/**
* login.php -- simple login screen
*
* This a simple login screen. Some housekeeping is done to clean
* cookies and find language.
*
* @copyright 1999-2011 The SquirrelMail Project Team
* @license http://opensource.org/licenses/gpl-license.php GNU Public License
* @version $Id: login.php 14084 2011-01-06 02:44:03Z pdontthink $
* @package squirrelmail
*/
/** This is the login page */
define('PAGE_NAME', 'login');
/**
* $squirrelmail_language is set by a cookie when the user selects
* language and logs out
*/
set_up_language($squirrelmail_language, TRUE, TRUE);
/**
* In case the last session was not terminated properly, make sure
* we get a new one, but make sure we preserve session_expired_*
*/
$sep = '';
$sel = '';
sqGetGlobalVar('session_expired_post', $sep, SQ_SESSION);
sqGetGlobalVar('session_expired_location', $sel, SQ_SESSION);
/* blow away session */
sqsession_destroy();
/**
* in some rare instances, the session seems to stick
* around even after destroying it (!!), so if it does,
* we'll manually flatten the $_SESSION data
*/
if (!empty($_SESSION)) {
$_SESSION = array();
}
/**
* Allow administrators to define custom session handlers
* for SquirrelMail without needing to change anything in
* php.ini (application-level).
*
* In config_local.php, admin needs to put:
*
* $custom_session_handlers = array(
* 'my_open_handler',
* 'my_close_handler',
* 'my_read_handler',
* 'my_write_handler',
* 'my_destroy_handler',
* 'my_gc_handler',
* );
* session_module_name('user');
* session_set_save_handler(
* $custom_session_handlers[0],
* $custom_session_handlers[1],
* $custom_session_handlers[2],
* $custom_session_handlers[3],
* $custom_session_handlers[4],
* $custom_session_handlers[5]
* );
*
* We need to replicate that code once here because PHP has
* long had a bug that resets the session handler mechanism
* when the session data is also destroyed. Because of this
* bug, even administrators who define custom session handlers
* via a PHP pre-load defined in php.ini (auto_prepend_file)
* will still need to define the $custom_session_handlers array
* in config_local.php.
*/
global $custom_session_handlers;
if (!empty($custom_session_handlers)) {
$open = $custom_session_handlers[0];
$close = $custom_session_handlers[1];
$read = $custom_session_handlers[2];
$write = $custom_session_handlers[3];
$destroy = $custom_session_handlers[4];
$gc = $custom_session_handlers[5];
session_module_name('user');
session_set_save_handler($open, $close, $read, $write, $destroy, $gc);
}
/* put session_expired_* variables back in session */
sqsession_is_active();
if (!empty($sel)) {
sqsession_register($sel, 'session_expired_location');
if (!empty($sep))
sqsession_register($sep, 'session_expired_post');
}
/* If they don't have a logo, don't bother.. */
if (isset($org_logo) && $org_logo) {
/* Display width and height like good little people */
$width_and_height = '';
if (isset($org_logo_width) && is_numeric($org_logo_width) &&
$org_logo_width>0) {
$width_and_height = " width=\"$org_logo_width\"";
}
if (isset($org_logo_height) && is_numeric($org_logo_height) &&
$org_logo_height>0) {
$width_and_height .= " height=\"$org_logo_height\"";
}
}
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta name="robots" content="noindex,nofollow">
<meta http-equiv="x-dns-prefetch-control" content="off">
<script type="text/javascript" language="JavaScript">
<!--
if (self != top) { try { if (document.domain != top.document.domain) { throw "Clickjacking security violation! Please log out immediately!"; /* this code should never execute - exception should already have been thrown since it's a security violation in this case to even try to access top.document.domain (but it's left here just to be extra safe) */ } } catch (e) { self.location = "/webmail/src/signout.php"; top.location = "/webmail/src/signout.php" } }
// -->
</script>
<title>SquirrelMail - Login</title><script language="JavaScript" type="text/javascript">
<!--
var alreadyFocused = false;
function squirrelmail_loginpage_onload() {
document.login_form.js_autodetect_results.value = '1';
if (alreadyFocused) return;
var textElements = 0;
for (i = 0; i < document.login_form.elements.length; i++) {
if (document.login_form.elements[i].type == "text" || document.login_form.elements[i].type == "password") {
textElements++;
if (textElements == 1) {
document.login_form.elements[i].focus();
break;
}
}
}
}
// -->
</script>
<!--[if IE 6]>
<style type="text/css">
/* avoid stupid IE6 bug with frames and scrollbars */
body {
width: expression(document.documentElement.clientWidth - 30);
}
</style>
<![endif]-->