X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=html%2Findex.php;h=7977dfab03cb46087fa67931475669ce426df3d3;hb=4ebac9cc4182bb5425873aebd91f2764ef57338f;hp=b6c38f3062a1982784afba0df26d83c7862c16a1;hpb=a9b96f51e5a0f72b25916eadfabaec3674e04014;p=gosa.git
diff --git a/html/index.php b/html/index.php
index b6c38f306..7977dfab0 100644
--- a/html/index.php
+++ b/html/index.php
@@ -21,6 +21,7 @@
/* Load required includes */
require_once ("../include/php_setup.inc");
require_once ("functions.inc");
+require_once ("class_log.inc");
header("Content-type: text/html; charset=UTF-8");
function displayLogin()
@@ -208,9 +209,9 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){
/* Admin-logon and verify */
$ldap = $config->get_ldap_link();
if (is_null($ldap) || (is_int($ldap) && $ldap == 0)){
-# print_red (_("Can't bind to LDAP. Please contact the system administrator."));
-# displayLogin();
-# exit();
+ print_red (_("Can't bind to LDAP. Please contact the system administrator."));
+ displayLogin();
+ exit();
}
/* Check for schema file presence */
@@ -221,22 +222,26 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){
$recursive = (isset($config->current['RECURSIVE']) && $config->current['RECURSIVE'] == "true");
$tls = (isset($config->current['TLS']) && $config->current['TLS'] == "true");
-# if(!is_schema_readable($config->current['SERVER'], $config->current['ADMIN'], $config->current['PASSWORD'], $recursive, $tls)){
-#
-# print_red(_("GOsa cannot retrieve information about the installed schema files. Please make sure, that this is possible."));
-# displayLogin();
-# exit() ;
-# }else{
-# $str = (schema_check($config->current['SERVER'],$config->current['ADMIN'],$config->current['PASSWORD'], $recursive, $tls, 0, TRUE));
-# $checkarr = array();
-# foreach($str as $tr){
-# if(isset($tr['needonstartup'])){
-# print_red($tr['msg']."
"._("Your ldap setup contains old schema definitions. Please re-run the setup."));
-# displayLogin();
-# exit() ;
-# }
-# }
-# }
+ if(!count($ldap->get_objectclasses())){
+ print_red(_("GOsa cannot retrieve information about the installed schema files. Please make sure, that this is possible."));
+ displayLogin();
+ exit() ;
+ }else{
+ $cfg = array();
+ $cfg['admin'] = $config->current['ADMIN'];
+ $cfg['password'] = $config->current['PASSWORD'];
+ $cfg['connection']= $config->current['SERVER'];
+ $cfg['tls'] = $tls;
+ $str = check_schema($cfg,isset($config->current['RFC2307BIS']) && preg_match("/(true|yes|on|1)/i",$config->current['RFC2307BIS']));
+ $checkarr = array();
+ foreach($str as $tr){
+ if(isset($tr['IS_MUST_HAVE']) && !$tr['STATUS']){
+ print_red($tr['MSG']."
"._("Your ldap setup contains old schema definitions. Please re-run the setup."));
+ displayLogin();
+ exit();
+ }
+ }
+ }
}
/* Check for locking area */
$ldap->cat($config->current['CONFIG'], array("dn"));
@@ -246,15 +251,6 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){
$ldap->create_missing_trees($config->current['CONFIG']);
}
- /* Check for at least one subtreeACL in the complete tree */
- $ldap->cd($config->current['BASE']);
- $ldap->search("(&(objectClass=gosaObject)(gosaSubtreeACL=:all))");
- if ($ldap->count() < 1){
- print_red(_("You're missing an administrative account for GOsa, you'll not be able to administrate anything!"));
- displayLogin();
- exit();
- }
-
/* Check for valid input */
$username= $_POST["username"];
if (!ereg("^[A-Za-z0-9_.-]+$", $username)){
@@ -266,10 +262,10 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){
/* Login as user, initialize user ACL's */
$ui= ldap_login_user($username, $_POST["password"]);
- if ($ui === NULL || $ui == 0){
+ if ($ui === NULL || !$ui){
$message= _("Please check the username/password combination.");
$smarty->assign ('nextfield', 'password');
- gosa_log ("Authentication failed for user \"$username\"");
+ new log("security","login","",array(),"Authentication failed for user \"$username\"") ;
} else {
/* Remove all locks of this user */
del_user_locks($ui->dn);
@@ -284,6 +280,11 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){
$config->make_idepartments();
$_SESSION['config']= $config;
+ /* Take care about zend.ze1_compatiblity_mode */
+ if (ini_get("zend.ze1_compatibility_mode") != 0){
+ $_SESSION['PHP4COMPATIBLE']= TRUE;
+ }
+
/* are we using accountexpiration */
if((isset($config->data['MAIN']['ACCOUNT_EXPIRATION'])) &&
preg_match('/true/i', $config->data['MAIN']['ACCOUNT_EXPIRATION'])){
@@ -293,13 +294,13 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){
if ($expired == 1){
$message= _("Account locked. Please contact your system administrator.");
$smarty->assign ('nextfield', 'password');
- gosa_log ("Account for user \"$username\" has expired");
+ new log("security","login","",array(),"Account for user \"$username\" has expired") ;
} elseif ($expired == 3){
$plist= new pluglist($config, $ui);
foreach ($plist->dirlist as $key => $value){
if (preg_match("/\bpassword\b/i",$value)){
$plug=$key;
- gosa_log ("User \"$username\" password forced to change");
+ new log("security","login","",array(),"User \"$username\" password forced to change") ;
header ("Location: main.php?plug=$plug&reset=1");
exit;
}
@@ -307,13 +308,13 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){
}
/* Not account expired or password forced change go to main page */
- gosa_log ("User \"$username\" logged in successfully");
+ new log("security","login","",array(),"User \"$username\" logged in successfully") ;
header ("Location: main.php?global_check=1");
exit;
} else {
/* Go to main page */
- gosa_log ("User \"$username\" logged in successfully");
+ new log("security","login","",array(),"User \"$username\" logged in successfully") ;
header ("Location: main.php?global_check=1");
exit;
}