nextcloud/core/templates/login.php

<?php /** @var $l OC_L10N */ ?>
<?php
vendor_script('jsTimezoneDetect/jstz');
script('core', [
	'visitortimezone',
	'lostpassword'
]);
?>

<!--[if IE 8]><style>input[type="checkbox"]{padding:0;}</style><![endif]-->
<form method="post" name="login">
	<fieldset>
	<?php if (!empty($_['redirect_url'])) {
		print_unescaped('<input type="hidden" name="redirect_url" value="' . OC_Util::sanitizeHTML($_['redirect_url']) . '">');
	} ?>
		<?php if (isset($_['apacheauthfailed']) && ($_['apacheauthfailed'])): ?>
			<div class="warning">
				<?php p($l->t('Server side authentication failed!')); ?><br>
				<small><?php p($l->t('Please contact your administrator.')); ?></small>
			</div>
		<?php endif; ?>
		<?php foreach($_['messages'] as $message): ?>
			<div class="warning">
				<?php p($message); ?><br>
			</div>
		<?php endforeach; ?>
		<?php if (isset($_['internalexception']) && ($_['internalexception'])): ?>
			<div class="warning">
				<?php p($l->t('An internal error occured.')); ?><br>
				<small><?php p($l->t('Please try again or contact your administrator.')); ?></small>
			</div>
		<?php endif; ?>
		<div id="message" class="hidden">
			<img class="float-spinner" alt=""
				src="<?php p(\OCP\Util::imagePath('core', 'loading-dark.gif'));?>">
			<span id="messageText"></span>
			<!-- the following div ensures that the spinner is always inside the #message div -->
			<div style="clear: both;"></div>
		</div>
		<p class="grouptop">
			<input type="text" name="user" id="user"
				placeholder="<?php p($l->t('Username')); ?>"
				value="<?php p($_['username']); ?>"
				<?php p($_['user_autofocus'] ? 'autofocus' : ''); ?>
				autocomplete="on" autocapitalize="off" autocorrect="off" required>
			<label for="user" class="infield"><?php p($l->t('Username')); ?></label>
			<img class="svg" src="<?php print_unescaped(image_path('', 'actions/user.svg')); ?>" alt=""/>
		</p>

		<p class="groupbottom">
			<input type="password" name="password" id="password" value=""
				placeholder="<?php p($l->t('Password')); ?>"
				<?php p($_['user_autofocus'] ? '' : 'autofocus'); ?>
				autocomplete="on" autocapitalize="off" autocorrect="off" required>
			<label for="password" class="infield"><?php p($l->t('Password')); ?></label>
			<img class="svg" id="password-icon" src="<?php print_unescaped(image_path('', 'actions/password.svg')); ?>" alt=""/>
		</p>

		<?php if (isset($_['invalidpassword']) && ($_['invalidpassword'])): ?>
		<a id="lost-password" class="warning" href="">
			<?php p($l->t('Forgot your password? Reset it!')); ?>
		</a>
		<?php endif; ?>
		<?php if ($_['rememberLoginAllowed'] === true) : ?>
		<input type="checkbox" name="remember_login" value="1" id="remember_login">
		<label for="remember_login"><?php p($l->t('remember')); ?></label>
		<?php endif; ?>
		<input type="hidden" name="timezone-offset" id="timezone-offset"/>
		<input type="hidden" name="timezone" id="timezone"/>
		<input type="hidden" name="requesttoken" value="<?php p($_['requesttoken']) ?>">
		<input type="submit" id="submit" class="login primary" value="<?php p($l->t('Log in')); ?>" disabled="disabled"/>
	</fieldset>
</form>
<?php if (!empty($_['alt_login'])) { ?>
<form id="alternative-logins">
	<fieldset>
		<legend><?php p($l->t('Alternative Logins')) ?></legend>
		<ul>
			<?php foreach($_['alt_login'] as $login): ?>
				<li><a class="button" href="<?php print_unescaped($login['href']); ?>" ><?php p($login['name']); ?></a></li>
			<?php endforeach; ?>
		</ul>
	</fieldset>
</form>
<?php }
Add CSRF check on login and logout This is a minor issue and not worth a backport in my opinion as it could break more things than it's worth having it. 2014-05-04 15:56:21 +04:00			`<?php /** @var $l OC_L10N */ ?>`
use script instead of \OCP\Util methods 2014-12-10 18:18:18 +03:00			`<?php`
			`vendor_script('jsTimezoneDetect/jstz');`
			`script('core', [`
			`'visitortimezone',`
			`'lostpassword'`
			`]);`
			`?>`
Add CSRF check on login and logout This is a minor issue and not worth a backport in my opinion as it could break more things than it's worth having it. 2014-05-04 15:56:21 +04:00
IE 8: fix appeareance of checkboxes on login and files pages 2012-03-29 20:16:41 +04:00			`<!--[if IE 8]><style>input[type="checkbox"]{padding:0;}</style><![endif]-->`
show a message at the log-in screen if inital encryption take place 2013-11-26 02:49:05 +04:00			`<form method="post" name="login">`
Spaces to tabs 2013-01-14 23:30:28 +04:00			`<fieldset>`
			`<?php if (!empty($_['redirect_url'])) {`
addressing #14982 self-closing tags ending slash doesn't have a purpose & should be removed 2015-03-18 01:57:23 +03:00			`print_unescaped('<input type="hidden" name="redirect_url" value="' . OC_Util::sanitizeHTML($_['redirect_url']) . '">');`
Spaces to tabs 2013-01-14 23:30:28 +04:00			`} ?>`
adding warning about failed apache module auth 2013-10-02 03:02:46 +04:00			`<?php if (isset($_['apacheauthfailed']) && ($_['apacheauthfailed'])): ?>`
			`<div class="warning">`
			`<?php p($l->t('Server side authentication failed!')); ?><br>`
			`<small><?php p($l->t('Please contact your administrator.')); ?></small>`
			`</div>`
			`<?php endif; ?>`
Allow custom error messages for the login page 2015-01-22 16:13:02 +03:00			`<?php foreach($_['messages'] as $message): ?>`
			`<div class="warning">`
			`<?php p($message); ?><br>`
			`</div>`
			`<?php endforeach; ?>`
do not disclose information, show generic error on login page Conflicts: core/templates/login.php lib/base.php 2015-03-31 15:56:02 +03:00			`<?php if (isset($_['internalexception']) && ($_['internalexception'])): ?>`
			`<div class="warning">`
			`<?php p($l->t('An internal error occured.')); ?><br>`
			`<small><?php p($l->t('Please try again or contact your administrator.')); ?></small>`
			`</div>`
			`<?php endif; ?>`
Changed a p element by a div A p element cannot contain a div element (here `<div style="clear: both;"></div>`). It should be change by a div element to fits standards. 2015-06-08 16:22:52 +03:00			`<div id="message" class="hidden">`
add missing alt attribute to spinner 2014-11-06 14:09:48 +03:00			`<img class="float-spinner" alt=""`
addressing #14982 self-closing tags ending slash doesn't have a purpose & should be removed 2015-03-18 01:57:23 +03:00			`src="<?php p(\OCP\Util::imagePath('core', 'loading-dark.gif'));?>">`
add spinner to the template so that it can be loaded in time 2013-11-28 01:36:47 +04:00			`<span id="messageText"></span>`
Fix resize issue for trash button in chrome and overflowing spinner in .update class fixes #6108 2013-11-29 00:36:43 +04:00			`<!-- the following div ensures that the spinner is always inside the #message div -->`
			`<div style="clear: both;"></div>`
Changed a p element by a div A p element cannot contain a div element (here `<div style="clear: both;"></div>`). It should be change by a div element to fits standards. 2015-06-08 16:22:52 +03:00			`</div>`
first step of infield label removal, fix login screen 2014-05-06 14:07:53 +04:00			`<p class="grouptop">`
			`<input type="text" name="user" id="user"`
			`placeholder="<?php p($l->t('Username')); ?>"`
			`value="<?php p($_['username']); ?>"`
			`<?php p($_['user_autofocus'] ? 'autofocus' : ''); ?>`
addressing #14982 self-closing tags ending slash doesn't have a purpose & should be removed 2015-03-18 01:57:23 +03:00			`autocomplete="on" autocapitalize="off" autocorrect="off" required>`
[core] From echo to p 2013-02-28 01:55:39 +04:00			`<label for="user" class="infield"><?php p($l->t('Username')); ?></label>`
			`<img class="svg" src="<?php print_unescaped(image_path('', 'actions/user.svg')); ?>" alt=""/>`
Spaces to tabs 2013-01-14 23:30:28 +04:00			`</p>`
setting the timezone is now part of the login process and true part of the core. 2012-12-20 14:10:45 +04:00
first step of infield label removal, fix login screen 2014-05-06 14:07:53 +04:00			`<p class="groupbottom">`
			`<input type="password" name="password" id="password" value=""`
			`placeholder="<?php p($l->t('Password')); ?>"`
			`<?php p($_['user_autofocus'] ? '' : 'autofocus'); ?>`
addressing #14982 self-closing tags ending slash doesn't have a purpose & should be removed 2015-03-18 01:57:23 +03:00			`autocomplete="on" autocapitalize="off" autocorrect="off" required>`
[core] From echo to p 2013-02-28 01:55:39 +04:00			`<label for="password" class="infield"><?php p($l->t('Password')); ?></label>`
			`<img class="svg" id="password-icon" src="<?php print_unescaped(image_path('', 'actions/password.svg')); ?>" alt=""/>`
Spaces to tabs 2013-01-14 23:30:28 +04:00			`</p>`
move password warning more relevant below password field, un-nest log in warning 2013-04-17 19:16:15 +04:00
			`<?php if (isset($_['invalidpassword']) && ($_['invalidpassword'])): ?>`
Basics 2014-03-25 02:38:11 +04:00			`<a id="lost-password" class="warning" href="">`
			`<?php p($l->t('Forgot your password? Reset it!')); ?>`
move password warning more relevant below password field, un-nest log in warning 2013-04-17 19:16:15 +04:00			`</a>`
			`<?php endif; ?>`
introduce OC_Util::rememberLoginAllowed() 2013-09-24 20:01:34 +04:00			`<?php if ($_['rememberLoginAllowed'] === true) : ?>`
addressing #14982 self-closing tags ending slash doesn't have a purpose & should be removed 2015-03-18 01:57:23 +03:00			`<input type="checkbox" name="remember_login" value="1" id="remember_login">`
check remember log in by default, ref #3918 2013-07-24 12:01:56 +04:00			`<label for="remember_login"><?php p($l->t('remember')); ?></label>`
don't remember login if the encrypion app is enabled because the user needs to log-in again in order to decrypt his private key with his password 2013-09-24 15:08:55 +04:00			`<?php endif; ?>`
Spaces to tabs 2013-01-14 23:30:28 +04:00			`<input type="hidden" name="timezone-offset" id="timezone-offset"/>`
send browsers timezone back tp the server on login 2014-09-22 16:01:45 +04:00			`<input type="hidden" name="timezone" id="timezone"/>`
addressing #14982 self-closing tags ending slash doesn't have a purpose & should be removed 2015-03-18 01:57:23 +03:00			`<input type="hidden" name="requesttoken" value="<?php p($_['requesttoken']) ?>">`
Disable login button until the timezone is set On slow computers it might happen that the user manages to login before the timezone code has a chance to run, which then causes dates to appear wrong in the UI. This fix makes sure the login cannot happen until the timezone field is set. Note that it's not possible to run the timezone code outside of document.ready() because at that time the DOM element doesn't exist yet. 2014-05-14 19:00:15 +04:00			`<input type="submit" id="submit" class="login primary" value="<?php p($l->t('Log in')); ?>" disabled="disabled"/>`
Spaces to tabs 2013-01-14 23:30:28 +04:00			`</fieldset>`
optimized CSS, fixed login header 2011-08-08 19:57:45 +04:00			`</form>`
add support for apps to register alternative login methods below the standard login a list of icons/button will be displayed 2013-01-29 20:28:08 +04:00			`<?php if (!empty($_['alt_login'])) { ?>`
move inline style to CSS file, fix details 2013-02-06 18:15:20 +04:00			`<form id="alternative-logins">`
add support for apps to register alternative login methods below the standard login a list of icons/button will be displayed 2013-01-29 20:28:08 +04:00			`<fieldset>`
[core] From echo to p 2013-02-28 01:55:39 +04:00			`<legend><?php p($l->t('Alternative Logins')) ?></legend>`
add support for apps to register alternative login methods below the standard login a list of icons/button will be displayed 2013-01-29 20:28:08 +04:00			`<ul>`
fix shorttag issue mentioned in #1357 2013-02-06 21:19:26 +04:00			`<?php foreach($_['alt_login'] as $login): ?>`
[core] From echo to p 2013-02-28 01:55:39 +04:00			`<li><a class="button" href="<?php print_unescaped($login['href']); ?>" ><?php p($login['name']); ?></a></li>`
fix shorttag issue mentioned in #1357 2013-02-06 21:19:26 +04:00			`<?php endforeach; ?>`
add support for apps to register alternative login methods below the standard login a list of icons/button will be displayed 2013-01-29 20:28:08 +04:00			`</ul>`
			`</fieldset>`
			`</form>`
use script instead of \OCP\Util methods 2014-12-10 18:18:18 +03:00			`<?php }`
add support for apps to register alternative login methods below the standard login a list of icons/button will be displayed 2013-01-29 20:28:08 +04:00