openstamanager/index.php

203 lines
6.7 KiB
PHP
Raw Normal View History

<?php
2020-09-07 15:04:06 +02:00
/*
* OpenSTAManager: il software gestionale open source per l'assistenza tecnica e la fatturazione
2021-01-20 15:08:51 +01:00
* Copyright (C) DevCode s.r.l.
2020-09-07 15:04:06 +02:00
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <https://www.gnu.org/licenses/>.
*/
$skip_permissions = true;
include_once __DIR__.'/core.php';
2022-05-31 17:56:54 +02:00
use Carbon\Carbon;
$op = filter('op');
// LOGIN
switch ($op) {
case 'login':
$username = post('username');
2023-11-17 16:41:52 +01:00
$password = $_POST['password'];
2018-09-20 12:05:22 +02:00
if ($dbo->isConnected() && $dbo->isInstalled() && auth()->attempt($username, $password)) {
2019-08-28 09:28:08 +02:00
$_SESSION['keep_alive'] = true;
2021-02-18 18:48:44 +01:00
if (intval(setting('Inizio periodo calendario'))) {
2022-05-31 17:56:54 +02:00
$_SESSION['period_start'] = Carbon::createFromFormat('d/m/Y', setting('Inizio periodo calendario'))->format('Y-m-d');
2021-02-18 18:48:44 +01:00
} else {
$_SESSION['period_start'] = date('Y').'-01-01';
}
2021-02-18 18:48:44 +01:00
if (intval(setting('Fine periodo calendario'))) {
2022-05-31 17:56:54 +02:00
$_SESSION['period_end'] = Carbon::createFromFormat('d/m/Y', setting('Fine periodo calendario'))->format('Y-m-d');
2021-02-18 18:48:44 +01:00
} else {
$_SESSION['period_end'] = date('Y').'-12-31';
}
2021-02-18 18:48:44 +01:00
// Rimozione log vecchi
2019-08-28 16:58:47 +02:00
//$dbo->query('DELETE FROM `zz_operations` WHERE DATE_ADD(`created_at`, INTERVAL 30*24*60*60 SECOND) <= NOW()');
2018-07-08 16:18:44 +02:00
} else {
2018-09-20 12:05:22 +02:00
$status = auth()->getCurrentStatus();
2018-07-08 16:18:44 +02:00
2018-07-19 17:29:21 +02:00
flash()->error(Auth::getStatus()[$status]['message']);
2018-07-08 16:18:44 +02:00
redirect(base_path().'/index.php');
2018-07-08 16:18:44 +02:00
exit();
}
break;
case 'logout':
Auth::logout();
redirect(base_path().'/index.php');
2023-08-04 14:54:28 +02:00
exit();
}
if (Auth::check() && isset($dbo) && $dbo->isConnected() && $dbo->isInstalled()) {
$module = Auth::firstModule();
if (!empty($module)) {
redirect(base_path().'/controller.php?id_module='.$module);
} else {
redirect(base_path().'/index.php?op=logout');
}
exit();
}
// Modalità manutenzione
if (!empty($config['maintenance_ip'])) {
include_once base_dir().'/include/init/maintenance.php';
}
// Procedura di installazione
include_once base_dir().'/include/init/configuration.php';
// Procedura di aggiornamento
include_once base_dir().'/include/init/update.php';
// Procedura di inizializzazione
include_once base_dir().'/include/init/init.php';
$pageTitle = tr('Login');
2018-06-26 09:41:43 +02:00
include_once App::filepath('include|custom|', 'top.php');
// Controllo se è una beta e in caso mostro un warning
if (Update::isBeta()) {
echo '
<div class="clearfix">&nbsp;</div>
2018-04-06 17:39:56 +02:00
<div class="alert alert-warning alert-dismissable col-md-6 col-md-push-3 text-center fade in">
<i class="fa fa-warning"></i> <b>'.tr('Attenzione!').'</b> '.tr('Stai utilizzando una versione <b>non stabile</b> di OSM.').'
<button aria-hidden="true" data-dismiss="alert" class="close" type="button">×</button>
</div>';
}
// Controllo se è una beta e in caso mostro un warning
if (Auth::isBrute()) {
echo '
<div class="box box-danger box-center" id="brute">
<div class="box-header with-border text-center">
<h3 class="box-title">'.tr('Attenzione').'</h3>
</div>
<div class="box-body text-center">
<p>'.tr('Sono stati effettuati troppi tentativi di accesso consecutivi!').'</p>
<p>'.tr('Tempo rimanente (in secondi)').': <span id="brute-timeout">'.(Auth::getBruteTimeout() + 1).'</span></p>
</div>
</div>
<script>
$(document).ready(function(){
$(".login-box").fadeOut();
brute();
});
function brute() {
var value = parseFloat($("#brute-timeout").html()) - 1;
$("#brute-timeout").html(value);
if(value > 0){
setTimeout("brute()", 1000);
} else{
$("#brute").fadeOut();
$(".login-box").fadeIn();
}
}
</script>';
}
2018-07-19 17:29:21 +02:00
if (!empty(flash()->getMessage('error'))) {
echo '
<script>
$(document).ready(function(){
$(".login-box").effect("shake");
});
</script>';
}
echo '
<form action="?op=login" method="post" class="login-box box" autocomplete="off" >
<div class="box-header with-border text-center">
2022-06-21 18:38:39 +02:00
<img src="'.App::getPaths()['img'].'/logo_completo.png" class="img-responsive" alt="'.tr('OpenSTAManager, il software gestionale open source per assistenza tecnica e fatturazione elettronica').'">
</div>
<div class="login-box-body box-body">
<div class="form-group input-group">
2018-12-14 11:14:52 +01:00
<span class="input-group-addon before"><i class="fa fa-user"></i> </span>
2019-04-04 10:50:29 +02:00
<input type="text" name="username" autocomplete="username" class="form-control" placeholder="'.tr('Nome utente').'"';
if (isset($username)) {
echo ' value="'.$username.'"';
}
2021-02-18 18:48:44 +01:00
echo ' required>
</div>
2020-09-07 15:04:06 +02:00
2023-03-10 10:12:12 +01:00
{[ "type": "password", "name": "password", "autocomplete": "current-password", "placeholder": "'.tr('Password').'", "icon-before": "<i class=\"fa fa-lock\"></i>"]}
2020-09-07 15:04:06 +02:00
2019-10-03 12:09:14 +02:00
<div class="text-right">
<small><a href="'.base_path().'/reset.php">'.tr('Password dimenticata?').'</a></small>
2019-07-16 15:43:15 +02:00
</div>
</div>
2020-09-07 15:04:06 +02:00
<!-- /.box-body -->
<div class="box-footer">
<button type="submit" id="login" class="btn btn-danger btn-block">'.tr('Accedi').'</button>
</div>
<!-- box-footer -->
</form>
<!-- /.box -->
<script>
$(document).ready( function(){
$("#login").click(function(){
2019-08-26 18:02:05 +02:00
$("#login").text("'.tr('Autenticazione').'...");
});
if( $("input[name=username]").val() == ""){
$("input[name=username]").focus();
}
else{
$("input[name=password]").focus();
}
});
</script>';
2022-05-16 17:17:05 +02:00
$custom_css = $dbo->isInstalled() ? html_entity_decode(setting('CSS Personalizzato')) : '';
if (!empty($custom_css)) {
echo '
<style>'.$custom_css.'</style>';
}
2018-06-26 09:41:43 +02:00
include_once App::filepath('include|custom|', 'bottom.php');