[popfile-commit] engine/languages English.msg,1.84,1.85

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Update of /cvsroot/popfile/engine/languages
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv20142/languages

Modified Files:
	English.msg 
Log Message:
More work on v0.23.0 (Multi-user Support)

Switch to using Cookies to keep client-side state concerning the
current connection to POPFile's UI.  Implement encrypted cookies and a
login page that allow multiple users to be connected to POPFile's UI
at the same time.

Currently, it's possible to create users and login as people other
than admin, but there's not a lot you can do with the users that are
created.  For the time being just login as admin (no password).

My next commit will make multi-user mode actually work: there will be
ability to logout, associations between POP3 accounts and POPFile
users...

DO NOT USE THIS FOR ANYTHING MORE THAN LOGGING IN AS ADMIN RIGHT NOW;
STRANGE THINGS MAY HAPPEN!

---

Classifer/Bayes.pm:

Make API sessions keys much more robust and unlikely to clash by
generating them randomly using a good random number source and using a
long secure hash instead of my old system.

UI/HTML.pm:

New functions for cookie handling: handle_cookie__ (to deal with a
received cookie), set_cookie__ (to send a cookie back to the client).

password_page now asks for a username as well as a password and handle
the creation of the API session and redirection with cookie.

Remove the old api_session__ and replace with the sessions__ hash used
to keep track of current sessions.

Return the Set-Cookie: header.

No hard-coded user '1' anywhere, all that is replaced with the user id
derived by looking up the current session in the sessions__ hash.

UI/HTTP.pm:

New APIs decrypt_cookie__ and encrypt_cookie__ to handle encryption
and decryption of cookies (with wrapping in base 64 for safety).  Use
Blowfish encryption with a randomly generated key each time POPFile is
started.

skins/default/*.thtml:

Remove references to the old Session_Key (session= and hidden inputs)
because it is no longer needed at all.

skins/default/password-page.thtml:

Password page now has a user name field and does not have an error
message hard coded.

skins/default/common-middle.thtml:

The shutdown link is only available to admins, the tabs and shutdown
are only available if you are logged in.

skins/default/common-bottom.thtml:

No information at all until you are logged in.

languages/English.msg:

Additional strings needed for the password page.

Index: English.msg
===================================================================
RCS file: /cvsroot/popfile/engine/languages/English.msg,v
retrieving revision 1.84
retrieving revision 1.85
diff -C2 -d -r1.84 -r1.85
*** English.msg	13 Feb 2005 02:16:35 -0000	1.84
--- English.msg	15 Feb 2005 04:23:54 -0000	1.85
***************
*** 251,258 ****
  History_Click_To_Sort                   Click to sort on this column

! Password_Title                          Password
! Password_Enter                          Enter password
! Password_Go                             Go!
! Password_Error1                         Incorrect password

  Security_Error1                         The port must be a number between 1 and 65535
--- 251,259 ----
  History_Click_To_Sort                   Click to sort on this column

! Password_Title                          Login
! Password_Password                       Password
! Password_Username                       User name
! Password_Go                             Login
! Password_Error1                         Incorrect user name or password

  Security_Error1                         The port must be a number between 1 and 65535