X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=html%2Fmain.php;h=5a7261cb9e7ee7516d8b95e3dcffdacc649b0982;hb=e1dbbb4a55cb759059cdd8b0f83a5ca0428b7d2a;hp=160017b6b9e3cd3bb5cd71227a3652d1fab4f904;hpb=ff232c758489cc329ba2cac686d4f1b18ed9dc1e;p=gosa.git diff --git a/html/main.php b/html/main.php index 160017b6b..5a7261cb9 100644 --- a/html/main.php +++ b/html/main.php @@ -18,11 +18,15 @@ Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA */ -/* Basic setup, remove eventually registered sessions */ +/* Save start time */ $start = microtime(); -$timing= array(); + +/* Basic setup, remove eventually registered sessions */ require_once ("../include/php_setup.inc"); require_once ("functions.inc"); +require_once ("functions_FAI.inc"); + +/* Set header */ header("Content-type: text/html; charset=UTF-8"); /* Find all class files and include them */ @@ -47,6 +51,8 @@ ini_set("session.gc_maxlifetime",24*60*60); /* Remember everything we did after the last click */ session_start (); +$_SESSION['limit_exceeded'] =FALSE; + if ($_SERVER["REQUEST_METHOD"] == "POST"){ @DEBUG (DEBUG_POST, __LINE__, __FUNCTION__, __FILE__, $_POST, "_POST"); } @@ -54,7 +60,7 @@ if ($_SERVER["REQUEST_METHOD"] == "POST"){ /* Logged in? Simple security check */ if (!isset($_SESSION['config'])){ - gosa_log ("main.php called without session - logging out"); + new log("security","login","",array(),"main.php called without session - logging out") ; header ("Location: logout.php"); exit; } @@ -67,13 +73,12 @@ $_SESSION['LastError'] = ""; /* Check for uniqe ip address */ $ui= $_SESSION["ui"]; if ($_SERVER['REMOTE_ADDR'] != $ui->ip){ - gosa_log ("main.php called with session which has a changed IP address.", 3); + new log("security","login","",array(),"main.php called with session which has a changed IP address.") ; header ("Location: logout.php"); exit; } $config= $_SESSION['config']; - /* Check for invalid sessions */ if(empty($_SESSION['_LAST_PAGE_REQUEST'])){ $_SESSION['_LAST_PAGE_REQUEST']= time(); @@ -94,11 +99,10 @@ if(empty($_SESSION['_LAST_PAGE_REQUEST'])){ */ if($request_time > $max_life){ session_unset(); - gosa_log ("main.php called without session - logging out"); + new log("security","login","",array(),"main.php called without session - logging out") ; header ("Location: logout.php"); exit; } -// echo "Session was ".$request_time." s inactive"; $_SESSION['_LAST_PAGE_REQUEST'] = time(); } @@ -134,7 +138,11 @@ if ($config->data['MAIN']['LANG'] == ""){ $lang= $config->data['MAIN']['LANG']; } -$lang.=".UTF-8"; +/* Preset current main base */ +if(!isset($_SESSION['CurrentMainBase'])){ + $_SESSION['CurrentMainBase']= get_base_from_people($ui->dn); +} + putenv("LANGUAGE="); putenv("LANG=$lang"); setlocale(LC_ALL, $lang); @@ -150,14 +158,18 @@ textdomain($domain); /* Prepare plugin list */ if (!isset($_SESSION['plist'])){ $_SESSION['plist']= new pluglist($config, $ui); + + /* Load ocMapping into userinfo */ + $tmp= new acl($config, NULL, $ui->dn); + $ui->ocMapping= $tmp->ocMapping; + $_SESSION['ui']= $ui; } $plist= $_SESSION['plist']; /* Check for register globals */ if (isset($global_check) && $config->data['MAIN']['FORCEGLOBALS'] == 'true'){ - print_red (_("Register globals is on. GOsa will refuse to login unless this is fixed by an administrator.")); - echo $_SESSION['errors']; - gosa_log ("Register globals is on. For security reasons, this should be turned off."); + echo _("FATAL: Register globals is on. GOsa will refuse to login unless this is fixed by an administrator."); + new log("security","login","",array(),"Register globals is on. For security reasons, this should be turned off.") ; session_destroy (); exit (); } @@ -173,7 +185,7 @@ if (isset($_GET['plug'])){ $plugin_dir= $plist->get_path($plug); $_SESSION['plugin_dir']= $plugin_dir; if ($plugin_dir == ""){ - gosa_log ("main.php called with invalid plug parameter \"$plug\"", 3); + new log("security","gosa","",array(),"main.php called with invalid plug parameter \"$plug\"") ; header ("Location: logout.php"); exit; } @@ -238,13 +250,6 @@ if ($_SERVER["REQUEST_METHOD"] == "POST"){ /* Load department list when plugin has changed. That is some kind of compromise between speed and beeing up to date */ if (isset($_GET['reset'])){ - if (!isset($_SESSION['cached_departments'])){ - $config->get_departments(); - $_SESSION['cached_departments']= $config->departments; - } else { - $config->departments= $_SESSION['cached_departments']; - } - $config->make_idepartments (); if (isset($_SESSION['objectinfo'])){ unset ($_SESSION['objectinfo']); } @@ -336,67 +341,61 @@ if (isset ($_SESSION['post_cnt'])){ echo "\n"; } +/* check if we are using account expiration */ +if((isset($config->data['MAIN']['ACCOUNT_EXPIRATION'])) && + preg_match('/true/i', $config->data['MAIN']['ACCOUNT_EXPIRATION'])){ + + $expired= ldap_expired_account($config, $ui->dn, $ui->username); + + if ($expired == 2){ + new log("security","gosa","",array(),"password for user \"$ui->username\" is about to expire") ; + print_red(_("Your password is about to expire, please change your password")); + } +} + /* Load plugin */ if (is_file("$plugin_dir/main.inc")){ require_once ("$plugin_dir/main.inc"); } else { - print_red(sprintf(_("Can't find any plugin definitions for plugin '%s'!"), $plug)); - echo $_SESSION['errors']; + echo sprintf(_("FATAL: Can't find any plugin definitions for plugin '%s'!"), $plug); exit(); } -/* Close div/tables */ -/* Print_out last ErrorMessage repeated string. - */ -print_red(NULL); +/* Print_out last ErrorMessage repeated string. */ $smarty->assign("contents", $display); +/* Assign erros to smarty */ if (isset($_SESSION['errors'])){ $smarty->assign("errors", $_SESSION['errors']); } if ($error_collector != ""){ - $smarty->assign("php_errors", $error_collector.""); + $smarty->assign("php_errors", preg_replace("/%BUGBODY%/",$error_collector_mailto,$error_collector).""); } else { $smarty->assign("php_errors", ""); } -$display= $header.$smarty->fetch(get_template_path('framework.tpl')); - -if ((isset($config->data['MAIN']['W3CTEST']) && preg_match('/true/i', $config->data['MAIN']['W3CTEST']))&&(!empty($display))&&(is_callable("tidy_parse_string"))) { - tidy_parse_string(utf8_decode($display)); - $err = nl2br(htmlentities(tidy_get_error_buffer())); - - if($err){ - echo "
\"W3C\" "._("Generating this page caused the W3C conformance checker to raise some errors!")."
"; - } - tidy_clean_repair($display); +/* Set focus to the error button if we've an error message */ +$focus= ""; +if (isset($_SESSION['errors']) && $_SESSION['errors'] != ""){ + $focus= ''; } +$smarty->assign("focus", $focus); + +$display= $header.$smarty->fetch(get_template_path('framework.tpl')); /* Show page... */ echo $display; -/* Save plist */ +/* Save plist and config */ $_SESSION['plist']= $plist; +$_SESSION['config']= $config; -/* Echo compilation time * / -$r = split(" ",$start); -$ms = $r[0]; -$s= $r[1]; - -$re = split(" ",microtime()); -$mse = $re[0]; -$se= $re[1]; +/* Echo compilation time */ +//echo "

".get_MicroTimeDiff($start,microtime())."

"; -$add = 0; -if(($mse -$ms)<0){ - $se --; - $add = 1; -} -echo ($se -$s).","; -echo (int)(($add+($mse -$ms))*1000)." s"; -*/ // vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: ?>