src/login.php

   1 <?php
   2
   3 /**
   4  * login.php -- simple login screen
   5  *
   6  * Copyright (c) 1999-2005 The SquirrelMail Project Team
   7  * Licensed under the GNU GPL. For full terms see the file COPYING.
   8  *
   9  * This a simple login screen. Some housekeeping is done to clean
  10  * cookies and find language.
  11  *
  12  * @version $Id$
  13  * @package squirrelmail
  14  */
  15
  16 /**
  17  * Path for SquirrelMail required files.
  18  * @ignore
  19  */
  20 define('SM_PATH','../');
  21
  22 /* SquirrelMail required files. */
  23 require_once(SM_PATH . 'functions/strings.php');
  24 require_once(SM_PATH . 'config/config.php');
  25 require_once(SM_PATH . 'functions/i18n.php');
  26 require_once(SM_PATH . 'functions/plugin.php');
  27 require_once(SM_PATH . 'functions/constants.php');
  28 require_once(SM_PATH . 'functions/page_header.php');
  29 require_once(SM_PATH . 'functions/html.php');
  30 require_once(SM_PATH . 'functions/global.php');
  31 require_once(SM_PATH . 'functions/imap_general.php');
  32 require_once(SM_PATH . 'functions/forms.php');
  33
  34 /**
  35  * $squirrelmail_language is set by a cookie when the user selects
  36  * language and logs out
  37  */
  38 set_up_language($squirrelmail_language, TRUE, TRUE);
  39
  40 /**
  41  * Find out the base URI to set cookies.
  42  */
  43 if (!function_exists('sqm_baseuri')){
  44     require_once(SM_PATH . 'functions/display_messages.php');
  45 }
  46 $base_uri = sqm_baseuri();
  47
  48 /*
  49  * In case the last session was not terminated properly, make sure
  50  * we get a new one.
  51  */
  52
  53 sqsession_destroy();
  54
  55 header('Pragma: no-cache');
  56
  57 /**
  58  * This detects if the IMAP server has logins disabled, and if so,
  59  * squelches the display of the login form and puts up a message
  60  * explaining the situation.
  61  */
  62 if($imap_auth_mech == 'login') {
  63     /**
  64      * detect disabled login, only when imapServerAddress contains
  65      * server address and not mapping. See sqimap_get_user_server()
  66      */
  67     if (substr($imapServerAddress, 0, 4) != "map:") {
  68         $imap = sqimap_create_stream($imapServerAddress, $imapPort, $use_imap_tls);
  69         $logindisabled = sqimap_capability($imap,'LOGINDISABLED');
  70         sqimap_logout($imap);
  71         if ($logindisabled) {
  72             $string = _("The IMAP server is reporting that plain text logins are disabled.").'<br />'.
  73                 _("Using CRAM-MD5 or DIGEST-MD5 authentication instead may work.").'<br />';
  74             if (!$use_imap_tls) {
  75                 $string .= _("Also, the use of TLS may allow SquirrelMail to login.").'<br />';
  76             }
  77             $string .= _("Please contact your system administrator and report this error.");
  78             error_box($string,$color);
  79             exit;
  80         }
  81     }
  82 }
  83
  84 do_hook('login_cookie');
  85
  86 /* Output the javascript onload function. */
  87
  88 $header = "<script language=\"JavaScript\" type=\"text/javascript\">\n" .
  89           "<!--\n".
  90           "  function squirrelmail_loginpage_onload() {\n".
  91           "    var textElements = 0;\n".
  92           "    for (i = 0; i < document.forms[0].elements.length; i++) {\n".
  93           "      if (document.forms[0].elements[i].type == \"text\" || document.forms[0].elements[i].type == \"password\") {\n".
  94           "        textElements++;\n".
  95           "        if (textElements == " . (isset($loginname) ? 2 : 1) . ") {\n".
  96           "          document.forms[0].elements[i].focus();\n".
  97           "          break;\n".
  98           "        }\n".
  99           "      }\n".
 100           "    }\n".
 101           "  }\n".
 102           "// -->\n".
 103           "</script>\n";
 104
 105 if (@file_exists($theme[$theme_default]['PATH']))
 106    @include ($theme[$theme_default]['PATH']);
 107
 108 displayHtmlHeader( "$org_name - " . _("Login"), $header, FALSE );
 109
 110 echo "<body text=\"$color[8]\" bgcolor=\"$color[4]\" link=\"$color[7]\" vlink=\"$color[7]\" alink=\"$color[7]\" onLoad=\"squirrelmail_loginpage_onload()\">" .
 111      "\n" . '<form action="redirect.php" method="post" onSubmit="document.forms[0].js_autodetect_results.value=\'' . SMPREF_JS_ON .'\';">' . "\n";
 112
 113 $username_form_name = 'login_username';
 114 $password_form_name = 'secretkey';
 115 do_hook('login_top');
 116
 117 $loginname_value = (sqGetGlobalVar('loginname', $loginname) ? htmlspecialchars($loginname) : '');
 118
 119 /* If they don't have a logo, don't bother.. */
 120 if (isset($org_logo) && $org_logo) {
 121     /* Display width and height like good little people */
 122     $width_and_height = '';
 123     if (isset($org_logo_width) && is_numeric($org_logo_width) &&
 124      $org_logo_width>0) {
 125         $width_and_height = " width=\"$org_logo_width\"";
 126     }
 127     if (isset($org_logo_height) && is_numeric($org_logo_height) &&
 128      $org_logo_height>0) {
 129         $width_and_height .= " height=\"$org_logo_height\"";
 130     }
 131 }
 132
 133 if(sqgetGlobalVar('mailto', $mailto)) {
 134     $rcptaddress = addHidden('mailto', $mailto);
 135 } else {
 136     $rcptaddress = '';
 137 }
 138 echo html_tag( 'table',
 139     html_tag( 'tr',
 140         html_tag( 'td',
 141             '<center>'.
 142             ( isset($org_logo) && $org_logo
 143               ? '<img src="' . $org_logo . '" alt="' .
 144                 sprintf(_("%s Logo"), $org_name) .'"' . $width_and_height .
 145                 ' /><br />' . "\n"
 146               : '' ).
 147             ( (isset($hide_sm_attributions) && $hide_sm_attributions) ? '' :
 148             '<small>' . _("SquirrelMail Webmail Application") . '<br />' ."\n".
 149             '  ' . _("By the SquirrelMail Project Team") . '<br /></small>' . "\n" ) .
 150             html_tag( 'table',
 151                 html_tag( 'tr',
 152                     html_tag( 'td',
 153                         '<b>' . sprintf (_("%s Login"), $org_name) . "</b>\n",
 154                     'center', $color[0] )
 155                 ) .
 156                 html_tag( 'tr',
 157                     html_tag( 'td',  "\n" .
 158                         html_tag( 'table',
 159                             html_tag( 'tr',
 160                                 html_tag( 'td',
 161                                     _("Name:") ,
 162                                 'right', '', 'width="30%"' ) .
 163                                 html_tag( 'td',
 164                                     addInput($username_form_name, $loginname_value),
 165                                 'left', '', 'width="*"' )
 166                                 ) . "\n" .
 167                             html_tag( 'tr',
 168                                 html_tag( 'td',
 169                                     _("Password:") ,
 170                                 'right', '', 'width="30%"' ) .
 171                                 html_tag( 'td',
 172                                     addPwField($password_form_name).
 173                                     addHidden('js_autodetect_results', SMPREF_JS_OFF).
 174                                     $rcptaddress .
 175                                     addHidden('just_logged_in', '1'),
 176                                 'left', '', 'width="*"' )
 177                             ) ,
 178                         'center', $color[4], 'border="0" width="100%"' ) ,
 179                     'left', $color[4] )
 180                 ) .
 181                 html_tag( 'tr',
 182                     html_tag( 'td',
 183                         '<center>'. addSubmit(_("Login")) .'</center>',
 184                     'left' )
 185                 ),
 186             '', $color[4], 'border="0" width="350"' ) . '</center>',
 187         'center' )
 188     ) ,
 189 '', $color[4], 'border="0" cellspacing="0" cellpadding="0" width="100%"' );
 190 do_hook('login_form');
 191 echo '</form>' . "\n";
 192
 193 do_hook('login_bottom');
 194 ?>
 195 </body></html>