123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160 |
- <?php
-
- /* This Source Code Form is subject to the terms of the Mozilla Public
- * License, v. 2.0. If a copy of the MPL was not distributed with this
- * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
-
- require_once __DIR__ . "/required.php";
-
- require_once __DIR__ . "/lib/login.php";
-
- // if we're logged in, we don't need to be here.
- if ($_SESSION['loggedin']) {
- header('Location: app.php');
- }
-
- /* Authenticate user */
- $userpass_ok = false;
- $multiauth = false;
- if (checkLoginServer()) {
- if ($VARS['progress'] == "1") {
- if (!RECAPTCHA_ENABLED || (RECAPTCHA_ENABLED && verifyReCaptcha($VARS['g-recaptcha-response']))) {
- $errmsg = "";
- if (authenticate_user($VARS['username'], $VARS['password'], $errmsg)) {
- switch (get_account_status($VARS['username'])) {
- case "LOCKED_OR_DISABLED":
- $alert = lang("account locked", false);
- break;
- case "TERMINATED":
- $alert = lang("account terminated", false);
- break;
- case "CHANGE_PASSWORD":
- $alert = lang("password expired", false);
- case "NORMAL":
- $userpass_ok = true;
- break;
- case "ALERT_ON_ACCESS":
- sendLoginAlertEmail($VARS['username']);
- $userpass_ok = true;
- break;
- }
- if ($userpass_ok) {
- $_SESSION['passok'] = true; // stop logins using only username and authcode
- if (userHasTOTP($VARS['username'])) {
- $multiauth = true;
- } else {
- doLoginUser($VARS['username'], $VARS['password']);
- header('Location: app.php');
- die("Logged in, go to app.php");
- }
- }
- } else {
- if (!is_empty($errmsg)) {
- $alert = lang2("login server error", ['arg' => $errmsg], false);
- } else {
- $alert = lang("login incorrect", false);
- }
- }
- } else {
- $alert = lang("captcha error", false);
- }
- } else if ($VARS['progress'] == "2") {
- if ($_SESSION['passok'] !== true) {
- // stop logins using only username and authcode
- sendError("Password integrity check failed!");
- }
- if (verifyTOTP($VARS['username'], $VARS['authcode'])) {
- if (doLoginUser($VARS['username'])) {
- header('Location: app.php');
- die("Logged in, go to app.php");
- } else {
- $alert = lang("login server user data error", false);
- }
- } else {
- $alert = lang("2fa incorrect", false);
- }
- }
- } else {
- $alert = lang("login server unavailable", false);
- }
- header("Link: <static/css/bootstrap.min.css>; rel=preload; as=style", false);
- header("Link: <static/css/material-color/material-color.min.css>; rel=preload; as=style", false);
- header("Link: <static/css/index.css>; rel=preload; as=style", false);
- header("Link: <static/js/jquery-3.3.1.min.js>; rel=preload; as=script", false);
- header("Link: <static/js/bootstrap.min.js>; rel=preload; as=script", false);
- ?>
- <!DOCTYPE html>
- <html>
- <head>
- <meta charset="UTF-8">
- <meta http-equiv="X-UA-Compatible" content="IE=edge">
- <meta name="viewport" content="width=device-width, initial-scale=1">
-
- <title><?php echo SITE_TITLE; ?></title>
-
- <link rel="icon" href="static/img/logo.svg">
-
- <link href="static/css/bootstrap.min.css" rel="stylesheet">
- <link href="static/css/material-color/material-color.min.css" rel="stylesheet">
- <link href="static/css/index.css" rel="stylesheet">
- <?php if (RECAPTCHA_ENABLED) { ?>
- <script src='https://www.google.com/recaptcha/api.js'></script>
- <?php } ?>
- </head>
- <body>
- <div class="row justify-content-center">
- <div class="col-auto">
- <img class="banner-image" src="static/img/logo.png" />
- </div>
- </div>
- <div class="row justify-content-center">
- <div class="card col-11 col-xs-11 col-sm-8 col-md-6 col-lg-4">
- <div class="card-body">
- <h5 class="card-title"><?php lang("sign in"); ?></h5>
- <form action="" method="POST">
- <?php
- if (!is_empty($alert)) {
- ?>
- <div class="alert alert-danger">
- <i class="fa fa-fw fa-exclamation-triangle"></i> <?php echo $alert; ?>
- </div>
- <?php
- }
-
- if ($multiauth != true) {
- ?>
- <input type="text" class="form-control" name="username" placeholder="<?php lang("username"); ?>" required="required" autocomplete="off" autocorrect="off" autocapitalize="off" spellcheck="false" autofocus /><br />
- <input type="password" class="form-control" name="password" placeholder="<?php lang("password"); ?>" required="required" autocomplete="off" autocorrect="off" autocapitalize="off" spellcheck="false" /><br />
- <?php if (RECAPTCHA_ENABLED) { ?>
- <div class="g-recaptcha" data-sitekey="<?php echo RECAPTCHA_SITE_KEY; ?>"></div>
- <br />
- <?php } ?>
- <input type="hidden" name="progress" value="1" />
- <?php
- } else if ($multiauth) {
- ?>
- <div class="alert alert-info">
- <?php lang("2fa prompt"); ?>
- </div>
- <input type="text" class="form-control" name="authcode" placeholder="<?php lang("authcode"); ?>" required="required" autocomplete="off" autocorrect="off" autocapitalize="off" spellcheck="false" autofocus /><br />
- <input type="hidden" name="progress" value="2" />
- <input type="hidden" name="username" value="<?php echo $VARS['username']; ?>" />
- <?php
- }
- ?>
- <button type="submit" class="btn btn-primary">
- <?php lang("continue"); ?>
- </button>
- </form>
- </div>
- </div>
- </div>
- <div class="footer">
- <?php echo FOOTER_TEXT; ?><br />
- Copyright © <?php echo date('Y'); ?> <?php echo COPYRIGHT_NAME; ?>
- </div>
- </div>
- <script src="static/js/jquery-3.3.1.min.js"></script>
- <script src="static/js/bootstrap.min.js"></script>
- </body>
- </html>
|