mirror of
https://git.code.sf.net/p/seeddms/code
synced 2025-12-14 11:32:48 +00:00
326 lines
9.3 KiB
PHP
326 lines
9.3 KiB
PHP
<?php
|
|
/**
|
|
* Implementation of Login view
|
|
*
|
|
* @category DMS
|
|
* @package SeedDMS
|
|
* @license GPL 2
|
|
* @version @version@
|
|
* @author Uwe Steinmann <uwe@steinmann.cx>
|
|
* @copyright Copyright (C) 2002-2005 Markus Westphal,
|
|
* 2006-2008 Malcolm Cowe, 2010 Matteo Lucarelli,
|
|
* 2010-2012 Uwe Steinmann
|
|
* @version Release: @package_version@
|
|
*/
|
|
|
|
/**
|
|
* Include parent class
|
|
*/
|
|
//require_once("class.Bootstrap.php");
|
|
|
|
/**
|
|
* Class which outputs the html page for Login view
|
|
*
|
|
* @category DMS
|
|
* @package SeedDMS
|
|
* @author Markus Westphal, Malcolm Cowe, Uwe Steinmann <uwe@steinmann.cx>
|
|
* @copyright Copyright (C) 2002-2005 Markus Westphal,
|
|
* 2006-2008 Malcolm Cowe, 2010 Matteo Lucarelli,
|
|
* 2010-2012 Uwe Steinmann
|
|
* @version Release: @package_version@
|
|
*/
|
|
class SeedDMS_View_Login extends SeedDMS_Theme_Style {
|
|
|
|
function js() { /* {{{ */
|
|
$dms = $this->params['dms'];
|
|
$enableguestlogin = $this->params['enableguestlogin'];
|
|
$guest = null;
|
|
if($enableguestlogin) {
|
|
$guestid = $this->params['guestid'];
|
|
$guest = $dms->getUser((int) $guestid);
|
|
}
|
|
header('Content-Type: application/javascript; charset=UTF-8');
|
|
parent::jsTranslations(array('js_form_error', 'js_form_errors'));
|
|
?>
|
|
document.form1.login.focus();
|
|
|
|
$(document).ready( function() {
|
|
<?php
|
|
if($guest) {
|
|
?>
|
|
function guestLogin()
|
|
{
|
|
theme = $("#themeselector").val();
|
|
lang = $("#languageselector").val();
|
|
url = "../op/op.Login.php?login=<?= $guest->getLogin() ?>";
|
|
if(theme)
|
|
url += "&sesstheme=" + theme;
|
|
if(lang)
|
|
url += "&lang=" + lang;
|
|
if (document.form1.referuri) {
|
|
url += "&referuri=" + escape(document.form1.referuri.value);
|
|
}
|
|
document.location.href = url;
|
|
}
|
|
$('body').on('click', '#guestlogin', function(ev){
|
|
ev.preventDefault();
|
|
guestLogin();
|
|
});
|
|
<?php
|
|
}
|
|
?>
|
|
$("#form").validate({
|
|
messages: {
|
|
login: "<?php printMLText("js_no_login");?>",
|
|
pwd: "<?php printMLText("js_no_pwd");?>"
|
|
},
|
|
});
|
|
});
|
|
function webauthnAuthenticate(key, cb){
|
|
var pk = JSON.parse(key);
|
|
var originalChallenge = pk.challenge;
|
|
pk.challenge = new Uint8Array(pk.challenge);
|
|
pk.allowCredentials.forEach(function(k, idx){
|
|
pk.allowCredentials[idx].id = new Uint8Array(k.id);
|
|
});
|
|
/* ask the browser to prompt the user */
|
|
navigator.credentials.get({publicKey: pk})
|
|
.then(function(aAssertion) {
|
|
// console.log("Credentials.Get response: ", aAssertion);
|
|
var ida = [];
|
|
(new Uint8Array(aAssertion.rawId)).forEach(function(v){ ida.push(v); });
|
|
var cd = JSON.parse(String.fromCharCode.apply(null,
|
|
new Uint8Array(aAssertion.response.clientDataJSON)));
|
|
var cda = [];
|
|
(new Uint8Array(aAssertion.response.clientDataJSON)).forEach(function(v){ cda.push(v); });
|
|
var ad = [];
|
|
(new Uint8Array(aAssertion.response.authenticatorData)).forEach(function(v){ ad.push(v); });
|
|
var sig = [];
|
|
(new Uint8Array(aAssertion.response.signature)).forEach(function(v){ sig.push(v); });
|
|
var info = {
|
|
type: aAssertion.type,
|
|
originalChallenge: originalChallenge,
|
|
rawId: ida,
|
|
response: {
|
|
authenticatorData: ad,
|
|
clientData: cd,
|
|
clientDataJSONarray: cda,
|
|
signature: sig
|
|
}
|
|
};
|
|
cb(true, JSON.stringify(info));
|
|
})
|
|
.catch(function (aErr) {
|
|
if (("name" in aErr) && (aErr.name == "AbortError" || aErr.name == "NS_ERROR_ABORT" ||
|
|
aErr.name == "NotAllowedError")) {
|
|
cb(false, 'abort');
|
|
} else {
|
|
cb(false, aErr.toString());
|
|
}
|
|
});
|
|
}
|
|
|
|
$(function(){
|
|
$('#webauthnlogin').click(function(ev){
|
|
var self = $(this);
|
|
ev.preventDefault();
|
|
|
|
if(!$('#loginusername').val()) {
|
|
noty({
|
|
text: '<?php printMLText("js_no_login");?>',
|
|
type: 'error',
|
|
dismissQueue: true,
|
|
layout: 'topRight',
|
|
theme: 'defaultTheme',
|
|
timeout: 3000,
|
|
});
|
|
return;
|
|
}
|
|
$.ajax({url: '../op/op.Login.php',
|
|
method: 'POST',
|
|
data: {action: 'preparelogin', login: $('#loginusername').val()},
|
|
dataType: 'json',
|
|
success: function(j){
|
|
/* activate the key and get the response */
|
|
webauthnAuthenticate(j.challenge, function(success, info){
|
|
if (success) {
|
|
$.ajax({url: '../op/op.Login.php',
|
|
method: 'POST',
|
|
data: {action: 'login', login: $('#loginusername').val(), logininfo: info},
|
|
dataType: 'json',
|
|
success: function(j){
|
|
noty({
|
|
text: 'login completed successfully',
|
|
type: 'success',
|
|
dismissQueue: true,
|
|
layout: 'topRight',
|
|
theme: 'defaultTheme',
|
|
_timeout: 1500,
|
|
});
|
|
window.location = j;
|
|
},
|
|
error: function(xhr, status, error){
|
|
noty({
|
|
text: 'login failed: '+error+": "+xhr.responseText,
|
|
type: 'error',
|
|
dismissQueue: true,
|
|
layout: 'topRight',
|
|
theme: 'defaultTheme',
|
|
_timeout: 1500,
|
|
});
|
|
}
|
|
});
|
|
} else {
|
|
noty({
|
|
text: info,
|
|
type: 'error',
|
|
dismissQueue: true,
|
|
layout: 'topRight',
|
|
theme: 'defaultTheme',
|
|
_timeout: 1500,
|
|
});
|
|
}
|
|
});
|
|
},
|
|
|
|
error: function(xhr, status, error){
|
|
noty({
|
|
text: "couldn't initiate login: "+error+": "+xhr.responseText,
|
|
type: 'error',
|
|
dismissQueue: true,
|
|
layout: 'topRight',
|
|
theme: 'defaultTheme',
|
|
_timeout: 1500,
|
|
});
|
|
}
|
|
});
|
|
});
|
|
});
|
|
<?php
|
|
} /* }}} */
|
|
|
|
function show() { /* {{{ */
|
|
$dms = $this->params['dms'];
|
|
$enableguestlogin = $this->params['enableguestlogin'];
|
|
$guestid = $this->params['guestid'];
|
|
$enablepasswordforgotten = $this->params['enablepasswordforgotten'];
|
|
$refer = $this->params['referrer'];
|
|
$themes = $this->params['themes'];
|
|
$msg = $this->params['msg'];
|
|
$languages = $this->params['languages'];
|
|
$enableLanguageSelector = $this->params['enablelanguageselector'];
|
|
$enableThemeSelector = $this->params['enablethemeselector'];
|
|
$enable2factauth = $this->params['enable2factauth'];
|
|
|
|
$this->htmlAddHeader('<script type="text/javascript" src="../views/'.$this->theme.'/vendors/jquery-validation/jquery.validate.js"></script>'."\n", 'js');
|
|
$this->htmlAddHeader('<script type="text/javascript" src="../views/'.$this->theme.'/styles/validation-default.js"></script>'."\n", 'js');
|
|
|
|
$this->htmlStartPage(getMLText("sign_in"), "login");
|
|
$this->globalBanner();
|
|
$this->contentStart();
|
|
echo "<div id=\"login_wrapper\">\n";
|
|
$this->pageNavigation(getMLText("sign_in"));
|
|
if($msg)
|
|
$this->errorMsg(htmlspecialchars($msg));
|
|
?>
|
|
<form class="form-horizontal" action="../op/op.Login.php" method="post" name="form1" id="loginform">
|
|
<?php
|
|
$this->contentContainerStart();
|
|
if ($refer) {
|
|
echo "<input type='hidden' name='referuri' value='".htmlspecialchars($refer)."'/>";
|
|
}
|
|
$this->formField(
|
|
getMLText("user_login"),
|
|
array(
|
|
'element'=>'input',
|
|
'type'=>'text',
|
|
'id'=>'loginusername',
|
|
'name'=>'login',
|
|
'placeholder'=>getMLText('user_login'),
|
|
'autocomplete'=>'on',
|
|
'required'=>true
|
|
)
|
|
);
|
|
$this->formField(
|
|
getMLText("password"),
|
|
array(
|
|
'element'=>'input',
|
|
'type'=>'password',
|
|
'id'=>'pwd',
|
|
'name'=>'pwd',
|
|
'placeholder'=>getMLText('password'),
|
|
'autocomplete'=>'off',
|
|
'required'=>true
|
|
)
|
|
);
|
|
if($enable2factauth) {
|
|
require "vendor/robthree/twofactorauth/lib/Providers/Qr/IQRCodeProvider.php";
|
|
require "vendor/robthree/twofactorauth/lib/Providers/Qr/BaseHTTPQRCodeProvider.php";
|
|
// require "vendor/robthree/twofactorauth/lib/Providers/Qr/GoogleQRCodeProvider.php";
|
|
require "vendor/robthree/twofactorauth/lib/Providers/Rng/IRNGProvider.php";
|
|
require "vendor/robthree/twofactorauth/lib/Providers/Rng/MCryptRNGProvider.php";
|
|
require "vendor/robthree/twofactorauth/lib/TwoFactorAuthException.php";
|
|
require "vendor/robthree/twofactorauth/lib/TwoFactorAuth.php";
|
|
$tfa = new \RobThree\Auth\TwoFactorAuth('SeedDMS');
|
|
$this->formField(
|
|
getMLText("2_factor_auth"),
|
|
'<input type="Password" id="twofactauth" name="twofactauth" value="" />'
|
|
);
|
|
}
|
|
if($enableLanguageSelector) {
|
|
$options = array();
|
|
$options[] = array('', '-');
|
|
foreach ($languages as $currLang) {
|
|
$options[] = array($currLang, getMLText($currLang));
|
|
}
|
|
$this->formField(
|
|
getMLText("language"),
|
|
array(
|
|
'element'=>'select',
|
|
'name'=>'lang',
|
|
'id'=>'languageselector',
|
|
'options'=>$options
|
|
)
|
|
);
|
|
}
|
|
if($enableThemeSelector) {
|
|
$options = array();
|
|
$options[] = array('', '-');
|
|
foreach ($themes as $currTheme) {
|
|
$options[] = array($currTheme, $currTheme);
|
|
}
|
|
$this->formField(
|
|
getMLText("theme"),
|
|
array(
|
|
'element'=>'select',
|
|
'name'=>'sesstheme',
|
|
'id'=>'themeselector',
|
|
'options'=>$options
|
|
)
|
|
);
|
|
}
|
|
$this->contentContainerEnd();
|
|
echo '<div class="control-group">';
|
|
$this->formSubmit(getMLText('submit_login'));
|
|
$this->formSubmit(getMLText('submit_webauthn_login'), 'webauthnlogin');
|
|
echo '</div>';
|
|
?>
|
|
</form>
|
|
<?php
|
|
$tmpfoot = array();
|
|
if ($enableguestlogin && $guestid && $dms->getUser((int) $guestid))
|
|
$tmpfoot[] = "<a href=\"\" id=\"guestlogin\">" . getMLText("guest_login") . "</a>\n";
|
|
if ($enablepasswordforgotten)
|
|
$tmpfoot[] = "<a href=\"../out/out.PasswordForgotten.php\">" . getMLText("password_forgotten") . "</a>\n";
|
|
if($tmpfoot) {
|
|
print "<p>";
|
|
print implode(' | ', $tmpfoot);
|
|
print "</p>\n";
|
|
}
|
|
echo "</div>\n";
|
|
$this->contentEnd();
|
|
$this->htmlEndPage();
|
|
} /* }}} */
|
|
}
|
|
?>
|