venice-main-classic/scripts/login.js

// The contents of this file are subject to the Mozilla Public License Version 1.1
// (the "License"); you may not use this file except in compliance with the License.
// You may obtain a copy of the License at <http://www.mozilla.org/MPL/>.
// 
// Software distributed under the License is distributed on an "AS IS" basis, WITHOUT
// WARRANTY OF ANY KIND, either express or implied. See the License for the specific
// language governing rights and limitations under the License.
// 
// The Original Code is the Venice Web Communities System.
// 
// The Initial Developer of the Original Code is Eric J. Bowersox <erbo@users.sf.net>,
// for Silverwrist Design Studios.  Portions created by Eric J. Bowersox are
// Copyright (C) 2001-2004 Eric J. Bowersox/Silverwrist Design Studios.  All Rights Reserved.
// 
// Contributor(s): 

importPackage(Packages.com.silverwrist.venice.core);
importPackage(Packages.com.silverwrist.venice.except);
importPackage(Packages.com.silverwrist.venice.ui);
importPackage(Packages.com.silverwrist.venice.ui.dlg);
importPackage(Packages.com.silverwrist.venice.ui.helpers);

// Get the request object and the target URI.
rinput = bsf.lookupBean("request");
target = rinput.getParameter("tgt");
if (target==null)
  target = "top.js.vs";

// If the user is already logged in, this script is a no-op - just bounce to the specified target.
user = rinput.user;
if (user.isLoggedIn())
{ // user already logged in - just bail on this
  vlib.output(new Redirect(target,LinkTypes.SERVLET));
  vlib.done();

} // end if

// Test to see if the IP address has been banned.
banmsg = rinput.engine.testIPBan(rinput.sourceAddress);
if (banmsg!=null)
{ // this IP address has been banned - you are Not Allowed
  vlib.output(new ErrorBox("This IP address has been banned",banmsg,target));
  vlib.done();

} // end if

dlg = rinput.getDialog("login");

if ("GET"==rinput.verb)
{ // display the dialog and have done with it
  dlg.setValue("tgt",target);
  rinput.location = target;
  vlib.output(dlg);
  vlib.done();

} // end if

// everything that follows is for a POST operation
op = dlg.whichButton(rinput) + "";
if (op=="cancel")
{ // user cancelled login - bounce back to the target
  vlib.output(new Redirect(target,LinkTypes.SERVLET));
  vlib.done();

} // end if

dlg.load(rinput);        // load the dialog parameters
rc = null;               // return from this script
if (op=="remind")
{ // send the login reminder
  try
  { // perform the reminder operation
    rinput.engine.sendPasswordReminder(dlg.getValue("user"));

    // recycle the dialog and output it again
    dlg.setErrorMessage("Password reminder has been sent to your e-mail address.");
    dlg.setValue("pass",null);
    rinput.location = target;
    rc = dlg;

  } // end try
  catch (e)
  { // caught an exception here - what do we do about it?
    etype = vlib.exceptionType(e) + "";
    if (etype.match("DataException"))
      rc = new ErrorBox("Database Error","Database error finding user: " + e.getMessage(),target);
    else if (etype.match("AccessError"))
      rc = new ErrorBox("User E-mail Address Not Found",e.getMessage(),target);
    else if (etype.match("EmailException"))
      rc = new ErrorBox("E-mail Error","E-mail error sending reminder: " + e.getMessage(),target);
    else
      rc = e;

  } // end catch

} // end if
else if (op=="login")
{ // actually log in!
  try
  { // authenticate the user
    user.authenticate(dlg.getValue("user"),dlg.getValue("pass"));

    logger.debug("User \"" + user.userName + "\" logged in successfully");

    if (dlg.getValue("saveme").booleanValue())
    { // If the user wants a cookie, give it to them!
      cctl = vlib.queryCookieControl(rinput);
      cctl.savePersistentCookie(rinput.getConfigProperty("login.cookie"),user.getAuthenticationToken(),
                                vlib.toInteger(rinput.getConfigProperty("login.cookie.age")));

    } // end if

    // Clear the left menus (to force recomputation) and bounce us back to whereever we were
    // supposed to go.
    logger.debug("Ready to bounce to \"" + target + "\"");
    rinput.setSessionAttribute(RequestInput.LEFT_MENU_SESSION_ATTR,null);
    if (user.isEmailVerified())
      rc = new Redirect(target,LinkTypes.SERVLET);
    else  // jump to the Verify dialog before we do anything else
      rc = new Redirect("verify_email.js.vs?tgt=" + vlib.encodeURL(target),LinkTypes.SERVLET);

  } // end try
  catch (e)
  { // caught an exception here - what do we do about it?
    etype = vlib.exceptionType(e) + "";
    if (etype.match("DataException"))
      rc = new ErrorBox("Database Error","Database error logging in: " + e.message,target);
    else if (etype.match("AccessError"))
    { // this indicates a problem with the user account or password
      dlg.setErrorMessage(e.message);
      dlg.setValue("pass",null);
      rinput.location = target;
      rc = dlg;

    } // end else if
    else
      rc = e;

  } // end catch

} // end else if
else
{ // unknown button pressed!
  logger.error("no known button click on POST to login.js");
  rc = new ErrorBox("Internal Error","Unknown command button pressed",target);

} // end else

vlib.output(rc);  // all done!
Merge of the NewUI changes into the trunk 2002-01-06 19:05:37 -07:00			`// The contents of this file are subject to the Mozilla Public License Version 1.1`
			`// (the "License"); you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at <http://www.mozilla.org/MPL/>.`
			`//`
			`// Software distributed under the License is distributed on an "AS IS" basis, WITHOUT`
			`// WARRANTY OF ANY KIND, either express or implied. See the License for the specific`
			`// language governing rights and limitations under the License.`
			`//`
			`// The Original Code is the Venice Web Communities System.`
			`//`
replaced E-mail addresses in the rest of the source with the users.sf.net alias 2006-01-25 21:40:34 -07:00			`// The Initial Developer of the Original Code is Eric J. Bowersox <erbo@users.sf.net>,`
Merge of the NewUI changes into the trunk 2002-01-06 19:05:37 -07:00			`// for Silverwrist Design Studios. Portions created by Eric J. Bowersox are`
added IP ban facility - IP addresses can now be blocked from logging into Venice, either individually or in blocks 2004-05-30 21:38:41 -06:00			`// Copyright (C) 2001-2004 Eric J. Bowersox/Silverwrist Design Studios. All Rights Reserved.`
Merge of the NewUI changes into the trunk 2002-01-06 19:05:37 -07:00			`//`
			`// Contributor(s):`

			`importPackage(Packages.com.silverwrist.venice.core);`
			`importPackage(Packages.com.silverwrist.venice.except);`
			`importPackage(Packages.com.silverwrist.venice.ui);`
			`importPackage(Packages.com.silverwrist.venice.ui.dlg);`
			`importPackage(Packages.com.silverwrist.venice.ui.helpers);`

			`// Get the request object and the target URI.`
			`rinput = bsf.lookupBean("request");`
			`target = rinput.getParameter("tgt");`
			`if (target==null)`
			`target = "top.js.vs";`

			`// If the user is already logged in, this script is a no-op - just bounce to the specified target.`
			`user = rinput.user;`
			`if (user.isLoggedIn())`
			`{ // user already logged in - just bail on this`
			`vlib.output(new Redirect(target,LinkTypes.SERVLET));`
			`vlib.done();`

			`} // end if`

added IP ban facility - IP addresses can now be blocked from logging into Venice, either individually or in blocks 2004-05-30 21:38:41 -06:00			`// Test to see if the IP address has been banned.`
			`banmsg = rinput.engine.testIPBan(rinput.sourceAddress);`
			`if (banmsg!=null)`
			`{ // this IP address has been banned - you are Not Allowed`
			`vlib.output(new ErrorBox("This IP address has been banned",banmsg,target));`
			`vlib.done();`

			`} // end if`

Merge of the NewUI changes into the trunk 2002-01-06 19:05:37 -07:00			`dlg = rinput.getDialog("login");`

			`if ("GET"==rinput.verb)`
			`{ // display the dialog and have done with it`
			`dlg.setValue("tgt",target);`
			`rinput.location = target;`
			`vlib.output(dlg);`
			`vlib.done();`

			`} // end if`

			`// everything that follows is for a POST operation`
			`op = dlg.whichButton(rinput) + "";`
			`if (op=="cancel")`
			`{ // user cancelled login - bounce back to the target`
			`vlib.output(new Redirect(target,LinkTypes.SERVLET));`
			`vlib.done();`

			`} // end if`

			`dlg.load(rinput); // load the dialog parameters`
			`rc = null; // return from this script`
			`if (op=="remind")`
			`{ // send the login reminder`
			`try`
			`{ // perform the reminder operation`
			`rinput.engine.sendPasswordReminder(dlg.getValue("user"));`

			`// recycle the dialog and output it again`
			`dlg.setErrorMessage("Password reminder has been sent to your e-mail address.");`
			`dlg.setValue("pass",null);`
			`rinput.location = target;`
			`rc = dlg;`

			`} // end try`
			`catch (e)`
			`{ // caught an exception here - what do we do about it?`
			`etype = vlib.exceptionType(e) + "";`
			`if (etype.match("DataException"))`
			`rc = new ErrorBox("Database Error","Database error finding user: " + e.getMessage(),target);`
			`else if (etype.match("AccessError"))`
			`rc = new ErrorBox("User E-mail Address Not Found",e.getMessage(),target);`
			`else if (etype.match("EmailException"))`
			`rc = new ErrorBox("E-mail Error","E-mail error sending reminder: " + e.getMessage(),target);`
			`else`
			`rc = e;`

			`} // end catch`

			`} // end if`
			`else if (op=="login")`
			`{ // actually log in!`
			`try`
			`{ // authenticate the user`
			`user.authenticate(dlg.getValue("user"),dlg.getValue("pass"));`

			`logger.debug("User \"" + user.userName + "\" logged in successfully");`

			`if (dlg.getValue("saveme").booleanValue())`
the erbo_reorg_04202002 branch is no more...development continues on the trunk while the stable_branch_04202002 branch takes the 'stable' role 2002-04-24 00:39:29 -06:00			`{ // If the user wants a cookie, give it to them!`
			`cctl = vlib.queryCookieControl(rinput);`
added global UI properties, cookie-reading APIs to CookieControl, moved HttpVeniceUISession initialization into a script file (session_init.js) 2002-05-12 02:53:28 -06:00			`cctl.savePersistentCookie(rinput.getConfigProperty("login.cookie"),user.getAuthenticationToken(),`
			`vlib.toInteger(rinput.getConfigProperty("login.cookie.age")));`

the erbo_reorg_04202002 branch is no more...development continues on the trunk while the stable_branch_04202002 branch takes the 'stable' role 2002-04-24 00:39:29 -06:00			`} // end if`
Merge of the NewUI changes into the trunk 2002-01-06 19:05:37 -07:00
			`// Clear the left menus (to force recomputation) and bounce us back to whereever we were`
			`// supposed to go.`
			`logger.debug("Ready to bounce to \"" + target + "\"");`
			`rinput.setSessionAttribute(RequestInput.LEFT_MENU_SESSION_ATTR,null);`
			`if (user.isEmailVerified())`
			`rc = new Redirect(target,LinkTypes.SERVLET);`
			`else // jump to the Verify dialog before we do anything else`
			`rc = new Redirect("verify_email.js.vs?tgt=" + vlib.encodeURL(target),LinkTypes.SERVLET);`

			`} // end try`
			`catch (e)`
			`{ // caught an exception here - what do we do about it?`
			`etype = vlib.exceptionType(e) + "";`
			`if (etype.match("DataException"))`
			`rc = new ErrorBox("Database Error","Database error logging in: " + e.message,target);`
			`else if (etype.match("AccessError"))`
			`{ // this indicates a problem with the user account or password`
			`dlg.setErrorMessage(e.message);`
			`dlg.setValue("pass",null);`
			`rinput.location = target;`
			`rc = dlg;`

			`} // end else if`
			`else`
			`rc = e;`

			`} // end catch`

			`} // end else if`
			`else`
			`{ // unknown button pressed!`
			`logger.error("no known button click on POST to login.js");`
			`rc = new ErrorBox("Internal Error","Unknown command button pressed",target);`

			`} // end else`

			`vlib.output(rc); // all done!`