1 | <?php
|
---|
2 |
|
---|
3 | //Valida a existencia do cookie, antes de grava-lo
|
---|
4 | if(isset($_COOKIE['contador']))
|
---|
5 | {
|
---|
6 | $valor_cookie = $_COOKIE['contador'];
|
---|
7 | if($_POST['user'] && $_POST['passwd'])
|
---|
8 | {
|
---|
9 | $valor_cookie = $valor_cookie + 1;
|
---|
10 | setcookie("contador", $valor_cookie,0);
|
---|
11 | }
|
---|
12 | }
|
---|
13 | //Cookie inexistente: tenta gravar um
|
---|
14 | else
|
---|
15 | {
|
---|
16 | if (setcookie("contador", 1,0))
|
---|
17 | //echo "OK, cookie gravado.";
|
---|
18 | $valor_cookie = 1;
|
---|
19 | else
|
---|
20 | //echo "Nao gravou o cookie";
|
---|
21 | $valor_cookie = "9999"; // forca captcha
|
---|
22 | }
|
---|
23 | // logout, inicia contador novamente.....
|
---|
24 | if($_GET['cd']=='1' || $_COOKIE['sessionid'] || $_GET['cd'] == 10)
|
---|
25 | {
|
---|
26 | $valor_cookie = 1;
|
---|
27 | setcookie("contador", 1,0);
|
---|
28 | }
|
---|
29 | /**************************************************************************\
|
---|
30 | * eGroupWare login *
|
---|
31 | * http://www.egroupware.org *
|
---|
32 | * Originaly written by Dan Kuykendall <seek3r@phpgroupware.org> *
|
---|
33 | * Joseph Engo <jengo@phpgroupware.org> *
|
---|
34 | * -------------------------------------------- *
|
---|
35 | * This program is free software; you can redistribute it and/or modify it *
|
---|
36 | * under the terms of the GNU General Public License as published by the *
|
---|
37 | * Free Software Foundation; either version 2 of the License, or (at your *
|
---|
38 | * option) any later version. *
|
---|
39 | \**************************************************************************/
|
---|
40 |
|
---|
41 | $phpgw_info = array();
|
---|
42 | $submit = False; // set to some initial value
|
---|
43 | $GLOBALS['phpgw_info']['flags'] = array(
|
---|
44 | 'disable_Template_class' => True,
|
---|
45 | 'login' => True,
|
---|
46 | 'currentapp' => 'login',
|
---|
47 | 'noheader' => True
|
---|
48 | );
|
---|
49 | if(file_exists('./header.inc.php'))
|
---|
50 | {
|
---|
51 | include('./header.inc.php');
|
---|
52 | if ($GLOBALS['phpgw_info']['server']['use_https'] > 0)
|
---|
53 | {
|
---|
54 | if ($_SERVER['HTTPS'] != 'on')
|
---|
55 | {
|
---|
56 | Header('Location: https://' . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI']);
|
---|
57 | exit;
|
---|
58 | }
|
---|
59 | }
|
---|
60 | if(function_exists('CreateObject'))
|
---|
61 | {
|
---|
62 | $GLOBALS['phpgw']->session = CreateObject('phpgwapi.sessions');
|
---|
63 | }
|
---|
64 | else
|
---|
65 | {
|
---|
66 | Header('Location: setup/index.php');
|
---|
67 | exit;
|
---|
68 | }
|
---|
69 | }
|
---|
70 | else
|
---|
71 | {
|
---|
72 | Header('Location: setup/index.php');
|
---|
73 | exit;
|
---|
74 | }
|
---|
75 | $GLOBALS['phpgw_info']['server']['template_dir'] = PHPGW_SERVER_ROOT . '/phpgwapi/templates/' . $GLOBALS['phpgw_info']['login_template_set'];
|
---|
76 | $tmpl = CreateObject('phpgwapi.Template', $GLOBALS['phpgw_info']['server']['template_dir']);
|
---|
77 | // read the images from the login-template-set, not the (maybe not even set) users template-set
|
---|
78 | $GLOBALS['phpgw_info']['user']['preferences']['common']['template_set'] = $GLOBALS['phpgw_info']['login_template_set'];
|
---|
79 | // This is used for system downtime, to prevent new logins.
|
---|
80 | if($GLOBALS['phpgw_info']['server']['deny_all_logins'])
|
---|
81 | {
|
---|
82 | $deny_msg=lang('Oops! You caught us in the middle of system maintainance.<br/>
|
---|
83 | Please, check back with us shortly.');
|
---|
84 | $tmpl->set_file(array
|
---|
85 | (
|
---|
86 | 'login_form' => 'login_denylogin.tpl'
|
---|
87 | ));
|
---|
88 | $tmpl->set_var('template_set','default');
|
---|
89 | $tmpl->set_var('deny_msg',$deny_msg);
|
---|
90 | $tmpl->pfp('loginout','login_form');
|
---|
91 | exit;
|
---|
92 | }
|
---|
93 | $tmpl->set_file(array('login_form' => 'login.tpl'));
|
---|
94 | // !! NOTE !!
|
---|
95 | // Do NOT and I repeat, do NOT touch ANYTHING to do with lang in this file.
|
---|
96 | // If there is a problem, tell me and I will fix it. (jengo)
|
---|
97 | // whoooo scaring
|
---|
98 |
|
---|
99 | if($GLOBALS['phpgw_info']['server']['usecookies'] == True)
|
---|
100 | {
|
---|
101 | $GLOBALS['phpgw']->session->phpgw_setcookie('serverID', '1024');
|
---|
102 | //GLOBALS['phpgw']->session->phpgw_setcookie('eGroupWareLoginTime', time());
|
---|
103 | }
|
---|
104 |
|
---|
105 | /*
|
---|
106 | if($_GET['cd'] != 10 && $GLOBALS['phpgw_info']['server']['usecookies'] == False)
|
---|
107 | {
|
---|
108 | $GLOBALS['phpgw']->session->setcookie('sessionid');
|
---|
109 | $GLOBALS['phpgw']->session->setcookie('kp3');
|
---|
110 | $GLOBALS['phpgw']->session->setcookie('domain');
|
---|
111 | }
|
---|
112 | */
|
---|
113 |
|
---|
114 | /* This is not working yet because I need to figure out a way to clear the $cd =1
|
---|
115 | if(isset($_SERVER['PHP_AUTH_USER']) && $_GET['cd'] == '1')
|
---|
116 | {
|
---|
117 | Header('HTTP/1.0 401 Unauthorized');
|
---|
118 | Header('WWW-Authenticate: Basic realm="phpGroupWare"');
|
---|
119 | echo 'You have to re-authentificate yourself';
|
---|
120 | exit;
|
---|
121 | }
|
---|
122 | */
|
---|
123 | |
---|
124 | function grava_senha_criptografada_com_certificado_no_ldap($aux_uid,$aux_senha) |
---|
125 | { |
---|
126 | |
---|
127 | require_once('./seguranca/classes/CertificadoB.php'); |
---|
128 | |
---|
129 | $ldap_context = $GLOBALS['phpgw_info']['server']['ldap_context']; |
---|
130 | $ldap_servidor = $GLOBALS['phpgw_info']['server']['ldap_host']; |
---|
131 | $ldap_dn = $GLOBALS['phpgw_info']['server']['ldap_root_dn']; |
---|
132 | $ldap_passwd = $GLOBALS['phpgw_info']['server']['ldap_root_pw']; |
---|
133 | |
---|
134 | $cc=ldap_connect($ldap_servidor); |
---|
135 | |
---|
136 | // bind .. |
---|
137 | $sr=ldap_bind($cc,$ldap_dn,$ldap_passwd); |
---|
138 | |
---|
139 | $filtro = 'uid='.$aux_uid; |
---|
140 | |
---|
141 | // Pesquisa uid no LDAP |
---|
142 | $sr=ldap_search($cc, $ldap_context,$filtro); |
---|
143 | |
---|
144 | // Pega resultado .... |
---|
145 | $info = ldap_get_entries($cc, $sr); |
---|
146 | |
---|
147 | // Tem de achar só uma entrada.....ao menos uma.... |
---|
148 | if($info["count"]!=1) |
---|
149 | { |
---|
150 | ldap_close($cc); |
---|
151 | |
---|
152 | return false; |
---|
153 | } |
---|
154 | |
---|
155 | if(!$info[0]["usercertificate"][0]) |
---|
156 | { |
---|
157 | //Usuario sem certificado cadastrado |
---|
158 | ldap_close($cc); |
---|
159 | return false; |
---|
160 | } |
---|
161 | |
---|
162 | $a = new certificadoB(); |
---|
163 | $R = $a->encriptar_senha($aux_senha,$info[0]["usercertificate"][0]); |
---|
164 | if(!$R) |
---|
165 | { |
---|
166 | ldap_close($cc); |
---|
167 | return false; |
---|
168 | } |
---|
169 | $user_info = array(); |
---|
170 | $aux1 = $info[0]["dn"]; |
---|
171 | $user_info['cryptpassword'] = $R; |
---|
172 | ldap_modify($cc,$aux1,$user_info); |
---|
173 | |
---|
174 | ldap_close($cc); |
---|
175 | |
---|
176 | return true; |
---|
177 | } |
---|
178 | |
---|
179 |
|
---|
180 | function check_logoutcode($code)
|
---|
181 | {
|
---|
182 | switch($code)
|
---|
183 | {
|
---|
184 | case 1:
|
---|
185 | return lang('You have been successfully logged out');
|
---|
186 | break;
|
---|
187 | case 2:
|
---|
188 | return lang('Sorry, your login has expired');
|
---|
189 | break;
|
---|
190 | case 4:
|
---|
191 | return lang('Cookies are required to login to this site.');
|
---|
192 | break;
|
---|
193 | case 5:
|
---|
194 | return '<font color="FF0000">' . lang('Bad login or password') . '</font>';
|
---|
195 | break;
|
---|
196 | case 200:
|
---|
197 | return '<font color="FF0000">' . lang('Invalid code') . '</font>';
|
---|
198 | break;
|
---|
199 | case 202:
|
---|
200 | return '<font color="FF0000">' . lang('Account is expired') . '</font>';
|
---|
201 | break;
|
---|
202 | case 203:
|
---|
203 | return '<font color="FF0000">' . lang('New Password and Confirm Password doesnt are equal') . '</font>';
|
---|
204 | break;
|
---|
205 | case 204:
|
---|
206 | return '<font color="FF0000">' . lang('New Password and Current Password are similar') . '</font>';
|
---|
207 | break;
|
---|
208 | case 205:
|
---|
209 | return '<font color="FF0000">' . lang('Your password must contain %1 or more letters', $GLOBALS['phpgw_info']['server']['num_letters_userpass']) . '</font>';
|
---|
210 | break;
|
---|
211 | case 206:
|
---|
212 | return '<font color="FF0000">' . lang('Your password is very simple, use numbers, uppercase, lowercase and special characters') . '</font>';
|
---|
213 | break;
|
---|
214 | case 207:
|
---|
215 | return '<font color="FF0000">' . lang('Your password contains characters not allowed') . '</font>';
|
---|
216 | break;
|
---|
217 | case 208:
|
---|
218 | return '<font color="FF0000">' . lang('New password with more than three consecutives equals caracteres') . '</font>';
|
---|
219 | break;
|
---|
220 | case 209:
|
---|
221 | return '<font color="0000FF">' . lang('password has been updated') . '</font>';
|
---|
222 | break;
|
---|
223 | case 98:
|
---|
224 | $valor_cookie = 1;
|
---|
225 | setcookie("contador", 1,0);
|
---|
226 | return '<font color="FF0000">' . lang('Account is expired') . '</font>';
|
---|
227 | break;
|
---|
228 | case 99:
|
---|
229 | return '<font color="FF0000">' . lang('Blocked, too many attempts') . '</font>';
|
---|
230 | break;
|
---|
231 | case 10:
|
---|
232 | $GLOBALS['phpgw']->session->phpgw_setcookie('sessionid');
|
---|
233 | $GLOBALS['phpgw']->session->phpgw_setcookie('kp3');
|
---|
234 | $GLOBALS['phpgw']->session->phpgw_setcookie('domain');
|
---|
235 |
|
---|
236 | //fix for bug php4 expired sessions bug
|
---|
237 | if($GLOBALS['phpgw_info']['server']['sessions_type'] == 'php4')
|
---|
238 | {
|
---|
239 | $GLOBALS['phpgw']->session->phpgw_setcookie(PHPGW_PHPSESSID);
|
---|
240 | }
|
---|
241 |
|
---|
242 | return '<font color="#FF0000">' . lang('Your session could not be verified.') . '</font>';
|
---|
243 | break;
|
---|
244 | default:
|
---|
245 | return ' ';
|
---|
246 | }
|
---|
247 | }
|
---|
248 |
|
---|
249 | /* Program starts here */
|
---|
250 |
|
---|
251 | if($_POST['user'])
|
---|
252 | {
|
---|
253 | # Usuario tem de ser alfanumerico, e pode ter '-_.' ....
|
---|
254 | $test_testx = str_replace('-','',$_POST['user']); |
---|
255 | $test_testy = str_replace('.','',$test_testx); |
---|
256 | $test_test = str_replace('_','',$test_testy);
|
---|
257 | if(!ctype_alnum($test_test))
|
---|
258 | {
|
---|
259 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=5'));
|
---|
260 | exit();
|
---|
261 | }
|
---|
262 | }
|
---|
263 |
|
---|
264 | if($GLOBALS['phpgw_info']['server']['auth_type'] == 'http' && isset($_SERVER['PHP_AUTH_USER']))
|
---|
265 | {
|
---|
266 | $submit = True;
|
---|
267 | $login = $_SERVER['PHP_AUTH_USER'];
|
---|
268 | $passwd = $_SERVER['PHP_AUTH_PW'];
|
---|
269 | $passwd_type = 'text';
|
---|
270 | }
|
---|
271 | else
|
---|
272 | {
|
---|
273 | $passwd = $_POST['passwd'];
|
---|
274 | $passwd_type = $_POST['passwd_type'];
|
---|
275 | }
|
---|
276 |
|
---|
277 | # Apache + mod_ssl style SSL certificate authentication
|
---|
278 | # Certificate (chain) verification occurs inside mod_ssl
|
---|
279 | //$GLOBALS['phpgw_info']['server']['auth_type'] = 'sqlssl';
|
---|
280 |
|
---|
281 | if($GLOBALS['phpgw_info']['server']['auth_type'] == 'sqlssl' && isset($_SERVER['SSL_CLIENT_S_DN']) && !isset($_GET['cd']))
|
---|
282 | {
|
---|
283 | # an X.509 subject looks like:
|
---|
284 | # /CN=john.doe/OU=Department/O=Company/C=xx/Email=john@comapy.tld/L=City/
|
---|
285 | # the username is deliberately lowercase, to ease LDAP integration
|
---|
286 | $sslattribs = explode('/',$_SERVER['SSL_CLIENT_S_DN']);
|
---|
287 | # skip the part in front of the first '/' (nothing)
|
---|
288 | //$sslattributes['Email'] = $GLOBALS['certificado']->dados['email'];
|
---|
289 | while($sslattrib = next($sslattribs))
|
---|
290 | {
|
---|
291 | list($key,$val) = explode('=',$sslattrib);
|
---|
292 | $sslattributes[$key] = $val;
|
---|
293 | }
|
---|
294 | if(isset($sslattributes['Email']))
|
---|
295 | {
|
---|
296 | $submit = True;
|
---|
297 | # login will be set here if the user logged out and uses a different username with
|
---|
298 | # the same SSL-certificate.
|
---|
299 | if(!isset($_POST['login'])&&isset($sslattributes['Email']))
|
---|
300 | {
|
---|
301 | $login = $sslattributes['Email'];
|
---|
302 | # not checked against the database, but delivered to authentication module
|
---|
303 | $passwd = $_SERVER['SSL_CLIENT_S_DN'];
|
---|
304 | }
|
---|
305 | }
|
---|
306 | unset($key);
|
---|
307 | unset($val);
|
---|
308 | unset($sslattributes);
|
---|
309 | }
|
---|
310 | $ldap_info="";
|
---|
311 | if(isset($passwd_type) || $_POST['submitit_x'] || $_POST['submitit_y'] || $submit)
|
---|
312 | {
|
---|
313 | // Primeiro testa o captcha....se houver......
|
---|
314 | if( $GLOBALS['phpgw_info']['server']['captcha']==1)
|
---|
315 | {
|
---|
316 | if(isset($_POST['codigo']))
|
---|
317 | {
|
---|
318 | if ($_SESSION['CAPTCHAString'] != strtoupper($_POST['codigo']))
|
---|
319 | {
|
---|
320 | if (isset($_POST['npasswd']))
|
---|
321 | {
|
---|
322 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=200&ts=202'));
|
---|
323 | }
|
---|
324 | else
|
---|
325 | {
|
---|
326 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=200'));
|
---|
327 | }
|
---|
328 | }
|
---|
329 | unset($_SESSION['CAPTCHAString']);
|
---|
330 | }
|
---|
331 | }
|
---|
332 |
|
---|
333 |
|
---|
334 | //Faz uma busca inicial por atributos no ldap para que os resultados sejam utilizados pelo restante do programa
|
---|
335 | //Utilizando um diretorio corporativo, o dn do usuario pode estar localizado em qualquer ramo do diretorio
|
---|
336 | //system('echo "Login: bind em ldap" >> /tmp/controle');
|
---|
337 | $common = CreateObject('phpgwapi.common');
|
---|
338 | $ldap_conn = $common->ldapConnect(); //bind como Admin para buscar o atributo de expiracao e o dn do usuario
|
---|
339 | if(isset($GLOBALS['phpgw_info']['server']['atributoexpiracao']))
|
---|
340 | {
|
---|
341 | $justthese = array($GLOBALS['phpgw_info']['server']['atributoexpiracao']);
|
---|
342 | }
|
---|
343 | else
|
---|
344 | {
|
---|
345 | $justthese = array("phpgwaccountexpires");
|
---|
346 | }
|
---|
347 | $filter="(&(phpgwAccountType=u)(uid=".$_POST['user']."))";
|
---|
348 | $ldap_search = ldap_search($ldap_conn, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
|
---|
349 | $ldap_info = ldap_get_entries($ldap_conn, $ldap_search);
|
---|
350 | ldap_close($ldap_conn);
|
---|
351 | // Testa os cpos de troca de senha, se existem
|
---|
352 | if($_POST['npasswd'] || $_POST['cnpasswd'])
|
---|
353 | {
|
---|
354 | // Default number of letters = 8
|
---|
355 | if (!$GLOBALS['phpgw_info']['server']['num_letters_userpass'])
|
---|
356 | $GLOBALS['phpgw_info']['server']['num_letters_userpass'] = 8;
|
---|
357 | // Default number of special letters = 1
|
---|
358 | if (!$GLOBALS['phpgw_info']['server']['num_special_letters_userpass'])
|
---|
359 | $GLOBALS['phpgw_info']['server']['num_special_letters_userpass'] = 1;
|
---|
360 | if(strlen($_POST['npasswd']) < $GLOBALS['phpgw_info']['server']['num_letters_userpass'])
|
---|
361 | {
|
---|
362 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=205&ts=202'));
|
---|
363 | }
|
---|
364 | // nova senha e confirma nova senha devem ser iguais ...
|
---|
365 | if($_POST['npasswd'] != $_POST['cnpasswd'])
|
---|
366 | {
|
---|
367 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=203&ts=202'));
|
---|
368 | }
|
---|
369 | if (!(ereg ("(^[a-zA-Z_.\-\!@#$%&*+=|]*)$", $_POST['npasswd'] ) or
|
---|
370 | ereg ("(^[0-9_.\-\!@#$%&*+=|]*)$", $_POST['npasswd'] ) or
|
---|
371 | ereg ("(^[a-zA-Z0-9]*)$", $_POST['npasswd'] ) or
|
---|
372 | ereg ("(^[a-zA-Z0-9_.\-\!@#$%&*+=|]*)$", $_POST['npasswd'] )))
|
---|
373 | {
|
---|
374 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=207&ts=202'));
|
---|
375 | }
|
---|
376 | for ($j=0 ; $j<(strlen($_POST['npasswd'])-2); $j++)
|
---|
377 | {
|
---|
378 | if ($_POST['npasswd'][$j]==$_POST['npasswd'][$j+1] && $_POST['npasswd'][$j]==$_POST['npasswd'][$j+2])
|
---|
379 | {
|
---|
380 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=208&ts=202'));
|
---|
381 | break;
|
---|
382 | }
|
---|
383 | }
|
---|
384 | $similar=false;
|
---|
385 | for ($j=0 ; $j<8; $j++)
|
---|
386 | {
|
---|
387 | for ($k=0 ; $k<8; $k++)
|
---|
388 | {
|
---|
389 | if (similar_text(substr($_POST['passwd'],$j,3),substr($_POST['npasswd'],$k,3))>2)
|
---|
390 | {
|
---|
391 | $similar=true;
|
---|
392 | }
|
---|
393 | }
|
---|
394 | }
|
---|
395 | // a nova senha e a senha atual nao podem ser "similares" ...
|
---|
396 | if ($similar || $_POST['passwd'] == $_POST['npasswd'])
|
---|
397 | {
|
---|
398 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=204&ts=202'));
|
---|
399 | }
|
---|
400 | // complexidade da senha
|
---|
401 | $passcomplex=0;
|
---|
402 | if (ereg('[a-zA-Z]',$_POST['npasswd'])) {$passcomplex=$passcomplex+1;}
|
---|
403 | if (ereg('[0-9]',$_POST['npasswd'])) {$passcomplex=$passcomplex+1;}
|
---|
404 | if (ereg('[^0-9a-zA-Z]',$_POST['npasswd'])) {$passcomplex=$passcomplex+1;}
|
---|
405 | if ($passcomplex < 2)
|
---|
406 | {
|
---|
407 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=206&ts=202'));
|
---|
408 | }
|
---|
409 | //Tentando fazer bind com o dn do usuario
|
---|
410 | $ldap_conn = ldap_connect($GLOBALS['phpgw_info']['server']['ldap_host']);
|
---|
411 | if (!$ldap_conn)
|
---|
412 | {
|
---|
413 | printf("<b>Error: Can't bind to LDAP server!");
|
---|
414 | die;
|
---|
415 | }
|
---|
416 | $dn=$ldap_info[0]['dn'];
|
---|
417 | //system('echo "'.ldap_errno($ldap_conn).'" >>/tmp/controle');
|
---|
418 | //Tenta fazer bind no diretorio, se nao conseguir, verifica se a negacao de autenticacao foi por causa de uma expiracao de senhas
|
---|
419 | //system('echo "Dn para bind: '.$ldap_info[0]['dn'].'" >>/tmp/controle');
|
---|
420 | if (!ldap_bind($ldap_conn,$ldap_info[0]['dn'],$_POST['passwd']))
|
---|
421 | {
|
---|
422 | //Verificando se a negacao de bind foi proveniente de uma expiracao de senha
|
---|
423 | //system('echo "NAO conseguiu dar bind" >>/tmp/controle');
|
---|
424 | $now=time();
|
---|
425 | //Verificando se a senha esta expirada
|
---|
426 | $expired=false;
|
---|
427 | if(isset($GLOBALS['phpgw_info']['server']['atributoexpiracao']))
|
---|
428 | {
|
---|
429 | //system('echo "Atributo de expiracao configurado." >>/tmp/controle');
|
---|
430 | //system('echo "now: '.$now.'" >>/tmp/controle');
|
---|
431 | //system('echo "atributo de expiracao: '.strtotime($ldap_info[0][$GLOBALS['phpgw_info']['server']['atributoexpiracao']][0]).'" >>/tmp/controle');
|
---|
432 | //if (strtotime($ldap_info[0][$GLOBALS['phpgw_info']['server']['atributoexpiracao']][0])<$now)
|
---|
433 | system('echo "chegou" >>/tmp/controle');
|
---|
434 | if (($ldap_info[0]["phpgwaccountexpires"][0]!="-1")&&(strtotime($ldap_info[0]["phpgwaccountexpires"][0])<$now))
|
---|
435 | {
|
---|
436 | //system('echo "Encontrou atributo expirado" >>/tmp/controle');
|
---|
437 | $expired=true;
|
---|
438 | }
|
---|
439 | }
|
---|
440 | else
|
---|
441 | {
|
---|
442 |
|
---|
443 | //Se o atributo de expiracao nao estiver configurado pressupoe que eh unixtime (phpgwaccountexpires)
|
---|
444 | if (($ldap_info[0]["phpgwaccountexpires"][0]!="-1")&&(strtotime($ldap_info[0]["phpgwaccountexpires"][0])<$now))
|
---|
445 | {
|
---|
446 | //system('echo "Encontrou atributo expirado - phpgwaccoutexpires" >>/tmp/controle');
|
---|
447 | $expired=true;
|
---|
448 | }
|
---|
449 | }
|
---|
450 | if ($expired)
|
---|
451 | {
|
---|
452 | //A negacao de bind proveio de uma expiracao de senhas.
|
---|
453 | //Providencia a troca de senhas e, se configurado, também o ajuste do atributo de expiracao.
|
---|
454 | //system('echo "vai chamar o change_password" >>/tmp/controle');
|
---|
455 | if($GLOBALS['phpgw']->auth->change_password_user($passwd, $_POST['npasswd'],$dn,true))
|
---|
456 | {
|
---|
457 | //A troca de senhas funcionou
|
---|
458 | //system('echo "Login: troca de senhas OK" >>/tmp/controle');
|
---|
459 | if($GLOBALS['phpgw_info']['server']['diretorioescravo'])
|
---|
460 | {
|
---|
461 | //Tempo necessario para que o slave receba a atualizacao.
|
---|
462 | sleep(1);
|
---|
463 | } |
---|
464 | // TESTA SE DEVE CIFRAR A SENHA COM CHAVE PUBLICA DO CERTIFICADO (PARA LOGIN COM CERTIFICADO)... |
---|
465 | if($GLOBALS['phpgw_info']['server']['certificado']) |
---|
466 | { |
---|
467 | if(!$GLOBALS['phpgw_info']['server']['atributousuarios'] or $GLOBALS['phpgw_info']['server']['atributousuarios'] == "person") |
---|
468 | { |
---|
469 | $RR = grava_senha_criptografada_com_certificado_no_ldap($_POST['user'],$_POST['npasswd']); |
---|
470 | } |
---|
471 | }
|
---|
472 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/logout.php?cd=209');
|
---|
473 | }
|
---|
474 | else
|
---|
475 | {
|
---|
476 | //Direciona para senha incorreta na tela de troca de senhas
|
---|
477 | //system('echo "Login: troca de senhas PROBLEMA" >>/tmp/controle');
|
---|
478 | $GLOBALS['phpgw']->redirect("" . '/login.php?cd=5&ts=202');
|
---|
479 | }
|
---|
480 | }
|
---|
481 | else
|
---|
482 | {
|
---|
483 | //A senha digitada estava incorreta
|
---|
484 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?cd=5&ts=202');
|
---|
485 | }
|
---|
486 | }
|
---|
487 | else
|
---|
488 | {
|
---|
489 | //Usuario executou autenticacao no diretorio - a expiracao so pode ter vindo de uma politica de expiracao do proprio expresso
|
---|
490 | //system('echo "SIM conseguiu dar bind" >>/tmp/controle');
|
---|
491 | if($GLOBALS['phpgw_info']['server']['politicasenhas']=='expresso')
|
---|
492 | {
|
---|
493 | //Se a politica de senhas for do Expresso eh necessario verificar se o usuario estah expirado
|
---|
494 | $now=time();
|
---|
495 | $common1 = CreateObject('phpgwapi.common');
|
---|
496 | $ldap_conn1 = $common1->ldapConnect();
|
---|
497 | if ($GLOBALS['phpgw_info']['server']['num_days_pwd_validate'])
|
---|
498 | {
|
---|
499 | $aux=$GLOBALS['phpgw_info']['server']['num_days_pwd_validate'];
|
---|
500 | }
|
---|
501 | else
|
---|
502 | {
|
---|
503 | $aux=90;
|
---|
504 | }
|
---|
505 | //$entry['phpgwaccountexpires'] = $now + ($aux * 86400);
|
---|
506 | if(isset($GLOBALS['phpgw_info']['server']['atributoexpiracao']))
|
---|
507 | {
|
---|
508 | if(substr($ldap_info[0][$GLOBALS['phpgw_info']['server']['atributoexpiracao']][0],-1,1) == "Z")
|
---|
509 | {
|
---|
510 | if($GLOBALS['phpgw_info']['server']['politicasenhas']=='expresso')
|
---|
511 | {
|
---|
512 | //quando a data de expiracao estah no formato yyyymmddhhmmssZ
|
---|
513 | $entry[$GLOBALS['phpgw_info']['server']['atributoexpiracao']] = strftime("%Y%m%d%H%M%SZ", $now + ($aux * 86400));
|
---|
514 | }
|
---|
515 | }
|
---|
516 | else
|
---|
517 | {
|
---|
518 | if($GLOBALS['phpgw_info']['server']['politicasenhas']=='expresso')
|
---|
519 | {
|
---|
520 | //Outro atributo ldap que, assim como o phpgwaccounttype, tambem contem hora em formato unix
|
---|
521 | $entry[$GLOBALS['phpgw_info']['server']['atributoexpiracao']] = $now + ($aux * 86400);
|
---|
522 | }
|
---|
523 | }
|
---|
524 | }
|
---|
525 | else
|
---|
526 | {
|
---|
527 | //Se a polÃtica for no diretorio nao precisa alterar o atributo de expiracao
|
---|
528 | if($GLOBALS['phpgw_info']['server']['politicasenhas']=='expresso')
|
---|
529 | {
|
---|
530 | $entry['phpgwaccountexpires'] = $now + ($aux * 86400);
|
---|
531 | }
|
---|
532 | }
|
---|
533 | ldap_mod_replace($ldap_conn1,$ldap_info[0]['dn'], $entry);
|
---|
534 | }
|
---|
535 | }
|
---|
536 | }
|
---|
537 |
|
---|
538 | if ($ldap_info['count'] != 0)
|
---|
539 | {
|
---|
540 | $_POST['login'] = $_POST['user'];
|
---|
541 | }
|
---|
542 | ldap_close($ldap_conn);
|
---|
543 | if(getenv('REQUEST_METHOD') != 'POST' && $_SERVER['REQUEST_METHOD'] != 'POST' &&
|
---|
544 | !isset($_SERVER['PHP_AUTH_USER']) && !isset($_SERVER['SSL_CLIENT_S_DN']))
|
---|
545 | {
|
---|
546 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=5'));
|
---|
547 | }
|
---|
548 | if($submit == false)
|
---|
549 | {
|
---|
550 | $login = $_POST['login'];
|
---|
551 | }
|
---|
552 | if(strstr($login,'@') === False && isset($_POST['logindomain']))
|
---|
553 | {
|
---|
554 | $login .= '@' . $_POST['logindomain'];
|
---|
555 | }
|
---|
556 | elseif(!isset($GLOBALS['phpgw_domain'][$GLOBALS['phpgw_info']['user']['domain']]))
|
---|
557 | {
|
---|
558 | $login .= '@'.$GLOBALS['phpgw_info']['server']['default_domain'];
|
---|
559 | }
|
---|
560 | //--------------------------------------------------------------------------------------------------
|
---|
561 | //LOGIN
|
---|
562 | //--------------------------------------------------------------------------------------------------
|
---|
563 | //echo "Usuario ==> ".$login." senha ==> ".$passwd;
|
---|
564 | //system('echo "Login: tentou criar sessao" >> /tmp/controle');
|
---|
565 | //Tantando criar a sessao
|
---|
566 | $GLOBALS['sessionid'] = $GLOBALS['phpgw']->session->create(strtolower($login),$passwd,$passwd_type,'u');
|
---|
567 | if(!isset($GLOBALS['sessionid']) || ! $GLOBALS['sessionid'])
|
---|
568 | {
|
---|
569 | //A sessao nao pode ser criada. Verificando quais os possiveis motivos
|
---|
570 | //system('echo "Nao tem sessao" >> /tmp/controle');
|
---|
571 | if ($GLOBALS['phpgw']->session->cd_reason == 99)
|
---|
572 | {
|
---|
573 | //fazendo o redirecionamento para o caso de bloqueio de por excesso de tentativas erradas
|
---|
574 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?cd=' . $GLOBALS['phpgw']->session->cd_reason.'&ts=99');
|
---|
575 | }
|
---|
576 | else
|
---|
577 | {
|
---|
578 | //Verifica se o codigo de erro ldap 49, que o session traduz para cd_reason=5, é proveniente de uma expiracao de senhas. Neste caso, mesmo se o usuário digitar a senha errada, devolve-se a informacao de expiracao. O código de erro "5" também é retornado quando não é encontrado o usuário na base ldap
|
---|
579 | if ($GLOBALS['phpgw']->session->cd_reason == 5)
|
---|
580 | {
|
---|
581 | //system('echo "Retornou erro 49" >>/tmp/controle');
|
---|
582 | //Buscando o atributo de expiracao no ldap
|
---|
583 | $lc = $common->ldapConnect();
|
---|
584 | if(isset($GLOBALS['phpgw_info']['server']['atributoexpiracao']))
|
---|
585 | {
|
---|
586 | $justthese = array("uid",$GLOBALS['phpgw_info']['server']['atributoexpiracao']);
|
---|
587 | }
|
---|
588 | $filter="(&(phpgwAccountType=u)(uid=".$_POST['user']."))";
|
---|
589 | $ldap_search = ldap_search($lc, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
|
---|
590 | $ldap_info = ldap_get_entries($lc, $ldap_search);
|
---|
591 | ldap_close($lc);
|
---|
592 | //Verificando se a senha está expirada
|
---|
593 | if(isset($GLOBALS['phpgw_info']['server']['atributoexpiracao']))
|
---|
594 | {
|
---|
595 | //Analisa a expiracao atraves do tempo da maquina
|
---|
596 | $now=time();
|
---|
597 | //Se o atributo de expiracao nao existir pode ser por causa da nao existencia do usuario no ldap
|
---|
598 | //Verifica o tipo do formato do tempo de expiracao para concluir se a senha está expirada ou não.
|
---|
599 | if (($ldap_info[0][$GLOBALS['phpgw_info']['server']['atributoexpiracao']][0])&&(substr($ldap_info[0][$GLOBALS['phpgw_info']['server']['atributoexpiracao']][0],-1,1) == "Z"))
|
---|
600 | {
|
---|
601 | if (strtotime($ldap_info[0][$GLOBALS['phpgw_info']['server']['atributoexpiracao']][0] < $now))
|
---|
602 | {
|
---|
603 | //Senha do usuario estah expirada, pressupoe-se que colocou a senha certa, pois o erro do ldap eh o mesmo (49)
|
---|
604 | //system('echo "Detectou expiracao de senhas: " >>/tmp/controle');
|
---|
605 | if(isset($GLOBALS['phpgw_info']['server']['webserver_url']))
|
---|
606 | {
|
---|
607 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?cd=98&ts=202');
|
---|
608 | }
|
---|
609 | else
|
---|
610 | {
|
---|
611 | //Entra aqui em duas ocasioes - quando expirado:
|
---|
612 | //login errado na tela sem troca de senhas
|
---|
613 | //troca de senhas com a senha atual errada
|
---|
614 | if(isset($_POST['npasswd']))
|
---|
615 | {
|
---|
616 | //Nao logou porque o usuario estah com a senha expirada - troca de senhas
|
---|
617 | //Pode ter errado a senha também.
|
---|
618 | //system('echo "NAO Achou a url - tela troca de senhas: " >>/tmp/controle');
|
---|
619 | $GLOBALS['phpgw']->redirect_link("" . '/logout.php?cd=5&ts=202');
|
---|
620 | }
|
---|
621 | else
|
---|
622 | {
|
---|
623 | //Nao logou porque o usuario estah com a senha expirada - tela inicial
|
---|
624 | //Para o caso de usuario que tenta se logar na tela inicial com a senha expirada
|
---|
625 | //system('echo "NAO Achou a url - tela inicial: " >>/tmp/controle'); //funciona
|
---|
626 | $GLOBALS['phpgw']->redirect_link("" . '/login.php?cd=98&ts=202'); //funciona
|
---|
627 | }
|
---|
628 | }
|
---|
629 | }
|
---|
630 | else
|
---|
631 | {
|
---|
632 | //senha do usuario nao estah expirada e, como o ldap deu login invalido, ocorreu erro de senha
|
---|
633 | //system('echo "NAO estah expirado: " >>/tmp/controle');
|
---|
634 | if(isset($_POST['npasswd']))
|
---|
635 | {
|
---|
636 | $GLOBALS['phpgw']->redirect_link("" . '/login.php?cd=5&ts=202');
|
---|
637 | }
|
---|
638 | else
|
---|
639 | {
|
---|
640 | $GLOBALS['phpgw']->redirect_link("" . '/login.php?cd=5');
|
---|
641 | }
|
---|
642 |
|
---|
643 | }
|
---|
644 | }
|
---|
645 | else
|
---|
646 | {
|
---|
647 | //Caso do atributo de expiracao de senhas estar no formato unixtime
|
---|
648 | if (($ldap_info[0][$GLOBALS['phpgw_info']['server']['atributoexpiracao']][0])&&($ldap_info[0][$GLOBALS['phpgw_info']['server']['atributoexpiracao']][0] < $now)&&($ldap_info[0][$GLOBALS['phpgw_info']['server']['atributoexpiracao']][0]!="-1"))
|
---|
649 | {
|
---|
650 | //Senha do usuario estah expirada, pressupoe-se que colocou a senha certa, pois o erro do ldap eh o mesmo (49)
|
---|
651 | //system('echo "Detectou expiracao de senhas: " >>/tmp/controle');
|
---|
652 | if(isset($GLOBALS['phpgw_info']['server']['webserver_url']))
|
---|
653 | {
|
---|
654 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?cd=98&ts=202');
|
---|
655 | }
|
---|
656 | else
|
---|
657 | {
|
---|
658 | //Entra aqui em duas ocasioes - quando expirado:
|
---|
659 | //login errado na tela sem troca de senhas
|
---|
660 | //troca de senhas com a senha atual errada
|
---|
661 | if(isset($_POST['npasswd']))
|
---|
662 | {
|
---|
663 | //Nao logou porque o usuario estah com a senha expirada - troca de senhas
|
---|
664 | //Pode ter errado a senha também.
|
---|
665 | //system('echo "NAO Achou a url - tela troca de senhas: " >>/tmp/controle');
|
---|
666 | $GLOBALS['phpgw']->redirect_link("" . '/logout.php?cd=5&ts=202');
|
---|
667 | }
|
---|
668 | else
|
---|
669 | {
|
---|
670 | //Nao logou porque o usuario estah com a senha expirada - tela inicial
|
---|
671 | //Para o caso de usuario que tenta se logar na tela inicial com a senha expirada
|
---|
672 | //system('echo "NAO Achou a url - tela inicial: " >>/tmp/controle'); //funciona
|
---|
673 | $GLOBALS['phpgw']->redirect_link("" . '/login.php?cd=98&ts=202'); //funciona
|
---|
674 | }
|
---|
675 | }
|
---|
676 | }
|
---|
677 | else
|
---|
678 | {
|
---|
679 | //senha do usuario nao estah expirada e, como o ldap deu login invalido, ocorreu erro de senha
|
---|
680 | //system('echo "NAO estah expirado: " >>/tmp/controle');
|
---|
681 | if(isset($_POST['npasswd']))
|
---|
682 | {
|
---|
683 | $GLOBALS['phpgw']->redirect_link("" . '/login.php?cd=5&ts=202');
|
---|
684 | }
|
---|
685 | else
|
---|
686 | {
|
---|
687 | $GLOBALS['phpgw']->redirect_link("" . '/login.php?cd=5');
|
---|
688 | }
|
---|
689 | }
|
---|
690 | }
|
---|
691 | }
|
---|
692 | }
|
---|
693 | else
|
---|
694 | {
|
---|
695 | if ($GLOBALS['phpgw']->session->cd_reason == 98)
|
---|
696 | {
|
---|
697 | //fazendo o redirecionamento para o caso de bloqueio de por excesso de tentativas erradas
|
---|
698 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?cd=' . $GLOBALS['phpgw']->session->cd_reason.'&ts=202');
|
---|
699 | }
|
---|
700 | else
|
---|
701 | {
|
---|
702 | // trocasenha soh vai existir qdo o form for gerado via chamada anterior com com "cd=202"
|
---|
703 | if($_POST['cdx']=='202' )
|
---|
704 | {
|
---|
705 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?cd=' . $GLOBALS['phpgw']->session->cd_reason.'&ts=202');
|
---|
706 | }
|
---|
707 | else
|
---|
708 | {
|
---|
709 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?cd=' . $GLOBALS['phpgw']->session->cd_reason);
|
---|
710 | }
|
---|
711 | }
|
---|
712 | }
|
---|
713 | }
|
---|
714 | }
|
---|
715 | else
|
---|
716 | {
|
---|
717 | //Realiza a troca de senhas caso a polÃtica seja local, ou seja, caso o diretorio continue autenticando o usuario com a senha expirada.
|
---|
718 | //system('echo "Encontrou número de sessao" >> /tmp/controle');
|
---|
719 | // Atencao: se existir o cpo "npasswd" providencia a troca da senha do usuario....
|
---|
720 | if($_POST['npasswd'])
|
---|
721 | {
|
---|
722 | //system('echo "entrou no change" >> /tmp/controle');
|
---|
723 | //$GLOBALS['phpgw']->auth->change_password($passwd, $_POST['npasswd']);
|
---|
724 | if($GLOBALS['phpgw_info']['server']['politicasenhas']=='expresso')
|
---|
725 | {
|
---|
726 | $GLOBALS['phpgw']->auth->change_password_user($passwd, $_POST['npasswd'],$dn,false);
|
---|
727 | }
|
---|
728 | else
|
---|
729 | {
|
---|
730 | $GLOBALS['phpgw']->auth->change_password_user($passwd, $_POST['npasswd'],$dn,true);
|
---|
731 | } |
---|
732 | // TESTA SE DEVE CIFRAR A SENHA COM CHAVE PUBLICA DO CERTIFICADO (PARA LOGIN COM CERTIFICADO)... |
---|
733 | if($GLOBALS['phpgw_info']['server']['certificado']) |
---|
734 | { |
---|
735 | if(!$GLOBALS['phpgw_info']['server']['atributousuarios'] or $GLOBALS['phpgw_info']['server']['atributousuarios'] == "person") |
---|
736 | { |
---|
737 | $RR = grava_senha_criptografada_com_certificado_no_ldap($_POST['user'],$_POST['npasswd']); |
---|
738 | } |
---|
739 | }
|
---|
740 | $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/logout.php?cd=209');
|
---|
741 | }
|
---|
742 | if ($_POST['lang'] && preg_match('/^[a-z]{2}(-[a-z]{2}){0,1}$/',$_POST['lang']) &&
|
---|
743 | $_POST['lang'] != $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'])
|
---|
744 | {
|
---|
745 | $GLOBALS['phpgw']->preferences->add('common','lang',$_POST['lang'],'session');
|
---|
746 | }
|
---|
747 | if(!$GLOBALS['phpgw_info']['server']['disable_autoload_langfiles'])
|
---|
748 | {
|
---|
749 | $GLOBALS['phpgw']->translation->autoload_changed_langfiles();
|
---|
750 | }
|
---|
751 | $forward = isset($_GET['phpgw_forward']) ? urldecode($_GET['phpgw_forward']) : @$_POST['phpgw_forward'];
|
---|
752 | if (!$forward)
|
---|
753 | {
|
---|
754 | $extra_vars['cd'] = 'yes';
|
---|
755 | $forward = '/home.php';
|
---|
756 | }
|
---|
757 | else
|
---|
758 | {
|
---|
759 | list($forward,$extra_vars) = explode('?',$forward,2);
|
---|
760 | }
|
---|
761 | if ($GLOBALS['phpgw_info']['server']['use_https'] != 2)
|
---|
762 | {
|
---|
763 | $forward = 'http://'.$_SERVER['HTTP_HOST'].($GLOBALS['phpgw']->link($forward.'?cd=yes'));
|
---|
764 | echo "<script language='Javascript1.3'>location.href='".$forward."'</script>";
|
---|
765 | }
|
---|
766 | else
|
---|
767 | {
|
---|
768 | $GLOBALS['phpgw']->redirect_link($forward,$extra_vars);
|
---|
769 | }
|
---|
770 | }
|
---|
771 | }
|
---|
772 | else
|
---|
773 | {
|
---|
774 | // !!! DONT CHANGE THESE LINES !!!
|
---|
775 | // If there is something wrong with this code TELL ME!
|
---|
776 | // Commenting out the code will not fix it. (jengo)
|
---|
777 | if(isset($_COOKIE['last_loginid']))
|
---|
778 | {
|
---|
779 | $accounts = CreateObject('phpgwapi.accounts');
|
---|
780 | $prefs = CreateObject('phpgwapi.preferences', $accounts->name2id($_COOKIE['last_loginid']));
|
---|
781 |
|
---|
782 | if($prefs->account_id)
|
---|
783 | {
|
---|
784 | $GLOBALS['phpgw_info']['user']['preferences'] = $prefs->read_repository();
|
---|
785 | }
|
---|
786 | }
|
---|
787 | if ($_GET['lang'])
|
---|
788 | {
|
---|
789 | $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] = $_GET['lang'];
|
---|
790 | }
|
---|
791 | elseif(!isset($_COOKIE['last_loginid']) || !$prefs->account_id)
|
---|
792 | {
|
---|
793 | // If the lastloginid cookies isn't set, we will default to the first language,
|
---|
794 | // the users browser accepts.
|
---|
795 | list($lang) = explode(',',$_SERVER['HTTP_ACCEPT_LANGUAGE']);
|
---|
796 | /*
|
---|
797 | if(strlen($lang) > 2)
|
---|
798 | {
|
---|
799 | $lang = substr($lang,0,2);
|
---|
800 |
|
---|
801 | }
|
---|
802 | */
|
---|
803 | $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] = $lang;
|
---|
804 | }
|
---|
805 | #print 'LANG:' . $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] . '<br>';
|
---|
806 | $GLOBALS['phpgw']->translation->init(); // this will set the language according to the (new) set prefs
|
---|
807 | $GLOBALS['phpgw']->translation->add_app('login');
|
---|
808 | $GLOBALS['phpgw']->translation->add_app('loginscreen');
|
---|
809 | if(lang('loginscreen_message') == 'loginscreen_message*')
|
---|
810 | {
|
---|
811 | $GLOBALS['phpgw']->translation->add_app('loginscreen','en'); // trying the en one
|
---|
812 | }
|
---|
813 | if(lang('loginscreen_message') != 'loginscreen_message*')
|
---|
814 | {
|
---|
815 | $tmpl->set_var('lang_message',stripslashes(lang('loginscreen_message')));
|
---|
816 | }
|
---|
817 | }
|
---|
818 | if($GLOBALS['phpgw_info']['server']['use_prefix_organization'])
|
---|
819 | {
|
---|
820 | $organization_select = "<tr><td width=\"66\" class=\"loginLabel\">";
|
---|
821 | $organization_select .= lang("organization").":</td>";
|
---|
822 | $organization_select .="<td width=\"135\">";
|
---|
823 | $organization_select .="<select name=\"organization\">\n";
|
---|
824 | $obj_organization = CreateObject('phpgwapi.sector_search_ldap');
|
---|
825 | $organizations = $obj_organization->organization_search($GLOBALS['phpgw_info']['server']['ldap_context']);
|
---|
826 | for ($i=0; $i<count($organizations); $i++)
|
---|
827 | {
|
---|
828 | $tmp_array[strtolower($organizations[$i])] = $organizations[$i];
|
---|
829 | }
|
---|
830 | $arrayOrganization = $tmp_array;
|
---|
831 | ksort($arrayOrganization);
|
---|
832 | foreach($arrayOrganization as $organization_name => $organization_vars)
|
---|
833 | {
|
---|
834 | $organization_select .= '<option value="' . $organization_name . '"';
|
---|
835 | if($organization_name == $_COOKIE['last_organization'])
|
---|
836 | {
|
---|
837 | $organization_select .= ' selected';
|
---|
838 | }
|
---|
839 | $organization_select .= '>' . $organization_vars . "</option>\n";
|
---|
840 | }
|
---|
841 | $organization_select .= "</select>\n";
|
---|
842 | $organization_select .="</td><td> </td></tr>";
|
---|
843 | $tmpl->set_var('select_organization',$organization_select);
|
---|
844 | }
|
---|
845 | $domain_select = ' ';
|
---|
846 | $last_loginid = $_COOKIE['last_loginid'];
|
---|
847 | if($GLOBALS['phpgw_info']['server']['show_domain_selectbox'])
|
---|
848 | {
|
---|
849 | $domain_select = "<select name=\"logindomain\">\n";
|
---|
850 | foreach($GLOBALS['phpgw_domain'] as $domain_name => $domain_vars)
|
---|
851 | {
|
---|
852 | $domain_select .= '<option value="' . $domain_name . '"';
|
---|
853 | if($domain_name == $_COOKIE['last_domain'])
|
---|
854 | {
|
---|
855 | $domain_select .= ' selected';
|
---|
856 | }
|
---|
857 | $domain_select .= '>' . $domain_name . "</option>\n";
|
---|
858 | }
|
---|
859 | $domain_select .= "</select>\n";
|
---|
860 | }
|
---|
861 | elseif($last_loginid !== '')
|
---|
862 | {
|
---|
863 | reset($GLOBALS['phpgw_domain']);
|
---|
864 | list($default_domain) = each($GLOBALS['phpgw_domain']);
|
---|
865 | if($_COOKIE['last_domain'] != $default_domain && !empty($_COOKIE['last_domain']))
|
---|
866 | {
|
---|
867 | $last_loginid .= '@' . $_COOKIE['last_domain'];
|
---|
868 | }
|
---|
869 | }
|
---|
870 | $tmpl->set_var('select_domain',$domain_select);
|
---|
871 | foreach($_GET as $name => $value)
|
---|
872 | {
|
---|
873 | if(ereg('phpgw_',$name))
|
---|
874 | {
|
---|
875 | $extra_vars .= '&' . $name . '=' . urlencode($value);
|
---|
876 | }
|
---|
877 | }
|
---|
878 | if($extra_vars)
|
---|
879 | {
|
---|
880 | $extra_vars = '?' . substr($extra_vars,1);
|
---|
881 | }
|
---|
882 |
|
---|
883 | /********************************************************\
|
---|
884 | * Check is the registration app is installed, activated *
|
---|
885 | * And if the register link must be placed *
|
---|
886 | \********************************************************/
|
---|
887 |
|
---|
888 | $cnf_reg = createobject('phpgwapi.config','registration');
|
---|
889 | $cnf_reg->read_repository();
|
---|
890 | $config_reg = $cnf_reg->config_data;
|
---|
891 |
|
---|
892 | if($config_reg[enable_registration]=='True' && $config_reg[register_link]=='True')
|
---|
893 | {
|
---|
894 | $reg_link=' <a href="registration/">'.lang('Not a user yet? Register now').'</a><br/>';
|
---|
895 | }
|
---|
896 | $GLOBALS['phpgw_info']['server']['template_set'] = $GLOBALS['phpgw_info']['login_template_set'];
|
---|
897 | $tmpl->set_var('register_link',$reg_link);
|
---|
898 | $tmpl->set_var('charset',$GLOBALS['phpgw']->translation->charset());
|
---|
899 | $tmpl->set_var('login_url', $GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php' . $extra_vars);
|
---|
900 | $tmpl->set_var('registration_url',$GLOBALS['phpgw_info']['server']['webserver_url'] . '/registration/');
|
---|
901 | $tmpl->set_var('version',$GLOBALS['phpgw_info']['server']['versions']['phpgwapi']);
|
---|
902 | $tmpl->set_var('cd',check_logoutcode($_GET['cd']));
|
---|
903 | $tmpl->set_var('cd_field',$_GET['cd']);
|
---|
904 | $tmpl->set_var('cookie',$last_loginid);
|
---|
905 | $tmpl->set_var('lang_password',lang('password'));
|
---|
906 | $tmpl->set_var('lang_login',lang('login'));
|
---|
907 |
|
---|
908 | $aux_captcha = '';
|
---|
909 | // soh mostra o captcha se for login sem certificado....
|
---|
910 | if($GLOBALS['phpgw_info']['server']['captcha'] && $_GET['cd']!='300' )
|
---|
911 | {
|
---|
912 | if($valor_cookie > $GLOBALS['phpgw_info']['server']['num_badlogin'])
|
---|
913 | {
|
---|
914 | $aux_captcha = '<tr><td colspan=1 class="codigoLabel" width="100" style="padding-left: 15px; padding-top: 10px; padding-right: 5px" ><img src="./seguranca/captcha.php" title="'.lang('Security code').'" alt="'.lang('Security code').'" width="70" ><b>----></b></td> <td align="right" style="padding-right: 10px"><input name="codigo" type="text" size="18" title="'.lang('Type the security code').'"></td> </tr>';
|
---|
915 | $tmpl->set_var('captcha',$aux_captcha);
|
---|
916 | }
|
---|
917 | }
|
---|
918 |
|
---|
919 | if ($_GET['ts']=='202')
|
---|
920 | {
|
---|
921 | $tmpl->set_var('cdx','202');
|
---|
922 | $tmpl->set_var('yn','display:yes');
|
---|
923 | $tmpl->set_var('lang_username',lang('username'));
|
---|
924 | $tmpl->set_var('CPF','<input name="user" size="18" value="" MAXLENGTH="30">');
|
---|
925 | $senha = ' <td width="153" class="loginLabel">'.lang('password').' </td>
|
---|
926 | <td width="105"><input name="passwd" type="password" size="18" onKeyDown="javascript:submitIt(event)"></td>';
|
---|
927 | $tmpl->set_var('senha',$senha);
|
---|
928 | $aux_html = '<tr>
|
---|
929 | <td width="140" class="loginLabel" >'.lang('New Password').'</td>
|
---|
930 | <td width="105"><input name="npasswd" type="password" size="18" ><br></td>
|
---|
931 | </tr>
|
---|
932 | <tr>
|
---|
933 | <td width="155" class="loginLabel" >'.lang('Confirm New Password').'</td>
|
---|
934 | <td width="105"><input name="cnpasswd" type="password" size="18" ><br></td>
|
---|
935 | </tr>';
|
---|
936 | $tmpl->set_var('trocasenha',$aux_html);
|
---|
937 | $tmpl->set_var('botao','<input type="submit" value="' . lang('signin') .'" name="submitit" class="button" onClick="javascript:setLogin()"> ');
|
---|
938 | }
|
---|
939 | else
|
---|
940 | {
|
---|
941 | # aqui vai colocar a applet; ATENCAO: TEM DE TESTAR SE O STIO FOI CONFIGURADO PARA TRATAR CERTIFICADO DIGITAL - VER NO HEADER._INC.PHP
|
---|
942 | /*if($GLOBALS['phpgw_info']['server']['certificado']==1)
|
---|
943 | {
|
---|
944 | $cod_applet = '<tr><td colspan=2 align="CENTER">
|
---|
945 | <object style="display:yes" id="login_applet"
|
---|
946 | classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93" width="300" height="125">
|
---|
947 | <param name="type" value="application/x-java-applet;version=1.4">
|
---|
948 | <param name="code" value="br.gov.serpro.ui.LoginApplet.class">
|
---|
949 | <param name="mayscript" value="true">
|
---|
950 | <param name="archive" value="ExpressoCert.jar">
|
---|
951 | <comment>
|
---|
952 | <embed code="br.gov.serpro.ui.LoginApplet.class" archive="./ExpressoCert.jar"
|
---|
953 | type="application/x-java-applet;version=1.4" width="300" height="125" mayscript="true" >
|
---|
954 | <noembed>
|
---|
955 | No Java Support.
|
---|
956 | </noembed>
|
---|
957 | </embed>
|
---|
958 | </comment>
|
---|
959 | </object>
|
---|
960 | </td></tr> ';
|
---|
961 | $tmpl->set_var('applet',$cod_applet);
|
---|
962 | $tmpl->set_var('CPF','<input type="hidden" name="user" size="18" >');
|
---|
963 | $tmpl->set_var('senha','<td width="105"><input name="passwd" type="hidden" size="18" ></td>');
|
---|
964 | $tmpl->set_var('yn','display: none');
|
---|
965 | }
|
---|
966 | else
|
---|
967 | {*/
|
---|
968 | if ($_GET['cd']=='300' && $GLOBALS['phpgw_info']['server']['certificado']==1){
|
---|
969 | //Zera o Cookie contador, responsavel pelo captcha
|
---|
970 | $valor_cookie = 1;
|
---|
971 | setcookie("contador", 1,0);
|
---|
972 | $link_alterna_login = '<a title="Link para acesso sem Certificado Digital" href="login.php"><font color="#2030F0" face="Verdana, Arial, Helvetica, sans-serif" size="1"><b>' . lang('Access without Digital Certificate') . '</b></font></a><br>';
|
---|
973 | $tmpl->set_var('yn','display:yes');
|
---|
974 | $tmpl->set_var('lang_username','');
|
---|
975 | $tmpl->set_var('CPF','<input name="user" type="hidden" size="18" value="" MAXLENGTH="30">');
|
---|
976 | $senha = '<tr><td colspan=2 align="center"><img border=0 src="phpgwapi/templates/serpro/images/acao.gif"/></td></tr><td width="153" class="CertLabel">Acessando o Certificado Digital.</td>
|
---|
977 | <td><input name="passwd" type="hidden" size="18" onKeyDown="javascript:submitIt(event)"></td>';
|
---|
978 | $tmpl->set_var('senha',$senha);
|
---|
979 | $tmpl->set_var('botao','');
|
---|
980 |
|
---|
981 | // gera paramero com tokens suportados ....
|
---|
982 | $var_tokens = '';
|
---|
983 | for($ii = 1; $ii < 11; $ii++)
|
---|
984 | {
|
---|
985 | if($GLOBALS['phpgw_info']['server']['test_token' . $ii . '1'])
|
---|
986 | $var_tokens .= $GLOBALS['phpgw_info']['server']['test_token' . $ii . '1'] . ',';
|
---|
987 | }
|
---|
988 |
|
---|
989 | if(!$var_tokens)
|
---|
990 | {
|
---|
991 | $var_tokens = 'ePass2000Lx;/usr/lib/libepsng_p11.so,ePass2000Win;c:/windows/system32/ngp11v211.dll';
|
---|
992 | }
|
---|
993 | $param1 = "
|
---|
994 | '<param name=\"token\" value=\"" . substr($var_tokens,0,strlen($var_tokens)) . "\"> ' +
|
---|
995 | ";
|
---|
996 | $param2 = "
|
---|
997 | 'token=\"" . substr($var_tokens,0,strlen($var_tokens)) . "\" ' +
|
---|
998 | ";
|
---|
999 |
|
---|
1000 | $cod_applet =
|
---|
1001 |
|
---|
1002 | /* // com debug ativado
|
---|
1003 | '<script type="text/javascript">
|
---|
1004 | if (navigator.userAgent.match(\'MSIE\')){
|
---|
1005 | document.write(\'<object style="display:yes;width:0;height:0;vertical-align:bottom;" id="login_applet" \' +
|
---|
1006 | \'classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93"> \' +
|
---|
1007 | \'<param name="type" value="application/x-java-applet;version=1.5"> \' +
|
---|
1008 | \'<param name="code" value="LoginApplet.class"> \' + |
---|
1009 | \'<param name="locale" value="' . $lang . '"> \' +
|
---|
1010 | \'<param name="mayscript" value="true"> \' + '
|
---|
1011 | . $param1
|
---|
1012 | . ' \'<param name="archive" value="ExpressoCertLogin.jar,ExpressoCert.jar,commons-httpclient-3.1.jar,commons-logging-1.1.1.jar,commons-codec-1.3.jar,bcmail-jdk15-142.jar,mail.jar,activation.jar,bcprov-jdk15-142.jar"> \' +
|
---|
1013 | \'<param name="debug" value="true"> \' +
|
---|
1014 | \'</object>\');
|
---|
1015 | }
|
---|
1016 | else {
|
---|
1017 | document.write(\'<embed style="display:yes;width:0;height:0;vertical-align:bottom;" id="login_applet" code="LoginApplet.class" locale="' . $lang . '"\' +
|
---|
1018 | \'archive="ExpressoCertLogin.jar,ExpressoCert.jar,commons-httpclient-3.1.jar,commons-logging-1.1.1.jar,commons-codec-1.3.jar,bcmail-jdk15-142.jar,mail.jar,activation.jar,bcprov-jdk15-142.jar" \' + '
|
---|
1019 | . $param2
|
---|
1020 | . ' \'type="application/x-java-applet;version=1.5" debug= "true" mayscript > \' +
|
---|
1021 | \'<noembed> \' +
|
---|
1022 | \'No Java Support. \' +
|
---|
1023 | \'</noembed> \' +
|
---|
1024 | \'</embed> \');
|
---|
1025 | }
|
---|
1026 | </script>';
|
---|
1027 | */
|
---|
1028 | // sem debug ativado
|
---|
1029 | '<script type="text/javascript">
|
---|
1030 | if (navigator.userAgent.match(\'MSIE\')){
|
---|
1031 | document.write(\'<object style="display:yes;width:0;height:0;vertical-align:bottom;" id="login_applet" \' +
|
---|
1032 | \'classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93"> \' +
|
---|
1033 | \'<param name="type" value="application/x-java-applet;version=1.5"> \' +
|
---|
1034 | \'<param name="code" value="LoginApplet.class"> \' + |
---|
1035 | \'<param name="locale" value="' . $lang . '"> \' +
|
---|
1036 | \'<param name="mayscript" value="true"> \' + '
|
---|
1037 | . $param1
|
---|
1038 | . ' \'<param name="archive" value="ExpressoCertLogin.jar,ExpressoCert.jar,commons-httpclient-3.1.jar,commons-logging-1.1.1.jar,commons-codec-1.3.jar,bcmail-jdk15-142.jar,mail.jar,activation.jar,bcprov-jdk15-142.jar"> \' +
|
---|
1039 | \'</object>\');
|
---|
1040 | }
|
---|
1041 | else {
|
---|
1042 | document.write(\'<embed style="display:yes;width:0;height:0;vertical-align:bottom;" id="login_applet" code="LoginApplet.class" locale="' . $lang . '"\' +
|
---|
1043 | \'archive="ExpressoCertLogin.jar,ExpressoCert.jar,commons-httpclient-3.1.jar,commons-logging-1.1.1.jar,commons-codec-1.3.jar,bcmail-jdk15-142.jar,mail.jar,activation.jar,bcprov-jdk15-142.jar" \' + '
|
---|
1044 | . $param2
|
---|
1045 | . ' \'type="application/x-java-applet;version=1.5" mayscript > \' +
|
---|
1046 | \'<noembed> \' +
|
---|
1047 | \'No Java Support. \' +
|
---|
1048 | \'</noembed> \' +
|
---|
1049 | \'</embed> \');
|
---|
1050 | }
|
---|
1051 | </script>';
|
---|
1052 |
|
---|
1053 |
|
---|
1054 | }
|
---|
1055 |
|
---|
1056 | else{
|
---|
1057 | if($GLOBALS['phpgw_info']['server']['certificado']==1)
|
---|
1058 | {
|
---|
1059 | $link_alterna_login = '<img border=0 style="margin: 0px; padding: 0px" src="phpgwapi/templates/serpro/images/lock1_icon.gif"/><a title="' . lang('Link to use digital certificate') . '" href="login.php?cd=300" style="margin: 0px; padding: 0px"><font color="#2030F0" face="Verdana, Arial, Helvetica, sans-serif" size="1"><b>' . lang('Logon with my digital certificate') . '</b></font></a><br>';
|
---|
1060 | }
|
---|
1061 | $tmpl->set_var('yn','display:yes');
|
---|
1062 | $tmpl->set_var('lang_username',lang('username'));
|
---|
1063 | $tmpl->set_var('CPF','<input name="user" size="18" value="" MAXLENGTH="30">');
|
---|
1064 | $senha = ' <td width="153" class="loginLabel">'.lang('password').' </td>
|
---|
1065 | <td width="105"><input name="passwd" type="password" size="18" onKeyDown="javascript:submitIt(event)"></td>';
|
---|
1066 | $tmpl->set_var('senha',$senha);
|
---|
1067 | $tmpl->set_var('botao','<input type="submit" value="' . lang('signin') .'" name="submitit" class="button" onClick="javascript:setLogin()"> ');
|
---|
1068 |
|
---|
1069 | $cod_applet = ' ';
|
---|
1070 | $tmpl->set_var('applet',$cod_applet);
|
---|
1071 |
|
---|
1072 | }
|
---|
1073 | /*
|
---|
1074 | else
|
---|
1075 | {
|
---|
1076 | $tmpl->set_var('yn','display:yes');
|
---|
1077 | $tmpl->set_var('lang_username',lang('username'));
|
---|
1078 | $tmpl->set_var('CPF','<input name="user" size="18" value="" MAXLENGTH="30" >');
|
---|
1079 | $senha = ' <td width="153" class="loginLabel">'.lang('password').' </td>
|
---|
1080 | <td width="105"><input name="passwd" type="password" size="18" onKeyDown="javascript:submitIt(event)"></td>';
|
---|
1081 | $tmpl->set_var('senha',$senha);
|
---|
1082 | $tmpl->set_var('botao','<input type="submit" value="' . lang('signin') .'" name="submitit" class="button" onClick="javascript:setLogin()"> ');
|
---|
1083 |
|
---|
1084 | $cod_applet = ' ';
|
---|
1085 | $tmpl->set_var('applet',$cod_applet);
|
---|
1086 | }
|
---|
1087 | */
|
---|
1088 | $tmpl->set_var('applet',$cod_applet);
|
---|
1089 | $tmpl->set_var('link_alterna_login',$link_alterna_login);
|
---|
1090 |
|
---|
1091 | //}
|
---|
1092 | } |
---|
1093 | |
---|
1094 | $tmpl->set_var('xhelp1',lang('Click to help')); |
---|
1095 | $tmpl->set_var('xhelp2',lang('Click to help')); |
---|
1096 |
|
---|
1097 | $tmpl->set_var('website_title', $GLOBALS['phpgw_info']['server']['site_title']);
|
---|
1098 | $tmpl->set_var('template_set',$GLOBALS['phpgw_info']['login_template_set']);
|
---|
1099 | $tmpl->set_var('bg_color',($GLOBALS['phpgw_info']['server']['login_bg_color']?$GLOBALS['phpgw_info']['server']['login_bg_color']:'FFFFFF'));
|
---|
1100 | $tmpl->set_var('login_caixa_bg_color',($GLOBALS['phpgw_info']['server']['login_caixa_bg_color']?$GLOBALS['phpgw_info']['server']['login_caixa_bg_color']:'FFFFFF'));
|
---|
1101 | $tmpl->set_var('bg_color_title',($GLOBALS['phpgw_info']['server']['login_bg_color_title']?$GLOBALS['phpgw_info']['server']['login_bg_color_title']:'486591'));
|
---|
1102 | if (substr($GLOBALS['phpgw_info']['server']['login_logo_file'],0,4) == 'http')
|
---|
1103 | {
|
---|
1104 | $var['logo_file'] = $GLOBALS['phpgw_info']['server']['login_logo_file'];
|
---|
1105 | }
|
---|
1106 | else
|
---|
1107 | {
|
---|
1108 | $var['logo_file'] = $GLOBALS['phpgw']->common->image('phpgwapi',$GLOBALS['phpgw_info']['server']['login_logo_file']?$GLOBALS['phpgw_info']['server']['login_logo_file']:'');
|
---|
1109 | }
|
---|
1110 |
|
---|
1111 | if (substr($GLOBALS['phpgw_info']['server']['imagem_de_fundo'],0,4) == 'http')
|
---|
1112 | {
|
---|
1113 | $var['imagem_de_fundo'] = $GLOBALS['phpgw_info']['server']['imagem_de_fundo'];
|
---|
1114 | }
|
---|
1115 | else
|
---|
1116 | {
|
---|
1117 | #$var['imagem_de_fundo'] = $GLOBALS['phpgw']->common->image('phpgwapi',$GLOBALS['phpgw_info']['server']['imagem_de_fundo']?$GLOBALS['phpgw_info']['server']['imagem_de_fundo']:'back.jpg');
|
---|
1118 | $var['imagem_de_fundo'] = $GLOBALS['phpgw']->common->image('phpgwapi',$GLOBALS['phpgw_info']['server']['imagem_de_fundo']);
|
---|
1119 | }
|
---|
1120 | $var['imagem_de_fundo_exibicao'] = ($GLOBALS['phpgw_info']['server']['imagem_de_fundo_exibicao'] != ''?$GLOBALS['phpgw_info']['server']['imagem_de_fundo_exibicao']:"background-repeat:repeat-x; overflow:auto;overflow-x:hidden;");
|
---|
1121 | $var['logo_url'] = $GLOBALS['phpgw_info']['server']['login_logo_url']?$GLOBALS['phpgw_info']['server']['login_logo_url']:'http://www.eGroupWare.org';
|
---|
1122 | if (substr($var['logo_url'],0,4) != 'http')
|
---|
1123 | {
|
---|
1124 | $var['logo_url'] = 'http://'.$var['logo_url'];
|
---|
1125 | }
|
---|
1126 | $var['logo_title'] = $GLOBALS['phpgw_info']['server']['login_logo_title']?$GLOBALS['phpgw_info']['server']['login_logo_title']:'www.eGroupWare.org';
|
---|
1127 |
|
---|
1128 | // {logo_imagem}
|
---|
1129 | // <a href="{logo_url}" title="{logo_title}" style="text-decoration: none;" target="_blank"><img src="{logo_file}" border="0" style="margin-top: 5px; width: 300px; height: 200px;"/></a>
|
---|
1130 | if($var['logo_file'] == '')
|
---|
1131 | {
|
---|
1132 | $var['logo_imagem'] = '';
|
---|
1133 | }
|
---|
1134 | else
|
---|
1135 | {
|
---|
1136 | $var['logo_imagem'] = '<a href="'.$var['logo_url'].'" title="'.$var['logo_title'].'" style="text-decoration: none;" target="_blank"><img src="'.$var['logo_file'].'" border="0" style="margin-top: 5px; width: 200px; height: 134px;"/></a>';
|
---|
1137 | }
|
---|
1138 | $tmpl->set_var($var);
|
---|
1139 | if (@$GLOBALS['phpgw_info']['server']['login_show_language_selection'])
|
---|
1140 | {
|
---|
1141 | $select_lang = '<select name="lang" onchange="'."location.href=location.href+(location.search?'&':'?')+'lang='+this.value".'">';
|
---|
1142 | $langs = $GLOBALS['phpgw']->translation->get_installed_langs();
|
---|
1143 | uasort($langs,'strcasecmp');
|
---|
1144 | foreach ($langs as $key => $name) // if we have a translation use it
|
---|
1145 | {
|
---|
1146 | $select_lang .= "\n\t".'<option value="'.$key.'"'.($key == $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] ? ' selected="1"' : '').'>'.$name.'</option>';
|
---|
1147 | }
|
---|
1148 | $select_lang .= "\n</select>\n";
|
---|
1149 | $tmpl->set_var(array(
|
---|
1150 | 'lang_language' => lang('Language'),
|
---|
1151 | 'select_language' => $select_lang,
|
---|
1152 | ));
|
---|
1153 | }
|
---|
1154 | else
|
---|
1155 | {
|
---|
1156 | $tmpl->set_block('login_form','language_select');
|
---|
1157 | $tmpl->set_var('language_select','');
|
---|
1158 | }
|
---|
1159 | $tmpl->set_var('autocomplete', ($GLOBALS['phpgw_info']['server']['autocomplete_login'] ? 'autocomplete="off"' : ''));
|
---|
1160 | $tmpl->set_var('vserpro','<font color="#9a9a9a" face="Verdana, Arial, Helvetica, sans-serif" size="1">V - '.$GLOBALS['phpgw_info']['server']['versions']['header'].'-'.$GLOBALS['phpgw_info']['server']['versao-Serpro'].'</font>');
|
---|
1161 |
|
---|
1162 | $assinaminfazenda = $GLOBALS['phpgw_info']['server']['webserver_url'] . '/phpgwapi/templates/serpro/images/AssinaMinFazenda2.gif' ;
|
---|
1163 | $brasil = $GLOBALS['phpgw_info']['server']['webserver_url'] . '/phpgwapi/templates/serpro/images/brasil2.gif' ;
|
---|
1164 | $tmpl->set_var('assinaminfazenda',$assinaminfazenda);
|
---|
1165 | $tmpl->set_var('brasil',$brasil);
|
---|
1166 |
|
---|
1167 | if($GLOBALS['phpgw_info']['server']['alimentador_rss']) // http://serpronet.serpro/serpauta/RSS
|
---|
1168 | {
|
---|
1169 | require_once('./seguranca/simplepie.inc');
|
---|
1170 | $feed = new SimplePie();
|
---|
1171 |
|
---|
1172 | $feed->set_feed_url($GLOBALS['phpgw_info']['server']['alimentador_rss']); // alimentador_rss
|
---|
1173 | $feed->set_output_encoding('iso-8859-1');
|
---|
1174 | $feed->set_timeout(30);
|
---|
1175 | $feed->enable_cache(false);
|
---|
1176 | $feed->init();
|
---|
1177 |
|
---|
1178 | // This makes sure that the content is sent to the browser as text/html and the UTF-8 character set (since we didn't change it).
|
---|
1179 | $feed->handle_content_type();
|
---|
1180 | $rss_titulo = $feed->get_title();
|
---|
1181 | if(!$rss_titulo)
|
---|
1182 | {
|
---|
1183 | // Continua pegando a msg de erro, mas nao vai exibir nada.....
|
---|
1184 | //$rss_titulo = $feed->error();
|
---|
1185 | $rss_titulo = 'Não foi possível contatar alimentador das notícias.';
|
---|
1186 | }
|
---|
1187 | else
|
---|
1188 | {
|
---|
1189 | $aux_rss ='<div class="container">
|
---|
1190 | <div class="titulo"> Notícias - Fonte: ' . $rss_titulo . '</div>';
|
---|
1191 |
|
---|
1192 | $numero_max = 1;
|
---|
1193 | foreach ($feed->get_items() as $item):
|
---|
1194 | $aux_1 = $item->get_permalink();
|
---|
1195 | $aux_2 = $item->get_title();
|
---|
1196 | $aux_3 = $item->get_date('d/m/Y - H:i');
|
---|
1197 | $aux_rss = $aux_rss . '<div class="item">
|
---|
1198 | <h2 style="margin: 0px"><a href="' . $aux_1 . '" target="_blank">' . $aux_2 . '</a></h2>
|
---|
1199 | <p style="margin: 0px;font-size: 8">' . $aux_3 . '</p></div>';
|
---|
1200 | $numero_max = $numero_max+1;
|
---|
1201 | if($numero_max>7) break;
|
---|
1202 | endforeach;
|
---|
1203 |
|
---|
1204 | $aux_rss = $aux_rss . '</div>';
|
---|
1205 | $feed->__destruct();
|
---|
1206 | $tmpl->set_var('rss',$aux_rss);
|
---|
1207 | // posiciona_login
|
---|
1208 | if($GLOBALS['phpgw_info']['server']['posiciona_login'])
|
---|
1209 | {
|
---|
1210 | $tmpl->set_var('float_rss','float:left;'); // left
|
---|
1211 | }
|
---|
1212 | else
|
---|
1213 | {
|
---|
1214 | $tmpl->set_var('float_rss','float:right;'); // right
|
---|
1215 | }
|
---|
1216 | }
|
---|
1217 | }
|
---|
1218 |
|
---|
1219 | $tmpl->pfp('loginout','login_form');
|
---|
1220 |
|
---|
1221 | ?>
|
---|
1222 |
|
---|