worenga · July 8, 2011 18:15
diff --git a/dumb-comments b/dumb-comments
 // time to roll

 // messy, but seems to work

 // time for some action

 // makin' stuff happen

 // "I'm digging for fire" - Pixies

 //  An MVC without the V. Or with a small v. ;)

 // TEMPORARY
diff --git a/gistfile1.php b/gistfile1.php
 // referencing wonkiness
 // review when there is time
 $aINDX =& $INDX;
diff --git a/gistfile2.php b/gistfile2.php
 // first year
 $default['first_year'] = 1994;
diff --git a/gistfile3.php b/gistfile3.php
 $adm['adm_id'] = 1;
diff --git a/gistfile4.php b/gistfile4.php
 #defaults.php
 // darn quotes
 set_magic_quotes_runtime(0);
diff --git a/gistfile5.php b/gistfile5.php
 #db.mysql.php
 	function escape_str($str)	
 	{	
 		if (get_magic_quotes_gpc())
 		{
 			return $str;
 		}
 		//... alternatives..
diff --git a/gistfile6.php b/gistfile6.php
 		// if logging in
 		if (isset($_POST['submitLogin'])) 
 		{
 			sleep(3); // obscure prevention of absuse
 			
 			$clean['userid'] 	= getPOST('uid', null, 'password', 12);
 			$clean['password'] 	= md5(getPOST('pwd', null, 'password', 12));

 			$this->prefs = $OBJ->db->selectArray(PX.'users', $clean, 'record');
 				 
 			if ($this->prefs)
 			{
 				// create a new user hash upon login
 				$temp['user_hash'] = md5(time() . $clean['password'] . 'secret');

 				$OBJ->db->updateArray(PX.'users', $temp, "ID='".$this->prefs['ID']."'");
 				
 				setcookie('ndxz_hash', $temp['user_hash'], time()+3600*24*2, '/');
 				setcookie('ndxz_access', $clean['password'], time()+3600*24*2, '/');

 				$this->settings();
 				return;
 			}
 			else
 			{
 				show_login('login err');
 			}
 		}
diff --git a/gistfile7.txt b/gistfile7.txt
 // clean up the uri
 $uri = (MODREWRITE == false) ?
 	str_replace('/index.php?', '', $_SERVER['REQUEST_URI']) :
 	entry_uri($uri, $_SERVER['REQUEST_URI']);
 	
 // TEMPORARY
 // what if it's more than one folder up?
 $uri = str_replace($self, '', $uri);

 $rs = $OBJ->db->fetchRecord("SELECT * 
 	FROM ".PX."objects, ".PX."objects_prefs 
 	WHERE url = '$uri'
 	AND status = '1' 
 	AND object = obj_ref_type");
	// time to roll

	// messy, but seems to work

	// time for some action

	// makin' stuff happen

	// "I'm digging for fire" - Pixies

	// An MVC without the V. Or with a small v. ;)

	// TEMPORARY
	// referencing wonkiness
	// review when there is time
	$aINDX =& $INDX;
	#db.mysql.php
	function escape_str($str)
	{
	if (get_magic_quotes_gpc())
	{
	return $str;
	}
	//... alternatives..
	// if logging in
	if (isset($_POST['submitLogin']))
	{
	sleep(3); // obscure prevention of absuse

	$clean['userid'] = getPOST('uid', null, 'password', 12);
	$clean['password'] = md5(getPOST('pwd', null, 'password', 12));

	$this->prefs = $OBJ->db->selectArray(PX.'users', $clean, 'record');

	if ($this->prefs)
	{
	// create a new user hash upon login
	$temp['user_hash'] = md5(time() . $clean['password'] . 'secret');

	$OBJ->db->updateArray(PX.'users', $temp, "ID='".$this->prefs['ID']."'");

	setcookie('ndxz_hash', $temp['user_hash'], time()+3600242, '/');
	setcookie('ndxz_access', $clean['password'], time()+3600242, '/');

	$this->settings();
	return;
	}
	else
	{
	show_login('login err');
	}
	}
	// clean up the uri
	$uri = (MODREWRITE == false) ?
	str_replace('/index.php?', '', $_SERVER['REQUEST_URI']) :
	entry_uri($uri, $_SERVER['REQUEST_URI']);

	// TEMPORARY
	// what if it's more than one folder up?
	$uri = str_replace($self, '', $uri);

	$rs = $OBJ->db->fetchRecord("SELECT *
	FROM ".PX."objects, ".PX."objects_prefs
	WHERE url = '$uri'
	AND status = '1'
	AND object = obj_ref_type");