X-Git-Url: http://wagnertech.de/gitweb/gitweb.cgi/timetracker.git/blobdiff_plain/251996aed11c648ecaa30f77383e0384bfadf7a5..098a79f0819ebb89b7d48df4a6b154af4560f68e:/login.php

diff --git a/login.php b/login.php
new file mode 100644
index 00000000..c9ddc817
--- /dev/null
+++ b/login.php
@@ -0,0 +1,96 @@
+<?php
+// +----------------------------------------------------------------------+
+// | Anuko Time Tracker
+// +----------------------------------------------------------------------+
+// | Copyright (c) Anuko International Ltd. (https://www.anuko.com)
+// +----------------------------------------------------------------------+
+// | LIBERAL FREEWARE LICENSE: This source code document may be used
+// | by anyone for any purpose, and freely redistributed alone or in
+// | combination with other software, provided that the license is obeyed.
+// |
+// | There are only two ways to violate the license:
+// |
+// | 1. To redistribute this code in source form, with the copyright
+// |    notice or license removed or altered. (Distributing in compiled
+// |    forms without embedded copyright notices is permitted).
+// |
+// | 2. To redistribute modified versions of this code in *any* form
+// |    that bears insufficient indications that the modifications are
+// |    not the work of the original author(s).
+// |
+// | This license applies to this document only, not any other software
+// | that it may be combined with.
+// |
+// +----------------------------------------------------------------------+
+// | Contributors:
+// | https://www.anuko.com/time_tracker/credits.htm
+// +----------------------------------------------------------------------+
+
+require_once('initialize.php');
+import('form.Form');
+import('ttTeamHelper');
+import('ttUser');
+
+$cl_login = $request->getParameter('login');
+$cl_password = $request->getParameter('password');
+if ($cl_login == null && $request->getMethod() == 'GET')
+  $cl_login = @$_COOKIE['tt_login'];
+
+$form = new Form('loginForm');
+$form->addInput(array('type'=>'text','size'=>'25','maxlength'=>'100','name'=>'login','style'=>'width: 220px;','value'=>$cl_login));
+$form->addInput(array('type'=>'text','size'=>'25','maxlength'=>'50','name'=>'password','style'=>'width: 220px;','aspassword'=>true,'value'=>$cl_password));
+$form->addInput(array('type'=>'hidden','name'=>'browser_today','value'=>'')); // User current date, which gets filled in on btn_login click.
+$form->addInput(array('type'=>'submit','name'=>'btn_login','onclick'=>'browser_today.value=get_date()','value'=>$i18n->getKey('button.login')));
+
+if ($request->getMethod() == 'POST') {
+  // Validate user input.
+  if (!ttValidString($cl_login)) $errors->add($i18n->getKey('error.field'), $i18n->getKey('label.login'));
+  if (!ttValidString($cl_password)) $errors->add($i18n->getKey('error.field'), $i18n->getKey('label.password'));
+  
+  if ($errors->isEmpty()) {
+  	// Use the "limit" plugin if we have one. Ignore include errors.
+    // The "limit" plugin is not required for normal operation of Time Tracker.
+    @include('plugins/limit/access_check.php');
+  	
+    if ($auth->doLogin($cl_login, $cl_password)) {
+      // Set current user date (as determined by user browser) into session.
+      $current_user_date = $request->getParameter('browser_today', null);
+      if ($current_user_date)
+        $_SESSION['date'] = $current_user_date;
+          
+      // Remember user login in a cookie.
+      setcookie('tt_login', $cl_login, time() + COOKIE_EXPIRE, '/');
+      
+      $user = new ttUser(null, $auth->getUserId());
+      // Redirect, depending on user role.
+      if ($user->isAdmin()) {
+        header('Location: admin_teams.php');
+        exit();
+      }
+      else if ($user->isClient()) {
+        header('Location: reports.php');
+        exit();  	
+      }
+      else {
+        header('Location: time.php');
+        exit();
+      }
+    } else
+      $errors->add($i18n->getKey('error.auth'));
+  }
+}
+
+if(!isTrue(MULTITEAM_MODE) && !ttTeamHelper::getTeams())
+  $errors->add($i18n->getKey('error.no_teams'));
+
+// Determine whether to show login hint. It is currently used only for Windows LDAP authentication.
+$show_hint = ('ad' == $GLOBALS['AUTH_MODULE_PARAMS']['type']);
+
+$smarty->assign('forms', array($form->getName()=>$form->toArray()));
+$smarty->assign('show_hint', $show_hint);
+$smarty->assign('onload', 'onLoad="document.loginForm.'.(!$cl_login?'login':'password').'.focus()"');
+$smarty->assign('title', $i18n->getKey('title.login'));
+$smarty->assign('content_page_name', 'login.tpl');
+$smarty->assign('about_text', $i18n->getKey('form.login.about'));
+$smarty->display('index.tpl');
+?>
\ No newline at end of file