EGroupware / egroupware

login.php

Spacing +84 added lines, -84 removed lines

@@ -15,7 +15,7 @@ 
 use EGroupware\Api\Framework;
 use EGroupware\Api\Egw;
 
-$submit = False;			// set to some initial value
+$submit = False; // set to some initial value
 
 $GLOBALS['egw_info'] = array('flags' => array(
 	'disable_Template_class'  => True,
@@ -23,10 +23,10 @@ 
 	'currentapp'              => 'login',
 ));
 
-if(file_exists('./header.inc.php'))
+if (file_exists('./header.inc.php'))
 {
 	include('./header.inc.php');
-	if(!function_exists('CreateObject'))
+	if (!function_exists('CreateObject'))
 	{
 		Header('Location: setup/index.php');
 		exit;
@@ -42,17 +42,17 @@ 
  * Destroy any existing anonymous session.
  * Copied from logout.php. Maybe make it a common function?
  */
-if(isset($GLOBALS['sitemgr_info']) && $GLOBALS['egw_info']['user']['userid'] == $GLOBALS['sitemgr_info']['anonymous_user'])
+if (isset($GLOBALS['sitemgr_info']) && $GLOBALS['egw_info']['user']['userid'] == $GLOBALS['sitemgr_info']['anonymous_user'])
 {
-	if($GLOBALS['egw']->session->verify())
+	if ($GLOBALS['egw']->session->verify())
 	{
 		Api\Hooks::process('logout');
-		$GLOBALS['egw']->session->destroy($GLOBALS['sessionid'],$GLOBALS['kp3']);
+		$GLOBALS['egw']->session->destroy($GLOBALS['sessionid'], $GLOBALS['kp3']);
 	}
 }
 
 // CAS :
-if($GLOBALS['egw_info']['server']['auth_type'] == 'cas')
+if ($GLOBALS['egw_info']['server']['auth_type'] == 'cas')
 {
 	ob_end_clean();
 
@@ -60,32 +60,32 @@ 
 
 	//phpCAS::setDebug('/var/log/log_phpcas.php');
 
-	if($GLOBALS['egw_info']['server']['cas_authentication_mode'] == 'Proxy')
+	if ($GLOBALS['egw_info']['server']['cas_authentication_mode'] == 'Proxy')
 	{
 		phpCAS::proxy(CAS_VERSION_2_0,
 			$GLOBALS['egw_info']['server']['cas_server_host_name'],
-			(int) $GLOBALS['egw_info']['server']['cas_server_port'],
-			$GLOBALS['egw_info']['server']['cas_server_uri'] );
+			(int)$GLOBALS['egw_info']['server']['cas_server_port'],
+			$GLOBALS['egw_info']['server']['cas_server_uri']);
 	}
 	else
 	{
 		phpCAS::client(CAS_VERSION_2_0,
 			$GLOBALS['egw_info']['server']['cas_server_host_name'],
-			(int) $GLOBALS['egw_info']['server']['cas_server_port'],
-			$GLOBALS['egw_info']['server']['cas_server_uri'] );
+			(int)$GLOBALS['egw_info']['server']['cas_server_port'],
+			$GLOBALS['egw_info']['server']['cas_server_uri']);
 	}
 
-	if($GLOBALS['egw_info']['server']['cas_ssl_validation'] == 'PEMCertificate')
+	if ($GLOBALS['egw_info']['server']['cas_ssl_validation'] == 'PEMCertificate')
 	{
 		// Set the certificate of the CAS server (PEM Certificate)
 		phpCAS::setCasServerCert($GLOBALS['egw_info']['server']['cas_cert']);
 	}
-	elseif($GLOBALS['egw_info']['server']['cas_ssl_validation'] == 'CACertificate')
+	elseif ($GLOBALS['egw_info']['server']['cas_ssl_validation'] == 'CACertificate')
 	{
 		// Set the CA certificate of the CAS server
 		phpCAS::setCasServerCACert($GLOBALS['egw_info']['server']['cas_cert']);
 	}
-	elseif($GLOBALS['egw_info']['server']['cas_ssl_validation'] == 'No')
+	elseif ($GLOBALS['egw_info']['server']['cas_ssl_validation'] == 'No')
 	{
 		// no SSL validation for the CAS server
 		phpCAS::setNoCasServerValidation();
@@ -96,11 +96,11 @@ 
 	ob_start();
 
 	$login = phpCAS::getUser();
-	$password = phpCAS::retrievePT("imap://".$GLOBALS['egw_info']['server']['mail_server'],$err_code,$output);
-	$GLOBALS['sessionid'] = $GLOBALS['egw']->session->create($login,$password,'text');
+	$password = phpCAS::retrievePT("imap://".$GLOBALS['egw_info']['server']['mail_server'], $err_code, $output);
+	$GLOBALS['sessionid'] = $GLOBALS['egw']->session->create($login, $password, 'text');
 
 	/* set auth_cookie */
-	$GLOBALS['egw']->redirect_link($forward,$extra_vars);
+	$GLOBALS['egw']->redirect_link($forward, $extra_vars);
 }
 else
 {
@@ -125,7 +125,7 @@ 
 	$GLOBALS['egw']->framework = Framework::factory();
 
 	// This is used for system downtime, to prevent new logins.
-	if($GLOBALS['egw_info']['server']['deny_all_logins'])
+	if ($GLOBALS['egw_info']['server']['deny_all_logins'])
 	{
 	   echo $GLOBALS['egw']->framework->denylogin_screen();
 	   exit;
@@ -138,7 +138,7 @@ 
 	{
         	$_SERVER['PHP_AUTH_USER'] = $_SERVER['REMOTE_USER'];
 	}
-	if($GLOBALS['egw_info']['server']['auth_type'] == 'http' && isset($_SERVER['PHP_AUTH_USER']))
+	if ($GLOBALS['egw_info']['server']['auth_type'] == 'http' && isset($_SERVER['PHP_AUTH_USER']))
 	{
 		$submit = True;
 		$login  = $_SERVER['PHP_AUTH_USER'];
@@ -150,11 +150,11 @@ 
 		$passwd = get_magic_quotes_gpc() ? stripslashes($_POST['passwd']) : $_POST['passwd'];
 		$passwd_type = $_POST['passwd_type'];
 
-		if($GLOBALS['egw_info']['server']['allow_cookie_auth'])
+		if ($GLOBALS['egw_info']['server']['allow_cookie_auth'])
 		{
-			$eGW_remember = explode('::::',get_magic_quotes_gpc() ? stripslashes($_COOKIE['eGW_remember']) : $_COOKIE['eGW_remember']);
+			$eGW_remember = explode('::::', get_magic_quotes_gpc() ? stripslashes($_COOKIE['eGW_remember']) : $_COOKIE['eGW_remember']);
 
-			if($eGW_remember[0] && $eGW_remember[1] && $eGW_remember[2])
+			if ($eGW_remember[0] && $eGW_remember[1] && $eGW_remember[2])
 			{
 				$_SERVER['PHP_AUTH_USER'] = $login = $eGW_remember[0];
 				$_SERVER['PHP_AUTH_PW'] = $passwd = $eGW_remember[1];
@@ -162,10 +162,10 @@ 
 				$submit = True;
 			}
 		}
-		if(!$passwd && ($GLOBALS['egw_info']['server']['auto_anon_login']) && !$_GET['cd'])
+		if (!$passwd && ($GLOBALS['egw_info']['server']['auto_anon_login']) && !$_GET['cd'])
 		{
 			$_SERVER['PHP_AUTH_USER'] = $login = 'anonymous';
-			$_SERVER['PHP_AUTH_PW'] =  $passwd = 'anonymous';
+			$_SERVER['PHP_AUTH_PW'] = $passwd = 'anonymous';
 			$passwd_type = 'text';
 			$submit = True;
 		}
@@ -173,26 +173,26 @@ 
 
 	# Apache + mod_ssl style SSL certificate authentication
 	# Certificate (chain) verification occurs inside mod_ssl
-	if($GLOBALS['egw_info']['server']['auth_type'] == 'sqlssl' && isset($_SERVER['SSL_CLIENT_S_DN']) && !isset($_GET['cd']))
+	if ($GLOBALS['egw_info']['server']['auth_type'] == 'sqlssl' && isset($_SERVER['SSL_CLIENT_S_DN']) && !isset($_GET['cd']))
 	{
 	   // an X.509 subject looks like:
 	   // CN=john.doe/OU=Department/O=Company/C=xx/Email=john@comapy.tld/L=City/
 	   // the username is deliberately lowercase, to ease LDAP integration
-	   $sslattribs = explode('/',$_SERVER['SSL_CLIENT_S_DN']);
+	   $sslattribs = explode('/', $_SERVER['SSL_CLIENT_S_DN']);
 	   # skip the part in front of the first '/' (nothing)
-	   while(($sslattrib = next($sslattribs)))
+	   while (($sslattrib = next($sslattribs)))
 	   {
-		  list($key,$val) = explode('=',$sslattrib);
+		  list($key, $val) = explode('=', $sslattrib);
 		  $sslattributes[$key] = $val;
 	   }
 
-	   if(isset($sslattributes['Email']))
+	   if (isset($sslattributes['Email']))
 	   {
 		  $submit = True;
 
 		  # login will be set here if the user logged out and uses a different username with
 		  # the same SSL-certificate.
-		  if(!isset($_POST['login'])&&isset($sslattributes['Email']))
+		  if (!isset($_POST['login']) && isset($sslattributes['Email']))
 		  {
 			 $login = $sslattributes['Email'];
 			 # not checked against the database, but delivered to authentication module
@@ -204,13 +204,13 @@ 
 	   unset($sslattributes);
 	}
 
-	if(isset($passwd_type) || $_POST['submitit_x'] || $_POST['submitit_y'] || $submit)
+	if (isset($passwd_type) || $_POST['submitit_x'] || $_POST['submitit_y'] || $submit)
 	{
-		if(getenv('REQUEST_METHOD') != 'POST' && $_SERVER['REQUEST_METHOD'] != 'POST' &&
+		if (getenv('REQUEST_METHOD') != 'POST' && $_SERVER['REQUEST_METHOD'] != 'POST' &&
 			!isset($_SERVER['PHP_AUTH_USER']) && !isset($_SERVER['SSL_CLIENT_S_DN']))
 		{
-			$GLOBALS['egw']->session->egw_setcookie('eGW_remember','',0,'/');
-			Egw::redirect_link('/login.php','cd=5');
+			$GLOBALS['egw']->session->egw_setcookie('eGW_remember', '', 0, '/');
+			Egw::redirect_link('/login.php', 'cd=5');
 		}
 		/* cookie enabled check comment out, as it seems to cause a redirect loop under certain conditions and browsers :-(
 		if ($_COOKIE['eGW_cookie_test'] !== 'enabled')
@@ -219,7 +219,7 @@ 
 		}*/
 
 		// don't get login data again when $submit is true
-		if($submit == false)
+		if ($submit == false)
 		{
 			$login = $_POST['login'];
 		}
@@ -227,14 +227,14 @@ 
 		//conference - for strings like vinicius@thyamad.com@default , allows
 		//that user have a login that is his e-mail. (viniciuscb)
 		// remove blanks
-		$login_parts = array_map('trim',explode('@',$login));
-		$login = implode('@',$login_parts);
+		$login_parts = array_map('trim', explode('@', $login));
+		$login = implode('@', $login_parts);
 
 		$got_login = false;
 		if (count($login_parts) > 1)
 		{
 			//Last part of login string, when separated by @, is a domain name
-			if (array_key_exists(array_pop($login_parts),$GLOBALS['egw_domain']))
+			if (array_key_exists(array_pop($login_parts), $GLOBALS['egw_domain']))
 			{
 				$got_login = true;
 			}
@@ -242,17 +242,17 @@ 
 
 		if (!$got_login)
 		{
-			if(isset($_POST['logindomain']))
+			if (isset($_POST['logindomain']))
 			{
-				$login .= '@' . $_POST['logindomain'];
+				$login .= '@'.$_POST['logindomain'];
 			}
-			elseif(!isset($GLOBALS['egw_domain'][$GLOBALS['egw_info']['user']['domain']]))
+			elseif (!isset($GLOBALS['egw_domain'][$GLOBALS['egw_info']['user']['domain']]))
 			{
 				$login .= '@'.$GLOBALS['egw_info']['server']['default_domain'];
 			}
 		}
 		$GLOBALS['sessionid'] = $GLOBALS['egw']->session->create($login, $passwd,
-			$passwd_type, false, true, true);	// true = let session fail on forced password change
+			$passwd_type, false, true, true); // true = let session fail on forced password change
 
 		if (!$GLOBALS['sessionid'] && $GLOBALS['egw']->session->cd_reason == Api\Session::CD_FORCE_PASSWORD_CHANGE)
 		{
@@ -264,7 +264,7 @@ 
 				}
 				else
 				{
-					$GLOBALS['sessionid'] = $GLOBALS['egw']->session->create($login,$_POST['new_passwd'],$passwd_type);
+					$GLOBALS['sessionid'] = $GLOBALS['egw']->session->create($login, $_POST['new_passwd'], $passwd_type);
 				}
 			}
 			else
@@ -276,29 +276,29 @@ 
 		{
 			// will show new login-screen incl. new password field below
 		}
-		elseif (!isset($GLOBALS['sessionid']) || ! $GLOBALS['sessionid'])
+		elseif (!isset($GLOBALS['sessionid']) || !$GLOBALS['sessionid'])
 		{
-			Api\Session::egw_setcookie('eGW_remember','',0,'/');
-			Egw::redirect_link('/login.php?cd=' . $GLOBALS['egw']->session->cd_reason);
+			Api\Session::egw_setcookie('eGW_remember', '', 0, '/');
+			Egw::redirect_link('/login.php?cd='.$GLOBALS['egw']->session->cd_reason);
 		}
 		else
 		{
 			/* set auth_cookie  */
-			if($GLOBALS['egw_info']['server']['allow_cookie_auth'] && $_POST['remember_me'] && $_POST['passwd'])
+			if ($GLOBALS['egw_info']['server']['allow_cookie_auth'] && $_POST['remember_me'] && $_POST['passwd'])
 			{
 				switch ($_POST['remember_me'])
 				{
 					case '1hour' :
-						$remember_time = time()+60*60;
+						$remember_time = time() + 60 * 60;
 						break;
 					case '1day' :
-						$remember_time = time()+60*60*24;
+						$remember_time = time() + 60 * 60 * 24;
 						break;
 					case '1week' :
-						$remember_time = time()+60*60*24*7;
+						$remember_time = time() + 60 * 60 * 24 * 7;
 						break;
 					case '1month' :
-						$remember_time = time()+60*60*24*30;
+						$remember_time = time() + 60 * 60 * 24 * 30;
 						break;
 					case 'forever' :
 					default:
@@ -310,17 +310,17 @@ 
 				// It is served unencrypted and saved as a cookie, which is not recommended
 				// !!!!! Never Never save credentials into cookies !!!!!
 				// Implement only sessions instead
-				$GLOBALS['egw']->session->egw_setcookie('eGW_remember',implode('::::',array(
+				$GLOBALS['egw']->session->egw_setcookie('eGW_remember', implode('::::', array(
 					'login' => $login,
 					'passwd' => $passwd,
 					'passwd_type' => $passwd_type)),
-					$remember_time,'/');	// make the cookie valid for the whole site (incl. sitemgr) and not only the eGW install-dir
+					$remember_time, '/'); // make the cookie valid for the whole site (incl. sitemgr) and not only the eGW install-dir
 			}
 
-			if ($_POST['lang'] && preg_match('/^[a-z]{2}(-[a-z]{2})?$/',$_POST['lang']) &&
+			if ($_POST['lang'] && preg_match('/^[a-z]{2}(-[a-z]{2})?$/', $_POST['lang']) &&
 				$_POST['lang'] != $GLOBALS['egw_info']['user']['preferences']['common']['lang'])
 			{
-				$GLOBALS['egw']->preferences->add('common','lang',$_POST['lang'],'session');
+				$GLOBALS['egw']->preferences->add('common', 'lang', $_POST['lang'], 'session');
 			}
 
 			// check if new translations are available
@@ -334,27 +334,27 @@ 
 			}
 			else
 			{
-				list($forward,$extra_vars) = explode('?',$forward,2);
+				list($forward, $extra_vars) = explode('?', $forward, 2);
 				$extra_vars .= ($extra_vars ? '&' : '').'cd=yes';
 			}
 
-			if(strpos($_SERVER['HTTP_REFERER'], $_SERVER['REQUEST_URI']) === false) {
+			if (strpos($_SERVER['HTTP_REFERER'], $_SERVER['REQUEST_URI']) === false) {
 				// login requuest does not come from login.php
 				// redirect to referer on logout
 				Api\Cache::setSession('login', 'referer', $_SERVER['HTTP_REFERER']);
 			}
-			$strength = ($GLOBALS['egw_info']['server']['force_pwd_strength']?$GLOBALS['egw_info']['server']['force_pwd_strength']:false);
-			if ($strength && $strength>5) $strength =5;
-			if ($strength && $strength<0) $strength = false;
+			$strength = ($GLOBALS['egw_info']['server']['force_pwd_strength'] ? $GLOBALS['egw_info']['server']['force_pwd_strength'] : false);
+			if ($strength && $strength > 5) $strength = 5;
+			if ($strength && $strength < 0) $strength = false;
 			// Check for save passwd
-			if($strength && $GLOBALS['egw_info']['server']['check_save_passwd'] && !$GLOBALS['egw']->acl->check('nopasswordchange', 1, 'preferences') &&
+			if ($strength && $GLOBALS['egw_info']['server']['check_save_passwd'] && !$GLOBALS['egw']->acl->check('nopasswordchange', 1, 'preferences') &&
 				($unsave_msg = $GLOBALS['egw']->auth->crackcheck($passwd, $strength)))
 			{
-				error_log('login::'.__LINE__.' User '. $login. ' authenticated with an unsave password'.' '.$unsave_msg);
+				error_log('login::'.__LINE__.' User '.$login.' authenticated with an unsave password'.' '.$unsave_msg);
 				$message = lang('eGroupWare checked your password for safetyness. You have to change your password for the following reason:')."\n";
 				Egw::redirect_link('/index.php', array(
 					'menuaction' => 'preferences.uipassword.change',
-					'message' => $message . $unsave_msg,
+					'message' => $message.$unsave_msg,
 					'cd' => 'yes',
 				));
 			}
@@ -362,66 +362,66 @@ 
 			{
 				// commiting the session, before redirecting might fix racecondition in session creation
 				$GLOBALS['egw']->session->commit_session();
-				Egw::redirect_link($forward,$extra_vars);
+				Egw::redirect_link($forward, $extra_vars);
 			}
 		}
 	}
 	// show login screen
-	if(isset($_COOKIE['last_loginid']))
+	if (isset($_COOKIE['last_loginid']))
 	{
 		$prefs = new Api\Preferences($GLOBALS['egw']->accounts->name2id($_COOKIE['last_loginid']));
 
-		if($prefs->account_id)
+		if ($prefs->account_id)
 		{
 			$GLOBALS['egw_info']['user']['preferences'] = $prefs->read_repository();
 		}
 	}
-	if ($_GET['lang'] && preg_match('/^[a-z]{2}(-[a-z]{2})?$/',$_GET['lang']))
+	if ($_GET['lang'] && preg_match('/^[a-z]{2}(-[a-z]{2})?$/', $_GET['lang']))
 	{
 		$GLOBALS['egw_info']['user']['preferences']['common']['lang'] = $_GET['lang'];
 	}
-	elseif(!isset($_COOKIE['last_loginid']) || !$prefs->account_id)
+	elseif (!isset($_COOKIE['last_loginid']) || !$prefs->account_id)
 	{
 		// If the lastloginid cookies isn't set, we will default to the first language,
 		// the users browser accepts.
-		list($lang) = explode(',',$_SERVER['HTTP_ACCEPT_LANGUAGE']);
-		if(strlen($lang) > 2)
+		list($lang) = explode(',', $_SERVER['HTTP_ACCEPT_LANGUAGE']);
+		if (strlen($lang) > 2)
 		{
-			$lang = substr($lang,0,2);
+			$lang = substr($lang, 0, 2);
 		}
 		$GLOBALS['egw_info']['user']['preferences']['common']['lang'] = $lang;
 	}
 	if ($_COOKIE['eGW_cookie_test'] !== 'enabled')
 	{
-		Api\Session::egw_setcookie('eGW_cookie_test','enabled',0);
+		Api\Session::egw_setcookie('eGW_cookie_test', 'enabled', 0);
 	}
 	#print 'LANG:' . $GLOBALS['egw_info']['user']['preferences']['common']['lang'] . '<br>';
-	Api\Translation::init();	// this will set the language according to the (new) set prefs
+	Api\Translation::init(); // this will set the language according to the (new) set prefs
 	Api\Translation::add_app('login');
 	Api\Translation::add_app('loginscreen');
-	$GLOBALS['loginscreenmessage'] = Api\Translation::translate('loginscreen_message',false,'');
-	if($GLOBALS['loginscreenmessage'] == 'loginscreen_message' || empty($GLOBALS['loginscreenmessage']))
+	$GLOBALS['loginscreenmessage'] = Api\Translation::translate('loginscreen_message', false, '');
+	if ($GLOBALS['loginscreenmessage'] == 'loginscreen_message' || empty($GLOBALS['loginscreenmessage']))
 	{
-		Api\Translation::add_app('loginscreen','en');	// trying the en one
-		$GLOBALS['loginscreenmessage'] = Api\Translation::translate('loginscreen_message',false,'');
+		Api\Translation::add_app('loginscreen', 'en'); // trying the en one
+		$GLOBALS['loginscreenmessage'] = Api\Translation::translate('loginscreen_message', false, '');
 	}
-	if($GLOBALS['loginscreenmessage'] == 'loginscreen_message' || empty($GLOBALS['loginscreenmessage']))
+	if ($GLOBALS['loginscreenmessage'] == 'loginscreen_message' || empty($GLOBALS['loginscreenmessage']))
 	{
 	   // remove the global var since the lang loginscreen message and its fallback (en) is empty or not set
 	   unset($GLOBALS['loginscreenmessage']);
 	}
 
-	foreach($_GET as $name => $value)
+	foreach ($_GET as $name => $value)
 	{
-		if(strpos($name,'phpgw_') !== false)
+		if (strpos($name, 'phpgw_') !== false)
 		{
-			$extra_vars .= '&' . $name . '=' . urlencode($value);
+			$extra_vars .= '&'.$name.'='.urlencode($value);
 		}
 	}
 
-	if($extra_vars)
+	if ($extra_vars)
 	{
-		$extra_vars = '?' . substr($extra_vars,1);
+		$extra_vars = '?'.substr($extra_vars, 1);
 	}
 
 	$GLOBALS['egw']->framework->login_screen($extra_vars, $force_password_change);