X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;ds=inline;f=access%2Flogin.php;h=45294376db2c38bfc262a99fac70dd554ab62cf2;hb=87ac1ff401682a1ccbbbf01ece7afe8ff518d3fe;hp=24a74a1c0ac079287f29c59eb9fa12dd42c53210;hpb=0c7e0756d4b52a0f9a9bd25c44eaeed131c2e179;p=fa-stable.git

diff --git a/access/login.php b/access/login.php
index 24a74a1c..45294376 100644
--- a/access/login.php
+++ b/access/login.php
@@ -29,6 +29,19 @@ function defaultCompany()
 	else
 	{
 		$demo_text = _("Please login here");
+    if (@$allow_password_reset) {
+      $demo_text .= " "._("or")." <a href='$path_to_root/index.php?reset=1'>"._("request new password")."</a>";
+    }
+	}
+
+	if (check_faillog())
+	{
+		$blocked_msg = '<span class=redfg>'._('Too many failed login attempts.<br>Please wait a while or try later.').'</span>';
+
+	    $js .= "<script>setTimeout(function() {
+	    	document.getElementsByName('SubmitUser')[0].disabled=0;
+	    	document.getElementById('log_msg').innerHTML='$demo_text'}, 1000*$login_delay);</script>";
+	    $demo_text = $blocked_msg;
 	}
 	if (!isset($def_coy))
 		$def_coy = 0;
@@ -43,9 +56,10 @@ function defaultCompany()
 
 	echo "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\" \"http://www.w3.org/TR/html4/loose.dtd\">\n";
 	echo "<html dir='$rtl' >\n";
-	echo "<head><title>$title</title>\n";
+	echo "<head profile=\"http://www.w3.org/2005/10/profile\"><title>$title</title>\n";
    	echo "<meta http-equiv='Content-type' content='text/html; charset=$encoding' />\n";
 	echo "<link href='$path_to_root/themes/$def_theme/default.css' rel='stylesheet' type='text/css'> \n";
+ 	echo "<link href='$path_to_root/themes/default/images/favicon.ico' rel='icon' type='image/x-icon'> \n";
 	send_scripts();
 	if (!$login_timeout)
 	{
@@ -97,21 +111,25 @@ function defaultCompany()
 			echo "</td></tr>";
 		} else {
 //			$coy = $def_coy;
-			text_row(_("Company"), "company_login_nickname", "", 20, 30);
+			text_row(_("Company"), "company_login_nickname", "", 20, 50);
 		}
 		start_row();
-		label_cell($demo_text, "colspan=2 align='center'");
+		label_cell($demo_text, "colspan=2 align='center' id='log_msg'");
 		end_row();
 	}; 
 	end_table(1);
 	echo "<center><input type='submit' value='&nbsp;&nbsp;"._("Login -->")."&nbsp;&nbsp;' name='SubmitUser'"
-		.($login_timeout ? '':" onclick='set_fullmode();'")." /></center>\n";
+		.($login_timeout ? '':" onclick='set_fullmode();'").(isset($blocked_msg) ? " disabled" : '')." /></center>\n";
 
 	foreach($_SESSION['timeout']['post'] as $p => $val) {
 		// add all request variables to be resend together with login data
 		if (!in_array($p, array('ui_mode', 'user_name_entry_field', 
 			'password', 'SubmitUser', 'company_login_name'))) 
-			echo "<input type='hidden' name='$p' value='$val'>";
+			if (!is_array($val))
+				echo "<input type='hidden' name='$p' value='$val'>";
+			else
+				foreach($val as $i => $v)
+					echo "<input type='hidden' name='{$p}[$i]' value='$v'>";
 	}
 	end_form(1);
 	$Ajax->addScript(true, "document.forms[0].password.focus();");
@@ -143,4 +161,4 @@ function defaultCompany()
 	echo "</table><br><br>\n";
 	echo "</body></html>\n";
 
-?>
\ No newline at end of file
+?>