<?php

//------------------------------------------------------------------------------
//  Licensed Materials - Property of IBM
//  (c) Copyright IBM Corporation 2001,2002 All Rights Reserved.
//  US Government Users Restricted Rights - Use, duplication or disclosure 
//  restricted by GSA ADP Schedule Contract with IBM Corp.
//------------------------------------------------------------------------------
//  Login window
//  
//  Filename:  main_login.htm
//
//  This file displays the login window for the TS3310 library.
// 
//      
//  Change History:
//      
//  Date        Defect  Changed By  Description of Change
//  ----        ------  ----------  ---------------------
//  08/13/2012  1654    dagalleg	Login page updated to new look. Domain text box removed and not required.
//									Radio buttons replaced with remote authntication checkbox. 
//------------------------------------------------------------------------------  


include_once("common_inc.htm");
include_once("help_inc.htm");

// IBM old login errors
/*
$errorMap = array( 
	4103 => 'Invalid User Name/Password.',
	4104 => 'Service in Progress. Login not allowed.',
	4105 => 'Already logged in on the Web Client. Login not allowed.',
	4106 => 'System has too many login sessions. No more logins allowed.',
	9000 => 'Domain required for LDAP authentication.'
	);
*/	
//New Errors similar to Quantum
$errorMap = array(   
	4103 => 'Invalid User Name/Password.',
    4104 => 'Service in Progress. Login not allowed.',
    4105 => 'Already logged in on the web client. Login not allowed.',
    4125 => 'A Library Software Update is in progress. Login not allowed.',
    4106 => 'System has too many login sessions. No more logins allowed.',
    4126 => 'Can\'t communicate with LDAP Server.',
    4129 => 'Diagnostics in Progress. Login not allowed' );


// Check if LDAP is enabled
$ldap = get_ldap();
$LDAPisEnabled = $ldap->enabled;
if ( $LDAPisEnabled == "1" )
{
	error_log( "LDAP is Enabled" );
} 
else
{
	error_log("LDAP is not enabled.");
}

if( isset($_POST['username'] ) && isset($_POST['password']) )
{
	if( strcmp($_POST['username'],"") && strcmp($_POST['password'],"") )
	{
		session_start();
		$domain = "";
		

		if (($_POST['authType'] == "ldap") && ($LDAPisEnabled == "1"))
		{
			$domain = "LDAP_DOMAIN"; // Hard coded value
		}

			// The second to last parameter is LDAPDomain.
			error_log("Domain = ".$domain);
			$result = login( $_POST['username'], $_POST['password'],
							 $_SERVER[REMOTE_HOST], $_SERVER[REMOTE_ADDR],
							 $domain, session_id() );
			error_log("Result = ".print_r($result, true));

			$username = $result->username;
			$role = $result->role;

			if( strcmp($username,"") && strcmp($role,"") )
			{
				//
				// Save last click time for inactivity timeout
				//

				$lastClick = time();

				$_SESSION['lastclick'] = $lastClick;

				//
				// set a hash of the user name
				//

				
				$_SESSION['login'] =$_REQUEST['username'].','.md5($_REQUEST['username'].$secret_word);


				//error_log("LOGIN HASH COOKE = ".print_r($_SESSION['login'], true));
				$_SESSION['user'] = $result;

				header('location:'.HOME_VIEW_PAGE );
			}
			else
			{
				$_REQUEST['login_error'] = True;
				$_REQUEST['reason'] = $result->reason;
			}
		
	}
	else
	{
		$_REQUEST['login_error'] = True;
		$_REQUEST['reason'] = $result->reason;
	}

}
else
{
	//
	// User coming to the page
	//
	session_start();

	//
	// check to see if the user is coming back to page; already logged in
	//
	if( isset($_SESSION['login']) )
	{
		if( isset($_SESSION['user']) )
		{
			$user = $_SESSION['user'];

			list($tmp_username,$cookie_hash) =
			explode(',',$_SESSION['login']);

			if( md5($tmp_username.$secret_word) == $cookie_hash )
			{
				//
				// Check for inactivity
				//

				$currentClick = time();

				if( isset($_SESSION['lastclick']) )
				{
					if( ($currentClick - $_SESSION['lastclick']) > getSessionTimeout() )
					{
						//
						// inactivity; logout
						//
						logoff($_SESSION['user']);

						session_destroy();
					}
					else
					{
						$_SESSION['lastclick'] = $currentClick;

						//
						// User is coming back; send to homeview
						header('location:'.HOME_VIEW_PAGE);
					}
				}
				else
				{
					logoff($_SESSION['user']);
					session_destroy();
				}
			}
			else
			{
				logoff($_SESSION['user']);
				session_destroy();
			}
		}
		else
		{
			session_destroy();
		}
	}
	else
	{
		session_destroy();
	}
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang=en-us dir="ltr">
<!--
    Licensed Materials - Property of IBM
    (c) Copyright IBM Corporation 2001,2002 All Rights Reserved.
    US Government Users Restricted Rights - Use, duplication or disclosure
    restricted by GSA ADP Schedule Contract with IBM Corp.
    -->
<head>
<title>Login Page</title>
<meta http-equiv=Content-Type content="text/html; charset=UTF-8">
<META HTTP-EQUIV="CACHE-CONTROL" CONTENT="NO-CACHE">
<link href="css/3576.css" type="text/css" rel="stylesheet">
<script type="text/javascript">
            if (top != self) 
            {
                top.location = self.location;
            }
        </script>
<style type="text/css">
INPUT.mouseOut {
	BORDER-RIGHT: #336699 1px solid;
	BORDER-TOP: #8cb1d1 1px solid;
	FONT-SIZE: 10pt;
	BORDER-LEFT: #8cb1d1 1px solid;
	BORDER-BOTTOM: #336699 1px solid;
	FONT-FAMILY: Arial, Helvetica, sans-serif;
	BACKGROUND-COLOR: #ffffff
}

INPUT.mouseOver {
	BORDER-RIGHT: #8cb1d1 1px solid;
	BORDER-TOP: #8cb1d1 1px solid;
	FONT-SIZE: 10pt;
	BORDER-LEFT: #8cb1d1 1px solid;
	COLOR: #ffffff;
	BORDER-BOTTOM: #8cb1d1 1px solid;
	FONT-FAMILY: Arial, Helvetica, sans-serif;
	BACKGROUND-COLOR: #6c90c1
}
</style>
<style type="text/css">
INPUT.mouseOut {
	BORDER-RIGHT: #336699 1px solid;
	BORDER-TOP: #8cb1d1 1px solid;
	FONT-SIZE: 10pt;
	BORDER-LEFT: #8cb1d1 1px solid;
	BORDER-BOTTOM: #336699 1px solid;
	FONT-FAMILY: Arial, Helvetica, sans-serif;
	BACKGROUND-COLOR: #ffffff
}

INPUT.mouseOver {
	BORDER-RIGHT: #8cb1d1 1px solid;
	BORDER-TOP: #8cb1d1 1px solid;
	FONT-SIZE: 10pt;
	BORDER-LEFT: #8cb1d1 1px solid;
	COLOR: #ffffff;
	BORDER-BOTTOM: #8cb1d1 1px solid;
	FONT-FAMILY: Arial, Helvetica, sans-serif;
	BACKGROUND-COLOR: #6c90c1
}

body {
	background-color:#CAD1D7;
	margin:0;
	padding:0;
	
}

.wrapper {
  width:100%;
  border:0px;
  overflow: hidden; 
  padding: 0px;
}
.div-in-td {
  height:880px;
  border:0px;    
}


.error-table {
	width: 318px;
	height: 26px;
	margin-left: 0px;
	border-width: 2px;
	border-spacing: 1px;
	border-style: solid;
	border-color: #d70000;
	border-collapse: separate;
	background-color: #e4a7aa;
}
.error-msg {
	font-size: 10pt;
	font-weight: bold;
	font-family: Helvetica;
	color: #d70000;
	
}

</style>
<script type="text/javascript">
            
            var authentication = 'local';
            
            function ldapEnabled()
   			{
   				var checkBox = document.getElementById("ldap_settings");
   				var extraSpace = document.getElementById("extra_space");
   				
   				//LDAP configured display Remote Authentication CheckBox
      			if( "<?=$LDAPisEnabled?>" == "1" )
      			{
      				checkBox.style.display = "";
      				extraSpace.style.display = "";
      			}	
      			else
      			{
      				checkBox.style.display = "none";
      				extraSpace.style.display = "none";
      			}
         	}	
   				
            
            function checkKeyPress(event)
            {
                //      var domainEl = document.getElementById('domain');
                
                if (navigator.appName == "Microsoft Internet Explorer") 
                {
                    tmp = window.event.keyCode;
                }
                else 
                {
                    tmp = event.which;
                }
                
                if (tmp == 13) 
                {
                    processRequest();
                }
            }
            
            function processRequest()
            {
            	if ( ! document.getElementById("use_ldap").checked )
            	{
            		document.getElementById('authType').value = 'local';
            	}
            	else 
            	{
            		document.getElementById('authType').value = 'ldap';
            	}
            	
                if (document.forms[0].username.value == "service") 
                {
                    if (!confirm("If you continue logging on as service, it will force any online service and/or admin users to log off.\r\nAre you sure you want to continue logging on?")) 
                    {
                        return;
                    }
                }
                
                document.body.style.cursor = 'wait';
                document.forms[0].submit();
            }
            
 
            
           	function setWidth()
			{
				var width;
				if (self.innerHeight) // All browsers except IE
				{
					width = self.innerWidth;
				}
				else if (document.documentElement && document.documentElement.clientHeight)// IE 6 strict
				{
					width = document.documentElement.clientWidth;
				}
					else if (document.body) // other IE
				{
					width = document.body.clientWidth;
				}
	
				document.getElementById('gradient').width = width-540;
			}
			

			window.onload = function()
			{
				setWidth();
			}
	
			window.onresize = function() 
			{
				setWidth();
			}
        </script>
</head>
<body class="banner" onload="ldapEnabled();javascript:document.LogonForm.username.focus();">
	<table class="mast3">
    	<tr class="mast4">
    		<td class="mast1">
   				<img src="images/ibm-prodname.png" alt="IBM Total Storage" title="IBM Total Storage">
   			</td>
			<td class="mast">    				
				<img src="images/ibm-logo-white.png" alt="IBM" title="IBM" align="right">
    		</td>
    	</tr>
    </table>
    
	<div class="wrapper">
		<table style="border-collapse:collapse;" cellpadding="0" cellspacing="0" border="0">
			<tr>	
				<!-- LEFT SIDE OF PAGE -->		
				<td id="gradient" width=""><div class="div-in-td" style="background-image: url('images/gradient_login.png');background-repeat: repeat-x;">
				<!---++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ -->
				
				<form autocomplete="off" name="LogonForm" action="<? echo $_SERVER['PHP_SELF'] ?>" method="post" target="_top"> <input type="hidden" name="authType" id="authType" value="local">
				<table cellpadding="10">
					<tr>
												
						<td>
							<td width="100%">
							<table>
								<tr> <td height="140"></td></tr>
								
							<tr>
								<td style="font-size: 14pt; color: #336699; font-family: verdana, arial, helvetica, sans-serif; padding-left: 0px; padding-bottom: 0px; padding-top: 0px;" nowrap>Welcome, enter your information.</td>
							</tr>
								
							<tr> 
								<td height="25"></td>
							</tr>
							
							<tr>
								<td>
									<div>
										<label style="display: inline-block; width: 80px;padding-left: 0px; padding-bottom: 0px; padding-top: 0px;">User Name:</label>
										<input style="display: inline-block; width: 224px; padding-bottom: 0px; padding-top: 0px; BORDER-RIGHT: #cccccc 1px solid; BORDER-TOP: #a5a684 1px solid; BORDER-LEFT: #a5a684 2px solid; BORDER-BOTTOM: #cccccc 1px solid; BACKGROUND-COLOR: #fff7de" size="30" name="username" onkeypress="javascript:checkKeyPress(event);">
									</div>
								</td>
							</tr>
								
							<tr> 
								<td style="height: 7px;"></td>
							</tr>							
							
							<tr>
								<td>
									<div>
										<label style="display: inline-block; width: 80px;padding-left: 0px; padding-bottom: 0px; padding-top: 0px;">Password:</label>
										<input style="display: inline-block; width: 224px; padding-bottom: 0px; padding-top: 0px;  BORDER-RIGHT: #cccccc 1px solid; BORDER-TOP: #a5a684 1px solid; FONT-SIZE: 10pt; BORDER-LEFT: #a5a684 2px solid; BORDER-BOTTOM: #cccccc 1px solid; FONT-FAMILY: Arial, Helvetica, sans-serif; BACKGROUND-COLOR: #fff7de" type="password" size="30" name="password" onkeypress="javascript:checkKeyPress(event);">
									</div>
								</td>		
							</tr>
													
							<tr id="extra_space" style="display: none"> 
									<td style="height: 17px;"></td>	
							</tr>	

							
							<tr>
								<td>
									<div id="ldap_settings" style="display: none">
										<label style="display: inline-block; padding-left: 0px;">Remote Authentication</label>
										<input style="display: inline-block; padding-left: 0px; padding-bottom: 0px; vertical-align: middle;" type="checkbox" id="use_ldap" name="use_ldap" <? if($LDAPisEnabled) echo "checked" ?> > 

									</div>
								</td>
							</tr>
	
							<tr> 
								<td style="height: 10px;"></td>
							</tr>	
							
							<tr>
								<td>
									<div>
										<label style="display: inline-block; width: 250px;"></label>
										<input type="button" class="button" onmouseover="className='buttonover'" onmouseout="className='button'" value="Log in" name="loginloginbutton" onkeypress="javascript:checkKeyPress(event);" onclick="javascript:processRequest();">
									</div>
								</td>		
							</tr>
							
							<tr> 
								<td height="20"></td>
							</tr>	
							

							
							<?php
								if( $_REQUEST['login_error'] )
								{
									$errorMessage = $errorMap[$_REQUEST['reason']];
									//error_log("reason for error in login = ".$_REQUEST['reason']);
									if( $errorMessage == "" )
									{
										$errorMessage = $errorMap[4103];
									}

									if (($_POST['username'] == 'service') && ($_REQUEST['reason'] == 4103))
									{
										$errorMessage= "Verify that login and password are correct and that Remote Service User support is enabled.";
									}

														
									echo "
									<tr>
										<td>
											<table class='error-table' >
												<tr>
													<td class='error-msg' >";
														print("Login Failed. ".$errorMessage);
														echo "	
													</td>
												</tr>
											</table>
										</td>
									</tr>
									";
									
								}

							?>
							
							
						</table>
						</td>
						</td>
				</tr>
			</table>
			</form>


			</div></td>
				
				
				<!--- Right SIDE OF PAGE --->
				<td width="540px"><div class="div-in-td" style="background-image: url('images/gray_swoosh880.png'); background-repeat: no-repeat; background-position: right;">
					<table>
						<tr>
							<td width="100%"></td>
							<!-- the login help page was pointing to just help_main_login.htm instead of help/help_main_login.htm -->
							<td><a id="help" href="help/help_main_login.htm" target=WN_HELP name="help">Help</a></td>
						</tr>
					</table>
				</div></td>
			</tr>
		</table>
	</div>
    


</body>
</html>