de55d8f83b
lib/plugin.php now has a parent onAutoload function that finds most common files that are used in plugins (actions, dataobjects, forms, libs etc.) if they are put in the standardised directories ('actions', 'classes', 'forms', 'lib' and perhaps some others in the future).
78 lines
3.1 KiB
PHP
78 lines
3.1 KiB
PHP
<?php
|
|
/*
|
|
* StatusNet - the distributed open-source microblogging tool
|
|
* Copyright (C) 2008, 2009, StatusNet, Inc.
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
if (!defined('STATUSNET') && !defined('LACONICA')) { exit(1); }
|
|
|
|
class CasloginAction extends Action
|
|
{
|
|
function handle($args)
|
|
{
|
|
parent::handle($args);
|
|
if (common_is_real_login()) {
|
|
// TRANS: Client error displayed when trying to log in while already logged on.
|
|
$this->clientError(_m('Already logged in.'));
|
|
} else {
|
|
global $casSettings;
|
|
phpCAS::client(CAS_VERSION_2_0,$casSettings['server'],$casSettings['port'],$casSettings['path'],false);
|
|
phpCAS::setNoCasServerValidation();
|
|
phpCAS::handleLogoutRequests();
|
|
phpCAS::forceAuthentication();
|
|
global $casTempPassword;
|
|
$casTempPassword = common_good_rand(16);
|
|
$user = common_check_user(phpCAS::getUser(), $casTempPassword);
|
|
if (!$user) {
|
|
// TRANS: Server error displayed when trying to log in with incorrect username or password.
|
|
$this->serverError(_m('Incorrect username or password.'));
|
|
return;
|
|
}
|
|
|
|
// success!
|
|
if (!common_set_user($user)) {
|
|
// TRANS: Server error displayed when login fails in CAS authentication plugin.
|
|
$this->serverError(_m('Error setting user. You are probably not authorized.'));
|
|
return;
|
|
}
|
|
|
|
common_real_login(true);
|
|
|
|
$url = common_get_returnto();
|
|
|
|
if ($url) {
|
|
// We don't have to return to it again
|
|
common_set_returnto(null);
|
|
} else {
|
|
if(common_config('site', 'private') && $casSettings['takeOverLogin']) {
|
|
//SSO users expect to just go to the URL they entered
|
|
//if we don't have a returnto set, the user entered the
|
|
//main StatusNet url, so send them there.
|
|
$url = common_local_url('public');
|
|
} else {
|
|
//With normal logins (regular form-based username/password),
|
|
//the user would expect to go to their home after logging in.
|
|
$url = common_local_url('public',
|
|
array('nickname' =>
|
|
$user->nickname));
|
|
}
|
|
}
|
|
|
|
common_redirect($url, 303);
|
|
}
|
|
}
|
|
}
|