C:/usr/local/lib/php/blueshoes-4.2/core/auth/cug/Bs_CugDb.class.phpandrej arn <andrej at blueshoes dot org>This is a subclass of Bs_Cug and customized for the use with a database.It's tested and developed for use with MySql as DB. If you want an other DB, you may needto add code or subclass this one.Your users are organized in a DB table. Give the table name and maybe the db namein the vars $userDbName and $userTableName.The structure of that table needs to have the following fields:'user''pass'It *may* have the following 'lifecycle' fields'isActive''startDatetime''endDatetime'It's a good idea to have the 'ID' field as well and it may have any other fields.If all the lifecycle fields are there, they will be used.NOTE: Times are written in GMT, not in any local or server time.Features: (mostly not available in Bs_Cug, only in Bs_CugDb)- hack detection- anti hack mechanism- account lifecycle- automatic password recovery using username/email (todo)- logging (with automatic db-table generation)-Example user-db-table:CREATE TABLE CugSomething (ID INT UNSIGNED NOT NULL AUTO_INCREMENT DEFAULT 0,user VARCHAR(20) NOT NULL DEFAULT '',pass VARCHAR(20) NOT NULL DEFAULT '',isActive TINYINT NOT NULL DEFAULT 0,startDatetime DATETIME NOT NULL DEFAULT '0000-00-00 00:00:00',endDatetime DATETIME NOT NULL DEFAULT '0000-00-00 00:00:00',PRIMARY KEY ID (ID),KEY user (user));dependencies: Bs_Cug, Bs_MySqlCUG Class using a database. Extended from Bs_Cug, look there too.4.0.$id$blueshoes.orgConstructor.the global bsdb object that may be set in the constructor won't be used anymore.sets a db object for this class. (see above)returns boolean that tells if login was ok. sets $this->errorMsg.*important*: to stop hacks we are doing 2 things here:1) log everything2) unix-like timeout on failed logins.for this to work, we/you may *not* spit out any htmlto the client before this method is run. if you send outsome tags, then timeout 10 seconds, the hacker doesn't needto wait. he already knows after the first few tags that hislogin failed.note: usernames need to be unique in the database, and there may not be twowith the same letters but different case. otherwise the 2nd user maynot log in. you would notice that quite fast :)could be coded differently, but i don't feel like doing it.validates the login.overwrites parent method.params: same as in Bs_Cug->_prepareLogData() so look there.that function is used here.logs the login attempt if needed. (TRUE if table was ok, FALSE if changes have/had to be made.)bs_exceptionthis is needed if an operation on it failed. maybe the table structure isnot up-to-date or does not exist at all.the needed changes will be made automatically. note that your user needsthe appropriate rights (alter, create, index...)hint: first try your query, if it fails check the table using this method.if this method returns FALSE then try your query again.checks if the log db table is ok.(one of 'user' (default) or 'log'.)bool FALSE (if the appropriate table name is not set or empty.)example: "dbname.dbtable" if logDbName/userDbName is set,"dbtable" if not.returns the dbname-dbtable string to use in queries. (number of failed logins in a row for that user. returns int 0 if we dunno.)bs_exception @2do finish code. moved here temporarily. timeout etc does not belong here.tells how many times this user failed to login in a row.(default is TRUE, tells if the new password should be mailed to the user automatically.)if that's desired (see param $automail).resets the users password to a newly created one, and mails it to the userrefenrece to global main db connection (see constructor).$userTableNamethe db of the user table.$userDbNamethe db table where the users are.$logTableNamethe db of the log table.$logDbNamea hack attempt. (history)the db table to log to. is also used to determine if it's4.0.$x$bs_cugletmeinlogoutgetloginformtreatloginformredirect_validatelogindatalookslikehack_preparelogdata_hackalert_timeoutonloginfailure_loadloginformisexisexceptiontostringtohtmlpersistunpersistbs_objectbbsetoutputbbawakebbisawakebbxmsgbbxfunctionstartbbxfunctionendbbxechobbxvarbbxvardumpbbforcetracebbbufferstartbbbuffergetbbbufferendflushbbbufferendclean$_app$form$bssession$_postvars$_cugname$redirectpage$formtarget$language$maxnumattempts$checkforhack$actiononhack$logattempts$checkcasesensitive$userfieldnames$errormsgbs_cug_versionbs_object_versionBs_CugBs_ObjectBs_Object