dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
59c8adde04
lemonldap-ng/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/_WebForm.pm
Xavier Guimard 0d54c80fcc Make tidy
2012-07-26 02:47:27 +00:00

136 lines
4.3 KiB
Perl
Raw Blame History

##@file
# Web form authentication backend file
##@class
# Web form authentication backend class
package Lemonldap::NG::Portal::_WebForm;
use Lemonldap::NG::Portal::Simple qw(:all);
use strict;
our $VERSION = '1.3.0';
## @apmethod int authInit()
# Does nothing.
# @return Lemonldap::NG::Portal constant
sub authInit {
PE_OK;
}
## @apmethod int extractFormInfo()
# Read username and password from POST datas
# @return Lemonldap::NG::Portal constant
sub extractFormInfo {
my $self = shift;
# Detect first access and empty forms
my $defUser = defined $self->param('user');
my $defPassword = defined $self->param('password');
my $defOldPassword = defined $self->param('oldpassword');
# 1. No user defined at all -> first access
return PE_FIRSTACCESS unless $defUser;
# 2. If user and password defined -> login form
if ( $defUser && $defPassword ) {
return PE_FORMEMPTY
unless ( ( $self->{user} = $self->param('user') )
&& ( $self->{password} = $self->param('password') ) );
}
# 3. If user and oldpassword defined -> password form
if ( $defUser && $defOldPassword ) {
return PE_PASSWORDFORMEMPTY
unless ( ( $self->{user} = $self->param('user') )
&& ( $self->{oldpassword} = $self->param('oldpassword') )
&& ( $self->{newpassword} = $self->param('newpassword') )
&& ( $self->{confirmpassword} = $self->param('confirmpassword') ) );
}
# 4. If the captcha feature is enabled, captcha form
if ( $self->{captcha_enabled} ) {
my $captcha_user_code;
if ( $self->param('captcha_user_code') && $self->param('captcha_code') )
{
$captcha_user_code = $self->param('captcha_user_code');
$self->{captcha_code} = $self->param('captcha_code');
}
$self->{captcha_result} =
$self->checkCaptcha( $captcha_user_code, $self->{captcha_code} );
if ( $self->{captcha_result} != 1 ) {
if ( $self->{captcha_result} == -3
or $self->{captcha_result} == -2 )
{
$self->lmLog( "Captcha failed: wrong code", 'error' );
return PE_CAPTCHAERROR;
}
elsif ( $self->{captcha_result} == 0 ) {
$self->lmLog( "Captcha failed: code not checked (file error)",
'error' );
return PE_CAPTCHAERROR;
}
elsif ( $self->{captcha_result} == -1 ) {
$self->lmLog( "Captcha failed: code has expired", 'error' );
return PE_CAPTCHAERROR;
}
}
}
# Other parameters
$self->{timezone} = $self->param('timezone');
$self->{userControl} ||= '^[\w\.\-@]+$';
# Check user
return PE_MALFORMEDUSER unless ( $self->{user} =~ /$self->{userControl}/o );
PE_OK;
}
## @apmethod int setAuthSessionInfo()
# Set password in session datas if wanted.
# @return Lemonldap::NG::Portal constant
sub setAuthSessionInfo {
my $self = shift;
# authenticationLevel
# -1 if password can be remebered
# +1 for user/password with HTTPS
$self->{_authnLevel} ||= 0;
$self->{_authnLevel} += 1 if $self->https();
$self->{_authnLevel} -= 1 if $self->{portalAutocomplete};
$self->{sessionInfo}->{authenticationLevel} = $self->{_authnLevel};
# Store user submitted login for basic rules
$self->{sessionInfo}->{'_user'} = $self->{'user'};
# Store submitted password if set in configuration
# WARNING: it can be a security hole
if ( $self->{storePassword} ) {
$self->{sessionInfo}->{'_password'} = $self->{'newpassword'}
|| $self->{'password'};
}
# Store user timezone
$self->{sessionInfo}->{'_timezone'} = $self->{'timezone'};
PE_OK;
}
## @method int checkCaptcha(code, ccode)
# Check captcha auth
# @return a constant
# @param code that user enter in the form
# @param captcha code generated by Authen::Captcha
sub checkCaptcha {
my ( $self, $code, $ccode ) = splice @_;
opendir( OUTPUT, $self->{captcha_output} )
or $self->lmLog( "Can't open captcha output dir", "error" );
opendir( DATA, $self->{captcha_data} )
or $self->lmLog( "Can't open captcha data dir", "error" );
$self->{captcha_result} = $self->{captcha}->check_code( $code, $ccode );
closedir(OUTPUT) && closedir(DATA);
}
1;
Reference in New Issue View Git Blame Copy Permalink