X-Git-Url: https://vcs.fsf.org/?p=squirrelmail.git;a=blobdiff_plain;f=src%2Flogin.php;h=e21cc3e67fc7df33bd2a6d9dc8f854f00193a974;hp=c6bbb30de1551209cbe40152c7d2c6367a450b1d;hb=602a123e5f75c57dace7d147cbe274b4230b7178;hpb=86e776cbe309b3d3cf38c1864562dcaf9ebd4b44 diff --git a/src/login.php b/src/login.php index c6bbb30d..e21cc3e6 100644 --- a/src/login.php +++ b/src/login.php @@ -3,133 +3,175 @@ /** * login.php -- simple login screen * - * Copyright (c) 1999-2002 The SquirrelMail Project Team - * Licensed under the GNU GPL. For full terms see the file COPYING. - * * This a simple login screen. Some housekeeping is done to clean * cookies and find language. * - * $Id$ + * @copyright © 1999-2006 The SquirrelMail Project Team + * @license http://opensource.org/licenses/gpl-license.php GNU Public License + * @version $Id$ + * @package squirrelmail */ -require_once('../functions/strings.php'); -require_once('../config/config.php'); -require_once('../functions/i18n.php'); -require_once('../functions/plugin.php'); -require_once('../functions/constants.php'); -require_once('../functions/page_header.php'); -require_once('../class/browser.class'); - -// initialize some vars -if(!isset($UA)) $UA = ''; -if(!isset($cc)) $cc = ''; -if(!isset($dl)) $dl = ''; -if(!isset($am)) $am = ''; - -$sniffer_settings = array('check_cookies'=>$cc, - 'default_language'=>$dl, - 'allow_masquerading'=>$am); -$browser = new phpSniff($UA,$sniffer_settings); -/* - * $squirrelmail_language is set by a cookie when the user selects - * language and logs out +// reduces the files included in init.php +$sInitLocation = 'login'; + +/** + * Include the SquirrelMail initialization file. */ -set_up_language($squirrelmail_language, TRUE); +require('../include/init.php'); + + +/* SquirrelMail required files. */ +require_once(SM_PATH . 'functions/imap_general.php'); +require_once(SM_PATH . 'functions/forms.php'); /** - * Find out the base URI to set cookies. + * $squirrelmail_language is set by a cookie when the user selects + * language and logs out */ -if (!function_exists('sqm_baseuri')){ - require_once('../functions/display_messages.php'); -} -$base_uri = sqm_baseuri(); -@session_destroy(); -session_start(); -session_register('browser'); +set_up_language($squirrelmail_language, TRUE, TRUE); + /* * In case the last session was not terminated properly, make sure * we get a new one. */ -$cookie_params = session_get_cookie_params(); -setcookie(session_name(), '', 0, $cookie_params['path'], - $cookie_params['domain']); -setcookie('username', '', 0, $base_uri); -setcookie('key', '', 0, $base_uri); -header('Pragma: no-cache'); +sqsession_destroy(); +/** + * PHP bug. http://bugs.php.net/11643 (warning, spammed bug tracker) and + * http://bugs.php.net/13834 + * SID constant is not destroyed in PHP 4.1.2, 4.2.3 and maybe other + * versions. Produces warning on login page. Bug should be fixed only in 4.3.0 + */ +@sqsession_is_active(); +$_SESSION=array(); + + +/** + * This detects if the IMAP server has logins disabled, and if so, + * squelches the display of the login form and puts up a message + * explaining the situation. + */ +if($imap_auth_mech == 'login') { + /** + * detect disabled login, only when imapServerAddress contains + * server address and not mapping. See sqimap_get_user_server() + */ + if (substr($imapServerAddress, 0, 4) != "map:") { + $imap = sqimap_create_stream($imapServerAddress, $imapPort, $use_imap_tls); + $logindisabled = sqimap_capability($imap,'LOGINDISABLED'); + sqimap_logout($imap); + if ($logindisabled) { + $string = _("The IMAP server is reporting that plain text logins are disabled.").'
'. + _("Using CRAM-MD5 or DIGEST-MD5 authentication instead may work.").'
'; + if (!$use_imap_tls) { + $string .= _("Also, the use of TLS may allow SquirrelMail to login.").'
'; + } + $string .= _("Please contact your system administrator and report this error."); + error_box($string); + // display footer (closes html tags) and stop script execution + $oTemplate->display('footer.tpl'); + exit; + } + } +} do_hook('login_cookie'); -/* Output the javascript onload function. */ +$loginname_value = (sqGetGlobalVar('loginname', $loginname) ? htmlspecialchars($loginname) : ''); -$header = "\n"; -$custom_css = 'none'; + +if (@file_exists($theme[$theme_default]['PATH'])) + @include ($theme[$theme_default]['PATH']); + +if (! isset($color) || ! is_array($color)) { + // Add default color theme, if theme loading fails + $color = array(); + $color[0] = '#dcdcdc'; /* light gray TitleBar */ + $color[1] = '#800000'; /* red */ + $color[2] = '#cc0000'; /* light red Warning/Error Messages */ + $color[4] = '#ffffff'; /* white Normal Background */ + $color[7] = '#0000cc'; /* blue Links */ + $color[8] = '#000000'; /* black Normal text */ +} +/** + * send out all the cookies + */ +sqsetcookieflush(); + displayHtmlHeader( "$org_name - " . _("Login"), $header, FALSE ); -/* Set the title of this page. */ -echo ''. - "\n

\n"; + +/* If they don't have a logo, don't bother.. */ +$logo_str = ''; +if (isset($org_logo) && $org_logo) { + /* Display width and height like good little people */ + $width_and_height = ''; + if (isset($org_logo_width) && is_numeric($org_logo_width) && + $org_logo_width>0) { + $width_and_height = "width=\"$org_logo_width\" "; + } + if (isset($org_logo_height) && is_numeric($org_logo_height) && + $org_logo_height>0) { + $width_and_height .= "height=\"$org_logo_height\" "; + } + + $logo_str = '

'."\n"; +} + +$sm_attribute_str = ''; +if (isset($hide_sm_attributions) && !$hide_sm_attributions) { + $sm_attribute_str = _("SquirrelMail Webmail Application")."
\n" . + _("By the SquirrelMail Project Team")."
\n"; +} $username_form_name = 'login_username'; $password_form_name = 'secretkey'; -do_hook('login_top'); - -$loginname_value = (isset($loginname) ? htmlspecialchars($loginname) : ''); -/* Display width and height like good little people */ -$width_and_height = ''; -if (isset($org_logo_width) && is_int($org_logo_width) && $org_logo_width>0) { - $width_and_height = " WIDTH=\"$org_logo_width\""; -} -if (isset($org_logo_height) && is_int($org_logo_height) && $org_logo_height>0) { - $width_and_height .= " HEIGHT=\"$org_logo_height\""; +if(sqgetGlobalVar('mailto', $mailto)) { + $rcptaddress = addHidden('mailto', $mailto); +} else { + $rcptaddress = ''; } -echo ''. - " $\""$
\n". - ( $hide_sm_attributions ? '' : - '' . sprintf (_("SquirrelMail version %s"), $version) . "
\n". - ' ' . _("By the SquirrelMail Development Team") . "
\n" ) . - "\n". - - "\n". - "\n". - " ". - " \n". - " \n". - "

\n". - ' ' . sprintf (_("%s Login"), $org_name) . "\n". - "

\n". - " \n". - ' \n". - " \n". - " \n". - " \n". - ' \n". - " \n". - " \n". - "

' . _("Name:") . "	\n". - " \n". - "
' . _("Password:") . "	\n". - " \n". - " \n". - " \n". - "

\n". - ' \n". - "

\n". - "\n"; - -do_hook('login_form'); -echo "

\n"; - -do_hook('login_bottom'); -echo "\n". - "\n"; +$password_field = addPwField($password_form_name). + addHidden('js_autodetect_results', SMPREF_JS_OFF). + $rcptaddress . + addHidden('just_logged_in', '1'); + +session_write_close(); + +$oTemplate->assign('logo_str', $logo_str); +$oTemplate->assign('sm_attribute_str', $sm_attribute_str); +$oTemplate->assign('org_name_str', sprintf (_("%s Login"), $org_name)); +$oTemplate->assign('login_field', addInput($username_form_name, $loginname_value)); +$oTemplate->assign('password_field', $password_field); +$oTemplate->assign('submit_field', addSubmit(_("Login"))); + +$oTemplate->display('login.tpl'); + +// Turn off delayed error handling to make sure all errors are dumped. +#$oErrorHandler->delayedErrors(false); + +#trigger_error('login'); +$oTemplate->display('footer.tpl'); ?> \ No newline at end of file