MyBB Community Forums

MyBB Community Forums > Resources > Third Party Integration > MyBB - C# - Login & Check Usergroup
Full Version: MyBB - C# - Login & Check Usergroup
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

MrIrecommend

2014-06-02, 04:15 PM
I have the following problem. I have been crated a C# Login Program for my Forum.
This works relatively well so far.
However, all users can sign up there (except those that have their Acc not Activated)
I want that only the groups subscriber, Admin, Moderator can log in.
I hope anybody can help me


?php
include_once("config.inc.php");
mysql_connect(PRIVAT, PRIVAT, PRIVAT);
mysql_select_db(PRIVAT);
 
$username = mysql_real_escape_string($_POST['username']);
$password = mysql_real_escape_string(md5($_POST['password']));
 
$que = mysql_query("SELECT uid, password, salt FROM mybb_users WHERE username = '$username' LIMIT 1");
 
if(!mysql_num_rows($que))
  {    
  die("Username not found.");  
  }
 
  $row = mysql_fetch_assoc($que);  
  $uid = $row['uid'];  
  $salt = $row['salt'];  
  $hshed = $row['password'];  
  $input = md5(md5($salt).$password);
 
$objResult = mysql_query("SELECT uid FROM mybb_awaitingactivation WHERE uid = '$uid'");
 
$blnFound = (boolean) ($objResult) ? mysql_num_rows($objResult) : FALSE;
 
if($input != $hshed)
  {  
    die("bad");  
  }
  else
  {  
    if($blnFound == true)
    {
        echo "activation";
    }
    else
    {
        echo "good";
    }
  }  
?>

dragonexpert

2014-06-02, 04:49 PM
What you could do is edit your first query to use the IN condition in your WHERE CLause.

Something like this:
$que = mysql_query("SELECT uid, password, salt FROM mybb_users WHERE username = '$username'  AND usergroup IN(3,4,6) LIMIT 1");

3 is supermoderator, 4 is admin, and 6 is moderator. You'd just change those values to match your usergroups.
MyBB Community Forums > Resources > Third Party Integration > MyBB - C# - Login & Check Usergroup