Do not accept certificates for login which have nor Email field set

This commit is contained in:
Bernhard Fröhlich 2013-03-04 00:06:29 +01:00 committed by Bernhard "Ted" Frhlich
parent fa27e3da5f
commit 0fe3c3509f
6 changed files with 12 additions and 0 deletions

View file

@ -140,6 +140,8 @@ define("Index_01","aangemeld als :");
define("Login_01","Uw certificaat kon niet gecontroleerd worden.");
define("Login_02","Uw certificaat is ingetrokken.");
define("Login_03_No_Org_Certs","Organisatie (OA) certificaten worden niet aanvaard door CATS omdat deze niet eenvoudig naar een gebruikersaccount te herleiden zijn.");
define("Login_04_No_Server_Certs","Your certificate does not contain an Email field, you are probably using a server certificate.<br />".
"Server certificates cannot be used to log in to CATS since they do not identify a person.");
define("Menue_01","Help");
define("Menue_02","Aanmelden");
define("Menue_03","Afmelden");

View file

@ -144,6 +144,8 @@ define("Index_01","logged in as :");
define("Login_01","Your certificate could not be validated.");
define("Login_02","Your certificate has been revoked.");
define("Login_03_No_Org_Certs","Organisation certificates are not accepted for CATS since they cannot be easily traced to a user account.");
define("Login_04_No_Server_Certs","Your certificate does not contain an Email field, you are probably using a server certificate.<br />".
"Server certificates cannot be used to log in to CATS since they do not identify a person.");
define("Menue_01","Help");
define("Menue_02","Login");
define("Menue_03","Logout");

View file

@ -143,6 +143,8 @@ define("Index_01","Connect
define("Login_01","votre certificat pourrait ne pas être validé.");
define("Login_02","votre certificat a été révoqué.");
define("Login_03_No_Org_Certs","certificats d'organisation ne sont pas acceptés pour chats car ils ne peuvent pas être facilement remonter à un compte d'utilisateur.");
define("Login_04_No_Server_Certs","Your certificate does not contain an Email field, you are probably using a server certificate.<br />".
"Server certificates cannot be used to log in to CATS since they do not identify a person.");
define("Menue_01","Help");
define("Menue_02","connexion");
define("Menue_03","déconnexion");

View file

@ -143,6 +143,8 @@ define("Index_01","eingeloggt als :");
define("Login_01","Ihr Zertifikat konnte nicht überprüft werden");
define("Login_02","Ihr Zertifikat wurde wiederrufen");
define("Login_03_No_Org_Certs","Organisations-Zertifikate werden von CATS nicht akzeptiert, da sie sich nicht einfach einem Benutzerkonto zuordnen lassen.");
define("Login_04_No_Server_Certs","Ihr Zertifikat enthält kein Email-Feld, vermutlich handelt es sich um ein Server-Zertifikat.<br />".
"Server-Zertifikate werden von CATS nicht akzeptiert, da sie keine Person identifizieren.");
define("Menue_01","Hilfe");
define("Menue_02","Login");
define("Menue_03","Logout");

View file

@ -139,6 +139,8 @@ define("Index_01","registrado como :");
define("Login_01","Su certificado no pudo ser validado.");
define("Login_02","Su certificado ha sido revocado.");
define("Login_03_No_Org_Certs","No se aceptan certificados de organizaciones para los CATS ya que no pueden ser relacionados fácilmente con una cuenta de usuario.");
define("Login_04_No_Server_Certs","Your certificate does not contain an Email field, you are probably using a server certificate.<br />".
"Server certificates cannot be used to log in to CATS since they do not identify a person.");
define("Menue_01","Ayuda");
define("Menue_02","Iniciar sesión");
define("Menue_03","Salir");

View file

@ -13,6 +13,8 @@ include ("functions/acceptLogin.php");
if (isset($_SERVER["SSL_CLIENT_S_DN_O"])) {
echo '<h5 class="centered"><br />'.Login_03_No_Org_Certs.'</h5>';
} elseif(!isset($_SERVER["SSL_CLIENT_S_DN_Email"]) {
echo '<h5 class="centered"><br />'.Login_04_No_Server_Certs.'</h5>';
} elseif( $user_id ){
$sql="SELECT * FROM user where `user_id`='".$user_id."' and `root`='".$root."' ";
$query = mysql_query($sql);