/* Decoded by unphp.net */

echo '<!-- login.php -->


<meta name=\'og:title\' content=\'Login • Admin\'>
<meta name="description" content="Login | DLSystem">
<meta name="keywords" content="DLSystem">
<meta name="author" content="PvPMaster0001">
<meta name=\'copyright\' content=\'DLSystem\'>
';
include '../settings/config.php';
include '../settings/head_admin.php';
session_start();
require '../db_connection.php';
if (isset($_SESSION['user_id'])) {
header("Location: ".($phpenable === 'true'?$siteurl .$admin_directory .'.php': $siteurl .$admin_directory));
exit;
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$login = $_POST['login'];
$password = $_POST['password'];
$sql = "SELECT * FROM benutzer WHERE name = ?";
$stmt = $conn->prepare($sql);
$stmt->bind_param("s",$login);
$stmt->execute();
$result = $stmt->get_result();
if ($result->num_rows == 1) {
$user = $result->fetch_assoc();
if ($user['admin'] == 1) {
if (password_verify($password,$user['password'])) {
if ($user['gesperrt'] == 1) {
if (!empty($user['sperrgrund'])) {
$error_message = "Dieses Konto wurde von einem Administrator gesperrt. <br>Grund: ".$user['sperrgrund'];
}else {
$error_message = "Dieses Konto wurde von einem Administrator gesperrt.";
}
}else {
$error_message = "Erfolgreich angemeldet!";
echo '<center><div class="alert alert-success" role="alert"><h2><i class="fa-solid fa-circle-check"></i> Erfolgreich angemeldet!</h2></center>';
$_SESSION['user_id'] = $user['id'];
$ip_address = $_SERVER['REMOTE_ADDR'];
$login_status = 'erfolgreich';
$sql = "INSERT INTO login_history (user_id, login_time, ip_address, login_status) VALUES (?, NOW(), ?, ?)";
$stmt = $conn->prepare($sql);
$stmt->bind_param("iss",$user['id'],$ip_address,$login_status);
$stmt->execute();
sleep(2);
header("Location: ".($phpenable === 'true'?$siteurl .$admin_directory : $siteurl .$admin_directory));
exit;
}
}else {
$error_message = "Ungültige Anmeldeinformationen";
$ip_address = $_SERVER['REMOTE_ADDR'];
$login_status = 'abgelehnt';
$sql = "INSERT INTO login_history (user_id, login_time, ip_address, login_status) VALUES (?, NOW(), ?, ?)";
$stmt = $conn->prepare($sql);
$stmt->bind_param("iss",$user['id'],$ip_address,$login_status);
$stmt->execute();
}
}else {
$error_message = "Nur Administratoren können sich anmelden.";
}
}else {
$error_message = "Dieses Konto existiert nicht.";
}
}
;echo '
<title>Anmelden &mdash; Admin</title>

<body>
    <div class="container" style="max-width: 400px;">
        <br><br><br>

        <h1 class="text-center mt-5">Adminpanel</h1>

        ';
if ($error_message) {
echo '<div class="alert alert-danger"> '.$error_message .'</div>';
}
if (isset($_GET['reg'])) {
$reg = "Dein Account wurde erfolgreich erstellt.";
}
if ($reg) {
echo '<div class="alert alert-success"> '.$reg .'</div>';
}
;echo '
        <form action="login.php" method="post" class="mt-3">
            <div class="mb-3">
                <label for="login" class="form-label">Benutzername</label>
                <div class="input-group">
                    <span class="input-group-text" id="basic-addon1"><i class="fa-solid fa-user"></i> </span>
                    <input type="text" name="login" id="login" class="form-control" aria-describedby="basic-addon1"
                        required>
                </div>
            </div>

            <div class="mb-3">
                <label for="password" class="form-label">Passwort</label>
                <div class="input-group">
                    <span class="input-group-text" id="basic-addon1"><i class="fa-solid fa-key"></i> </span>
                    <input type="password" name="password" id="password" class="form-control"
                        aria-describedby="basic-addon1" required>
                </div>
            </div>
            <br>

            <center>
                <button id="loadBtn" type="submit" class="btn btn-primary">
                    <span class="spinner-border spinner-border-sm" role="status" aria-hidden="true"></span>
                    <span class="sr-only">Loading...</span>
                </button>
            </center>
        </form>
    </div>
    <script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.bundle.min.js?"></script>
</body>

</html>

<style>
    .btn-animated {
        background-color: #007bff;
        color: white;
        border: none;
        cursor: pointer;
    }
</style>

<script>
    document.getElementById(\'loadBtn\').disabled = true;

    setTimeout(() => {
        document.getElementById(\'loadBtn\').disabled = false;
        document.getElementById(\'loadBtn\').className = \'btn btn-animated btn-animated-x\';
        setTimeout(() => {
            document.getElementById(\'loadBtn\').className = \'btn btn-animated btn-primary btn-animated-x\';
            document.getElementById(\'loadBtn\').innerHTML = \'<span class="btn-inner--visible">Anmelden</span><span class="btn-inner--hidden"><i class="fa-solid fa-right-to-bracket"></i></span>\';
        }, 0); // 1000 Millisekunden = 1 Sekunde
    }, 1000); // 1000 Millisekunden = 1 Sekunde


</script>

';
include 'settings/footer.php';
;