'Atenciķ: Validaciķ per LDAP no activa',
'ldap_group_failure' => 'Error durant la validaciķ:',
'ldap_group_failure_msg' => 'Et falten permisos per accedir a aquesta ārea',
'ldap_user_created_msg' => 'Usuari creat a la Base de dades, siusplau, torna a fer log in',
'login' => 'Entrar',
'enter_login_pswd' => 'Introdueix el teu usuari i contrasenya per entrar',
'username' => 'Usuari',
'password' => 'Contrasenya',
'remember_me' => 'Recorda\'m',
'welcome' => 'Benvingut %s ...',
'err_login' => '*** ERROR. Torna-ho a provar ***',
'err_already_logged_in' => 'Ja estās validat !',
'forgot_password_link' => 'He oblidat la contrasenya', //cpg1.3.0
);
require('include/init.inc.php');
//if (USER_ID) cpg_die(ERROR, $lang_login_php['err_already_logged_in'], __FILE__, __LINE__);
if (USER_ID) cpg_die(ERROR, $lang_login_php['err_already_logged_in']);
if (defined('UDB_INTEGRATION')) udb_login_page();
/* ============== O P T I O N S =========== */
$CONFIG['ldapserver'] = '192.168.100.14';
$CONFIG['ldapdn'] = 'ou=persones,dc=bellera,dc=cat';
$CONFIG['ldapforcehttps'] = '0'; // or '0' to deactivate
define('LDAP_SERVER', $CONFIG['ldapserver']);
define('LDAP_DN', $CONFIG['ldapdn']);
define('LDAP_FORCE_HTTPS', $CONFIG['ldapforcehttps']);
define('LDAP_DEBUG', 0);
define('PHP_SELF', $_SERVER['SCRIPT_NAME']);
define('CPG_DB_SERVER', $CONFIG['dbserver']);
define('CPG_DB_USER', $CONFIG['dbuser']);
define('CPG_DB_PASSWORD', $CONFIG['dbpass']);
define('CPG_DB_NAME', $CONFIG['dbname']);
define('CPG_DB_USERS', $CONFIG['TABLE_PREFIX']."users");
define('CPG_DB_SESSIONS', $CONFIG['TABLE_PREFIX']."sessions");
$referer = $HTTP_GET_VARS['referer'] ? $HTTP_GET_VARS['referer'] : 'index.php';
$login_failed = '';
$cookie_warning = '';
// Comprovem que el varchar password es mes gran que 50 per passwords amb MD5 //
$consulta = "SELECT * FROM `".CPG_DB_USERS."` LIMIT 1";
$resultado = mysql_query($consulta);
$longitud = mysql_field_len($resultado,4);
//echo "-->".$longitud;
$longitud_correcte = 50;
if( $longitud <= $longitud_correcte ){
$password_warning = "
Error a la BD: camp password < ".$longitud_correcte."; Contacta amb el administrador.
";
}
else{
$password_warning = " ";
}
//////////////////////////////////////////////////////////
if (isset($HTTP_POST_VARS['submitted'])) {
$_POST['username'] = trim($_POST['username']);
$_POST['username'] = addslashes($_POST['username']);
$_POST['password'] = trim($_POST['password']);
$_POST['password'] = addslashes($_POST['password']);
$md5pass = md5($_POST['password']);
$ldap_connect = ldap_connect(LDAP_SERVER)
or die("Could not connect to LDAP server.");
ldap_set_option($ldap_connect, LDAP_OPT_PROTOCOL_VERSION, 3);
if ($ldap_connect)
{
$ldap_dn = "uid=".$_POST['username'].",".LDAP_DN;
$ldap_bind = @ldap_bind($ldap_connect, $ldap_dn, $_POST['password']);
if ($ldap_bind)
{
$link = cpg_db_connect();
$query = "SELECT user_id, user_name, user_active FROM `".CPG_DB_USERS."` WHERE `user_active` = 'YES' AND `user_name` = '".addslashes($_POST['username'])."'";
$result = mysql_query($query) or die("request failed: " . mysql_error());
$USER_DATA = mysql_fetch_array($result);
$lastvisit = db_query("UPDATE `".CPG_DB_USERS."` SET user_lastvisit = NOW() WHERE user_name = '" . addslashes($_POST['username']) . "' AND user_active = 'YES'");
mysql_close($link);
if (!isset($USER_DATA['0']))
{
//El usuari bind O.K. pero no existeix a la BD
$link = cpg_db_connect();
$sql_ins = "INSERT INTO ".CPG_DB_USERS." ".
"(user_regdate, user_active, user_name, user_password, user_email) ".
"VALUES (NOW(), 'YES', '" . trim(addslashes($_POST['username'])) . "', '".$md5pass."' , '" . trim(addslashes($_POST['username'])) . "@bellera.cat')";
mysql_query($sql_ins) or die("blubb");
$query = "SELECT user_id, user_name FROM `".CPG_DB_USERS."` WHERE `user_active` = 'YES' AND `user_name` = '".addslashes($_POST['username'])."'";
$result = mysql_query($query) or die("request failed: " . mysql_error());
$USER_DATA = mysql_fetch_array($result);
mysql_free_result($result);
mysql_close($link);
pageheader('LDAP Login');
starttable('-1', $lang_login_php['enter_login_pswd'], 2);
?>