X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=html%2Findex.php;h=d1bf4457018b576c603a6cea50527785ba0c3030;hb=c30f46c9a0332d2d9803c86961e5a400ae30942e;hp=a5dfa89c48c9fcc565f08317e4020f3c1c2711f0;hpb=bfdb5f1cd8b19f78f9309beffb3f5ffa8caee46b;p=gosa.git diff --git a/html/index.php b/html/index.php index a5dfa89c4..d1bf44570 100644 --- a/html/index.php +++ b/html/index.php @@ -23,11 +23,79 @@ require_once ("../include/php_setup.inc"); require_once ("functions.inc"); header("Content-type: text/html; charset=UTF-8"); -/* Set error handler to own one, initialize time calculation - and start session. */ -session_start (); +function displayLogin() +{ + global $smarty,$message,$config,$ssl,$error_collector; + error_reporting(E_ALL); + /* Fill template with required values */ + $username = ""; + if(isset($_POST["username"])){ + $username= $_POST["username"]; + } + $smarty->assign ('date', gmdate("D, d M Y H:i:s")); + $smarty->assign ('username', $username); + $smarty->assign ('personal_img', get_template_path('images/personal.png')); + $smarty->assign ('password_img', get_template_path('images/password.png')); + $smarty->assign ('directory_img', get_template_path('images/ldapserver.png')); + + /* Some error to display? */ + if (!isset($message)){ + $message= ""; + } + $smarty->assign ("message", $message); + + /* Displasy SSL mode warning? */ + if ($ssl != "" && $config->data['MAIN']['WARNSSL'] == 'true'){ + $smarty->assign ("ssl", ""._("Warning").":<\/b> "._("Session will not be encrypted.")." "._("Enter SSL session")."<\/b>!"); + } else { + $smarty->assign ("ssl", ""); + } + + /* Generate server list */ + $servers= array(); + if (isset($_POST['server'])){ + $selected= validate($_POST['server']); + } else { + $selected= $config->data['MAIN']['DEFAULT']; + } + foreach ($config->data['LOCATIONS'] as $key => $ignored){ + $servers[$key]= $key; + } + $smarty->assign ("server_options", $servers); + $smarty->assign ("server_id", $selected); + + /* show login screen */ + $smarty->assign ("PHPSESSID", session_id()); + if (isset($_SESSION['errors'])){ + $smarty->assign("errors", $_SESSION['errors']); + } + if ($error_collector != ""){ + $smarty->assign("php_errors", $error_collector.""); + } else { + $smarty->assign("php_errors", ""); + } + + $smarty->display(get_template_path('headers.tpl')); + $smarty->display(get_template_path('login.tpl')); + exit(); +} + +session_start(); + +/* Destroy old session if exists. + Else you will get your old session back, if you not logged out correctly. */ +if(is_array($_SESSION) && count($_SESSION)){ + session_destroy(); + session_start(); +} + $username= ""; +/* Reset errors */ +$_SESSION['errors'] = ""; +$_SESSION['errorsAlreadyPosted']= array(); +$_SESSION['LastError'] = ""; + /* Check if we need to run setup */ if (!file_exists(CONFIG_DIR."/gosa.conf")){ header("location:setup.php"); @@ -44,10 +112,9 @@ if(isset($_POST['javascript']) && $_POST['javascript'] == "true") { $_SESSION['js']= FALSE; } -/* Check if gosa.conf is accessable */ +/* Check if gosa.conf is accessible */ if (!is_readable(CONFIG_DIR."/gosa.conf")){ - print_red(sprintf(_("GOsa configuration %s/gosa.conf is not readable. Aborted."), CONFIG_DIR)); - echo $_SESSION['errors']; + echo sprintf(_("GOsa configuration %s/gosa.conf is not readable. Aborted."), CONFIG_DIR); exit(); } @@ -68,9 +135,8 @@ $smarty->assign ('nextfield', 'username'); /* Check for compile directory */ if (!(is_dir($smarty->compile_dir) && is_writable($smarty->compile_dir))){ - print_red(sprintf(_("Directory '%s' specified as compile directory is not accessable!"), - $smarty->compile_dir)); - echo $_SESSION['errors']; + echo sprintf(_("Directory '%s' specified as compile directory is not accessible!"), + $smarty->compile_dir); exit(); } @@ -103,15 +169,15 @@ if ($_SERVER["REQUEST_METHOD"] != "POST"){ /* Check for SSL connection */ $ssl= ""; -if (!isset($HTTP_SERVER_VARS['HTTPS']) || - !stristr($HTTP_SERVER_VARS['HTTPS'], "on")) { +if (!isset($_SERVER['HTTPS']) || + !stristr($_SERVER['HTTPS'], "on")) { - if (empty($HTTP_SERVER_VARS['REQUEST_URI'])) { - $ssl= "https://".$HTTP_SERVER_VARS['HTTP_HOST']. - $HTTP_SERVER_VARS['PATH_INFO']; + if (empty($_SERVER['REQUEST_URI'])) { + $ssl= "https://".$_SERVER['HTTP_HOST']. + $_SERVER['PATH_INFO']; } else { - $ssl= "https://".$HTTP_SERVER_VARS['HTTP_HOST']. - $HTTP_SERVER_VARS['REQUEST_URI']; + $ssl= "https://".$_SERVER['HTTP_HOST']. + $_SERVER['REQUEST_URI']; } } @@ -139,8 +205,7 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){ $ldap = $config->get_ldap_link(); if (is_null($ldap) || (is_int($ldap) && $ldap == 0)){ print_red (_("Can't bind to LDAP. Please contact the system administrator.")); - echo $_SESSION['errors']; - $smarty->display(get_template_path('login.tpl')); + displayLogin(); exit(); } @@ -152,7 +217,8 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){ require_once("functions_setup.inc"); if(!is_schema_readable($config->current['SERVER'],$config->current['ADMIN'],$config->current['PASSWORD'])){ print_red(_("GOsa cannot retrieve information about the installed schema files. Please make sure, that this is possible.")); - echo $_SESSION['errors']; + $smarty->display(get_template_path('headers.tpl')); + echo "".$_SESSION['errors'].""; exit(); }else{ $str = (schema_check($config->current['SERVER'],$config->current['ADMIN'],$config->current['PASSWORD'],0,TRUE)); @@ -160,14 +226,15 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){ foreach($str as $tr){ if(isset($tr['needonstartup'])){ print_red($tr['msg']."
"._("Your ldap setup contains old schema definitions. Please re-run the setup.")); - print $_SESSION['errors']; + $smarty->display(get_template_path('headers.tpl')); + echo "".$_SESSION['errors'].""; exit(); } } } } /* Check for locking area */ - $ldap->cat($config->current['CONFIG']); + $ldap->cat($config->current['CONFIG'], array("dn")); $attrs= $ldap->fetch(); if (!count ($attrs)){ $ldap->cd($config->current['BASE']); @@ -208,12 +275,43 @@ if ($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])){ /* Let GOsa trigger a new connection for each POST, save config to session. */ + $config->get_departments(); + $config->make_idepartments(); $_SESSION['config']= $config; - /* Go to main page */ - gosa_log ("User \"$username\" logged in successfully"); - header ("Location: main.php?global_check=1"); - exit; + /* are we using accountexpiration */ + if((isset($config->data['MAIN']['ACCOUNT_EXPIRATION'])) && + preg_match('/true/i', $config->data['MAIN']['ACCOUNT_EXPIRATION'])){ + + $expired= ldap_expired_account($config, $ui->dn, $ui->username); + + if ($expired == 1){ + $message= _("Account locked. Please contact your system administrator."); + $smarty->assign ('nextfield', 'password'); + gosa_log ("Account for user \"$username\" has expired"); + } elseif ($expired == 3){ + $plist= new pluglist($config, $ui); + foreach ($plist->dirlist as $key => $value){ + if (preg_match("/\bpassword\b/i",$value)){ + $plug=$key; + gosa_log ("User \"$username\" password forced to change"); + header ("Location: main.php?plug=$plug&reset=1"); + exit; + } + } + } + + /* Not account expired or password forced change go to main page */ + gosa_log ("User \"$username\" logged in successfully"); + header ("Location: main.php?global_check=1"); + exit; + + } else { + /* Go to main page */ + gosa_log ("User \"$username\" logged in successfully"); + header ("Location: main.php?global_check=1"); + exit; + } } } } @@ -229,15 +327,20 @@ $smarty->assign ('directory_img', get_template_path('images/ldapserver.png')); if (!isset($message)){ $message= ""; } + $smarty->assign ("message", $message); /* Displasy SSL mode warning? */ if ($ssl != "" && $config->data['MAIN']['WARNSSL'] == 'true'){ - $smarty->assign ("ssl", ""._("Warning").": "._("Session will not be encrypted.")." "._("Enter SSL session")."!"); + $smarty->assign ("ssl", ""._("Warning").":<\/b> "._("Session will not be encrypted.")." "._("Enter SSL session")."<\/b>!"); } else { $smarty->assign ("ssl", ""); } +/* Translation of cookie-warning. Whether to display it, is determined by JavaScript */ +$smarty->assign ("cookies", ""._("Warning").":<\/b> "._("Your browser has cookies disabled. Please enable cookies and reload this page before logging in!")); + + /* Generate server list */ $servers= array(); if (isset($_POST['server'])){ @@ -252,7 +355,6 @@ $smarty->assign ("server_options", $servers); $smarty->assign ("server_id", $selected); /* show login screen */ -$smarty->display (get_template_path('headers.tpl')); $smarty->assign ("PHPSESSID", session_id()); if (isset($_SESSION['errors'])){ $smarty->assign("errors", $_SESSION['errors']); @@ -262,71 +364,7 @@ if ($error_collector != ""){ } else { $smarty->assign("php_errors", ""); } -$smarty->display (get_template_path('login.tpl')); - - - - - - - -function displayLogin() -{ - global $smarty,$message,$config,$ssl,$error_collector; - error_reporting(E_ALL); - /* Fill template with required values */ - $username = ""; - if(isset($_POST["username"])){ - $username= $_POST["username"]; - } - $smarty->assign ('date', gmdate("D, d M Y H:i:s")); - $smarty->assign ('username', $username); - $smarty->assign ('personal_img', get_template_path('images/personal.png')); - $smarty->assign ('password_img', get_template_path('images/password.png')); - $smarty->assign ('directory_img', get_template_path('images/ldapserver.png')); - - /* Some error to display? */ - if (!isset($message)){ - $message= ""; - } - $smarty->assign ("message", $message); - - /* Displasy SSL mode warning? */ - if ($ssl != "" && $config->data['MAIN']['WARNSSL'] == 'true'){ - $smarty->assign ("ssl", ""._("Warning").": "._("Session will not be encrypted.")." "._("Enter SSL session")."!"); - } else { - $smarty->assign ("ssl", ""); - } - - /* Generate server list */ - $servers= array(); - if (isset($_POST['server'])){ - $selected= validate($_POST['server']); - } else { - $selected= $config->data['MAIN']['DEFAULT']; - } - foreach ($config->data['LOCATIONS'] as $key => $ignored){ - $servers[$key]= $key; - } - $smarty->assign ("server_options", $servers); - $smarty->assign ("server_id", $selected); - - /* show login screen */ - $smarty->display (get_template_path('headers.tpl')); - $smarty->assign ("PHPSESSID", session_id()); - if (isset($_SESSION['errors'])){ - $smarty->assign("errors", $_SESSION['errors']); - } - if ($error_collector != ""){ - $smarty->assign("php_errors", $error_collector.""); - } else { - $smarty->assign("php_errors", ""); - } - - $smarty->display(get_template_path('login.tpl')); - exit(); -} - +displayLogin(); // vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: