Koha/opac/opac-logout.pl
Michael Hafen e08e6a01c3 fixed session cookie name in opac-logout.pl
Session Cookie name is CGISESSID in Auth.pm

Signed-off-by: Michael Hafen <mdhafen@washk12.org>
Signed-off-by: Joshua Ferraro <jmf@liblime.com>
2008-05-29 06:32:52 -05:00

84 lines
2.6 KiB
Perl
Executable file

#!/usr/bin/perl
# This file is part of Koha.
#
# Koha is free software; you can redistribute it and/or modify it under the
# terms of the GNU General Public License as published by the Free Software
# Foundation; either version 2 of the License, or (at your option) any later
# version.
#
# Koha is distributed in the hope that it will be useful, but WITHOUT ANY
# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
# A PARTICULAR PURPOSE. See the GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License along with
# Koha; if not, write to the Free Software Foundation, Inc., 59 Temple Place,
# Suite 330, Boston, MA 02111-1307 USA
use CGI;
use C4::Context;
use C4::Auth qw/:DEFAULT get_session/;
use C4::Output;
use HTML::Template::Pro;
use CGI::Session;
my $query=new CGI;
my $sessionID=$query->cookie('CGISESSID');
if ($ENV{'REMOTE_USER'}) {
print $query->header();
print startpage();
print startmenu('catalogue');
print qq|
<h1>Logout Feature Not Available</h1>
Your Koha server is configured to use a type of authentication called "Basic
Authentication" instead of using a cookies-based authentication system. With
Basic Authentication, the only way to logout of Koha is by exiting your
browser.
|;
print endmenu('catalogue');
print endpage();
exit;
}
my $sessions;
open (S, "/tmp/sessions");
# FIXME - Come up with a better logging mechanism
while (my ($sid, $u, $lasttime) = split(/:/, <S>)) {
chomp $lasttime;
(next) unless ($sid);
(next) if ($sid eq $sessionID);
$sessions->{$sid}->{'userid'}=$u;
$sessions->{$sid}->{'lasttime'}=$lasttime;
}
close S;
open (S, ">/tmp/sessions");
foreach (keys %$sessions) {
my $userid=$sessions->{$_}->{'userid'};
my $lasttime=$sessions->{$_}->{'lasttime'};
print S "$_:$userid:$lasttime\n";
}
close S;
my $dbh = C4::Context->dbh;
# Check that this is the ip that created the session before deleting it
# This script and function are apparently unfinished. --atz (Dec 4 2007)
my $session = get_session($sessionID);
$session->flush;
$session->delete;
my $sth=$dbh->prepare("delete from sessions where sessionID=?");
$sth->execute($sessionID);
open L, ">>/tmp/sessionlog";
printf L "%20s from %16s logged out at %30s (manual log out).\n", $userid, $ip, localtime;
# where is $ip is coming from??
close L;
my $cookie=$query->cookie(-name => 'CGISESSID',
-value => '',
-expires => '+1y');
# Should redirect to opac home page after logging out
print $query->redirect("/cgi-bin/koha/opac-main.pl");
exit;