+-------------+
|Martin Elthon|
|Period 3     |
|Code Analysis|
+-------------+

--------------------------------------------------------------------
config.php
*core variables, such as database name, server, user, password
---------------------------------------------------------------------
<?php
        $dbhost = "127.0.0.1";
        $dbname = "tjhsst";
        $dbuser = "root";
        $dbpass = *******************; <-commented this out for good measure
?>
-------------------------------------------------------------------------
auth.php
*checks whether the user has a valid cookie, signifing whether they are logged in or not.  Cookies store username and timestamp when the account was created, providing a secure and reliable way to authenticate.
--------------------------------------------------------------------------
<?php
        require('config.php');
        $con = mysql_connect($dbhost,$dbuser,$dbpass);
        if(!is_resource($con))  {
                die("Could not Connect!!!");
        }
        mysql_select_db($dbname,$con);
        $result = mysql_query("SELECT * FROM users WHERE (time,uname) = ('" . $_COOKIE['t'] . "','" . $_COOKIE['u'] . "')");
        $row = mysql_fetch_array($result);
        if($row['uname'] == null)  {
                header("Location: login.php");
                exit;
        }
?>
--------------------------------------------------------------------------
index.php / login.php
*provide a login page.  Check database whether username and password are correct, and if so, give a cookie that would be interpreted as a valid login.  Then, the login redirects to main.php (index.php is symlinked to login.php)
-------------------------------------------------------------------------
<?php
require('config.php');
if(isset($_POST["user1"])) {
        $con = mysql_connect($dbhost,$dbuser,$dbpass);
        if(!is_resource($con)) {
                die("Could not Connect!!!");
        }
        mysql_select_db($dbname,$con);
        $passhash = sha1($_POST["pass1"]);
        $use = str_replace(array(':',';',',','"','\''),"",$_POST["user1"]);
        $result = mysql_query("SELECT * FROM users WHERE uname = '$use'");
        $tmp = (mysql_fetch_array($result));
        if($tmp['upass'] == $passhash) {
                setcookie(u,$use,time()+3600);
                setcookie(t,$tmp['time'],time()+3600);
                header('Location: main.php');
                exit;
        }
        else {
                $status = "Incorrect Username or Password";
        }
}
?>
<html>
<head><title></title></head>
<body>
<center>
Login
<?php
if(isset($status))  {
        echo "<p />" . $status . "<p />\n";
}
?>
</center>
<p />
<form name="login" action="login.php" method="post">
Username: <input type="text" name="user1"><br />
Password: <input type="password" name="pass1"><br />
<input type="submit" value="Login">
</form>
</body>
</html>
-------------------------------------------------------------------------
main.php
*splash-screen.  Provides links to all of the features that the site contains.
--------------------------------------------------------------------------
<?php
require('auth.php');
?>
<html>
<head><title></title></head>
<body>
<center>
Welcome
</center>
<p />
<a href="logout.php">Logout</a><br />
<a href="adduser.php">Add a User</a><br />
<a href="rmuser.php">Remove a User</a><br />
</body>
</html>
------------------------------------------------------------------------------
logout.php
*removes all cookies from this site, and redirects to auth.php, which will check whether you are authenticated.  Since you are not authenticated, it will then redirect you to the login page.
---------------------------------------------------------------------------
<?php
        foreach($_COOKIE as $key => $value)  {
                setcookie($key,$value,time()-3600);
        }
        header("Location: auth.php");
?>
--------------------------------------------------------------------------
adduser.php
*adds a user to the system
-------------------------------------------------------------------------
<?php
require('auth.php');
?>
<html>
<head><title></title></head>
<body>
<center>
<?php
if(isset($_POST["user1"]) && $_POST["pass1"]==$_POST["pass2"])  {
        $con = mysql_connect($dbhost,$dbuser,$dbpass);
        if(!is_resource($con))  {
                die("Could not Connect!!!");
        }
        mysql_select_db($dbname,$con);
        $passhash = sha1($_POST["pass1"]);
        mysql_query("INSERT INTO users (uname,upass) VALUES ('".$_POST["user1"]."','$passhash')");
        echo "User Added";
}
else {
        echo "Add a User";
}
?>
</center><p />
<form name="add" action="adduser.php" method="post">
Username: <input type="text" name="user1"><br />
Password: <input type="password" name="pass1"><br />
Retype Password: <input type="password" name="pass2"><br />
<input type="submit" value="Submit">
</form>
</body>
</html>
----------------------------------------------------------------------
rmuser.php
*removes a user from the system.  Pull-down menu with all the current users, select which one you want to delete, then it deletes it.
----------------------------------------------------------------------
<?php
require('auth.php');
?>
<html>
<head><title></title></head>
<body>
<center>
<?php
if(isset($_POST["user1"]))  {
        $use = str_replace(array(':',';',',','"','\''),"",$_POST["user1"]);
        $con = mysql_connect($dbhost,$dbuser,$dbpass);
        if(!is_resource($con))  {
                die("Could not Connect!!!");
        }
        mysql_select_db($dbname,$con);
        mysql_query("DELETE FROM users WHERE uname = '$use'");
        echo "User $use Removed";
}
else {
        echo "Remove a User";
}
?>
</center><p />
<form name="add" action="rmuser.php" method="post">
<select name="user1">
<?php
         $con = mysql_connect($dbhost,$dbuser,$dbpass);
         if(!is_resource($con))  {
                 die("Could not Connect!!!");
         }
        mysql_select_db($dbname,$con);
        $result = mysql_query("SELECT * FROM users");
        while($row = mysql_fetch_array($result))  {
                echo "<option value=\"" . $row['uname'] . "\">" . $row['uname'] . "\n";
        }
?>
</select>
<input type="submit" value="Submit">
</form>
</body>
</html>