X-Git-Url: http://wagnertech.de/git?a=blobdiff_plain;f=SL%2FController%2FLoginScreen.pm;h=adf8b471c0057a72a8f4ddb8d96f3d1800160c9b;hb=e8b07984052b974e46a84a2a4a8a4d3fd10e797a;hp=a7cc905c16e73ee21eb8550649e16bb6d66e5f68;hpb=722fee3c7224fa0b1222b9f5134e2c19dc021c64;p=kivitendo-erp.git diff --git a/SL/Controller/LoginScreen.pm b/SL/Controller/LoginScreen.pm index a7cc905c1..adf8b471c 100644 --- a/SL/Controller/LoginScreen.pm +++ b/SL/Controller/LoginScreen.pm @@ -10,6 +10,7 @@ use SL::Dispatcher::AuthHandler::User; use SL::DB::AuthClient; use SL::DB::AuthGroup; use SL::DB::AuthUser; +use SL::DB::Employee; use SL::Locale::String qw(t8); use SL::User; @@ -31,7 +32,7 @@ sub action_user_login { return if $self->_redirect_to_main_script_if_already_logged_in; # Otherwise show the login form. - $self->show_login_form(error => error_state($::form->{error})); + $self->show_login_form(error_state($::form->{error})); } sub action_logout { @@ -39,7 +40,7 @@ sub action_logout { $::auth->destroy_session; $::auth->create_or_refresh_session; - $self->show_login_form(error => $::locale->text('You are logged out!')); + $self->show_login_form(info => $::locale->text('You are logged out!')); } sub action_login { @@ -64,17 +65,24 @@ sub action_login { # if we get an error back, bale out my $result = User->new(login => $::myconfig{login})->login($::form); - # Database update available? - ::end_of_request() if -2 == $result; - # Auth DB needs update? If so log the user out forcefully. - if (-3 == $result) { + if (User::LOGIN_AUTH_DBUPDATE_AVAILABLE() == $result) { $::auth->destroy_session; return $self->render('login_screen/auth_db_needs_update'); } + # Basic client tables available? If not tell the user to create them + # and log the user out forcefully. + if (User::LOGIN_BASIC_TABLES_MISSING() == $result) { + $::auth->destroy_session; + return $self->render('login_screen/basic_tables_missing'); + } + + # Database update available? + ::end_of_request() if User::LOGIN_DBUPDATE_AVAILABLE() == $result; + # Other login errors. - if (0 > $result) { + if (User::LOGIN_OK() != $result) { $::auth->punish_wrong_login; return $self->show_login_form(error => $error); } @@ -82,9 +90,6 @@ sub action_login { # Everything is fine. $::auth->set_cookie_environment_variable(); - # TODO: Employees anlegen/checken - # $self->_ensure_employees_for_authorized_users_exist; - $self->_redirect_to_main_script; } @@ -122,6 +127,19 @@ sub _redirect_to_main_script_if_already_logged_in { my %user = $::auth->read_user(login => $login); return if ($user{login} || '') ne $login; + # Check if there's a client set in the session -- and whether or not + # the user still has access to the client. + my $client_id = $::auth->get_session_value('client_id'); + return if !$client_id; + + if (!$::auth->set_client($client_id)) { + $::auth->punish_wrong_login; + $::auth->destroy_session; + $::auth->create_or_refresh_session; + $self->show_login_form(error => t8('Incorrect username or password or no access to selected client!')); + return 1; + } + # Check if the session is logged in correctly. return if SL::Auth::OK() != $::auth->authenticate($login, undef); @@ -134,10 +152,12 @@ sub _redirect_to_main_script_if_already_logged_in { } sub error_state { - return { - session => $::locale->text('The session is invalid or has expired.'), - password => $::locale->text('Incorrect username or password or no access to selected client!'), - }->{$_[0]}; + my %states = ( + session => { warning => t8('The session has expired. Please log in again.') }, + password => { error => t8('Incorrect username or password or no access to selected client!') }, + ); + + return %{ $states{$_[0]} || {} }; } sub set_layout { @@ -157,8 +177,7 @@ sub init_default_client_id { sub show_login_form { my ($self, %params) = @_; - $::request->layout->focus('#auth_login'); - $self->render('login_screen/user_login', %params); + $self->render('login_screen/user_login', %params, version => $::form->read_version); } 1;