Pommo::$_auth->logout();
header('Location: ' . Pommo::$_http . Pommo::$_baseUrl . 'index.php');
}
// check if user is already logged in
if (Pommo::$_hasConfigFile && Pommo::$_auth->isAuthenticated()) {
// If user is authenticated (has logged in), redirect to admin.php
Pommo::redirect(Pommo::$_http . Pommo::$_baseUrl . 'admin.php');
} elseif (isset($_POST['submit']) && !empty($_POST['username']) && !empty($_POST['password'])) {
require_once Pommo::$_baseDir . 'classes/Pommo_User.php';
$user = new Pommo_user();
if ($user->login($_POST['username'], $_POST['password'])) {
// don't perform maintenance if accessing support area
if (!isset($_GET['referer']) || !basename($_GET['referer']) == 'support.php') {
// login success. Perform maintenance, set auth, redirect to referer
require_once Pommo::$_baseDir . 'classes/Pommo_Helper_Maintenance.php';
Pommo_Helper_Maintenance::perform();
}
Pommo::$_auth->login($_POST['username']);
Pommo::redirect(Pommo::$_http . $_POST['referer']);
} else {
$logger->addMsg(Pommo::_T('Failed login attempt. Try again.'));
}
} elseif (!empty($_POST['resetPassword'])) {
// TODO -- visit this function later
// Check if a reset password request has been received
// check that captcha matched
if (!isset($_POST['captcha'])) {
// generate captcha
$captcha = substr(md5(rand()), 0, 4);
$view->assign('captcha', $captcha);
} elseif ($_POST['captcha'] == $_POST['realdeal']) {