src/login.php

   1 <?php
   2
   3 /**
   4  * login.php -- simple login screen
   5  *
   6  * Copyright (c) 1999-2004 The SquirrelMail Project Team
   7  * Licensed under the GNU GPL. For full terms see the file COPYING.
   8  *
   9  * This a simple login screen. Some housekeeping is done to clean
  10  * cookies and find language.
  11  *
  12  * @version $Id$
  13  * @package squirrelmail
  14  */
  15
  16 /**
  17  * Path for SquirrelMail required files.
  18  * @ignore
  19  */
  20 define('SM_PATH','../');
  21
  22 /* SquirrelMail required files. */
  23 require_once(SM_PATH . 'functions/strings.php');
  24 require_once(SM_PATH . 'config/config.php');
  25 require_once(SM_PATH . 'functions/i18n.php');
  26 require_once(SM_PATH . 'functions/plugin.php');
  27 require_once(SM_PATH . 'functions/constants.php');
  28 require_once(SM_PATH . 'functions/page_header.php');
  29 require_once(SM_PATH . 'functions/html.php');
  30 require_once(SM_PATH . 'functions/global.php');
  31 require_once(SM_PATH . 'functions/imap_general.php');
  32 require_once(SM_PATH . 'functions/forms.php');
  33
  34 /**
  35  * $squirrelmail_language is set by a cookie when the user selects
  36  * language and logs out
  37  */
  38 set_up_language($squirrelmail_language, TRUE, TRUE);
  39
  40 /**
  41  * Find out the base URI to set cookies.
  42  */
  43 if (!function_exists('sqm_baseuri')){
  44     require_once(SM_PATH . 'functions/display_messages.php');
  45 }
  46 $base_uri = sqm_baseuri();
  47
  48 /*
  49  * In case the last session was not terminated properly, make sure
  50  * we get a new one.
  51  */
  52
  53 sqsession_destroy();
  54
  55 header('Pragma: no-cache');
  56
  57 /**
  58  * This detects if the IMAP server has logins disabled, and if so,
  59  * squelches the display of the login form and puts up a message
  60  * explaining the situation.
  61  */
  62 if($imap_auth_mech == 'login') {
  63     $imap = sqimap_create_stream($imapServerAddress, $imapPort, $use_imap_tls);
  64     $logindisabled = sqimap_capability($imap,'LOGINDISABLED');
  65     sqimap_logout($imap);
  66     if ($logindisabled) {
  67         $string = _("The IMAP server is reporting that plain text logins are disabled.").'<br />'.
  68             _("Using CRAM-MD5 or DIGEST-MD5 authentication instead may work.").'<br />';
  69         if (!$use_imap_tls) {
  70             $string .= _("The use of TLS may allow SquirrelMail to login.").'<br />';
  71         }
  72         $string .= _("Please contact your system administrator and report this error.");
  73         error_box($string,$color);
  74         exit;
  75     }
  76 }
  77
  78 do_hook('login_cookie');
  79
  80 /* Output the javascript onload function. */
  81
  82 $header = "<script language=\"JavaScript\" type=\"text/javascript\">\n" .
  83           "<!--\n".
  84           "  function squirrelmail_loginpage_onload() {\n".
  85           "    var textElements = 0;\n".
  86           "    for (i = 0; i < document.forms[0].elements.length; i++) {\n".
  87           "      if (document.forms[0].elements[i].type == \"text\" || document.forms[0].elements[i].type == \"password\") {\n".
  88           "        textElements++;\n".
  89           "        if (textElements == " . (isset($loginname) ? 2 : 1) . ") {\n".
  90           "          document.forms[0].elements[i].focus();\n".
  91           "          break;\n".
  92           "        }\n".
  93           "      }\n".
  94           "    }\n".
  95           "  }\n".
  96           "// -->\n".
  97           "</script>\n";
  98
  99 if (@file_exists($theme[$theme_default]['PATH']))
 100    @include ($theme[$theme_default]['PATH']);
 101
 102 displayHtmlHeader( "$org_name - " . _("Login"), $header, FALSE );
 103
 104 echo "<body text=\"$color[8]\" bgcolor=\"$color[4]\" link=\"$color[7]\" vlink=\"$color[7]\" alink=\"$color[7]\" onLoad=\"squirrelmail_loginpage_onload()\">" .
 105      "\n" . '<form action="redirect.php" method="post" onSubmit="document.forms[0].js_autodetect_results.value=\'' . SMPREF_JS_ON .'\';">' . "\n";
 106
 107 $username_form_name = 'login_username';
 108 $password_form_name = 'secretkey';
 109 do_hook('login_top');
 110
 111 $loginname_value = (sqGetGlobalVar('loginname', $loginname) ? htmlspecialchars($loginname) : '');
 112
 113 /* If they don't have a logo, don't bother.. */
 114 if (isset($org_logo) && $org_logo) {
 115     /* Display width and height like good little people */
 116     $width_and_height = '';
 117     if (isset($org_logo_width) && is_numeric($org_logo_width) &&
 118      $org_logo_width>0) {
 119         $width_and_height = " width=\"$org_logo_width\"";
 120     }
 121     if (isset($org_logo_height) && is_numeric($org_logo_height) &&
 122      $org_logo_height>0) {
 123         $width_and_height .= " height=\"$org_logo_height\"";
 124     }
 125 }
 126
 127 if(sqgetGlobalVar('mailto', $mailto)) {
 128     $rcptaddress = addHidden('mailto', $mailto);
 129 } else {
 130     $rcptaddress = '';
 131 }
 132 echo html_tag( 'table',
 133     html_tag( 'tr',
 134         html_tag( 'td',
 135             '<center>'.
 136             ( isset($org_logo) && $org_logo
 137               ? '<img src="' . $org_logo . '" alt="' .
 138                 sprintf(_("%s Logo"), $org_name) .'"' . $width_and_height .
 139                 ' /><br />' . "\n"
 140               : '' ).
 141             ( (isset($hide_sm_attributions) && $hide_sm_attributions) ? '' :
 142             '<small>' . sprintf (_("SquirrelMail version %s"), $version) . '<br />' ."\n".
 143             '  ' . _("By the SquirrelMail Development Team") . '<br /></small>' . "\n" ) .
 144             html_tag( 'table',
 145                 html_tag( 'tr',
 146                     html_tag( 'td',
 147                         '<b>' . sprintf (_("%s Login"), $org_name) . "</b>\n",
 148                     'center', $color[0] )
 149                 ) .
 150                 html_tag( 'tr',
 151                     html_tag( 'td',  "\n" .
 152                         html_tag( 'table',
 153                             html_tag( 'tr',
 154                                 html_tag( 'td',
 155                                     _("Name:") ,
 156                                 'right', '', 'width="30%"' ) .
 157                                 html_tag( 'td',
 158                                     addInput($username_form_name, $loginname_value),
 159                                 'left', '', 'width="*"' )
 160                                 ) . "\n" .
 161                             html_tag( 'tr',
 162                                 html_tag( 'td',
 163                                     _("Password:") ,
 164                                 'right', '', 'width="30%"' ) .
 165                                 html_tag( 'td',
 166                                     addPwField($password_form_name).
 167                                     addHidden('js_autodetect_results', SMPREF_JS_OFF).
 168                                     $rcptaddress .
 169                                     addHidden('just_logged_in', '1'),
 170                                 'left', '', 'width="*"' )
 171                             ) ,
 172                         'center', $color[4], 'border="0" width="100%"' ) ,
 173                     'left', $color[4] )
 174                 ) .
 175                 html_tag( 'tr',
 176                     html_tag( 'td',
 177                         '<center>'. addSubmit(_("Login")) .'</center>',
 178                     'left' )
 179                 ),
 180             '', $color[4], 'border="0" width="350"' ) . '</center>',
 181         'center' )
 182     ) ,
 183 '', $color[4], 'border="0" cellspacing="0" cellpadding="0" width="100%"' );
 184 do_hook('login_form');
 185 echo '</form>' . "\n";
 186
 187 do_hook('login_bottom');
 188 ?>
 189 </body></html>