J'ai un petit problème avec le login,
au début ca marchait comme sur des roulette, mais quand j'ai essayé de testé d'aller vers une page qui était bloqué, il me met Acces denied, j'ai essayé de remettre une redirection, mais pour faire ca a 50 page, ce n'est pas très chouette.
Alors je me suis demandé si il était possible de faire un automatisme, sous PHP, ou Javascript, ca m'est bien égale ou une ligne du genre <? require_once('/autoredi.php') ; ?>
jaimerais bien le savoir merci
Le code de restriction que j'utilise est celui ci
<?php
// *** Restrict Access To Page: Grant or deny access to this page
$authorizedUsers=" ";
$authFailedURL="/Connections/Login.php";
$grantAccess=0;
session_start();
if (isset($HTTP_SESSION_VARS["Username"])) {
if (true || !(isset($HTTP_SESSION_VARS["UserAuthorization"])) || $HTTP_SESSION_VARS["UserAuthorization"]=="" || strpos($FF_authorizedUsers, $HTTP_SESSION_VARS["UserAuthorization"])) {
$grantAccess = 1;
}
}
if (!$grantAccess) {
$qsChar = "?";
if (strpos($authFailedURL, "?")) $qsChar = "&";
$referrer = "Restricted Area";
$authFailedURL = $authFailedURL . $qsChar . "accessdenied=" . urlencode($referrer);
header("Location: $authFailedURL");
exit;
}
et pour le login:
<?php require_once('file:///C|/Documents%20and%20Settings/Administrateur.ARRASSI/Mes%20documents/5ib/Connections/mysql.php'); ?>
<?php
mysql_select_db($database_Login, $Login);
$query_Recordset1 = "SELECT * FROM Inloggen";
$Recordset1 = mysql_query($query_Recordset1, $Login) or die(mysql_error());
$row_Recordset1 = mysql_fetch_assoc($Recordset1);
$totalRows_Recordset1 = mysql_num_rows($Recordset1);
session_start();
$LoginAction = $HTTP_SERVER_VARS['PHP_SELF'];
if (isset($HTTP_SERVER_VARS['QUERY_STRING']) && $HTTP_SERVER_VARS['QUERY_STRING']!="") $LoginAction .= "?".htmlentities($HTTP_SERVER_VARS['QUERY_STRING']);
if (isset($HTTP_POST_VARS['username'])) {
$valUsername=$HTTP_POST_VARS['username'];
$valPassword=$HTTP_POST_VARS['password'];
$fldUserAuthorization="";
$redirectLoginSuccess="/index.php";
$redirectLoginFailed="?pass=wrong";
$rsUser_Source="SELECT nick, passwoord ";
if ($fldUserAuthorization != "") $rsUser_Source .= "," . $fldUserAuthorization;
$rsUser_Source .= " FROM Inloggen WHERE nick='" . $valUsername . "' AND passwoord='" . $valPassword . "'";
mysql_select_db($database_Login, $Login);
$rsUser=mysql_query($rsUser_Source, $Login) or die(mysql_error());
$row_FF_rsUser = mysql_fetch_assoc($rsUser);
if(mysql_num_rows($rsUser) > 0) {
$Username=$valUsername;
session_register("Username");
if (fldUserAuthorization != "") {
$UserAuthorization=$row_rsUser[$fldUserAuthorization];
} else {
$UserAuthorization="";
}
session_register("UserAuthorization");
if (isset($accessdenied) && false) {
$redirectLoginSuccess = $accessdenied;
}
mysql_free_result($rsUser);
session_register("login_failed");
$login_failed = false;
header ("Location: $redirectLoginSuccess");
exit;
}
mysql_free_result($rsUser);
session_register("login_failed");
$login_failed = true;
header ("Location: $redirectLoginFailed");
exit;
}
?>
<html>
<head>
<title>Login</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<script language="JavaScript" type="text/JavaScript">
<!--
function savePass(nameusr,namepwd,valueusr,valuepwd,days) {
var message = "";
if (document.passForm.username.value == "" || document.passForm.password.value == "") {
message = "Please insert both Username and Password.";
}
if (message.length > 0) {
alert(message);
return false;
} else
if (document.passForm.savepass.checked == true) {
var time = new Date(Date.parse(Date()) + 86400000*days);
document.cookie = nameusr + "=" + escape(valueusr) + "; expires=" + time.toUTCString();
document.cookie = namepwd + "=" + escape(valuepwd) + "; expires=" + time.toUTCString();
} else {
document.cookie = nameusr + "=" + "" + "; expires=Thu,01-Jan-70 00:00:01 UTC";
document.cookie = namepwd + "=" + "" + "; expires=Thu,01-Jan-70 00:00:01 UTC";
}
}
function getCookie(name) {
var arg = name + "=";
var alen = arg.length;
var clen = document.cookie.length;
var i = 0;
while (i < clen) {
var j = i + alen;
if (document.cookie.substring(i, j) == arg) {
var endstr = document.cookie.indexOf(";", j);
if (endstr == -1) endstr = document.cookie.length;
return unescape(document.cookie.substring(j, endstr));
}
i = document.cookie.indexOf(" ", i) + 1;
if (i == 0) break;
}
return "";
}
function getPass(nameusr,namepwd) {
if (getCookie(namepwd) != "undefined" && getCookie(namepwd) != "") {
document.passForm.username.value = getCookie(nameusr);
document.passForm.password.value = getCookie(namepwd);
document.passForm.savepass.checked = true;
}
}
//-->
</script>
</head>
<body onLoad="getPass('Vijfib_Username','Vijfib_wwd')">
<form action="<?php echo $LoginAction?>" method="POST" name="passForm">
<table border="0" cellspacing="2" cellpadding="4" align="center">
<tr>
<td width="70"><font face="Arial" size="2">Username:</font></td>
<td colspan="2"><input type="text" name="username">
</td>
</tr>
<tr>
<td><font face="Arial" size="2">Password:</font></td>
<td colspan="2"><input type="password" name="password">
</td>
</tr>
<tr>
<td><font face="Arial" size="2"> </font></td>
<td width="100" nowrap><input name="savepass" type="checkbox" value="true" onClick="return savePass('Vijfib_Username','Vijfib_wwd',username.value,password.value,30)">
<font face="Arial" size="1">Save Pass</font></td>
<td width="40" align="right"><input type="submit" name="Submit" value="Enter" onClick="return savePass('Vijfib_Username','Vijfib_wwd',username.value,password.value,30)">
</td>
</tr>
</table>
</form>
</body>
</html>