1
|
|
|
<?php |
2
|
|
|
/** |
3
|
|
|
* Elgg login action |
4
|
|
|
* |
5
|
|
|
* @package Elgg.Core |
6
|
|
|
* @subpackage User.Authentication |
7
|
|
|
*/ |
8
|
|
|
|
9
|
|
|
$session = elgg_get_session(); |
10
|
|
|
//break |
11
|
|
|
// set forward url |
12
|
|
View Code Duplication |
if ($session->has('last_forward_from')) { |
13
|
|
|
$forward_url = $session->get('last_forward_from'); |
14
|
|
|
$forward_source = 'last_forward_from'; |
15
|
|
|
} elseif (get_input('returntoreferer')) { |
16
|
|
|
$forward_url = REFERER; |
17
|
|
|
$forward_source = 'return_to_referer'; |
18
|
|
|
} else { |
19
|
|
|
// forward to main index page |
20
|
|
|
$forward_url = ''; |
21
|
|
|
$forward_source = null; |
22
|
|
|
} |
23
|
|
|
|
24
|
|
|
$username = get_input('username'); |
25
|
|
|
$password = get_input('password', null, false); |
26
|
|
|
$persistent = (bool) get_input("persistent"); |
27
|
|
|
$result = false; |
28
|
|
|
|
29
|
|
|
if (empty($username) || empty($password)) { |
30
|
|
|
register_error(elgg_echo('login:empty')); |
31
|
|
|
forward(); |
32
|
|
|
} |
33
|
|
|
|
34
|
|
|
// check if logging in with email address |
35
|
|
View Code Duplication |
if (strpos($username, '@') !== false && ($users = get_user_by_email($username))) { |
36
|
|
|
$username = $users[0]->username; |
37
|
|
|
} |
38
|
|
|
|
39
|
|
|
$result = elgg_authenticate($username, $password); |
40
|
|
|
if ($result !== true) { |
41
|
|
|
register_error($result); |
|
|
|
|
42
|
|
|
forward(REFERER); |
43
|
|
|
} |
44
|
|
|
|
45
|
|
|
$user = get_user_by_username($username); |
46
|
|
|
if (!$user) { |
47
|
|
|
register_error(elgg_echo('login:baduser')); |
48
|
|
|
forward(REFERER); |
49
|
|
|
} |
50
|
|
|
|
51
|
|
|
try { |
52
|
|
|
login($user, $persistent); |
53
|
|
|
// re-register at least the core language file for users with language other than site default |
54
|
|
|
register_translations(dirname(dirname(__FILE__)) . "/languages/"); |
55
|
|
|
} catch (LoginException $e) { |
56
|
|
|
register_error($e->getMessage()); |
57
|
|
|
forward(REFERER); |
58
|
|
|
} |
59
|
|
|
|
60
|
|
|
// elgg_echo() caches the language and does not provide a way to change the language. |
61
|
|
|
// @todo we need to use the config object to store this so that the current language |
62
|
|
|
// can be changed. Refs #4171 |
63
|
|
|
if ($user->language) { |
64
|
|
|
$message = elgg_echo('loginok', array(), $user->language); |
65
|
|
|
} else { |
66
|
|
|
$message = elgg_echo('loginok'); |
67
|
|
|
} |
68
|
|
|
|
69
|
|
|
// clear after login in case login fails |
70
|
|
|
$session->remove('last_forward_from'); |
71
|
|
|
|
72
|
|
|
$params = array('user' => $user, 'source' => $forward_source); |
73
|
|
|
$forward_url = elgg_trigger_plugin_hook('login:forward', 'user', $params, $forward_url); |
74
|
|
|
|
75
|
|
|
system_message($message); |
76
|
|
|
//comment oout for SSO |
77
|
|
|
forward($forward_url); |
78
|
|
|
|
If a method or function can return multiple different values and unless you are sure that you only can receive a single value in this context, we recommend to add an additional type check:
If this a common case that PHP Analyzer should handle natively, please let us know by opening an issue.