* log in */
public function loginAttempt($section, $username, $password, $remember = '')
{
global $db, $class_database, $cfg, $language, $class_filter;
$username = $class_filter->clr_str($username);
$username = preg_replace('/[^a-zA-Z0-9_.\-]/', '', $username);
$siteKey = $cfg['recaptcha_site_key'];
$secret = $cfg['recaptcha_secret_key'];
$class_password = new VPasswordHash(8, false);
switch ($section) {
case 'backend':
$cfg = $class_database->getConfigurations('backend_username,backend_password');
$password_hash = $cfg['backend_password'];
$check_username = $cfg['backend_username'];
$session_reg1 = 'ADMIN_NAME';
$session_val1 = $check_username;
$session_reg2 = 'ADMIN_PASS';
$session_val2 = $password_hash;
break;
case 'frontend':
$q = $db->execute(sprintf("SELECT A.`usr_id`, A.`usr_key`, A.`usr_user`, A.`usr_partner`, A.`affiliate_badge`, A.`usr_affiliate`, A.`usr_password`, A.`usr_dname`, A.`usr_theme`, A.`usr_profileinc` FROM `db_accountuser` A WHERE A.`usr_user`='%s' AND A.`usr_status`='1' LIMIT 1;", $username));
$password_hash = $q->fields['usr_password'];
$check_username = $username;
$session_reg1 = 'USER_ID';
$session_val1 = $q->fields['usr_id'];
$session_reg2 = 'USER_NAME';
$session_val2 = $q->fields['usr_user'];
$session_reg3 = 'USER_KEY';
$session_val3 = $q->fields['usr_key'];
$session_reg4 = $session_val3 . '_list';
$session_val4 = 0;
$session_reg5 = 'USER_DNAME';
$session_val5 = $q->fields['usr_dname'];
$session_reg6 = 'USER_AFFILIATE';
$session_val6 = $q->fields['usr_affiliate'];
$session_reg7 = 'USER_BADGE';
$session_val7 = $q->fields['affiliate_badge'];
$session_reg8 = 'USER_PARTNER';
$session_val8 = $q->fields['usr_partner'];
$session_reg9 = 'USER_THEME';
$session_val9 = $q->fields['usr_theme'];
$session_reg10 = 'USER_PINC';
$session_val10 = $q->fields['usr_profileinc'];
}
$error_message = 0;
if (($section == 'frontend' and $cfg['signin_captcha'] == 1) or ($section == 'backend' and $cfg['signin_captcha_be'] == 1)) {
$captcha = $class_filter->clr_str($_POST['g-recaptcha-response']);
if ($captcha == '') {
$error_message = 1;
} else {
$recaptcha = new \ReCaptcha\ReCaptcha($secret, new \ReCaptcha\RequestMethod\CurlPost());
$resp = $recaptcha->verify($captcha, $_SERVER[REM_ADDR]);
if ($resp->isSuccess()) {
} else {
foreach ($resp->getErrorCodes() as $code) {
$error_message = $code;
}
}
}
}
$password_check = $class_password->CheckPassword($password, $password_hash);
if ($username == $check_username and $password_check == 1 and !$error_message) {
$membership_check = ($cfg['paid_memberships'] == 1 and $session_val1 > 0 and $section == 'frontend') ? VPayment::checkSubscription(intval($session_val1)) : null;
$_SESSION[$session_reg1] = $session_val1;
$_SESSION[$session_reg2] = $session_val2;
if ($section == 'frontend') {
$_SESSION[$session_reg3] = $session_val3;
$_SESSION[$session_reg4] = $session_val4;
$_SESSION[$session_reg5] = $session_val5;
$_SESSION[$session_reg6] = $session_val6;
$_SESSION[$session_reg8] = $session_val8;
$_SESSION[$session_reg9] = $session_val9;
$_SESSION[$session_reg10]= $session_val10;
if ($session_val6 == 1 || $session_val8 == 1) {
$_SESSION[$session_reg7] = $session_val7;
}
if (!is_dir($cfg['profile_images_dir'] . '/' . $session_val3)) {
VSignup::createUserFolders($session_val3);
}
}
$login_update = $section == 'frontend' ? self::updateOnLogin($session_val1) : null;
$log_activity = ($section == 'frontend' and $cfg['activity_logging'] == 1 and $action = new VActivity($session_val1, 0)) ? $action->addTo('log_signin') : null;
$login_remember = ($remember == 1) ? VLoginRemember::setLogin($section, $check_username, $password_hash) : null;
return true;
} else {
return false;
}
}
/* log out */
public function logoutAttempt($section, $redirect = 1)
{
require 'f_core/config.backend.php';
global $class_database, $class_redirect, $cfg, $language;
switch ($section) {
case 'backend':
$redirect_to = $cfg['main_url'] . '/' . $backend_access_url;
$to_reset = array('ADMIN_NAME', 'ADMIN_PASS', 'be_lang', 'be_flag', 'file_owner', 'theme_name_be');
break;
case 'frontend':
$redirect_to = $cfg['main_url'] . '/' . ($redirect == 1 ? VHref::getKey('index') : VHref::getKey('signin'));
$log_activity = ($cfg['activity_logging'] == 1 and $action = new VActivity(intval($_SESSION['USER_ID']), 0)) ? $action->addTo('log_signout') : null;
$to_reset = array($_SESSION['USER_KEY'] . '_list', 'USER_ID', 'USER_KEY', 'USER_NAME', 'USER_DNAME', 'USER_BADGE', 'USER_AFFILIATE', 'USER_PARTNER', 'USER_AFFILIATE_REQUEST', 'USER_PARTNER_REQUEST', 'USER_THEME', 'USER_PINC', 'fe_flag', 'signin_captcha', 'recover_left', 'recover_right', 'renew_id', 'change_email', 'channel_msg', 'file_category', 'last_activity', 'fe_lang', 'viewmode_video', 'viewmode_image', 'viewmode_audio', 'viewmode_document', 'viewmode_ch', 'viewmode_pl', 'viewmode_my_video', 'viewmode_my_image', 'viewmode_my_audio', 'viewmode_my_document', 'contact', 'ap', 'views_min', 'views_max', 'subs_min', 'subs_max', 'live_chat_server', 'theme_name', 'chat_key', 'reported', 'reason', 'new_notifications', 'lang_count');
}
VLoginRemember::clearLogin($section);
if ($section == 'frontend') {
self::clearChatUsername($_SESSION['USER_ID'], $_SESSION['USER_NAME'], $_SESSION['live_chat_server']);
}
foreach ($to_reset as $value) {
if (isset($_SESSION[$value])) {
$_SESSION[$value] = null;
}
unset($_SESSION[$value]);
}
if ($redirect >= 1) {
$class_redirect->to('', $redirect_to);
die;
}
}
/* clear chat username entry */
private static function clearChatUsername($uid, $uname, $lcs = false)
{
global $db, $cfg, $href, $class_filter;
if (!isset($_SESSION['chat_key']) and !is_array($_SESSION['chat_key'])) {
return;
}
require 'f_modules/m_frontend/m_cron/chat-server/cfg.php';
$cip = VServer::get_remote_ip();
$cua = md5($_SERVER['HTTP_USER_AGENT'] . $cip . $cfg['live_chat_salt']);
$ck = $_SESSION['chat_key'];
$conn = mysqli_connect($dbhost, $dbuser, $dbpass, $dbname);
foreach ($ck as $chat_key) {
$sql = sprintf("DELETE FROM `db_livechat` WHERE `usr_id`='%s' AND `chat_id`='%s';", (int) $uid, $chat_key);
$db->execute($sql);
if ($db->Affected_Rows() > 0) {
if (!$conn) {return;}
if (mysqli_query($conn, $sql)) {}
}
}
if ($conn) {
mysqli_close($conn);
}
}
/* logged in redirect */
public function isLoggedIn($section = 'fe')
{
require 'f_core/config.backend.php';
global $class_redirect, $cfg;
if ($section == 'fe' and $_SESSION['USER_ID'] > 0) {
return $logged_in = $_GET['next'] != '' ? $class_redirect->to('', $cfg['main_url'] . '/' . (str_replace(array("-", "%"), array("?", "&"), $_GET['next']))) : $class_redirect->to('', $cfg['main_url']);
} elseif ($section == 'be' and $_SESSION['ADMIN_NAME'] == $cfg['backend_username']) {
return $logged_in = $class_redirect->to('', $cfg['main_url'] . '/' . $backend_access_url);
}
}
/* check if logged in on frontend */
public function checkFrontend($next = '')
{
global $cfg, $class_redirect;
if ((int) $_SESSION['USER_ID'] == 0) {
$class_redirect->to('', $cfg['main_url'] . '/' . VHref::getKey('signin') . ($next != '' ? '?next=' . $next : null));
die;
}
}
/* check if logged in on backend */
public function checkBackend($next = '')
{
require 'f_core/config.backend.php';
global $class_database, $class_redirect, $cfg;
$cfg[] = $class_database->getConfigurations('backend_username,backend_password');
if (isset($_SESSION['ADMIN_NAME']) and isset($_SESSION['ADMIN_PASS'])) {
if ($_SESSION['ADMIN_NAME'] == $cfg['backend_username'] and $_SESSION['ADMIN_PASS'] == $cfg['backend_password']) {
return true;
}
} else {
$class_redirect->to('', $cfg['main_url'] . '/' . $backend_access_url . '/' . VHref::getKey('be_signin') . ($next != '' ? '?next=' . $next : null));
return true;
}
}
}
Reference in New Issue View Git Blame Copy Permalink