Release 6.2.4

[Github/sugarcrm.git] / modules / Users / Login.php

<?php
if(!defined('sugarEntry') || !sugarEntry) die('Not A Valid Entry Point');
/*********************************************************************************
 * SugarCRM Community Edition is a customer relationship management program developed by
 * SugarCRM, Inc. Copyright (C) 2004-2011 SugarCRM Inc.
 * 
 * This program is free software; you can redistribute it and/or modify it under
 * the terms of the GNU Affero General Public License version 3 as published by the
 * Free Software Foundation with the addition of the following permission added
 * to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
 * IN WHICH THE COPYRIGHT IS OWNED BY SUGARCRM, SUGARCRM DISCLAIMS THE WARRANTY
 * OF NON INFRINGEMENT OF THIRD PARTY RIGHTS.
 * 
 * This program is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
 * FOR A PARTICULAR PURPOSE.  See the GNU Affero General Public License for more
 * details.
 * 
 * You should have received a copy of the GNU Affero General Public License along with
 * this program; if not, see http://www.gnu.org/licenses or write to the Free
 * Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
 * 02110-1301 USA.
 * 
 * You can contact SugarCRM, Inc. headquarters at 10050 North Wolfe Road,
 * SW2-130, Cupertino, CA 95014, USA. or at email address contact@sugarcrm.com.
 * 
 * The interactive user interfaces in modified source and object code versions
 * of this program must display Appropriate Legal Notices, as required under
 * Section 5 of the GNU Affero General Public License version 3.
 * 
 * In accordance with Section 7(b) of the GNU Affero General Public License version 3,
 * these Appropriate Legal Notices must retain the display of the "Powered by
 * SugarCRM" logo. If the display of the logo is not reasonably feasible for
 * technical reasons, the Appropriate Legal Notices must display the words
 * "Powered by SugarCRM".
 ********************************************************************************/

/*********************************************************************************

 * Description: TODO:  To be written.
 * Portions created by SugarCRM are Copyright (C) SugarCRM, Inc.
 * All Rights Reserved.
 * Contributor(s): ______________________________________..
 ********************************************************************************/
if (isset($_SESSION['authenticated_user_id']))
{
    ob_clean();
    // fixing bug #46837: Previosly links/URLs to records in Sugar from MSO Excel/Word were referred to the home screen and not the record
    // It used to appear when default browser was not MS IE 
    $nav = '';
    $nav .= (isset($_GET['login_module'])) ? '&module='.$_GET['login_module'] : '';
    $nav .= (isset($_GET['login_action'])) ? '&action='.$_GET['login_action'] : '';
    $nav .= (isset($_GET['login_record'])) ? '&record='.$_GET['login_record'] : '';
    
    ($nav == '') 
        ? header("Location: index.php?module=Home&action=index") 
        : header("Location: index.php?".substr($nav, 1));
    
    sugar_cleanup(true);
    return;
}
global $current_language, $mod_strings, $app_strings;
if(isset($_REQUEST['login_language'])){
    $lang = $_REQUEST['login_language'];
    $_REQUEST['ck_login_language_20'] = $lang;
        $current_language = $lang;
    $_SESSION['authenticated_user_language'] = $lang;
    $mod_strings = return_module_language($lang, "Users");
    $app_strings = return_application_language($lang);
}
$sugar_smarty = new Sugar_Smarty();
echo '<link rel="stylesheet" type="text/css" media="all" href="'.getJSPath('modules/Users/login.css').'">';
echo '<script type="text/javascript" src="'.getJSPath('modules/Users/login.js').'"></script>';
global $app_language, $sugar_config;
//we don't want the parent module's string file, but rather the string file specifc to this subpanel
global $current_language;

// Get the login page image
if ( sugar_is_file('custom/include/images/sugar_md.png') ) {
    $login_image = '<IMG src="custom/include/images/sugar_md.png" alt="Sugar" width="340" height="25">';
}
else {
    $login_image = '<IMG src="include/images/sugar_md_open.png" alt="Sugar" width="340" height="25" style="margin: 5px 0;">';
}
$sugar_smarty->assign('LOGIN_IMAGE',$login_image);

// See if any messages were passed along to display to the user.
if(isset($_COOKIE['loginErrorMessage'])) {
    if ( !isset($_REQUEST['loginErrorMessage']) ) {
        $_REQUEST['loginErrorMessage'] = $_COOKIE['loginErrorMessage'];
    }
    SugarApplication::setCookie('loginErrorMessage', '', time()-42000, '/');
}
if(isset($_REQUEST['loginErrorMessage'])) {
    if (isset($mod_strings[$_REQUEST['loginErrorMessage']])) {
        echo "<p align='center' class='error' > ". $mod_strings[$_REQUEST['loginErrorMessage']]. "</p>";
    } else if (isset($app_strings[$_REQUEST['loginErrorMessage']])) {
        echo "<p align='center' class='error' > ". $app_strings[$_REQUEST['loginErrorMessage']]. "</p>";
    }
}
$query = "SELECT count(id) as total from users WHERE status='Active' AND deleted=0 AND is_group=0 AND portal_only=0";



if (isset($_GET['login_module']))
        $sugar_smarty->assign('LOGIN_MODULE', $_GET['login_module']);
if (isset($_GET['login_action']))
        $sugar_smarty->assign('LOGIN_ACTION', $_GET['login_action']);
if (isset($_GET['login_record']))
        $sugar_smarty->assign('LOGIN_RECORD', $_GET['login_record']);

// Retrieve username from the session if possible.
if(isset($_SESSION["login_user_name"])) {
        if (isset($_REQUEST['default_user_name']))
                $login_user_name = $_REQUEST['default_user_name'];
        else
                $login_user_name = $_SESSION['login_user_name'];
} else {
        if(isset($_REQUEST['default_user_name'])) {
                $login_user_name = $_REQUEST['default_user_name'];
        } elseif(isset($_REQUEST['ck_login_id_20'])) {
                $login_user_name = get_user_name($_REQUEST['ck_login_id_20']);
        } else {
                $login_user_name = $sugar_config['default_user_name'];
        }
        $_SESSION['login_user_name'] = $login_user_name;
}
$sugar_smarty->assign('LOGIN_USER_NAME', $login_user_name);

$mod_strings['VLD_ERROR'] = $GLOBALS['app_strings']["\x4c\x4f\x47\x49\x4e\x5f\x4c\x4f\x47\x4f\x5f\x45\x52\x52\x4f\x52"];

// Retrieve password from the session if possible.
if(isset($_SESSION["login_password"])) {
        $login_password = $_SESSION['login_password'];
} else {
        $login_password = $sugar_config['default_password'];
        $_SESSION['login_password'] = $login_password;
}
$sugar_smarty->assign('LOGIN_PASSWORD', $login_password);

if(isset($_SESSION["login_error"])) {
        $sugar_smarty->assign('LOGIN_ERROR', $_SESSION['login_error']);
}
if(isset($_SESSION["waiting_error"])) {
    $sugar_smarty->assign('WAITING_ERROR', $_SESSION['waiting_error']);
}

if (isset($_REQUEST['ck_login_language_20'])) {
        $display_language = $_REQUEST['ck_login_language_20'];
} else {
        $display_language = $sugar_config['default_language'];
}

if (empty($GLOBALS['sugar_config']['passwordsetting']['forgotpasswordON']))
        $sugar_smarty->assign('DISPLAY_FORGOT_PASSWORD_FEATURE','none');

$the_languages = get_languages();
if ( count($the_languages) > 1 )
    $sugar_smarty->assign('SELECT_LANGUAGE', get_select_options_with_id($the_languages, $display_language));
$the_themes = SugarThemeRegistry::availableThemes();
if ( !empty($logindisplay) )
        $sugar_smarty->assign('LOGIN_DISPLAY', $logindisplay);;

// RECAPTCHA

        $admin = new Administration();
        $admin->retrieveSettings('captcha');
        $captcha_privatekey = "";
        $captcha_publickey="";
        $captcha_js = "";
        $Captcha='';

        // if the admin set the captcha stuff, assign javascript and div
        if(isset($admin->settings['captcha_on'])&& $admin->settings['captcha_on']=='1' && !empty($admin->settings['captcha_private_key']) && !empty($admin->settings['captcha_public_key'])){

                        $captcha_privatekey = $admin->settings['captcha_private_key'];
                        $captcha_publickey = $admin->settings['captcha_public_key'];
                        $captcha_js .="<script type='text/javascript' src='" . getJSPath('include/javascript/sugar_grp1_yui.js') . "'></script><script type='text/javascript' src='" . getJSPath('include/javascript/sugar_grp_yui2.js') . "'></script>
                        <script type='text/javascript' src='http://api.recaptcha.net/js/recaptcha_ajax.js'></script>
                        <script>
                        function initCaptcha(){
                        Recaptcha.create('$captcha_publickey' ,'captchaImage',{theme:'custom'});
                        }
                        window.onload=initCaptcha;

                        var handleFailure=handleSuccess;
                        var handleSuccess = function(o){
                                if(o.responseText!==undefined && o.responseText =='Success'){
                                        generatepwd();
                                        Recaptcha.reload();
                                }
                                else{
                                        if(o.responseText!='')
                                                document.getElementById('generate_success').innerHTML =o.responseText;
                                        Recaptcha.reload();
                                }
                        }
                        var callback2 ={ success:handleSuccess, failure: handleFailure };

                        function validateAndSubmit(){
                                        var form = document.getElementById('form');
                                        var url = '&to_pdf=1&module=Home&action=index&entryPoint=Changenewpassword&recaptcha_challenge_field='+Recaptcha.get_challenge()+'&recaptcha_response_field='+ Recaptcha.get_response();
                                        YAHOO.util.Connect.asyncRequest('POST','index.php',callback2,url);
                        }</script>";
                $Captcha.="<tr>
                        <td scope='row' width='20%'>".$mod_strings['LBL_RECAPTCHA_INSTRUCTION'].":</td>
                    <td width='70%'><input type='text' size='26' id='recaptcha_response_field' value=''></td>

                </tr>
                <tr>

                        <td colspan='2'><div style='margin-left:2px'class='x-sqs-list' id='recaptcha_image'></div></td>
                </tr>
                <tr>
                        <td colspan='2' align='right'><a href='javascript:Recaptcha.reload()'>".$mod_strings['LBL_RECAPTCHA_NEW_CAPTCHA']."</a>&nbsp;&nbsp;
                                        <a class='recaptcha_only_if_image' href='javascript:Recaptcha.switch_type(\"audio\")'>".$mod_strings['LBL_RECAPTCHA_SOUND']."</a>
                                        <a class='recaptcha_only_if_audio' href='javascript:Recaptcha.switch_type(\"image\")'> ".$mod_strings['LBL_RECAPTCHA_IMAGE']."</a>
                        </td>
                </tr>";
                $sugar_smarty->assign('CAPTCHA', $Captcha);
                echo $captcha_js;

        }else{
                echo "<script>
                function validateAndSubmit(){generatepwd();}
                </script>";
        }

$sugar_smarty->display('modules/Users/login.tpl'); ?>