Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

MASTER PASSWORD? CAN IT BE DONE


Nintendude

Recommended Posts

Hey guys this is my problem i found a similar post on oscommerce about this.

I want to add a master password so I can log in in case the customer has not finished checking out.

 

the info I found said :

 

In login.php find about line 35:

// Check that password is good 
if (!tep_validate_password($password, $check_customer['customers_password'])) {
       $error = true;
     } else {

Replace:

if (!tep_validate_password($password, $check_customer['customers_password'])) {
       $error = true;
     } else {

With:

$passwordgood = tep_validate_password($password, $check_customer['customers_password']); 

if ($password == "setpwdhere" || $password == "setpwdhere2") { 
$passwordgood = 1; 
} else { 
$passwordgood = $passwordgood; 
} 

if (!$passwordgood) { 
$error = true; 
} else {

 

When I try this it gives me an error stating a fatal error with function tep_validate_password

 

here is my login.php any ideas? Please Help!!

<?php

/*

 $Id: login.php,v 1.67 2002/06/16 18:01:08 harley_vb Exp $



 osCommerce, Open Source E-Commerce Solutions

 http://www.oscommerce.com



 Copyright (c) 2002 osCommerce



 Released under the GNU General Public License

*/



 require('includes/application_top.php');



 if ($HTTP_GET_VARS['action'] == 'process') {

   $email_address = tep_db_prepare_input($HTTP_POST_VARS['email_address']);

   $password = tep_db_prepare_input($HTTP_POST_VARS['password']);



// Check if email exists

   $check_customer_query = tep_db_query("select customers_id, customers_firstname, customers_password, customers_email_address, customers_default_address_id from " . TABLE_CUSTOMERS . " where customers_email_address = '" . tep_db_input($email_address) . "'");

   if (!tep_db_num_rows($check_customer_query)) {

     $HTTP_GET_VARS['login'] = 'fail';

   } else {

     $check_customer = tep_db_fetch_array($check_customer_query);

// Check that password is good

     if (!validate_password($password, $check_customer['customers_password'])) {

       $HTTP_GET_VARS['login'] = 'fail';

     } else {

       $check_country_query = tep_db_query("select entry_country_id, entry_zone_id from " . TABLE_ADDRESS_BOOK . " where customers_id = '" . $check_customer['customers_id'] . "' and address_book_id = '1'");

       $check_country = tep_db_fetch_array($check_country_query);



       $customer_id = $check_customer['customers_id'];

       $customer_default_address_id = $check_customer['customers_default_address_id'];

       $customer_first_name = $check_customer['customers_firstname'];

       $customer_country_id = $check_country['entry_country_id'];

       $customer_zone_id = $check_country['entry_zone_id'];

       tep_session_register('customer_id');

       tep_session_register('customer_default_address_id');

       tep_session_register('customer_first_name');

       tep_session_register('customer_country_id');

       tep_session_register('customer_zone_id');



       setcookie('email_address', $email_address, time()+2592000);

       setcookie('password', $password, time()+2592000);

       setcookie('first_name', $customer_first_name, time()+2592000);



       $date_now = date('Ymd');

       tep_db_query("update " . TABLE_CUSTOMERS_INFO . " set customers_info_date_of_last_logon = now(), customers_info_number_of_logons = customers_info_number_of_logons+1 where customers_info_id = '" . $customer_id . "'");



// restore cart contents

       $cart->restore_contents();



       if (sizeof($navigation->snapshot) > 0) {

         $origin_href = tep_href_link($navigation->snapshot['page'], tep_array_to_string($navigation->snapshot['get'], array(tep_session_name())), $navigation->snapshot['mode']);

         $navigation->clear_snapshot();

         tep_redirect($origin_href);

       } else {

         tep_redirect(tep_href_link(FILENAME_DEFAULT));

       }

     }

   }

 }



 require(DIR_WS_LANGUAGES . $language . '/' . FILENAME_LOGIN);

 $location = ' » <a href="' . tep_href_link(FILENAME_LOGIN, '', 'SSL') . '" class="headerNavigation">' . NAVBAR_TITLE . '</a>';

?>

<!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN">

<html <?php echo HTML_PARAMS; ?>>

<head>

<meta http-equiv="Content-Type" content="text/html; charset=<?php echo CHARSET; ?>">

<title><?php echo TITLE; ?></title>

<base href="<?php echo (getenv('HTTPS') == 'on' ? HTTPS_SERVER : HTTP_SERVER) . DIR_WS_CATALOG; ?>">

<link rel="stylesheet" type="text/css" href="stylesheet.css">

<script language="javascript"><!--

function session_win() {

 window.open("<?php echo FILENAME_INFO_SHOPPING_CART; ?>","info_shopping_cart","height=460,width=430,toolbar=no,statusbar=no,scrollbars=yes").focus();

}

//--></script>

</head>

<body marginwidth="0" marginheight="0" topmargin="0" bottommargin="0" leftmargin="0" rightmargin="0">

<!-- header //-->

<?php require(DIR_WS_INCLUDES . 'header.php'); ?>

<!-- header_eof //-->



<!-- body //-->

<table border="0" width="100%" cellspacing="3" cellpadding="3">

 <tr>

   <td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2">

<!-- left_navigation //-->

<?php require(DIR_WS_INCLUDES . 'column_left.php'); ?>

<!-- left_navigation_eof //-->

   </table></td>

<!-- body_text //-->

   <td width="100%" valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="0">

     <tr>

       <td><table border="0" width="100%" cellspacing="0" cellpadding="0">

         <tr>

           <td class="pageHeading"><?php echo HEADING_TITLE; ?></td>

           <td rowspan="2" class="pageHeading" align="right"><?php echo tep_image(DIR_WS_IMAGES . 'table_background_login.gif', HEADING_TITLE, HEADING_IMAGE_WIDTH, HEADING_IMAGE_HEIGHT); ?></td>

         </tr>

       </table></td>

     </tr>

     <tr>

       <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

     </tr>

<?php

 if ($HTTP_GET_VARS['login'] == 'fail') {

   $info_message = TEXT_LOGIN_ERROR;

 } elseif ($cart->count_contents()) {

   $info_message = TEXT_VISITORS_CART;

 }



 if (isset($info_message)) {

?>

     <tr>

       <td class="smallText"><?php echo $info_message; ?></td>

     </tr>

     <tr>

       <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

     </tr>

<?php

 }

?>

     <tr>

       <td><?php echo tep_draw_form('login', tep_href_link(FILENAME_LOGIN, 'action=process', 'SSL')); ?><table border="0" width="100%" cellspacing="0" cellpadding="2">

         <tr>

           <td class="main" width="50%" valign="top"><b><?php echo HEADING_NEW_CUSTOMER; ?></b></td>

           <td class="main" width="50%" valign="top"><b><?php echo HEADING_RETURNING_CUSTOMER; ?></b></td>

         </tr>

         <tr>

           <td width="50%" height="100%" valign="top"><table border="0" width="100%" height="100%" cellspacing="0" cellpadding="1" class="infoBox">

             <tr>

               <td><table border="0" width="100%" height="100%" cellspacing="0" cellpadding="2" class="infoBoxContents">

                 <tr>

                   <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

                 </tr>

                 <tr>

                   <td class="main" valign="top"><?php echo TEXT_NEW_CUSTOMER . '<br><br>' . TEXT_NEW_CUSTOMER_INTRODUCTION; ?></td>

                 </tr>

                 <tr>

                   <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

                 </tr>

               </table></td>

             </tr>

           </table></td>

           <td width="50%" height="100%" valign="top"><table border="0" width="100%" height="100%" cellspacing="0" cellpadding="1" class="infoBox">

             <tr>

               <td><table border="0" width="100%" height="100%" cellspacing="0" cellpadding="2" class="infoBoxContents"

                 <tr>

                   <td colspan="2"><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

                 </tr>

                 <tr>

                   <td class="main" colspan="2"><?php echo TEXT_RETURNING_CUSTOMER; ?></td>

                 </tr>

                 <tr>

                   <td colspan="2"><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

                 </tr>

                 <tr>

                   <td class="main"><b><?php echo ENTRY_EMAIL_ADDRESS; ?></b></td>

                   <td class="main"><?php echo tep_draw_input_field('email_address'); ?></td>

                 </tr>

                 <tr>

                   <td class="main"><b><?php echo ENTRY_PASSWORD; ?></b></td>

                   <td class="main"><?php echo tep_draw_password_field('password'); ?></td>

                 </tr>

                 <tr>

                   <td colspan="2"><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

                 </tr>

                 <tr>

                   <td class="smallText" colspan="2"><?php echo '<a href="' . tep_href_link(FILENAME_PASSWORD_FORGOTTEN, '', 'SSL') . '">' . TEXT_PASSWORD_FORGOTTEN . '</a>'; ?></td>

                 </tr>

                 <tr>

                   <td colspan="2"><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>

                 </tr>

               </table></td>

             </tr>

           </table></td>

         </tr>

         <tr>

           <td width="50%" align="right" valign="top"><?php echo '<a href="' . tep_href_link(FILENAME_CREATE_ACCOUNT, '', 'SSL') . '">' . tep_image_button('button_continue.gif', IMAGE_BUTTON_CONTINUE) . '</a>'; ?></td>

           <td width="50%" align="right" valign="top"><?php echo tep_image_submit('button_login.gif', IMAGE_BUTTON_LOGIN); ?></td>

         </tr>

       </table></form></td>

     </tr>

   </table></td>

<!-- body_text_eof //-->

   <td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2">

<!-- right_navigation //-->

<?php require(DIR_WS_INCLUDES . 'column_right.php'); ?>

<!-- right_navigation_eof //-->

   </table></td>

 </tr>

</table>

<!-- body_eof //-->



<!-- footer //-->

<?php require(DIR_WS_INCLUDES . 'footer.php'); ?>

<!-- footer_eof //-->

<br>

</body>

</html>

<?php require(DIR_WS_INCLUDES . 'application_bottom.php'); ?>

 

What am i doing wrong? Please note I have not changed this file.

Please help so I can finish this already!!

Link to comment
Share on other sites

It looks like you have any old version login.php but it can still be changed.

Keep a copy in case this doesn't work. I haven't tested it so it may parse error out with the additional () etc.

 

Try changing this

// Check that password is good

 

    if (!validate_password($password, $check_customer['customers_password'])) {

 

to

 

// Check that password is good or my secret MASTER MS1 password

 

    if ( (!validate_password($password, $check_customer['customers_password']) && ($check_customer['customers_password'] != "masterpasswd") )) {

 

HTH

Tom

Link to comment
Share on other sites

Ooops

 

// Check that password is good or my secret MASTER MS1 password

 

if ( (!validate_password($password, $check_customer['customers_password']) && ($check_customer['customers_password'] != "masterpasswd") )) {

 

should have been

 

// Check that password is good or my secret MASTER MS1 password

 

if ( (!validate_password($password, $check_customer['customers_password']) && ($password != "masterpasswd") )) {

 

Sorry bout that.....

Link to comment
Share on other sites

Thanks Tom!!!

 

It worked like a charm!! You are the man!! :D

 

I wish everyone helped me this way, now if only i could figure out the comments problem I'm having and I'd be in heaven.

Please help so I can finish this already!!

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...