| author | Dan |
| Sun, 07 Oct 2007 16:56:14 -0400 | |
| changeset 171 | 1465f48faba0 |
| parent 170 | 4c5c2b66a34d |
| child 172 | 1bc7e849a264 |
| permissions | -rw-r--r-- |
| 1 | 1 |
// Some additional DHTML functions |
2 |
||
3 |
function fetch_offset(obj) {
|
|
4 |
var left_offset = obj.offsetLeft; |
|
5 |
var top_offset = obj.offsetTop; |
|
6 |
while ((obj = obj.offsetParent) != null) {
|
|
7 |
left_offset += obj.offsetLeft; |
|
8 |
top_offset += obj.offsetTop; |
|
9 |
} |
|
10 |
return { 'left' : left_offset, 'top' : top_offset };
|
|
11 |
} |
|
12 |
||
13 |
function fetch_dimensions(o) {
|
|
14 |
var w = o.offsetWidth; |
|
15 |
var h = o.offsetHeight; |
|
16 |
return { 'w' : w, 'h' : h };
|
|
17 |
} |
|
18 |
||
19 |
function findParentForm(o) |
|
20 |
{
|
|
|
74
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
21 |
if ( o.tagName == 'FORM' ) |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
22 |
return o; |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
23 |
while(true) |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
24 |
{
|
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
25 |
o = o.parentNode; |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
26 |
if ( !o ) |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
27 |
return false; |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
28 |
if ( o.tagName == 'FORM' ) |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
29 |
return o; |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
30 |
} |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
31 |
return false; |
| 1 | 32 |
} |
33 |
||
34 |
function ajaxReverseDNS(o, text) |
|
35 |
{
|
|
36 |
if(text) var ipaddr = text; |
|
37 |
else var ipaddr = o.innerHTML; |
|
38 |
rDnsObj = o; |
|
39 |
rDnsBannerObj = bannerOn('Retrieving reverse DNS info...');
|
|
40 |
ajaxGet(stdAjaxPrefix+'&_mode=rdns&ip='+ipaddr, function() {
|
|
41 |
if(ajax.readyState == 4) |
|
42 |
{
|
|
43 |
off = fetch_offset(rDnsObj); |
|
44 |
dim = fetch_dimensions(rDnsObj); |
|
45 |
right = off['left'] + dim['w']; |
|
46 |
top = off['top'] + dim['h']; |
|
47 |
var thediv = document.createElement('div');
|
|
48 |
thediv.className = 'info-box'; |
|
49 |
thediv.style.margin = '0'; |
|
50 |
thediv.style.position = 'absolute'; |
|
51 |
thediv.style.top = top + 'px'; |
|
52 |
thediv.style.display = 'none'; |
|
53 |
thediv.style.zIndex = getHighestZ() + 2; |
|
54 |
thediv.id = 'mdgDynamic_rDnsInfoDiv_'+Math.floor(Math.random() * 1000000); |
|
55 |
thediv.innerHTML = '<b>Reverse DNS:</b><br />'+ajax.responseText+' <a href="#" onclick="elem = document.getElementById(\''+thediv.id+'\'); elem.innerHTML = \'\'; elem.style.display = \'none\';return false;">Close</a>'; |
|
56 |
var body = document.getElementsByTagName('body');
|
|
57 |
body = body[0]; |
|
58 |
bannerOff(rDnsBannerObj); |
|
59 |
body.appendChild(thediv); |
|
60 |
thediv.style.display = 'block'; |
|
61 |
left = fetch_dimensions(thediv); |
|
62 |
thediv.style.display = 'none'; |
|
63 |
left = right - left['w']; |
|
64 |
thediv.style.left = left + 'px'; |
|
65 |
thediv.style.display = 'block'; |
|
66 |
fadeInfoBoxes(); |
|
67 |
} |
|
68 |
}); |
|
69 |
} |
|
70 |
||
71 |
function bannerOn(text) |
|
72 |
{
|
|
73 |
darken(true); |
|
74 |
var thediv = document.createElement('div');
|
|
75 |
thediv.className = 'mdg-comment'; |
|
76 |
thediv.style.padding = '0'; |
|
77 |
thediv.style.marginLeft = '0'; |
|
78 |
thediv.style.position = 'absolute'; |
|
79 |
thediv.style.display = 'none'; |
|
80 |
thediv.style.padding = '4px'; |
|
81 |
thediv.style.fontSize = '14pt'; |
|
82 |
thediv.id = 'mdgDynamic_bannerDiv_'+Math.floor(Math.random() * 1000000); |
|
83 |
thediv.innerHTML = text; |
|
84 |
||
85 |
var body = document.getElementsByTagName('body');
|
|
86 |
body = body[0]; |
|
87 |
body.appendChild(thediv); |
|
88 |
body.style.cursor = 'wait'; |
|
89 |
||
90 |
thediv.style.display = 'block'; |
|
91 |
dim = fetch_dimensions(thediv); |
|
92 |
thediv.style.display = 'none'; |
|
93 |
bdim = { 'w' : getWidth(), 'h' : getHeight() };
|
|
94 |
so = getScrollOffset(); |
|
95 |
||
|
40
723bb7acf914
Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Dan
parents:
9
diff
changeset
|
96 |
var left = (bdim['w'] / 2) - ( dim['w'] / 2 ); |
|
723bb7acf914
Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Dan
parents:
9
diff
changeset
|
97 |
|
|
723bb7acf914
Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Dan
parents:
9
diff
changeset
|
98 |
var top = (bdim['h'] / 2); |
|
723bb7acf914
Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Dan
parents:
9
diff
changeset
|
99 |
top = top - ( dim['h'] / 2 ); |
|
723bb7acf914
Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Dan
parents:
9
diff
changeset
|
100 |
|
|
723bb7acf914
Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Dan
parents:
9
diff
changeset
|
101 |
top = top + so; |
| 1 | 102 |
|
103 |
thediv.style.top = top + 'px'; |
|
104 |
thediv.style.left = left + 'px'; |
|
105 |
||
106 |
thediv.style.display = 'block'; |
|
107 |
||
108 |
return thediv.id; |
|
109 |
} |
|
110 |
||
111 |
function bannerOff(id) |
|
112 |
{
|
|
113 |
e = document.getElementById(id); |
|
114 |
if(!e) return; |
|
115 |
e.innerHTML = ''; |
|
116 |
e.style.display = 'none'; |
|
117 |
var body = document.getElementsByTagName('body');
|
|
118 |
body = body[0]; |
|
119 |
body.style.cursor = 'default'; |
|
120 |
enlighten(true); |
|
121 |
} |
|
122 |
||
123 |
function disableUnload(message) |
|
124 |
{
|
|
125 |
if(typeof message != 'string') message = 'You may want to save your changes first.'; |
|
126 |
var body = document.getElementsByTagName('body');
|
|
127 |
body = body[0]; |
|
128 |
body.onbeforeunload='return unescape(\''+escape(message)+'\')'; |
|
129 |
} |
|
130 |
||
131 |
function enableUnload() |
|
132 |
{
|
|
133 |
var body = document.getElementsByTagName('body');
|
|
134 |
body = body[0]; |
|
135 |
body.onbeforeunload = null; |
|
136 |
} |
|
137 |
||
138 |
/** |
|
139 |
* Gets the highest z-index of all divs in the document |
|
140 |
* @return integer |
|
141 |
*/ |
|
142 |
function getHighestZ() |
|
143 |
{
|
|
144 |
z = 0; |
|
145 |
var divs = document.getElementsByTagName('div');
|
|
146 |
for(var i = 0; i < divs.length; i++) |
|
147 |
{
|
|
148 |
if(divs[i].style.zIndex > z) z = divs[i].style.zIndex; |
|
149 |
} |
|
150 |
return z; |
|
151 |
} |
|
152 |
||
153 |
function isKeyPressed(event) |
|
154 |
{
|
|
155 |
if (event.shiftKey==1) |
|
156 |
{
|
|
157 |
shift = true; |
|
158 |
} |
|
159 |
else |
|
160 |
{
|
|
161 |
shift = false; |
|
162 |
} |
|
163 |
} |
|
164 |
||
165 |
function moveDiv(div, newparent) |
|
166 |
{
|
|
167 |
var backup = div; |
|
168 |
var oldparent = div.parentNode; |
|
169 |
oldparent.removeChild(div); |
|
170 |
newparent.appendChild(backup); |
|
171 |
} |
|
172 |
||
173 |
function readCookie(name) {var nameEQ = name + "=";var ca = document.cookie.split(';');for(var i=0;i < ca.length;i++){var c = ca[i];while (c.charAt(0)==' ') c = c.substring(1,c.length);if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length,c.length);}return null;}
|
|
174 |
function createCookie(name,value,days){if (days){var date = new Date();date.setTime(date.getTime()+(days*24*60*60*1000));var expires = "; expires="+date.toGMTString();}else var expires = "";document.cookie = name+"="+value+expires+"; path=/";}
|
|
175 |
function eraseCookie(name) {createCookie(name,"",-1);}
|
|
176 |
||
177 |
var busyBannerID; |
|
178 |
function goBusy(msg) |
|
179 |
{
|
|
180 |
if(!msg) msg = 'Please wait...'; |
|
181 |
body = document.getElementsByTagName('body');
|
|
182 |
body = body[0]; |
|
183 |
body.style.cursor = 'wait'; |
|
184 |
busyBannerID = bannerOn(msg); |
|
185 |
} |
|
186 |
||
187 |
function unBusy() |
|
188 |
{
|
|
189 |
body = document.getElementsByTagName('body');
|
|
190 |
body = body[0]; |
|
191 |
body.style.cursor = 'default'; |
|
192 |
bannerOff(busyBannerID); |
|
193 |
} |
|
194 |
||
195 |
function setAjaxLoading() |
|
196 |
{
|
|
197 |
if ( document.getElementById('ajaxloadicon') )
|
|
198 |
{
|
|
199 |
document.getElementById('ajaxloadicon').src=scriptPath + '/images/loading.gif';
|
|
200 |
} |
|
201 |
} |
|
202 |
||
203 |
function unsetAjaxLoading() |
|
204 |
{
|
|
205 |
if ( document.getElementById('ajaxloadicon') )
|
|
206 |
{
|
|
207 |
document.getElementById('ajaxloadicon').src=scriptPath + '/images/spacer.gif';
|
|
208 |
} |
|
209 |
} |
|
210 |
||
211 |
/* |
|
212 |
* Search boxes |
|
213 |
*/ |
|
214 |
||
215 |
function buildSearchBoxes() |
|
216 |
{
|
|
217 |
var divs = document.getElementsByTagName('*');
|
|
218 |
var boxes = new Array(); |
|
219 |
for ( var i = 0; i < divs.length; i++ ) |
|
220 |
{
|
|
221 |
if ( divs[i].className) |
|
222 |
{
|
|
223 |
if ( divs[i].className.substr(0, 9) == 'searchbox' ) |
|
224 |
{
|
|
225 |
boxes.push(divs[i]); |
|
226 |
} |
|
227 |
} |
|
228 |
} |
|
229 |
for ( var i = 0; i < boxes.length; i++ ) |
|
230 |
{
|
|
231 |
if ( boxes[i].className.match(/^searchbox\[([0-9]+)px\]$/) ) |
|
232 |
{
|
|
233 |
var width = boxes[i].className.match(/^searchbox\[([0-9]+)px\]$/); |
|
234 |
width = parseInt(width[1]); |
|
235 |
} |
|
236 |
else |
|
237 |
{
|
|
238 |
var width = 120; |
|
239 |
} |
|
240 |
createSearchBox(boxes[i], width); |
|
241 |
} |
|
242 |
} |
|
243 |
||
244 |
function createSearchBox(parent, width) |
|
245 |
{
|
|
246 |
if ( typeof(parent) != 'object') |
|
247 |
{
|
|
248 |
alert('BUG: createSearchBox(): parent is not an object');
|
|
249 |
return false; |
|
250 |
} |
|
251 |
//parent.style.padding = '0px'; |
|
252 |
//parent.style.textAlign = 'center'; |
|
253 |
parent.style.width = width + 'px'; |
|
254 |
var submit = document.createElement('div');
|
|
255 |
submit.onclick = function() { searchFormSubmit(this); };
|
|
256 |
submit.className = 'js-search-submit'; |
|
257 |
var input = document.createElement('input');
|
|
258 |
input.className = 'js-search-box'; |
|
259 |
input.value = 'Search'; |
|
260 |
input.name = 'q'; |
|
261 |
input.style.width = ( width - 28 ) + 'px'; |
|
262 |
input.onfocus = function() { if ( this.value == 'Search' ) this.value = ''; };
|
|
263 |
input.onblur = function() { if ( this.value == '' ) this.value = 'Search'; };
|
|
264 |
parent.appendChild(input); |
|
265 |
var off = fetch_offset(input); |
|
266 |
var top = off['top'] + 'px'; |
|
267 |
var left = ( parseInt(off['left']) + ( width - 24 ) ) + 'px'; |
|
268 |
submit.style.top = top; |
|
269 |
submit.style.left = left; |
|
270 |
parent.appendChild(submit); |
|
271 |
} |
|
272 |
||
273 |
function searchFormSubmit(obj) |
|
274 |
{
|
|
275 |
var input = obj.previousSibling; |
|
276 |
if ( input.value == 'Search' || input.value == '' ) |
|
277 |
return false; |
|
278 |
var p = obj; |
|
279 |
while(true) |
|
280 |
{
|
|
281 |
p = p.parentNode; |
|
282 |
if ( !p ) |
|
283 |
break; |
|
284 |
if ( typeof(p.tagName) != 'string' ) |
|
285 |
break; |
|
286 |
else if ( p.tagName.toLowerCase() == 'form' ) |
|
287 |
{
|
|
288 |
p.submit(); |
|
289 |
} |
|
290 |
else if ( p.tagName.toLowerCase() == 'body' ) |
|
291 |
{
|
|
292 |
break; |
|
293 |
} |
|
294 |
} |
|
295 |
} |
|
296 |
||
297 |
/* |
|
298 |
* AJAX login box (experimental) |
|
299 |
*/ |
|
300 |
||
301 |
var ajax_auth_prompt_cache = false; |
|
302 |
var ajax_auth_mb_cache = false; |
|
303 |
var ajax_auth_level_cache = false; |
|
|
170
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
304 |
var ajax_auth_error_string = false; |
| 1 | 305 |
|
306 |
function ajaxPromptAdminAuth(call_on_ok, level) |
|
307 |
{
|
|
308 |
if ( typeof(call_on_ok) == 'function' ) |
|
309 |
{
|
|
310 |
ajax_auth_prompt_cache = call_on_ok; |
|
311 |
} |
|
312 |
if ( !level ) |
|
|
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
313 |
level = USER_LEVEL_MEMBER; |
| 1 | 314 |
ajax_auth_level_cache = level; |
315 |
var loading_win = '<div align="center" style="text-align: center;"> \ |
|
316 |
<p>Fetching an encryption key...</p> \ |
|
317 |
<p><small>Not working? Use the <a href="'+makeUrlNS('Special', 'Login/' + title)+'">alternate login form</a>.</p> \
|
|
318 |
<p><img alt="Please wait..." src="'+scriptPath+'/images/loading-big.gif" /></p> \ |
|
319 |
</div>'; |
|
|
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
320 |
var title = ( level > USER_LEVEL_MEMBER ) ? 'You are requesting a sensitive operation.' : 'Please enter your username and password to continue.'; |
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
321 |
ajax_auth_mb_cache = new messagebox(MB_OKCANCEL|MB_ICONLOCK, title, loading_win); |
| 1 | 322 |
ajax_auth_mb_cache.onbeforeclick['OK'] = ajaxValidateLogin; |
323 |
ajaxAuthLoginInnerSetup(); |
|
324 |
} |
|
325 |
||
326 |
function ajaxAuthLoginInnerSetup() |
|
327 |
{
|
|
328 |
ajaxGet(makeUrlNS('Special', 'Login', 'act=getkey'), function() {
|
|
329 |
if ( ajax.readyState == 4 ) |
|
330 |
{
|
|
|
40
723bb7acf914
Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Dan
parents:
9
diff
changeset
|
331 |
var response = String(ajax.responseText); |
| 1 | 332 |
if ( response.substr(0,1) != '{' )
|
333 |
{
|
|
334 |
alert('Invalid JSON response from server: ' + response);
|
|
335 |
return false; |
|
336 |
} |
|
337 |
response = parseJSON(response); |
|
|
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
338 |
var level = ajax_auth_level_cache; |
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
339 |
var form_html = ''; |
|
170
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
340 |
if ( ajax_auth_error_string ) |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
341 |
{
|
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
342 |
form_html += '<span style="color: #D84308;">' + ajax_auth_error_string + '</span><br /><br />'; |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
343 |
ajax_auth_error_string = false; |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
344 |
} |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
345 |
else if ( level > USER_LEVEL_MEMBER ) |
|
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
346 |
{
|
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
347 |
form_html += 'Please re-enter your login details, to verify your identity.<br /><br />'; |
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
348 |
} |
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
349 |
form_html += ' \ |
| 1 | 350 |
<table border="0" align="center"> \ |
351 |
<tr> \ |
|
352 |
<td>Username:</td><td><input tabindex="1" id="ajaxlogin_user" type="text" size="25" /> \ |
|
353 |
</tr> \ |
|
354 |
<tr> \ |
|
355 |
<td>Password:</td><td><input tabindex="2" id="ajaxlogin_pass" type="password" size="25" /> \ |
|
356 |
</tr> \ |
|
357 |
<tr> \ |
|
358 |
<td colspan="2" style="text-align: center;"> \ |
|
|
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
359 |
<br /><small>Trouble logging in? Try the <a href="'+makeUrlNS('Special', 'Login/' + title)+'">full login form</a>.<br />';
|
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
360 |
if ( level <= USER_LEVEL_MEMBER ) |
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
361 |
{
|
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
362 |
form_html += ' \ |
| 1 | 363 |
Did you <a href="'+makeUrlNS('Special', 'PasswordReset')+'">forget your password</a>?<br /> \
|
|
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
364 |
Maybe you need to <a href="'+makeUrlNS('Special', 'Register')+'">create an account</a>.</small>';
|
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
365 |
} |
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
366 |
form_html += ' \ |
| 1 | 367 |
</td> \ |
368 |
</tr> \ |
|
369 |
</table> \ |
|
370 |
<input type="hidden" id="ajaxlogin_crypt_key" value="' + response.key + '" /> \ |
|
371 |
<input type="hidden" id="ajaxlogin_crypt_challenge" value="' + response.challenge + '" /> \ |
|
372 |
</form>'; |
|
373 |
ajax_auth_mb_cache.updateContent(form_html); |
|
374 |
$('messageBox').object.nextSibling.firstChild.tabindex = '3';
|
|
|
60
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
375 |
if ( typeof(response.username) == 'string' ) |
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
376 |
{
|
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
377 |
$('ajaxlogin_user').object.value = response.username;
|
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
378 |
$('ajaxlogin_pass').object.focus();
|
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
379 |
} |
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
380 |
else |
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
381 |
{
|
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
382 |
$('ajaxlogin_user').object.focus();
|
|
71b50f8c8f85
Changed administration login request to use the AJAX login form; made high-level authentication more apparent in the AJAX box; recompiled Oxygen Mint
Dan
parents:
40
diff
changeset
|
383 |
} |
|
9
1e61232606d6
Following fixes: admin theme supports <button> tag now, PageProcessor can eval now, and SpecialAdmin.php plugin can no longer be disabled
dan@fuhry
parents:
1
diff
changeset
|
384 |
$('ajaxlogin_pass').object.onblur = function(e) { if ( !shift ) $('messageBox').object.nextSibling.firstChild.focus(); };
|
|
40
723bb7acf914
Fixed a lot of bugs with Safari and Konqueror; improved Opera compatibility
Dan
parents:
9
diff
changeset
|
385 |
$('ajaxlogin_pass').object.onkeypress = function(e) { if ( !e && IE ) return true; if ( e.keyCode == 13 ) $('messageBox').object.nextSibling.firstChild.click(); };
|
| 1 | 386 |
} |
387 |
}); |
|
388 |
} |
|
389 |
||
390 |
function ajaxValidateLogin() |
|
391 |
{
|
|
392 |
var username,password,auth_enabled,crypt_key,crypt_data,challenge_salt,challenge_data; |
|
393 |
username = document.getElementById('ajaxlogin_user');
|
|
394 |
if ( !username ) |
|
395 |
return false; |
|
396 |
username = document.getElementById('ajaxlogin_user').value;
|
|
397 |
password = document.getElementById('ajaxlogin_pass').value;
|
|
398 |
auth_enabled = false; |
|
399 |
||
400 |
disableJSONExts(); |
|
401 |
||
402 |
// |
|
403 |
// Encryption test |
|
404 |
// |
|
405 |
||
406 |
var str = ''; |
|
407 |
for(i=0;i<keySizeInBits/4;i++) |
|
408 |
{
|
|
409 |
str+='0'; |
|
410 |
} |
|
411 |
str = hexToByteArray(str); |
|
412 |
var ct = rijndaelEncrypt(str, str, 'ECB'); |
|
413 |
ct = byteArrayToHex(ct); |
|
414 |
var v; |
|
415 |
switch(keySizeInBits) |
|
416 |
{
|
|
417 |
case 128: |
|
418 |
v = '66e94bd4ef8a2c3b884cfa59ca342b2e'; |
|
419 |
break; |
|
420 |
case 192: |
|
421 |
v = 'aae06992acbf52a3e8f4a96ec9300bd7aae06992acbf52a3e8f4a96ec9300bd7'; |
|
422 |
break; |
|
423 |
case 256: |
|
424 |
v = 'dc95c078a2408989ad48a21492842087dc95c078a2408989ad48a21492842087'; |
|
425 |
break; |
|
426 |
} |
|
427 |
auth_enabled = ( ct == v && md5_vm_test() ); |
|
428 |
if ( !auth_enabled ) |
|
429 |
{
|
|
430 |
alert('Login error: encryption sanity check failed\n');
|
|
431 |
return true; |
|
432 |
} |
|
433 |
||
434 |
crypt_key = document.getElementById('ajaxlogin_crypt_key').value;
|
|
435 |
challenge_salt = document.getElementById('ajaxlogin_crypt_challenge').value;
|
|
436 |
||
437 |
var crypt_key_md5 = hex_md5(crypt_key); |
|
438 |
||
439 |
challenge_data = hex_md5(password + challenge_salt) + challenge_salt; |
|
440 |
||
441 |
password = stringToByteArray(password); |
|
442 |
crypt_key = hexToByteArray(crypt_key); |
|
443 |
||
444 |
crypt_data = rijndaelEncrypt(password, crypt_key, 'ECB'); |
|
445 |
crypt_data = byteArrayToHex(crypt_data); |
|
446 |
||
447 |
var json_data = {
|
|
448 |
'username' : username, |
|
449 |
'crypt_key' : crypt_key_md5, |
|
450 |
'challenge' : challenge_data, |
|
451 |
'crypt_data' : crypt_data, |
|
452 |
'level' : ajax_auth_level_cache |
|
453 |
}; |
|
454 |
||
455 |
json_data = toJSONString(json_data); |
|
|
135
c5dbad7ec2d0
Enano should now fully support UTF-8 usernames; newly registered users are now granted automatic edit access to their user pages (admins can still use protection on the page)
Dan
parents:
133
diff
changeset
|
456 |
json_data = encodeURIComponent(json_data); |
| 1 | 457 |
|
458 |
var loading_win = '<div align="center" style="text-align: center;"> \ |
|
459 |
<p>Logging in...</p> \ |
|
460 |
<p><img alt="Please wait..." src="'+scriptPath+'/images/loading-big.gif" /></p> \ |
|
461 |
</div>'; |
|
462 |
||
463 |
ajax_auth_mb_cache.updateContent(loading_win); |
|
464 |
||
465 |
ajaxPost(makeUrlNS('Special', 'Login', 'act=ajaxlogin'), 'params=' + json_data, function() {
|
|
466 |
if ( ajax.readyState == 4 ) |
|
467 |
{
|
|
468 |
var response = ajax.responseText; |
|
469 |
if ( response.substr(0,1) != '{' )
|
|
470 |
{
|
|
471 |
alert('Invalid JSON response from server: ' + response);
|
|
472 |
ajaxAuthLoginInnerSetup(); |
|
473 |
return false; |
|
474 |
} |
|
475 |
response = parseJSON(response); |
|
476 |
switch(response.result) |
|
477 |
{
|
|
478 |
case 'success': |
|
479 |
if ( typeof(ajax_auth_prompt_cache) == 'function' ) |
|
480 |
{
|
|
481 |
ajax_auth_prompt_cache(response.key); |
|
482 |
} |
|
483 |
break; |
|
484 |
case 'success_reset': |
|
485 |
var conf = confirm('You have logged in using a temporary password. Before you can log in, you must finish resetting your password. Do you want to reset your real password now?');
|
|
486 |
if ( conf ) |
|
487 |
{
|
|
488 |
var url = makeUrlNS('Special', 'PasswordReset/stage2/' + response.user_id + '/' + response.temppass);
|
|
489 |
window.location = url; |
|
490 |
} |
|
491 |
else |
|
492 |
{
|
|
493 |
ajaxAuthLoginInnerSetup(); |
|
494 |
} |
|
495 |
break; |
|
496 |
case 'error': |
|
|
170
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
497 |
if ( response.error == 'The username and/or password is incorrect.' ) |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
498 |
{
|
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
499 |
ajax_auth_error_string = response.error; |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
500 |
mb_current_obj.updateContent('');
|
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
501 |
document.getElementById('messageBox').style.backgroundColor = '#C0C0C0';
|
|
171
1465f48faba0
AJAX login box is now used in userprefs panel; Spry shake effect and general UX on auth fail is smoother now; added ajaxLoginNavTo() JS function
Dan
parents:
170
diff
changeset
|
502 |
var mb_parent = document.getElementById('messageBox').parentNode;
|
|
1465f48faba0
AJAX login box is now used in userprefs panel; Spry shake effect and general UX on auth fail is smoother now; added ajaxLoginNavTo() JS function
Dan
parents:
170
diff
changeset
|
503 |
new Spry.Effect.Shake(mb_parent, {duration: 1500}).start();
|
|
170
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
504 |
setTimeout("document.getElementById('messageBox').style.backgroundColor = '#FFF'; ajaxAuthLoginInnerSetup();", 2500);
|
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
505 |
} |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
506 |
else |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
507 |
{
|
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
508 |
alert(response.error); |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
509 |
ajaxAuthLoginInnerSetup(); |
|
4c5c2b66a34d
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Dan
parents:
144
diff
changeset
|
510 |
} |
| 1 | 511 |
break; |
512 |
default: |
|
513 |
alert(ajax.responseText); |
|
514 |
break; |
|
515 |
} |
|
516 |
} |
|
517 |
}); |
|
518 |
||
519 |
return true; |
|
520 |
||
521 |
} |
|
522 |
||
523 |
// This code is in the public domain. Feel free to link back to http://jan.moesen.nu/ |
|
524 |
function sprintf() |
|
525 |
{
|
|
526 |
if (!arguments || arguments.length < 1 || !RegExp) |
|
527 |
{
|
|
528 |
return; |
|
529 |
} |
|
530 |
var str = arguments[0]; |
|
531 |
var re = /([^%]*)%('.|0|\x20)?(-)?(\d+)?(\.\d+)?(%|b|c|d|u|f|o|s|x|X)(.*)/;
|
|
532 |
var a = b = [], numSubstitutions = 0, numMatches = 0; |
|
533 |
while (a = re.exec(str)) |
|
534 |
{
|
|
535 |
var leftpart = a[1], pPad = a[2], pJustify = a[3], pMinLength = a[4]; |
|
536 |
var pPrecision = a[5], pType = a[6], rightPart = a[7]; |
|
537 |
||
538 |
//alert(a + '\n' + [a[0], leftpart, pPad, pJustify, pMinLength, pPrecision); |
|
539 |
||
540 |
numMatches++; |
|
541 |
if (pType == '%') |
|
542 |
{
|
|
543 |
subst = '%'; |
|
544 |
} |
|
545 |
else |
|
546 |
{
|
|
547 |
numSubstitutions++; |
|
548 |
if (numSubstitutions >= arguments.length) |
|
549 |
{
|
|
550 |
alert('Error! Not enough function arguments (' + (arguments.length - 1) + ', excluding the string)\nfor the number of substitution parameters in string (' + numSubstitutions + ' so far).');
|
|
551 |
} |
|
552 |
var param = arguments[numSubstitutions]; |
|
553 |
var pad = ''; |
|
554 |
if (pPad && pPad.substr(0,1) == "'") pad = leftpart.substr(1,1); |
|
555 |
else if (pPad) pad = pPad; |
|
556 |
var justifyRight = true; |
|
557 |
if (pJustify && pJustify === "-") justifyRight = false; |
|
558 |
var minLength = -1; |
|
559 |
if (pMinLength) minLength = parseInt(pMinLength); |
|
560 |
var precision = -1; |
|
561 |
if (pPrecision && pType == 'f') precision = parseInt(pPrecision.substring(1)); |
|
562 |
var subst = param; |
|
563 |
if (pType == 'b') subst = parseInt(param).toString(2); |
|
564 |
else if (pType == 'c') subst = String.fromCharCode(parseInt(param)); |
|
565 |
else if (pType == 'd') subst = parseInt(param) ? parseInt(param) : 0; |
|
566 |
else if (pType == 'u') subst = Math.abs(param); |
|
567 |
else if (pType == 'f') subst = (precision > -1) ? Math.round(parseFloat(param) * Math.pow(10, precision)) / Math.pow(10, precision): parseFloat(param); |
|
568 |
else if (pType == 'o') subst = parseInt(param).toString(8); |
|
569 |
else if (pType == 's') subst = param; |
|
570 |
else if (pType == 'x') subst = ('' + parseInt(param).toString(16)).toLowerCase();
|
|
571 |
else if (pType == 'X') subst = ('' + parseInt(param).toString(16)).toUpperCase();
|
|
572 |
} |
|
573 |
str = leftpart + subst + rightPart; |
|
574 |
} |
|
575 |
return str; |
|
576 |
} |
|
577 |
||
|
74
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
578 |
/** |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
579 |
* Insert a DOM object _after_ the specified child. |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
580 |
* @param object Parent node |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
581 |
* @param object Node to insert |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
582 |
* @param object Node to insert after |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
583 |
*/ |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
584 |
|
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
585 |
function insertAfter(parent, baby, bigsister) |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
586 |
{
|
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
587 |
try |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
588 |
{
|
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
589 |
if ( parent.childNodes[parent.childNodes.length-1] == bigsister ) |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
590 |
parent.appendChild(baby); |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
591 |
else |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
592 |
parent.insertBefore(baby, bigsister.nextSibling); |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
593 |
} |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
594 |
catch(e) |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
595 |
{
|
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
596 |
alert(e.toString()); |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
597 |
if ( window.console ) |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
598 |
{
|
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
599 |
// Firebug support |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
600 |
window.console.warn(e); |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
601 |
} |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
602 |
} |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
603 |
} |
|
68469a95658d
Various bugfixes and cleanups, too much to remember... see the diffs for what got changed :-)
Dan
parents:
60
diff
changeset
|
604 |
|
|
125
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
605 |
/** |
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
606 |
* Validates an e-mail address. |
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
607 |
* @param string E-mail address |
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
608 |
* @return bool |
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
609 |
*/ |
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
610 |
|
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
611 |
function validateEmail(email) |
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
612 |
{
|
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
613 |
return ( email.match(/^(?:[\w\d]+\.?)+@((?:(?:[\w\d]\-?)+\.)+\w{2,4}|localhost)$/) ) ? true : false;
|
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
614 |
} |
|
fb31c951d3a2
Fixed some rather major bugs in the registration system, this will need a release followup
Dan
parents:
85
diff
changeset
|
615 |