kivitendo/SL/Dispatcher/AuthHandler/Admin.pm @ master
| 6afd06ad | Moritz Bunkus | package SL::Dispatcher::AuthHandler::Admin;
|
||
use strict;
|
||||
use parent qw(Rose::Object);
|
||||
| b6fd15a8 | Sven Schöling | use SL::Layout::Dispatcher;
|
||
| 4a12c839 | Sven Schöling | |||
| 6afd06ad | Moritz Bunkus | sub handle {
|
||
| d8ac0828 | Moritz Bunkus | my ($self, %params) = @_;
|
||
| 313367d3 | Moritz Bunkus | %::myconfig = User->get_default_myconfig;
|
||
| 6afd06ad | Moritz Bunkus | |||
| 77fda875 | Moritz Bunkus | my $ok = $::auth->is_api_token_cookie_valid;
|
||
| 32b79fa8 | Moritz Bunkus | $ok ||= $::form->{'{AUTH}admin_password'} && ($::auth->authenticate_root($::form->{'{AUTH}admin_password'}) == $::auth->OK());
|
||
$ok ||= !$::form->{'{AUTH}admin_password'} && ($::auth->authenticate_root($::auth->get_session_value('admin_password')) == $::auth->OK());
|
||||
$ok ||= $params{action} eq 'login';
|
||||
| 6afd06ad | Moritz Bunkus | |||
| 32b79fa8 | Moritz Bunkus | $::auth->create_or_refresh_session;
|
||
| 4a12c839 | Sven Schöling | |||
| 32b79fa8 | Moritz Bunkus | if ($ok) {
|
||
$::auth->delete_session_value('FLASH');
|
||||
return 1;
|
||||
}
|
||||
$::request->{layout} = SL::Layout::Dispatcher->new(style => 'admin');
|
||||
| 670f76a8 | Moritz Bunkus | $::auth->delete_session_value('admin_password');
|
||
| 32b79fa8 | Moritz Bunkus | $::auth->punish_wrong_login;
|
||
| 540c0b5e | Moritz Bunkus | SL::Dispatcher::show_error('admin/adminlogin', 'password');
|
||
| 0e451e1b | Moritz Bunkus | |||
return 0;
|
||||
| 6afd06ad | Moritz Bunkus | }
|
||
1;
|