stian/gallery3
1
0
Fork 0
mirror of https://github.com/Pathduck/gallery3.git synced 2026-06-10 05:29:13 -04:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
736d74d05f70be5b72e44eafe2cc8efae52b0af7
gallery3/modules/user/controllers/login.php
Bharat Mediratta 736d74d05f Clean up the login, maintenance login and required-top-level-login code. 
We now have two clear and separate login approaches:
  login/ajax
  login/html

Choose the one that's appropriate.  Totally simplified the maintenance
page to be separate from the theme and dead simple, and use login/html
approach there.  Totally simplified the top level login
(login_page.html.php) to just be a login page, not the rest of the
chrome on the page and use the login/ajax approach there.

Don't use access::required in albums and then catch the exception,
instead use access::can and check the return code.

Improve the text for maintenance mode.
2009-03-16 04:33:45 +00:00

74 lines
2.3 KiB
PHP
Raw Blame History

<?php defined("SYSPATH") or die("No direct script access.");
/**
* Gallery - a web based photo album viewer and editor
* Copyright (C) 2000-2008 Bharat Mediratta
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or (at
* your option) any later version.
*
* This program is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street - Fifth Floor, Boston, MA 02110-1301, USA.
*/
class Login_Controller extends Controller {
public function ajax() {
$view = new View("login_ajax.html");
$view->form = user::get_login_form("login/auth_ajax");
print $view;
}
public function auth_ajax() {
list ($valid, $form) = $this->_auth();
if ($valid) {
print json_encode(
array("result" => "success",
"location" => url::site("")));
} else {
print json_encode(
array("result" => "error",
"form" => $form->__toString()));
}
}
public function html() {
print user::get_login_form("login/auth_html");
}
public function auth_html() {
list ($valid, $form) = $this->_auth();
if ($valid) {
url::redirect("albums/1");
} else {
print $form;
}
}
private function _auth() {
$form = user::get_login_form();
$valid = $form->validate();
if ($valid) {
$user = ORM::factory("user")->where("name", $form->login->inputs["name"]->value)->find();
if (!$user->loaded || !user::is_correct_password($user, $form->login->password->value)) {
log::warning(
"user", t("Failed login for %name", array("name" => $form->login->inputs["name"]->value)));
$form->login->inputs["name"]->add_error("invalid_login", 1);
$valid = false;
}
}
if ($valid) {
user::login($user);
log::info("user", t("User %name logged in", array("name" => $user->name)));
}
return array($valid, $form);
}
}
Reference in New Issue View Git Blame Copy Permalink