+/**
+* redirect.php
+* Derived from webmail.php by Ralf Kraudelt <kraude@wiwi.uni-rostock.de>
+*
+* Copyright (c) 1999-2003 The SquirrelMail Project Team
+* Licensed under the GNU GPL. For full terms see the file COPYING.
+*
+* Prevents users from reposting their form data after a successful logout.
+*
+* $Id$
+*/
+
+/* Path for SquirrelMail required files. */
+define('SM_PATH','../');
+
+/* SquirrelMail required files. */
+require_once(SM_PATH . 'functions/global.php');
+require_once(SM_PATH . 'functions/i18n.php');
+require_once(SM_PATH . 'functions/strings.php');
+require_once(SM_PATH . 'config/config.php');
+require_once(SM_PATH . 'functions/prefs.php');
+require_once(SM_PATH . 'functions/imap.php');
+require_once(SM_PATH . 'functions/plugin.php');
+require_once(SM_PATH . 'functions/constants.php');
+require_once(SM_PATH . 'functions/page_header.php');
+
+/* Before starting the session, the base URI must be known. Assuming */
+/* that this file is in the src/ subdirectory (or something). */
+if (!function_exists('sqm_baseuri')){
+ require_once(SM_PATH . 'functions/display_messages.php');
+}
+$base_uri = sqm_baseuri();
+
+header('Pragma: no-cache');
+$location = get_location();
+
+session_set_cookie_params (0, $base_uri);
+sqsession_is_active();
+
+sqsession_unregister ('user_is_logged_in');
+sqsession_register ($base_uri, 'base_uri');
+
+/* get globals we me need */
+sqGetGlobalVar('login_username', $login_username);
+sqGetGlobalVar('secretkey', $secretkey);
+sqGetGlobalVar('js_autodetect_results', $js_autodetect_results);
+if(!sqGetGlobalVar('squirrelmail_language', $squirrelmail_language) || $squirrelmail_language == '') {
+ $squirrelmail_language = $squirrelmail_default_language;
+}
+if (!sqgetGlobalVar('mailto', $mailto)) {
+ $mailto = '';
+}
+
+/* end of get globals */
+
+set_up_language($squirrelmail_language, true);
+/* Refresh the language cookie. */
+setcookie('squirrelmail_language', $squirrelmail_language, time()+2592000,
+ $base_uri);
+
+if (!isset($login_username)) {
+ include_once(SM_PATH . 'functions/display_messages.php' );
+ logout_error( _("You must be logged in to access this page.") );
+ exit;
+}
+
+if (!sqsession_is_registered('user_is_logged_in')) {
+ do_hook ('login_before');
+
+ $onetimepad = OneTimePadCreate(strlen($secretkey));
+ $key = OneTimePadEncrypt($secretkey, $onetimepad);
+ sqsession_register($onetimepad, 'onetimepad');
+
+ /* remove redundant spaces */
+ $login_username = trim($login_username);
+
+ /* Verify that username and password are correct. */
+ if ($force_username_lowercase) {
+ $login_username = strtolower($login_username);
+ }