S2OJ/web/app/models/Auth.php

<?php

class Auth {
	public static function check() {
		global $myUser;
		return $myUser != null;
	}
	public static function id() {
		global $myUser;
		return $myUser['username'];
	}
	public static function user() {
		global $myUser;
		return $myUser;
	}
	public static function login($username, $remember = true) {
		if (!validateUsername($username)) {
			return;
		}
		$_SESSION['username'] = $username;
		if ($remember) {
			$remember_token = DB::selectFirst("select remember_token from user_info where username = '$username'")['remember_token'];
			if ($remember_token == '') {
				$remember_token = uojRandString(60);
				DB::update("update user_info set remember_token = '$remember_token' where username = '$username'");
			}

			$expire = time() + 60 * 60 * 24 * 365 * 10;
			Cookie::safeSet('uoj_username', $username, $expire, '/', array('httponly' => true));
			Cookie::safeSet('uoj_remember_token', $remember_token, $expire, '/', array('httponly' => true));
		}
	}
	public static function logout() {
		unset($_SESSION['username']);
		unset($_SESSION['last_visited']);
		Cookie::safeUnset('uoj_username', '/');
		Cookie::safeUnset('uoj_remember_token', '/');
		DB::update("update user_info set remember_token = '' where username = '".Auth::id()."'");
	}

	private static function initMyUser() {
		global $myUser;
		$myUser = null;
		
		Cookie::safeCheck('uoj_username', '/');
		Cookie::safeCheck('uoj_remember_token', '/');
		
		if (isset($_SESSION['username'])) {
			if (!validateUsername($_SESSION['username'])) {
				return;
			}
			$myUser = queryUser($_SESSION['username']);
			return;
		}

		$remember_token = Cookie::safeGet('uoj_remember_token', '/');
		if ($remember_token != null) {
			$username = Cookie::safeGet('uoj_username', '/');
			if (!validateUsername($username)) {
				return;
			}
			$myUser = queryUser($username);
			if ($myUser['remember_token'] !== $remember_token) {
				$myUser = null;
			}
			return;
		}
	}
	public static function init() {
		global $myUser;
		
		Auth::initMyUser();
		if ($myUser) {
			if ($myUser['usergroup'] == 'B') {
				$myUser = null;
			}
		}
		if ($myUser) {
			DB::update("update user_info set remote_addr = '".DB::escape($_SERVER['REMOTE_ADDR'])."', http_x_forwarded_for = '".DB::escape($_SERVER['HTTP_X_FORWARDED_FOR'])."' where username = '".DB::escape($myUser['username'])."'");
			$_SESSION['last_visited'] = time();
		}
	}
}
Initial commit 2016-07-18 16:39:37 +00:00			`<?php`

			`class Auth {`
			`public static function check() {`
			`global $myUser;`
			`return $myUser != null;`
			`}`
			`public static function id() {`
			`global $myUser;`
			`return $myUser['username'];`
			`}`
			`public static function user() {`
			`global $myUser;`
			`return $myUser;`
			`}`
			`public static function login($username, $remember = true) {`
			`if (!validateUsername($username)) {`
			`return;`
			`}`
			`$_SESSION['username'] = $username;`
			`if ($remember) {`
			`$remember_token = DB::selectFirst("select remember_token from user_info where username = '$username'")['remember_token'];`
			`if ($remember_token == '') {`
			`$remember_token = uojRandString(60);`
			`DB::update("update user_info set remember_token = '$remember_token' where username = '$username'");`
			`}`

			`$expire = time() + 60 * 60 * 24 * 365 * 10;`
			`Cookie::safeSet('uoj_username', $username, $expire, '/', array('httponly' => true));`
			`Cookie::safeSet('uoj_remember_token', $remember_token, $expire, '/', array('httponly' => true));`
			`}`
			`}`
			`public static function logout() {`
			`unset($_SESSION['username']);`
			`unset($_SESSION['last_visited']);`
			`Cookie::safeUnset('uoj_username', '/');`
			`Cookie::safeUnset('uoj_remember_token', '/');`
			`DB::update("update user_info set remember_token = '' where username = '".Auth::id()."'");`
			`}`

			`private static function initMyUser() {`
			`global $myUser;`
			`$myUser = null;`

			`Cookie::safeCheck('uoj_username', '/');`
			`Cookie::safeCheck('uoj_remember_token', '/');`

			`if (isset($_SESSION['username'])) {`
			`if (!validateUsername($_SESSION['username'])) {`
			`return;`
			`}`
			`$myUser = queryUser($_SESSION['username']);`
			`return;`
			`}`

			`$remember_token = Cookie::safeGet('uoj_remember_token', '/');`
			`if ($remember_token != null) {`
			`$username = Cookie::safeGet('uoj_username', '/');`
			`if (!validateUsername($username)) {`
			`return;`
			`}`
			`$myUser = queryUser($username);`
			`if ($myUser['remember_token'] !== $remember_token) {`
			`$myUser = null;`
			`}`
			`return;`
			`}`
			`}`
			`public static function init() {`
			`global $myUser;`

			`Auth::initMyUser();`
			`if ($myUser) {`
			`if ($myUser['usergroup'] == 'B') {`
			`$myUser = null;`
			`}`
			`}`
			`if ($myUser) {`
			`DB::update("update user_info set remote_addr = '".DB::escape($_SERVER['REMOTE_ADDR'])."', http_x_forwarded_for = '".DB::escape($_SERVER['HTTP_X_FORWARDED_FOR'])."' where username = '".DB::escape($myUser['username'])."'");`
			`$_SESSION['last_visited'] = time();`
			`}`
			`}`
			`}`