From 2086ef5891b3a0ca9f1542168ba29ee9ada0c671 Mon Sep 17 00:00:00 2001
From: Janis Steiner <janis.st44@gmail.com>
Date: Wed, 26 Jun 2024 17:07:58 +0200
Subject: [PATCH] fixing bugs

---
 server/app-code/install/create_admin.php           | 1 -
 server/app-code/system/insecure_zone/php/2fa.php   | 3 ---
 server/app-code/system/insecure_zone/php/login.php | 3 ---
 3 files changed, 7 deletions(-)

diff --git a/server/app-code/install/create_admin.php b/server/app-code/install/create_admin.php
index f53aab0..60484a9 100644
--- a/server/app-code/install/create_admin.php
+++ b/server/app-code/install/create_admin.php
@@ -9,7 +9,6 @@
 </head>
 <body>
 <?php
-include "../api/php/log/add_server_entry.php"; //to log things
 ?>
 <div class="container mt-5">
     <div class="row justify-content-center">
diff --git a/server/app-code/system/insecure_zone/php/2fa.php b/server/app-code/system/insecure_zone/php/2fa.php
index 3624a4e..78aa766 100644
--- a/server/app-code/system/insecure_zone/php/2fa.php
+++ b/server/app-code/system/insecure_zone/php/2fa.php
@@ -7,8 +7,6 @@ if(!isset($_SESSION["2fa_auth"])){ //so only someone who has allready confirmed
 	header("LOCATION:/system/insecure_zone/php/login.php");
 	exit();
 }
-include "../../../api/php/notifications/sendmessage.php"; //to send user notification on login
-include "../../../api/php/log/add_server_entry.php"; //to log things
 ?>
 <!DOCTYPE html>
 <html lang="en">
@@ -60,7 +58,6 @@ include "../../../api/php/log/add_server_entry.php"; //to log things
 								if($pin==$_SESSION["pin"])	
 								{
 									$_SESSION["login"]=true;
-									log_action("LOGIN::2FA::SUCCESS","User ".$_SESSION["username"]." logged in with second factor.",$_SESSION["id"]);
 									if($_SESSION["send_login_message"]=="1"){
 										$ip = $_SERVER['REMOTE_ADDR'];
 										$username=$_SESSION["username"];
diff --git a/server/app-code/system/insecure_zone/php/login.php b/server/app-code/system/insecure_zone/php/login.php
index 6c1646c..312cb06 100644
--- a/server/app-code/system/insecure_zone/php/login.php
+++ b/server/app-code/system/insecure_zone/php/login.php
@@ -319,7 +319,6 @@ async function checkRegistration() {
 												//send the user to 2fa auth page
 												echo '<script>window.location.href = "/system/insecure_zone/php/2fa.php";</script>';
 											}else{
-												log_action("LOGIN::SUCCESS","User ".$_SESSION["username"]." logged in with password.",$_SESSION["id"]);
 												if($_SESSION["send_login_message"]=="1"){
 													$ip = $_SERVER['REMOTE_ADDR'];
 													$username=$row["username"];
@@ -329,7 +328,6 @@ async function checkRegistration() {
 											}
 											exit();
 										} else {
-											log_action("LOGIN::FAILURE","User ".$username." entered wrong password.",1);
 											echo '<div class="alert alert-danger" role="alert">
 													Incorrect username or password.
 												  </div>';
@@ -341,7 +339,6 @@ async function checkRegistration() {
 										  </div>';
 									}
 								} else {
-									log_action("LOGIN::FAILURE","User ".$username." entered unknown username.",1);
 									echo '<div class="alert alert-danger" role="alert">
 											Incorrect username or password.
 										  </div>';