3 // PukiWiki - Yet another WikiWikiWeb clone
4 // Copyright (C) 2015 PukiWiki Development Team
5 // License: GPL v2 or (at your option) any later version
9 function plugin_loginform_inline()
11 $logout_param = '?plugin=basicauthlogout';
12 return '<a href="' . htmlsc(get_script_uri() . $logout_param) . '">Log out</a>';
15 function plugin_loginform_convert()
17 return '<div>' . plugin_basicauthlogout_inline() . '</div>';
20 function plugin_loginform_action()
22 global $auth_user, $auth_type, $_loginform_messages;
23 $page = isset($_GET['page']) ? $_GET['page'] : '';
24 $pcmd = isset($_GET['pcmd']) ? $_GET['pcmd'] : '';
25 $url_after_login = isset($_GET['url_after_login']) ? $_GET['url_after_login'] : '';
26 $page_after_login = $page;
27 if (!$url_after_login) {
28 $page_after_login = $page;
30 $action_url = get_script_uri() . '?plugin=loginform'
31 . '&page=' . rawurlencode($page)
32 . ($url_after_login ? '&url_after_login=' . rawurlencode($url_after_login) : '')
33 . ($page_after_login ? '&page_after_login=' . rawurlencode($page_after_login) : '');
34 $username = isset($_POST['username']) ? $_POST['username'] : '';
35 $password = isset($_POST['password']) ? $_POST['password'] : '';
36 $isset_user_credential = $username || $password ;
37 if ($username && $password && form_auth($username, $password)) {
38 // Sign in successfully completed
39 form_auth_redirect($url_after_login, $page_after_login);
42 if ($pcmd === 'logout') {
46 header('WWW-Authenticate: Basic realm="Please cancel to log out"');
47 header('HTTP/1.0 401 Unauthorized');
50 case AUTH_TYPE_EXTERNAL:
54 session_regenerate_id(true); // require: PHP5.1+
61 'body' => 'Logged out completely<br>'
62 . '<a href="'. get_script_uri() . '?' . pagename_urlencode($page) . '">'
84 .loginform .login-button-container {
87 .loginform .loginbutton {
90 .loginform .errormessage {
94 <div class="loginformcontainer">
95 <form name="loginform" class="loginform" action="<?php echo htmlsc($action_url) ?>" method="post">
97 <table style="border:0">
100 <td class="label"><label for="_plugin_loginform_username"><?php echo htmlsc($_loginform_messages['username']) ?></label></td>
101 <td><input type="text" name="username" value="<?php echo htmlsc($username) ?>" id="_plugin_loginform_username"></td>
104 <td class="label"><label for="_plugin_loginform_password"><?php echo htmlsc($_loginform_messages['password']) ?></label></td>
105 <td><input type="password" name="password" id="_plugin_loginform_password"></td>
107 <?php if ($isset_user_credential): ?>
110 <td class="errormessage"><?php echo $_loginform_messages['invalid_username_or_password'] ?></td>
115 <td class="login-button-container"><input type="submit" value="<?php echo htmlsc($_loginform_messages['login']) ?>" class="loginbutton"></td>
125 window.addEventListener && window.addEventListener("DOMContentLoaded", function() {
126 var f = window.document.forms.loginform;
128 console.log(f.username);
129 console.log(f.password);
130 if (f && f.username && f.password) {
131 if (f.username.value) {
132 f.password.focus && f.password.focus();
134 f.username.focus && f.username.focus();
141 $body = ob_get_contents();
144 'msg' => $_loginform_messages['login'],