test

171cae6c · Nico Schallehn · a7706f01 · 171cae6c
Commit 171cae6c authored Feb 13, 2016 by Nico Schallehn
Hide whitespace changes
Inline Side-by-side

Showing with 12 additions and 6 deletions

index.php index.php +12 -6

No files found.
--- a/index.php
+++ b/index.php
@@ -3,13 +3,19 @@ include ("./api.class.php");
 if (isset ( $_POST ["anmelden"] )) {
 	$API = new MediaDBAPI ();
 	if ($API->APIinit($_POST["api-key"])) {
-		$ErrorBox = '<div class="alert alert-success">' . PHP_EOL . '<strong>Fehler!</strong> Alles Gut!' . PHP_EOL . '</div>' . PHP_EOL;
-		// Session Start bzw. Cookie setzen!!
-		$_SESSION['api-key'] = $_POST["api-key"];
-		if(isset($_POST['angemeldetbleiben'])){
-			setcookie ("api-key", $_POST["api-key"], time() + 3*24*3600);
-			setcookie ("api-secret", md5($_SERVER['HTTP_USER_AGENT'].$_SERVER['REMOTE_ADDR']), time() + 3*24*3600);
+		if($API->API_GetRightsLevel()>=10){
+			//$ErrorBox = '<div class="alert alert-success">' . PHP_EOL . '<strong>Fehler!</strong> Alles Gut!' . PHP_EOL . '</div>' . PHP_EOL;
+			// Session Start bzw. Cookie setzen!!
+			$_SESSION['api-key'] = $_POST["api-key"];
+			if(isset($_POST['angemeldetbleiben'])){
+				setcookie ("api-key", $_POST["api-key"], time() + 3*24*3600);
+				setcookie ("api-secret", md5($_SERVER['HTTP_USER_AGENT'].$_SERVER['REMOTE_ADDR']), time() + 3*24*3600);
+			}
+		}else {
+			$FehlerArray = $API->error ( 1007 );
+			$ErrorBox = '<div class="alert alert-danger">' . PHP_EOL . '<strong>Fehler ' . $FehlerArray ["FehlerID"] . '!</strong> ' . $FehlerArray ["FehlerText"] . PHP_EOL . '</div>' . PHP_EOL;
 		}
+		
 	} else {
 		$FehlerArray = $API->error ( 1002 );
 		$ErrorBox = '<div class="alert alert-danger">' . PHP_EOL . '<strong>Fehler ' . $FehlerArray ["FehlerID"] . '!</strong> ' . $FehlerArray ["FehlerText"] . PHP_EOL . '</div>' . PHP_EOL;