Adding support for http_auth

author: Denis Sacchet <denis@sacchet.fr> 2013-10-20 23:28:45 +0200
committer: Denis Sacchet <denis@sacchet.fr> 2013-10-20 23:28:45 +0200
commit: 027b4e156853b4d5e358e19e83506ec4446de7ab (patch)
tree: 9a4ede0de3ac8494f206b07e2fc5e4013e61d234 /index.php
parent: df6afaf0909506a334ef2b8c6f69770cd9890e0d (diff)
download: wallabag-027b4e156853b4d5e358e19e83506ec4446de7ab.tar.gz
wallabag-027b4e156853b4d5e358e19e83506ec4446de7ab.tar.zst
wallabag-027b4e156853b4d5e358e19e83506ec4446de7ab.zip
1 files changed, 9 insertions, 1 deletions
diff --git a/index.php b/index.php
index d79f3f95..d400354d 100644
--- a/index.php
+++ b/index.php
@@ -82,9 +82,17 @@ if (Session::isLogged()) {
    $tpl_file = Tools::getTplFile($view);
    $tpl_vars = array_merge($tpl_vars, $poche->displayView($view, $id));
 } elseif(isset($_SERVER['PHP_AUTH_USER'])) {
-    $poche->login($referer);
+    if($poche->store->userExists($_SERVER['PHP_AUTH_USER'])) {
+        $poche->login($referer);
+    } else {
+        $poche->messages->add('e', _('login failed: user doesn\'t exist'));
+        Tools::logm('user doesn\'t exist');
+        $tpl_file = Tools::getTplFile('login');
+        $tpl_vars['http_auth'] = 1;
+    }
 } else {
    $tpl_file = Tools::getTplFile('login');
+    $tpl_vars['http_auth'] = 0;
 }
 # because messages can be added in $poche->action(), we have to add this entry now (we can add it before)
author	Denis Sacchet <denis@sacchet.fr>	2013-10-20 23:28:45 +0200
committer	Denis Sacchet <denis@sacchet.fr>	2013-10-20 23:28:45 +0200
commit	027b4e156853b4d5e358e19e83506ec4446de7ab (patch)
tree	9a4ede0de3ac8494f206b07e2fc5e4013e61d234 /index.php
parent	df6afaf0909506a334ef2b8c6f69770cd9890e0d (diff)
download	wallabag-027b4e156853b4d5e358e19e83506ec4446de7ab.tar.gz wallabag-027b4e156853b4d5e358e19e83506ec4446de7ab.tar.zst wallabag-027b4e156853b4d5e358e19e83506ec4446de7ab.zip