Skip to content
GitLab
Select Git revision
  • dev default
  • 6378-orcid-test-method-is-wrong-and-break-orcid-saving
  • core-php8
  • master
  • 6342-update-the-locales-for-1-5
  • 6344-template-issue-when-creating-a-template-with-empty-password-error-message-should-not-be-seen
  • 6365-core-locking-mechanism-is-not-changing-the-mail-ressource-it-does-lock-the-mail-account
  • 6365-core-when-lock-mechanism-is-trigger-the-user-should-not-be-editable-if-not-unlock
  • fusiondirectory-1.5
  • fusiondirectory-1.4
  • fusiondirectory-1.3.1
  • fusiondirectory-1.3
  • fusiondirectory-1.2.3
  • fusiondirectory-1.2.2
  • fusiondirectory-1.2.1
  • fusiondirectory-1.2
  • fusiondirectory-1.1.1
  • fusiondirectory-1.1
  • fusiondirectory-1.0.20
  • fusiondirectory-1.0.19
  • fusiondirectory-1.0.18
  • fusiondirectory-1.0.17
  • fusiondirectory-1.0.16
  • fusiondirectory-1.0.15
  • fusiondirectory-1.0.14
  • fusiondirectory-1.0.13
  • fusiondirectory-1.0.12
  • fusiondirectory-1.0.11
Find file BlameHistoryPermalink
secondfactor.php 3.32 KiB
1 
<?php
2 
/*
3 
  This code is part of FusionDirectory (http://www.fusiondirectory.org/)
4 
  Copyright (C) 2003-2010  Cajus Pollmeier
5 
  Copyright (C) 2011-2019  FusionDirectory
6
7 
  This program is free software; you can redistribute it and/or modify
8 
  it under the terms of the GNU General Public License as published by
9 
  the Free Software Foundation; either version 2 of the License, or
10 
  (at your option) any later version.
11
12 
  This program is distributed in the hope that it will be useful,
13 
  but WITHOUT ANY WARRANTY; without even the implied warranty of
14 
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
15 
  GNU General Public License for more details.
16
17 
  You should have received a copy of the GNU General Public License
18 
  along with this program; if not, write to the Free Software
19 
  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA.
20 
*/
21
22 
/**
23 
 * @var Smarty $smarty                  Defined in php_setup.inc
24 
 * @var string $BASE_DIR                Defined in php_setup.inc
25 
 * @var string $ssl                     Defined in php_setup.inc
26 
 * @var string $error_collector         Defined in php_setup.inc
27 
 * @var string $error_collector_mailto  Defined in php_setup.inc
28 
 */
29
30 
/* Basic setup, remove eventually registered sessions */
31 
require_once("../include/php_setup.inc");
32 
require_once("functions.inc");
33 
require_once("variables.inc");
34
35 
/* Set headers */
36 
header('Content-type: text/html; charset=UTF-8');
37 
header('X-XSS-Protection: 1; mode=block');
38 
header('X-Content-Type-Options: nosniff');
39 
header('X-Frame-Options: deny');
40
41 
/* Set the text domain as 'fusiondirectory' */
42 
$domain = 'fusiondirectory';
43 
bindtextdomain($domain, LOCALE_DIR);
44 
textdomain($domain);
45
46 
/* Remember everything we did after the last click */
47 
session::start();
48 
session::set('DEBUGLEVEL', 0);
49 
reset_errors();
50
51 
/* Force SSL for second factor */
52 
if ($ssl != '') {
53 
  header("Location: $ssl");
54 
  exit;
55 
}
56
57 
CSRFProtection::check();
58
59 
/* Logged in? Redirect to FD */
60 
if (session::is_set('connected')) {
61 
  header('Location: main.php');
62 
  exit;
63 
}
64
65 
/* Missing data? Redirect to login */
66 
if (!session::is_set('ui') || !session::is_set('config')) {
67 
  header('Location: index.php');
68 
  exit;
69 
}
70