X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=html%2Fmain.php;h=50a3e87cf72b4cee54dd97a03541ff53e8afe51e;hb=bf781db3d9f73f8bd555ce039f659ca7ee3adf54;hp=7b0f3f61f31dba36f80648d5524a80bb11ac68ba;hpb=990296b6cd6c1b663589de0788f752c677918739;p=gosa.git diff --git a/html/main.php b/html/main.php index 7b0f3f61f..50a3e87cf 100644 --- a/html/main.php +++ b/html/main.php @@ -18,23 +18,38 @@ Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA */ +/* Save start time */ +$start = microtime(); + /* Basic setup, remove eventually registered sessions */ -$timing= array(); require_once ("../include/php_setup.inc"); require_once ("functions.inc"); -header("Content-type: text/html; charset=UTF-8"); +require_once ("functions_FAI.inc"); -/* Find all class files and include them */ -get_dir_list("$BASE_DIR/plugins"); +/* Set header */ +header("Content-type: text/html; charset=UTF-8"); /* Set the text domain as 'messages' */ $domain = 'messages'; bindtextdomain($domain, "$BASE_DIR/locale"); textdomain($domain); +/* Set cookie lifetime to one day (The parameter is in seconds ) */ +session_set_cookie_params(24*60*60); + +/* Set cache limter to one day (parameter is minutes !!)*/ +session_cache_expire(60*24); // default is 180 + +/* Set session max lifetime, to prevent the garbage collector to delete session before timeout. + !! The garbage collector is a cron job on debian systems, the cronjob will fetch the timeout from + the php.ini, so if you use debian, you must hardcode session.gc_maxlifetime in your php.ini */ +ini_set("session.gc_maxlifetime",24*60*60); + /* Remember everything we did after the last click */ -session_set_cookie_params(2*60*60); session_start (); + +$_SESSION['limit_exceeded'] =FALSE; + if ($_SERVER["REQUEST_METHOD"] == "POST"){ @DEBUG (DEBUG_POST, __LINE__, __FUNCTION__, __FILE__, $_POST, "_POST"); } @@ -42,22 +57,53 @@ if ($_SERVER["REQUEST_METHOD"] == "POST"){ /* Logged in? Simple security check */ if (!isset($_SESSION['config'])){ - gosa_log ("main.php called without session - logging out"); + new log("security","login","",array(),"main.php called without session - logging out") ; header ("Location: logout.php"); exit; } -/* Reset errors */ -$_SESSION['errors']= ""; - /* Check for uniqe ip address */ $ui= $_SESSION["ui"]; if ($_SERVER['REMOTE_ADDR'] != $ui->ip){ - gosa_log ("main.php called with session which has a changed IP address.", 3); + new log("security","login","",array(),"main.php called with session which has a changed IP address.") ; header ("Location: logout.php"); exit; } $config= $_SESSION['config']; +$config->check_and_reload(); + +/* Enable compressed output */ +if (isset($config->data['MAIN']['COMPRESSED']) && preg_match('/^(true|on)$/i', $config->data['MAIN']['COMPRESSED'])){ + ob_start("ob_gzhandler"); +} + +/* Check for invalid sessions */ +if(empty($_SESSION['_LAST_PAGE_REQUEST'])){ + $_SESSION['_LAST_PAGE_REQUEST']= time(); +}else{ + + /* check GOsa.conf for defined session lifetime */ + if(isset($config->data['MAIN']['SESSION_LIFETIME'])){ + $max_life = $config->data['MAIN']['SESSION_LIFETIME']; + }else{ + $max_life = 60*60*2; + } + + /* get time difference between last page reload */ + $request_time = (time()-$_SESSION['_LAST_PAGE_REQUEST']); + + /* If page wasn't reloaded for more than max_life seconds + * kill session + */ + if($request_time > $max_life){ + session_unset(); + new log("security","login","",array(),"main.php called without session - logging out") ; + header ("Location: logout.php"); + exit; + } + $_SESSION['_LAST_PAGE_REQUEST'] = time(); +} + @DEBUG (DEBUG_CONFIG, __LINE__, __FUNCTION__, __FILE__, $config->data, "config"); @@ -77,20 +123,20 @@ if((!isset($_SESSION['Last_init_lang']))){ $_SESSION['Last_init_lang'] = get_browser_language(); } +/* If last language != current force navi reload */ +$lang= get_browser_language(); +if($_SESSION['Last_init_lang'] != $lang){ + $reload_navigation = true; +} + /* Language setup */ -if ($config->data['MAIN']['LANG'] == ""){ - - /* If last language != current force navi reload */ - if($_SESSION['Last_init_lang'] != get_browser_language()){ - $reload_navigation = true; - } - $lang= get_browser_language(); - $_SESSION['Last_init_lang'] = $lang; -} else { - $lang= $config->data['MAIN']['LANG']; +$_SESSION['Last_init_lang'] = $lang; + +/* Preset current main base */ +if(!isset($_SESSION['CurrentMainBase'])){ + $_SESSION['CurrentMainBase']= get_base_from_people($ui->dn); } -$lang.=".UTF-8"; putenv("LANGUAGE="); putenv("LANG=$lang"); setlocale(LC_ALL, $lang); @@ -105,15 +151,27 @@ textdomain($domain); /* Prepare plugin list */ if (!isset($_SESSION['plist'])){ + /* Initially load all classes */ + $class_list= get_declared_classes(); + foreach ($class_mapping as $class => $path){ + if (!in_array($class, $class_list)){ + require_once("$BASE_DIR/$path"); + } + } + $_SESSION['plist']= new pluglist($config, $ui); + + /* Load ocMapping into userinfo */ + $tmp= new acl($config, NULL, $ui->dn); + $ui->ocMapping= $tmp->ocMapping; + $_SESSION['ui']= $ui; } $plist= $_SESSION['plist']; /* Check for register globals */ if (isset($global_check) && $config->data['MAIN']['FORCEGLOBALS'] == 'true'){ - print_red (_("Register globals is on. GOsa will refuse to login unless this is fixed by an administrator.")); - echo $_SESSION['errors']; - gosa_log ("Register globals is on. For security reasons, this should be turned off."); + echo _("FATAL: Register globals is on. GOsa will refuse to login unless this is fixed by an administrator."); + new log("security","login","",array(),"Register globals is on. For security reasons, this should be turned off.") ; session_destroy (); exit (); } @@ -129,7 +187,7 @@ if (isset($_GET['plug'])){ $plugin_dir= $plist->get_path($plug); $_SESSION['plugin_dir']= $plugin_dir; if ($plugin_dir == ""){ - gosa_log ("main.php called with invalid plug parameter \"$plug\"", 3); + new log("security","gosa","",array(),"main.php called with invalid plug parameter \"$plug\"") ; header ("Location: logout.php"); exit; } @@ -194,8 +252,6 @@ if ($_SERVER["REQUEST_METHOD"] == "POST"){ /* Load department list when plugin has changed. That is some kind of compromise between speed and beeing up to date */ if (isset($_GET['reset'])){ - $config->departments= get_departments(); - $config->make_idepartments (); if (isset($_SESSION['objectinfo'])){ unset ($_SESSION['objectinfo']); } @@ -250,7 +306,6 @@ $smarty->assign ("plug", "$plug"); $header= "".$smarty->fetch(get_template_path('headers.tpl')); - /* React on clicks */ if ($_SERVER["REQUEST_METHOD"] == "POST"){ @@ -258,6 +313,14 @@ if ($_SERVER["REQUEST_METHOD"] == "POST"){ lock at this point globally. Plugins do not need to remove it. */ if (isset($_POST['delete_lock']) && isset($_SESSION['dn'])){ del_lock ($_SESSION['dn']); + + /* Set old Post data */ + if(isset($_SESSION['LOCK_VARS_USED'])){ + foreach($_SESSION['LOCK_VARS_USED'] as $name => $value){ + $_GET[$name] = $value; + $_POST[$name] = $value; + } + } sess_del ('dn'); } @@ -280,65 +343,87 @@ if (isset ($_SESSION['post_cnt'])){ echo "\n"; } +/* check if we are using account expiration */ +if((isset($config->data['MAIN']['ACCOUNT_EXPIRATION'])) && + preg_match('/true/i', $config->data['MAIN']['ACCOUNT_EXPIRATION'])){ + + $expired= ldap_expired_account($config, $ui->dn, $ui->username); + + if ($expired == 2){ + new log("security","gosa","",array(),"password for user \"$ui->username\" is about to expire") ; + print_red(_("Your password is about to expire, please change your password")); + } +} + /* Load plugin */ if (is_file("$plugin_dir/main.inc")){ require_once ("$plugin_dir/main.inc"); } else { - print_red(sprintf(_("Can't find any plugin definitions for plugin '%s'!"), $plug)); - echo $_SESSION['errors']; + echo sprintf(_("FATAL: Can't find any plugin definitions for plugin '%s'!"), $plug); exit(); } -/* Close div/tables */ + +/* Print_out last ErrorMessage repeated string. */ +if(isset($_GET['add'])){ +msg_dialog::display("Error" ,"Kann datei nicht schreiben, bla",ERROR_DIALOG); +msg_dialog::display("Warning" ,"Kann datei nicht schreiben, bla",WARNING_DIALOG); +msg_dialog::display("Info" ,"Kann datei nicht schreiben, bla",INFO_DIALOG); +msg_dialog::display("Confirm" ,"Kann datei nicht schreiben, bla",CONFIRM_DIALOG); +} + +$smarty->assign("msg_dialogs", msg_dialog::get_dialogs()); $smarty->assign("contents", $display); + +/* Assign erros to smarty */ if (isset($_SESSION['errors'])){ $smarty->assign("errors", $_SESSION['errors']); } if ($error_collector != ""){ - $smarty->assign("php_errors", $error_collector.""); + $smarty->assign("php_errors", preg_replace("/%BUGBODY%/",$error_collector_mailto,$error_collector).""); } else { $smarty->assign("php_errors", ""); } -$display= $header.$smarty->fetch(get_template_path('framework.tpl')); -/*if (isset($config->data['MAIN']['W3CTEST']) && preg_match('/true/i', $config->data['MAIN']['W3CTEST'])) { - $tidy = new tidy(); - $config = array('indent' => TRUE, - 'output-xhtml' => TRUE, - 'wrap' => 200); - $display = tidy_parse_string($display, $config, 'UTF8'); - tidy_clean_repair($display); - $cnt = (tidy_error_count($display))+(tidy_warning_count($display)); - if($cnt != 0){ - echo "
\"W3C\" "._("Generating this page caused the W3C conformance checker to raise some errors!")."
"; - } - tidy_clean_repair($display); +/* Set focus to the error button if we've an error message */ +$focus= ""; +if (isset($_SESSION['errors']) && $_SESSION['errors'] != ""){ + $focus= ''; } -*/ -if ((isset($config->data['MAIN']['W3CTEST']) && preg_match('/true/i', $config->data['MAIN']['W3CTEST']))&&(!empty($display))) { - tidy_parse_string(utf8_decode($display)); - $err = nl2br(htmlentities(tidy_get_error_buffer())); - - if($err){ - echo "
\"W3C\" "._("Generating this page caused the W3C conformance checker to raise some errors!")."
"; - tidy_clean_repair($display); +$display= $header.$smarty->fetch(get_template_path('framework.tpl')); + +/* Save dialog filters and selected base in a cookie. + So we may be able to restore the filter an base settings on reload. +*/ +if(isset($config->data['MAIN']['SAVE_FILTER']) && preg_match("/true/",$config->data['MAIN']['SAVE_FILTER'])){ + $cookie_vars = array("MultiDialogFilters","CurrentMainBase"); + foreach($cookie_vars as $var){ + if(isset($_SESSION[$var])){ + @setcookie($var,base64_encode(serialize($_SESSION[$var])),time()+ 60*60*24*30); + } + } + if(isset($_GET['plug'])){ + @setcookie("plug", $_GET['plug'],time()+ 60*60*24*30); + } } /* Show page... */ -$f = fopen("/tmp/OgerMonokel.html","w+"); -fwrite($f,$display); -fclose($f); - echo $display; -/* Save plist */ +/* Save plist and config */ $_SESSION['plist']= $plist; +$_SESSION['config']= $config; +$_SESSION['errorsAlreadyPosted']= array(); // vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: ?>