search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
add extra newline after headings in error emails, easier to read.
[sgn.git] / cgi-bin / solpeople / login.pl
blob08f73796e19e4590a61064c7544da717d9aeb550
1 use strict;
2 use warnings;
3
4 use CXGN::DB::Connection;
5 use CXGN::Page;
6 use CXGN::Login;
7 use SGN::Context;
8
9 my $page = CXGN::Page->new( "Login", "john" );
10 my $dbh = CXGN::DB::Connection->new();
11 my $context = SGN::Context->new;
12 my $login_controller = CXGN::Login->new($dbh);
13
14 if ( $context->get_conf('is_mirror') ) {
15 $page->message_page(
16 "Sorry, but you cannot log in to this site.",
17 "This site is a mirror of <a href=\"http://sgn.cornell.edu\">sgn.cornell.edu</a>. To log in to SGN, go to <a href=\"http://sgn.cornell.edu/solpeople/login.pl\">SGN's login page</a>."
18 );
19 }
20
21 if ( !$login_controller->login_allowed() ) {
22 $page->message_page(
23 "Sorry, but logins are disabled while our server undergoes maintenance.",
24 "Logins should be available again within 24 hours. Should this condition persist, please contact <a href=\"mailto:sgn-feedback\@sgn.cornell.edu\">sgn-feedback\@sgn.cornell.edu</a>."
25 );
26 }
27
28 my ( $username, $password, $goto_url, $logout ) =
29 $page->get_arguments( "username", "pd", "goto_url", "logout" );
30
31 my $message = "Already have an account? Please log in using the form below.";
32
33 my $referer = $ENV{HTTP_REFERER} || '';
34 if ( $referer =~ m|http://[^/]+/index.pl| ) {
35
36 # if they were on the front page, send them to "My SGN"
37 $goto_url ||= "/solpeople/top-level.pl";
38 }
39 elsif ( $referer =~ m|account-confirm.pl| ) {
40
41 # if they just confirmed their account, send them to "My SGN"
42 $goto_url = "/solpeople/top-level.pl";
43 }
44 else {
45
46 # if they were anywhere else, send them to the referring page
47 $goto_url ||= $referer;
48 }
49
50
51 if ( $logout && $logout eq "yes" ) #if we are in the process of logging out
52 {
53 $login_controller->logout_user();
54 $page->message_page(
55 'You have successfully logged out. Thanks for using SGN.');
56 }
57
58
59 if ( $username && $password ) #else if we are in the process of logging in
60 {
61 my $login_info = $login_controller->login_user( $username, $password );
62
63 #print STDERR "loggin in: $username\n";
64 my $person_id = $login_info->{person_id};
65
66 #print STDERR "sp_person_id: $person_id\n";
67 my $account_disabled = $login_info->{account_disabled};
68 my $logins_disabled = $login_info->{logins_disabled};
69 my $incorrect_password = $login_info->{incorrect_password};
70 my $duplicate_cookie = $login_info->{duplicate_cookie_string};
71 if ($logins_disabled) #if the whole system is disabled, print a message
72 {
73 $page->message_page("Sorry, but this login system is disabled.");
74 }
75 elsif ($account_disabled) #if their account is disabled, print a message
76 {
77 $page->message_page(
78 "Account for user $username is disabled for reason '$account_disabled'.",
79 "If your account has not been confirmed, check your email for a confirmation from SGN."
80 );
81 }
82 elsif ($incorrect_password) #if their password is wrong, print a message
83 {
84 $page->message_page( "Incorrect username or password.",
85 "<a href=\"send-password.pl\">[Lost password]</a>" );
86 }
87 elsif ($duplicate_cookie) #if we couldn't generate a unique cookie string
88 {
89 $page->error_page(
90 "Sorry but the login system failed.",
91 "Please try again.",
92 "failed to generate new cookie string",
93 "Our random login cookie generator generated a duplicate value!"
94 );
95 }
96 elsif ($person_id) #if their username and password matched
97 {
98 if ($goto_url
99 ) #if they came from trying to work somewhere else, send them back
100 {
101
102 #if we logged in from having just logged out,
103 #make sure we don't get sent back to the logout page:
104 if ( $goto_url =~ /login\.pl/ ) {
105 $goto_url = "/solpeople/top-level.pl";
106 }
107
108 $page->client_redirect($goto_url);
109 }
110 else #else they are just getting started, so send them to the menu page
111 {
112 $page->client_redirect("top-level.pl");
113 }
114 }
115 }
116 else #else we not trying to log in yet
117 {
118 if ( $login_controller->has_session()
119 ) #if there's no good reason for them to be here, send them to the menu page
120 {
121 $page->client_redirect("top-level.pl");
122 }
123 }
124
125
126 $page->header( 'Sol Genomics Network', 'Login' );
127 print <<END_HTML;
128 <div align="center">$message</div>
129 <div align="center">Your browser must accept cookies for this interface to work correctly.</div>
130
131 <form name="login" method="post" action="/solpeople/login.pl">
132 <table style="padding: 2em" summary="" cellpadding="2" cellspacing="0" border="0" align="center">
133 <tr><td>Username</td><td><input id="unamefield" type="text" name="username" size="30" value="" /></td></tr>
134 <tr><td colspan="2"></td></tr>
135 <tr><td>Password</td><td><input type="password" name="pd" size="30" value="" /></td></tr>
136 <tr><td colspan="2" align="center"><br /><input type="submit" name="login" value="Login" /></td></tr>
137 </table>
138 <input type="hidden" name="goto_url" value="$goto_url" />
139 </form>
140 <div align="center">New user? <a href="/solpeople/new-account.pl">Sign up for an account</a>.<br />
141 Forgot your password? <a href="/solpeople/send-password.pl">Get it here</a>.</div>
142 <script language="JavaScript" type="text/javascript">
143 <!--
144 document.getElementById("unamefield").focus(1);
145 -->
146 </script>
147 END_HTML
148 $page->footer();
Sol Genomics Network