* Check for capabilities in configtest, and warn here about LOGINDISABLED or
[squirrelmail.git] / src / login.php
1 <?php
2
3 /**
4 * login.php -- simple login screen
5 *
6 * Copyright (c) 1999-2004 The SquirrelMail Project Team
7 * Licensed under the GNU GPL. For full terms see the file COPYING.
8 *
9 * This a simple login screen. Some housekeeping is done to clean
10 * cookies and find language.
11 *
12 * @version $Id$
13 * @package squirrelmail
14 */
15
16 /**
17 * Path for SquirrelMail required files.
18 * @ignore
19 */
20 define('SM_PATH','../');
21
22 /* SquirrelMail required files. */
23 require_once(SM_PATH . 'functions/strings.php');
24 require_once(SM_PATH . 'config/config.php');
25 require_once(SM_PATH . 'functions/i18n.php');
26 require_once(SM_PATH . 'functions/plugin.php');
27 require_once(SM_PATH . 'functions/constants.php');
28 require_once(SM_PATH . 'functions/page_header.php');
29 require_once(SM_PATH . 'functions/html.php');
30 require_once(SM_PATH . 'functions/global.php');
31 require_once(SM_PATH . 'functions/imap_general.php');
32 require_once(SM_PATH . 'functions/forms.php');
33
34 /**
35 * $squirrelmail_language is set by a cookie when the user selects
36 * language and logs out
37 */
38 set_up_language($squirrelmail_language, TRUE, TRUE);
39
40 /**
41 * Find out the base URI to set cookies.
42 */
43 if (!function_exists('sqm_baseuri')){
44 require_once(SM_PATH . 'functions/display_messages.php');
45 }
46 $base_uri = sqm_baseuri();
47
48 /*
49 * In case the last session was not terminated properly, make sure
50 * we get a new one.
51 */
52
53 sqsession_destroy();
54
55 header('Pragma: no-cache');
56
57 /**
58 * This detects if the IMAP server has logins disabled, and if so,
59 * squelches the display of the login form and puts up a message
60 * explaining the situation.
61 */
62 if($imap_auth_mech == 'login') {
63 $imap = sqimap_create_stream($imapServerAddress, $imapPort, $use_imap_tls);
64 $logindisabled = sqimap_capability($imap,'LOGINDISABLED');
65 sqimap_logout($imap);
66 if ($logindisabled) {
67 $string = _("The IMAP server is reporting that plain text logins are disabled.").'<br />'.
68 _("Using CRAM-MD5 or DIGEST-MD5 authentication instead may work.").'<br />';
69 if (!$use_imap_tls) {
70 $string .= _("The use of TLS may allow SquirrelMail to login.").'<br />';
71 }
72 $string .= _("Please contact your system administrator and report this error.");
73 error_box($string,$color);
74 exit;
75 }
76 }
77
78 do_hook('login_cookie');
79
80 /* Output the javascript onload function. */
81
82 $header = "<script language=\"JavaScript\" type=\"text/javascript\">\n" .
83 "<!--\n".
84 " function squirrelmail_loginpage_onload() {\n".
85 " var textElements = 0;\n".
86 " for (i = 0; i < document.forms[0].elements.length; i++) {\n".
87 " if (document.forms[0].elements[i].type == \"text\" || document.forms[0].elements[i].type == \"password\") {\n".
88 " textElements++;\n".
89 " if (textElements == " . (isset($loginname) ? 2 : 1) . ") {\n".
90 " document.forms[0].elements[i].focus();\n".
91 " break;\n".
92 " }\n".
93 " }\n".
94 " }\n".
95 " }\n".
96 "// -->\n".
97 "</script>\n";
98
99 if (@file_exists($theme[$theme_default]['PATH']))
100 @include ($theme[$theme_default]['PATH']);
101
102 displayHtmlHeader( "$org_name - " . _("Login"), $header, FALSE );
103
104 echo "<body text=\"$color[8]\" bgcolor=\"$color[4]\" link=\"$color[7]\" vlink=\"$color[7]\" alink=\"$color[7]\" onLoad=\"squirrelmail_loginpage_onload()\">" .
105 "\n" . '<form action="redirect.php" method="post" onSubmit="document.forms[0].js_autodetect_results.value=\'' . SMPREF_JS_ON .'\';">' . "\n";
106
107 $username_form_name = 'login_username';
108 $password_form_name = 'secretkey';
109 do_hook('login_top');
110
111 $loginname_value = (sqGetGlobalVar('loginname', $loginname) ? htmlspecialchars($loginname) : '');
112
113 /* If they don't have a logo, don't bother.. */
114 if (isset($org_logo) && $org_logo) {
115 /* Display width and height like good little people */
116 $width_and_height = '';
117 if (isset($org_logo_width) && is_numeric($org_logo_width) &&
118 $org_logo_width>0) {
119 $width_and_height = " width=\"$org_logo_width\"";
120 }
121 if (isset($org_logo_height) && is_numeric($org_logo_height) &&
122 $org_logo_height>0) {
123 $width_and_height .= " height=\"$org_logo_height\"";
124 }
125 }
126
127 if(sqgetGlobalVar('mailto', $mailto)) {
128 $rcptaddress = addHidden('mailto', $mailto);
129 } else {
130 $rcptaddress = '';
131 }
132 echo html_tag( 'table',
133 html_tag( 'tr',
134 html_tag( 'td',
135 '<center>'.
136 ( isset($org_logo) && $org_logo
137 ? '<img src="' . $org_logo . '" alt="' .
138 sprintf(_("%s Logo"), $org_name) .'"' . $width_and_height .
139 ' /><br />' . "\n"
140 : '' ).
141 ( (isset($hide_sm_attributions) && $hide_sm_attributions) ? '' :
142 '<small>' . sprintf (_("SquirrelMail version %s"), $version) . '<br />' ."\n".
143 ' ' . _("By the SquirrelMail Development Team") . '<br /></small>' . "\n" ) .
144 html_tag( 'table',
145 html_tag( 'tr',
146 html_tag( 'td',
147 '<b>' . sprintf (_("%s Login"), $org_name) . "</b>\n",
148 'center', $color[0] )
149 ) .
150 html_tag( 'tr',
151 html_tag( 'td', "\n" .
152 html_tag( 'table',
153 html_tag( 'tr',
154 html_tag( 'td',
155 _("Name:") ,
156 'right', '', 'width="30%"' ) .
157 html_tag( 'td',
158 addInput($username_form_name, $loginname_value),
159 'left', '', 'width="*"' )
160 ) . "\n" .
161 html_tag( 'tr',
162 html_tag( 'td',
163 _("Password:") ,
164 'right', '', 'width="30%"' ) .
165 html_tag( 'td',
166 addPwField($password_form_name).
167 addHidden('js_autodetect_results', SMPREF_JS_OFF).
168 $rcptaddress .
169 addHidden('just_logged_in', '1'),
170 'left', '', 'width="*"' )
171 ) ,
172 'center', $color[4], 'border="0" width="100%"' ) ,
173 'left', $color[4] )
174 ) .
175 html_tag( 'tr',
176 html_tag( 'td',
177 '<center>'. addSubmit(_("Login")) .'</center>',
178 'left' )
179 ),
180 '', $color[4], 'border="0" width="350"' ) . '</center>',
181 'center' )
182 ) ,
183 '', $color[4], 'border="0" cellspacing="0" cellpadding="0" width="100%"' );
184 do_hook('login_form');
185 echo '</form>' . "\n";
186
187 do_hook('login_bottom');
188 ?>
189 </body></html>