From 5dd7dd67d676093aecad9e23fdd50ad05cfe52c9 Mon Sep 17 00:00:00 2001
From: Squidly271 <azawadzki@arrowgames.com>
Date: Thu, 10 Oct 2019 09:11:48 -0400
Subject: [PATCH] Log webUI login attempts

Maybe I'm just paranoid, but with ports open, a reverse proxy thru unraid.net, I wouldn't mind seeing any and all login attempts to the server
---
 login.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/login.php b/login.php
index 6a53139b2..2ba5e5303 100644
--- a/login.php
+++ b/login.php
@@ -27,6 +27,7 @@ if ($_SERVER['REQUEST_URI'] == '/logout') {
             $_SESSION['unraid_user'] = $_POST['username'];
             session_regenerate_id();
             session_write_close();
+            exec("logger ".escapeshellarg("WebUI: Successful login user {$_POST['username']} from {$_SERVER['REMOTE_ADDR']}"));        
             header("Location: /".$var['START_PAGE']);
             exit;
         }
@@ -34,6 +35,7 @@ if ($_SERVER['REQUEST_URI'] == '/logout') {
 
     // Invalid login
     $error = 'Invalid Username or Password';
+    exec("logger ".escapeshellarg("WebUI: Unsuccessful login user {$_POST['username']} from {$_SERVER['REMOTE_ADDR']}"));
 }
 
 session_write_close();