* This a simple login screen. Some housekeeping is done to clean
* cookies and find language.
*
- * @copyright © 1999-2007 The SquirrelMail Project Team
+ * @copyright 1999-2012 The SquirrelMail Project Team
* @license http://opensource.org/licenses/gpl-license.php GNU Public License
* @version $Id$
* @package squirrelmail
}
}
+$username_form_name = 'login_username';
+$password_form_name = 'secretkey';
do_hook('login_cookie', $null);
-$loginname_value = (sqGetGlobalVar('loginname', $loginname) ? htmlspecialchars($loginname) : '');
+$loginname_value = (sqGetGlobalVar('loginname', $loginname) ? sm_encode_html_special_chars($loginname) : '');
//FIXME: should be part of the template, not the core!
/* Output the javascript onload function. */
$header = "<script type=\"text/javascript\">\n" .
"<!--\n".
+ " var alreadyFocused = false;\n".
" function squirrelmail_loginpage_onload() {\n".
+ " if (alreadyFocused) return;\n".
" var textElements = 0; var i = 0;\n".
- " for (i = 0; i < document.forms[0].elements.length; i++) {\n".
- " if (document.forms[0].elements[i].type == \"text\" || document.forms[0].elements[i].type == \"password\") {\n".
+ " for (i = 0; i < document.login_form.elements.length; i++) {\n".
+ " if (document.login_form.elements[i].type == \"text\" || document.login_form.elements[i].type == \"password\") {\n".
" textElements++;\n".
" if (textElements == " . (isset($loginname) ? 2 : 1) . ") {\n".
- " document.forms[0].elements[i].focus();\n".
+ " document.login_form.elements[i].focus();\n".
" break;\n".
" }\n".
" }\n".
$oTemplate->assign('login_field_value', $loginname_value);
$oTemplate->assign('login_extra', $login_extra, FALSE);
-//FIXME: need to remove *ALL* HTML from this file!
-echo '<body onload="squirrelmail_loginpage_onload()">'."\n";
-echo '<form action="redirect.php" method="post" onsubmit="document.forms[0].js_autodetect_results.value='. SMPREF_JS_ON .'">'."\n";
-do_hook('login_top', $null);
-
$oTemplate->display('login.tpl');
-//FIXME: need to remove *ALL* HTML from this file!
-echo "</form>\n";
do_hook('login_bottom', $null);
// Turn off delayed error handling to make sure all errors are dumped.