<%doc> $Revision: 1.132 $ <%method checkVersion> <%method checkAuth> <%doc> Override this method so that we don't get into a loop. <%method setGlobals> <& PARENT:setGlobals, dontCare => 1, %ARGS &> <%method getUserInfo> <& PARENT:getUserInfo, noauth => "1" &> <%method suiteBar> <& PARENT:suiteBar, noName => 1, noSuiteBarLinks => 1, %ARGS &> <%method header> <& SELF:mainHeader, bodyType => "nomenu", %ARGS &> <%method title> Login to ApTest Manager <%args> $name=>undef $pass=>undef $submit=>"" $cancel=>"" $target=>"" <%perl> my $warn = "" ; my $user = undef ; my $acct = undef ; my $sid = undef ; my $cookieWarn = 0 ; my $uRef = new UserInfo() ; my $exp = $uRef->expires() ; my $supexp = $uRef->supExpires() ; my $newVersion = $uRef->checkVersion() ; $uRef->release() ; my %cookies = ($ATMConfig::viaCGI) ? fetch CGI::Cookie : CGI::Cookie->fetch ; my $cookieTop = defined($Framework::cookieTop) ? $Framework::cookieTop : $Framework::webTop ; ### THESE ARE THE CHANGES TO PROCESS EXTERNAL AUTHENTICATION ### Note that these are disabled by default my $ruser = undef ; if ( $ATMConfig::allowSSO && defined $ENV{'REMOTE_USER'} ) { $ruser = $ENV{'REMOTE_USER'} ; # pretend someone clicked the Login button $submit = "Login" ; } if ( defined $ruser ) { $name = $ruser ; } if ( defined($name) ) { if ( $name eq "" ) { $warn .= "You must supply a user name.
" ; } elsif ( $name =~ m {[^0-9a-zA-Z_\.\-]} ) { $warn .= qq(User names may only contain alphanumeric characters, period (.), hyphen (-), and underscore (_).
) ; } $name =~ s/[^0-9a-zA-Z_\.\-]//g; # strip anything bad from the name ### ADD A CHECK HERE - IF THERE IS A REMOTE USER, THEN WE DONT HAVE THIS ### COOKIE if ( !defined $ruser && !exists $cookies{atmCookieTest} ) { $warn .= qq(Cookies must be enabled in your browser to log in
) ; $cookieWarn = 1 ; } if ( $warn eq "" ) { $acct = new Account(1) ; # get a write handle $user = new UserInfo( $name, $acct ) ; if ( !defined($user) ) { if ( $ATMConfig::allowSSO && defined $ENV{REMOTE_USER} ) { if ($ATMConfig::autoCreateUsers) { Framework::updateSystemLog( 4, "Auto-creating user $name" ) ; # create a new user account automatically my $userHash = { email => '', fullname => $name, password => 'NoLoGiN', phoneNumber => '', timezone => Framework::localTimeZone(1), timestyle => $ATMConfig::timestyle, rowsPerPage => $ATMConfig::reportRows, encrypted => 0, emailOn => 0, startPage => 'default' } ; if ( $acct->userInfo( $name, $userHash ) ) { if ($ATMConfig::suiteAccess == "none") { # if the default access level is none, then we only need to build the # access list for any new suites $acct->buildUserHash( [] ) ; } else { $acct->buildUserHash( ) ; } $acct->buildUserHash( ) ; $acct->lastChange( time() ) ; $acct->save(1) ; $user = new UserInfo( $name, $acct ) ; Notify->notify( trigger => 'userChange', message => "Account $name auto-created.", account => $acct ) ; } } else { Framework::updateSystemLog( 1, "User $name authenticated, but no such user" ) ; } } if ( !defined $user ) { if ($ATMConfig::caseInsensitiveLogin) { $warn .= qq(The user $name does not exist. Please note user names are case sensitive.) ; } else { $warn .= qq(The user $name does not exist.) ; } Framework::updateSystemLog( 1, "Login failed - no such user $name" ) ; } } elsif ( !defined $ruser && !$user->authenticate($pass) ) { # see if there might be some LDAP-y problem if ( $user->disabled() ) { $warn .= "This account is disabled. Contact your system administrator." ; } elsif ( $user->fromLDAP() && !ApTest::LDAP::isActive( $user->serverNum() ) && !defined $user->password() ) { $warn .= "This account is tied to an LDAP server, but this copy of ApTest Manager is no longer associated with that LDAP server. Please contact your system administrator to have a password assigned assigned to this account." ; } else { $warn .= "That password is incorrect. Please note passwords are case sensitive." ; } if ( defined $ATMConfig::logBadPassword && $ATMConfig::logBadPassword ) { Framework::updateSystemLog( 1, "Login failed for user $name - bad password $pass" ) ; } } else { if ($ATMConfig::CLOSED) { my $acl = $user->acl() ; if ( !defined $acl || !defined $acl->{'account'} || ( $acl->{'account'} ne "yes" ) ) { $warn .= "That user is not an administrator - Please select another." ; Framework::updateSystemLog( 1, "User $name tried to log in whilst closed and is not an admin" ) ; goto handleWarn; } } $sid = $user->login() ; if ( !defined $sid ) { $warn .= "There are already " . $user->maxUsers() . " logged in users - the maximum permitted by your license." ; Notify->notify( trigger => 'systemAlert', message => 'A user was unable to use ApTest Manager because all license seats were in use.' ) ; Framework::updateSystemLog( 1, "User limit reached, maxUsers is " . $user->maxUsers() ) ; } } } } handleWarn: if ( defined($user) && ( $warn eq "" ) && $submit eq "Login" ) { # no warnings, complete the login my $suite = $userInfo->setting('lastSelectedSuite') ; $suite = Framework::checkSuite( $user, $suite ) ; my $dest = "index.mpl" ; if ( defined $target && ( $target ne "" ) ) { $dest = $target ; } elsif ( defined $suite && defined $user->startPage ) { $dest = $user->startPageURL() . '?suite=' . $suite ; } if ( $name eq "admin" ) { $dest = "accounts/index.mpl" ; } if ( my $msg = $user->shouldNotify() ) { # there is a pending notification... Notify->notify( trigger => 'updateAvailable', message => $msg, account => $acct, ) ; } # make sure the database is up to date $user->{acct} = undef ; $acct->save(1) ; $acct->release() ; Framework::updateSystemLog( 2, "Logging in user $name" ) ; if ( $ENV{'SERVER_SOFTWARE'} =~ /Microsoft-IIS/ ) { Framework::updateSystemLog( 10, "Setting cookie as $sid" ) ; if ($ATMConfig::viaCGI) { $m->comp( "SELF:header_out", name => 'Set-Cookie', value => $sid ) ; Framework::updateSystemLog( 10, "Cookie being pushed in CGI mode" ) ; } else { $m->comp( "SELF:err_header_out", name => 'Set-Cookie', value => $sid ) ; Framework::updateSystemLog( 10, "Cookie being pushed in mod_perl mode" ) ; }

Logged in as user <% $name |h %>.

<%perl> } else { $m->comp( "SELF:redirect", cookie => $sid, location => $dest ) ; } } else { $acct->release() if ( defined $acct ) ; if ( $cancel eq "Cancel" ) { $m->out("

Login process canceled.

") ; } else { my $testCookie = CGI::Cookie->new( -name => 'atmCookieTest', -value => 'test', -path => $cookieTop, -expires => undef ) ; Framework::updateSystemLog( 10, "Setting test cookie as $testCookie" ) ; if ($ATMConfig::viaCGI) { $m->comp( "SELF:header_out", name => 'Set-Cookie', value => $testCookie ) ; Framework::updateSystemLog( 10, "Cookie being pushed in CGI mode" ) ; } else { $m->comp( "SELF:err_header_out", name => 'Set-Cookie', value => $testCookie ) ; Framework::updateSystemLog( 10, "Cookie being pushed in mod_perl mode" ) ; }
% if ( defined $newVersion && !$ATMConfig::isHosted ) { % $newVersion =~ s/(http:.*?)\n/$1<\/a>\n/ ; % $newVersion =~ s/\n/
/g ; <% Framework::warning(qq(

$newVersion

)) %> % } % if ($exp) { % my $thing = "expires" ; % $thing = "expired" if ( $exp < time() ) ;

The license for this copy of ATM <% $thing %> on <% Framework::fmtTime( $exp, 1, "at" ) %>. % if ( !$ATMConfig::isHosted ) { This is a temporary license issued when the software was purchased. A permanent license will be issued to you upon receipt of payment. % }

% } % if ( $supexp && !$ATMConfig::isHosted ) { % if ( $supexp < time() + ( 30 * 24 * 60 * 60 ) ) { % # if we are within 30 days % my $thing = "expires" ; % $thing = "expired" if ( $supexp < time() ) ;

The support contract for this copy of ApTest Manager <% $thing %> on <% Framework::fmtTime( $supexp, 1, "at" ) %>.

% }} % if ( !$exp || $exp > time() ) { % if ($ATMConfig::CLOSED) { % $m->out("
Forbidden This copy of ApTest Manager is open to administrators only at this time due to maintenance or other administrative activities. Please check back later or contact your site administrator.

") ; % } % $m->out("
$warn

") if ( $warn ne "" ) ; % if ( !$cookieWarn ) { % if ($ATMConfig::MOTD) { <% $ATMConfig::MOTD %> % }

Please enter your user name and password

User name:
Password:

  

% if ($ATMConfig::createAccount) {

If you don't have an user account, you can create one.

% } % } else {

Please enable cookies before continuing.

% } % }
% }} <%once> use Account ; use Notify ; use ApTest::LDAP ;