Add framework for setting variables from frontend stored in the session

[misc/kostenrechnung] / lib / general.php

diff --git a/lib/general.php b/lib/general.php
index c296728..9900bf6 100644 (file)
--- a/lib/general.php
+++ b/lib/general.php
@@ -1,7 +1,18 @@
 <?php
 
+function passwd($login,$pass)
+{
+  return md5(md5($pass).$login);
+}
+
 function check_session()
 {
+  if (!empty($_SESSION['sys']['login']) && !empty($_GET['logout'])) {
+    session_destroy();
+    header('Location: ./?login=true');
+    exit();
+  }
+
   if (!empty($_POST['login']) && !empty($_POST['passwd'])) {
     require_once('lib/login.php');
     if (check_passwd()) {
@@ -21,12 +32,13 @@ function sanitise_filename($file)
   return str_replace('./','x',$file);
 }
 
-function load_mask($name, $prefix = '')
+function load_mask($name)
 {
   global $mask;
+  global $jscode;
 
   $name = sanitise_filename($name);
-  $file = $prefix . 'masks/' . $name . '.php';
+  $file = $_SESSION['sys']['basedir'] . 'masks/' . $name . '.php';
 
   if (!file_exists($file))
     return false;
@@ -42,6 +54,19 @@ function connect_db()
   pg_connect($dsn);
 }
 
+function query_db($sql)
+{
+  $sth = pg_query($sql);
+
+  if ($sth === false) return false;
+
+  $result = array();
+  while ($row = pg_fetch_assoc($sth))
+    $result[] = $row;
+
+  return $result;
+}
+
 function load_js($jsfiles, $jscode)
 {
   $ret = '';