janis/ma
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update login.php

Browse Source
This commit is contained in:
jakani24
2024-06-06 16:23:40 +02:00
parent 2fa388d441
commit 8147a6416e
1 changed files with 8 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
src/server/cyberhex-code/system/insecure_zone/php/login.php
View File

@@ -306,21 +306,22 @@ async function checkRegistration() {
$_SESSION["send_login_message"]=$row["send_login_message"]; $_SESSION["send_login_message"]=$row["send_login_message"];
$_SESSION["use_2fa"]=$row["use_2fa"]; $_SESSION["use_2fa"]=$row["use_2fa"];
if($_SESSION["use_2fa"]=="1"){ if($_SESSION["use_2fa"]=="1"){
$_SESSION["login"]=false; //set the login state to false unset($_SESSION["login"]); //set the login state to false
$_SESSION["2fa_auth"]=true; $_SESSION["2fa_auth"]=true;
$pin=mt_rand(100000, 999999); $pin=mt_rand(100000, 999999);
$_SESSION["pin"]=$pin; $_SESSION["pin"]=$pin;
send_to_user("[2FA-Pin]\nHello $username\nHere is your pin to log into cyberhex: $pin. If you did not try to log in please take steps to secure your account!\nIP: $ip\n",$username); send_to_user("[2FA-Pin]\nHello $username\nHere is your pin to log into cyberhex: $pin. If you did not try to log in please take steps to secure your account!\nIP: $ip\n",$username);
//send the user to 2fa auth page //send the user to 2fa auth page
echo '<script>window.location.href = "/system/insecure_zone/php/2fa.php";</script>'; echo '<script>window.location.href = "/system/insecure_zone/php/2fa.php";</script>';
} }else{
if($_SESSION["send_login_message"]=="1"){ if($_SESSION["send_login_message"]=="1"){
$ip = $_SERVER['REMOTE_ADDR']; $ip = $_SERVER['REMOTE_ADDR'];
$username=$row["username"]; $username=$row["username"];
send_to_user("[LOGIN WARNING]\nHello $username\nSomebody has logged into Cyberhex with your account.\nIf this was you, you can ignore this message. Else please take steps to secure your account!\nIP: $ip\n",$username); send_to_user("[LOGIN WARNING]\nHello $username\nSomebody has logged into Cyberhex with your account.\nIf this was you, you can ignore this message. Else please take steps to secure your account!\nIP: $ip\n",$username);
}
echo '<script>window.location.href = "/system/secure_zone/php/index.php";</script>';
} }
echo '<script>window.location.href = "/system/secure_zone/php/index.php";</script>';
exit(); exit();
} else { } else {
echo '<div class="alert alert-danger" role="alert"> echo '<div class="alert alert-danger" role="alert">