ccm_token for login
Permalink
I'm trying to design my own login page (which the users can access as well, and for that to work it required the "ccm_token" which should by implementet like this
but I am struggling to find out the current token. It is somewhere in here.
[code]
<?php
use Concrete\Core\Attribute\Key\Key;
use Concrete\Core\Http\ResponseAssetGroup;
defined('C5_EXECUTE') or die('Access denied.');
$r = ResponseAssetGroup::get();
$r->requireAsset('javascript', 'underscore');
$r->requireAsset('javascript', 'core/events');
$form = Loader::helper('form');
if (isset($authType) && $authType) {
$active = $authType;
$activeAuths = array($authType);
} else {
$active = null;
$activeAuths = AuthenticationType::getList(true, true);
}
if (!isset($authTypeElement)) {
$authTypeElement = null;
}
if (!isset($authTypeParams)) {
$authTypeParams = null;
}
$image = date('Ymd') . '.jpg';
/* @var Key[] $required_attributes */
$attribute_mode = (isset($required_attributes) && count($required_attributes));
?>
<div class="login-page">
<?php
$disclaimer = new Area('Disclaimer');
if ($disclaimer->getTotalBlocksInArea($c) || $c->isEditMode()) { ?>
<div class="ccm-login-disclaimer">
<?php echo $disclaimer->display($c);?>
</div>
<?php } ?>
<div class="col-sm-6 col-sm-offset-3">
<h1><?php echo !$attribute_mode ? t('Sign In.') : t('Required Attributes') ?></h1>
</div>
<div class="col-sm-6 col-sm-offset-3 login-form">
<div class="row">
<div class="visible-xs ccm-authentication-type-select form-group text-center">
<?php
if ($attribute_mode) {
?>
<i class="fa fa-question"></i>
<span><?php echo t('Attributes') ?></span>
<?php
} elseif (count($activeAuths) > 1) {
?>
<select class="form-control col-xs-12">
<?php
foreach ($activeAuths as $auth) {
?>
<option value="<?php echo $auth->getAuthenticationTypeHandle() ?>">
<?php echo $auth->getAuthenticationTypeDisplayName() ?>
</option>
<?php
}
?>
</select>
<?php
}
?>
<label> </label>
</div>
</div>
<div class="row login-row">
<div <?php if (count($activeAuths) < 2) {
?>style="display: none" <?php
} ?> class="types col-sm-4 hidden-xs">
<ul class="auth-types">
<?php
if ($attribute_mode) {
?>
<li data-handle="required_attributes">
<i class="fa fa-question"></i>
<span><?php echo t('Attributes') ?></span>
</li>
<?php
} else {
/** @var AuthenticationType[] $activeAuths */
foreach ($activeAuths as $auth) {
?>
<li data-handle="<?php echo $auth->getAuthenticationTypeHandle() ?>">
<?php echo $auth->getAuthenticationTypeIconHTML() ?>
<span><?php echo $auth->getAuthenticationTypeDisplayName() ?></span>
</li>
<?php
}
}
?>
</ul>
</div>
<div class="controls <?php if (count($activeAuths) < 2) {
?>col-sm-12<?php
} else {
?>col-sm-8<?php
} ?> col-xs-12">
<?php
if ($attribute_mode) {
$attribute_helper = new Concrete\Core\Form\Service\Widget\Attribute();
?>
<form action="<?php echo View::action('fill_attributes') ?>" method="POST">
<div data-handle="required_attributes"
class="authentication-type authentication-type-required-attributes">
<div class="ccm-required-attribute-form"
style="height:340px;overflow:auto;margin-bottom:20px;">
<?php
foreach ($required_attributes as $key) {
echo $attribute_helper->display($key, true);
}
?>
</div>
<div class="form-group">
<button class="btn btn-primary pull-right"><?php echo t('Submit') ?></button>
</div>
</div>
</form>
<?php
} else {
/** @var AuthenticationType[] $activeAuths */
foreach ($activeAuths as $auth) {
?>
<div data-handle="<?php echo $auth->getAuthenticationTypeHandle() ?>"
class="authentication-type authentication-type-<?php echo $auth->getAuthenticationTypeHandle() ?>">
<?php $auth->renderForm($authTypeElement ?: 'form', $authTypeParams ?: array()) ?>
</div>
<?php
}
}
?>
</div>
</div>
</div>
<div style="clear:both"></div>
<style type="text/css">
div.login-form hr {
margin-top: 10px !important;
margin-bottom: 5px !important;
}
ul.auth-types {
margin: 20px 0px 0px 0px;
padding: 0;
}
ul.auth-types > li > .fa,
ul.auth-types > li svg,
ul.auth-types > li .ccm-auth-type-icon {
position: absolute;
top: 2px;
left: 0px;
}
ul.auth-types > li {
list-style-type: none;
cursor: pointer;
padding-left: 25px;
margin-bottom: 15px;
transition: color .25s;
position: relative;
}
ul.auth-types > li:hover {
color: #cfcfcf;
}
ul.auth-types > li.active {
font-weight: bold;
cursor: auto;
}
</style>
<script type="text/javascript">
(function ($) {
"use strict";
var forms = $('div.controls').find('div.authentication-type').hide(),
select = $('div.ccm-authentication-type-select > select');
var types = $('ul.auth-types > li').each(function () {
var me = $(this),
form = forms.filter('[data-handle="' + me.data('handle') + '"]');
me.click(function () {
select.val(me.data('handle'));
if (typeof Concrete !== 'undefined') {
Concrete.event.fire('AuthenticationTypeSelected', me.data('handle'));
}
if (form.hasClass('active')) return;
types.removeClass('active');
me.addClass('active');
if (forms.filter('.active').length) {
forms.stop().filter('.active').removeClass('active').fadeOut(250, function () {
form.addClass('active').fadeIn(250);
});
} else {
form.addClass('active').show();
}
});
});
select.change(function() {
types.filter('[data-handle="' + $(this).val() + '"]').click();
});
types.first().click();
$('ul.nav.nav-tabs > li > a').on('click', function () {
var me = $(this);
if (me.parent().hasClass('active')) return false;
$('ul.nav.nav-tabs > li.active').removeClass('active');
var at = me.attr('data-authType');
me.parent().addClass('active');
$('div.authTypes > div').hide().filter('[data-authType="' + at + '"]').show();
return false;
});
<?php
if (isset($lastAuthType)) {
?>
$("ul.auth-types > li[data-handle='<?php echo $lastAuthType->getAuthenticationTypeHandle() ?>']")
.trigger("click");
<?php
}
?>
})(jQuery);
</script>
</div>
[/code ]
If someone knows how to do this, I would be really happy.
<input type="hidden" name="ccm_token" value="">
but I am struggling to find out the current token. It is somewhere in here.
[code]
<?php
use Concrete\Core\Attribute\Key\Key;
use Concrete\Core\Http\ResponseAssetGroup;
defined('C5_EXECUTE') or die('Access denied.');
$r = ResponseAssetGroup::get();
$r->requireAsset('javascript', 'underscore');
$r->requireAsset('javascript', 'core/events');
$form = Loader::helper('form');
if (isset($authType) && $authType) {
$active = $authType;
$activeAuths = array($authType);
} else {
$active = null;
$activeAuths = AuthenticationType::getList(true, true);
}
if (!isset($authTypeElement)) {
$authTypeElement = null;
}
if (!isset($authTypeParams)) {
$authTypeParams = null;
}
$image = date('Ymd') . '.jpg';
/* @var Key[] $required_attributes */
$attribute_mode = (isset($required_attributes) && count($required_attributes));
?>
<div class="login-page">
<?php
$disclaimer = new Area('Disclaimer');
if ($disclaimer->getTotalBlocksInArea($c) || $c->isEditMode()) { ?>
<div class="ccm-login-disclaimer">
<?php echo $disclaimer->display($c);?>
</div>
<?php } ?>
<div class="col-sm-6 col-sm-offset-3">
<h1><?php echo !$attribute_mode ? t('Sign In.') : t('Required Attributes') ?></h1>
</div>
<div class="col-sm-6 col-sm-offset-3 login-form">
<div class="row">
<div class="visible-xs ccm-authentication-type-select form-group text-center">
<?php
if ($attribute_mode) {
?>
<i class="fa fa-question"></i>
<span><?php echo t('Attributes') ?></span>
<?php
} elseif (count($activeAuths) > 1) {
?>
<select class="form-control col-xs-12">
<?php
foreach ($activeAuths as $auth) {
?>
<option value="<?php echo $auth->getAuthenticationTypeHandle() ?>">
<?php echo $auth->getAuthenticationTypeDisplayName() ?>
</option>
<?php
}
?>
</select>
<?php
}
?>
<label> </label>
</div>
</div>
<div class="row login-row">
<div <?php if (count($activeAuths) < 2) {
?>style="display: none" <?php
} ?> class="types col-sm-4 hidden-xs">
<ul class="auth-types">
<?php
if ($attribute_mode) {
?>
<li data-handle="required_attributes">
<i class="fa fa-question"></i>
<span><?php echo t('Attributes') ?></span>
</li>
<?php
} else {
/** @var AuthenticationType[] $activeAuths */
foreach ($activeAuths as $auth) {
?>
<li data-handle="<?php echo $auth->getAuthenticationTypeHandle() ?>">
<?php echo $auth->getAuthenticationTypeIconHTML() ?>
<span><?php echo $auth->getAuthenticationTypeDisplayName() ?></span>
</li>
<?php
}
}
?>
</ul>
</div>
<div class="controls <?php if (count($activeAuths) < 2) {
?>col-sm-12<?php
} else {
?>col-sm-8<?php
} ?> col-xs-12">
<?php
if ($attribute_mode) {
$attribute_helper = new Concrete\Core\Form\Service\Widget\Attribute();
?>
<form action="<?php echo View::action('fill_attributes') ?>" method="POST">
<div data-handle="required_attributes"
class="authentication-type authentication-type-required-attributes">
<div class="ccm-required-attribute-form"
style="height:340px;overflow:auto;margin-bottom:20px;">
<?php
foreach ($required_attributes as $key) {
echo $attribute_helper->display($key, true);
}
?>
</div>
<div class="form-group">
<button class="btn btn-primary pull-right"><?php echo t('Submit') ?></button>
</div>
</div>
</form>
<?php
} else {
/** @var AuthenticationType[] $activeAuths */
foreach ($activeAuths as $auth) {
?>
<div data-handle="<?php echo $auth->getAuthenticationTypeHandle() ?>"
class="authentication-type authentication-type-<?php echo $auth->getAuthenticationTypeHandle() ?>">
<?php $auth->renderForm($authTypeElement ?: 'form', $authTypeParams ?: array()) ?>
</div>
<?php
}
}
?>
</div>
</div>
</div>
<div style="clear:both"></div>
<style type="text/css">
div.login-form hr {
margin-top: 10px !important;
margin-bottom: 5px !important;
}
ul.auth-types {
margin: 20px 0px 0px 0px;
padding: 0;
}
ul.auth-types > li > .fa,
ul.auth-types > li svg,
ul.auth-types > li .ccm-auth-type-icon {
position: absolute;
top: 2px;
left: 0px;
}
ul.auth-types > li {
list-style-type: none;
cursor: pointer;
padding-left: 25px;
margin-bottom: 15px;
transition: color .25s;
position: relative;
}
ul.auth-types > li:hover {
color: #cfcfcf;
}
ul.auth-types > li.active {
font-weight: bold;
cursor: auto;
}
</style>
<script type="text/javascript">
(function ($) {
"use strict";
var forms = $('div.controls').find('div.authentication-type').hide(),
select = $('div.ccm-authentication-type-select > select');
var types = $('ul.auth-types > li').each(function () {
var me = $(this),
form = forms.filter('[data-handle="' + me.data('handle') + '"]');
me.click(function () {
select.val(me.data('handle'));
if (typeof Concrete !== 'undefined') {
Concrete.event.fire('AuthenticationTypeSelected', me.data('handle'));
}
if (form.hasClass('active')) return;
types.removeClass('active');
me.addClass('active');
if (forms.filter('.active').length) {
forms.stop().filter('.active').removeClass('active').fadeOut(250, function () {
form.addClass('active').fadeIn(250);
});
} else {
form.addClass('active').show();
}
});
});
select.change(function() {
types.filter('[data-handle="' + $(this).val() + '"]').click();
});
types.first().click();
$('ul.nav.nav-tabs > li > a').on('click', function () {
var me = $(this);
if (me.parent().hasClass('active')) return false;
$('ul.nav.nav-tabs > li.active').removeClass('active');
var at = me.attr('data-authType');
me.parent().addClass('active');
$('div.authTypes > div').hide().filter('[data-authType="' + at + '"]').show();
return false;
});
<?php
if (isset($lastAuthType)) {
?>
$("ul.auth-types > li[data-handle='<?php echo $lastAuthType->getAuthenticationTypeHandle() ?>']")
.trigger("click");
<?php
}
?>
})(jQuery);
</script>
</div>
[/code ]
If someone knows how to do this, I would be really happy.
Thank you for your response. I found a discussion that solved the problem.
https://www.concrete5.org/community/forums/themes/own-login-within-a...
https://www.concrete5.org/community/forums/themes/own-login-within-a...
$token = Loader::helper('validation/token')->generate('login_concrete');
<input type="hidden" name="ccm_token" value="<?php echo $token;?>">
You can try this:
This should display something like this:
The portion of the code that is creating the token, I believe is in the authentication:
https://github.com/concrete5/concrete5/blob/develop/concrete/authent...