Konstantin
125 lines
4.6 KiB
PHP
125 lines
4.6 KiB
PHP
<?php
|
|
// * @source See SOURCE.txt for source and other copyright.
|
|
// * @license GNU General Public License version 3; see LICENSE.txt
|
|
|
|
class ControllerAffiliateLogin extends Controller {
|
|
private $error = array();
|
|
|
|
public function index() {
|
|
if ($this->customer->isLogged()) {
|
|
$this->response->redirect($this->url->link('account/account', '', true));
|
|
}
|
|
|
|
$this->load->language('affiliate/login');
|
|
|
|
$this->document->setTitle($this->language->get('heading_title'));
|
|
$this->document->setRobots('noindex,follow');
|
|
|
|
$this->load->model('account/customer');
|
|
|
|
if (($this->request->server['REQUEST_METHOD'] == 'POST') && isset($this->request->post['email']) && isset($this->request->post['password']) && $this->validate()) {
|
|
// Added strpos check to pass McAfee PCI compliance test (http://forum.opencart.com/viewtopic.php?f=10&t=12043&p=151494#p151295)
|
|
if (isset($this->request->post['redirect']) && (strpos($this->request->post['redirect'], $this->config->get('config_url')) !== false || strpos($this->request->post['redirect'], $this->config->get('config_ssl')) !== false)) {
|
|
$this->response->redirect(str_replace('&', '&', $this->request->post['redirect']));
|
|
} else {
|
|
$this->response->redirect($this->url->link('account/account', '', true));
|
|
}
|
|
}
|
|
|
|
$data['breadcrumbs'] = array();
|
|
|
|
$data['breadcrumbs'][] = array(
|
|
'text' => $this->language->get('text_home'),
|
|
'href' => $this->url->link('common/home')
|
|
);
|
|
|
|
$data['breadcrumbs'][] = array(
|
|
'text' => $this->language->get('text_account'),
|
|
'href' => $this->url->link('account/account', '', true)
|
|
);
|
|
|
|
$data['breadcrumbs'][] = array(
|
|
'text' => $this->language->get('text_login'),
|
|
'href' => $this->url->link('affiliate/login', '', true)
|
|
);
|
|
|
|
$data['text_description'] = sprintf($this->language->get('text_description'), $this->config->get('config_name'), $this->config->get('config_name'), $this->config->get('config_affiliate_commission') . '%');
|
|
|
|
if (isset($this->error['warning'])) {
|
|
$data['error_warning'] = $this->error['warning'];
|
|
} else {
|
|
$data['error_warning'] = '';
|
|
}
|
|
|
|
$data['action'] = $this->url->link('affiliate/login', '', true);
|
|
$data['register'] = $this->url->link('affiliate/register', '', true);
|
|
$data['forgotten'] = $this->url->link('account/forgotten', '', true);
|
|
|
|
if (isset($this->request->post['redirect'])) {
|
|
$data['redirect'] = $this->request->post['redirect'];
|
|
} elseif (isset($this->session->data['redirect'])) {
|
|
$data['redirect'] = $this->session->data['redirect'];
|
|
|
|
unset($this->session->data['redirect']);
|
|
} else {
|
|
$data['redirect'] = '';
|
|
}
|
|
|
|
if (isset($this->session->data['success'])) {
|
|
$data['success'] = $this->session->data['success'];
|
|
|
|
unset($this->session->data['success']);
|
|
} else {
|
|
$data['success'] = '';
|
|
}
|
|
|
|
if (isset($this->request->post['email'])) {
|
|
$data['email'] = $this->request->post['email'];
|
|
} else {
|
|
$data['email'] = '';
|
|
}
|
|
|
|
if (isset($this->request->post['password'])) {
|
|
$data['password'] = $this->request->post['password'];
|
|
} else {
|
|
$data['password'] = '';
|
|
}
|
|
|
|
$data['column_left'] = $this->load->controller('common/column_left');
|
|
$data['column_right'] = $this->load->controller('common/column_right');
|
|
$data['content_top'] = $this->load->controller('common/content_top');
|
|
$data['content_bottom'] = $this->load->controller('common/content_bottom');
|
|
$data['footer'] = $this->load->controller('common/footer');
|
|
$data['header'] = $this->load->controller('common/header');
|
|
|
|
$this->response->setOutput($this->load->view('affiliate/login', $data));
|
|
}
|
|
|
|
protected function validate() {
|
|
// Check how many login attempts have been made.
|
|
$login_info = $this->model_account_customer->getLoginAttempts($this->request->post['email']);
|
|
|
|
if ($login_info && ($login_info['total'] >= $this->config->get('config_login_attempts')) && strtotime('-1 hour') < strtotime($login_info['date_modified'])) {
|
|
$this->error['warning'] = $this->language->get('error_attempts');
|
|
}
|
|
|
|
// Check if customer has been approved.
|
|
$customer_info = $this->model_account_customer->getCustomerByEmail($this->request->post['email']);
|
|
|
|
if ($customer_info && !$customer_info['status']) {
|
|
$this->error['warning'] = $this->language->get('error_approved');
|
|
}
|
|
|
|
if (!$this->error) {
|
|
if (!$this->customer->login($this->request->post['email'], $this->request->post['password'])) {
|
|
$this->error['warning'] = $this->language->get('error_login');
|
|
|
|
$this->model_account_customer->addLoginAttempt($this->request->post['email']);
|
|
} else {
|
|
$this->model_account_customer->deleteLoginAttempts($this->request->post['email']);
|
|
}
|
|
}
|
|
|
|
return !$this->error;
|
|
}
|
|
} |