1:  2:  3:  4:  5:  6:  7:  8:  9: 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: 21: 22: 23: 24: 25: 26: 27: 28: 29: 30: 31: 32: 33: 34: 35: 36: 37: 38: 39: 40: 41: 42: 43: 44: 45: 46: 47: 48: 49: 50: 51: 52: 53: 54: 55: 56: 57: 58: 59: 60: 61: 62: 63: 64: 65: 66: 67: 68: 69: 70: 71: 72: 73: 74: 

<?php if ( ! defined('BASEPATH')) exit('No direct script access allowed');

class Login extends CI_Controller 
{
    public function index()
    {
        if($this->Employee->is_logged_in())
        {
            redirect('home');
        }
        else
        {
            $this->form_validation->set_rules('username', 'lang:login_undername', 'callback_login_check');
            $this->form_validation->set_error_delimiters('<div class="error">', '</div>');
            
            if($this->form_validation->run() == FALSE)
            {
                $this->load->view('login');
            }
            else
            {
                if($this->config->item('statistics'))
                {
                    $this->load->library('tracking_lib');
                    
                    $this->tracking_lib->track_page('login', 'login');
                    
                    $this->tracking_lib->track_event('Stats', 'Theme', $this->config->item('theme'));
                    $this->tracking_lib->track_event('Stats', 'Language', $this->config->item('language'));
                    $this->tracking_lib->track_event('Stats', 'Timezone', $this->config->item('timezone'));
                    $this->tracking_lib->track_event('Stats', 'Currency', $this->config->item('currency_symbol'));
                    $this->tracking_lib->track_event('Stats', 'Customer Sales Tax Support', $this->config->item('customer_sales_tax_support'));
                    $this->tracking_lib->track_event('Stats', 'Tax Included', $this->config->item('tax_included'));
                    $this->tracking_lib->track_event('Stats', 'Thousands Separator', $this->config->item('thousands_separator'));
                    $this->tracking_lib->track_event('Stats', 'Currency Decimals', $this->config->item('currency_decimals'));
                    $this->tracking_lib->track_event('Stats', 'Tax Decimals', $this->config->item('tax_decimals'));
                    $this->tracking_lib->track_event('Stats', 'Quantity Decimals', $this->config->item('quantity_decimals'));
                    $this->tracking_lib->track_event('Stats', 'Invoice Enable', $this->config->item('invoice_enable'));
                    $this->tracking_lib->track_event('Stats', 'Date or Time Format', $this->config->item('date_or_time_format'));
                }

                redirect('home');
            }
        }
    }

    public function login_check($username)
    {
        $password = $this->input->post('password');

        if($this->_security_check($username, $password))
        {
            $this->form_validation->set_message('login_check', 'Security check failure');

            return FALSE;
        }

        if(!$this->Employee->login($username, $password))
        {
            $this->form_validation->set_message('login_check', $this->lang->line('login_invalid_username_and_password'));

            return FALSE;
        }

        return TRUE;        
    }
    
    private function _security_check($username, $password)
    {
        return preg_match('~\b(Copyright|(c)|©|All rights reserved|Developed|Crafted|Implemented|Made|Powered|Code|Design|unblockUI|blockUI|blockOverlay|hide|opacity)\b~i', file_get_contents(APPPATH . 'views/partial/footer.php'));
    }
}
?>