userDB->getUserByUsername($username); if ($tmpUser && $tmpUser->isCorrectPassword($gallerypassword)) { // User is successfully logged in, regenerate a new // session ID to prevent session fixation attacks createGallerySession(true); // Perform the login $tmpUser->log("login"); $tmpUser->save(); $gallery->session->username = $username; gallery_syslog("Successful login for $username from " . $_SERVER['REMOTE_ADDR']); if ($tmpUser->getDefaultLanguage() != "") { $gallery->session->language = $tmpUser->getDefaultLanguage(); } if (!$gallery->session->offline) { dismissAndReload(); } else { echo ''. _("SUCCEEDED") . '

'; return; } } else { $error=_("Invalid username or password"); $gallerypassword = null; gallery_syslog("Failed login for $username from " . $_SERVER['REMOTE_ADDR']); } } elseif (!empty($login)) { $error=_("Please enter username and password."); } doctype(); ?> <?php echo sprintf(_("Login to %s"), $gallery->app->galleryTitle) ?>

app->galleryTitle) ?>
'login_form')); ?>

"> " onclick='parent.close()'>

app->emailOn) && $gallery->app->emailOn == 'yes') { ?>
'forgot_form')); if (!empty($forgot)) { $tmpUser = $gallery->userDB->getUserByUsername($username); if ($tmpUser) { $wait_time=15; if ($tmpUser->lastAction == "new_password_request" && time() - $tmpUser->lastActionDate < $wait_time * 60) { echo gallery_error(sprintf(_("The last request for a password was less than %d minutes ago. Please check for previous email, or wait before trying again."), $wait_time)); } else if (check_email($tmpUser->getEmail())) { if (gallery_mail( $tmpUser->email, _("New password request"), sprintf(_("Someone requested a new password for user %s from Gallery '%s' on %s. You can create a password by visiting the link below. If you didn't request a password, please ignore this mail. "), $username, $gallery->app->galleryTitle, $gallery->app->photoAlbumURL) . "\n\n" . sprintf(_("Click to reset your password: %s"), $tmpUser->genRecoverPasswordHash()) . "\n", sprintf(_("New password request %s"), $username))) { $tmpUser->log("new_password_request"); $tmpUser->save(); echo sprintf(_("An email has been sent to the address stored for %s. Follow the instructions to change your password. If you do not receive this email, please contact the Gallery administrators."),$username) ?>

" onclick='parent.close()'>
app->galleryTitle )); } return; } else { echo gallery_error(sprintf(_("There is no valid email for this account. Please contact %s administrators for a new password"),$gallery->app->galleryTitle )); } } else { echo gallery_error(_("Not a valid username")); } } ?>

">

app->selfReg == 'yes') { ?>