<?php
/* $Id: unauth.php 7302 2012-06-25 21:12:35Z alive $ */
$NETCAT_FOLDER = join(strstr(__FILE__, "/") ? "/" : "\\", array_slice(preg_split("/[\\/\\\\]+/", __FILE__), 0, -3)) . (strstr(__FILE__, "/") ? "/" : "\\");
include_once $NETCAT_FOLDER . "vars.inc.php";
require $ADMIN_FOLDER . "function.inc.php";
Unauthorize();
LoginFormHeader();
switch ($AUTHORIZATION_TYPE) {
case "cookie":
echo BEGINHTML_LOGOUT_OK . "<br><br>[<a href='" . $ADMIN_PATH . "' class='relogin'>" . BEGINHTML_LOGOUT_RELOGIN . "</a>]";
break;
case "http":
echo BEGINHTML_LOGOUT_IE;
break;
case "session":
echo BEGINHTML_LOGOUT_OK . "<br><br>[<a href='" . $ADMIN_PATH . "' class='relogin'>" . BEGINHTML_LOGOUT_RELOGIN . "</a>]";
unset($_SESSION['User']);
break;
}
LoginFormFooter();
function Refuse()
{
global $nc_core, $AUTH_TYPE, $admin_mode, $nc_auth;
// AJAX call
if ($_POST["NC_HTTP_REQUEST"] || NC_ADMIN_ASK_PASSWORD === false) {
// issue strange header (actually not RFC2616-compliant) and die
header($_SERVER['SERVER_PROTOCOL'] . " 401 Authorization Required");
exit;
}
switch ($nc_core->AUTHORIZATION_TYPE) {
case 'cookie':
case 'session':
if (!$admin_mode) {
if (is_object($nc_auth)) {
$nc_auth->login_form();
}
} else {
LoginFormHeader();
LoginForm();
LoginFormFooter();
}
break;
default:
# по дефолту авторизация 'http'
Header("WWW-authenticate: basic realm=Enter your login and password");
Header($_SERVER['SERVER_PROTOCOL'] . ' 401 Unauthorized');
LoginFormHeader();
print CONTROL_AUTH_MSG_MUSTAUTH;
LoginFormFooter();
}
exit;
}
