1
+ − 1 // Some additional DHTML functions
+ − 2
+ − 3 function fetch_offset(obj) {
+ − 4 var left_offset = obj.offsetLeft;
+ − 5 var top_offset = obj.offsetTop;
+ − 6 while ((obj = obj.offsetParent) != null) {
+ − 7 left_offset += obj.offsetLeft;
+ − 8 top_offset += obj.offsetTop;
+ − 9 }
+ − 10 return { 'left' : left_offset, 'top' : top_offset };
+ − 11 }
+ − 12
+ − 13 function fetch_dimensions(o) {
+ − 14 var w = o.offsetWidth;
+ − 15 var h = o.offsetHeight;
+ − 16 return { 'w' : w, 'h' : h };
+ − 17 }
+ − 18
+ − 19 function findParentForm(o)
+ − 20 {
74
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 21 if ( o.tagName == 'FORM' )
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 22 return o;
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 23 while(true)
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 24 {
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 25 o = o.parentNode;
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 26 if ( !o )
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 27 return false;
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 28 if ( o.tagName == 'FORM' )
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 29 return o;
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 30 }
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 31 return false;
1
+ − 32 }
+ − 33
+ − 34 function ajaxReverseDNS(o, text)
+ − 35 {
+ − 36 if(text) var ipaddr = text;
+ − 37 else var ipaddr = o.innerHTML;
+ − 38 rDnsObj = o;
+ − 39 rDnsBannerObj = bannerOn('Retrieving reverse DNS info...');
+ − 40 ajaxGet(stdAjaxPrefix+'&_mode=rdns&ip='+ipaddr, function() {
407
+ − 41 if ( ajax.readyState == 4 && ajax.status == 200 )
1
+ − 42 {
+ − 43 off = fetch_offset(rDnsObj);
+ − 44 dim = fetch_dimensions(rDnsObj);
+ − 45 right = off['left'] + dim['w'];
+ − 46 top = off['top'] + dim['h'];
+ − 47 var thediv = document.createElement('div');
+ − 48 thediv.className = 'info-box';
+ − 49 thediv.style.margin = '0';
+ − 50 thediv.style.position = 'absolute';
+ − 51 thediv.style.top = top + 'px';
+ − 52 thediv.style.display = 'none';
+ − 53 thediv.style.zIndex = getHighestZ() + 2;
+ − 54 thediv.id = 'mdgDynamic_rDnsInfoDiv_'+Math.floor(Math.random() * 1000000);
+ − 55 thediv.innerHTML = '<b>Reverse DNS:</b><br />'+ajax.responseText+' <a href="#" onclick="elem = document.getElementById(\''+thediv.id+'\'); elem.innerHTML = \'\'; elem.style.display = \'none\';return false;">Close</a>';
+ − 56 var body = document.getElementsByTagName('body');
+ − 57 body = body[0];
+ − 58 bannerOff(rDnsBannerObj);
+ − 59 body.appendChild(thediv);
+ − 60 thediv.style.display = 'block';
+ − 61 left = fetch_dimensions(thediv);
+ − 62 thediv.style.display = 'none';
+ − 63 left = right - left['w'];
+ − 64 thediv.style.left = left + 'px';
+ − 65 thediv.style.display = 'block';
+ − 66 fadeInfoBoxes();
+ − 67 }
+ − 68 });
+ − 69 }
+ − 70
+ − 71 function bannerOn(text)
+ − 72 {
+ − 73 darken(true);
+ − 74 var thediv = document.createElement('div');
+ − 75 thediv.className = 'mdg-comment';
+ − 76 thediv.style.padding = '0';
+ − 77 thediv.style.marginLeft = '0';
+ − 78 thediv.style.position = 'absolute';
+ − 79 thediv.style.display = 'none';
+ − 80 thediv.style.padding = '4px';
+ − 81 thediv.style.fontSize = '14pt';
+ − 82 thediv.id = 'mdgDynamic_bannerDiv_'+Math.floor(Math.random() * 1000000);
+ − 83 thediv.innerHTML = text;
+ − 84
+ − 85 var body = document.getElementsByTagName('body');
+ − 86 body = body[0];
+ − 87 body.appendChild(thediv);
+ − 88 body.style.cursor = 'wait';
+ − 89
+ − 90 thediv.style.display = 'block';
+ − 91 dim = fetch_dimensions(thediv);
+ − 92 thediv.style.display = 'none';
+ − 93 bdim = { 'w' : getWidth(), 'h' : getHeight() };
+ − 94 so = getScrollOffset();
+ − 95
40
+ − 96 var left = (bdim['w'] / 2) - ( dim['w'] / 2 );
+ − 97
+ − 98 var top = (bdim['h'] / 2);
+ − 99 top = top - ( dim['h'] / 2 );
+ − 100
+ − 101 top = top + so;
1
+ − 102
+ − 103 thediv.style.top = top + 'px';
+ − 104 thediv.style.left = left + 'px';
+ − 105
+ − 106 thediv.style.display = 'block';
+ − 107
+ − 108 return thediv.id;
+ − 109 }
+ − 110
+ − 111 function bannerOff(id)
+ − 112 {
+ − 113 e = document.getElementById(id);
+ − 114 if(!e) return;
+ − 115 e.innerHTML = '';
+ − 116 e.style.display = 'none';
+ − 117 var body = document.getElementsByTagName('body');
+ − 118 body = body[0];
+ − 119 body.style.cursor = 'default';
+ − 120 enlighten(true);
+ − 121 }
+ − 122
+ − 123 function disableUnload(message)
+ − 124 {
+ − 125 if(typeof message != 'string') message = 'You may want to save your changes first.';
335
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 126 window._unloadmsg = message;
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 127 window.onbeforeunload = function(e)
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 128 {
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 129 if ( !e )
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 130 e = window.event;
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 131 e.returnValue = window._unloadmsg;
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 132 }
1
+ − 133 }
+ − 134
+ − 135 function enableUnload()
+ − 136 {
335
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 137 window._unloadmsg = null;
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 138 window.onbeforeunload = null;
1
+ − 139 }
+ − 140
+ − 141 /**
+ − 142 * Gets the highest z-index of all divs in the document
+ − 143 * @return integer
+ − 144 */
+ − 145 function getHighestZ()
+ − 146 {
+ − 147 z = 0;
+ − 148 var divs = document.getElementsByTagName('div');
+ − 149 for(var i = 0; i < divs.length; i++)
+ − 150 {
+ − 151 if(divs[i].style.zIndex > z) z = divs[i].style.zIndex;
+ − 152 }
+ − 153 return z;
+ − 154 }
+ − 155
+ − 156 function isKeyPressed(event)
+ − 157 {
+ − 158 if (event.shiftKey==1)
+ − 159 {
+ − 160 shift = true;
+ − 161 }
+ − 162 else
+ − 163 {
+ − 164 shift = false;
+ − 165 }
+ − 166 }
+ − 167
+ − 168 function moveDiv(div, newparent)
+ − 169 {
+ − 170 var backup = div;
+ − 171 var oldparent = div.parentNode;
+ − 172 oldparent.removeChild(div);
+ − 173 newparent.appendChild(backup);
+ − 174 }
+ − 175
+ − 176 function readCookie(name) {var nameEQ = name + "=";var ca = document.cookie.split(';');for(var i=0;i < ca.length;i++){var c = ca[i];while (c.charAt(0)==' ') c = c.substring(1,c.length);if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length,c.length);}return null;}
+ − 177 function createCookie(name,value,days){if (days){var date = new Date();date.setTime(date.getTime()+(days*24*60*60*1000));var expires = "; expires="+date.toGMTString();}else var expires = "";document.cookie = name+"="+value+expires+"; path=/";}
+ − 178 function eraseCookie(name) {createCookie(name,"",-1);}
+ − 179
+ − 180 var busyBannerID;
+ − 181 function goBusy(msg)
+ − 182 {
+ − 183 if(!msg) msg = 'Please wait...';
+ − 184 body = document.getElementsByTagName('body');
+ − 185 body = body[0];
+ − 186 body.style.cursor = 'wait';
+ − 187 busyBannerID = bannerOn(msg);
+ − 188 }
+ − 189
+ − 190 function unBusy()
+ − 191 {
+ − 192 body = document.getElementsByTagName('body');
+ − 193 body = body[0];
+ − 194 body.style.cursor = 'default';
+ − 195 bannerOff(busyBannerID);
+ − 196 }
+ − 197
+ − 198 function setAjaxLoading()
+ − 199 {
+ − 200 if ( document.getElementById('ajaxloadicon') )
+ − 201 {
200
63fddf1335d9
Nothing real special. The AJAX loading icon can be changed using the Javascript variable ajax_load_icon in header.tpl.
Dan
diff
changeset
+ − 202 document.getElementById('ajaxloadicon').src=ajax_load_icon;
1
+ − 203 }
+ − 204 }
+ − 205
+ − 206 function unsetAjaxLoading()
+ − 207 {
+ − 208 if ( document.getElementById('ajaxloadicon') )
+ − 209 {
+ − 210 document.getElementById('ajaxloadicon').src=scriptPath + '/images/spacer.gif';
+ − 211 }
+ − 212 }
+ − 213
+ − 214 /*
+ − 215 * Search boxes
+ − 216 */
+ − 217
+ − 218 function buildSearchBoxes()
+ − 219 {
+ − 220 var divs = document.getElementsByTagName('*');
+ − 221 var boxes = new Array();
+ − 222 for ( var i = 0; i < divs.length; i++ )
+ − 223 {
+ − 224 if ( divs[i].className)
+ − 225 {
+ − 226 if ( divs[i].className.substr(0, 9) == 'searchbox' )
+ − 227 {
+ − 228 boxes.push(divs[i]);
+ − 229 }
+ − 230 }
+ − 231 }
+ − 232 for ( var i = 0; i < boxes.length; i++ )
+ − 233 {
+ − 234 if ( boxes[i].className.match(/^searchbox\[([0-9]+)px\]$/) )
+ − 235 {
+ − 236 var width = boxes[i].className.match(/^searchbox\[([0-9]+)px\]$/);
+ − 237 width = parseInt(width[1]);
+ − 238 }
+ − 239 else
+ − 240 {
+ − 241 var width = 120;
+ − 242 }
+ − 243 createSearchBox(boxes[i], width);
+ − 244 }
+ − 245 }
+ − 246
+ − 247 function createSearchBox(parent, width)
+ − 248 {
+ − 249 if ( typeof(parent) != 'object')
+ − 250 {
+ − 251 alert('BUG: createSearchBox(): parent is not an object');
+ − 252 return false;
+ − 253 }
+ − 254 //parent.style.padding = '0px';
+ − 255 //parent.style.textAlign = 'center';
+ − 256 parent.style.width = width + 'px';
+ − 257 var submit = document.createElement('div');
+ − 258 submit.onclick = function() { searchFormSubmit(this); };
+ − 259 submit.className = 'js-search-submit';
+ − 260 var input = document.createElement('input');
+ − 261 input.className = 'js-search-box';
+ − 262 input.value = 'Search';
+ − 263 input.name = 'q';
+ − 264 input.style.width = ( width - 28 ) + 'px';
+ − 265 input.onfocus = function() { if ( this.value == 'Search' ) this.value = ''; };
+ − 266 input.onblur = function() { if ( this.value == '' ) this.value = 'Search'; };
+ − 267 parent.appendChild(input);
+ − 268 var off = fetch_offset(input);
+ − 269 var top = off['top'] + 'px';
+ − 270 var left = ( parseInt(off['left']) + ( width - 24 ) ) + 'px';
+ − 271 submit.style.top = top;
+ − 272 submit.style.left = left;
+ − 273 parent.appendChild(submit);
+ − 274 }
+ − 275
+ − 276 function searchFormSubmit(obj)
+ − 277 {
+ − 278 var input = obj.previousSibling;
+ − 279 if ( input.value == 'Search' || input.value == '' )
+ − 280 return false;
+ − 281 var p = obj;
+ − 282 while(true)
+ − 283 {
+ − 284 p = p.parentNode;
+ − 285 if ( !p )
+ − 286 break;
+ − 287 if ( typeof(p.tagName) != 'string' )
+ − 288 break;
+ − 289 else if ( p.tagName.toLowerCase() == 'form' )
+ − 290 {
+ − 291 p.submit();
+ − 292 }
+ − 293 else if ( p.tagName.toLowerCase() == 'body' )
+ − 294 {
+ − 295 break;
+ − 296 }
+ − 297 }
+ − 298 }
+ − 299
+ − 300 /*
+ − 301 * AJAX login box (experimental)
+ − 302 */
+ − 303
+ − 304 var ajax_auth_prompt_cache = false;
+ − 305 var ajax_auth_mb_cache = false;
+ − 306 var ajax_auth_level_cache = false;
174
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 307 var ajax_auth_error_string = false;
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 308 var ajax_auth_show_captcha = false;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 309
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 310 function ajaxAuthErrorToString($data)
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 311 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 312 var $errstring = $data.error;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 313 // this was literally copied straight from the PHP code.
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 314 switch($data.error)
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 315 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 316 case 'key_not_found':
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 317 $errstring = $lang.get('user_err_key_not_found');
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 318 break;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 319 case 'key_wrong_length':
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 320 $errstring = $lang.get('user_err_key_wrong_length');
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 321 break;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 322 case 'too_big_for_britches':
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 323 $errstring = $lang.get('user_err_too_big_for_britches');
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 324 break;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 325 case 'invalid_credentials':
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 326 $errstring = $lang.get('user_err_invalid_credentials');
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 327 var subst = {
372
5bd429428101
A number of scattered changes. Profiler added and only enabled in debug mode (currently on), but awfully useful for fixing performance in the future. Started work on Admin:LangManager
Dan
diff
changeset
+ − 328 fails: $data.lockout_fails,
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 329 lockout_threshold: $data.lockout_threshold,
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 330 lockout_duration: $data.lockout_duration
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 331 }
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 332 if ( $data.lockout_policy == 'lockout' )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 333 {
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 334 $errstring += $lang.get('user_err_invalid_credentials_lockout', subst);
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 335 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 336 else if ( $data.lockout_policy == 'captcha' )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 337 {
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 338 $errstring += $lang.get('user_err_invalid_credentials_lockout_captcha', subst);
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 339 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 340 break;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 341 case 'backend_fail':
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 342 $errstring = $lang.get('user_err_backend_fail');
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 343 break;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 344 case 'locked_out':
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 345 $attempts = parseInt($data['lockout_fails']);
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 346 if ( $attempts > $data['lockout_threshold'])
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 347 $attempts = $data['lockout_threshold'];
182
c69730750be3
Fixed the security hole (really, I'm a moron - used $failed > $threshold instead of $failed >= $threashold) and patched up some...erm... math issues
Dan
diff
changeset
+ − 348 $time_rem = $data.time_rem;
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 349 $s = ( $time_rem == 1 ) ? '' : $lang.get('meta_plural');
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 350
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 351 var subst = {
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 352 lockout_threshold: $data.lockout_threshold,
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 353 time_rem: $time_rem,
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 354 plural: $s,
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 355 captcha_blurb: ( $data.lockout_policy == 'captcha' ? $lang.get('user_err_locked_out_captcha_blurb') : '' )
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 356 }
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 357
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 358 $errstring = $lang.get('user_err_locked_out', subst);
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 359
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 360 break;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 361 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 362 return $errstring;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 363 }
1
+ − 364
+ − 365 function ajaxPromptAdminAuth(call_on_ok, level)
+ − 366 {
+ − 367 if ( typeof(call_on_ok) == 'function' )
+ − 368 {
+ − 369 ajax_auth_prompt_cache = call_on_ok;
+ − 370 }
+ − 371 if ( !level )
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 372 level = USER_LEVEL_MEMBER;
1
+ − 373 ajax_auth_level_cache = level;
+ − 374 var loading_win = '<div align="center" style="text-align: center;"> \
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 375 <p>' + $lang.get('user_login_ajax_fetching_key') + '</p> \
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 376 <p><small>' + $lang.get('user_login_ajax_link_fullform', { link_full_form: makeUrlNS('Special', 'Login/' + title) }) + '</p> \
1
+ − 377 <p><img alt="Please wait..." src="'+scriptPath+'/images/loading-big.gif" /></p> \
+ − 378 </div>';
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 379 var title = ( level > USER_LEVEL_MEMBER ) ? $lang.get('user_login_ajax_prompt_title_elev') : $lang.get('user_login_ajax_prompt_title');
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 380 ajax_auth_mb_cache = new messagebox(MB_OKCANCEL|MB_ICONLOCK, title, loading_win);
1
+ − 381 ajax_auth_mb_cache.onbeforeclick['OK'] = ajaxValidateLogin;
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 382 ajax_auth_mb_cache.onbeforeclick['Cancel'] = function()
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 383 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 384 if ( document.getElementById('autoCaptcha') )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 385 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 386 var to = fly_out_top(document.getElementById('autoCaptcha'), false, true);
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 387 setTimeout(function() {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 388 var d = document.getElementById('autoCaptcha');
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 389 d.parentNode.removeChild(d);
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 390 }, to);
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 391 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 392 }
1
+ − 393 ajaxAuthLoginInnerSetup();
+ − 394 }
+ − 395
+ − 396 function ajaxAuthLoginInnerSetup()
+ − 397 {
281
+ − 398 // let's hope this gets the image cached
+ − 399 var _ = new Image(32, 32);
+ − 400 _.src = scriptPath + "/images/good.gif";
+ − 401
1
+ − 402 ajaxGet(makeUrlNS('Special', 'Login', 'act=getkey'), function() {
407
+ − 403 if ( ajax.readyState == 4 && ajax.status == 200 )
1
+ − 404 {
40
+ − 405 var response = String(ajax.responseText);
1
+ − 406 if ( response.substr(0,1) != '{' )
+ − 407 {
320
112debff64bd
SURPRISE! Preliminary PostgreSQL support added. The required schema file is not present in this commit and will be included at a later date. No installer support is implemented. Also in this commit: several fixes including <!-- SYSMSG ... --> was broken in template compiler; set fixed width on included images to prevent the thumbnail box from getting huge; added a much more friendly interface to AJAX responses that are invalid JSON
Dan
diff
changeset
+ − 408 handle_invalid_json(response);
112debff64bd
SURPRISE! Preliminary PostgreSQL support added. The required schema file is not present in this commit and will be included at a later date. No installer support is implemented. Also in this commit: several fixes including <!-- SYSMSG ... --> was broken in template compiler; set fixed width on included images to prevent the thumbnail box from getting huge; added a much more friendly interface to AJAX responses that are invalid JSON
Dan
diff
changeset
+ − 409 ajax_auth_mb_cache.destroy();
1
+ − 410 return false;
+ − 411 }
+ − 412 response = parseJSON(response);
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 413 var disable_controls = false;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 414 if ( response.locked_out && !ajax_auth_error_string )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 415 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 416 response.error = 'locked_out';
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 417 ajax_auth_error_string = ajaxAuthErrorToString(response);
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 418 if ( response.lockout_policy == 'captcha' )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 419 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 420 ajax_auth_show_captcha = response.captcha;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 421 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 422 else
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 423 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 424 disable_controls = true;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 425 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 426 }
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 427 var level = ajax_auth_level_cache;
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 428 var form_html = '';
176
+ − 429 var shown_error = false;
174
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 430 if ( ajax_auth_error_string )
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 431 {
176
+ − 432 shown_error = true;
+ − 433 form_html += '<div class="error-box-mini" id="ajax_auth_error">' + ajax_auth_error_string + '</div>';
174
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 434 ajax_auth_error_string = false;
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 435 }
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 436 else if ( level > USER_LEVEL_MEMBER )
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 437 {
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 438 form_html += $lang.get('user_login_ajax_prompt_body_elev') + '<br /><br />';
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 439 }
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 440 if ( ajax_auth_show_captcha )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 441 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 442 var captcha_html = ' \
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 443 <tr> \
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 444 <td>' + $lang.get('user_login_field_captcha') + ':</td> \
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 445 <td><input type="hidden" id="ajaxlogin_captcha_hash" value="' + ajax_auth_show_captcha + '" /><input type="text" tabindex="3" size="25" id="ajaxlogin_captcha_code" /> \
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 446 </tr>';
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 447 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 448 else
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 449 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 450 var captcha_html = '';
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 451 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 452 var disableme = ( disable_controls ) ? 'disabled="disabled" ' : '';
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 453 form_html += ' \
315
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 454 <form action="#" onsubmit="ajaxValidateLogin(); return false;" name="ajax_login_form"> \
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 455 <table border="0" align="center"> \
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 456 <tr> \
326
+ − 457 <td>' + $lang.get('user_login_field_username') + ':</td><td><input tabindex="1" id="ajaxlogin_user" type="text" ' + disableme + 'size="25" /> \
315
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 458 </tr> \
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 459 <tr> \
326
+ − 460 <td>' + $lang.get('user_login_field_password') + ':</td><td><input tabindex="2" id="ajaxlogin_pass" type="password" ' + disableme + 'size="25" /> \
315
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 461 </tr> \
326
+ − 462 ' + captcha_html + ' \
315
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 463 <tr> \
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 464 <td colspan="2" style="text-align: center;"> \
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 465 <small>' + $lang.get('user_login_ajax_link_fullform', { link_full_form: makeUrlNS('Special', 'Login/' + title, 'level=' + level) }) + '<br />';
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 466 if ( level <= USER_LEVEL_MEMBER )
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 467 {
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 468 form_html += ' \
326
+ − 469 ' + $lang.get('user_login_ajax_link_forgotpass', { forgotpass_link: makeUrlNS('Special', 'PasswordReset') }) + '<br /> \
+ − 470 ' + $lang.get('user_login_createaccount_blurb', { reg_link: makeUrlNS('Special', 'Register') });
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 471 }
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 472 form_html += '</small> \
315
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 473 </td> \
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 474 </tr> \
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 475 </table> \
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 476 <input type="hidden" id="ajaxlogin_crypt_key" value="' + response.key + '" /> \
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 477 <input type="hidden" id="ajaxlogin_crypt_challenge" value="' + response.challenge + '" /> \
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 478 </form>';
1
+ − 479 ajax_auth_mb_cache.updateContent(form_html);
+ − 480 $('messageBox').object.nextSibling.firstChild.tabindex = '3';
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 481 if ( typeof(response.username) == 'string' )
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 482 {
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 483 $('ajaxlogin_user').object.value = response.username;
315
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 484 if ( IE )
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 485 {
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 486 setTimeout("document.forms['ajax_login_form'].password.focus();", 200);
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 487 }
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 488 else
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 489 {
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 490 $('ajaxlogin_pass').object.focus();
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 491 }
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 492 }
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 493 else
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 494 {
315
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 495 if ( IE )
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 496 {
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 497 setTimeout("document.forms['ajax_login_form'].username.focus();", 200);
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 498 }
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 499 else
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 500 {
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 501 $('ajaxlogin_user').object.focus();
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 502 }
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
diff
changeset
+ − 503 }
326
+ − 504 var enter_obj = ( ajax_auth_show_captcha ) ? 'ajaxlogin_captcha_code' : 'ajaxlogin_pass';
+ − 505 $(enter_obj).object.onblur = function(e) { if ( !shift ) $('messageBox').object.nextSibling.firstChild.focus(); };
+ − 506 $(enter_obj).object.onkeypress = function(e)
315
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 507 {
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 508 // Trigger a form submit when the password field is focused and the user presses enter
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 509
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 510 // IE doesn't give us an event object when it should - check window.event. If that
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 511 // still fails, give up.
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 512 if ( !e )
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 513 {
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 514 e = window.event;
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 515 }
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 516 if ( !e && IE )
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 517 {
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 518 return true;
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 519 }
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 520 if ( e.keyCode == 13 )
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 521 {
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 522 ajaxValidateLogin();
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 523 }
f49e3c8b638c
Fixed focus of AJAX login form fields in IE; removed stale/unused call to $template->makeParserText() in paginate_array(); added hook page_create_request to possibly help control creation of pages of certain namespaces from plugins; fixed critical bug in user CP that prevented plugins from adding custom CP modules
Dan
diff
changeset
+ − 524 };
176
+ − 525 /*
+ − 526 ## This causes the background image to disappear under Fx 2
+ − 527 if ( shown_error )
+ − 528 {
+ − 529 // fade to #FFF4F4
+ − 530 var fader = new Spry.Effect.Highlight('ajax_auth_error', {duration: 1000, from: '#FFF4F4', to: '#805600', restoreColor: '#805600', finish: function()
+ − 531 {
+ − 532 var fader = new Spry.Effect.Highlight('ajax_auth_error', {duration: 3000, from: '#805600', to: '#FFF4F4', restoreColor: '#FFF4F4'});
+ − 533 fader.start();
+ − 534 }});
+ − 535 fader.start();
+ − 536 }
+ − 537 */
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 538 if ( ajax_auth_show_captcha )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 539 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 540 ajaxShowCaptcha(ajax_auth_show_captcha);
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 541 ajax_auth_show_captcha = false;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 542 }
1
+ − 543 }
+ − 544 });
+ − 545 }
+ − 546
+ − 547 function ajaxValidateLogin()
+ − 548 {
+ − 549 var username,password,auth_enabled,crypt_key,crypt_data,challenge_salt,challenge_data;
+ − 550 username = document.getElementById('ajaxlogin_user');
+ − 551 if ( !username )
+ − 552 return false;
+ − 553 username = document.getElementById('ajaxlogin_user').value;
+ − 554 password = document.getElementById('ajaxlogin_pass').value;
+ − 555 auth_enabled = false;
+ − 556
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 557 if ( document.getElementById('autoCaptcha') )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 558 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 559 var to = fly_out_top(document.getElementById('autoCaptcha'), false, true);
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 560 setTimeout(function() {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 561 var d = document.getElementById('autoCaptcha');
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 562 d.parentNode.removeChild(d);
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 563 }, to);
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 564 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 565
1
+ − 566 disableJSONExts();
+ − 567
348
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 568 var auth_enabled = aes_self_test();
1
+ − 569
+ − 570 if ( !auth_enabled )
+ − 571 {
+ − 572 alert('Login error: encryption sanity check failed\n');
+ − 573 return true;
+ − 574 }
+ − 575
+ − 576 crypt_key = document.getElementById('ajaxlogin_crypt_key').value;
+ − 577 challenge_salt = document.getElementById('ajaxlogin_crypt_challenge').value;
+ − 578
+ − 579 var crypt_key_md5 = hex_md5(crypt_key);
+ − 580
+ − 581 challenge_data = hex_md5(password + challenge_salt) + challenge_salt;
+ − 582
+ − 583 password = stringToByteArray(password);
+ − 584 crypt_key = hexToByteArray(crypt_key);
+ − 585
+ − 586 crypt_data = rijndaelEncrypt(password, crypt_key, 'ECB');
+ − 587 crypt_data = byteArrayToHex(crypt_data);
+ − 588
+ − 589 var json_data = {
+ − 590 'username' : username,
+ − 591 'crypt_key' : crypt_key_md5,
+ − 592 'challenge' : challenge_data,
+ − 593 'crypt_data' : crypt_data,
+ − 594 'level' : ajax_auth_level_cache
+ − 595 };
+ − 596
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 597 if ( document.getElementById('ajaxlogin_captcha_hash') )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 598 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 599 json_data.captcha_hash = document.getElementById('ajaxlogin_captcha_hash').value;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 600 json_data.captcha_code = document.getElementById('ajaxlogin_captcha_code').value;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 601 }
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 602
1
+ − 603 json_data = toJSONString(json_data);
135
c5dbad7ec2d0
Enano should now fully support UTF-8 usernames; newly registered users are now granted automatic edit access to their user pages (admins can still use protection on the page)
Dan
diff
changeset
+ − 604 json_data = encodeURIComponent(json_data);
1
+ − 605
+ − 606 var loading_win = '<div align="center" style="text-align: center;"> \
210
2b283402e4e4
Added language export to JSON page and localization for Javascript using $lang.get(). Localized AJAX login interface.
Dan
diff
changeset
+ − 607 <p>' + $lang.get('user_login_ajax_loggingin') + '</p> \
1
+ − 608 <p><img alt="Please wait..." src="'+scriptPath+'/images/loading-big.gif" /></p> \
+ − 609 </div>';
+ − 610
+ − 611 ajax_auth_mb_cache.updateContent(loading_win);
+ − 612
+ − 613 ajaxPost(makeUrlNS('Special', 'Login', 'act=ajaxlogin'), 'params=' + json_data, function() {
407
+ − 614 if ( ajax.readyState == 4 && ajax.status == 200 )
1
+ − 615 {
+ − 616 var response = ajax.responseText;
+ − 617 if ( response.substr(0,1) != '{' )
+ − 618 {
+ − 619 alert('Invalid JSON response from server: ' + response);
+ − 620 ajaxAuthLoginInnerSetup();
+ − 621 return false;
+ − 622 }
+ − 623 response = parseJSON(response);
+ − 624 switch(response.result)
+ − 625 {
+ − 626 case 'success':
281
+ − 627 var success_win = '<div align="center" style="text-align: center;"> \
304
+ − 628 <p>' + $lang.get('user_login_success_short') + '</p> \
281
+ − 629 <p><img alt=" " src="'+scriptPath+'/images/good.gif" /></p> \
+ − 630 </div>';
+ − 631 ajax_auth_mb_cache.updateContent(success_win);
1
+ − 632 if ( typeof(ajax_auth_prompt_cache) == 'function' )
+ − 633 {
+ − 634 ajax_auth_prompt_cache(response.key);
+ − 635 }
+ − 636 break;
+ − 637 case 'success_reset':
335
67bd3121a12e
Replaced TinyMCE 2.x with 3.0 beta 3. Supports everything but IE. Also rewrote the editor interface completely from the ground up.
Dan
diff
changeset
+ − 638 var conf = confirm($lang.get('user_login_ajax_msg_used_temp_pass'));
1
+ − 639 if ( conf )
+ − 640 {
+ − 641 var url = makeUrlNS('Special', 'PasswordReset/stage2/' + response.user_id + '/' + response.temppass);
+ − 642 window.location = url;
+ − 643 }
+ − 644 else
+ − 645 {
+ − 646 ajaxAuthLoginInnerSetup();
+ − 647 }
+ − 648 break;
+ − 649 case 'error':
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 650 if ( response.data.error == 'invalid_credentials' || response.data.error == 'locked_out' )
174
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 651 {
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 652 ajax_auth_error_string = ajaxAuthErrorToString(response.data);
174
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 653 mb_current_obj.updateContent('');
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 654 document.getElementById('messageBox').style.backgroundColor = '#C0C0C0';
175
1465f48faba0
AJAX login box is now used in userprefs panel; Spry shake effect and general UX on auth fail is smoother now; added ajaxLoginNavTo() JS function
Dan
diff
changeset
+ − 655 var mb_parent = document.getElementById('messageBox').parentNode;
1465f48faba0
AJAX login box is now used in userprefs panel; Spry shake effect and general UX on auth fail is smoother now; added ajaxLoginNavTo() JS function
Dan
diff
changeset
+ − 656 new Spry.Effect.Shake(mb_parent, {duration: 1500}).start();
174
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 657 setTimeout("document.getElementById('messageBox').style.backgroundColor = '#FFF'; ajaxAuthLoginInnerSetup();", 2500);
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 658
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 659 if ( response.data.lockout_policy == 'captcha' && response.data.error == 'locked_out' )
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 660 {
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 661 ajax_auth_show_captcha = response.captcha;
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 662 }
174
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 663 }
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 664 else
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 665 {
179
36b287f1d85c
[F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Dan
diff
changeset
+ − 666 ajax_auth_error_string = ajaxAuthErrorToString(response.data);
174
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 667 ajaxAuthLoginInnerSetup();
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
diff
changeset
+ − 668 }
1
+ − 669 break;
+ − 670 default:
+ − 671 alert(ajax.responseText);
+ − 672 break;
+ − 673 }
+ − 674 }
+ − 675 });
+ − 676
+ − 677 return true;
+ − 678
+ − 679 }
+ − 680
+ − 681 // This code is in the public domain. Feel free to link back to http://jan.moesen.nu/
+ − 682 function sprintf()
+ − 683 {
+ − 684 if (!arguments || arguments.length < 1 || !RegExp)
+ − 685 {
+ − 686 return;
+ − 687 }
+ − 688 var str = arguments[0];
+ − 689 var re = /([^%]*)%('.|0|\x20)?(-)?(\d+)?(\.\d+)?(%|b|c|d|u|f|o|s|x|X)(.*)/;
+ − 690 var a = b = [], numSubstitutions = 0, numMatches = 0;
+ − 691 while (a = re.exec(str))
+ − 692 {
+ − 693 var leftpart = a[1], pPad = a[2], pJustify = a[3], pMinLength = a[4];
+ − 694 var pPrecision = a[5], pType = a[6], rightPart = a[7];
+ − 695
+ − 696 //alert(a + '\n' + [a[0], leftpart, pPad, pJustify, pMinLength, pPrecision);
+ − 697
+ − 698 numMatches++;
+ − 699 if (pType == '%')
+ − 700 {
+ − 701 subst = '%';
+ − 702 }
+ − 703 else
+ − 704 {
+ − 705 numSubstitutions++;
+ − 706 if (numSubstitutions >= arguments.length)
+ − 707 {
+ − 708 alert('Error! Not enough function arguments (' + (arguments.length - 1) + ', excluding the string)\nfor the number of substitution parameters in string (' + numSubstitutions + ' so far).');
+ − 709 }
+ − 710 var param = arguments[numSubstitutions];
+ − 711 var pad = '';
+ − 712 if (pPad && pPad.substr(0,1) == "'") pad = leftpart.substr(1,1);
+ − 713 else if (pPad) pad = pPad;
+ − 714 var justifyRight = true;
+ − 715 if (pJustify && pJustify === "-") justifyRight = false;
+ − 716 var minLength = -1;
+ − 717 if (pMinLength) minLength = parseInt(pMinLength);
+ − 718 var precision = -1;
+ − 719 if (pPrecision && pType == 'f') precision = parseInt(pPrecision.substring(1));
+ − 720 var subst = param;
+ − 721 if (pType == 'b') subst = parseInt(param).toString(2);
+ − 722 else if (pType == 'c') subst = String.fromCharCode(parseInt(param));
+ − 723 else if (pType == 'd') subst = parseInt(param) ? parseInt(param) : 0;
+ − 724 else if (pType == 'u') subst = Math.abs(param);
+ − 725 else if (pType == 'f') subst = (precision > -1) ? Math.round(parseFloat(param) * Math.pow(10, precision)) / Math.pow(10, precision): parseFloat(param);
+ − 726 else if (pType == 'o') subst = parseInt(param).toString(8);
+ − 727 else if (pType == 's') subst = param;
+ − 728 else if (pType == 'x') subst = ('' + parseInt(param).toString(16)).toLowerCase();
+ − 729 else if (pType == 'X') subst = ('' + parseInt(param).toString(16)).toUpperCase();
+ − 730 }
+ − 731 str = leftpart + subst + rightPart;
+ − 732 }
+ − 733 return str;
+ − 734 }
+ − 735
74
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 736 /**
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 737 * Insert a DOM object _after_ the specified child.
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 738 * @param object Parent node
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 739 * @param object Node to insert
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 740 * @param object Node to insert after
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 741 */
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 742
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 743 function insertAfter(parent, baby, bigsister)
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 744 {
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 745 try
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 746 {
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 747 if ( parent.childNodes[parent.childNodes.length-1] == bigsister )
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 748 parent.appendChild(baby);
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 749 else
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 750 parent.insertBefore(baby, bigsister.nextSibling);
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 751 }
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 752 catch(e)
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 753 {
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 754 alert(e.toString());
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 755 if ( window.console )
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 756 {
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 757 // Firebug support
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 758 window.console.warn(e);
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 759 }
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 760 }
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 761 }
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
diff
changeset
+ − 762
125
+ − 763 /**
+ − 764 * Validates an e-mail address.
+ − 765 * @param string E-mail address
+ − 766 * @return bool
+ − 767 */
+ − 768
+ − 769 function validateEmail(email)
+ − 770 {
295
f948557af068
Add warning in installer for PHP < 5.2.0; hopefully fix validation of e-mail addresses with dashes
Dan
diff
changeset
+ − 771 return ( email.match(/^(?:[\w\d_-]+\.?)+@((?:(?:[\w\d_-]\-?)+\.)+\w{2,4}|localhost)$/) ) ? true : false;
125
+ − 772 }
+ − 773
334
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 774 /**
348
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 775 * Validates a username.
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 776 * @param string Username to test
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 777 * @return bool
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 778 */
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 779
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 780 function validateUsername(username)
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 781 {
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 782 var regex = new RegExp('^[^<>&\?\'"%\n\r/]+$', '');
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 783 return ( username.match(regex) ) ? true : false;
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 784 }
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 785
87e08a6e4fec
Welcome to the new Enano installer. Much distance still to be covered but the basics are there.
Dan
diff
changeset
+ − 786 /**
334
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 787 * Equivalent of PHP's time()
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 788 * @return int
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 789 */
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 790
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 791 function unix_time()
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 792 {
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 793 return parseInt((new Date()).getTime()/1000);
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 794 }
c72b545f1304
More localization work. Resolved major issue with JSON parser not parsing files over ~50KB. Switched JSON parser to the one from the Zend Framework (BSD licensed). Forced to split enano.json into five different files.
Dan
diff
changeset
+ − 795