Context Navigation

source: trunk/phpgwapi/templates/default/login_default.php @ 2674

Revision 2674, 19.8 KB checked in by rodsouza, 14 years ago (diff)
Ticket #1009 - Criando persistência da última requisicao a ser recuperada no reload.
Property svn:executable set to ``*

Line
1	<?php
2	/**************************************************************************\
3	* eGroupWare login *
4	* http://www.egroupware.org *
5	* Originaly written by Dan Kuykendall <seek3r@phpgroupware.org> *
6	* Joseph Engo <jengo@phpgroupware.org> *
7	* Updated by Nilton Emilio Buhrer Neto <niltonneto@celepar.pr.gov.br> *
8	* This program is free software; you can redistribute it and/or modify it *
9	* under the terms of the GNU General Public License as published by the *
10	* Free Software Foundation; either version 2 of the License, or (at your *
11	* option) any later version. *
12	\**************************************************************************/
13
14	function check_logoutcode($code)
15	{
16	switch($code)
17	{
18	case 1:
19	return lang('You have been successfully logged out');
20
21	case 2:
22	return lang('Sorry, your login has expired');
23
24	case 4:
25	return lang('Cookies are required to login to this site.');
26
27	case 5:
28	return '<font color="FF0000">' . lang('Bad login or password') . '</font>';
29
30	case 6:
31	return '<font color="FF0000">' . lang('Your password has expired, and you do not have access to change it') . '</font>';
32
33	case 98:
34	return '<font color="FF0000">' . lang('Account is expired') . '</font>';
35
36	case 99:
37	return '<font color="FF0000">' . lang('Blocked, too many attempts') . '</font>';
38	case 200:
39	return '<font color="FF0000">' . lang('Invalid code') . '</font>';
40	break;
41	case 10:
42	$GLOBALS['phpgw']->session->phpgw_setcookie('sessionid');
43	$GLOBALS['phpgw']->session->phpgw_setcookie('kp3');
44	$GLOBALS['phpgw']->session->phpgw_setcookie('domain');
45
46	//fix for bug php4 expired sessions bug
47	if($GLOBALS['phpgw_info']['server']['sessions_type'] == 'php4')
48	{
49	$GLOBALS['phpgw']->session->phpgw_setcookie(PHPGW_PHPSESSID);
50	}
51
52	return '<font color="#FF0000">' . lang('Your session could not be verified.') . '</font>';
53
54	default:
55	return ' ';
56	}
57	}
58
59	/* Program starts here */
60
61	if($GLOBALS['phpgw_info']['server']['auth_type'] == 'http' && isset($_SERVER['PHP_AUTH_USER']))
62	{
63	$submit = True;
64	$login = $_SERVER['PHP_AUTH_USER'];
65	$passwd = $_SERVER['PHP_AUTH_PW'];
66	$passwd_type = 'text';
67	}
68	else
69	{
70	$passwd = $_POST['passwd'];
71	$passwd_type = $_POST['passwd_type'];
72	}
73
74	# Apache + mod_ssl style SSL certificate authentication
75	# Certificate (chain) verification occurs inside mod_ssl
76	if($GLOBALS['phpgw_info']['server']['auth_type'] == 'sqlssl' && isset($_SERVER['SSL_CLIENT_S_DN']) && !isset($_GET['cd']))
77	{
78	# an X.509 subject looks like:
79	# /CN=john.doe/OU=Department/O=Company/C=xx/Email=john@comapy.tld/L=City/
80	# the username is deliberately lowercase, to ease LDAP integration
81	$sslattribs = explode('/',$_SERVER['SSL_CLIENT_S_DN']);
82	# skip the part in front of the first '/' (nothing)
83	while($sslattrib = next($sslattribs))
84	{
85	list($key,$val) = explode('=',$sslattrib);
86	$sslattributes[$key] = $val;
87	}
88
89	if(isset($sslattributes['Email']))
90	{
91	$submit = True;
92
93	# login will be set here if the user logged out and uses a different username with
94	# the same SSL-certificate.
95	if(!isset($_POST['login'])&&isset($sslattributes['Email']))
96	{
97	$login = $sslattributes['Email'];
98	# not checked against the database, but delivered to authentication module
99	$passwd = $_SERVER['SSL_CLIENT_S_DN'];
100	}
101	}
102	unset($key);
103	unset($val);
104	unset($sslattributes);
105	}
106	session_start();
107	if(isset($passwd_type) \|\| $_POST['submitit_x'] \|\| $_POST['submitit_y'] \|\| $submit)
108	{
109
110	// Primeiro testa o captcha....se houver......
111	if( $GLOBALS['phpgw_info']['server']['captcha']==1)
112	{
113	if(isset($_POST['codigo']))
114	{
115	if ($_SESSION['CAPTCHAString'] != strtoupper($_POST['codigo']))
116	{
117	$GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=200'));
118	}
119	unset($_SESSION['CAPTCHAString']);
120	}
121	}
122	if($_POST['user']) {
123	if($GLOBALS['phpgw_info']['server']['use_prefix_organization']) {
124	$common = CreateObject('phpgwapi.common');
125	$ldap_conn = $common->ldapConnect();
126	$justthese = array("uid");
127	$filter="(&(phpgwAccountType=u)(uid=".$_POST['user']."))";
128	$ldap_search = ldap_search($ldap_conn, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
129	$ldap_info = ldap_get_entries($ldap_conn, $ldap_search);
130	ldap_close($ldap_conn);
131	if ($ldap_info['count'] != 0) {
132	$_POST['login'] = $_POST['user'];
133	}
134	}
135	else
136	$_POST['login'] = $_POST['user'];
137	}
138	if(getenv('REQUEST_METHOD') != 'POST' && $_SERVER['REQUEST_METHOD'] != 'POST' &&
139	!isset($_SERVER['PHP_AUTH_USER']) && !isset($_SERVER['SSL_CLIENT_S_DN']))
140	{
141	$GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/login.php','cd=5'));
142	}
143
144	// don't get login data again when $submit is true
145	if($submit == false)
146	{
147	$login = $_POST['login'];
148	}
149
150	if(strstr($login,'@') === False && isset($_POST['logindomain']))
151	{
152	$login .= '@' . $_POST['logindomain'];
153	}
154	elseif(!isset($GLOBALS['phpgw_domain'][$GLOBALS['phpgw_info']['user']['domain']]))
155	{
156	$login .= '@'.$GLOBALS['phpgw_info']['server']['default_domain'];
157	}
158	$GLOBALS['sessionid'] = $GLOBALS['phpgw']->session->create(strtolower($login),$passwd,$passwd_type,'u');
159
160	if(!isset($GLOBALS['sessionid']) \|\| ! $GLOBALS['sessionid'])
161	{
162	$GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?cd=' . $GLOBALS['phpgw']->session->cd_reason);
163	}
164	else
165	{
166	if ($_POST['lang'] && preg_match('/^[a-z]{2}(-[a-z]{2}){0,1}$/',$_POST['lang']) &&
167	$_POST['lang'] != $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'])
168	{
169	$GLOBALS['phpgw']->preferences->add('common','lang',$_POST['lang'],'session');
170	}
171
172	if(!$GLOBALS['phpgw_info']['server']['disable_autoload_langfiles'])
173	{
174	$GLOBALS['phpgw']->translation->autoload_changed_langfiles();
175	}
176	$forward = isset($_GET['phpgw_forward']) ? urldecode($_GET['phpgw_forward']) : @$_POST['phpgw_forward'];
177	if (!$forward)
178	{
179	$extra_vars['cd'] = 'yes';
180	$forward = '/home.php';
181	}
182	else
183	{
184	list($forward,$extra_vars) = explode('?',$forward,2);
185	}
186
187	if ($GLOBALS['phpgw_info']['server']['use_https'] != 2)
188	$GLOBALS['phpgw']->redirect_link( $forward );
189	else
190	$GLOBALS['phpgw']->redirect_link($forward,$extra_vars);
191	}
192	}
193	else
194	{
195	// !!! DONT CHANGE THESE LINES !!!
196	// If there is something wrong with this code TELL ME!
197	// Commenting out the code will not fix it. (jengo)
198	if(isset($_COOKIE['last_loginid']))
199	{
200	$accounts = CreateObject('phpgwapi.accounts');
201	$prefs = CreateObject('phpgwapi.preferences', $accounts->name2id($_COOKIE['last_loginid']));
202
203	if($prefs->account_id)
204	{
205	$GLOBALS['phpgw_info']['user']['preferences'] = $prefs->read_repository();
206	}
207	}
208
209	$_GET['lang'] = addslashes($_GET['lang']);
210	if ($_GET['lang'])
211	{
212	$GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] = $_GET['lang'];
213	}
214	elseif(!isset($_COOKIE['last_loginid']) \|\| !$prefs->account_id)
215	{
216	// If the lastloginid cookies isn't set, we will default to the first language,
217	// the users browser accepts.
218	list($lang) = explode(',',$_SERVER['HTTP_ACCEPT_LANGUAGE']);
219	/*
220	if(strlen($lang) > 2)
221	{
222	$lang = substr($lang,0,2);
223	}
224	*/
225	$GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] = $lang;
226	}
227	#print 'LANG:' . $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] . '<br>';
228
229	$GLOBALS['phpgw']->translation->init(); // this will set the language according to the (new) set prefs
230	$GLOBALS['phpgw']->translation->add_app('login');
231	$GLOBALS['phpgw']->translation->add_app('loginscreen');
232	if(lang('loginscreen_message') == 'loginscreen_message*')
233	{
234	$GLOBALS['phpgw']->translation->add_app('loginscreen','en'); // trying the en one
235	}
236	if(lang('loginscreen_message') != 'loginscreen_message*')
237	{
238	$tmpl->set_var('lang_message',stripslashes(lang('loginscreen_message')));
239	}
240	}
241
242	if($GLOBALS['phpgw_info']['server']['use_prefix_organization'])
243	{
244	$obj_organization = CreateObject('phpgwapi.sector_search_ldap');
245	$organizations = $obj_organization->organization_search($GLOBALS['phpgw_info']['server']['ldap_context']);
246
247	for ($i=0; $i<count($organizations); $i++)
248	{
249	$tmp_array[strtolower($organizations[$i])] = $organizations[$i];
250	}
251
252	$arrayOrganization = $tmp_array;
253	ksort($arrayOrganization);
254
255	foreach($arrayOrganization
256	as $organization_name => $organization_vars)
257	{
258	$organization_select .= '<option value="' . $organization_name . '"';
259
260	if($organization_name == $_COOKIE['last_organization'])
261	{
262	$organization_select .= ' selected';
263	}
264	$organization_select .= '>' . $organization_vars . "</option>\n";
265	}
266	$organization_select = '<div class="login_label"><label>'.lang("organization")
267	.'</label><br><select name="organization">'
268	.$organization_select.'</select></div>';
269	$tmpl->set_var('select_organization',$organization_select);
270	}
271
272	$domain_select = ' ';
273	$last_loginid = $_COOKIE['last_loginid'];
274	if($GLOBALS['phpgw_info']['server']['show_domain_selectbox'])
275	{
276	$domain_select = "<select name=\"logindomain\">\n";
277	foreach($GLOBALS['phpgw_domain'] as $domain_name => $domain_vars)
278	{
279	$domain_select .= '<option value="' . $domain_name . '"';
280
281	if($domain_name == $_COOKIE['last_domain'])
282	{
283	$domain_select .= ' selected';
284	}
285	$domain_select .= '>' . $domain_name . "</option>\n";
286	}
287	$domain_select .= "</select>\n";
288	}
289	elseif($last_loginid !== '')
290	{
291	reset($GLOBALS['phpgw_domain']);
292	list($default_domain) = each($GLOBALS['phpgw_domain']);
293
294	if($_COOKIE['last_domain'] != $default_domain && !empty($_COOKIE['last_domain']))
295	{
296	$last_loginid .= '@' . $_COOKIE['last_domain'];
297	}
298	}
299	$tmpl->set_var('select_domain',$domain_select);
300
301	foreach($_GET as $name => $value)
302	{
303	if(ereg('phpgw_',$name))
304	{
305	$extra_vars .= '&' . $name . '=' . urlencode($value);
306	}
307	}
308
309	if ( is_string( $extra_vars ) )
310	{
311	$extra_vars = '?' . substr($extra_vars,1);
312	}
313
314	/********************************************************\
315	* Check is the registration app is installed, activated *
316	* And if the register link must be placed *
317	\********************************************************/
318
319	$cnf_reg = createobject('phpgwapi.config','registration');
320	$cnf_reg->read_repository();
321	$config_reg = $cnf_reg->config_data;
322
323	if($config_reg[enable_registration]=='True' && $config_reg[register_link]=='True')
324	{
325	$reg_link=' <a href="registration/">'.lang('Not a user yet? Register now').'</a><br/>';
326	}
327
328	$GLOBALS['phpgw_info']['server']['template_set'] = $GLOBALS['phpgw_info']['login_template_set'];
329
330	$tmpl->set_var('register_link',$reg_link);
331	$tmpl->set_var('charset',$GLOBALS['phpgw']->translation->charset());
332	$tmpl->set_var('login_url', $GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php' . $extra_vars);
333	$tmpl->set_var('registration_url',$GLOBALS['phpgw_info']['server']['webserver_url'] . '/registration/');
334	$tmpl->set_var('version',$GLOBALS['phpgw_info']['server']['versions']['phpgwapi']);
335	$tmpl->set_var('cd',check_logoutcode($_GET['cd']));
336	$tmpl->set_var('cookie',$last_loginid);
337
338	$tmpl->set_var('lang_username',lang('username'));
339	$tmpl->set_var('lang_password',lang('password'));
340	$tmpl->set_var('lang_login',lang('login'));
341
342	$tmpl->set_var('website_title', $GLOBALS['phpgw_info']['server']['site_title']);
343	$tmpl->set_var('template_set',$GLOBALS['phpgw_info']['login_template_set']);
344
345	$GLOBALS['phpgw']->translation->add_app('loginhelp',$_GET['lang']);
346	if(lang('loginhelp_message') != 'loginhelp_message*' && trim(lang('loginhelp_message')) != ""){
347	$tmpl->set_var('lang_help',lang("Help"));
348	}
349	else
350	$tmpl->set_var('display_help','none');
351
352	$tmpl->set_var('bg_color',($GLOBALS['phpgw_info']['server']['login_bg_color']?$GLOBALS['phpgw_info']['server']['login_bg_color']:'FFFFFF'));
353	$tmpl->set_var('bg_color_title',($GLOBALS['phpgw_info']['server']['login_bg_color_title']?$GLOBALS['phpgw_info']['server']['login_bg_color_title']:'486591'));
354
355	if($GLOBALS['phpgw_info']['server']['use_frontend_name'])
356	$tmpl->set_var('frontend_name', " - ".$GLOBALS['phpgw_info']['server']['use_frontend_name']);
357
358	if (substr($GLOBALS['phpgw_info']['server']['login_logo_file'],0,4) == 'http')
359	{
360	$var['logo_file'] = $GLOBALS['phpgw_info']['server']['login_logo_file'];
361	}
362	else
363	{
364	$var['logo_file'] = $GLOBALS['phpgw']->common->image('phpgwapi',$GLOBALS['phpgw_info']['server']['login_logo_file']?$GLOBALS['phpgw_info']['server']['login_logo_file']:'logo');
365	}
366	$var['logo_url'] = $GLOBALS['phpgw_info']['server']['login_logo_url']?$GLOBALS['phpgw_info']['server']['login_logo_url']:'http://www.eGroupWare.org';
367	if (substr($var['logo_url'],0,4) != 'http')
368	{
369	$var['logo_url'] = 'http://'.$var['logo_url'];
370	}
371	$var['logo_title'] = $GLOBALS['phpgw_info']['server']['login_logo_title']?$GLOBALS['phpgw_info']['server']['login_logo_title']:'www.eGroupWare.org';
372	$tmpl->set_var($var);
373
374	if (@$GLOBALS['phpgw_info']['server']['login_show_language_selection'])
375	{
376	$select_lang = '<select name="lang" onchange="'."location.href=location.href+(location.search?'&':'?')+'lang='+this.value".'">';
377	$langs = $GLOBALS['phpgw']->translation->get_installed_langs();
378	uasort($langs,'strcasecmp');
379	foreach ($langs as $key => $name) // if we have a translation use it
380	{
381	$select_lang .= "\n\t".'<option value="'.$key.'"'.($key == $GLOBALS['phpgw_info']['user']['preferences']['common']['lang'] ? ' selected="1"' : '').'>'.$name.'</option>';
382	}
383	$select_lang .= "\n</select>\n";
384	$tmpl->set_var(array(
385	'lang_language' => lang('Language'),
386	'select_language' => $select_lang,
387	));
388	}
389	else
390	{
391	$tmpl->set_block('login_form','language_select');
392	$tmpl->set_var('language_select','');
393	}
394
395	$tmpl->set_var('autocomplete', ($GLOBALS['phpgw_info']['server']['autocomplete_login'] ? 'autocomplete="off"' : ''));
396
397	$aux_captcha = '';
398	// soh mostra o captcha se for login sem certificado....
399	if($GLOBALS['phpgw_info']['server']['captcha'] && $_GET['cd']!='300' )
400	{
401	if($valor_cookie > $GLOBALS['phpgw_info']['server']['num_badlogin'])
402	{
403	$aux_captcha = '<div class="login_label" >
404	<input type="hidden" name="' . session_name() .'" value="' . session_id() . '" >
405	<img src="./security/captcha.php?xsid='.session_id().'" title="'.lang('Security code').'" alt="'.lang('Security code').'" style="width:60;">
406	<br />
407	<input class="input" type="text" maxlength="50" size="20" name="codigo" id="codigo" value="" >
408	</div>';
409	$tmpl->set_var('captcha',$aux_captcha);
410	}
411	}
412
413	// Testa se deve incluir applet para login com certificado......
414	if ($_GET['cd']=='300' && $GLOBALS['phpgw_info']['server']['certificado']==1)
415	{
416	//Zera o Cookie contador, responsavel pelo captcha
417	$valor_cookie = 1;
418	setcookie("contador", 1,0);
419
420	$link_alterna_login = '<img border=0 style="padding: 0px 5px 0px 0px" src="phpgwapi/templates/default/images/warning.gif"/><a href="login.php" style="margin: 0px; padding: 0px; text-decoration:none;"><font color="#ffffff" face="Verdana, Arial, Helvetica, sans-serif" size="1">' . lang('Access without Digital Certificate') . '</a>';
421	$tmpl->set_var('show','none');
422	$tmpl->set_var('action','<div id="action"><img style="border:0px;margin:31px 0px 58px 0px;" src="phpgwapi/templates/default/images/acao.gif" /></div>');
423	// gera parametro com tokens suportados ....
424	$var_tokens = '';
425	for($ii = 1; $ii < 11; $ii++)
426	{
427	if($GLOBALS['phpgw_info']['server']['test_token' . $ii . '1'])
428	$var_tokens .= $GLOBALS['phpgw_info']['server']['test_token' . $ii . '1'] . ',';
429	}
430
431	if(!$var_tokens)
432	{
433	$var_tokens = 'ePass2000Lx;/usr/lib/libepsng_p11.so,ePass2000Win;c:/windows/system32/ngp11v211.dll';
434	}
435	$param1 = "
436	'<param name=\"token\" value=\"" . substr($var_tokens,0,strlen($var_tokens)) . "\"> ' +
437	";
438	$param2 = "
439	'token=\"" . substr($var_tokens,0,strlen($var_tokens)) . "\" ' +
440	";
441
442	$cod_applet =
443
444	/* // com debug ativado
445	'<script type="text/javascript">
446	if (navigator.userAgent.match(\'MSIE\')){
447	document.write(\'<object style="display:yes;width:0;height:0;vertical-align:bottom;" id="login_applet" \' +
448	\'classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93"> \' +
449	\'<param name="type" value="application/x-java-applet;version=1.5"> \' +
450	\'<param name="code" value="LoginApplet.class"> \' +
451	\'<param name="locale" value="' . $lang . '"> \' +
452	\'<param name="mayscript" value="true"> \' + '
453	. $param1
454	. ' \'<param name="archive" value="ExpressoCertLogin.jar,ExpressoCert.jar,commons-httpclient-3.1.jar,commons-logging-1.1.1.jar,commons-codec-1.3.jar,bcmail-jdk15-142.jar,mail.jar,activation.jar,bcprov-jdk15-142.jar"> \' +
455	\'<param name="debug" value="true"> \' +
456	\'</object>\');
457	}
458	else {
459	document.write(\'<embed style="display:yes;width:0;height:0;vertical-align:bottom;" id="login_applet" code="LoginApplet.class" locale="' . $lang . '"\' +
460	\'archive="ExpressoCertLogin.jar,ExpressoCert.jar,commons-httpclient-3.1.jar,commons-logging-1.1.1.jar,commons-codec-1.3.jar,bcmail-jdk15-142.jar,mail.jar,activation.jar,bcprov-jdk15-142.jar" \' + '
461	. $param2
462	. ' \'type="application/x-java-applet;version=1.5" debug= "true" mayscript > \' +
463	\'<noembed> \' +
464	\'No Java Support. \' +
465	\'</noembed> \' +
466	\'</embed> \');
467	}
468	</script>';
469	*/
470	// sem debug ativado
471	'<script type="text/javascript">
472	if (navigator.userAgent.match(\'MSIE\')){
473	document.write(\'<object style="display:yes;width:0;height:0;vertical-align:bottom;" id="login_applet" \' +
474	\'classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93"> \' +
475	\'<param name="type" value="application/x-java-applet;version=1.5"> \' +
476	\'<param name="codebase" value="/security/">\' +
477	\'<param name="code" value="LoginApplet.class"> \' +
478	\'<param name="locale" value="' . $lang . '"> \' +
479	\'<param name="mayscript" value="true"> \' + '
480	. $param1
481	. ' \'<param name="archive" value="ExpressoCertLogin.jar,ExpressoCert.jar,commons-httpclient-3.1.jar,commons-logging-1.1.1.jar,commons-codec-1.3.jar,bcmail-jdk15-142.jar,mail.jar,activation.jar,bcprov-jdk15-142.jar"> \' +
482	\'</object>\');
483	}
484	else {
485	document.write(\'<embed style="display:yes;width:0;height:0;vertical-align:bottom;" id="login_applet" codebase="/security/" code="LoginApplet.class" locale="' . $lang . '"\' +
486	\'archive="ExpressoCertLogin.jar,ExpressoCert.jar,commons-httpclient-3.1.jar,commons-logging-1.1.1.jar,commons-codec-1.3.jar,bcmail-jdk15-142.jar,mail.jar,activation.jar,bcprov-jdk15-142.jar" \' + '
487	. $param2
488	. ' \'type="application/x-java-applet;version=1.5" mayscript > \' +
489	\'<noembed> \' +
490	\'No Java Support. \' +
491	\'</noembed> \' +
492	\'</embed> \');
493	}
494	</script>';
495
496
497	}
498
499	else
500	{
501	if($GLOBALS['phpgw_info']['server']['certificado']==1)
502	{
503	$tmpl->set_var('show','yes');
504	$link_alterna_login = '<img border=0 style="padding: 0px" src="phpgwapi/templates/default/images/lock1_icon.gif"/><a title="' . lang('Link to use digital certificate') . '" href="login.php?cd=300" style="margin: 0px; padding: 0px; text-decoration:none;"><font color="#ffffff" face="Verdana, Arial, Helvetica, sans-serif" size="1"><b>' . lang('Logon with my digital certificate') . '</b></font></a>';
505	}
506	$tmpl->set_var('lang_username',lang('username'));
507	$tmpl->set_var('action','');
508	$cod_applet = '';
509
510	}
511
512	$tmpl->set_var('applet',$cod_applet);
513	$tmpl->set_var('link_alterna_login',$link_alterna_login);
514
515
516	$tmpl->pfp('loginout','login_form');
517	?>
518

Note: See TracBrowser for help on using the repository browser.

Download in other formats: