1 | <?php |
---|
2 | //TODO: Trocar name="login" para name="user" no campo username |
---|
3 | |
---|
4 | $phpgw_info = array(); |
---|
5 | $submit = False; |
---|
6 | |
---|
7 | $GLOBALS['phpgw_info']['flags'] = array( |
---|
8 | 'disable_Template_class' => True, |
---|
9 | 'login' => True, |
---|
10 | 'currentapp' => 'login', |
---|
11 | 'currentdir' => '/mobile', |
---|
12 | 'noheader' => True |
---|
13 | ); |
---|
14 | |
---|
15 | include_once('../header.inc.php'); |
---|
16 | include_once('./mobile_header.inc.php'); |
---|
17 | $GLOBALS['sessionid'] = @$_GET['sessionid'] ? $_GET['sessionid'] : @$_COOKIE['sessionid']; |
---|
18 | |
---|
19 | function check_logoutcode($code) |
---|
20 | { |
---|
21 | $_return = ''; |
---|
22 | |
---|
23 | switch($code) |
---|
24 | { |
---|
25 | case 'logout_mobile': |
---|
26 | case 1: |
---|
27 | logout(); |
---|
28 | $_return = lang('You have been successfully logged out'); |
---|
29 | break; |
---|
30 | case 2: |
---|
31 | $_return = lang('Sorry, your login has expired'); |
---|
32 | break; |
---|
33 | case 4: |
---|
34 | $_return = lang('Cookies are required to login to this site.'); |
---|
35 | break; |
---|
36 | case 5: |
---|
37 | $_return = lang('Bad login or password'); |
---|
38 | break; |
---|
39 | case 6: |
---|
40 | $_return = lang('Your password has expired, and you do not have access to change it'); |
---|
41 | break; |
---|
42 | case 97: |
---|
43 | $_return = lang('Access not permitted'); |
---|
44 | break; |
---|
45 | case 98: |
---|
46 | $_return = lang('Account is expired'); |
---|
47 | break; |
---|
48 | case 99: |
---|
49 | $_return = lang('Blocked, too many attempts'); |
---|
50 | break; |
---|
51 | case 10: |
---|
52 | $GLOBALS['phpgw']->session->phpgw_setcookie('sessionid'); |
---|
53 | $GLOBALS['phpgw']->session->phpgw_setcookie('kp3'); |
---|
54 | $GLOBALS['phpgw']->session->phpgw_setcookie('domain'); |
---|
55 | if($GLOBALS['phpgw_info']['server']['sessions_type'] == 'php4') |
---|
56 | { |
---|
57 | $GLOBALS['phpgw']->session->phpgw_setcookie(PHPGW_PHPSESSID); |
---|
58 | } |
---|
59 | $_return = lang('Your session could not be verified.'); |
---|
60 | break; |
---|
61 | } |
---|
62 | |
---|
63 | return $_return; |
---|
64 | } |
---|
65 | |
---|
66 | if ( $GLOBALS['phpgw_info']['server']['use_https'] > 0 ) |
---|
67 | { |
---|
68 | if ($_SERVER['HTTPS'] != 'on') |
---|
69 | { |
---|
70 | $proxies = explode(',',$_SERVER['HTTP_X_FORWARDED_HOST']); |
---|
71 | $fwConstruct = isset($_SERVER['HTTP_X_FORWARDED_HOST']) ? $proxies[0] : $_SERVER['HTTP_HOST']; |
---|
72 | Header('Location: https://' . $fwConstruct . '/' . $_SERVER['REQUEST_URI']); |
---|
73 | exit; |
---|
74 | } |
---|
75 | } |
---|
76 | |
---|
77 | $GLOBALS['phpgw']->session = CreateObject('phpgwapi.sessions'); |
---|
78 | $GLOBALS['phpgw_info']['server']['template_dir'] = PHPGW_SERVER_ROOT.$GLOBALS['phpgw_info']['flags']['currentdir'].'/templates/'.$GLOBALS['phpgw_info']['user']['preferences']['common']['template_set']; |
---|
79 | $tmpl = CreateObject('phpgwapi.Template', PHPGW_SERVER_ROOT . '/mobile/templates/'.$GLOBALS['phpgw_info']['server']['template_set']); |
---|
80 | $GLOBALS['phpgw_info']['user']['preferences']['common']['template_set'] = $GLOBALS['phpgw_info']['login_template_set']; |
---|
81 | |
---|
82 | //URL Expresso |
---|
83 | $url_expresso = $GLOBALS['phpgw_info']['server']['webserver_url']; |
---|
84 | $url_expresso = ( !empty($url_expresso) ) ? $url_expresso : '/'; |
---|
85 | |
---|
86 | if(strrpos($url_expresso,'/') === false || strrpos($url_expresso,'/') != (strlen($url_expresso)-1)) |
---|
87 | { |
---|
88 | $url_expresso .= '/'; |
---|
89 | } |
---|
90 | |
---|
91 | $tmpl->set_file(array('login_form' => 'login.tpl')); |
---|
92 | $tmpl->set_block('login_form','page'); |
---|
93 | $tmpl->set_block('login_form','success_message'); |
---|
94 | $tmpl->set_block('login_form','error_message'); |
---|
95 | $tmpl->set_var('url_expresso', $url_expresso); |
---|
96 | $tmpl->set_var('lang_username', lang('username')); |
---|
97 | $tmpl->set_var('lang_password', lang('password')); |
---|
98 | $tmpl->set_var('lang_login', lang('login')); |
---|
99 | |
---|
100 | //verificando a mensagem erro ou sucesso |
---|
101 | $cd = check_logoutcode($_GET['cd']); |
---|
102 | $tmpl->set_var('message', $cd); |
---|
103 | |
---|
104 | if( trim($cd) != "" ) |
---|
105 | { |
---|
106 | $tmpl->parse('message_box', (($_GET['cd'] == 1) ? 'success_message' : 'error_message') ,true); |
---|
107 | } |
---|
108 | |
---|
109 | //detect if the user has a mobile browser |
---|
110 | $browser = CreateObject('phpgwapi.browser'); |
---|
111 | $platform = false; |
---|
112 | |
---|
113 | switch ($browser->get_platform()) |
---|
114 | { |
---|
115 | case browser::PLATFORM_IPHONE: |
---|
116 | case browser::PLATFORM_IPOD: |
---|
117 | case browser::PLATFORM_IPAD: |
---|
118 | case browser::PLATFORM_BLACKBERRY: |
---|
119 | case browser::PLATFORM_NOKIA: |
---|
120 | case browser::PLATFORM_ANDROID: |
---|
121 | $platform = $browser->get_platform(); |
---|
122 | break; |
---|
123 | } |
---|
124 | |
---|
125 | $tmpl->set_var('os_browser',$platform ); |
---|
126 | |
---|
127 | // Automatic login from browser cookies |
---|
128 | if( get_var('lem',array('GET','COOKIE')) && get_var('pem',array('GET','COOKIE')) ) |
---|
129 | { |
---|
130 | $submit = True; |
---|
131 | $login = base64_decode(get_var('lem',array('GET','COOKIE'))); |
---|
132 | $passwd = base64_decode(get_var('pem',array('GET','COOKIE'))); |
---|
133 | $passwd_type = 'text'; |
---|
134 | |
---|
135 | if( $_GET['cd'] == 66 ) |
---|
136 | { |
---|
137 | unset( $_GET['cd'] ); |
---|
138 | } |
---|
139 | } |
---|
140 | else |
---|
141 | { |
---|
142 | if($GLOBALS['phpgw_info']['server']['auth_type'] == 'http' && isset($_SERVER['PHP_AUTH_USER'])) |
---|
143 | { |
---|
144 | $submit = True; |
---|
145 | $login = $_SERVER['PHP_AUTH_USER']; |
---|
146 | $passwd = $_SERVER['PHP_AUTH_PW']; |
---|
147 | $passwd_type = 'text'; |
---|
148 | } |
---|
149 | else |
---|
150 | { |
---|
151 | $passwd = $_POST['passwd']; |
---|
152 | $passwd_type = $_POST['passwd_type']; |
---|
153 | } |
---|
154 | } |
---|
155 | |
---|
156 | if( isset($passwd_type) || $_POST['submitit_x'] || $_POST['submitit_y'] || $submit ) |
---|
157 | { |
---|
158 | if( !get_var('pem',array('GET','COOKIE')) && getenv('REQUEST_METHOD') != 'POST' |
---|
159 | && $_SERVER['REQUEST_METHOD'] != 'POST' && !isset($_SERVER['PHP_AUTH_USER']) && !isset($_SERVER['SSL_CLIENT_S_DN'])) |
---|
160 | { |
---|
161 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link($GLOBALS['phpgw_info']['flags']['currentdir'].'/login.php','cd=5')); |
---|
162 | } |
---|
163 | |
---|
164 | if(!$submit) |
---|
165 | { |
---|
166 | $login = $_POST['login']; |
---|
167 | } |
---|
168 | |
---|
169 | $GLOBALS['sessionid'] = $GLOBALS['phpgw']->session->create(strtolower($login),$passwd,$passwd_type,'u'); |
---|
170 | |
---|
171 | if(!isset($GLOBALS['sessionid']) || ! $GLOBALS['sessionid']){ |
---|
172 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] .$GLOBALS['phpgw_info']['flags']['currentdir'].'/login.php?cd=' . $GLOBALS['phpgw']->session->cd_reason); |
---|
173 | } |
---|
174 | else |
---|
175 | { |
---|
176 | if(isset($_POST['max_resolution']) && $_POST['max_resolution'] > 600) |
---|
177 | { |
---|
178 | $GLOBALS['phpgw_info']['user']['preferences']['common']['default_mobile_app'] = 'mobilemail'; |
---|
179 | $GLOBALS['phpgw']->session->appsession('mobile.layout','mobile','mini_desktop'); |
---|
180 | } |
---|
181 | else |
---|
182 | { |
---|
183 | $GLOBALS['phpgw']->session->appsession('mobile.layout','mobile','mini_mobile'); |
---|
184 | } |
---|
185 | |
---|
186 | $preferences = $GLOBALS['phpgw']->preferences->read(); |
---|
187 | $_SESSION['phpgw_info']['user']['preferences']['expressoMail'] = $preferences['expressoMail']; |
---|
188 | |
---|
189 | if($_POST['save_login'] === 'on') |
---|
190 | { |
---|
191 | // Time to keep values into cookies |
---|
192 | $ttl = time()+15552000; // Six Months |
---|
193 | $GLOBALS['phpgw']->session->phpgw_setcookie('lem', base64_encode(strtolower($login)),$ttl); // lem = login |
---|
194 | $GLOBALS['phpgw']->session->phpgw_setcookie('pem', base64_encode($passwd), $ttl); // pem = password |
---|
195 | } |
---|
196 | |
---|
197 | if( isset($GLOBALS['sessionid']) ) |
---|
198 | { |
---|
199 | if( $_GET['cd'] != 10 && $_GET['cd'] != 1 && $_GET['cd'] !== 'logout_mobile' && $_GET['cd'] != 66 ) |
---|
200 | { |
---|
201 | start_prefered_app(); |
---|
202 | } |
---|
203 | } |
---|
204 | } |
---|
205 | } |
---|
206 | elseif(!isset($_COOKIE['last_loginid']) || !$prefs->account_id) |
---|
207 | { |
---|
208 | list($lang) = explode(',',$_SERVER['HTTP_ACCEPT_LANGUAGE']); |
---|
209 | $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] = $lang; |
---|
210 | } |
---|
211 | |
---|
212 | $tmpl->set_var('charset',$GLOBALS['phpgw']->translation->charset()); |
---|
213 | $tmpl->set_var('cookie',$last_loginid); |
---|
214 | $tmpl->set_var('lang_notices', lang('notices')); |
---|
215 | $tmpl->set_var('website_title', $GLOBALS['phpgw_info']['server']['site_title']); |
---|
216 | $tmpl->set_var('template_set',$GLOBALS['phpgw_info']['login_template_set']); |
---|
217 | $tmpl->set_var('language_select',''); |
---|
218 | $tmpl->set_var($var); |
---|
219 | $tmpl->set_block('login_form','language_select'); |
---|
220 | $tmpl->pfp('loginout','page'); |
---|
221 | |
---|
222 | function logout() |
---|
223 | { |
---|
224 | $verified = $GLOBALS['phpgw']->session->verify(); |
---|
225 | if ($verified) |
---|
226 | { |
---|
227 | if (file_exists($GLOBALS['phpgw_info']['server']['temp_dir'] . SEP . $GLOBALS['sessionid'])) |
---|
228 | { |
---|
229 | $dh = opendir($GLOBALS['phpgw_info']['server']['temp_dir'] . SEP . $GLOBALS['sessionid']); |
---|
230 | while ($file = readdir($dh)) |
---|
231 | { |
---|
232 | if ($file != '.' && $file != '..') |
---|
233 | { |
---|
234 | unlink($GLOBALS['phpgw_info']['server']['temp_dir'] . SEP . $GLOBALS['sessionid'] . SEP . $file); |
---|
235 | } |
---|
236 | } |
---|
237 | rmdir($GLOBALS['phpgw_info']['server']['temp_dir'] . SEP . $GLOBALS['sessionid']); |
---|
238 | } |
---|
239 | $GLOBALS['phpgw']->hooks->process('logout'); |
---|
240 | $GLOBALS['phpgw']->session->destroy($GLOBALS['sessionid'],$GLOBALS['kp3']); |
---|
241 | } |
---|
242 | } |
---|
243 | ?> |
---|