From 8ad97c4b627a7dbe945cbaa7586da187987ff491 Mon Sep 17 00:00:00 2001
From: thies <git@td00.de>
Date: Sun, 10 Jan 2021 19:04:01 +0100
Subject: [PATCH] using backgroundupdate

---
 adminarea_admins_give.php |  15 +----
 adminarea_admins_take.php |  16 +----
 adminarea_useradmin.php   |  14 +----
 index.html                | 123 +++-----------------------------------
 update.php                |  22 +------
 5 files changed, 12 insertions(+), 178 deletions(-)

diff --git a/adminarea_admins_give.php b/adminarea_admins_give.php
index e258c1d..6f95038 100644
--- a/adminarea_admins_give.php
+++ b/adminarea_admins_give.php
@@ -8,20 +8,7 @@
 <script src="ressources/js/bootstrap.min.js"></script>
 <?php
 session_start();
-include 'db.inc.php';
-$username = $_SESSION['username'];
-
-$statement = $pdo->prepare("SELECT * FROM users WHERE username = :username");
-$result = $statement->execute(array('username' => $username));
-$user = $statement->fetch();
-$_SESSION['userid'] = $user['id'];
-$_SESSION['email'] = $user['email'];
-$_SESSION['username'] = $user['username'];
-$_SESSION['givenName'] = $user['givenName'];
-$_SESSION['lastName'] = $user['lastName'];
-$_SESSION['activated'] = $user['activated'];
-$_SESSION['updated_at'] = $user['updated_at'];
-$_SESSION['isadmin'] = $user['isadmin'];
+include 'backgroundupdate.php';
 
 if($_SESSION['isadmin'] == 0) {
     die ('No rights for you! <meta http-equiv="refresh" content="0; URL=logout.php">');
diff --git a/adminarea_admins_take.php b/adminarea_admins_take.php
index ba1b036..2ad807b 100644
--- a/adminarea_admins_take.php
+++ b/adminarea_admins_take.php
@@ -8,21 +8,7 @@
 <script src="ressources/js/bootstrap.min.js"></script>
 <?php
 session_start();
-include 'db.inc.php';
-$username = $_SESSION['username'];
-
-$statement = $pdo->prepare("SELECT * FROM users WHERE username = :username");
-$result = $statement->execute(array('username' => $username));
-$user = $statement->fetch();
-$_SESSION['userid'] = $user['id'];
-$_SESSION['email'] = $user['email'];
-$_SESSION['username'] = $user['username'];
-$_SESSION['givenName'] = $user['givenName'];
-$_SESSION['lastName'] = $user['lastName'];
-$_SESSION['activated'] = $user['activated'];
-$_SESSION['updated_at'] = $user['updated_at'];
-$_SESSION['isadmin'] = $user['isadmin'];
-
+include 'backgroundupdate.php';
 if($_SESSION['isadmin'] == 0) {
     die ('No rights for you! <meta http-equiv="refresh" content="0; URL=logout.php">');
 }
diff --git a/adminarea_useradmin.php b/adminarea_useradmin.php
index 091085a..ea90687 100644
--- a/adminarea_useradmin.php
+++ b/adminarea_useradmin.php
@@ -8,20 +8,8 @@
 <script src="ressources/js/bootstrap.min.js"></script>
 <?php
 session_start();
-include 'db.inc.php';
-$username = $_SESSION['username'];
+include 'backgroundupdate.php';
 
-$statement = $pdo->prepare("SELECT * FROM users WHERE username = :username");
-$result = $statement->execute(array('username' => $username));
-$user = $statement->fetch();
-$_SESSION['userid'] = $user['id'];
-$_SESSION['email'] = $user['email'];
-$_SESSION['username'] = $user['username'];
-$_SESSION['givenName'] = $user['givenName'];
-$_SESSION['lastName'] = $user['lastName'];
-$_SESSION['activated'] = $user['activated'];
-$_SESSION['updated_at'] = $user['updated_at'];
-$_SESSION['isadmin'] = $user['isadmin'];
 
 if($_SESSION['isadmin'] == 0) {
     die ('No rights for you! <meta http-equiv="refresh" content="0; URL=logout.php">');
diff --git a/index.html b/index.html
index e87e68b..86f8951 100644
--- a/index.html
+++ b/index.html
@@ -1,118 +1,9 @@
+<html>
+<title>loginpagefoo - POC</title>
+<h1>This page uses cookies.</h1>
+<h2>By clicking "continue" you'll accept this fact.</h2>
+<h3>Please click <a href="https://thiesmueller.de/impress/">here (Impressum)</a> for the imprint and <a href="https://thiesmueller.de/dsgvo/datenschmutz.html">here (Datenschutz)</a> for the privacy policy.</h3>
 
-<!doctype html>
-<html lang="en">
-  <head>
-    <meta charset="utf-8">
-    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
-    <meta name="description" content="">
-    <meta name="author" content="">
+<a href="start.php"><h1>continue</h1></a>
 
-
-    <title>Login POC</title>
-
-
-    <link href="ressources/css/bootstrap.min.css" rel="stylesheet">
-    <link href="ressources/css/start.css" rel="stylesheet">
-  </head>
-
-  <body>
-
-    <div class="d-flex flex-column flex-md-row align-items-center p-3 px-md-4 mb-3 bg-white border-bottom box-shadow">
-      <h5 class="my-0 mr-md-auto font-weight-normal">Crappy Login POC</h5>
-      <nav class="my-2 my-md-0 mr-md-3">
-
-        <a class="p-2 text-dark" href="https://github.com/td00/loginpagefoo">Git</a>
-        <a class="p-2 text-dark" href="register.php">Register</a>
-      </nav>
-      <a class="btn btn-outline-primary" href="login.php">Sign In</a>
-    </div>
-
-    <div class="pricing-header px-3 py-3 pt-md-5 pb-md-4 mx-auto text-center">
-      <h1 class="display-4">loginpagefoo POC (PHP & MySQL)</h1>
-      <p class="lead">Just a crappy POC written in PHP using PHP, HTML & MySQL.</p>
-    </div>
-
-    <div class="container">
-      <div class="card-deck mb-3 text-center">
-        <div class="card mb-4 box-shadow">
-          <div class="card-header">
-            <h4 class="my-0 font-weight-normal">Register</h4>
-          </div>
-          <div class="card-body">
-            <ul class="list-unstyled mt-3 mb-4">
-              <li>If you don't have a user already.</li>
-            </ul>
-            <a href="register.php"><button type="button" class="btn btn-lg btn-block btn-primary">Sign up for free</button></a>
-          </div>
-        </div>
-        <div class="card mb-4 box-shadow">
-          <div class="card-header">
-            <h4 class="my-0 font-weight-normal">Login</h4>
-          </div>
-          <div class="card-body">
-            <ul class="list-unstyled mt-3 mb-4">
-              <li>If you want to access your profile</li>
-            </ul>
-            <a href="login.php"><button type="button" class="btn btn-lg btn-block btn-primary">Login</button></a>
-          </div>
-        </div>
-        <div class="card mb-4 box-shadow">
-          <div class="card-header">
-            <h4 class="my-0 font-weight-normal">Reset Password</h4>
-          </div>
-          <div class="card-body">
-              <ul class="list-unstyled mt-3 mb-4">
-              <li>When your login details went missing</li>
-            </ul>
-            <a href="forgotpass.php"<button type="button" class="btn btn-lg btn-block btn-outline-primary">Forgot Password</button></a>
-          </div>
-        </div>
-      </div>
-      <h1 class="display-4">This page is using cookies for the Session ID and information. If you continue to use the site, you'll accept this.</h1>
-      <footer class="pt-4 my-md-5 pt-md-5 border-top">
-        <div class="row">
-          <div class="col-12 col-md">
-            <img class="mb-2" src="https://web.td00.de/woddle.gif" alt="" >
-            <small class="d-block mb-3 text-muted">&copy; NO RIGHTS RESERVED! 2020</small>
-          </div>
-          <div class="col-6 col-md">
-            <h5>Features</h5>
-            <ul class="list-unstyled text-small">
-              <li><a class="text-muted" href="#">Password Login</a></li>
-              <li><a class="text-muted" href="#">PHP Session</a></li>
-              <li><a class="text-muted" href="#">Logout</a></li>
-              <li><a class="text-muted" href="#">Forget password</a></li>
-              <li><a class="text-muted" href="#">Password complexibility check</a></li>
-              <li><a class="text-muted" href="#">More to come</a></li>
-            </ul>
-          </div>
-      
-          <div class="col-6 col-md">
-            <h5>About</h5>
-            <ul class="list-unstyled text-small">
-              <li><a class="text-muted" href="https://thiesmueller.de">Me</a></li>
-              <li><a class="text-muted" href="https://github.com/td00/loginpagefoo">Git</a></li>
-              <li><a class="text-muted" href="https://thiesmueller.de/dsgvo/datenschmutz.html">Privacy</a></li>
-              <li><a class="text-muted" href="https://thiesmueller.de/impress/">Imprint</a></li>
-            </ul>
-          </div>
-        </div>
-      </footer>
-    </div>
-
-
-    <!-- Bootstrap core JavaScript
-    ================================================== -->
-    <!-- Placed at the end of the document so the pages load faster -->
-    <script src="https://code.jquery.com/jquery-3.2.1.slim.min.js" integrity="sha384-KJ3o2DKtIkvYIK3UENzmM7KCkRr/rE9/Qpg6aAZGJwFDMVNA/GpGFF93hXpG5KkN" crossorigin="anonymous"></script>
-    <script>window.jQuery || document.write('<script src="../../../../assets/js/vendor/jquery-slim.min.js"><\/script>')</script>
-    <script src="ressources/js/bootstrap.min.js"></script>
-    <script>
-      Holder.addTheme('thumb', {
-        bg: '#55595c',
-        fg: '#eceeef',
-        text: 'Thumbnail'
-      });
-    </script>
-  </body>
-</html>
+</html>
\ No newline at end of file
diff --git a/update.php b/update.php
index ac4c302..40c90b4 100644
--- a/update.php
+++ b/update.php
@@ -1,24 +1,6 @@
 <?php
-session_start();
-
-include 'db.inc.php';
-$username = $_SESSION['username'];
-
-$statement = $pdo->prepare("SELECT * FROM users WHERE username = :username");
-$result = $statement->execute(array('username' => $username));
-$user = $statement->fetch();
-$_SESSION['userid'] = $user['id'];
-$_SESSION['email'] = $user['email'];
-$_SESSION['username'] = $user['username'];
-$_SESSION['givenName'] = $user['givenName'];
-$_SESSION['lastName'] = $user['lastName'];
-$_SESSION['activated'] = $user['activated'];
-$_SESSION['updated_at'] = $user['updated_at'];
-$_SESSION['isadmin'] = $user['isadmin'];
-
-
-echo 'Session newly validated!<br />';
-
+include 'backgroundupdate.php';
+echo "freshly updated the session data<br />";
 if(isset($_GET['page'])) {
     echo "Going to ".$_GET['page'];
     echo '<meta http-equiv="refresh" content="0; URL='.$_GET['page'].'">';