<?php

/*
|--------------------------------------------------------------------------
| Controller
|--------------------------------------------------------------------------
|
*/

$do = isset($routes['1']) ? $routes['1'] : 'login-display';
switch($do){
    case 'post':
        $username = _post('username');
        $password = _post('password');
        if($username != '' && $password != ''){
            $d = ORM::for_table('sys_users')->where('username',$username)->first();
            if($d){
                $d_pass = $d['password'];
                if(Password::_verify($password,$d_pass) == true){
                    //Now check if OTP is enabled
                    if($d['otp'] == 'Yes'){
                        Otp::make($d['id']);
                        $_SESSION['tuid'] = $d['id'];

                        r2(U.'otp');
                    }
                    else{
                        $_SESSION['uid'] = $d['id'];
                        $d->last_login = date('Y-m-d H:i:s');
                        $d->save();
                        r2(U.$config['redirect_url']);
                    }

                }
                else{
                    _msglog('e','Invalid Username or Password');

                    r2(U.'login');
                }
            }
            else{

                _msglog('e','Invalid Username or Password');

                r2(U.'login');
            }
        }

        else{
            _msglog('e','Invalid Username or Password');

            r2(U.'login');
        }


        break;

    case 'login-display':
        $ui->display('login.tpl');
        break;

    default:
        $ui->display('login.tpl');
        break;
}

• [D] default
• [F] accounts.php
  Delete
• [F] admin.php
  Delete
• [F] ai.php
  Delete
• [F] ajax.date-summary.php
  Delete
• [F] ajax.expense-calendar.php
  Delete
• [F] ajax.income-calendar.php
  Delete
• [F] api.php
  Delete
• [F] app_store.php
  Delete
• [F] appearance.php
  Delete
• [F] assets.php
  Delete
• [F] autologin.php
  Delete
• [F] calendar.php
  Delete
• [F] cart.php
  Delete
• [F] client.php
  Delete
• [F] clientapi.php
  Delete
• [F] cms.php
  Delete
• [F] contacts.php
  Delete
• [F] contracts.php
  Delete
• [F] cp.php
  Delete
• [F] customers.php
  Delete
• [F] dashboard-alt.php
  Delete
• [F] dashboard.php
  Delete
• [F] default.php
  Delete
• [F] delete.php
  Delete
• [F] documents.php
  Delete
• [F] editor.php
  Delete
• [F] end_users.php
  Delete
• [F] export.php
  Delete
• [F] files.php
  Delete
• [F] form.php
  Delete
• [F] generate.php
  Delete
• [F] handler.php
  Delete
• [F] help.php
  Delete
• [F] hrm.php
  Delete
• [F] index.html
  Delete
• [F] inventory.php
  Delete
• [F] invoices.php
  Delete
• [F] item.php
  Delete
• [F] items.php
  Delete
• [F] iview.php
  Delete
• [F] json.php
  Delete
• [F] kb.php
  Delete
• [F] leads.php
  Delete
• [F] login.php
  Delete
• [F] logout.php
  Delete
• [F] media.php
  Delete
• [F] orders.php
  Delete
• [F] password_manager.php
  Delete
• [F] plugins.php
  Delete
• [F] print.php
  Delete
• [F] profile.php
  Delete
• [F] projects.php
  Delete
• [F] ps.php
  Delete
• [F] purchases.php
  Delete
• [F] quotes.php
  Delete
• [F] reorder.php
  Delete
• [F] reports.php
  Delete
• [F] sales.php
  Delete
• [F] schema-updates.php
  Delete
• [F] search.php
  Delete
• [F] settings.php
  Delete
• [F] sms.php
  Delete
• [F] subscriptions.php
  Delete
• [F] supplier.php
  Delete
• [F] suppliers.php
  Delete
• [F] sys_imgcrop.php
  Delete
• [F] tags.php
  Delete
• [F] tasks.php
  Delete
• [F] tax.php
  Delete
• [F] tickets.php
  Delete
• [F] transactions.php
  Delete
• [F] updating.php
  Delete
• [F] util.php
  Delete
• [F] webhook.php
  Delete