2 /**********************************************************************
3 Copyright (C) FrontAccounting, LLC.
4 Released under the terms of the GNU General Public License, GPL,
5 as published by the Free Software Foundation, either version 3
6 of the License, or (at your option) any later version.
7 This program is distributed in the hope that it will be useful,
8 but WITHOUT ANY WARRANTY; without even the implied warranty of
9 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
10 See the License here <http://www.gnu.org/licenses/gpl-3.0.html>.
11 ***********************************************************************/
12 if (!isset($path_to_root) || isset($_GET['path_to_root']) || isset($_POST['path_to_root']))
13 die(_("Restricted access"));
14 include_once($path_to_root . "/includes/ui.inc");
15 include_once($path_to_root . "/includes/page/header.inc");
17 $js = "<script language='JavaScript' type='text/javascript'>
18 function defaultCompany()
20 document.forms[0].company_login_name.options[".user_company()."].selected = true;
24 add_js_file('login.js');
25 // Display demo user name and password within login form if allow_demo_mode option is true
26 if ($SysPrefs->allow_demo_mode == true)
28 $demo_text = _("Login as user: demouser and password: password");
32 $demo_text = _("Please login here");
33 if (@$SysPrefs->allow_password_reset) {
34 $demo_text .= " "._("or")." <a href='$path_to_root/index.php?reset=1'>"._("request new password")."</a>";
42 $js .= "<script>setTimeout(function() {
43 document.getElementsByName('SubmitUser')[0].disabled=0;
44 document.getElementById('log_msg').innerHTML='$demo_text'}, 1000*".$SysPrefs->login_delay.");</script>";
45 $demo_text = '<span class="redfg">'._('Too many failed login attempts.<br>Please wait a while or try later.').'</span>';
46 } elseif ($_SESSION["wa_current_user"]->login_attempt > 1) {
47 $demo_text = '<span class="redfg">'._("Invalid password or username. Please, try again.").'</span>';
50 flush_dir(user_js_cache());
53 $def_theme = "default";
55 $login_timeout = $_SESSION["wa_current_user"]->last_act;
57 $title = $login_timeout ? _('Authorization timeout') : $SysPrefs->app_title." ".$version." - "._("Login");
58 $encoding = isset($_SESSION['language']->encoding) ? $_SESSION['language']->encoding : "iso-8859-1";
59 $rtl = isset($_SESSION['language']->dir) ? $_SESSION['language']->dir : "ltr";
60 $onload = !$login_timeout ? "onload='defaultCompany()'" : "";
62 echo "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\" \"http://www.w3.org/TR/html4/loose.dtd\">\n";
63 echo "<html dir='$rtl' >\n";
64 echo "<head profile=\"http://www.w3.org/2005/10/profile\"><title>$title</title>\n";
65 echo "<meta http-equiv='Content-type' content='text/html; charset=$encoding' >\n";
66 echo "<link href='$path_to_root/themes/$def_theme/default.css' rel='stylesheet' type='text/css'> \n";
67 echo "<link href='$path_to_root/themes/default/images/favicon.ico' rel='icon' type='image/x-icon'> \n";
76 echo "<body id='loginscreen' $onload>\n";
78 echo "<table class='titletext'><tr><td>$title</td></tr></table>\n";
80 div_start('_page_body');
82 start_form(false, false, $_SESSION['timeout']['uri'], "loginform");
83 start_table(false, "class='login'");
86 echo "<td align='center' colspan=2>";
87 if (!$login_timeout) { // FA logo
88 echo "<a target='_blank' href='".$SysPrefs->power_url."'><img src='$path_to_root/themes/$def_theme/images/logo_frontaccounting.png' alt='FrontAccounting' height='50' onload='fixPNG(this)' border='0' ></a>";
90 echo "<font size=5>"._('Authorization timeout')."</font>";
95 table_section_title(_("Version")." $version Build ".$SysPrefs->build_version." - "._("Login"));
97 $value = $login_timeout ? $_SESSION['wa_current_user']->loginname : ($SysPrefs->allow_demo_mode ? "demouser":"");
99 $allow = SECURE_ONLY !== true ? true : (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') || $_SERVER['SERVER_NAME'] === "localhost";
103 text_row(_("User name"), "user_name_entry_field", $value, 20, 30);
105 $password = $SysPrefs->allow_demo_mode ? "password":"";
107 password_row(_("Password:"), 'password', $password);
109 if ($login_timeout) {
110 hidden('company_login_name', user_company());
112 $coy = user_company();
115 if (isset($db_connections)) {
116 if (!@$SysPrefs->text_company_selection) {
117 echo "<tr><td>"._("Company")."</td><td><select name='company_login_name'>\n";
118 for ($i = 0; $i < count($db_connections); $i++)
119 echo "<option value=$i ".($i==$coy ? 'selected':'') .">" . $db_connections[$i]["name"] . "</option>";
123 text_row(_("Company"), "company_login_nickname", "", 20, 50);
129 $demo_text = '<span class="redfg">'._("HTTP access is not allowed on this site. This is unsecure. If you really want to access this unsecure site then set the SECURE_ONLY to false in /includes/session.inc file.").'</span>';
132 label_cell($demo_text, "colspan=2 align='center' id='log_msg'");
135 echo "<input type='hidden' id=ui_mode name='ui_mode' value='".!fallback_mode()."' >\n";
137 echo "<center><input type='submit' value=' "._("Login -->")." ' name='SubmitUser'"
138 ." onclick='".(in_ajax() ? 'retry();': 'set_fullmode();')."'".(isset($blocked) ? " disabled" : '')." ></center>\n";
140 foreach($_SESSION['timeout']['post'] as $p => $val) {
141 // add all request variables to be resend together with login data
142 if (!in_array($p, array('ui_mode', 'user_name_entry_field',
143 'password', 'SubmitUser', 'company_login_name')))
145 echo "<input type='hidden' name='$p' value='$val'>";
147 foreach($val as $i => $v)
148 echo "<input type='hidden' name='{$p}[$i]' value='$v'>";
151 $Ajax->addScript(true, "if (document.forms.length) document.forms[0].password.focus();");
153 echo "<script language='JavaScript' type='text/javascript'>
156 document.forms[0].user_name_entry_field.select();
157 document.forms[0].user_name_entry_field.focus();
162 echo "<table class='bottomBar'>\n";
164 if (isset($_SESSION['wa_current_user']))
165 $date = Today() . " | " . Now();
167 $date = date("m/d/Y") . " | " . date("h.i am");
168 echo "<td class='bottomBarCell'>$date</td>\n";
169 echo "</tr></table>\n";
170 echo "<table class='footer'>\n";
172 echo "<td><a target='_blank' href='".$SysPrefs->power_url."' tabindex='-1'>".$SysPrefs->app_title." $version - " . _("Theme:") . " " . $def_theme . "</a></td>\n";
175 echo "<td><a target='_blank' href='".$SysPrefs->power_url."' tabindex='-1'>".$SysPrefs->power_by."</a></td>\n";
177 echo "</table><br><br>\n";
178 echo "</body></html>\n";