<?php
######################################################################
# SmallNuke 2: Sites Build System
# ============================================
# Copyright (c) 2006 by SmallNuke Group
# E-Mail support@smallnuke.com
# WEB http://www.smallnuke.com
# ============================================
# This program is free software. You can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License.
######################################################################
# File: admin.php
# Path: admin/
# Version: 2.0.2
######################################################################

define('SN_SiteSystemAdmin', true);

include ('../inc/common.php');
unset ($access);

if (isset ($_POST['enter_admin'])) {
   $admin_name = isset ($_POST['admin_name']) ? substr (str_replace ("\\'", "''", str_replace ("'", "\'", rtrim (htmlspecialchars (str_replace ("\'", "'", trim (strip_tags ($_POST['admin_name'])))), "\\"))), 0, 15) : '';
   $code_password = isset ($_POST['admin_password']) ? md5 (trim ($_POST['admin_password'])) : '';
   $sql = "SELECT admin_id, login, password FROM ".SN_TABLE_ADMINS." WHERE login='$admin_name' AND password='$code_password'";
   $result = $db->sql_query ($sql);
   $row = $db->sql_fetchrow ($result);
   if ($row) {
      mt_srand ((double)microtime ()*1000000);
      $maxran = 1000000;
      $checknum = mt_rand (0, $maxran);
      $checknum = md5 ($checknum);
      $agent = substr (trim ($_SERVER['HTTP_USER_AGENT']), 0, 80);
      $addr_ip = substr (trim ($_SERVER['REMOTE_ADDR']), 0, 15);
      $db->sql_query ("UPDATE ".SN_TABLE_ADMINS." SET checknum = '$checknum', last_login = '".time ()."', last_ip = '$addr_ip', agent = '$agent'  WHERE admin_id='$row[admin_id]'");
      session_register ("admin_id");
      session_register ("admin_cn");
      $_SESSION['admin_cn'] =  base64_encode ("".$checknum."#:#".$agent."#:#".$addr_ip."");
      $_SESSION['admin_id'] = $row['admin_id'];
      $_SESSION['admin_name'] = $row['login'];
   }
   header ('Location: admin.php');
   exit;
}

if (isset ($_GET['logout'])) {
   session_unset ();
   header ('Location: admin.php');
   exit;
}

if ((isset ($_SESSION['admin_id'])) AND (isset ($_SESSION['admin_cn']))) {
   include_once ('../inc/adm_function.php');
   require ('../inc/auth_function/system.php');

   $cn_num = base64_decode ($_SESSION['admin_cn']);
   $ch_num = explode ("#:#", $cn_num);
   $sql = "SELECT * FROM ".SN_TABLE_ADMINS." WHERE admin_id = '$_SESSION[admin_id]' AND checknum = '$ch_num[0]' AND agent = '$ch_num[1]' AND last_ip = '$ch_num[2]'";
   $result = $db->sql_query ($sql);
   $row = $db->sql_fetchrow ($result);
   if ((!$row) OR ($ch_num[1] != substr (trim ($_SERVER['HTTP_USER_AGENT']), 0, 80))) {
      session_unset ();
      header ('Location: admin.php');
      exit;
   }

   if (isset ($_GET['in']) || isset ($_POST['in']) ) {
      $in = trim ((isset ($_POST['in']) ) ? $_POST['in'] : $_GET['in']);
   } else { $in = ''; }
   if (eregi ("[^a-zA-Z0-9_]", $in)) {
      header ('Location: admin.php');
      exit;
   }

   if (isset ($_GET['go']) || isset ($_POST['go']) ) {
      $go = trim ((isset ($_POST['go']) ) ? $_POST['go'] : $_GET['go']);
   } else { $go = ''; }
   if (eregi ("[^a-zA-Z0-9_]", $go)) {
      header ('Location: admin.php');
      exit;
   }

   $access_module = explode ('|', $row['access']);
   if ($go != '') {
      if (($row['access'] == 'super') || ($row['access'] == 'full')) {
      $access = 1;
      } else {
         for ($i=0; $i < count ($access_module); $i++) {
            if ($access_module[$i] == $go) $access = 1;
         }
      }

      $a_path = 'modules/'.$go.'.php';
      if ((file_exists ($a_path)) AND ($access == '1')) {
         if (file_exists ('lang/'.$go.'-'._SNSS_LANG.'.php')) {
            include_once ('lang/'.$go.'-'._SNSS_LANG.'.php');
         }
         if ($conf['allow_redaktor'] == 1) {
            $spaw_root = 'redaktor/';
            include ('redaktor/spaw_control.class.php');
         }
         if (file_exists ('../inc/constants/'.$go.'.php')) { include_once ('../inc/constants/'.$go.'.php'); }

         include ($a_path);
      }  else {
         header ('Location: admin.php');
         exit;
      }
   } else {
      include ('home.php');
   }

} else {
   session_unset ();
   ?>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=<? echo _CHARSET; ?>">
<LINK REL="StyleSheet" HREF="files/style.css" TYPE="text/css">
<title><? echo _ADMINAUTH; ?></title>
</head>
<body>
<table border="0" width="100%" cellspacing="0" cellpadding="0" height="100%">
<tr>
<td align="center">
<form action="admin.php" method="post">
<table border="0" cellpadding="5" cellspacing="1" bgcolor="#EFEFEF">
<tr><td colspan="2"><b><? echo _ADMINAUTH; ?></b></td></tr>
<tr bgcolor="#FFFFFF"><td><? echo _ADMINLOGIN; ?>:</td><td><input type="text" name="admin_name" size="30" maxlength="25" style="width=150px"></td></tr>
<tr bgcolor="#FFFFFF"><td><? echo _ADMINPASSWORD; ?>:</td><td><input type="password" name="admin_password" size="30" maxlength="255" style="width=150px"></td></tr>
<tr bgcolor="#FFFFFF"><td colspan="2">
<input type="submit" value="<? echo _ENTERADMIN; ?>" style="width=100%" name="enter_admin"></td></tr></table>
</form><br><br><br>
</td>
</tr>
</table>
</body>
</html>
   <?
}

?>