summaryrefslogtreecommitdiff
path: root/menu.pl
blob: b55144ec8c108a468f266f162a1442a7e1c26d38 (plain)
  1. #!/usr/bin/perl
  2. #
  3. ######################################################################
  4. # LedgerSMB Accounting and ERP
  5. # http://www.ledgersmb.org/
  6. #
  7. # Copyright (C) 2006
  8. # This work contains copyrighted information from a number of sources all used
  9. # with permission.
  10. #
  11. # This file contains source code included with or based on SQL-Ledger which
  12. # is Copyright Dieter Simader and DWS Systems Inc. 2000-2005 and licensed
  13. # under the GNU General Public License version 2 or, at your option, any later
  14. # version. For a full list including contact information of contributors,
  15. # maintainers, and copyright holders, see the CONTRIBUTORS file.
  16. #
  17. # Original Copyright Notice from SQL-Ledger 2.6.17 (before the fork):
  18. # Copyright (C) 2001
  19. #
  20. # Author: Dieter Simader
  21. # Email: dsimader@sql-ledger.org
  22. # Web: http://www.sql-ledger.org
  23. #
  24. # Contributors:
  25. #
  26. #
  27. #
  28. # This program is free software; you can redistribute it and/or modify
  29. # it under the terms of the GNU General Public License as published by
  30. # the Free Software Foundation; either version 2 of the License, or
  31. # (at your option) any later version.
  32. #
  33. # This program is distributed in the hope that it will be useful,
  34. # but WITHOUT ANY WARRANTY; without even the implied warranty of
  35. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  36. # GNU General Public License for more details.
  37. # You should have received a copy of the GNU General Public License
  38. # along with this program; if not, write to the Free Software
  39. # Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
  40. #######################################################################
  41. #
  42. # this script is the frontend called from bin/$terminal/$script
  43. # all the accounting modules are linked to this script which in
  44. # turn execute the same script in bin/$terminal/
  45. #
  46. #######################################################################
  47. use LedgerSMB::Sysconfig;
  48. use Digest::MD5;
  49. $| = 1;
  50. use LedgerSMB::User;
  51. use LedgerSMB::Form;
  52. use LedgerSMB::Locale;
  53. use LedgerSMB::Session;
  54. use Data::Dumper;
  55. require "common.pl";
  56. # for custom preprocessing logic
  57. eval { require "custom.pl"; };
  58. $form = new Form;
  59. # name of this script
  60. $0 =~ tr/\\/\//;
  61. $pos = rindex $0, '/';
  62. $script = substr($0, $pos + 1);
  63. # we use $script for the language module
  64. $form->{script} = $script;
  65. # strip .pl for translation files
  66. $script =~ s/\.pl//;
  67. # pull in DBI
  68. use DBI qw(:sql_types);
  69. # grab user config. This is ugly and unecessary if/when
  70. # we get rid of myconfig and use User as a real object
  71. %myconfig = %{LedgerSMB::User->fetch_config($form->{login})};
  72. if ($@) {
  73. $locale = LedgerSMB::Locale->get_handle($myconfig{countrycode}) or
  74. $form->error(__FILE__.':'.__LINE__.": Locale not loaded: $!\n");
  75. $form->{charset} = $locale->encoding;
  76. $form->{charset} = 'UTF-8';
  77. $locale->encoding('UTF-8');
  78. $form->{callback} = "";
  79. $msg1 = $locale->text('You are logged out!');
  80. $msg2 = $locale->text('Login');
  81. $form->redirect("$msg1 <p><a href=\"login.pl\" target=\"_top\">$msg2</a></p>");
  82. }
  83. # locale messages
  84. $locale = LedgerSMB::Locale->get_handle($myconfig{countrycode}) or
  85. $form->error(__FILE__.':'.__LINE__.": Locale not loaded: $!\n");
  86. #$form->{charset} = $locale->encoding;
  87. $form->{charset} = 'UTF-8';
  88. $locale->encoding('UTF-8');
  89. # send warnings to browser
  90. $SIG{__WARN__} = sub { $form->info($_[0]) };
  91. # send errors to browser
  92. $SIG{__DIE__} = sub { $form->error(__FILE__.':'.__LINE__.': '.$_[0]) };
  93. map { $form->{$_} = $myconfig{$_} } qw(stylesheet timeout) unless ($form->{type} eq 'preferences');
  94. $form->db_init(\%myconfig);
  95. if ($form->{path} ne 'bin/lynx'){ $form->{path} = 'bin/mozilla';}
  96. # did sysadmin lock us out
  97. if (-f "${LedgerSMB::Sysconfig::userspath}/nologin") {
  98. $form->error(__FILE__.':'.__LINE__.': '.$locale->text('System currently down for maintenance!'));
  99. }
  100. # pull in the main code
  101. require "bin/$form->{script}";
  102. # customized scripts
  103. if (-f "bin/custom/$form->{script}") {
  104. eval { require "bin/custom/$form->{script}"; };
  105. }
  106. # customized scripts for login
  107. if (-f "bin/custom/$form->{login}_$form->{script}") {
  108. eval { require "bin/custom/$form->{login}_$form->{script}"; };
  109. }
  110. if ($form->{action}) {
  111. # window title bar, user info
  112. $form->{titlebar} = "LedgerSMB ".$locale->text('Version'). " $form->{version} - $myconfig{name} - $myconfig{dbname}";
  113. &check_password;
  114. if (substr($form->{action}, 0, 1) =~ /( |\.)/) {
  115. &{ $form->{nextsub} };
  116. } else {
  117. &{ $form->{action} };
  118. }
  119. } else {
  120. $form->error(__FILE__.':'.__LINE__.': '.$locale->text('action= not defined!'));
  121. }
  122. 1;
  123. # end
  124. sub check_password {
  125. if ($myconfig{password}) {
  126. require "bin/pw.pl";
  127. if ($form->{password}) {
  128. if ($myconfig{password} ne (Digest::MD5::md5_hex $form->{password})) {
  129. if ($ENV{HTTP_USER_AGENT}) {
  130. &getpassword;
  131. } else {
  132. $form->error(__FILE__.':'.__LINE__.': '.$locale->text('Access Denied!'));
  133. }
  134. exit;
  135. } else {
  136. Session::session_create($form);
  137. }
  138. } else {
  139. if ($ENV{HTTP_USER_AGENT}) {
  140. $ENV{HTTP_COOKIE} =~ s/;\s*/;/g;
  141. @cookies = split /;/, $ENV{HTTP_COOKIE};
  142. foreach (@cookies) {
  143. ($name,$value) = split /=/, $_, 2;
  144. $cookie{$name} = $value;
  145. }
  146. if ($form->{action} ne 'display') {
  147. if ((! $cookie{"LedgerSMB-$form->{login}"}) || $cookie{"LedgerSMB-$form->{login}"} ne $form->{sessionid}) {
  148. &getpassword(1);
  149. exit;
  150. }
  151. }
  152. #check for valid session
  153. if(!Session::session_check($cookie{"LedgerSMB"}, $form)){
  154. &getpassword(1);
  155. exit;
  156. }
  157. } else {
  158. exit;
  159. }
  160. }
  161. }
  162. }