2000-08-18 05:24:22 +02:00
|
|
|
<?php
|
2001-02-27 13:49:10 +01:00
|
|
|
/**************************************************************************\
|
|
|
|
|
* phpGroupWare *
|
|
|
|
|
* http://www.phpgroupware.org *
|
|
|
|
|
* Written by Dan Kuykendall <seek3r@phpgroupware.org> *
|
|
|
|
|
* Joseph Engo <jengo@phpgroupware.org> *
|
|
|
|
|
* -------------------------------------------- *
|
|
|
|
|
* This program is free software; you can redistribute it and/or modify it *
|
|
|
|
|
* under the terms of the GNU General Public License as published by the *
|
|
|
|
|
* Free Software Foundation; either version 2 of the License, or (at your *
|
|
|
|
|
* option) any later version. *
|
|
|
|
|
\**************************************************************************/
|
|
|
|
|
/* $Id$ */
|
|
|
|
|
|
2001-12-05 17:00:39 +01:00
|
|
|
$phpgw_info = array();
|
2002-10-18 23:45:46 +02:00
|
|
|
$GLOBALS['phpgw_info']['flags'] = array
|
|
|
|
|
(
|
2002-10-19 16:33:32 +02:00
|
|
|
'login' => True,
|
|
|
|
|
'currentapp' => 'login',
|
|
|
|
|
'noheader' => True,
|
|
|
|
|
'nodisplay' => True
|
2001-02-27 13:49:10 +01:00
|
|
|
);
|
|
|
|
|
|
2002-02-17 09:07:38 +01:00
|
|
|
if(file_exists('./header.inc.php'))
|
|
|
|
|
{
|
|
|
|
|
include('./header.inc.php');
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
Header('Location: setup/index.php');
|
|
|
|
|
exit;
|
|
|
|
|
}
|
2002-10-18 23:45:46 +02:00
|
|
|
|
2001-11-23 22:04:06 +01:00
|
|
|
$GLOBALS['phpgw_info']['server']['template_dir'] = PHPGW_SERVER_ROOT . '/phpgwapi/templates/' . $GLOBALS['phpgw_info']['login_template_set'];
|
2002-10-18 23:45:46 +02:00
|
|
|
|
2002-10-18 02:21:54 +02:00
|
|
|
$GLOBALS['phpgw']->xslttpl = CreateObject('phpgwapi.xslttemplates',$GLOBALS['phpgw_info']['server']['template_dir']);
|
2002-10-18 23:45:46 +02:00
|
|
|
$GLOBALS['phpgw']->xslttpl->add_file(array('login'));
|
|
|
|
|
|
|
|
|
|
$data = array
|
|
|
|
|
(
|
|
|
|
|
'login_theme' => 'phpgwapi/templates/' . $GLOBALS['phpgw_info']['login_template_set'] . '/css/submarine.css',
|
|
|
|
|
'phpgw_head_charset' => lang('charset'),
|
|
|
|
|
'phpgw_head_website_title' => $GLOBALS['phpgw_info']['server']['site_title']
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$data['login_standard'] = array
|
|
|
|
|
(
|
|
|
|
|
'login_layout' => $GLOBALS['phpgw_info']['login_template_set'],
|
|
|
|
|
'lang_phpgw_statustext' => lang('phpGroupWare --> homepage')
|
|
|
|
|
);
|
2001-05-11 12:02:34 +02:00
|
|
|
|
|
|
|
|
// This is used for system downtime, to prevent new logins.
|
2001-11-23 22:04:06 +01:00
|
|
|
if ($GLOBALS['phpgw_info']['server']['deny_all_logins'])
|
2001-05-11 12:02:34 +02:00
|
|
|
{
|
2002-10-18 23:45:46 +02:00
|
|
|
$GLOBALS['phpgw']->xslttpl->set_var('login',$data);
|
|
|
|
|
$GLOBALS['phpgw']->xslttpl->pp();
|
2001-02-27 13:49:10 +01:00
|
|
|
exit;
|
|
|
|
|
}
|
|
|
|
|
|
2002-10-18 23:45:46 +02:00
|
|
|
$data['login_standard']['loginscreen'] = True;
|
|
|
|
|
|
2001-02-27 13:49:10 +01:00
|
|
|
function show_cookie()
|
|
|
|
|
{
|
|
|
|
|
/* This needs to be this way, because if someone doesnt want to use cookies, we shouldnt sneak one in */
|
2002-05-30 11:47:09 +02:00
|
|
|
if ($GLOBALS['HTTP_GET_VARS']['code'] != 5 && (isset($GLOBALS['phpgw_info']['server']['usecookies']) && $GLOBALS['phpgw_info']['server']['usecookies']))
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
2002-05-30 11:47:09 +02:00
|
|
|
return $GLOBALS['HTTP_COOKIE_VARS']['last_loginid'];
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2002-05-30 11:47:09 +02:00
|
|
|
function check_logoutcode()
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
2002-05-27 10:22:12 +02:00
|
|
|
$GLOBALS['phpgw']->common = CreateObject('phpgwapi.common');
|
2002-05-30 11:47:09 +02:00
|
|
|
switch($GLOBALS['HTTP_GET_VARS']['code'])
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
|
|
|
|
case 1:
|
2002-08-12 02:57:51 +02:00
|
|
|
$GLOBALS['phpgw_info']['flags']['msgbox_data']['You have been successfully logged out'] = True;
|
2001-02-27 13:49:10 +01:00
|
|
|
break;
|
|
|
|
|
case 2:
|
2002-08-12 02:57:51 +02:00
|
|
|
$GLOBALS['phpgw_info']['flags']['msgbox_data']['Sorry, your login has expired'] = False;
|
2001-02-27 13:49:10 +01:00
|
|
|
break;
|
|
|
|
|
case 5:
|
2002-08-12 02:57:51 +02:00
|
|
|
$GLOBALS['phpgw_info']['flags']['msgbox_data']['Bad login or password'] = False;
|
2001-02-27 13:49:10 +01:00
|
|
|
break;
|
|
|
|
|
case 10:
|
2002-08-12 02:57:51 +02:00
|
|
|
if($GLOBALS['phpgw_info']['server']['usecookies'])
|
|
|
|
|
{
|
|
|
|
|
Setcookie('sessionid');
|
|
|
|
|
Setcookie('kp3');
|
|
|
|
|
Setcookie('domain');
|
|
|
|
|
}
|
|
|
|
|
$GLOBALS['phpgw_info']['flags']['msgbox_data']['Your session could not be verified'] = False;
|
2001-02-27 13:49:10 +01:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Program starts here */
|
2000-11-16 22:51:01 +01:00
|
|
|
|
2001-11-23 22:04:06 +01:00
|
|
|
if ($GLOBALS['phpgw_info']['server']['auth_type'] == 'http' && isset($PHP_AUTH_USER))
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
|
|
|
|
$submit = True;
|
|
|
|
|
$login = $PHP_AUTH_USER;
|
|
|
|
|
$passwd = $PHP_AUTH_PW;
|
|
|
|
|
}
|
|
|
|
|
|
2001-04-26 00:01:52 +02:00
|
|
|
# Apache + mod_ssl style SSL certificate authentication
|
|
|
|
|
# Certificate (chain) verification occurs inside mod_ssl
|
2002-05-30 11:47:09 +02:00
|
|
|
if ($GLOBALS['phpgw_info']['server']['auth_type'] == 'sqlssl' && isset($HTTP_SERVER_VARS['SSL_CLIENT_S_DN']) && !isset($GLOBALS['HTTP_GET_VARS']['code']))
|
2001-04-26 00:01:52 +02:00
|
|
|
{
|
2001-04-26 00:25:35 +02:00
|
|
|
# an X.509 subject looks like:
|
|
|
|
|
# /CN=john.doe/OU=Department/O=Company/C=xx/Email=john@comapy.tld/L=City/
|
|
|
|
|
# the username is deliberately lowercase, to ease LDAP integration
|
2001-09-06 10:27:22 +02:00
|
|
|
$sslattribs = explode('/',$HTTP_SERVER_VARS['SSL_CLIENT_S_DN']);
|
|
|
|
|
# skip the part in front of the first '/' (nothing)
|
2001-05-01 11:15:40 +02:00
|
|
|
while ($sslattrib = next($sslattribs))
|
2001-04-26 00:01:52 +02:00
|
|
|
{
|
2001-09-06 10:27:22 +02:00
|
|
|
list($key,$val) = explode('=',$sslattrib);
|
2001-05-01 11:15:40 +02:00
|
|
|
$sslattributes[$key] = $val;
|
|
|
|
|
}
|
2001-04-26 00:25:35 +02:00
|
|
|
|
2001-09-06 10:27:22 +02:00
|
|
|
if (isset($sslattributes['Email']))
|
2001-04-26 00:01:52 +02:00
|
|
|
{
|
|
|
|
|
$submit = True;
|
|
|
|
|
|
|
|
|
|
# login will be set here if the user logged out and uses a different username with
|
|
|
|
|
# the same SSL-certificate.
|
2002-08-12 02:57:51 +02:00
|
|
|
if (!isset($login)&&isset($sslattributes['Email']))
|
|
|
|
|
{
|
2001-09-06 10:27:22 +02:00
|
|
|
$login = $sslattributes['Email'];
|
2001-05-01 11:15:40 +02:00
|
|
|
# not checked against the database, but delivered to authentication module
|
2001-09-06 10:27:22 +02:00
|
|
|
$passwd = $HTTP_SERVER_VARS['SSL_CLIENT_S_DN'];
|
2001-04-26 00:01:52 +02:00
|
|
|
}
|
|
|
|
|
}
|
2001-05-23 02:11:08 +02:00
|
|
|
unset($key);
|
|
|
|
|
unset($val);
|
|
|
|
|
unset($sslattributes);
|
2001-04-26 00:01:52 +02:00
|
|
|
}
|
|
|
|
|
|
2002-05-30 11:47:09 +02:00
|
|
|
if (isset($GLOBALS['HTTP_POST_VARS']['passwd_type']) || $submit_x || $submit_y)
|
|
|
|
|
// isset($GLOBALS['HTTP_POST_VARS']['passwd']) && $GLOBALS['HTTP_POST_VARS']['passwd']) // enable konqueror to login via Return
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
2002-10-15 02:11:16 +02:00
|
|
|
if (getenv(REQUEST_METHOD) != 'POST' && $_SERVER['REQUEST_METHOD'] != 'POST'
|
|
|
|
|
&& !isset($PHP_AUTH_USER) && !isset($HTTP_SERVER_VARS['SSL_CLIENT_S_DN']))
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
2001-09-06 10:27:22 +02:00
|
|
|
$GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','code=5'));
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
2001-10-02 07:38:35 +02:00
|
|
|
$GLOBALS['sessionid'] = $GLOBALS['phpgw']->session->create($GLOBALS['HTTP_POST_VARS']['login'],$GLOBALS['HTTP_POST_VARS']['passwd'],$GLOBALS['HTTP_POST_VARS']['passwd_type']);
|
2001-08-21 20:34:56 +02:00
|
|
|
|
2002-08-12 02:57:51 +02:00
|
|
|
if(!isset($GLOBALS['sessionid']) || !$GLOBALS['sessionid'])
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
2002-05-30 11:47:09 +02:00
|
|
|
$GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?code=5');
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
2001-08-21 20:34:56 +02:00
|
|
|
if ($GLOBALS['phpgw_forward'])
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
2002-05-30 11:47:09 +02:00
|
|
|
while (list($name,$value) = each($GLOBALS['HTTP_GET_VARS']))
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
|
|
|
|
if (ereg('phpgw_',$name))
|
|
|
|
|
{
|
|
|
|
|
$extra_vars .= '&' . $name . '=' . urlencode($value);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2002-05-30 11:47:09 +02:00
|
|
|
$GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/home.php','code=yes' . $extra_vars,True));
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
// !!! DONT CHANGE THESE LINES !!!
|
|
|
|
|
// If there is something wrong with this code TELL ME!
|
|
|
|
|
// Commenting out the code will not fix it. (jengo)
|
2002-05-30 11:47:09 +02:00
|
|
|
if (isset($GLOBALS['HTTP_COOKIE_VARS']['last_loginid']))
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
|
|
|
|
$accounts = CreateObject('phpgwapi.accounts');
|
|
|
|
|
$prefs = CreateObject('phpgwapi.preferences', $accounts->name2id($last_loginid));
|
|
|
|
|
|
|
|
|
|
if (! $prefs->account_id)
|
|
|
|
|
{
|
2001-09-06 10:27:22 +02:00
|
|
|
$GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] = 'en';
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
2001-09-06 10:27:22 +02:00
|
|
|
$GLOBALS['phpgw_info']['user']['preferences'] = $prefs->read_repository();
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
2001-11-23 22:04:06 +01:00
|
|
|
#print 'LANG:' . $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] . '<br>';
|
2001-09-06 10:27:22 +02:00
|
|
|
$GLOBALS['phpgw']->translation->add_app('login');
|
|
|
|
|
$GLOBALS['phpgw']->translation->add_app('loginscreen');
|
2001-02-27 13:49:10 +01:00
|
|
|
if (lang('loginscreen_message') != 'loginscreen_message*')
|
|
|
|
|
{
|
2002-10-18 23:45:46 +02:00
|
|
|
$data['login_standard']['phpgw_loginscreen_message'] = stripslashes(lang('loginscreen_message'));
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
// If the lastloginid cookies isn't set, we will default to english.
|
|
|
|
|
// Change this if you need.
|
2001-09-06 10:27:22 +02:00
|
|
|
$GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] = 'en';
|
|
|
|
|
$GLOBALS['phpgw']->translation->add_app('login');
|
|
|
|
|
$GLOBALS['phpgw']->translation->add_app('loginscreen');
|
2001-02-27 13:49:10 +01:00
|
|
|
if (lang('loginscreen_message') != 'loginscreen_message*')
|
|
|
|
|
{
|
2002-10-18 23:45:46 +02:00
|
|
|
$data['login_standard']['phpgw_loginscreen_message'] = stripslashes(lang('loginscreen_message'));
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2002-05-30 11:47:09 +02:00
|
|
|
if (!isset($GLOBALS['HTTP_GET_VARS']['code']) || !$GLOBALS['HTTP_GET_VARS']['code'])
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
2002-05-30 11:47:09 +02:00
|
|
|
$GLOBALS['HTTP_GET_VARS']['code'] = '';
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
|
|
|
|
|
2001-09-06 10:27:22 +02:00
|
|
|
if ($GLOBALS['phpgw_info']['server']['show_domain_selectbox'])
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
|
|
|
|
reset($phpgw_domain);
|
|
|
|
|
while ($domain = each($phpgw_domain))
|
|
|
|
|
{
|
|
|
|
|
if ($domain[0] == $last_domain)
|
|
|
|
|
{
|
2002-10-19 16:33:32 +02:00
|
|
|
$select = 'selected';
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$data['login_standard']['domain_select'] = array
|
|
|
|
|
(
|
|
|
|
|
'domain' => $domain[0],
|
|
|
|
|
'selected' => $selected
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for ($i=0;$i<count($data['login_standard']['domain_select']);$i++)
|
|
|
|
|
{
|
|
|
|
|
if ($data['login_standard']['domain_select'][$i]['selected'] != 'selected')
|
|
|
|
|
{
|
|
|
|
|
unset($data['login_standard']['domain_select'][$i]['selected']);
|
2001-02-27 13:49:10 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2002-05-30 11:47:09 +02:00
|
|
|
while (list($name,$value) = each($GLOBALS['HTTP_GET_VARS']))
|
2001-02-27 13:49:10 +01:00
|
|
|
{
|
|
|
|
|
if (ereg('phpgw_',$name))
|
|
|
|
|
{
|
|
|
|
|
$extra_vars .= '&' . $name . '=' . urlencode($value);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($extra_vars)
|
|
|
|
|
{
|
|
|
|
|
$extra_vars = '?' . substr($extra_vars,1,strlen($extra_vars));
|
|
|
|
|
}
|
2002-05-30 11:47:09 +02:00
|
|
|
check_logoutcode();
|
2002-10-18 02:21:54 +02:00
|
|
|
|
2002-10-18 23:45:46 +02:00
|
|
|
/*$GLOBALS['phpgw']->template->set_var('phpgw_head_base',$GLOBALS['phpgw_info']['server']['webserver_url'].'/');
|
|
|
|
|
$GLOBALS['phpgw']->template->set_var('registration_url','registration/');*/
|
2002-10-18 02:21:54 +02:00
|
|
|
|
2002-10-19 16:33:32 +02:00
|
|
|
$data['login_standard']['website_title'] = $GLOBALS['phpgw_info']['server']['site_title'];
|
2002-10-18 23:45:46 +02:00
|
|
|
$data['login_standard']['msgbox'] = $GLOBALS['phpgw']->common->msgbox('',False);
|
|
|
|
|
$data['login_standard']['login_url'] = 'login.php' . $extra_vars;
|
|
|
|
|
$data['login_standard']['cookie'] = show_cookie();
|
|
|
|
|
$data['login_standard']['lang_username'] = lang('username');
|
2002-10-19 16:33:32 +02:00
|
|
|
$data['login_standard']['lang_powered_by'] = lang('powered by');
|
|
|
|
|
$data['login_standard']['lang_version'] = lang('version');
|
2002-10-18 23:45:46 +02:00
|
|
|
$data['login_standard']['phpgw_version'] = $GLOBALS['phpgw_info']['server']['versions']['phpgwapi'];
|
|
|
|
|
$data['login_standard']['lang_password'] = lang('password');
|
|
|
|
|
$data['login_standard']['lang_login'] = lang('login');
|
2002-10-18 02:21:54 +02:00
|
|
|
|
2002-10-18 23:45:46 +02:00
|
|
|
$GLOBALS['phpgw']->xslttpl->set_var('login',$data);
|
|
|
|
|
$GLOBALS['phpgw']->xslttpl->pp();
|
2001-02-04 11:26:15 +01:00
|
|
|
?>
|
