summaryrefslogtreecommitdiff
path: root/menu.pl
blob: f1adbb587bb212a351261b606ee3071c070ab107 (plain) 
    

  1. #!/usr/bin/perl
    2. 

  2. #
    3. 

  3. ######################################################################
    4. 

  4. # LedgerSMB Accounting and ERP
    5. 

  5. 

  6. # http://www.ledgersmb.org/
    7. 

  7. #
    8. 

  8. # Copyright (C) 2006
    9. 

  9. # This work contains copyrighted information from a number of sources all used
    10. 

  10. # with permission.
    11. 

  11. #
    12. 

  12. # This file contains source code included with or based on SQL-Ledger which
    13. 

  13. # is Copyright Dieter Simader and DWS Systems Inc. 2000-2005 and licensed 
    14. 

  14. # under the GNU General Public License version 2 or, at your option, any later 
    15. 

  15. # version.  For a full list including contact information of contributors, 
    16. 

  16. # maintainers, and copyright holders, see the CONTRIBUTORS file.
    17. 

  17. #
    18. 

  18. # Original Copyright Notice from SQL-Ledger 2.6.17 (before the fork):
    19. 

  19. # Copyright (C) 2001
    20. 

  20. #
    21. 

  21. #  Author: Dieter Simader
    22. 

  22. #   Email: dsimader@sql-ledger.org
    23. 

  23. #     Web: http://www.sql-ledger.org
    24. 

  24. #
    25. 

  25. #  Contributors:
    26. 

  26. #
    27. 

  27. #
    28. 

  28. #
    29. 

  29. # This program is free software; you can redistribute it and/or modify
    30. 

  30. # it under the terms of the GNU General Public License as published by
    31. 

  31. # the Free Software Foundation; either version 2 of the License, or
    32. 

  32. # (at your option) any later version.
    33. 

  33. #
    34. 

  34. # This program is distributed in the hope that it will be useful,
    35. 

  35. # but WITHOUT ANY WARRANTY; without even the implied warranty of
    36. 

  36. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    37. 

  37. # GNU General Public License for more details.
    38. 

  38. # You should have received a copy of the GNU General Public License
    39. 

  39. # along with this program; if not, write to the Free Software
    40. 

  40. # Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
    41. 

  41. #######################################################################
    42. 

  42. #
    43. 

  43. # this script is the frontend called from bin/$terminal/$script
    44. 

  44. # all the accounting modules are linked to this script which in
    45. 

  45. # turn execute the same script in bin/$terminal/
    46. 

  46. #
    47. 

  47. #######################################################################
    48. 

  48. 

  49. use LedgerSMB::Sysconfig;
    50. 

  50. use Digest::MD5;
    51. 

  51. 

  52. $| = 1;
    53. 

  53. 

  54. use LedgerSMB::User;
    55. 

  55. use LedgerSMB::Form;
    56. 

  56. use LedgerSMB::Locale;
    57. 

  57. use LedgerSMB::Session;
    58. 

  58. use Data::Dumper;
    59. 

  59. 

  60. 

  61. # for custom preprocessing logic
    62. 

  62. eval { require "custom.pl"; };
    63. 

  63. 

  64. $form = new Form;
    65. 

  65.   
    66. 

  66. # name of this script
    67. 

  67. $0 =~ tr/\\/\//;
    68. 

  68. $pos = rindex $0, '/';
    69. 

  69. $script = substr($0, $pos + 1);
    70. 

  70. 

  71. # we use $script for the language module
    72. 

  72. $form->{script} = $script;
    73. 

  73. # strip .pl for translation files
    74. 

  74. $script =~ s/\.pl//;
    75. 

  75. 

  76. # pull in DBI
    77. 

  77. use DBI qw(:sql_types);
    78. 

  78. 

  79. # grab user config. This is ugly and unecessary if/when 
    80. 

  80. # we get rid of myconfig and use User as a real object 
    81. 

  81. %myconfig = %{LedgerSMB::User->fetch_config($form->{login})};
    82. 

  82. 

  83. if ($@) {
    84. 

  84.     $locale = LedgerSMB::Locale->get_handle($myconfig{countrycode}) or
    85. 

  85.         $form->error(__FILE__.':'.__LINE__.": Locale not loaded: $!\n");
    86. 

  86.     $form->{charset} = $locale->encoding;
    87. 

  87.     $form->{charset} = 'UTF-8';
    88. 

  88.     $locale->encoding('UTF-8');
    89. 

  89. 

  90.     $form->{callback} = "";
    91. 

  91.     $msg1 = $locale->text('You are logged out!');
    92. 

  92.     $msg2 = $locale->text('Login');
    93. 

  93.     $form->redirect("$msg1 <p><a href=\"login.pl\" target=\"_top\">$msg2</a></p>");
    94. 

  94. }
    95. 

  95. 

  96. # locale messages
    97. 

  97. $locale = LedgerSMB::Locale->get_handle($myconfig{countrycode}) or
    98. 

  98.     $form->error(__FILE__.':'.__LINE__.": Locale not loaded: $!\n");
    99. 

  99. #$form->{charset} = $locale->encoding;
    100. 

  100. $form->{charset} = 'UTF-8';
    101. 

  101. $locale->encoding('UTF-8');
    102. 

  102. 

  103. # send warnings to browser
    104. 

  104. $SIG{__WARN__} = sub { $form->info($_[0]) };
    105. 

  105. 

  106. # send errors to browser
    107. 

  107. $SIG{__DIE__} = sub { $form->error(__FILE__.':'.__LINE__.': '.$_[0]) };
    108. 

  108. 

  109. map { $form->{$_} = $myconfig{$_} } qw(stylesheet timeout) unless ($form->{type} eq 'preferences');
    110. 

  110. $form->db_init(\%myconfig);
    111. 

  111. 

  112. if ($form->{path} ne 'bin/lynx'){ $form->{path} = 'bin/mozilla';}   
    113. 

  113. 

  114. # did sysadmin lock us out
    115. 

  115. if (-f "${LedgerSMB::Sysconfig::userspath}/nologin") {
    116. 

  116.     $form->error(__FILE__.':'.__LINE__.': '.$locale->text('System currently down for maintenance!'));
    117. 

  117. }
    118. 

  118. 

  119. # pull in the main code
    120. 

  120. require "bin/$form->{script}";
    121. 

  121. 

  122. # customized scripts
    123. 

  123. if (-f "bin/custom/$form->{script}") {
    124. 

  124.     eval { require "bin/custom/$form->{script}"; };
    125. 

  125. }
    126. 

  126. 

  127. # customized scripts for login
    128. 

  128. if (-f "bin/custom/$form->{login}_$form->{script}") {
    129. 

  129.     eval { require "bin/custom/$form->{login}_$form->{script}"; };
    130. 

  130. }
    131. 

  131. 

  132.   
    133. 

  133. if ($form->{action}) {
    134. 

  134.     # window title bar, user info
    135. 

  135.     $form->{titlebar} = "LedgerSMB ".$locale->text('Version'). " $form->{version} - $myconfig{name} - $myconfig{dbname}";
    136. 

  136. 

  137.     &check_password;
    138. 

  138. 

  139.     if (substr($form->{action}, 0, 1) =~ /( |\.)/) {
    140. 

  140.         &{ $form->{nextsub} };
    141. 

  141.     } else {
    142. 

  142.         &{ $form->{action} };
    143. 

  143.     }
    144. 

  144. 

  145. } else {
    146. 

  146.     $form->error(__FILE__.':'.__LINE__.': '.$locale->text('action= not defined!'));
    147. 

  147. }
    148. 

  148. 

  149. 1;
    150. 

  150. # end
    151. 

  151. 

  152. 

  153. sub check_password {
    154. 

  154.   
    155. 

  155.     if ($myconfig{password}) {
    156. 

  156. 

  157.         require "bin/pw.pl";
    158. 

  158. 

  159.         if ($form->{password}) {
    160. 

  160.             if ($myconfig{password} ne (Digest::MD5::md5_hex $form->{password})) {
    161. 

  161.                 if ($ENV{HTTP_USER_AGENT}) {
    162. 

  162.                     &getpassword;
    163. 

  163.                 } else {
    164. 

  164.                     $form->error(__FILE__.':'.__LINE__.': '.$locale->text('Access Denied!'));
    165. 

  165.                 }
    166. 

  166.                 exit;
    167. 

  167.             } else {
    168. 

  168.                 Session::session_create($form);
    169. 

  169.             }
    170. 

  170.             
    171. 

  171.         } else {
    172. 

  172.             if ($ENV{HTTP_USER_AGENT}) {
    173. 

  173.                 $ENV{HTTP_COOKIE} =~ s/;\s*/;/g;
    174. 

  174.                 @cookies = split /;/, $ENV{HTTP_COOKIE};
    175. 

  175.                 foreach (@cookies) {
    176. 

  176.                     ($name,$value) = split /=/, $_, 2;
    177. 

  177.                     $cookie{$name} = $value;
    178. 

  178.                 }
    179. 

  179. 

  180.                 if ($form->{action} ne 'display') {
    181. 

  181.                     if ((! $cookie{"LedgerSMB-$form->{login}"}) || $cookie{"LedgerSMB-$form->{login}"} ne $form->{sessionid}) {
    182. 

  182.                         &getpassword(1);
    183. 

  183.                         exit;
    184. 

  184.                     }
    185. 

  185.                 }
    186. 

  186.                 #check for valid session
    187. 

  187.                 if(!Session::session_check($cookie{"LedgerSMB"}, $form)){
    188. 

  188.                     &getpassword(1);
    189. 

  189.                     exit;
    190. 

  190.                 }
    191. 

  191.             } else {
    192. 

  192.                 exit;
    193. 

  193.             }
    194. 

  194.         }
    195. 

  195.     }
    196. 

  196. }
    197. 

  197. 

  198.
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-26 11:53:48 +0000