<?
/*
// save this as postfix_auth_mod.php and put in to the osTicket dir
// in open.php add: require_once("postfix_auth_mod.php");
// Add Email or name address in form:
// in /include/client/open.inc.php add: $ename = $_COOKIE;
// <tr>
// <th nowrap >Email:</th>
// <td>
// <input type="text" name="email" size="25" value="<? echo $ename; ?>"> // <font class="error">* <?=$errors?></font>
// </td>
// </tr>
*/
$dblocation = "localhost";
$dbname = "postfix";
$dbuser = "username";
$dbpasswd = "password";
$dbcnx = <USERMENTION username="mysql_connect">@mysql_connect</USERMENTION>($dblocation,$dbuser,$dbpasswd);
if (!$dbcnx) exit();
if (!@mysql_select_db($dbname,$dbcnx)) exit();
if(!isset($_SERVER))
{
Header("WWW-Authenticate: Basic realm=\"Support Page\"");
Header("HTTP/1.0 401 Unauthorized");
exit();
}
else
{
if (!get_magic_quotes_gpc())
{
$_SERVER = mysql_escape_string($_SERVER);
$_SERVER = mysql_escape_string($_SERVER);
}
$_SERVER = str_replace("'","`",$_SERVER);
$_SERVER = str_replace("'","`",$_SERVER);
$query = "SELECT username, password, name FROM mailbox WHERE username='".$_SERVER."'";
$lst = <USERMENTION username="mysql_query">@mysql_query</USERMENTION>($query);
if(!$lst)
{
Header("WWW-Authenticate: Basic realm=\"Support Page\"");
Header("HTTP/1.0 401 Unauthorized");
exit();
}
if(mysql_num_rows($lst) == 0)
{
Header("WWW-Authenticate: Basic realm=\"Support Page\"");
Header("HTTP/1.0 401 Unauthorized");
exit();
}
$pass = <USERMENTION username="mysql_fetch_array">@mysql_fetch_array</USERMENTION>($lst);
setcookie ("UserName", $_SERVER, time()+3600);
$name = $pass;
setcookie ("Name", $name, time()+3600);
if(/*md5*/($_SERVER) != $pass)
{
Header("WWW-Authenticate: Basic realm=\"Support Page\"");
Header("HTTP/1.0 401 Unauthorized");
exit();
}
}
?>
