#######################################################################
use DBI;
+use SL::Auth;
use SL::User;
use SL::Form;
require "bin/mozilla/common.pl";
+require "bin/mozilla/todo.pl";
-$form = new Form;
+use strict;
-$locale = new Locale $language, "login";
+our $cgi;
+our $form;
+our $auth;
-# customization
-if (-f "bin/mozilla/custom_$form->{script}") {
- eval { require "bin/mozilla/custom_$form->{script}"; };
- $form->error($@) if ($@);
-}
+sub run {
+ $::lxdebug->enter_sub;
+ my $session_result = shift;
-# per login customization
-if (-f "bin/mozilla/$form->{login}_$form->{script}") {
- eval { require "bin/mozilla/$form->{login}_$form->{script}"; };
- $form->error($@) if ($@);
-}
+ $form = $::form;
+ $auth = $::auth;
-# window title bar, user info
-$form->{titlebar} = "Lx-Office " . $locale->text('Version') . " $form->{version}";
+ $form->{stylesheet} = "lx-office-erp.css";
+ $form->{favicon} = "favicon.ico";
-if ($form->{action}) {
- $form->{titlebar} .= " - $myconfig{name} - $myconfig{dbname}";
- call_sub($locale->findsub($form->{action}));
+ if (SL::Auth::SESSION_EXPIRED == $session_result) {
+ $form->{error_message} = $::locale->text('The session is invalid or has expired.');
+ login_screen();
+ ::end_of_request();
+ }
+ my $action = $form->{action};
+ if (!$action && $auth->{SESSION}->{login}) {
+ $action = 'login';
+ }
+ if ($action) {
+ %::myconfig = $auth->read_user(login => $form->{login}) if ($form->{login});
+ $::locale = Locale->new($::myconfig{countrycode}) if $::myconfig{countrycode};
+
+ if (SL::Auth::OK != $auth->authenticate($::myconfig{login}, $form->{password})) {
+ $form->{error_message} = $::locale->text('Incorrect username or password!');
+ login_screen();
+ } else {
+ $auth->store_credentials_in_session(login => $form->{login}, password => $form->{password});
+ $auth->create_or_refresh_session();
+ delete $form->{password};
+
+ $form->{titlebar} .= " - $::myconfig{name} - $::myconfig{dbname}";
+ call_sub($::locale->findsub($action));
+ }
+ } else {
+ login_screen();
+ }
-} else {
- login_screen();
+ $::lxdebug->leave_sub;
}
-1;
-
sub login_screen {
- $lxdebug->enter_sub();
+ $main::lxdebug->enter_sub();
my ($msg) = @_;
if (-f "css/lx-office-erp.css") {
$form->{stylesheet} = "lx-office-erp.css";
}
- $form->{msg} = $msg;
- $form->{fokus} = "loginscreen.login";
- $form->header;
+ $form->{msg} = $msg;
+ $form->header();
print $form->parse_html_template('login/login_screen');
- $lxdebug->leave_sub();
+ $main::lxdebug->leave_sub();
}
sub login {
- $lxdebug->enter_sub();
+ $main::lxdebug->enter_sub();
unless ($form->{login}) {
- login_screen($locale->text('You did not enter a name!'));
- exit;
+ login_screen($::locale->text('You did not enter a name!'));
+ ::end_of_request();
}
- $user = new User $memberfile, $form->{login};
+ my $user = User->new(login => $form->{login});
# if we get an error back, bale out
- if (($result = $user->login(\%$form, $userspath)) <= -1) {
- exit if $result == -2;
- login_screen($locale->text('Incorrect username or password!'));
- exit;
+ my $result;
+ if (($result = $user->login($form)) <= -1) {
+ if ($result == -3) {
+ show_error('login/auth_db_needs_update');
+ $::auth->destroy_session;
+ ::end_of_request();
+ }
+
+ ::end_of_request() if $result == -2;
+ login_screen($::locale->text('Incorrect username or password!'));
+ ::end_of_request();
}
- my %style_to_script_map = ( 'v3' => 'v3',
- 'neu' => 'new',
- 'xml' => 'XML',
- );
+ my %style_to_script_map = (
+ v3 => 'v3',
+ neu => 'new',
+ v4 => 'v4',
+ );
my $menu_script = $style_to_script_map{$user->{menustyle}} || '';
# made it this far, execute the menu
- $form->{callback} = build_std_url("script=menu${menu_script}.pl", 'action=display');
+ # standard redirect does not seem to work for this invocation, (infinite loops?)
+ # do a manual invocation instead
+# $form->{callback} = build_std_url("script=menu${menu_script}.pl", 'action=display', "callback=" . $form->escape($form->{callback}));
+
+ $main::auth->set_cookie_environment_variable();
+
+ $::form->{script} = "menu${menu_script}.pl";
+ $::form->{action} = 'display';
+ $::form->{callback} = $::form->escape($::form->{callback});
+
+ require "bin/mozilla/$::form->{script}";
+ display();
- $form->redirect();
+# $form->redirect();
- $lxdebug->leave_sub();
+ $main::lxdebug->leave_sub();
}
sub logout {
- $lxdebug->enter_sub();
+ $main::lxdebug->enter_sub();
- unlink "$userspath/$form->{login}.conf";
+ $main::auth->destroy_session();
# remove the callback to display the message
- $form->{callback} = "login.pl?action=&login=";
- $form->redirect($locale->text('You are logged out!'));
+ $form->{callback} = "login.pl?action=";
+ $form->redirect($::locale->text('You are logged out!'));
- $lxdebug->leave_sub();
+ $main::lxdebug->leave_sub();
}
sub company_logo {
- $lxdebug->enter_sub();
+ $main::lxdebug->enter_sub();
- require "$userspath/$form->{login}.conf";
-
- $locale = new Locale $myconfig{countrycode}, "login" if ($language ne $myconfig{countrycode});
+ my %myconfig = %main::myconfig;
+ $form->{todo_list} = create_todo_list('login_screen' => 1) if (!$form->{no_todo_list});
$form->{stylesheet} = $myconfig{stylesheet};
- $form->{title} = $locale->text('About');
+ $form->{title} = $::locale->text('kivitendo');
+ $form->{interface} = $::dispatcher->interface_type;
# create the logo screen
$form->header() unless $form->{noheader};
print $form->parse_html_template('login/company_logo');
- $lxdebug->leave_sub();
+ $main::lxdebug->leave_sub();
}
+
+sub show_error {
+ my $template = shift;
+ my %myconfig = %main::myconfig;
+ $myconfig{countrycode} = $::lx_office_conf{system}->{language};
+ $form->{stylesheet} = 'css/lx-office-erp.css';
+
+ $form->header();
+ print $form->parse_html_template($template);
+
+ # $form->parse_html_template('login/auth_db_unreachable');
+ # $form->parse_html_template('login/auth_db_needs_update');
+ # $form->parse_html_template('login/authentication_pl_missing');
+
+ ::end_of_request();
+}
+
+1;
+
+__END__
projects / kivitendo-erp.git / blobdiff