phpMyAdmin <?php echo PMA

and | // | Dan Wilson who builds this patch for the Debian package. | // +--------------------------------------------------------------------------+ if (!defined('PMA_COOKIE_AUTH_INCLUDED')) { define('PMA_COOKIE_AUTH_INCLUDED', 1); // Gets the default font sizes PMA_setFontSizes(); // Defines the cookie path and whether the server is using https or not $pma_uri_parts = parse_url($cfg['PmaAbsoluteUri']); $cookie_path = substr($pma_uri_parts['path'], 0, strrpos($pma_uri_parts['path'], '/')); $is_https = ($pma_uri_parts['scheme'] == 'https') ? 1 : 0; /** * Sorts available languages by their true names * * @param array the array to be sorted * @param mixed a required parameter * * @return the sorted array * * @access private */ function PMA_cookie_cmp(&$a, $b) { return (strcmp($a[1], $b[1])); } // end of the 'PMA_cmp()' function /** * Displays authentication form * * @global string the font face to use * @global string the default font size to use * @global string the big font size to use * @global array the list of servers settings * @global array the list of available translations * @global string the current language * @global integer the current server id * @global string the currect charset for MySQL * @global array the array of cookie variables if register_globals is * off * * @return boolean always true (no return indeed) * * @access public */ function PMA_auth() { global $right_font_family, $font_size, $font_bigger; global $cfg, $available_languages; global $lang, $server, $convcharset; global $conn_error; global $HTTP_COOKIE_VARS; // Tries to get the username from cookie whatever are the values of the // 'register_globals' and the 'variables_order' directives if last login // should be recalled, else skip the IE autocomplete feature. if ($cfg['LoginCookieRecall']) { if (!empty($GLOBALS['pma_cookie_username'])) { $default_user = $GLOBALS['pma_cookie_username']; } else if (!empty($_COOKIE) && isset($_COOKIE['pma_cookie_username'])) { $default_user = $_COOKIE['pma_cookie_username']; } else if (!empty($HTTP_COOKIE_VARS) && isset($HTTP_COOKIE_VARS['pma_cookie_username'])) { $default_user = $HTTP_COOKIE_VARS['pma_cookie_username']; } $autocomplete = ''; } else { $default_user = ''; $autocomplete = ' autocomplete="off"'; } $cell_align = ($GLOBALS['text_dir'] == 'ltr') ? 'left' : 'right'; // Defines the charset to be used header('Content-Type: text/html; charset=' . $GLOBALS['charset']); // Title ?> phpMyAdmin <?php echo PMA_VERSION; ?>

> 1) { echo "\n"; ?> '."\n"; } ?>



:
'. $conn_error. '
'; } echo "\n"; ?>

delete password cookie if (!empty($old_usr)) { setcookie('pma_cookie_password', '', 0, $GLOBALS['cookie_path'], '' , $GLOBALS['is_https']); } // The user just logged in else if (!empty($pma_username)) { $PHP_AUTH_USER = $pma_username; $PHP_AUTH_PW = (empty($pma_password)) ? '' : $pma_password; $from_form = TRUE; } // At the end, try to set the $PHP_AUTH_USER & $PHP_AUTH_PW variables // from cookies whatever are the values of the 'register_globals' and // the 'variables_order' directives else { if (!empty($pma_cookie_username)) { $PHP_AUTH_USER = $pma_cookie_username; $from_cookie = TRUE; } else if (!empty($_COOKIE) && isset($_COOKIE['pma_cookie_username'])) { $PHP_AUTH_USER = $_COOKIE['pma_cookie_username']; $from_cookie = TRUE; } else if (!empty($HTTP_COOKIE_VARS) && isset($HTTP_COOKIE_VARS['pma_cookie_username'])) { $PHP_AUTH_USER = $HTTP_COOKIE_VARS['pma_cookie_username']; $from_cookie = TRUE; } if (!empty($pma_cookie_password)) { $PHP_AUTH_PW = $pma_cookie_password; } else if (!empty($_COOKIE) && isset($_COOKIE['pma_cookie_password'])) { $PHP_AUTH_PW = $_COOKIE['pma_cookie_password']; } else if (!empty($HTTP_COOKIE_VARS) && isset($HTTP_COOKIE_VARS['pma_cookie_password'])) { $PHP_AUTH_PW = $HTTP_COOKIE_VARS['pma_cookie_password']; } else { $from_cookie = FALSE; } if ($PHP_AUTH_PW == "\xff(blank)") { $PHP_AUTH_PW = ''; } } // Returns whether we get authentication settings or not if (!$from_cookie && !$from_form) { return FALSE; } else { if (get_magic_quotes_gpc()) { $PHP_AUTH_USER = stripslashes($PHP_AUTH_USER); $PHP_AUTH_PW = stripslashes($PHP_AUTH_PW); } return TRUE; } } // end of the 'PMA_auth_check()' function /** * Set the user and password after last checkings if required * * @global array the valid servers settings * @global integer the id of the current server * @global array the current server settings * @global string the current username * @global string the current password * @global boolean whether the login/password pair has been grabbed from * a cookie or not * * @return boolean always true * * @access public */ function PMA_auth_set_user() { global $cfg, $server; global $PHP_AUTH_USER, $PHP_AUTH_PW; global $from_cookie; // Ensures valid authentication mode, 'only_db', bookmark database and // table names and relation table name are used if ($cfg['Server']['user'] != $PHP_AUTH_USER) { $servers_cnt = count($cfg['Servers']); for ($i = 1; $i <= $servers_cnt; $i++) { if (isset($cfg['Servers'][$i]) && ($cfg['Servers'][$i]['host'] == $cfg['Server']['host'] && $cfg['Servers'][$i]['user'] == $PHP_AUTH_USER)) { $server = $i; $cfg['Server'] = $cfg['Servers'][$i]; break; } } // end for } // end if $cfg['Server']['user'] = $PHP_AUTH_USER; $cfg['Server']['password'] = $PHP_AUTH_PW; // Set cookies if required (once per session) and, in this case, force // reload to ensure the client accepts cookies if (!$from_cookie) { // Duration = one month for username setcookie('pma_cookie_username', $cfg['Server']['user'], time() + (60 * 60 * 24 * 30), $GLOBALS['cookie_path'], '', $GLOBALS['is_https']); // Duration = till the browser is closed for password setcookie('pma_cookie_password', ((!empty($cfg['Server']['password'])) ? $cfg['Server']['password'] : "\xff(blank)"), 0, $GLOBALS['cookie_path'], '', $GLOBALS['is_https']); // loic1: workaround against a IIS 5.0 bug if (empty($GLOBALS['SERVER_SOFTWARE'])) { if (isset($_SERVER) && !empty($_SERVER['SERVER_SOFTWARE'])) { $GLOBALS['SERVER_SOFTWARE'] = $_SERVER['SERVER_SOFTWARE']; } else if (isset($GLOBALS['HTTP_SERVER_VARS']) && !empty($GLOBALS['HTTP_SERVER_VARS']['SERVER_SOFTWARE'])) { $GLOBALS['SERVER_SOFTWARE'] = $GLOBALS['HTTP_SERVER_VARS']['SERVER_SOFTWARE']; } } // end if if (!empty($GLOBALS['SERVER_SOFTWARE']) && $GLOBALS['SERVER_SOFTWARE'] == 'Microsoft-IIS/5.0') { header('Refresh: 0; url=' . $cfg['PmaAbsoluteUri'] . 'index.php3?' . PMA_generate_common_url()); } else { header('Location: ' . $cfg['PmaAbsoluteUri'] . 'index.php3?' . PMA_generate_common_url()); } exit(); } // end if return TRUE; } // end of the 'PMA_auth_set_user()' function /** * User is not allowed to login to MySQL -> authentication failed * * @return boolean always true (no return indeed) * * @access public */ function PMA_auth_fails() { global $conn_error; // Deletes password cookie and displays the login form setcookie('pma_cookie_password', '', 0, $GLOBALS['cookie_path'], '' , $GLOBALS['is_https']); if (PMA_mysql_error()) { $conn_error = PMA_mysql_error(); } else if (isset($php_errormsg)) { $conn_error = $php_errormsg; } else { $conn_error = $GLOBALS['strCannotLogin']; } PMA_auth(); return TRUE; } // end of the 'PMA_auth()' function } // $__PMA_COOKIE_AUTH_LIB__ ?>