7x31
/
mailcow-dockerized
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update triggers.inc.php

This commit is contained in:
Phoenix Eve Aspacio 2017-02-25 09:31:50 +08:00 committed by GitHub
parent 9b41a9034e
commit c910e6b21b
1 changed files with 12 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
data/web/inc/triggers.inc.php
View File

@ -13,19 +13,28 @@ if (isset($_POST["verify_tfa_login"])) {
if (isset($_POST["login_user"]) && isset($_POST["pass_user"])) { if (isset($_POST["login_user"]) && isset($_POST["pass_user"])) {
$login_user = strtolower(trim($_POST["login_user"])); $login_user = strtolower(trim($_POST["login_user"]));
$as = check_login($login_user, $_POST["pass_user"]); $as = check_login($login_user, $_POST["pass_user"]);
if ($as == "admin") { if ($as == "admin" && "domainadmin" == $_POST["login_role"]) {
$_SESSION['mailcow_cc_username'] = $login_user; $_SESSION['mailcow_cc_username'] = $login_user;
$_SESSION['mailcow_cc_role'] = "admin"; $_SESSION['mailcow_cc_role'] = "admin";
if(isset($_POST["remember_user"]) && $_POST["remember_user"]) {
setcookie("admin", $login_user, time() + (86400 * 5));
}
header("Location: /admin.php"); header("Location: /admin.php");
} }
elseif ($as == "domainadmin") { elseif ($as == "domainadmin" && "domainadmin" == $_POST["login_role"]) {
$_SESSION['mailcow_cc_username'] = $login_user; $_SESSION['mailcow_cc_username'] = $login_user;
$_SESSION['mailcow_cc_role'] = "domainadmin"; $_SESSION['mailcow_cc_role'] = "domainadmin";
if(isset($_POST["remember_user"]) && $_POST["remember_user"]) {
setcookie("admin", $login_user, time() + (86400 * 5));
}
header("Location: /mailbox.php"); header("Location: /mailbox.php");
} }
elseif ($as == "user") { elseif ($as == "user" && "mailboxuser" == $_POST["login_role"]) {
$_SESSION['mailcow_cc_username'] = $login_user; $_SESSION['mailcow_cc_username'] = $login_user;
$_SESSION['mailcow_cc_role'] = "user"; $_SESSION['mailcow_cc_role'] = "user";
if(isset($_POST["remember_user"]) && $_POST["remember_user"]) {
setcookie("user", $login_user, time() + (86400 * 5));
}
header("Location: /user.php"); header("Location: /user.php");
} }
elseif ($as != "pending") { elseif ($as != "pending") {