02e81c694d2044b3fe6b35af29a4cc2fb4f3b6f3
[squirrelmail.git] / src / login.php
1 <?php
2
3 /**
4 * login.php -- simple login screen
5 *
6 * This a simple login screen. Some housekeeping is done to clean
7 * cookies and find language.
8 *
9 * @copyright &copy; 1999-2006 The SquirrelMail Project Team
10 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
11 * @version $Id$
12 * @package squirrelmail
13 */
14
15 // reduces the files included in init.php
16 $sInitLocation = 'login';
17
18 /**
19 * Include the SquirrelMail initialization file.
20 */
21 require('../include/init.php');
22
23
24 /* SquirrelMail required files. */
25 require_once(SM_PATH . 'functions/imap_general.php');
26 require_once(SM_PATH . 'functions/forms.php');
27
28 /**
29 * $squirrelmail_language is set by a cookie when the user selects
30 * language and logs out
31 */
32 set_up_language($squirrelmail_language, TRUE, TRUE);
33
34 /*
35 * In case the last session was not terminated properly, make sure
36 * we get a new one.
37 */
38 sqsession_destroy();
39 /**
40 * PHP bug. http://bugs.php.net/11643 (warning, spammed bug tracker) and
41 * http://bugs.php.net/13834
42 * SID constant is not destroyed in PHP 4.1.2, 4.2.3 and maybe other
43 * versions. Produces warning on login page. Bug should be fixed only in 4.3.0
44 */
45 @sqsession_is_active();
46 $_SESSION=array();
47
48
49 /**
50 * This detects if the IMAP server has logins disabled, and if so,
51 * squelches the display of the login form and puts up a message
52 * explaining the situation.
53 */
54 if($imap_auth_mech == 'login') {
55 /**
56 * detect disabled login, only when imapServerAddress contains
57 * server address and not mapping. See sqimap_get_user_server()
58 */
59 if (substr($imapServerAddress, 0, 4) != "map:") {
60 $imap = sqimap_create_stream($imapServerAddress, $imapPort, $use_imap_tls);
61 $logindisabled = sqimap_capability($imap,'LOGINDISABLED');
62 sqimap_logout($imap);
63 if ($logindisabled) {
64 $string = _("The IMAP server is reporting that plain text logins are disabled.").'<br />'.
65 _("Using CRAM-MD5 or DIGEST-MD5 authentication instead may work.").'<br />';
66 if (!$use_imap_tls) {
67 $string .= _("Also, the use of TLS may allow SquirrelMail to login.").'<br />';
68 }
69 $string .= _("Please contact your system administrator and report this error.");
70 error_box($string);
71 // display footer (closes html tags) and stop script execution
72 $oTemplate->display('footer.tpl');
73 exit;
74 }
75 }
76 }
77
78 do_hook('login_cookie');
79
80 $loginname_value = (sqGetGlobalVar('loginname', $loginname) ? htmlspecialchars($loginname) : '');
81
82 /* Output the javascript onload function. */
83 $header = "<script type=\"text/javascript\">\n" .
84 "<!--\n".
85 " function squirrelmail_loginpage_onload() {\n".
86 " var textElements = 0;\n".
87 " for (i = 0; i < document.forms[0].elements.length; i++) {\n".
88 " if (document.forms[0].elements[i].type == \"text\" || document.forms[0].elements[i].type == \"password\") {\n".
89 " textElements++;\n".
90 " if (textElements == " . (isset($loginname) ? 2 : 1) . ") {\n".
91 " document.forms[0].elements[i].focus();\n".
92 " break;\n".
93 " }\n".
94 " }\n".
95 " }\n".
96 " }\n".
97 "// -->\n".
98 "</script>\n";
99
100 if (@file_exists($theme[$theme_default]['PATH']))
101 @include ($theme[$theme_default]['PATH']);
102
103 if (! isset($color) || ! is_array($color)) {
104 // Add default color theme, if theme loading fails
105 $color = array();
106 $color[0] = '#dcdcdc'; /* light gray TitleBar */
107 $color[1] = '#800000'; /* red */
108 $color[2] = '#cc0000'; /* light red Warning/Error Messages */
109 $color[4] = '#ffffff'; /* white Normal Background */
110 $color[7] = '#0000cc'; /* blue Links */
111 $color[8] = '#000000'; /* black Normal text */
112 }
113 /**
114 * send out all the cookies
115 */
116 sqsetcookieflush();
117
118 displayHtmlHeader( "$org_name - " . _("Login"), $header, FALSE );
119
120
121 /* If they don't have a logo, don't bother.. */
122 $logo_str = '';
123 if (isset($org_logo) && $org_logo) {
124 /* Display width and height like good little people */
125 $width_and_height = '';
126 if (isset($org_logo_width) && is_numeric($org_logo_width) &&
127 $org_logo_width>0) {
128 $width_and_height = " width=\"$org_logo_width\"";
129 }
130 if (isset($org_logo_height) && is_numeric($org_logo_height) &&
131 $org_logo_height>0) {
132 $width_and_height .= " height=\"$org_logo_height\"";
133 }
134
135 $logo_str = '<img src="'.$org_logo.'" ' .
136 'alt="'. sprintf(_("%s Logo"), $org_name).'" ' .
137 $width_and_height .
138 'class="sqm_loginImage" ' .
139 ' /><br />'."\n";
140 }
141
142 $sm_attribute_str = '';
143 if (isset($hide_sm_attributions) && !$hide_sm_attributions) {
144 $sm_attribute_str = _("SquirrelMail Webmail Application")."<br />\n" .
145 _("By the SquirrelMail Project Team")."<br />\n";
146 }
147
148 $username_form_name = 'login_username';
149 $password_form_name = 'secretkey';
150
151 if(sqgetGlobalVar('mailto', $mailto)) {
152 $rcptaddress = addHidden('mailto', $mailto);
153 } else {
154 $rcptaddress = '';
155 }
156
157 $password_field = addPwField($password_form_name).
158 addHidden('js_autodetect_results', SMPREF_JS_OFF).
159 $rcptaddress .
160 addHidden('just_logged_in', '1');
161
162 session_write_close();
163
164 $oTemplate->assign('logo_str', $logo_str);
165 $oTemplate->assign('sm_attribute_str', $sm_attribute_str);
166 $oTemplate->assign('org_name_str', sprintf (_("%s Login"), $org_name));
167 $oTemplate->assign('login_field', addInput($username_form_name, $loginname_value));
168 $oTemplate->assign('password_field', $password_field);
169 $oTemplate->assign('submit_field', addSubmit(_("Login")));
170
171 $oTemplate->display('login.tpl');
172
173 // Turn off delayed error handling to make sure all errors are dumped.
174 #$oErrorHandler->delayedErrors(false);
175
176 #trigger_error('login');
177 $oTemplate->display('footer.tpl');
178 ?>