2003-04-23 21:01:18 +00:00
|
|
|
<?php
|
2003-03-13 19:48:49 +00:00
|
|
|
/*
|
|
|
|
|
$Id$
|
|
|
|
|
|
|
|
|
|
This code is part of LDAP Account Manager (http://www.sourceforge.net/projects/lam)
|
|
|
|
|
Copyright (C) 2003 Michael Duergner
|
|
|
|
|
|
|
|
|
|
This program is free software; you can redistribute it and/or modify
|
|
|
|
|
it under the terms of the GNU General Public License as published by
|
|
|
|
|
the Free Software Foundation; either version 2 of the License, or
|
|
|
|
|
(at your option) any later version.
|
2003-03-14 11:32:28 +00:00
|
|
|
|
2003-03-13 19:48:49 +00:00
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
GNU General Public License for more details.
|
2003-03-14 11:32:28 +00:00
|
|
|
|
2003-03-13 19:48:49 +00:00
|
|
|
You should have received a copy of the GNU General Public License
|
|
|
|
|
along with this program; if not, write to the Free Software
|
|
|
|
|
Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
|
|
|
|
2003-03-14 11:32:28 +00:00
|
|
|
|
2003-04-23 22:00:42 +00:00
|
|
|
LDAP Account Manager checking login datas.
|
2003-03-13 19:48:49 +00:00
|
|
|
*/
|
2003-03-18 20:55:43 +00:00
|
|
|
|
2003-04-23 21:01:18 +00:00
|
|
|
include_once("../lib/config.inc"); // Include config.inc which provides Config class
|
2003-03-23 14:41:15 +00:00
|
|
|
|
|
|
|
|
// Get session save path
|
|
|
|
|
$path = getcwd();
|
|
|
|
|
$path = explode("/", substr($path,1));
|
|
|
|
|
for($i = 0; $i < (count($path) - 1); $i++)
|
|
|
|
|
{
|
|
|
|
|
$session_save_path .= "/" . $path[$i];
|
|
|
|
|
}
|
|
|
|
|
$session_save_path .= "/sess";
|
|
|
|
|
|
|
|
|
|
session_save_path($session_save_path); // Set session save path
|
|
|
|
|
@session_start(); // Start LDAP Account Manager session
|
2003-04-23 21:01:18 +00:00
|
|
|
|
|
|
|
|
function display_LoginPage($config_object)
|
|
|
|
|
{
|
|
|
|
|
// generate 256 bit key and initialization vector for user/passwd-encryption
|
|
|
|
|
$key = mcrypt_create_iv(32, MCRYPT_DEV_RANDOM);
|
|
|
|
|
$iv = mcrypt_create_iv(32, MCRYPT_DEV_RANDOM);
|
|
|
|
|
|
|
|
|
|
// save both in cookie
|
|
|
|
|
setcookie("Key", base64_encode($key), 0, "/");
|
|
|
|
|
setcookie("IV", base64_encode($iv), 0, "/");
|
|
|
|
|
|
|
|
|
|
// loading available languages from language.conf file
|
|
|
|
|
|
|
|
|
|
$languagefile = "../config/language.conf";
|
|
|
|
|
if(is_file($languagefile) == True)
|
|
|
|
|
{
|
|
|
|
|
$file = fopen($languagefile, "r");
|
|
|
|
|
$i = 0;
|
|
|
|
|
while(!feof($file))
|
|
|
|
|
{
|
|
|
|
|
$line = fgets($file, 1024);
|
|
|
|
|
if($line == "\n" || $line[0] == "#") continue; // ignore comment and empty lines
|
|
|
|
|
$value = explode(":", $line);
|
|
|
|
|
$languages[$i]["link"] = $value[0] . ":" . $value[1];
|
|
|
|
|
$languages[$i]["descr"] = $value[2];
|
|
|
|
|
$i++;
|
|
|
|
|
}
|
|
|
|
|
fclose($file);
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
$message = "Unable to load available languages. Setting English as default language. For further instructions please contact the Admin of this site.";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
echo "
|
|
|
|
|
<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\" \"http://www.w3.org/TR/html4/loose.dtd\">
|
|
|
|
|
<html>
|
|
|
|
|
<head>
|
|
|
|
|
<title>
|
|
|
|
|
";
|
|
|
|
|
echo _("LDAP Account Manager -Login-");
|
|
|
|
|
echo "
|
|
|
|
|
</title>
|
|
|
|
|
<link rel=\"stylesheet\" type=\"text/css\" href=\"../style/layout.css\">
|
|
|
|
|
</head>
|
|
|
|
|
<body>
|
|
|
|
|
<p align=\"center\"><img src=\"../graphics/banner.jpg\" border=\"1\"></p>
|
|
|
|
|
<table width=\"100%\" border=\"0\">
|
|
|
|
|
<tr>
|
|
|
|
|
<td width=\"100%\" align=\"right\">
|
2003-04-23 22:00:42 +00:00
|
|
|
<a href=\"./config/conflogin.php\" target=\"_self\">";
|
2003-04-23 21:01:18 +00:00
|
|
|
echo _("Configuration Login");
|
|
|
|
|
echo "
|
|
|
|
|
</a>
|
|
|
|
|
</td>
|
|
|
|
|
</tr>
|
|
|
|
|
</table>
|
|
|
|
|
<hr><br><br>
|
|
|
|
|
<b><p align=\"center\">";
|
|
|
|
|
echo _("Enter Username and Password for Account:");
|
|
|
|
|
echo "
|
|
|
|
|
</b></p>";
|
|
|
|
|
if($error_message != "")
|
|
|
|
|
{
|
|
|
|
|
echo "<p align=\"center\">";
|
|
|
|
|
echo _($error_message);
|
|
|
|
|
echo "</p>";
|
|
|
|
|
}
|
|
|
|
|
echo "
|
|
|
|
|
<form action=\"login.php\" method=\"post\">
|
|
|
|
|
<input type=\"hidden\" name=\"action\" value=\"checklogin\">
|
|
|
|
|
<table width=\"500\" align=\"center\" border=\"0\">
|
|
|
|
|
<tr>
|
|
|
|
|
<td width=\"45%\" align=\"right\">";
|
|
|
|
|
echo _("Username:");
|
|
|
|
|
echo "
|
|
|
|
|
</td>
|
|
|
|
|
<td width=\"10%\">
|
|
|
|
|
</td>
|
|
|
|
|
<td width=\"45%\" align=\"left\">
|
|
|
|
|
<select name=\"username\" size=\"1\">";
|
|
|
|
|
for($i = 0; $i < count($config_object->Admins); $i++)
|
|
|
|
|
{
|
|
|
|
|
$text = explode(",", $config_object->Admins[$i]);
|
|
|
|
|
$text = explode("=", $text[0]);
|
|
|
|
|
echo "<option value=\"" . $config_object->Admins[$i] . "\">" . $text[1] . "</option>";
|
|
|
|
|
}
|
|
|
|
|
echo "
|
|
|
|
|
</select>
|
|
|
|
|
</td>
|
|
|
|
|
</tr>
|
|
|
|
|
<tr>
|
|
|
|
|
<td width=\"45%\" align=\"right\">";
|
|
|
|
|
echo _("Password:");
|
|
|
|
|
echo "
|
|
|
|
|
</td>
|
|
|
|
|
<td width=\"10%\">
|
|
|
|
|
</td>
|
|
|
|
|
<td width=\"45%\" align=\"left\">
|
|
|
|
|
<input type=\"password\" name=\"passwd\">
|
|
|
|
|
</td>
|
|
|
|
|
</tr>
|
|
|
|
|
<tr>";
|
|
|
|
|
if($message != "")
|
|
|
|
|
{
|
|
|
|
|
echo " <td width=\"100%\" colspan=\"3\" align=\"center\">";
|
|
|
|
|
echo _($message);
|
|
|
|
|
echo " <input type=\"hidden\" name=\"language\" value=\"english\">
|
|
|
|
|
</td>";
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
echo " <td width=\"45%\" align=\"right\">";
|
|
|
|
|
echo _("Your Language:");
|
|
|
|
|
echo "
|
|
|
|
|
</td>
|
|
|
|
|
<td width=\"10%\">
|
|
|
|
|
</td>
|
|
|
|
|
<td width=\"45%\" align=\"left\">
|
|
|
|
|
<select name=\"language\" size=\"1\">";
|
|
|
|
|
for($i = 0; $i < count($languages); $i++)
|
|
|
|
|
{
|
|
|
|
|
echo "<option value=\"" . $languages[$i]["link"] . "\">" . $languages[$i]["descr"] . "</option>";
|
|
|
|
|
}
|
|
|
|
|
echo " </select>
|
|
|
|
|
</td>";
|
|
|
|
|
}
|
|
|
|
|
echo "
|
|
|
|
|
</tr>
|
|
|
|
|
<tr>
|
|
|
|
|
<td width=\"100%\" colspan=\"3\" align=\"center\">
|
|
|
|
|
<input type=\"submit\" name=\"submit\" value=\"";
|
|
|
|
|
echo _("Login") . "\">";
|
|
|
|
|
echo "
|
|
|
|
|
</td>
|
|
|
|
|
</tr>
|
|
|
|
|
</table>
|
|
|
|
|
<br><br><br>
|
|
|
|
|
<table width=\"310\" align=\"center\" bgcolor=\"#C7E7C7\" border=\"0\">
|
|
|
|
|
<tr>
|
|
|
|
|
<td width=\"100%\" align=\"center\">";
|
|
|
|
|
echo _("You are connecting to the server specified below:");
|
|
|
|
|
echo "
|
|
|
|
|
</td>
|
|
|
|
|
</tr>
|
|
|
|
|
<tr>
|
|
|
|
|
<td><br></td>
|
|
|
|
|
</tr>
|
|
|
|
|
<tr>
|
|
|
|
|
<td width=\"100%\" align=\"center\">
|
|
|
|
|
ServerURL: <b>";
|
|
|
|
|
echo $config_object->get_ServerURL();
|
|
|
|
|
echo "
|
|
|
|
|
</b></td>
|
|
|
|
|
</tr>
|
|
|
|
|
</table>
|
|
|
|
|
</form>
|
|
|
|
|
</body>
|
|
|
|
|
</html>";
|
|
|
|
|
}
|
|
|
|
|
|
2003-03-14 11:32:28 +00:00
|
|
|
// checking if the submitted username/password is correct.
|
|
|
|
|
if($action == "checklogin")
|
|
|
|
|
{
|
2003-04-23 21:01:18 +00:00
|
|
|
include_once("../lib/ldap.inc"); // Include ldap.php which provides Ldap class
|
2003-03-20 16:41:52 +00:00
|
|
|
|
2003-03-23 14:41:15 +00:00
|
|
|
$ldap = new Ldap($config); //$config); // Create new Ldap object
|
|
|
|
|
$result = $ldap->connect($username,$passwd); // Connect to LDAP server for verifing username/password
|
|
|
|
|
if($result == True) // Username/password correct. Do some configuration and load main frame.
|
2003-03-14 11:32:28 +00:00
|
|
|
{
|
2003-03-18 19:40:30 +00:00
|
|
|
// setting language
|
|
|
|
|
$language = explode(":", $language);
|
|
|
|
|
putenv("LANG=" . $language[1]);
|
2003-04-02 20:56:41 +00:00
|
|
|
setlocale(LC_ALL, $language[0]);
|
2003-03-18 19:40:30 +00:00
|
|
|
bindtextdomain("lam", "../locale");
|
|
|
|
|
textdomain("lam");
|
2003-03-23 14:41:15 +00:00
|
|
|
include("./main.php"); // Load main frame
|
2003-03-20 20:25:40 +00:00
|
|
|
|
2003-03-20 16:53:44 +00:00
|
|
|
session_register("ldap"); // Register $ldap object in session
|
|
|
|
|
session_register("language"); // Register $language in session
|
2003-03-14 11:32:28 +00:00
|
|
|
}
|
2003-03-15 12:13:49 +00:00
|
|
|
else
|
2003-03-14 11:32:28 +00:00
|
|
|
{
|
2003-03-15 12:13:49 +00:00
|
|
|
if($ldap->server)
|
|
|
|
|
{
|
|
|
|
|
$error_message = "Wrong Password/Username combination. Try again.";
|
2003-04-23 21:01:18 +00:00
|
|
|
display_LoginPage($config); // Username/password invalid. Return to login page.
|
2003-03-15 12:13:49 +00:00
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
$error_message = "Cannot connect to specified LDAP-Server. Try again.";
|
2003-04-23 21:01:18 +00:00
|
|
|
display_LoginPage($config); // Username/password invalid. Return to login page.
|
2003-03-15 12:13:49 +00:00
|
|
|
}
|
2003-03-14 11:32:28 +00:00
|
|
|
}
|
|
|
|
|
}
|
2003-03-23 14:41:15 +00:00
|
|
|
// Load login page
|
2003-03-14 11:32:28 +00:00
|
|
|
else
|
|
|
|
|
{
|
2003-03-20 16:37:20 +00:00
|
|
|
session_register("config"); // Register $config object in session
|
|
|
|
|
|
2003-03-23 14:41:15 +00:00
|
|
|
$config = new Config; // Create new Config object
|
2003-03-20 16:37:20 +00:00
|
|
|
|
2003-04-23 21:01:18 +00:00
|
|
|
display_LoginPage($config); // Load Login page
|
2003-03-14 11:32:28 +00:00
|
|
|
}
|
|
|
|
|
?>
|
