www.webdeveloper.com
Results 1 to 2 of 2

Thread: Show captcha after 3 login attempts

  1. #1
    Join Date
    Jan 2007
    Posts
    69

    Show captcha after 3 login attempts

    I wrote a small PHP with SQLite script which stores the IP with counter, it works fine with one problem, If I enter the correct password 4th time the counter becomes 4 and I get the error to enter my captcha. All the other times, 1-3 and 5 and above count it just works fine. What am I doing wrong with the logic.

    Attaching the zip file with code.

    https://drive.google.com/file/d/0B_W...it?usp=sharing

  2. #2
    Join Date
    Jan 2007
    Posts
    69
    Forgot to add the code.

    PHP Code:
    <?php
    session_start
    ();

    $IPaddress $_SERVER["REMOTE_ADDR"];
    $mainpage "main.php";

    $dblogin = new PDO("sqlite:LoginAttempts.db");
    $CounterCheck $dblogin->query("SELECT IP, Counter FROM LoginAttempts WHERE IP = '$IPaddress'");
    $fields $CounterCheck->fetch(PDO::FETCH_ASSOC);

    if(isset(
    $_POST['submit']))
    {

    $error 0;
    $showcaptcha 0;
    $captchaerror 0;

    if (isset(
    $_POST['username']))
    {
    $username $_POST['username'];
    }
    if (isset(
    $_POST['password']))
    {
    $password $_POST['password'];
    }
    if (isset(
    $_POST['imagetext']))
    {
    $imagetext $_POST['imagetext'];
    }
    if(empty(
    $username)) {
    $username 1;
    }
    if(empty(
    $password)) {
    $password 1;
    }


    if(
    $fields['Counter'] < 3)
    {
    if(
    $username == "admin" && $password == "admin")
    {
        
    $_SESSION['logedin'] = 'success';
        
        
    // Redirect to the page
        
    header("Location: $mainpage");
        
    $dblogin->query("UPDATE LoginAttempts SET Counter = '0' WHERE IP = '$IPaddress'");
        exit();
    }
    else
    {
        
    $error == 1;
        
    $errormessage 'Invalid Username or Password';
        
    $UpdateAttempt $dblogin->query("UPDATE LoginAttempts SET Counter = Counter + 1 WHERE IP = '$IPaddress'");
        
    $Updatecount $UpdateAttempt->rowCount();
        if (
    $Updatecount == 0)
        {
        
    $dblogin->exec("INSERT INTO LoginAttempts (IP, Counter) VALUES('$IPaddress', '1')");
        }
    }
    }

    if(
    $fields['Counter'] >= 3)
    {
    // $showcaptcha = 1;
    if(empty($imagetext)) {
        
    $error 1;
        
    $captchaerror 1;
      } else {
        include 
    "captcha/securimage.php";
        
    $img = new Securimage();
        
    $valid $img->check($imagetext);

        if(!
    $valid) {
          
    $errormessagecaptcha "Invalid Captcha";
          
    $captchaerror 1;
        }
    }

    if(
    $captchaerror == 1)
    {
        
    $error == 1;
        
    $errormessagecaptcha 'Invalid Captcha';
        
    $UpdateAttempt $dblogin->query("UPDATE LoginAttempts SET Counter = Counter + 1 WHERE IP = '$IPaddress'");
        
    $Updatecount $UpdateAttempt->rowCount();
        if (
    $Updatecount == 0)
        {
        
    $dblogin->exec("INSERT INTO LoginAttempts (IP, Counter) VALUES('$IPaddress', '1')");
        }
    }
    else if(
    $username == "admin" && $password == "admin" && $captchaerror == 0)
    {
        
    $_SESSION['logedin'] = 'success';
        
        
    // Redirect to the page
        
    header("Location: $mainpage");
        
    $dblogin->query("UPDATE LoginAttempts SET Counter = '0' WHERE IP = '$IPaddress'");
        exit();
    }
    else
    {
        
    $error == 1;
        
    $errormessage 'Invalid Username or Password';
        
    $UpdateAttempt $dblogin->query("UPDATE LoginAttempts SET Counter = Counter + 1 WHERE IP = '$IPaddress'");
        
    $Updatecount $UpdateAttempt->rowCount();
        if (
    $Updatecount == 0)
        {
        
    $dblogin->exec("INSERT INTO LoginAttempts (IP, Counter) VALUES('$IPaddress', '1')");
        }
    }
    }
    }
    ?>

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
HTML5 Development Center

"

"

X vBulletin 4.2.2 Debug Information

  • Page Generation 0.16333 seconds
  • Memory Usage 2,898KB
  • Queries Executed 15 (?)
More Information
Template Usage (33):
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_global_above_footer
  • (1)ad_global_below_navbar
  • (1)ad_global_header1
  • (1)ad_global_header2
  • (1)ad_navbar_below
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)ad_thread_first_post_content
  • (1)ad_thread_last_post_content
  • (1)bbcode_php
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)headinclude_bottom
  • (2)memberaction_dropdown
  • (1)navbar
  • (4)navbar_link
  • (1)navbar_moderation
  • (1)navbar_noticebit
  • (1)navbar_tabs
  • (2)option
  • (2)postbit
  • (2)postbit_onlinestatus
  • (2)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available (6):
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files (26):
  • ./showthread.php
  • ./global.php
  • ./includes/class_bootstrap.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/functions_navigation.php
  • ./includes/class_friendly_url.php
  • ./includes/class_hook.php
  • ./includes/class_bootstrap_framework.php
  • ./vb/vb.php
  • ./vb/phrase.php
  • ./includes/functions_facebook.php
  • ./includes/functions_calendar.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_notice.php
  • ./packages/vbattach/attach.php
  • ./vb/types.php
  • ./vb/cache.php
  • ./vb/cache/db.php
  • ./vb/cache/observer/db.php
  • ./vb/cache/observer.php 

Hooks Called (72):
  • init_startup
  • friendlyurl_resolve_class
  • init_startup_session_setup_start
  • database_pre_fetch_array
  • database_post_fetch_array
  • init_startup_session_setup_complete
  • global_bootstrap_init_start
  • global_bootstrap_init_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • load_show_variables
  • load_forum_show_variables
  • global_state_check
  • global_bootstrap_complete
  • global_start
  • style_fetch
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • strip_bbcode
  • friendlyurl_clean_fragment
  • friendlyurl_geturl
  • forumjump
  • cache_templates
  • cache_templates_process
  • template_register_var
  • template_render_output
  • fetch_template_start
  • fetch_template_complete
  • parse_templates
  • fetch_musername
  • notices_check_start
  • notices_noticebit
  • process_templates_complete
  • friendlyurl_redirect_canonical
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • memberaction_dropdown
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • build_navigation_data
  • build_navigation_array
  • check_navigation_permission
  • process_navigation_links_start
  • process_navigation_links_complete
  • set_navigation_menu_element
  • build_navigation_menudata
  • build_navigation_listdata
  • build_navigation_list
  • set_navigation_tab_main
  • set_navigation_tab_fallback
  • navigation_tab_complete
  • fb_like_button
  • showthread_complete
  • page_templates