ISPConfig3 devel
parent: b31c9d7b | patch | commit | ignore whitespace
Till Brehm
2014-08-25 0baacefd19b7d78ab2c31d947109dec82a17f1cd 
FS#3641 - Add option to disable the password reset function
5 files modified
21 ■■■■■ changed files
interface/web/login/index.php 9 ●●●●● patch | view | raw | blame | history
interface/web/login/password_reset.php 5 ●●●●● patch | view | raw | blame | history
interface/web/login/templates/index.htm 2 ●●● patch | view | raw | blame | history
security/README.txt 4 ●●●● patch | view | raw | blame | history
security/security_settings.ini 1 ●●●● patch | view | raw | blame | history 
 interface/web/login/index.php


@@ -325,6 +325,15 @@


            $error = '<div class="box box_error"><h1>Error</h1>'.$error.'</div>';


        }


        


        $app->load('getconf');




        $security_config = $app->getconf->get_security_config('permissions');


        if($security_config['password_reset_allowed'] == 'yes') {


            $app->tpl->setVar('pw_lost_show', 1);


        } else {


            $app->tpl->setVar('pw_lost_show', 0);


        }


		


        $app->tpl->setVar('error', $error);


        $app->tpl->setVar('pw_lost_txt', $app->lng('pw_lost_txt'));


        $app->tpl->setVar('username_txt', $app->lng('username_txt'));




 interface/web/login/password_reset.php


@@ -31,6 +31,11 @@


require_once '../../lib/config.inc.php';


require_once '../../lib/app.inc.php';




$app->load('getconf');




$security_config = $app->getconf->get_security_config('permissions');


if($security_config['password_reset_allowed'] != 'yes') die('Password reset function has been disabled.');




// Loading the template


$app->uses('tpl');


$app->tpl->newTemplate("form.tpl.htm");




 interface/web/login/templates/index.htm


@@ -35,7 +35,7 @@




        <div class="buttonHolder buttons">


            <button class="positive iconstxt icoKey" type="button" value="{tmpl_var name='add_new_record_txt'}" onclick="submitLoginForm('pageForm');"><span>{tmpl_var name='login_button_txt'}</span></button>


            <button class="negative iconstxt icoKey" type="button" value="{tmpl_var name='pw_lost_txt'}" onclick="loadContent('login/password_reset.php');"><span>{tmpl_var name='pw_lost_txt'}</span></button>


            <tmpl_if name="pw_lost_show"><button class="negative iconstxt icoKey" type="button" value="{tmpl_var name='pw_lost_txt'}" onclick="loadContent('login/password_reset.php');"><span>{tmpl_var name='pw_lost_txt'}</span></button></tmpl_if>


        </div>


    </div>






 security/README.txt


@@ -69,6 +69,10 @@


Options:     yes/no


Description: Disables the remote API




Setting:     password_reset_allowed


Options:     yes/no


Description: Disables the password reset function.




Setting:     ids_enabled


Options:     yes/no


Description: Enables the Intrusion Detection System




 security/security_settings.ini


@@ -15,6 +15,7 @@


admin_allow_software_packages=superadmin


admin_allow_software_repo=superadmin


remote_api_allowed=yes


password_reset_allowed=yes




[ids]


ids_enabled=yes