session_start();
date_default_timezone_set('Asia/Hong_Kong');
$forumuser = "";
$secured = 0;
require_once 'forum/config.inc.php';

if(!is_null($_SESSION['username']) & !is_null($_COOKIE[$cookiepre.'auth']))	{
	$forumuser = $_SESSION['username'];
	$secured = 1;	
}
else{
	unset($_SESSION);
}
if(is_null($_SESSION['username']) & !is_null($_COOKIE[$cookiepre.'auth']))	{
	$auth = $_COOKIE[$cookiepre.'auth'];

	if(!is_null($_COOKIE[$cookiepre.'sid']))	{
		$sid = $_COOKIE[$cookiepre.'sid'];
		$db=mysql_connect($dbhost,$dbuser,$dbpw);
		mysql_select_db($dbname);
		mysql_query("SET NAMES utf8");
		$sql="Select * from `".$tablepre."sessions` where sid='".$sid."' Limit 1";
		$rs = mysql_query($sql,$db);
		$row = mysql_fetch_array($rs);
		mysql_free_result($rs);
		$sql="Select * from `".$tablepre."settings` where variable='authkey' Limit 1";
		$rs = mysql_query($sql,$db);
		$authkey = mysql_fetch_array($rs);
		mysql_free_result($rs);
		$authkey = $authkey["value"];
		$discuz_auth_key = md5($authkey.$_SERVER['HTTP_USER_AGENT']);
		if(isset($row))	{
			list($C_discuz_pw, $C_discuz_secques, $C_discuz_uid) = empty($auth) ? array('', '', 0) : daddslashes(explode("\t", authcode($auth, 'DECODE')), 1);
#			echo $C_discuz_pw."<br>".$C_discuz_secques."<br>".$C_discuz_uid;
			$sql="Select * from `".$tablepre."members` where uid='".$C_discuz_uid."' Limit 1";
			$rs = mysql_query($sql,$db);
			$userdata = mysql_fetch_array($rs);
			mysql_free_result($rs);
			if($userdata['username'] == $row['username'] & $C_discuz_pw == $userdata['password'] & $C_discuz_uid == $row['uid'] & $C_discuz_secques == $userdata['secques']){
				$forumuser = $userdata['username'];
				$secured = 1;
				$_SESSION['username'] = $forumuser;
				}
			}
		else	{
			$db=mysql_connect($dbhost,$dbuser,$dbpw);
			mysql_select_db($dbname);
			mysql_query("SET NAMES utf8");
			$sql="Select * from `".$tablepre."settings` where variable='authkey' Limit 1";
			$rs = mysql_query($sql,$db);
			$authkey = mysql_fetch_array($rs);
			mysql_free_result($rs);
			$authkey = $authkey["value"];
			$discuz_auth_key = md5($authkey.$_SERVER['HTTP_USER_AGENT']);
			list($C_discuz_pw, $C_discuz_secques, $C_discuz_uid) = empty($auth) ? array('', '', 0) : daddslashes(explode("\t", authcode($auth, 'DECODE')), 1);
			$sql="Select * from `".$tablepre."members` where uid='".$C_discuz_uid."' Limit 1";
			$rs = mysql_query($sql,$db);
			$userdata = mysql_fetch_array($rs);
			mysql_free_result($rs);
			if($C_discuz_pw == $userdata['password'] & $C_discuz_secques == $userdata['secques']){
				$forumuser = $userdata['username'];
				}
			}
		}
	else	{
		$db=mysql_connect($dbhost,$dbuser,$dbpw);
		mysql_select_db($dbname);
		mysql_query("SET NAMES utf8");
		$sql="Select * from `".$tablepre."settings` where variable='authkey' Limit 1";
		$rs = mysql_query($sql,$db);
		$authkey = mysql_fetch_array($rs);
		mysql_free_result($rs);
		$authkey = $authkey["value"];
		$discuz_auth_key = md5($authkey.$_SERVER['HTTP_USER_AGENT']);
		list($C_discuz_pw, $C_discuz_secques, $C_discuz_uid) = empty($auth) ? array('', '', 0) : daddslashes(explode("\t", authcode($auth, 'DECODE')), 1);
		$sql="Select * from `".$tablepre."members` where uid='".$C_discuz_uid."' Limit 1";
		$rs = mysql_query($sql,$db);
		$userdata = mysql_fetch_array($rs);
		mysql_free_result($rs);
		if($C_discuz_pw == $userdata['password'] & $C_discuz_secques == $userdata['secques']){
			$forumuser = $userdata['username'];
			}
		}
	}
header('Content-Type: text/html; charset=utf-8');
if($forumuser == ""){
	echo "Login";
	}
else{
	echo "Welcome back, ";
	if($secured == 0){
		echo $forumuser."(not verified)";
	}
	else{
		echo $forumuser;
		}
	}



###################################################
#         Functions from Discuz 6.0.0             #
###################################################

function daddslashes($string, $force = 0) {
	!defined('MAGIC_QUOTES_GPC') && define('MAGIC_QUOTES_GPC', get_magic_quotes_gpc());
	if(!MAGIC_QUOTES_GPC || $force) {
		if(is_array($string)) {
			foreach($string as $key => $val) {
				$string[$key] = daddslashes($val, $force);
			}
		} else {
			$string = addslashes($string);
		}
	}
	return $string;
}

function authcode($string, $operation, $key = '') {

	$key = md5($key ? $key : $GLOBALS['discuz_auth_key']);
	$key_length = strlen($key);

	$string = $operation == 'DECODE' ? base64_decode($string) : substr(md5($string.$key), 0, 8).$string;
	$string_length = strlen($string);

	$rndkey = $box = array();
	$result = '';

	for($i = 0; $i <= 255; $i++) {
		$rndkey[$i] = ord($key[$i % $key_length]);
		$box[$i] = $i;
	}

	for($j = $i = 0; $i < 256; $i++) {
		$j = ($j + $box[$i] + $rndkey[$i]) % 256;
		$tmp = $box[$i];
		$box[$i] = $box[$j];
		$box[$j] = $tmp;
	}

	for($a = $j = $i = 0; $i < $string_length; $i++) {
		$a = ($a + 1) % 256;
		$j = ($j + $box[$a]) % 256;
		$tmp = $box[$a];
		$box[$a] = $box[$j];
		$box[$j] = $tmp;
		$result .= chr(ord($string[$i]) ^ ($box[($box[$a] + $box[$j]) % 256]));
	}

	if($operation == 'DECODE') {
		if(substr($result, 0, 8) == substr(md5(substr($result, 8).$key), 0, 8)) {
			return substr($result, 8);
		} else {
			return '';
		}
	} else {
		return str_replace('=', '', base64_encode($result));
	}

}

###################################################
#                 End of Functions                #
###################################################