LDAPAccountManager/lam/templates/login.php

568 lines
19 KiB
PHP
Raw Normal View History

<?php
2003-03-13 19:48:49 +00:00
/*
$Id$
2009-10-27 18:47:12 +00:00
This code is part of LDAP Account Manager (http://www.ldap-account-manager.org/)
2006-03-03 17:30:35 +00:00
Copyright (C) 2003 - 2006 Michael Duergner
2011-02-17 18:38:53 +00:00
2005 - 2011 Roland Gruber
2003-03-13 19:48:49 +00:00
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
2003-03-14 11:32:28 +00:00
2003-03-13 19:48:49 +00:00
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
2003-03-14 11:32:28 +00:00
2003-03-13 19:48:49 +00:00
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
2005-07-20 18:07:10 +00:00
*/
2003-03-14 11:32:28 +00:00
2005-07-20 18:07:10 +00:00
/**
* Login form of LDAP Account Manager.
*
* @author Michael Duergner
2010-01-25 16:38:36 +00:00
* @author Roland Gruber
2005-07-20 18:07:10 +00:00
* @package main
2003-03-13 19:48:49 +00:00
*/
2003-03-18 20:55:43 +00:00
2005-11-03 12:31:16 +00:00
/** status messages */
include_once("../lib/status.inc");
2008-02-21 19:24:37 +00:00
/** check environment */
include '../lib/checkEnvironment.inc';
2008-02-21 19:24:37 +00:00
2006-04-23 16:33:25 +00:00
/** security functions */
include_once("../lib/security.inc");
/** self service functions */
include_once("../lib/selfService.inc");
2005-07-20 18:07:10 +00:00
/** access to configuration options */
include_once("../lib/config.inc"); // Include config.inc which provides Config class
2009-07-08 18:03:28 +00:00
// set session save path
if (strtolower(session_module_name()) == 'files') {
2010-02-06 11:50:26 +00:00
session_save_path(dirname(__FILE__) . '/../sess');
2009-07-08 18:03:28 +00:00
}
2010-02-06 11:50:26 +00:00
// start empty session and change ID for security reasons
session_start();
session_destroy();
session_start();
session_regenerate_id(true);
2008-05-25 16:25:09 +00:00
// save last selected login profile
2010-07-30 16:08:20 +00:00
if(isset($_GET['useProfile'])) {
if (in_array($_GET['useProfile'], getConfigProfiles())) {
setcookie("lam_default_profile", $_GET['useProfile'], time() + 365*60*60*24);
}
else {
unset($_GET['useProfile']);
}
2008-05-25 16:25:09 +00:00
}
2010-02-06 11:50:26 +00:00
// init some session variables
$default_Config = new LAMCfgMain();
$_SESSION["cfgMain"] = $default_Config;
$default_Profile = $default_Config->default;
if(isset($_COOKIE["lam_default_profile"]) && in_array($_COOKIE["lam_default_profile"], getConfigProfiles())) {
2010-02-06 11:50:26 +00:00
$default_Profile = $_COOKIE["lam_default_profile"];
}
// Reload loginpage after a profile change
2010-07-30 16:08:20 +00:00
if(isset($_GET['useProfile'])) {
logNewMessage(LOG_DEBUG, "Change server profile to " . $_GET['useProfile']);
$_SESSION['config'] = new LAMConfig($_GET['useProfile']); // Recreate the config object with the submited
2010-02-06 11:50:26 +00:00
}
// Load login page
else {
$_SESSION["config"] = new LAMConfig($default_Profile); // Create new Config object
}
$_SESSION['language'] = $_SESSION["config"]->get_defaultLanguage();
if (isset($_POST['language'])) {
$_SESSION['language'] = $_POST['language']; // Write selected language in session
}
$current_language = explode(":",$_SESSION['language']);
$_SESSION['header'] = "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\" \"http://www.w3.org/TR/html4/loose.dtd\">\n\n";
$_SESSION['header'] .= "<html>\n<head>\n";
$_SESSION['header'] .= "<meta http-equiv=\"content-type\" content=\"text/html; charset=" . $current_language[1] . "\">\n";
$_SESSION['header'] .= "<meta http-equiv=\"pragma\" content=\"no-cache\">\n <meta http-equiv=\"cache-control\" content=\"no-cache\">";
/**
* Displays the login window.
*
* @param object $config_object current active configuration
*/
function display_LoginPage($config_object) {
2010-01-25 16:38:36 +00:00
logNewMessage(LOG_DEBUG, "Display login page");
2003-05-12 20:46:58 +00:00
global $error_message;
// generate 256 bit key and initialization vector for user/passwd-encryption
2011-08-21 18:36:24 +00:00
// check if we can use /dev/urandom otherwise use rand()
2005-02-22 20:20:47 +00:00
if(function_exists('mcrypt_create_iv')) {
$key = @mcrypt_create_iv(32, MCRYPT_DEV_URANDOM);
2003-10-18 11:26:49 +00:00
if (! $key) {
srand((double)microtime()*1234567);
$key = mcrypt_create_iv(32, MCRYPT_RAND);
}
$iv = @mcrypt_create_iv(32, MCRYPT_DEV_URANDOM);
2003-10-18 11:26:49 +00:00
if (! $iv) {
srand((double)microtime()*1234567);
$iv = mcrypt_create_iv(32, MCRYPT_RAND);
}
// save both in cookie
setcookie("Key", base64_encode($key), 0, "/");
setcookie("IV", base64_encode($iv), 0, "/");
2003-10-02 17:54:04 +00:00
}
// loading available languages from language.conf file
2003-07-14 21:59:09 +00:00
$languagefile = "../config/language";
if(is_file($languagefile) == True)
{
$file = fopen($languagefile, "r");
$i = 0;
while(!feof($file))
{
$line = fgets($file, 1024);
2003-05-12 20:46:58 +00:00
if($line == "" || $line == "\n" || $line[0] == "#") continue; // ignore comment and empty lines
$value = explode(":", $line);
$languages[$i]["link"] = $value[0] . ":" . $value[1];
$languages[$i]["descr"] = $value[2];
2010-05-08 11:49:30 +00:00
if(trim($line) == trim($_SESSION["language"]))
2003-05-12 20:46:58 +00:00
{
$languages[$i]["default"] = "YES";
}
else
{
$languages[$i]["default"] = "NO";
}
$i++;
}
fclose($file);
}
2003-07-14 21:59:09 +00:00
$profiles = getConfigProfiles();
setlanguage(); // setting correct language
echo $_SESSION["header"];
?>
2010-08-28 12:27:06 +00:00
<title>LDAP Account Manager</title>
2010-08-31 18:05:17 +00:00
<?php
// include all CSS files
$cssDirName = dirname(__FILE__) . '/../style';
$cssDir = dir($cssDirName);
while ($cssEntry = $cssDir->read()) {
if (substr($cssEntry, strlen($cssEntry) - 4, 4) != '.css') continue;
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../style/" . $cssEntry . "\">\n";
}
?>
2008-01-01 13:06:51 +00:00
<link rel="shortcut icon" type="image/x-icon" href="../graphics/favicon.ico">
</head>
2009-03-07 18:17:57 +00:00
<body onload="focusLogin()">
2005-05-15 13:14:45 +00:00
<?php
2010-07-30 16:08:20 +00:00
// include all JavaScript files
$jsDirName = dirname(__FILE__) . '/lib';
$jsDir = dir($jsDirName);
2010-08-28 12:27:06 +00:00
$jsFiles = array();
2010-07-30 16:08:20 +00:00
while ($jsEntry = $jsDir->read()) {
if (substr($jsEntry, strlen($jsEntry) - 3, 3) != '.js') continue;
2010-08-28 12:27:06 +00:00
$jsFiles[] = $jsEntry;
}
sort($jsFiles);
foreach ($jsFiles as $jsEntry) {
2010-07-30 16:08:20 +00:00
echo "<script type=\"text/javascript\" src=\"lib/" . $jsEntry . "\"></script>\n";
}
2010-08-28 12:27:06 +00:00
2010-07-30 16:08:20 +00:00
// set focus on password field
2005-05-15 13:14:45 +00:00
echo "<script type=\"text/javascript\" language=\"javascript\">\n";
echo "<!--\n";
2009-03-07 18:17:57 +00:00
echo "function focusLogin() {\n";
if ($config_object->getLoginMethod() == LAMConfig::LOGIN_LIST) {
echo "myElement = document.getElementsByName('passwd')[0];\n";
echo "myElement.focus();\n";
}
else {
echo "myElement = document.getElementsByName('username')[0];\n";
echo "myElement.focus();\n";
}
2005-05-15 13:14:45 +00:00
echo "}\n";
2010-08-31 18:49:25 +00:00
?>
jQuery(document).ready(function() {
jQuery('#loginButton').button();
});
<?php
2005-05-15 13:14:45 +00:00
echo "//-->\n";
echo "</script>\n";
?>
2010-07-30 16:08:20 +00:00
2010-08-31 18:05:17 +00:00
<table border=0 width="100%" class="lamHeader ui-corner-all">
<tr>
2010-07-30 16:08:20 +00:00
<td align="left" height="30">
<a class="lamHeader" href="http://www.ldap-account-manager.org/" target="new_window">&nbsp;<img src="../graphics/logo32.png" width=24 height=24 class="align-middle" alt="LDAP Account Manager">&nbsp;&nbsp;LDAP Account Manager</a>
2009-05-03 18:23:25 +00:00
</td>
2010-07-30 16:08:20 +00:00
<td align="right" height=20>
<a href="./config/index.php"><IMG alt="configuration" src="../graphics/tools.png">&nbsp;<?php echo _("LAM configuration") ?></a>
</td>
</tr>
</table>
2010-07-30 16:08:20 +00:00
<br><br><br><br>
2003-10-18 11:26:49 +00:00
<?php
2006-04-29 09:58:17 +00:00
// check extensions
$extList = getRequiredExtensions();
for ($i = 0; $i < sizeof($extList); $i++) {
if (!extension_loaded($extList[$i])) {
2006-07-29 09:18:53 +00:00
StatusMessage("ERROR", "A required PHP extension is missing!", $extList[$i]);
2006-04-29 09:58:17 +00:00
echo "<br>";
}
2004-05-19 22:14:41 +00:00
}
2009-05-03 17:31:39 +00:00
// check TLS
$useTLS = $config_object->getUseTLS();
if (isset($useTLS) && ($useTLS == "yes")) {
if (!function_exists('ldap_start_tls')) {
StatusMessage("ERROR", "Your PHP installation does not support TLS encryption!");
echo "<br>";
}
}
2006-05-01 08:56:40 +00:00
// check if session expired
if (isset($_GET['expired'])) {
StatusMessage("ERROR", _("Your session expired, please log in again."));
echo "<br>";
}
2010-05-28 08:48:57 +00:00
// check if main config was saved
if (isset($_GET['confMainSavedOk'])) {
StatusMessage("INFO", _("Your settings were successfully saved."));
echo "<br>";
}
2010-05-28 13:45:34 +00:00
// check if a server profile was saved
if (isset($_GET['configSaveOk'])) {
StatusMessage("INFO", _("Your settings were successfully saved."), htmlspecialchars($_GET['configSaveFile']));
echo "<br>";
}
elseif (isset($_GET['configSaveFailed'])) {
StatusMessage("ERROR", _("Cannot open config file!"), htmlspecialchars($_GET['configSaveFile']));
echo "<br>";
}
2010-08-28 13:00:12 +00:00
// check if self service was saved
if (isset($_GET['selfserviceSaveOk'])) {
2011-08-16 17:14:49 +00:00
StatusMessage("INFO", _("Your settings were successfully saved."), htmlspecialchars($_GET['selfserviceSaveOk']));
2010-08-28 13:00:12 +00:00
echo "<br>";
}
?>
2008-07-30 20:34:19 +00:00
<div style="position:relative; z-index:5;">
2005-01-15 12:11:03 +00:00
<table width="650" align="center" border="2" rules="none" bgcolor="white">
<tr>
<td style="border-style:none" width="70" rowspan="2">
<img src="../graphics/lam.png" alt="Logo">
</td>
2007-02-11 13:55:03 +00:00
<td style="border-style:none" width="580">
2005-01-15 12:11:03 +00:00
<form action="login.php" method="post">
<table width="580">
<tr>
2010-07-30 16:08:20 +00:00
<td style="border-style:none" height="30" colspan="2" align="center">
2005-01-15 12:11:03 +00:00
</td>
</tr>
<tr>
<td style="border-style:none" height="35" align="right"><b>
<?php
2011-12-03 19:02:28 +00:00
echo _("User name");
2005-01-15 12:11:03 +00:00
?>
</b>&nbsp;&nbsp;</td>
<td style="border-style:none" height="35" align="left">
<?php
2009-03-07 18:17:57 +00:00
if ($config_object->getLoginMethod() == LAMConfig::LOGIN_LIST) {
2010-08-15 08:54:42 +00:00
echo '<select name="username" size="1" tabindex="1">';
2009-03-07 18:17:57 +00:00
$admins = $config_object->get_Admins();
for($i = 0; $i < count($admins); $i++) {
$text = explode(",", $admins[$i]);
$text = explode("=", $text[0]);
echo '<option value="' . $admins[$i] . '">' . $text[1] . '</option>';
}
echo '</select>';
}
else {
2011-08-23 19:05:05 +00:00
if ($config_object->getHttpAuthentication() == 'true') {
echo htmlspecialchars($_SERVER['PHP_AUTH_USER']);
}
else {
echo '<input type="text" name="username" tabindex="1">';
}
2005-01-15 12:11:03 +00:00
}
?>
</td>
</tr>
<tr>
<td style="border-style:none" height="35" align="right"><b>
<?php
2011-12-03 19:02:28 +00:00
echo _("Password");
2005-01-15 12:11:03 +00:00
?>
</b>&nbsp;&nbsp;</td>
<td style="border-style:none" height="35" align="left">
2011-08-23 19:05:05 +00:00
<?php
if (($config_object->getLoginMethod() == LAMConfig::LOGIN_SEARCH) && ($config_object->getHttpAuthentication() == 'true')) {
echo '**********';
}
else {
echo '<input type="password" name="passwd" tabindex="2">';
}
?>
2005-01-15 12:11:03 +00:00
</td>
</tr>
<tr>
<td style="border-style:none" align="right"><b>
<?php
2011-12-03 19:02:28 +00:00
echo _("Language");
2005-01-15 12:11:03 +00:00
?>
</b>&nbsp;&nbsp;</td>
<td style="border-style:none" height="35" align="left">
2009-03-07 18:17:57 +00:00
<select name="language" size="1" tabindex="3">
2005-01-15 12:11:03 +00:00
<?php
for($i = 0; $i < count($languages); $i++) {
if($languages[$i]["default"] == "YES") {
?>
<option selected value="<?php echo $languages[$i]["link"] . ":" . $languages[$i]["descr"]; ?>"><?php echo $languages[$i]["descr"]; ?></option>
<?php
}
else
{
?>
<option value="<?php echo $languages[$i]["link"] . ":" . $languages[$i]["descr"]; ?>"><?php echo $languages[$i]["descr"]; ?></option>
<?php
}
}
?>
</select>
</td>
</tr>
<tr>
<td style="border-style:none" height="50" colspan="2" align="center">
<input name="checklogin" type="hidden" value="checklogin">
2011-10-30 19:04:26 +00:00
<button type="submit" id="loginButton" class="smallPadding" name="submit" tabindex="4"><?php echo _("Login"); ?></button>
2005-01-15 12:11:03 +00:00
</td>
</tr>
<tr>
2005-05-16 09:36:33 +00:00
<td style="border-style:none" colspan="2" align="center">
2005-01-15 12:11:03 +00:00
<?php
if($error_message != "") {
echo "<font color=\"red\"><b>" . $error_message . "</b></font>";
}
?>
</td>
</tr>
</table>
</form>
2004-02-16 17:02:01 +00:00
</td>
2005-01-15 12:11:03 +00:00
</tr>
<tr>
2007-02-11 13:55:03 +00:00
<td style="border-style:none">
2005-01-15 12:11:03 +00:00
<form action="login.php" method="post">
<table width="580">
<tr>
2010-07-30 16:08:20 +00:00
<td height="30" colspan=2>
<hr>
</td>
</tr>
<tr>
<td height="30" style="white-space: nowrap">
2005-01-15 12:11:03 +00:00
<b>
<?php
2011-12-03 19:02:28 +00:00
echo _("LDAP server");
?></b>&nbsp;&nbsp;
2010-07-30 16:08:20 +00:00
</td>
<td width="100%" height="30">
2005-01-15 12:11:03 +00:00
<?php echo $config_object->get_ServerURL(); ?>
</td>
</tr>
<tr>
2010-07-30 16:08:20 +00:00
<td height="30" style="white-space: nowrap">
<b>
2005-01-15 12:11:03 +00:00
<?php
2011-12-03 19:02:28 +00:00
echo _("Server profile");
?></b>&nbsp;&nbsp;
2005-01-15 12:11:03 +00:00
</td>
2010-07-30 16:08:20 +00:00
<td height="30">
<select name="profile" size="1" tabindex="5" onchange="loginProfileChanged(this)">
2005-01-15 12:11:03 +00:00
<?php
for($i=0;$i<count($profiles);$i++) {
2010-07-30 16:08:20 +00:00
$selected = '';
if ($profiles[$i] == $_SESSION['config']->getName()) {
$selected = ' selected';
}
echo '<option value="' . $profiles[$i] . '"' . $selected . '>' . $profiles[$i] . '</option>';
2005-01-15 12:11:03 +00:00
}
?>
</select>
</td>
</tr>
<tr>
2010-07-30 16:08:20 +00:00
<td height="10" colspan="2"></td>
2005-01-15 12:11:03 +00:00
</tr>
</table>
</form>
2004-02-16 17:02:01 +00:00
</td>
2005-01-15 12:11:03 +00:00
</tr>
</table>
2008-07-30 20:34:19 +00:00
</div>
<br><br>
2005-05-06 10:55:20 +00:00
<TABLE style="position:absolute; bottom:10px;" border="0" width="99%">
2010-07-30 16:08:20 +00:00
<tr><td colspan=2><HR></td></tr>
<TR>
<td align="left">
<?PHP
if (!isLAMProVersion()) {
echo "<a href=\"http://www.ldap-account-manager.org/lamcms/lamPro\">" . _("Want more features? Get LAM Pro!") . "</a>";
}
?>
</td>
<TD align="right">
2005-05-06 10:55:20 +00:00
<SMALL>
<?php
if (isLAMProVersion()) {
2011-02-17 18:38:53 +00:00
echo "LDAP Account Manager Pro - " . LAMVersion() . "&nbsp;&nbsp;&nbsp;";
2010-01-25 16:38:36 +00:00
logNewMessage(LOG_DEBUG, "LAM Pro " . LAMVersion());
2006-07-30 10:41:12 +00:00
}
else {
2011-02-17 18:38:53 +00:00
echo "LDAP Account Manager - " . LAMVersion() . "&nbsp;&nbsp;&nbsp;";
2010-01-25 16:38:36 +00:00
logNewMessage(LOG_DEBUG, "LAM " . LAMVersion());
2006-07-30 10:41:12 +00:00
}
2005-05-06 10:55:20 +00:00
?>
</SMALL>
</TD></TR>
</TABLE>
</body>
</html>
<?php
}
2003-03-14 11:32:28 +00:00
// checking if the submitted username/password is correct.
2009-05-03 15:40:14 +00:00
if(!empty($_POST['checklogin'])) {
include_once("../lib/ldap.inc"); // Include ldap.php which provides Ldap class
2003-08-13 19:21:36 +00:00
$_SESSION['ldap'] = new Ldap($_SESSION['config']); // Create new Ldap object
2003-10-18 11:26:49 +00:00
2011-08-23 19:05:05 +00:00
$clientSource = $_SERVER['REMOTE_ADDR'];
if (isset($_SERVER['REMOTE_HOST'])) {
$clientSource .= '/' . $_SERVER['REMOTE_HOST'];
}
if (($_SESSION['config']->getLoginMethod() == LAMConfig::LOGIN_SEARCH) && ($_SESSION['config']->getHttpAuthentication() == 'true')) {
$username = $_SERVER['PHP_AUTH_USER'];
$password = $_SERVER['PHP_AUTH_PW'];
2003-03-14 11:32:28 +00:00
}
2009-05-03 15:40:14 +00:00
else {
2011-08-23 19:05:05 +00:00
if($_POST['passwd'] == "") {
logNewMessage(LOG_DEBUG, "Empty password for login");
$error_message = _("Empty password submitted. Please try again.");
display_LoginPage($_SESSION['config']); // Empty password submitted. Return to login page.
exit();
2010-05-07 19:12:06 +00:00
}
2004-12-16 19:29:28 +00:00
if (get_magic_quotes_gpc() == 1) {
$_POST['passwd'] = stripslashes($_POST['passwd']);
}
2009-03-07 18:17:57 +00:00
$username = $_POST['username'];
2011-08-23 19:05:05 +00:00
$password = $_POST['passwd'];
}
// search user in LDAP if needed
if ($_SESSION['config']->getLoginMethod() == LAMConfig::LOGIN_SEARCH) {
$searchFilter = $_SESSION['config']->getLoginSearchFilter();
$searchFilter = str_replace('%USER%', $username ,$searchFilter);
2011-12-03 19:02:28 +00:00
$searchDN = '';
$searchPassword = '';
if (($_SESSION['config']->getLoginSearchDN() != null) && ($_SESSION['config']->getLoginSearchDN() != '')) {
$searchDN = $_SESSION['config']->getLoginSearchDN();
$searchPassword = $_SESSION['config']->getLoginSearchPassword();
}
2011-08-23 19:05:05 +00:00
$searchSuccess = true;
$searchError = '';
$searchLDAP = new Ldap($_SESSION['config']);
2011-12-03 19:02:28 +00:00
$searchLDAPResult = $searchLDAP->connect($searchDN, $searchPassword, true);
2011-08-23 19:05:05 +00:00
if (! ($searchLDAPResult == 0)) {
$searchSuccess = false;
$searchError = _('Cannot connect to specified LDAP server. Please try again.') . ' ' . @ldap_error($searchLDAP->server());
}
else {
$searchResult = @ldap_search($searchLDAP->server(), $_SESSION['config']->getLoginSearchSuffix(), $searchFilter, array('dn'), 0, 0, 0, LDAP_DEREF_NEVER);
if ($searchResult) {
$searchInfo = @ldap_get_entries($searchLDAP->server(), $searchResult);
if ($searchInfo) {
cleanLDAPResult($searchInfo);
if (sizeof($searchInfo) == 0) {
$searchSuccess = false;
$searchError = _('Wrong password/user name combination. Please try again.');
2009-03-07 18:17:57 +00:00
}
2011-08-23 19:05:05 +00:00
elseif (sizeof($searchInfo) > 1) {
2009-11-03 20:57:53 +00:00
$searchSuccess = false;
2011-08-23 19:05:05 +00:00
$searchError = _('The given user name matches multiple LDAP entries.');
}
else {
$username = $searchInfo[0]['dn'];
2009-03-07 18:17:57 +00:00
}
}
else {
$searchSuccess = false;
2009-11-03 20:57:53 +00:00
$searchError = _('Unable to find the user name in LDAP.');
if (ldap_errno($searchLDAP->server()) != 0) $searchError .= ' ' . ldap_error($searchLDAP->server());
2009-03-07 18:17:57 +00:00
}
}
2011-08-23 19:05:05 +00:00
else {
$searchSuccess = false;
$searchError = _('Unable to find the user name in LDAP.');
if (ldap_errno($searchLDAP->server()) != 0) $searchError .= ' ' . ldap_error($searchLDAP->server());
2009-03-07 18:17:57 +00:00
}
2011-08-23 19:05:05 +00:00
}
if (!$searchSuccess) {
$error_message = $searchError;
logNewMessage(LOG_ERR, 'User ' . $username . ' (' . $clientSource . ') failed to log in. ' . $searchError . '');
2009-03-07 18:17:57 +00:00
$searchLDAP->close();
2011-08-23 19:05:05 +00:00
display_LoginPage($_SESSION['config']);
exit();
}
$searchLDAP->close();
}
// try to connect to LDAP
$result = $_SESSION['ldap']->connect($username, $password); // Connect to LDAP server for verifing username/password
if($result === 0) {// Username/password correct. Do some configuration and load main frame.
$_SESSION['loggedIn'] = true;
// set security settings for session
$_SESSION['sec_session_id'] = session_id();
$_SESSION['sec_client_ip'] = $_SERVER['REMOTE_ADDR'];
$_SESSION['sec_sessionTime'] = time();
// logging
logNewMessage(LOG_NOTICE, 'User ' . $username . ' (' . $clientSource . ') successfully logged in.');
// Load main frame
metaRefresh("./main.php");
die();
}
else {
if ($result === False) {
// connection failed
$error_message = _("Cannot connect to specified LDAP server. Please try again.");
logNewMessage(LOG_ERR, 'User ' . $username . ' (' . $clientSource . ') failed to log in (LDAP error: ' . ldap_err2str($result) . ').');
}
elseif ($result == 81) {
// connection failed
$error_message = _("Cannot connect to specified LDAP server. Please try again.");
logNewMessage(LOG_ERR, 'User ' . $username . ' (' . $clientSource . ') failed to log in (LDAP error: ' . ldap_err2str($result) . ').');
2009-03-07 18:17:57 +00:00
}
2011-08-23 19:05:05 +00:00
elseif ($result == 49) {
// user name/password invalid. Return to login page.
$error_message = _("Wrong password/user name combination. Please try again.");
logNewMessage(LOG_ERR, 'User ' . $username . ' (' . $clientSource . ') failed to log in (wrong password).');
2003-03-15 12:13:49 +00:00
}
2009-03-07 18:17:57 +00:00
else {
2011-08-23 19:05:05 +00:00
// other errors
$error_message = _("LDAP error, server says:") . "\n<br>($result) " . ldap_err2str($result);
logNewMessage(LOG_ERR, 'User ' . $username . ' (' . $clientSource . ') failed to log in (LDAP error: ' . ldap_err2str($result) . ').');
2003-03-15 12:13:49 +00:00
}
2011-08-23 19:05:05 +00:00
display_LoginPage($_SESSION['config']);
exit();
2003-03-14 11:32:28 +00:00
}
}
2010-02-06 11:50:26 +00:00
display_LoginPage($_SESSION["config"]);
?>