<?php
require_once dirname(__FILE__) . '/page.auth.php';
-require_once dirname(__FILE__) . '/page.auth.admin.php';
require_once dirname(__FILE__) . '/widget.auth.php';
$core->url->register('xorgAuth', 'Xorg', '^auth/(.*)$', array('xorgAuthentifier', 'doAuth'));
-$core->url->register('xorgLogin', 'XorgLogin', '^admin/(xorg\.php)$', array('xorgLoginPage', 'page'));
-
-
?>
private function buildFromSession() {
global $core;
+ @header('Last-Modified:');
if (!isset($core) || !isset($core->session)) {
return;
}
$core->session->start();
- if (@$_SESSION['auth-xorg'] && is_null($this->xorg_infos['forlife'])) {
+ $user = @$_SESSION['auth-xorg'];
+ if ($user && is_null($this->xorg_infos['forlife'])) {
foreach ($this->xorg_infos as $key => $val) {
$this->xorg_infos[$key] = $_SESSION['auth-xorg-' . $key];
}
- $this->user_id = $_SESSION['auth-xorg'];
+ $this->user_id = $user;
parent::checkUser($this->user_id);
}
}
return true;
}
global $core;
+
+ if (!$this->sessionExists()) {
+ session_write_close();
+ header("Location: " . $core->blog->url . 'auth/Xorg?path=' . $path);
+ exit;
+ }
+
$_SESSION["auth-x-challenge"] = md5(uniqid(rand(), 1));
$url = "https://www.polytechnique.org/auth-groupex/utf8";
$url .= "?session=" . session_id();
}
$params = '';
global $core;
+ $_COOKIE[DC_SESSION_NAME] = $_GET['PHPSESSID'];
+ unset($_GET['PHPSESSID']);
$core->session->start();
foreach($this->xorg_infos as $key => $val) {
if(!isset($_GET[$key])) {
$_SESSION['sess_browser_uid'] = http::browserUID(DC_MASTER_KEY);
$_SESSION['sess_blog_id'] = 'default';
$this->createUser();
+ $path = $_GET['path'];
header("Location: http://murphy.m4x.org" . $_GET['path']);
exit;
}
$this->buildFromSession();
return parent::getOptions();
}
+
+ public function authForm() {
+ global $core;
+ $path = "http://murphy.m4x.org/~x2003bruneau/dotclear/";
+ return '<fieldset>'.
+ '<p><a href="' . $path . 'auth/Xorg?path=/~x2003bruneau/dotclear/admin/index.php">Via Polytechnique.org</a></p>' .
+ '<p><a href="' . $path . 'admin/auth.php">Via le formulaire</a></p>' .
+ '</fieldset>'.
+ '<p>'.__('You must accept cookies in order to use the private area.').'</p>';
+ }
}
?>
+++ /dev/null
-<?php
-
-class xorgLoginPage extends dcUrlHandlers {
- static public function page($args) {
- switch ($args) {
- case 'xorg.php':
- self::dispatchForm();
- default:
- self::p404();
- }
- }
-
- static protected function dispatchForm() {
- # If we have a session cookie, go to index.php
- if (isset($_SESSION['sess_user_id']))
- {
- global $core;
- header('Location: ' . $core->blog->url . 'admin/index.php');
- }
-
- # Loading locales for detected language
- $dlang = http::getAcceptLanguage();
- if ($dlang) {
- l10n::set(dirname(__FILE__).'/../locales/'.$dlang.'/main');
- }
-
- global $core;
- $msg = $err = null;
- header('Content-Type: text/html; charset=UTF-8');
- ?>
- <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
- <html xmlns="http://www.w3.org/1999/xhtml"
- xml:lang="en" lang="en">
- <head>
- <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
- <meta http-equiv="Content-Script-Type" content="text/javascript" />
- <meta http-equiv="Content-Style-Type" content="text/css" />
- <meta http-equiv="Content-Language" content="en" />
- <meta name="MSSmartTagsPreventParsing" content="TRUE" />
- <meta name="ROBOTS" content="NOARCHIVE,NOINDEX,NOFOLLOW" />
- <meta name="GOOGLEBOT" content="NOSNIPPET" />
- <title><?php echo html::escapeHTML(DC_VENDOR_NAME); ?></title>
-
- <?php
- echo dcPage::jsLoadIE7();
- echo dcPage::jsCommon();
- ?>
-
- <style type="text/css">
- @import url(style/default.css);
- </style>
- <?php
- # --BEHAVIOR-- loginPageHTMLHead
- $core->callBehavior('loginPageHTMLHead');
- ?>
- </head>
-
- <body id="dotclear-admin" class="auth">
-
- <form action="xorg.php" method="post" id="login-screen">
- <h1><?php echo html::escapeHTML(DC_VENDOR_NAME); ?></h1>
-
- <?php
- if ($err) {
- echo '<div class="error">'.$err.'</div>';
- }
- if ($msg) {
- echo '<p class="message">'.$msg.'</p>';
- }
-
- {
- echo
- '<fieldset>'.
- '<p><a href="' . $core->blog->url . 'auth/Xorg?path=/~x2003bruneau/dotclear/admin/index.php">Via Polytechnique.org</a></p>' .
- '<p><a href="' . $core->blog->url . 'admin/auth.php">Via le formulaire</a></p>' .
- '</fieldset>'.
- '<p>'.__('You must accept cookies in order to use the private area.').'</p>';
- }
- ?>
- </form>
-
- <script type="text/javascript">
- //<![CDATA[
- $('input[@name="user_id"]').get(0).focus();
- //]]>
- </script>
-
- </body>
- </html>
-<?php
- exit;
- }
-}
-
-?>
static public function widget(&$w) {
global $core;
$name = $core->auth->userID();
+ var_dump($_SESSION);
+ var_dump($_REQUEST);
+ echo "sessionid = " . session_id();
if ($name) {
return '<p>Tu es ' . $core->auth->getInfo('user_displayname') . '<br />'
. '<a href="' . $core->blog->url . 'auth/exit">déconnexion</a></p>';
projects / dotclear.git / commitdiff