[Sommaire] [Imprimer]

   1  <?php
   2  # Mantis - a php based bugtracking system
   3  
   4  # Copyright (C) 2000 - 2002  Kenzaburo Ito - kenito@300baud.org
   5  # Copyright (C) 2002 - 2007  Mantis Team   - mantisbt-dev@lists.sourceforge.net
   6  
   7  # Mantis is free software: you can redistribute it and/or modify
   8  # it under the terms of the GNU General Public License as published by
   9  # the Free Software Foundation, either version 2 of the License, or
  10  # (at your option) any later version.
  11  #
  12  # Mantis is distributed in the hope that it will be useful,
  13  # but WITHOUT ANY WARRANTY; without even the implied warranty of
  14  # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  15  # GNU General Public License for more details.
  16  #
  17  # You should have received a copy of the GNU General Public License
  18  # along with Mantis.  If not, see <http://www.gnu.org/licenses/>.
  19  
  20      # --------------------------------------------------------
  21      # $Id: login.php,v 1.38.2.1 2007-10-13 22:33:18 giallu Exp $
  22      # --------------------------------------------------------
  23  ?>
  24  <?php
  25  
  26      # Check login then redirect to main_page.php or to login_page.php
  27  
  28      require_once ( 'core.php' );
  29  
  30      $f_username        = gpc_get_string( 'username', '' );
  31      $f_password        = gpc_get_string( 'password', '' );
  32      $f_perm_login    = gpc_get_bool( 'perm_login' );
  33      $f_return        = gpc_get_string( 'return', config_get( 'default_home_page' ) );
  34      $f_from            = gpc_get_string( 'from', '' );
  35  
  36      if ( BASIC_AUTH == config_get( 'login_method' ) ) {
  37          $f_username = $_SERVER['REMOTE_USER'];
  38          $f_password = $_SERVER['PHP_AUTH_PW'];
  39       }
  40  
  41      if ( HTTP_AUTH == config_get( 'login_method' ) ) {
  42          if ( !auth_http_is_logout_pending() )
  43          {
  44              if ( isset( $_SERVER['PHP_AUTH_USER'] ) )
  45                  $f_username = $_SERVER['PHP_AUTH_USER'];
  46              if ( isset( $_SERVER['PHP_AUTH_PW'] ) )
  47                  $f_password = $_SERVER['PHP_AUTH_PW'];
  48          } else {
  49              auth_http_set_logout_pending( false );
  50              auth_http_prompt();
  51              return;
  52          }
  53      }
  54  
  55      if ( auth_attempt_login( $f_username, $f_password, $f_perm_login ) ) {
  56          $t_redirect_url = 'login_cookie_test.php?return=' . string_sanitize_url( $f_return );
  57      } else {
  58          $t_redirect_url = 'login_page.php?return=' . string_sanitize_url( $f_return ) . '&error=1';
  59  
  60          if ( HTTP_AUTH == config_get( 'login_method' ) ) {
  61              auth_http_prompt();
  62              exit;
  63          }
  64      }
  65  
  66      print_header_redirect( $t_redirect_url );
  67  ?>