1 package SL::Controller::LoginScreen;
5 use parent qw(SL::Controller::Base);
7 use SL::Dispatcher::AuthHandler::User;
14 sub action_user_login {
17 # If the user is already logged in then redirect to the proper menu
19 return if $self->_redirect_to_main_script_if_already_logged_in;
21 # Otherwise show the login form.
22 $self->render('login_screen/user_login', { no_menu => 1 }, error => error_state($::form->{error}));
28 $::auth->destroy_session;
29 $::auth->create_or_refresh_session;
30 $self->render('login_screen/user_login', { no_menu => 1 }, error => $::locale->text('You are logged out!'));
36 %::myconfig = $::form->{'{AUTH}login'} ? $::auth->read_user(login => $::form->{'{AUTH}login'}) : ();
37 %::myconfig = SL::Dispatcher::AuthHandler::User->new->handle(countrycode => $::myconfig{countrycode});
38 $::form->{login} = $::myconfig{login};
39 $::locale = Locale->new($::myconfig{countrycode}) if $::myconfig{countrycode};
40 my $user = User->new(login => $::myconfig{login});
41 $::request->{layout} = SL::Controller::Layout->new(style => $user->{menustyle});
43 # if we get an error back, bale out
44 my $result = $user->login($::form);
46 # Database update available?
47 ::end_of_request() if -2 == $result;
49 # Auth DB needs update? If so log the user out forcefully.
51 $::auth->destroy_session;
52 return $self->render('login_screen/auth_db_needs_update');
57 $::auth->punish_wrong_login;
58 return $self->render('login_screen/user_login', { no_menu => 1 }, error => $::locale->text('Incorrect username or password!'));
62 $::auth->set_cookie_environment_variable();
64 $self->_redirect_to_main_script($user);
74 sub keep_auth_vars_in_form {
82 sub _redirect_to_main_script {
83 my ($self, $user) = @_;
85 return $self->redirect_to($::form->{callback}) if $::form->{callback};
87 $self->redirect_to(controller => "login.pl", action => 'company_logo');
90 sub _redirect_to_main_script_if_already_logged_in {
93 # Get 'login' from valid session.
94 my $login = $::auth->get_session_value('login');
97 # See whether or not the user exists in the database.
98 my %user = $::auth->read_user(login => $login);
99 return if ($user{login} || '') ne $login;
101 # Check if the session is logged in correctly.
102 return if SL::Auth::OK() != $::auth->authenticate($login, undef);
104 $::auth->create_or_refresh_session;
105 $::auth->delete_session_value('FLASH');
107 $self->_redirect_to_main_script(\%user);
114 session => $::locale->text('The session is invalid or has expired.'),
115 password => $::locale->text('Incorrect password!'),