Added placeholder management page (usermanagement, dbmanagement)

2019-02-25 15:00:32 +01:00
parent d4ce9e4e67
commit 1ffa164160
5 changed files with 36 additions and 10 deletions
--- a/public/lucidAuth.login.php
+++ b/public/lucidAuth.login.php
@ -2,12 +2,10 @@
 	error_reporting(E_ALL ^ E_NOTICE);

 	include_once('../include/lucidAuth.functions.php');
-	
-	echo $settings->Debug['Verbose'];
-  
+
 	if ($_POST['do'] == 'login') {
 		$result = authenticateLDAP($_POST['username'], $_POST['password']);
-		if ($result['status'] == 'Success') {
+		if ($result['status'] === 'Success') {
 			// Store authentication token; in database serverside & in cookie clientside
 			if (storeToken($result['token'], $settings->LDAP['Domain'] . '\\' . $_POST['username'], $_SERVER['HTTP_HOST'])['status'] !== 'Success') {
 				// Since this action is only ever called through an AJAX-request; return JSON object
@ -34,14 +32,24 @@
 				"Location"			=>	$originalUri,
 				"CrossDomainLogin"	=>	$settings->Session['CrossDomainLogin']
 			]);
-#			echo sprintf('{"Result":"Success","Location":"%1$s","CrossDomainLogin":%2$s}', $originalUri, $settings->Session['CrossDomainLogin'] ? 'True' : 'False') . PHP_EOL;
 		} else {
 			switch ($result['reason']) {
 				case '1':
-					echo '{"Result":"Fail","Reason":"Invalid username and/or password"}' . PHP_EOL;
+					header('Content-Type: application/json');
+					echo json_encode([
+						"Result"	=>	"Failure",
+						"Reason"	=>	"Invalid username and/or password"
+					]);
+#					echo '{"Result":"Fail","Reason":"Invalid username and/or password"}' . PHP_EOL;
 					break;
 				default:
-					echo '{"Result":"Fail","Reason":"Uncaught error"}' . PHP_EOL;
+					header('Content-Type: application/json');
+					echo json_encode([
+						"Result"	=>	"Failure",
+						"Reason"	=>	"Uncaught error"
+					]);
+#					echo '{"Result":"Fail","Reason":"Uncaught error"}' . PHP_EOL;
+					break;
 			}
 		}
 	} else {
--- a/public/lucidAuth.manage.php
+++ b/public/lucidAuth.manage.php
@ -0,0 +1,19 @@
+<?php
+	error_reporting(E_ALL ^ E_NOTICE);
+
+	include_once('../include/lucidAuth.functions.php');
+
+	if (!empty($_COOKIE['JWT']) && validateToken($_COOKIE['JWT'])['status'] === "Success") {
+		include_once('../include/lucidAuth.template.php');
+
+		echo sprintf($pageLayout['full'], $contentLayout['manage']);
+	} else {
+		// No cookie containing valid authentication token found;
+		//   explicitly deleting any remaining cookie, then redirecting to loginpage
+		setcookie('JWT', FALSE);
+
+		header("HTTP/1.1 401 Unauthorized");
+		header("Location: lucidAuth.login.php");
+	}
+
+?>
--- a/public/misc/script.manage.js
+++ b/public/misc/script.manage.js