de/dbf/Html_8php_source.html

<?php

/* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */


class Auth_Frontend_Html {


    // {{{ render()


    function render(&$caller, $username = '') {

        $loginOnClick = 'return true;';


        // Try To Use Challene response

        // TODO javascript might need some improvement for work on other browsers

        if($caller->advancedsecurity && $caller->storage->supportsChallengeResponse() ) {


            // Init the secret cookie

            $caller->session['loginchallenege'] = md5(microtime());


            print "\n";

            print '<script language="JavaScript">'."\n";


            include 'Auth/Frontend/md5.js';


            print "\n";

            print ' function securePassword() { '."\n";

            print '   var pass = document.getElementById(\''.$caller->getPostPasswordField().'\');'."\n";

            print '   var secret = document.getElementById(\'authsecret\')'."\n";

            //print '   alert(pass);alert(secret); '."\n";


            // If using md5 for password storage md5 the password before

            // we hash it with the secret

            // print '   alert(pass.value);';

            if ($caller->storage->getCryptType() == 'md5' ) {

                print '   pass.value = hex_md5(pass.value); '."\n";

                #print '   alert(pass.value);';

            }


            print '   pass.value = hex_md5(pass.value+\''.$caller->session['loginchallenege'].'\'); '."\n";

            // print '   alert(pass.value);';

            print '   secret.value = 1;'."\n";

            print '   var doLogin = document.getElementById(\'doLogin\')'."\n";

            print '   doLogin.disabled = true;'."\n";

            print '   return true;';

            print ' } '."\n";

            print '</script>'."\n";;

            print "\n";


            $loginOnClick = ' return securePassword(); ';

        }


        print '<center>'."\n";


        $status = '';

        if (!empty($caller->status) && $caller->status == AUTH_EXPIRED) {

            $status = '<i>Your session has expired. Please login again!</i>'."\n";

        } else if (!empty($caller->status) && $caller->status == AUTH_IDLED) {

            $status = '<i>You have been idle for too long. Please login again!</i>'."\n";

        } else if (!empty ($caller->status) && $caller->status == AUTH_WRONG_LOGIN) {

            $status = '<i>Wrong login data!</i>'."\n";

        } else if (!empty ($caller->status) && $caller->status == AUTH_SECURITY_BREACH) {

            $status = '<i>Security problem detected. </i>'."\n";

        }


        print '<form method="post" action="'.$caller->server['PHP_SELF'].'" '

            .'onSubmit="'.$loginOnClick.'">'."\n";

        print '<table border="0" cellpadding="2" cellspacing="0" '

            .'summary="login form" align="center" >'."\n";

        print '<tr>'."\n";

        print '    <td colspan="2" bgcolor="#eeeeee"><strong>Login </strong>'

            .$status.'</td>'."\n";

        print '</tr>'."\n";

        print '<tr>'."\n";

        print '    <td>Username:</td>'."\n";

        print '    <td><input type="text" id="'.$caller->getPostUsernameField()

            .'" name="'.$caller->getPostUsernameField().'" value="' . $username

            .'" /></td>'."\n";

        print '</tr>'."\n";

        print '<tr>'."\n";

        print '    <td>Password:</td>'."\n";

        print '    <td><input type="password" id="'.$caller->getPostPasswordField()

            .'" name="'.$caller->getPostPasswordField().'" /></td>'."\n";

        print '</tr>'."\n";

        print '<tr>'."\n";


        //onClick=" '.$loginOnClick.' "

        print '    <td colspan="2" bgcolor="#eeeeee"><input value="Login" '

            .'id="doLogin" name="doLogin" type="submit" /></td>'."\n";

        print '</tr>'."\n";

        print '</table>'."\n";


        // Might be a good idea to make the variable name variable

        print '<input type="hidden" id="authsecret" name="authsecret" value="" />';

        print '</form>'."\n";

        print '</center>'."\n";

    }


    // }}}


}


?>

AUTH_SECURITY_BREACH
const AUTH_SECURITY_BREACH
Returned if new Advanced security system detects a breach.
Definition: Auth.php:46

AUTH_EXPIRED
const AUTH_EXPIRED
Returned if session has expired.
Definition: Auth.php:34

AUTH_WRONG_LOGIN
const AUTH_WRONG_LOGIN
Returned if container is unable to authenticate user/password pair.
Definition: Auth.php:38

AUTH_IDLED
const AUTH_IDLED
Returned if session exceeds idle time.
Definition: Auth.php:30

Auth_Frontend_Html
Definition: Html.php:39

Auth_Frontend_Html\render
render(&$caller, $username='')
Displays the login form.
Definition: Html.php:50

if
if(!file_exists(getcwd().'/ilias.ini.php')) if(isset( $_GET["client_id"]))
registration confirmation script for ilias
Definition: confirmReg.php:20

print
if(! $in) print
Definition: UtfNormalGenerate.php:37