Página inicial Explorar Ajuda
Entrar
LBP
/
Organizr
mirror de https://github.com/causefx/Organizr.git
4
0
Fork 0
Arquivos Issues 0 Wiki
Tree: 88d93340b5
Branches Tags
Organizr
/
auth.php

auth.php 1.6 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. <?php
    2. 

  2. 

  3. $data = false;
    4. 

  4. 

  5. function getBannedUsers($string){
    6. 

  6.     if (strpos($string, ',') !== false) {
    7. 

  7.         $banned = explode(",", $string);     
    8. 

  8.     }else{
    9. 

  9.         $banned = array($string);  
    10. 

  10.     }
    11. 

  11.     return $banned;
    12. 

  12. }
    13. 

  13. 

  14. function getWhitelist($string){
    15. 

  15.     if (strpos($string, ',') !== false) {
    16. 

  16.         $whitelist = explode(",", $string); 
    17. 

  17.     }else{
    18. 

  18.         $whitelist = array($string);
    19. 

  19.     }
    20. 

  20.     foreach($whitelist as &$ip){
    21. 

  21.         $ip = is_numeric(substr($ip, 0, 1)) ? $ip : gethostbyname($ip);
    22. 

  22.     }
    23. 

  23.     return $whitelist;
    24. 

  24. }
    25. 

  25. 

  26. if (isset($_GET['ban'])) : $ban = strtoupper($_GET['ban']); else : $ban = ""; endif;
    27. 

  27. if (isset($_GET['whitelist'])) : $whitelist = strtoupper($_GET['whitelist']); else : $whitelist = ""; endif;
    28. 

  28. $currentIP = $_SERVER['REMOTE_ADDR'];
    29. 

  29. 

  30. require_once("user.php");
    31. 

  31. $USER = new User("registration_callback");
    32. 

  32. 

  33. if (isset($_GET['admin'])) :
    34. 

  34. 

  35.     if($USER->authenticated && $USER->role == "admin" && !in_array(strtoupper($USER->username), getBannedUsers($ban))) :
    36. 

  36. 

  37.         exit(http_response_code(200));
    38. 

  38. 

  39.     else :
    40. 

  40. 

  41.         exit(http_response_code(401));
    42. 

  42. 

  43.     endif;
    44. 

  44. 

  45. elseif (isset($_GET['user'])) :
    46. 

  46. 

  47.     if($USER->authenticated && !in_array(strtoupper($USER->username), getBannedUsers($ban))) :
    48. 

  48. 

  49.         exit(http_response_code(200));
    50. 

  50. 

  51.     else :
    52. 

  52. 

  53.         exit(http_response_code(401));
    54. 

  54. 

  55.     endif;
    56. 

  56. 

  57. elseif (isset($_GET['whitelist'])) :
    58. 

  58. 

  59.     if(in_array($currentIP, getWhitelist($whitelist))) :
    60. 

  60.        
    61. 

  61.        exit(http_response_code(200));
    62. 

  62.        
    63. 

  63.     else :
    64. 

  64. 

  65.         exit(http_response_code(401));
    66. 

  66. 

  67.     endif;
    68. 

  68. 

  69. elseif (!isset($_GET['user']) && !isset($_GET['admin']) && !isset($_GET['whitelist'])) :
    70. 

  70. 

  71.     exit(http_response_code(401));
    72. 

  72. 

  73. endif;
    74. 

  74. 

  75. ?>
    76.