summaryrefslogtreecommitdiff
path: root/fs_sesmon/FS-SessionClient/cgi/login.cgi
blob: 0307c5a3d0a445f6010129ccac741ff4a85c99ec (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108

#!/usr/bin/perl -Tw

#false-laziness hack w logout.cgi

use strict;
use vars qw( $cgi $username $password $error $ip $portnum );
use CGI;
use CGI::Carp qw(fatalsToBrowser);
use FS::SessionClient qw( login portnum );

$cgi = new CGI;

if ( defined $cgi->param('magic') ) {
  $cgi->param('username') =~ /^\s*(\w{1,255})\s*$/ or do {
    $error = "Illegal username";
    &print_form;
    exit;
  };
  $username = $1;
  $cgi->param('password') =~ /^([^\n]{0,255})$/ or die "guru meditation #420";
  $password = $1;
  #$ip = $cgi->remote_host;
  $ip = $ENV{REMOTE_ADDR};
  $ip =~ /^([\d\.]+)$/ or die "illegal ip: $ip";
  $ip = $1;
  $portnum = portnum( { 'ip' => $1 } ) or do {
    $error = "You appear to be coming from an unknown IP address.  Verify ".
             "that your computer is set to obtain an IP address automatically ".
             "via DHCP.";
    &print_form;
    exit;
  };

  ( $error = login ( {
    'username' => $username,
    'portnum'  => $portnum,
    'password' => $password,
  } ) )
    ? &print_form()
    : &print_okay();

} else {
  $username = '';
  $password = '';
  $error = '';
  &print_form;
}

sub print_form {
  my $self_url = $cgi->self_url;

  print $cgi->header( '-expires' => 'now' ), <<END;
<HTML><HEAD><TITLE>login</TITLE></HEAD>
<BODY BGCOLOR="#FFFFFF">
END

print qq!<FONT SIZE="+1" COLOR="#ff0000">Error: $error</FONT>! if $error;

print <<END;
<FORM ACTION="$self_url" METHOD="POST">
<INPUT TYPE="hidden" NAME="magic" VALUE="process">
<TABLE BORDER="0" CELLSPACING="0" CELLPADDING="4" ALIGN="center">
<TR>
        <TD ALIGN="center" COLSPAN="2">
      <STRONG>Welcome</STRONG>
      </TD>
</TR>
<TR>
      <TD ALIGN="right">
      Username
      </TD>
      <TD ALIGN="left">
      <INPUT TYPE="text" NAME="username" VALUE="$username">
      </TD>
</TR>
<TR>
      <TD ALIGN="right">
      Password
      </TD>
      <TD ALIGN="left">
      <INPUT TYPE="password" NAME="password">
      </TD>
</TR>
<TR>
      <TD ALIGN="center" COLSPAN="2">
      <INPUT TYPE="submit" VALUE=" Login ">
      </TD>
</TR>
</TABLE>
</FORM>
</BODY>
</HTML>
END

}

sub print_okay {
  print $cgi->header( '-expires' => 'now' ), <<END;
<HTML><HEAD><TITLE>login sucessful</TITLE></HEAD>
<BODY>login successful, etc.
</BODY>
</HTML>
END
}

sub usage {
  die "Usage:\n\n  freeside-login username ( portnum | ip | nasnum nasport )";
}
generated by cgit v1.1 at 2024-05-25 10:32:21 +0000