Business
/
NickelBox
İzle 1
Yıldızla 0
Çatalla 0
Kod Sorunlar 7 Değişiklik İstekleri 0 Sürümler 0 Wiki Aktivite
An easy point of sale system with automatic inventory tracking. https://netsyms.biz/apps/nickelbox/
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
221 İşlemeler
1 Dal
Ağaç: 07bba54130
Dallar Biçim İmleri
${ item.name }
Branş ${ searchTerm } oluştur
'07bba54130'den
${ noResults }
NickelBox/index.php

index.php 4.4KB
Ham Blame Geçmiş

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131 
  1. <?php

  2. /*

  3.  * This Source Code Form is subject to the terms of the Mozilla Public

  4.  * License, v. 2.0. If a copy of the MPL was not distributed with this

  5.  * file, You can obtain one at http://mozilla.org/MPL/2.0/.

  6.  */

  7. 

  8. require_once __DIR__ . "/required.php";

  9. 

  10. // if we're logged in, we don't need to be here.

  11. if (!empty($_SESSION['loggedin']) && $_SESSION['loggedin'] === true && !isset($_GET['permissionerror'])) {

  12.     header('Location: app.php');

  13.     die();

  14. }

  15. 

  16. /**

  17.  * Show a simple HTML page with a line of text and a button.  Matches the UI of

  18.  * the AccountHub login flow.

  19.  *

  20.  * @global type $SETTINGS

  21.  * @global type $SECURE_NONCE

  22.  * @global type $Strings

  23.  * @param string $title Text to show, passed through i18n

  24.  * @param string $button Button text, passed through i18n

  25.  * @param string $url URL for the button

  26.  */

  27. function showHTML(string $title, string $button, string $url) {

  28.     global $SETTINGS, $SECURE_NONCE, $Strings;

  29.     ?>

  30.     <!DOCTYPE html>

  31.     <meta charset="UTF-8">

  32.     <meta http-equiv="X-UA-Compatible" content="IE=edge">

  33.     <meta name="viewport" content="width=device-width, initial-scale=1">

  34. 

  35.     <title><?php echo $SETTINGS['site_title']; ?></title>

  36. 

  37.     <link rel="icon" href="static/img/logo.svg">

  38. 

  39.     <link href="static/css/bootstrap.min.css" rel="stylesheet">

  40.     <style nonce="<?php echo $SECURE_NONCE; ?>">

  41.         .display-5 {

  42.             font-size: 2.5rem;

  43.             font-weight: 300;

  44.             line-height: 1.2;

  45.         }

  46. 

  47.         .banner-image {

  48.             max-height: 100px;

  49.             margin: 2em auto;

  50.             border: 1px solid grey;

  51.             border-radius: 15%;

  52.         }

  53.     </style>

  54. 

  55.     <div class="container mt-4">

  56.         <div class="row justify-content-center">

  57.             <div class="col-12 text-center">

  58.                 <img class="banner-image" src="./static/img/logo.svg" />

  59.             </div>

  60. 

  61.             <div class="col-12 text-center">

  62.                 <h1 class="display-5 mb-4"><?php $Strings->get($title); ?></h1>

  63.             </div>

  64. 

  65.             <div class="col-12 col-sm-8 col-lg-6">

  66.                 <div class="card mt-4">

  67.                     <div class="card-body">

  68.                         <a href="<?php echo $url; ?>" class="btn btn-primary btn-block"><?php $Strings->get($button); ?></a>

  69.                     </div>

  70.                 </div>

  71.             </div>

  72.         </div>

  73.     </div>

  74.     <?php

  75. }

  76. 

  77. if (!empty($_GET['logout'])) {

  78.     showHTML("You have been logged out.", "Log in again", "./index.php");

  79.     die();

  80. }

  81. if (empty($_SESSION["login_code"])) {

  82.     $redirecttologin = true;

  83. } else {

  84.     try {

  85.         $uidinfo = AccountHubApi::get("checkloginkey", ["code" => $_SESSION["login_code"]]);

  86.         if ($uidinfo["status"] == "ERROR") {

  87.             throw new Exception();

  88.         }

  89.         if (is_numeric($uidinfo['uid'])) {

  90.             $user = new User($uidinfo['uid'] * 1);

  91.             foreach ($SETTINGS['permissions'] as $perm) {

  92.                 if (!$user->hasPermission($perm)) {

  93.                     showHTML("no access permission", "sign out", "./action.php?action=signout");

  94.                     die();

  95.                 }

  96.             }

  97.             Session::start($user);

  98.             $_SESSION["login_code"] = null;

  99.             header('Location: app.php');

  100.             showHTML("Logged in", "Continue", "./app.php");

  101.             die();

  102.         } else {

  103.             throw new Exception();

  104.         }

  105.     } catch (Exception $ex) {

  106.         $redirecttologin = true;

  107.     }

  108. }

  109. 

  110. if ($redirecttologin) {

  111.     try {

  112.         $urlbase = (isset($_SERVER['HTTPS']) ? "https" : "http") . "://" . $_SERVER['HTTP_HOST'] . (($_SERVER['SERVER_PORT'] != 80 && $_SERVER['SERVER_PORT'] != 443) ? ":" . $_SERVER['SERVER_PORT'] : "");

  113.         $iconurl = $urlbase . str_replace("index.php", "", $_SERVER["REQUEST_URI"]) . "static/img/logo.svg";

  114.         $codedata = AccountHubApi::get("getloginkey", ["appname" => $SETTINGS["site_title"], "appicon" => $iconurl]);

  115. 

  116.         if ($codedata['status'] != "OK") {

  117.             throw new Exception($Strings->get("login server unavailable", false));

  118.         }

  119. 

  120.         $redirecturl = $urlbase . $_SERVER['REQUEST_URI'];

  121. 

  122.         $_SESSION["login_code"] = $codedata["code"];

  123. 

  124.         $locationurl = $codedata["loginurl"] . "?code=" . htmlentities($codedata["code"]) . "&redirect=" . htmlentities($redirecturl);

  125.         header("Location: $locationurl");

  126.         showHTML("Continue", "Continue", $locationurl);

  127.         die();

  128.     } catch (Exception $ex) {

  129.         sendError($ex->getMessage());

  130.     }

  131. }