<?

###############################################################################

# PROGRAM     : PAYMENT PROCESSOR SCRIPT                                      #

# COPYRIGHTS  : (C)2014 PAYMENTPROCESSORSCRIPT.NET. ALL RIGHTS RESERVED       #

###############################################################################

#               	     DEVELOPED BY PAYMENTPROCESSORSCRIPT.NET              #

###############################################################################

#    ALL SOURCE CODE, IMAGES, PROGRAMS, FILES INCLUDED IN THIS DISTRIBUTION   #

#    COPYRIGHTS BY (C)2014 PAYMENTPROCESSORSCRIPT.NET. ALL RIGHTS RESERVDED   #

###############################################################################

#     ANY REDISTRIBUTION WITHOUT PERMISSION OF PAYMENTPROCESSORSCRIPT.NET     #

#                             AND IS STRICTLY FORBIDDEN                       #

###############################################################################

$data['PageName']='MEMBER LOGIN';

$data['PageFile']='login';

###############################################################################

include('../config.htm');

include('../autoload.php');


###############################################################################

if(!$_SESSION['attempts'])$_SESSION['attempts']=0;

###############################################################################


if(isset($_SESSION['login']) && isset($_SESSION['uid'])) {

header("Location:{$data['Host']}/members/deposit.htm");

 } else {

if($post['send']){

   if($_SESSION['attempts']<$data['PassAtt']-1){        

         if($data['UseRecaptcha']){

              if (isset($_POST['g-recaptcha-response'])) {

                  
      $ch = curl_init();
        curl_setopt($ch, CURLOPT_URL, "https://www.google.com/recaptcha/api/siteverify");
        curl_setopt($ch, CURLOPT_HEADER, 'Content-Type: application/json');
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); 
        curl_setopt($ch, CURLOPT_POST, 1);
        curl_setopt($ch, CURLOPT_POSTFIELDS, array(
            'secret' => $data['PrivateKey'],
            'response' => $_POST['g-recaptcha-response'],
            'remoteip' => $_SERVER['REMOTE_ADDR']
        )
                   );

        $resp = json_decode(curl_exec($ch));
        curl_close($ch);
       

            }

          }


       if(!$post['username']){

                $data['Error']='Your username can not be empty.';

        }elseif(!$post['password']){

                $data['Error']='Your password can not be empty.';

        }elseif(!is_member_active($post['username'])){

                $data['Error']='This member was not found in the system. Or is inactive, banned or closed.';

        }elseif(!is_member_found($post['username'], $post['password'])){

           $data['Error']='You have entered a wrong username or password.';

        }elseif($data['UseRecaptcha'] && !$resp->success) {

                  $data['Error']='Enter Correct Captcha';                     

        }else{	      

                unset($_SESSION['attempts']);

		$_SESSION['uid']=get_member_id($post['username'], $post['password']);

		$_SESSION['login']=true;

		set_last_access($post['username']);

		save_remote_ip((int)$_SESSION['uid'], $_SERVER["REMOTE_ADDR"]);

		header("Location:{$data['Host']}/members/index.htm");

		echo('ACCESS DENIED.');

		exit;              

        }

        (int)$_SESSION['attempts']++;

   }else{

      unset($_SESSION['attempts']);

      $data['CantLogin']=true;

   }

}

$data['attempts']=$_SESSION['attempts'];}

###############################################################################

display('members');

###############################################################################

?>