'HTMLFragment' ); private static $allowed_actions = array( 'login', 'LoginForm', 'success' ); /** * Enable in-cms reauthentication * * @var boolean * @config */ private static $reauth_enabled = true; protected function init() { parent::init(); Requirements::javascript(FRAMEWORK_ADMIN_DIR . '/client/dist/js/vendor.js'); } public function login($request = null, $service = Authenticator::CMS_LOGIN) { return parent::login($request, Authenticator::CMS_LOGIN); } public function Link($action = null) { /** @skipUpgrade */ return Controller::join_links(Director::baseURL(), "CMSSecurity", $action); } protected function getAuthenticator($name = 'cms') { return parent::getAuthenticator($name); } public function getApplicableAuthenticators($service = Authenticator::CMS_LOGIN) { return parent::getApplicableAuthenticators($service); } /** * Get known logged out member * * @return Member */ public function getTargetMember() { if ($tempid = $this->getRequest()->requestVar('tempid')) { return Member::member_from_tempid($tempid); } return null; } public function getResponseController($title) { // Use $this to prevent use of Page to render underlying templates return $this; } protected function getLoginMessage(&$messageType = null) { return parent::getLoginMessage($messageType) ?: _t( 'SilverStripe\\Security\\CMSSecurity.LoginMessage', '

If you have any unsaved work you can return to where you left off by logging back in below.

' ); } public function getTitle() { // Check if logged in already if (Security::getCurrentUser()) { return _t('SilverStripe\\Security\\CMSSecurity.SUCCESS', 'Success'); } // Display logged-out message $member = $this->getTargetMember(); if ($member) { return _t( 'SilverStripe\\Security\\CMSSecurity.TimedOutTitleMember', 'Hey {name}!
Your session has timed out.', 'Title for CMS popup login form for a known user', array('name' => $member->FirstName) ); } else { return _t( 'SilverStripe\\Security\\CMSSecurity.TimedOutTitleAnonymous', 'Your session has timed out.', 'Title for CMS popup login form without a known user' ); } } /** * Redirects the user to the external login page * * @return HTTPResponse */ protected function redirectToExternalLogin() { $loginURL = Security::create()->Link('login'); $loginURLATT = Convert::raw2att($loginURL); $loginURLJS = Convert::raw2js($loginURL); $message = _t( 'SilverStripe\\Security\\CMSSecurity.INVALIDUSER', '

Invalid user. Please re-authenticate here to continue.

', 'Message displayed to user if their session cannot be restored', array('link' => $loginURLATT) ); $response = $this->getResponse(); $response->setStatusCode(200); $response->setBody(<< $message PHP ); $this->setResponse($response); return $response; } protected function preLogin() { // If no member has been previously logged in for this session, force a redirect to the main login page if (!$this->getTargetMember()) { return $this->redirectToExternalLogin(); } return parent::preLogin(); } /** * Determine if CMSSecurity is enabled * * @return bool */ public function enabled() { // Disable shortcut if (!static::config()->get('reauth_enabled')) { return false; } return count($this->getApplicableAuthenticators(Authenticator::CMS_LOGIN)) > 0; } /** * Given a successful login, tell the parent frame to close the dialog * * @return HTTPResponse|DBField */ public function success() { // Ensure member is properly logged in if (!Security::getCurrentUser() || !class_exists(AdminRootController::class)) { return $this->redirectToExternalLogin(); } // Get redirect url $controller = $this->getResponseController(_t('SilverStripe\\Security\\CMSSecurity.SUCCESS', 'Success')); $backURLs = array( $this->getRequest()->requestVar('BackURL'), Session::get('BackURL'), Director::absoluteURL(AdminRootController::config()->get('url_base'), true), ); $backURL = null; foreach ($backURLs as $backURL) { if ($backURL && Director::is_site_url($backURL)) { break; } } // Show login $controller = $controller->customise(array( 'Content' => _t( 'SilverStripe\\Security\\CMSSecurity.SUCCESSCONTENT', '

', 'Login message displayed in the cms popup once a user has re-authenticated themselves', array('link' => Convert::raw2att($backURL)) ) )); return $controller->renderWith($this->getTemplatesFor('success')); } }