[squirrelmail.git] / src / login.php

<?php

/**
 * login.php -- simple login screen
 *
 * Copyright (c) 1999-2005 The SquirrelMail Project Team
 * Licensed under the GNU GPL. For full terms see the file COPYING.
 *
 * This a simple login screen. Some housekeeping is done to clean
 * cookies and find language.
 *
 * @version $Id$
 * @package squirrelmail
 */

/**
 * Path for SquirrelMail required files.
 * @ignore
 */
define('SM_PATH','../');

/* SquirrelMail required files. */
require_once(SM_PATH . 'functions/strings.php');
require_once(SM_PATH . 'config/config.php');
require_once(SM_PATH . 'functions/i18n.php');
require_once(SM_PATH . 'functions/plugin.php');
require_once(SM_PATH . 'functions/constants.php');
require_once(SM_PATH . 'functions/page_header.php');
require_once(SM_PATH . 'functions/html.php');
require_once(SM_PATH . 'functions/global.php');
require_once(SM_PATH . 'functions/imap_general.php');
require_once(SM_PATH . 'functions/forms.php');

/**
 * $squirrelmail_language is set by a cookie when the user selects
 * language and logs out
 */
set_up_language($squirrelmail_language, TRUE, TRUE);

/**
 * Find out the base URI to set cookies.
 */
if (!function_exists('sqm_baseuri')){
    require_once(SM_PATH . 'functions/display_messages.php');
}
$base_uri = sqm_baseuri();

/*
 * In case the last session was not terminated properly, make sure
 * we get a new one.
 */

sqsession_destroy();

header('Pragma: no-cache');

/**
 * This detects if the IMAP server has logins disabled, and if so,
 * squelches the display of the login form and puts up a message
 * explaining the situation.
 */
if($imap_auth_mech == 'login') {
    /**
     * detect disabled login, only when imapServerAddress contains
     * server address and not mapping. See sqimap_get_user_server()
     */
    if (substr($imapServerAddress, 0, 4) != "map:") {
        $imap = sqimap_create_stream($imapServerAddress, $imapPort, $use_imap_tls);
        $logindisabled = sqimap_capability($imap,'LOGINDISABLED');
        sqimap_logout($imap);
        if ($logindisabled) {
            $string = _("The IMAP server is reporting that plain text logins are disabled.").'<br />'.
                _("Using CRAM-MD5 or DIGEST-MD5 authentication instead may work.").'<br />';
            if (!$use_imap_tls) {
                $string .= _("Also, the use of TLS may allow SquirrelMail to login.").'<br />';
            }
            $string .= _("Please contact your system administrator and report this error.");
            error_box($string,$color);
            exit;
        }
    }
}

do_hook('login_cookie');

/* Output the javascript onload function. */

$header = "<script language=\"JavaScript\" type=\"text/javascript\">\n" .
          "<!--\n".
          "  function squirrelmail_loginpage_onload() {\n".
          "    var textElements = 0;\n".
          "    for (i = 0; i < document.forms[0].elements.length; i++) {\n".
          "      if (document.forms[0].elements[i].type == \"text\" || document.forms[0].elements[i].type == \"password\") {\n".
          "        textElements++;\n".
          "        if (textElements == " . (isset($loginname) ? 2 : 1) . ") {\n".
          "          document.forms[0].elements[i].focus();\n".
          "          break;\n".
          "        }\n".
          "      }\n".
          "    }\n".
          "  }\n".
          "// -->\n".
          "</script>\n";

if (@file_exists($theme[$theme_default]['PATH']))
   @include ($theme[$theme_default]['PATH']);

displayHtmlHeader( "$org_name - " . _("Login"), $header, FALSE );

echo "<body text=\"$color[8]\" bgcolor=\"$color[4]\" link=\"$color[7]\" vlink=\"$color[7]\" alink=\"$color[7]\" onLoad=\"squirrelmail_loginpage_onload()\">" .
     "\n" . '<form action="redirect.php" method="post" onSubmit="document.forms[0].js_autodetect_results.value=\'' . SMPREF_JS_ON .'\';">' . "\n";

$username_form_name = 'login_username';
$password_form_name = 'secretkey';
do_hook('login_top');

$loginname_value = (sqGetGlobalVar('loginname', $loginname) ? htmlspecialchars($loginname) : '');

/* If they don't have a logo, don't bother.. */
if (isset($org_logo) && $org_logo) {
    /* Display width and height like good little people */
    $width_and_height = '';
    if (isset($org_logo_width) && is_numeric($org_logo_width) &&
     $org_logo_width>0) {
        $width_and_height = " width=\"$org_logo_width\"";
    }
    if (isset($org_logo_height) && is_numeric($org_logo_height) &&
     $org_logo_height>0) {
        $width_and_height .= " height=\"$org_logo_height\"";
    }
}

if(sqgetGlobalVar('mailto', $mailto)) {
    $rcptaddress = addHidden('mailto', $mailto);
} else {
    $rcptaddress = '';
}
echo html_tag( 'table',
    html_tag( 'tr',
        html_tag( 'td',
            '<center>'.
            ( isset($org_logo) && $org_logo
              ? '<img src="' . $org_logo . '" alt="' .
                sprintf(_("%s Logo"), $org_name) .'"' . $width_and_height .
                ' /><br />' . "\n"
              : '' ).
            ( (isset($hide_sm_attributions) && $hide_sm_attributions) ? '' :
            '<small>' . _("SquirrelMail Webmail Application") . '<br />' ."\n".
            '  ' . _("By the SquirrelMail Project Team") . '<br /></small>' . "\n" ) .
            html_tag( 'table',
                html_tag( 'tr',
                    html_tag( 'td',
                        '<b>' . sprintf (_("%s Login"), $org_name) . "</b>\n",
                    'center', $color[0] )
                ) .
                html_tag( 'tr',
                    html_tag( 'td',  "\n" .
                        html_tag( 'table',
                            html_tag( 'tr',
                                html_tag( 'td',
                                    _("Name:") ,
                                'right', '', 'width="30%"' ) .
                                html_tag( 'td',
                                    addInput($username_form_name, $loginname_value),
                                'left', '', 'width="*"' )
                                ) . "\n" .
                            html_tag( 'tr',
                                html_tag( 'td',
                                    _("Password:") ,
                                'right', '', 'width="30%"' ) .
                                html_tag( 'td',
                                    addPwField($password_form_name).
                                    addHidden('js_autodetect_results', SMPREF_JS_OFF).
                                    $rcptaddress .
                                    addHidden('just_logged_in', '1'),
                                'left', '', 'width="*"' )
                            ) ,
                        'center', $color[4], 'border="0" width="100%"' ) ,
                    'left', $color[4] )
                ) .
                html_tag( 'tr',
                    html_tag( 'td',
                        '<center>'. addSubmit(_("Login")) .'</center>',
                    'left' )
                ),
            '', $color[4], 'border="0" width="350"' ) . '</center>',
        'center' )
    ) ,
'', $color[4], 'border="0" cellspacing="0" cellpadding="0" width="100%"' );
do_hook('login_form');
echo '</form>' . "\n";

do_hook('login_bottom');
?>
</body></html>
Commit	Line	Data
59177427	1	<?php
895905c0	2
35586184	3	/**
	4	* login.php -- simple login screen
	5	*
6c84ba1e	6	* Copyright (c) 1999-2005 The SquirrelMail Project Team
35586184	7	* Licensed under the GNU GPL. For full terms see the file COPYING.
	8	*
	9	* This a simple login screen. Some housekeeping is done to clean
	10	* cookies and find language.
	11	*
30967a1e	12	* @version $Id$
8f6f9ba5	13	* @package squirrelmail
35586184	14	*/
8e2ed807	15
30967a1e	16	/**
	17	* Path for SquirrelMail required files.
	18	* @ignore
	19	*/
86725763	20	define('SM_PATH','../');
	21
	22	/* SquirrelMail required files. */
	23	require_once(SM_PATH . 'functions/strings.php');
	24	require_once(SM_PATH . 'config/config.php');
	25	require_once(SM_PATH . 'functions/i18n.php');
	26	require_once(SM_PATH . 'functions/plugin.php');
	27	require_once(SM_PATH . 'functions/constants.php');
	28	require_once(SM_PATH . 'functions/page_header.php');
	29	require_once(SM_PATH . 'functions/html.php');
a32985a5	30	require_once(SM_PATH . 'functions/global.php');
ea348fd3	31	require_once(SM_PATH . 'functions/imap_general.php');
a34d6890	32	require_once(SM_PATH . 'functions/forms.php');
98f2ee76	33
8f6f9ba5	34	/**
98f2ee76	35	* $squirrelmail_language is set by a cookie when the user selects
	36	* language and logs out
	37	*/
5e2b6751	38	set_up_language($squirrelmail_language, TRUE, TRUE);
d4e84069	39
85b454a0	40	/**
	41	* Find out the base URI to set cookies.
	42	*/
f3bc099d	43	if (!function_exists('sqm_baseuri')){
86725763	44	require_once(SM_PATH . 'functions/display_messages.php');
f3bc099d	45	}
f3bc099d	46	$base_uri = sqm_baseuri();
8e2ed807	47
98f2ee76	48	/*
	49	* In case the last session was not terminated properly, make sure
	50	* we get a new one.
	51	*/
5250f7e7	52
69146537	53	sqsession_destroy();
91e0dccc	54
98f2ee76	55	header('Pragma: no-cache');
98f2ee76	56
8f6f9ba5	57	/**
91e0dccc	58	* This detects if the IMAP server has logins disabled, and if so,
8f6f9ba5	59	* squelches the display of the login form and puts up a message
	60	* explaining the situation.
	61	*/
6d611a76	62	if($imap_auth_mech == 'login') {
c0c5cf6a	63	/**
f8a1ed5a	64	* detect disabled login, only when imapServerAddress contains
c0c5cf6a	65	* server address and not mapping. See sqimap_get_user_server()
	66	*/
	67	if (substr($imapServerAddress, 0, 4) != "map:") {
	68	$imap = sqimap_create_stream($imapServerAddress, $imapPort, $use_imap_tls);
	69	$logindisabled = sqimap_capability($imap,'LOGINDISABLED');
	70	sqimap_logout($imap);
	71	if ($logindisabled) {
	72	$string = _("The IMAP server is reporting that plain text logins are disabled.").'<br />'.
	73	_("Using CRAM-MD5 or DIGEST-MD5 authentication instead may work.").'<br />';
	74	if (!$use_imap_tls) {
	75	$string .= _("Also, the use of TLS may allow SquirrelMail to login.").'<br />';
	76	}
	77	$string .= _("Please contact your system administrator and report this error.");
	78	error_box($string,$color);
	79	exit;
6d611a76	80	}
ea348fd3	81	}
ea348fd3	82	}
ea348fd3	83
98f2ee76	84	do_hook('login_cookie');
	85
	86	/* Output the javascript onload function. */
	87
d68323ff	88	$header = "<script language=\"JavaScript\" type=\"text/javascript\">\n" .
98f2ee76	89	"<!--\n".
98f2ee76	90	" function squirrelmail_loginpage_onload() {\n".
03ccb49b	91	" var textElements = 0;\n".
	92	" for (i = 0; i < document.forms[0].elements.length; i++) {\n".
	93	" if (document.forms[0].elements[i].type == \"text\" \|\| document.forms[0].elements[i].type == \"password\") {\n".
	94	" textElements++;\n".
	95	" if (textElements == " . (isset($loginname) ? 2 : 1) . ") {\n".
	96	" document.forms[0].elements[i].focus();\n".
	97	" break;\n".
	98	" }\n".
	99	" }\n".
	100	" }\n".
98f2ee76	101	" }\n".
	102	"// -->\n".
	103	"</script>\n";
dfb94cac	104
	105	if (@file_exists($theme[$theme_default]['PATH']))
	106	@include ($theme[$theme_default]['PATH']);
	107
98f2ee76	108	displayHtmlHeader( "$org_name - " . _("Login"), $header, FALSE );
98f2ee76	109
2e394e36	110	echo "<body text=\"$color[8]\" bgcolor=\"$color[4]\" link=\"$color[7]\" vlink=\"$color[7]\" alink=\"$color[7]\" onLoad=\"squirrelmail_loginpage_onload()\">" .
ae958cd3	111	"\n" . '<form action="redirect.php" method="post" onSubmit="document.forms[0].js_autodetect_results.value=\'' . SMPREF_JS_ON .'\';">' . "\n";
98f2ee76	112
0fce910a	113	$username_form_name = 'login_username';
0fce910a	114	$password_form_name = 'secretkey';
98f2ee76	115	do_hook('login_top');
98f2ee76	116
5250f7e7	117	$loginname_value = (sqGetGlobalVar('loginname', $loginname) ? htmlspecialchars($loginname) : '');
98f2ee76	118
78b2428e	119	/* If they don't have a logo, don't bother.. */
	120	if (isset($org_logo) && $org_logo) {
	121	/* Display width and height like good little people */
	122	$width_and_height = '';
	123	if (isset($org_logo_width) && is_numeric($org_logo_width) &&
	124	$org_logo_width>0) {
	125	$width_and_height = " width=\"$org_logo_width\"";
	126	}
	127	if (isset($org_logo_height) && is_numeric($org_logo_height) &&
	128	$org_logo_height>0) {
	129	$width_and_height .= " height=\"$org_logo_height\"";
	130	}
98f2ee76	131	}
3fde693b	132
c67e4479	133	if(sqgetGlobalVar('mailto', $mailto)) {
a34d6890	134	$rcptaddress = addHidden('mailto', $mailto);
c67e4479	135	} else {
	136	$rcptaddress = '';
	137	}
1cac3b9b	138	echo html_tag( 'table',
8e2ed807	139	html_tag( 'tr',
	140	html_tag( 'td',
	141	'<center>'.
78b2428e	142	( isset($org_logo) && $org_logo
	143	? '<img src="' . $org_logo . '" alt="' .
	144	sprintf(_("%s Logo"), $org_name) .'"' . $width_and_height .
	145	' /><br />' . "\n"
	146	: '' ).
8a97a070	147	( (isset($hide_sm_attributions) && $hide_sm_attributions) ? '' :
8b5c49cd	148	'<small>' . _("SquirrelMail Webmail Application") . '<br />' ."\n".
8bc594ba	149	' ' . _("By the SquirrelMail Project Team") . '<br /></small>' . "\n" ) .
8e2ed807	150	html_tag( 'table',
	151	html_tag( 'tr',
	152	html_tag( 'td',
	153	'<b>' . sprintf (_("%s Login"), $org_name) . "</b>\n",
dfb94cac	154	'center', $color[0] )
8e2ed807	155	) .
	156	html_tag( 'tr',
	157	html_tag( 'td', "\n" .
	158	html_tag( 'table',
	159	html_tag( 'tr',
	160	html_tag( 'td',
	161	_("Name:") ,
	162	'right', '', 'width="30%"' ) .
	163	html_tag( 'td',
134e4174	164	addInput($username_form_name, $loginname_value),
8e2ed807	165	'left', '', 'width="*"' )
	166	) . "\n" .
	167	html_tag( 'tr',
	168	html_tag( 'td',
	169	_("Password:") ,
	170	'right', '', 'width="30%"' ) .
	171	html_tag( 'td',
134e4174	172	addPwField($password_form_name).
134e4174	173	addHidden('js_autodetect_results', SMPREF_JS_OFF).
c67e4479	174	$rcptaddress .
134e4174	175	addHidden('just_logged_in', '1'),
8e2ed807	176	'left', '', 'width="*"' )
8e2ed807	177	) ,
dfb94cac	178	'center', $color[4], 'border="0" width="100%"' ) ,
dfb94cac	179	'left', $color[4] )
91e0dccc	180	) .
8e2ed807	181	html_tag( 'tr',
8e2ed807	182	html_tag( 'td',
a34d6890	183	'<center>'. addSubmit(_("Login")) .'</center>',
8e2ed807	184	'left' )
8e2ed807	185	),
dfb94cac	186	'', $color[4], 'border="0" width="350"' ) . '</center>',
8e2ed807	187	'center' )
8e2ed807	188	) ,
dfb94cac	189	'', $color[4], 'border="0" cellspacing="0" cellpadding="0" width="100%"' );
98f2ee76	190	do_hook('login_form');
cbaf4cf1	191	echo '</form>' . "\n";
98f2ee76	192
98f2ee76	193	do_hook('login_bottom');
134e4174	194	?>
f8a1ed5a	195	</body></html>