X-Git-Url: https://vcs.fsf.org/?a=blobdiff_plain;f=src%2Flogin.php;h=88b43680bd0a04fe907185a92495ff2fccc650c7;hb=87745b9cf4c1ea33c3788ab0c3a554e9574ec5d7;hp=27e9bc18f43dc968b42668fa10249f6e56a8f78b;hpb=bd9bbfefba8fa274260a37c965f7510bb6670599;p=squirrelmail.git diff --git a/src/login.php b/src/login.php index 27e9bc18..88b43680 100644 --- a/src/login.php +++ b/src/login.php @@ -3,166 +3,205 @@ /** * login.php -- simple login screen * - * Copyright (c) 1999-2002 The SquirrelMail Project Team + * Copyright (c) 1999-2005 The SquirrelMail Project Team * Licensed under the GNU GPL. For full terms see the file COPYING. * * This a simple login screen. Some housekeeping is done to clean * cookies and find language. * - * $Id$ + * @version $Id$ + * @package squirrelmail */ -/*****************************************************************/ -/*** THIS FILE NEEDS TO HAVE ITS FORMATTING FIXED!!! ***/ -/*** PLEASE DO SO AND REMOVE THIS COMMENT SECTION. ***/ -/*** + Base level indent should begin at left margin, as ***/ -/*** the first two lines below look. ***/ -/*** + All identation should consist of four space blocks ***/ -/*** + Tab characters are evil. ***/ -/*** + all comments should use "slash-star ... star-slash" ***/ -/*** style -- no pound characters, no slash-slash style ***/ -/*** + FLOW CONTROL STATEMENTS (if, while, etc) SHOULD ***/ -/*** ALWAYS USE { AND } CHARACTERS!!! ***/ -/*** + Please use ' instead of ", when possible. Note " ***/ -/*** should always be used in _( ) function calls. ***/ -/*** Thank you for your help making the SM code more readable. ***/ -/*****************************************************************/ - -$rcptaddress = ''; -if (isset($emailaddress)) { - if (stristr($emailaddress, 'mailto:')) { - $rcptaddress = substr($emailaddress, 7); - } else { - $rcptaddress = $emailaddress; - } - - if (($pos = strpos($rcptaddress, '?')) !== false) { - $a = substr($rcptaddress, $pos + 1); - $rcptaddress = substr($rcptaddress, 0, $pos); - $a = explode('=', $a, 2); - if (isset($a[1])) { - $name = urldecode($a[0]); - $val = urldecode($a[1]); - global $$name; - $$naame = $val; - } - } - - /* At this point, we have parsed a lot of the mailto stuff. */ - /* Let's do the rest -- CC, BCC, Subject, Body */ - /* Note: They can all be case insensitive */ - foreach ($GLOBALS as $k => $v) { - $key = strtolower($k); - $value = urlencode($v); - if ($key == 'cc') { - $rcptaddress .= '&send_to_cc=' . $value; - } else if ($key == 'bcc') { - $rcptaddress .= '&send_to_bcc=' . $value; - } else if ($key == 'subject') { - $rcptaddress .= '&subject=' . $value; - } else if ($key == 'body') { - $rcptaddress .= '&body=' . $value; - } - } - - /* Double-encode in this fashion to get past redirect.php properly. */ - $rcptaddress = urlencode($rcptaddress); - } - +/** + * Path for SquirrelMail required files. + * @ignore + */ +define('SM_PATH','../'); + +/* SquirrelMail required files. */ +require_once(SM_PATH . 'functions/strings.php'); +require_once(SM_PATH . 'config/config.php'); +require_once(SM_PATH . 'functions/i18n.php'); +require_once(SM_PATH . 'functions/plugin.php'); +require_once(SM_PATH . 'functions/constants.php'); +require_once(SM_PATH . 'functions/page_header.php'); +require_once(SM_PATH . 'functions/html.php'); +require_once(SM_PATH . 'functions/global.php'); +require_once(SM_PATH . 'functions/imap_general.php'); +require_once(SM_PATH . 'functions/forms.php'); +/** + * $squirrelmail_language is set by a cookie when the user selects + * language and logs out + */ +set_up_language($squirrelmail_language, TRUE, TRUE); - require_once('../functions/strings.php'); - require_once('../config/config.php'); - require_once('../functions/i18n.php'); - require_once('../functions/plugin.php'); - require_once('../functions/constants.php'); - require_once('../functions/page_header.php'); +/** + * Find out the base URI to set cookies. + */ +if (!function_exists('sqm_baseuri')){ + require_once(SM_PATH . 'functions/display_messages.php'); +} +$base_uri = sqm_baseuri(); + +/* + * In case the last session was not terminated properly, make sure + * we get a new one. + */ - /* - * $squirrelmail_language is set by a cookie when the user selects - * language and logs out - */ - set_up_language($squirrelmail_language, true); +sqsession_destroy(); - /* Need the base URI to set the cookies. (Same code as in webmail.php). */ - ereg ("(^.*/)[^/]+/[^/]+$", $PHP_SELF, $regs); - $base_uri = $regs[1]; - @session_destroy(); +header('Pragma: no-cache'); - /* - * In case the last session was not terminated properly, make sure - * we get a new one. +/** + * This detects if the IMAP server has logins disabled, and if so, + * squelches the display of the login form and puts up a message + * explaining the situation. + */ +if($imap_auth_mech == 'login') { + /** + * detect disabled login, only when imapServerAddress contains + * server address and not mapping. See sqimap_get_user_server() */ - $cookie_params = session_get_cookie_params(); - setcookie(session_name(),'',0,$cookie_params['path'].$cookie_params['domain']); - setcookie('username', '', 0, $base_uri); - setcookie('key', '', 0, $base_uri); - header ('Pragma: no-cache'); - - do_hook('login_cookie'); - - /* Output the javascript onload function. */ - displayHtmlHeader( "$org_name - " . _("Login"), - "\n", FALSE ); - - /* Set the title of this page. */ - echo "\n". - "
\n"; - - $username_form_name = 'login_username'; - $password_form_name = 'secretkey'; - do_hook('login_top'); - - $loginname_value = (isset($loginname) ? htmlspecialchars($loginname) : ''); - - echo "
". - "
\n". - ( $hide_sm_attributions ? '' : - '' . sprintf (_("SquirrelMail version %s"), $version) . "
\n". - ' ' . _("By the SquirrelMail Development Team") . "
\n" ) . - "
\n". - - "
\n". - "\n". - " ". - " \n". - " \n". - "
\n". - ' ' . sprintf (_("%s Login"), $org_name) . "\n". - "
\n". - " \n". - ' \n". - " \n". - " \n". - " \n". - ' \n". - " \n". - " \n". - "
' . _("Name:") . "\n". - " \n". - "
' . _("Password:") . "\n". - " \n". - " \n". - " \n"; - if ($rcptaddress != '') { - echo " \n"; + if (substr($imapServerAddress, 0, 4) != "map:") { + $imap = sqimap_create_stream($imapServerAddress, $imapPort, $use_imap_tls); + $logindisabled = sqimap_capability($imap,'LOGINDISABLED'); + sqimap_logout($imap); + if ($logindisabled) { + $string = _("The IMAP server is reporting that plain text logins are disabled.").'
'. + _("Using CRAM-MD5 or DIGEST-MD5 authentication instead may work.").'
'; + if (!$use_imap_tls) { + $string .= _("Also, the use of TLS may allow SquirrelMail to login.").'
'; + } + $string .= _("Please contact your system administrator and report this error."); + error_box($string,$color); + exit; + } } - echo "
\n". - '
\n". - "
\n". - "
\n"; - - do_hook('login_form'); - echo "
\n"; - - do_hook('login_bottom'); - echo "\n". - "\n"; +} + +do_hook('login_cookie'); + +$loginname_value = (sqGetGlobalVar('loginname', $loginname) ? htmlspecialchars($loginname) : ''); + +/* Output the javascript onload function. */ + +$header = "\n"; + +if (@file_exists($theme[$theme_default]['PATH'])) + @include ($theme[$theme_default]['PATH']); + +if (! isset($color) || ! is_array($color)) { + // Add default color theme, if theme loading fails + $color = array(); + $color[0] = '#dcdcdc'; /* light gray TitleBar */ + $color[1] = '#800000'; /* red */ + $color[2] = '#cc0000'; /* light red Warning/Error Messages */ + $color[4] = '#ffffff'; /* white Normal Background */ + $color[7] = '#0000cc'; /* blue Links */ + $color[8] = '#000000'; /* black Normal text */ +} + +displayHtmlHeader( "$org_name - " . _("Login"), $header, FALSE ); + +echo "" . + "\n" . '
' . "\n"; + +$username_form_name = 'login_username'; +$password_form_name = 'secretkey'; +do_hook('login_top'); + +/* If they don't have a logo, don't bother.. */ +if (isset($org_logo) && $org_logo) { + /* Display width and height like good little people */ + $width_and_height = ''; + if (isset($org_logo_width) && is_numeric($org_logo_width) && + $org_logo_width>0) { + $width_and_height = " width=\"$org_logo_width\""; + } + if (isset($org_logo_height) && is_numeric($org_logo_height) && + $org_logo_height>0) { + $width_and_height .= " height=\"$org_logo_height\""; + } +} + +if(sqgetGlobalVar('mailto', $mailto)) { + $rcptaddress = addHidden('mailto', $mailto); +} else { + $rcptaddress = ''; +} +echo html_tag( 'table', + html_tag( 'tr', + html_tag( 'td', + '
'. + ( isset($org_logo) && $org_logo + ? '' . + sprintf(_(
' . "\n" + : '' ). + ( (isset($hide_sm_attributions) && $hide_sm_attributions) ? '' : + '' . _("SquirrelMail Webmail Application") . '
' ."\n". + ' ' . _("By the SquirrelMail Project Team") . '
' . "\n" ) . + html_tag( 'table', + html_tag( 'tr', + html_tag( 'td', + '' . sprintf (_("%s Login"), $org_name) . "\n", + 'center', $color[0] ) + ) . + html_tag( 'tr', + html_tag( 'td', "\n" . + html_tag( 'table', + html_tag( 'tr', + html_tag( 'td', + _("Name:") , + 'right', '', 'width="30%"' ) . + html_tag( 'td', + addInput($username_form_name, $loginname_value), + 'left', '', 'width="*"' ) + ) . "\n" . + html_tag( 'tr', + html_tag( 'td', + _("Password:") , + 'right', '', 'width="30%"' ) . + html_tag( 'td', + addPwField($password_form_name). + addHidden('js_autodetect_results', SMPREF_JS_OFF). + $rcptaddress . + addHidden('just_logged_in', '1'), + 'left', '', 'width="*"' ) + ) . + concat_hook_function('login_form') , + 'center', $color[4], 'border="0" width="100%"' ) , + 'left', $color[4] ) + ) . + html_tag( 'tr', + html_tag( 'td', + '
'. addSubmit(_("Login")) .'
', + 'left' ) + ), + '', $color[4], 'border="0" width="350"' ) . '
', + 'center' ) + ) , + '', $color[4], 'border="0" cellspacing="0" cellpadding="0" width="100%"' ); +echo '
' . "\n"; + +do_hook('login_bottom'); + ?> +