[454] | 1 | <?php |
---|
| 2 | //TODO: Trocar name="login" para name="user" no campo username |
---|
[3492] | 3 | |
---|
[454] | 4 | $phpgw_info = array(); |
---|
| 5 | $submit = False; |
---|
| 6 | |
---|
| 7 | $GLOBALS['phpgw_info']['flags'] = array( |
---|
| 8 | 'disable_Template_class' => True, |
---|
| 9 | 'login' => True, |
---|
| 10 | 'currentapp' => 'login', |
---|
| 11 | 'currentdir' => '/mobile', |
---|
| 12 | 'noheader' => True |
---|
| 13 | ); |
---|
[4116] | 14 | |
---|
[4126] | 15 | include_once('../header.inc.php'); |
---|
| 16 | include_once('./mobile_header.inc.php'); |
---|
[454] | 17 | $GLOBALS['sessionid'] = @$_GET['sessionid'] ? $_GET['sessionid'] : @$_COOKIE['sessionid']; |
---|
[4116] | 18 | |
---|
[4744] | 19 | if( isset($GLOBALS['sessionid']) ) |
---|
| 20 | { |
---|
| 21 | if( $_GET['cd'] != 10 && $_GET['cd'] != 1 && $_GET['cd'] !== 'logout_mobile' ) |
---|
| 22 | { |
---|
| 23 | start_prefered_app(); |
---|
| 24 | } |
---|
| 25 | } |
---|
[3553] | 26 | |
---|
[4126] | 27 | if ( $GLOBALS['phpgw_info']['server']['use_https'] > 0 ) |
---|
| 28 | { |
---|
| 29 | if ($_SERVER['HTTPS'] != 'on') |
---|
| 30 | { |
---|
| 31 | $proxies = explode(',',$_SERVER['HTTP_X_FORWARDED_HOST']); |
---|
[3553] | 32 | $fwConstruct = isset($_SERVER['HTTP_X_FORWARDED_HOST']) ? $proxies[0] : $_SERVER['HTTP_HOST']; |
---|
[1851] | 33 | Header('Location: https://' . $fwConstruct . '/' . $_SERVER['REQUEST_URI']); |
---|
[454] | 34 | exit; |
---|
[3553] | 35 | } |
---|
[454] | 36 | } |
---|
[1851] | 37 | |
---|
| 38 | $GLOBALS['phpgw']->session = CreateObject('phpgwapi.sessions'); |
---|
| 39 | $GLOBALS['phpgw_info']['server']['template_dir'] = PHPGW_SERVER_ROOT.$GLOBALS['phpgw_info']['flags']['currentdir'].'/templates/'.$GLOBALS['phpgw_info']['user']['preferences']['common']['template_set']; |
---|
[3483] | 40 | $tmpl = CreateObject('phpgwapi.Template', PHPGW_SERVER_ROOT . '/mobile/templates/'.$GLOBALS['phpgw_info']['server']['template_set']); |
---|
[454] | 41 | $GLOBALS['phpgw_info']['user']['preferences']['common']['template_set'] = $GLOBALS['phpgw_info']['login_template_set']; |
---|
[4695] | 42 | |
---|
| 43 | //URL Expresso |
---|
| 44 | $url_expresso = $GLOBALS['phpgw_info']['server']['webserver_url']; |
---|
| 45 | $url_expresso = ( !empty($url_expresso) ) ? $url_expresso : '/'; |
---|
| 46 | |
---|
| 47 | if(strrpos($url_expresso,'/') === false || strrpos($url_expresso,'/') != (strlen($url_expresso)-1)) |
---|
| 48 | { |
---|
| 49 | $url_expresso .= '/'; |
---|
| 50 | } |
---|
| 51 | |
---|
[454] | 52 | $tmpl->set_file(array('login_form' => 'login.tpl')); |
---|
[3553] | 53 | $tmpl->set_block('login_form','page'); |
---|
| 54 | $tmpl->set_block('login_form','success_message'); |
---|
| 55 | $tmpl->set_block('login_form','error_message'); |
---|
[4695] | 56 | $tmpl->set_var('url_expresso', $url_expresso); |
---|
| 57 | $tmpl->set_var('lang_username', lang('username')); |
---|
| 58 | $tmpl->set_var('lang_password', lang('password')); |
---|
| 59 | $tmpl->set_var('lang_login', lang('login')); |
---|
[3553] | 60 | |
---|
[4695] | 61 | |
---|
[3553] | 62 | //verificando a mensagem erro ou sucesso |
---|
| 63 | $cd = check_logoutcode($_GET['cd']); |
---|
[3571] | 64 | $tmpl->set_var('message', $cd); |
---|
[3553] | 65 | |
---|
| 66 | if(trim($cd) != "") |
---|
[3571] | 67 | $tmpl->parse('message_box', (($_GET['cd'] == 1) ? 'success_message' : 'error_message') ,true); |
---|
[4116] | 68 | //detect if the user has a mobile browser |
---|
| 69 | |
---|
[4134] | 70 | $browser = CreateObject('phpgwapi.browser'); |
---|
[4116] | 71 | |
---|
[4126] | 72 | switch ($browser->get_platform()) |
---|
| 73 | { |
---|
[4116] | 74 | case browser::PLATFORM_IPHONE: |
---|
| 75 | case browser::PLATFORM_IPOD: |
---|
| 76 | case browser::PLATFORM_IPAD: |
---|
| 77 | case browser::PLATFORM_BLACKBERRY: |
---|
| 78 | case browser::PLATFORM_NOKIA: |
---|
| 79 | case browser::PLATFORM_ANDROID: |
---|
| 80 | $tmpl->set_var('os_browser',$browser->get_platform()); |
---|
| 81 | break; |
---|
| 82 | default: |
---|
| 83 | $tmpl->set_var('os_browser',false); |
---|
| 84 | //$tmpl->set_var('os_browser',$browser->get_platform()); |
---|
| 85 | break; |
---|
| 86 | } |
---|
[1851] | 87 | |
---|
[454] | 88 | function check_logoutcode($code) { |
---|
| 89 | switch($code) { |
---|
[4744] | 90 | case 'logout_mobile': |
---|
[454] | 91 | case 1: |
---|
| 92 | logout(); |
---|
| 93 | return lang('You have been successfully logged out'); |
---|
[4116] | 94 | |
---|
[454] | 95 | case 2: |
---|
| 96 | return lang('Sorry, your login has expired'); |
---|
[4116] | 97 | |
---|
[454] | 98 | case 4: |
---|
| 99 | return lang('Cookies are required to login to this site.'); |
---|
[4116] | 100 | |
---|
[454] | 101 | case 5: |
---|
[3553] | 102 | return lang('Bad login or password'); |
---|
[454] | 103 | case 6: |
---|
[3553] | 104 | return lang('Your password has expired, and you do not have access to change it'); |
---|
[454] | 105 | case 98: |
---|
[3553] | 106 | return lang('Account is expired'); |
---|
[454] | 107 | case 99: |
---|
[3553] | 108 | return lang('Blocked, too many attempts'); |
---|
[454] | 109 | case 10: |
---|
| 110 | $GLOBALS['phpgw']->session->phpgw_setcookie('sessionid'); |
---|
| 111 | $GLOBALS['phpgw']->session->phpgw_setcookie('kp3'); |
---|
| 112 | $GLOBALS['phpgw']->session->phpgw_setcookie('domain'); |
---|
| 113 | if($GLOBALS['phpgw_info']['server']['sessions_type'] == 'php4') { |
---|
| 114 | $GLOBALS['phpgw']->session->phpgw_setcookie(PHPGW_PHPSESSID); |
---|
| 115 | } |
---|
[3553] | 116 | return lang('Your session could not be verified.'); |
---|
[4744] | 117 | |
---|
[454] | 118 | default: |
---|
[3553] | 119 | return ''; |
---|
[454] | 120 | } |
---|
| 121 | } |
---|
| 122 | |
---|
| 123 | if($GLOBALS['phpgw_info']['server']['auth_type'] == 'http' && isset($_SERVER['PHP_AUTH_USER'])) { |
---|
| 124 | $submit = True; |
---|
| 125 | $login = $_SERVER['PHP_AUTH_USER']; |
---|
| 126 | $passwd = $_SERVER['PHP_AUTH_PW']; |
---|
| 127 | $passwd_type = 'text'; |
---|
| 128 | } |
---|
[4116] | 129 | // Automatic login from browser cookies |
---|
| 130 | elseif(get_var('lem',array('GET','COOKIE')) && get_var('pem',array('GET','COOKIE'))) |
---|
| 131 | { |
---|
[4744] | 132 | if( $_GET['cd'] !== 'logout_mobile' ) |
---|
| 133 | { |
---|
| 134 | if(!$_GET['cd'] || $_GET['cd'] == '1' || $_GET['cd'] == '10') |
---|
| 135 | { |
---|
| 136 | $submit = True; |
---|
| 137 | $login = base64_decode(get_var('lem',array('GET','COOKIE'))); |
---|
| 138 | $passwd = base64_decode(get_var('pem',array('GET','COOKIE'))); |
---|
| 139 | $passwd_type = 'text'; |
---|
| 140 | } |
---|
| 141 | else |
---|
| 142 | { |
---|
| 143 | $GLOBALS['phpgw']->session->phpgw_setcookie('lem'); |
---|
| 144 | $GLOBALS['phpgw']->session->phpgw_setcookie('pem'); |
---|
| 145 | } |
---|
[4116] | 146 | } |
---|
| 147 | } |
---|
[4126] | 148 | else |
---|
| 149 | { |
---|
[454] | 150 | $passwd = $_POST['passwd']; |
---|
| 151 | $passwd_type = $_POST['passwd_type']; |
---|
| 152 | } |
---|
| 153 | |
---|
[4126] | 154 | if( isset($passwd_type) || $_POST['submitit_x'] || $_POST['submitit_y'] || $submit ) |
---|
[4116] | 155 | { |
---|
| 156 | if( !get_var('pem',array('GET','COOKIE')) && getenv('REQUEST_METHOD') != 'POST' |
---|
| 157 | && $_SERVER['REQUEST_METHOD'] != 'POST' && !isset($_SERVER['PHP_AUTH_USER']) && !isset($_SERVER['SSL_CLIENT_S_DN'])) |
---|
| 158 | { |
---|
[454] | 159 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link($GLOBALS['phpgw_info']['flags']['currentdir'].'/login.php','cd=5')); |
---|
| 160 | } |
---|
| 161 | |
---|
| 162 | if(!$submit) |
---|
[4116] | 163 | { |
---|
[454] | 164 | $login = $_POST['login']; |
---|
[4116] | 165 | } |
---|
[454] | 166 | |
---|
| 167 | $GLOBALS['sessionid'] = $GLOBALS['phpgw']->session->create(strtolower($login),$passwd,$passwd_type,'u'); |
---|
| 168 | |
---|
| 169 | if(!isset($GLOBALS['sessionid']) || ! $GLOBALS['sessionid']){ |
---|
| 170 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] .$GLOBALS['phpgw_info']['flags']['currentdir'].'/login.php?cd=' . $GLOBALS['phpgw']->session->cd_reason); |
---|
| 171 | } |
---|
[4116] | 172 | else |
---|
| 173 | { |
---|
| 174 | if(isset($_POST['max_resolution']) && $_POST['max_resolution'] > 600) |
---|
| 175 | { |
---|
[3731] | 176 | $GLOBALS['phpgw_info']['user']['preferences']['common']['default_mobile_app'] = 'mobilemail'; |
---|
| 177 | $GLOBALS['phpgw']->session->appsession('mobile.layout','mobile','mini_desktop'); |
---|
[4116] | 178 | } |
---|
| 179 | else |
---|
| 180 | { |
---|
[3731] | 181 | $GLOBALS['phpgw']->session->appsession('mobile.layout','mobile','mini_mobile'); |
---|
| 182 | } |
---|
| 183 | |
---|
[3892] | 184 | $preferences = $GLOBALS['phpgw']->preferences->read(); |
---|
| 185 | $_SESSION['phpgw_info']['user']['preferences']['expressoMail'] = $preferences['expressoMail']; |
---|
| 186 | |
---|
[4116] | 187 | if($_POST['save_login'] == 'yes') |
---|
| 188 | { |
---|
| 189 | // Time to keep values into cookies |
---|
| 190 | $ttl = time()+15552000; // Six Months |
---|
| 191 | $GLOBALS['phpgw']->session->phpgw_setcookie('lem', base64_encode(strtolower($login)),$ttl); // lem = login |
---|
| 192 | $GLOBALS['phpgw']->session->phpgw_setcookie('pem', base64_encode($passwd), $ttl); // pem = password |
---|
| 193 | } |
---|
[623] | 194 | start_prefered_app(); |
---|
[454] | 195 | } |
---|
| 196 | } |
---|
[4126] | 197 | elseif ($_GET['lang']) |
---|
| 198 | { |
---|
[454] | 199 | $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] = $_GET['lang']; |
---|
| 200 | } |
---|
[4126] | 201 | elseif(!isset($_COOKIE['last_loginid']) || !$prefs->account_id) |
---|
| 202 | { |
---|
[454] | 203 | list($lang) = explode(',',$_SERVER['HTTP_ACCEPT_LANGUAGE']); |
---|
| 204 | $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] = $lang; |
---|
| 205 | } |
---|
| 206 | |
---|
| 207 | $tmpl->set_var('charset',$GLOBALS['phpgw']->translation->charset()); |
---|
| 208 | $tmpl->set_var('cookie',$last_loginid); |
---|
[3553] | 209 | $tmpl->set_var('lang_notices', lang('notices')); |
---|
[454] | 210 | $tmpl->set_var('website_title', $GLOBALS['phpgw_info']['server']['site_title']); |
---|
| 211 | $tmpl->set_var('template_set',$GLOBALS['phpgw_info']['login_template_set']); |
---|
| 212 | $tmpl->set_var('language_select',''); |
---|
| 213 | $tmpl->set_var($var); |
---|
| 214 | $tmpl->set_block('login_form','language_select'); |
---|
[3553] | 215 | $tmpl->pfp('loginout','page'); |
---|
[454] | 216 | |
---|
[4116] | 217 | function logout() |
---|
| 218 | { |
---|
[454] | 219 | $verified = $GLOBALS['phpgw']->session->verify(); |
---|
| 220 | if ($verified) |
---|
| 221 | { |
---|
| 222 | if (file_exists($GLOBALS['phpgw_info']['server']['temp_dir'] . SEP . $GLOBALS['sessionid'])) |
---|
| 223 | { |
---|
| 224 | $dh = opendir($GLOBALS['phpgw_info']['server']['temp_dir'] . SEP . $GLOBALS['sessionid']); |
---|
| 225 | while ($file = readdir($dh)) |
---|
| 226 | { |
---|
| 227 | if ($file != '.' && $file != '..') |
---|
| 228 | { |
---|
| 229 | unlink($GLOBALS['phpgw_info']['server']['temp_dir'] . SEP . $GLOBALS['sessionid'] . SEP . $file); |
---|
| 230 | } |
---|
| 231 | } |
---|
| 232 | rmdir($GLOBALS['phpgw_info']['server']['temp_dir'] . SEP . $GLOBALS['sessionid']); |
---|
| 233 | } |
---|
| 234 | $GLOBALS['phpgw']->hooks->process('logout'); |
---|
| 235 | $GLOBALS['phpgw']->session->destroy($GLOBALS['sessionid'],$GLOBALS['kp3']); |
---|
| 236 | } |
---|
| 237 | } |
---|
| 238 | ?> |
---|