3600)) AND ($drintotal != 0)) { $drinn = 'yep'; $workid = $a; $u = $rowSess[userid]; $docid = $d; $c = 'doku'; $n = 1; } // endif } // endif if(($anmelden == 'Anmelden') AND (!isset($u)) AND ($em != '') AND ($pw != '')) { // Leerzeichen entfernen // $em = trim($em); $pw = trim($pw); $strQuery = "SELECT * FROM tbl_user WHERE email='$em' AND pin='$pw' AND disabled=0 AND cda=1"; $result = MysqlQuery($strQuery); // echo mysql_error(); $row = mysql_fetch_array($result); $u = $row[id]; $n = $row[cda]; $total = mysql_numrows($result); if($total == 0) { write_log($session, $u, "-- ERROR -- Fehlerhafter Loginversuch - email: ".$em." von: ".$REMOTE_ADDR, $GLOBALS["PHP_SELF"].": Line ".__LINE__); } else { write_log($session, $u, "-- OK -- Login erfolgreich", $GLOBALS["PHP_SELF"].": Line ".__LINE__); if($row[cda] == 1) { $n = 1; $u = $row[id]; } } $strSess = "UPDATE tbl_session SET userid='$u' WHERE sessionid='$sessionID'"; $res_sess = MysqlQuery($strSess); if(($d != '') AND ($b != '') AND ($a != '')) // Direktlink aus Newsletter?? { $strDrinn = "SELECT * FROM tbl_session WHERE sessionid='$sessionID' AND userid='$b' LIMIT 1"; $dbRes = MysqlQuery($strDrinn); echo mysql_error(); $drintotal = mysql_numrows($dbRes); $rowSess = mysql_fetch_array($dbRes); $TimeOut = $rowSess["time"]; $zeit = time() - (int)$TimeOut; if ((!($zeit > 3600)) AND ($drintotal != 0)) { $drinn = 'yep'; $workid = $a; $u = $rowSess[userid]; $docid = $d; $c = 'doku'; $n = 1; } // endif } // endif } elseif(($anmelden != 'Anmelden') AND (isset($u))) { $strQuery = "SELECT * FROM tbl_user WHERE id=$u"; $result = MysqlQuery($strQuery); $total = mysql_numrows($result); $row = mysql_fetch_array($result); if($row[cda] == 1) { $n = 1; $u = $row[id]; } } include 'include/session.inc.php3'; require 'include/javascript.js'; ?>