jilo-web/app/templates/form-login.php

        <!-- login form -->
        <div class="card text-center w-50 mx-auto">
            <h2 class="card-header">Login</h2>
            <div class="card-body">
                <p class="card-text"><strong>Welcome to <?= htmlspecialchars($config['site_name']); ?>!</strong><br />Please enter login credentials:</p>
                <form method="POST" action="<?= htmlspecialchars($app_root) ?>?page=login">
<?php include CSRF_TOKEN_INCLUDE; ?>
                    <div class="form-group mb-3">
                        <input type="text" class="form-control w-50 mx-auto" name="username" placeholder="Username" 
                            pattern="[A-Za-z0-9_\-]{3,20}" title="3-20 characters, letters, numbers, - and _"
                            required />
                    </div>
                    <div class="form-group mb-3">
                        <input type="password" class="form-control w-50 mx-auto" name="password" placeholder="Password" 
                            pattern=".{8,}" title="Eight or more characters"
                            required />
                    </div>
                    <div class="form-group mb-3">
                        <label for="remember_me">
                            <input type="checkbox" id="remember_me" name="remember_me" />
                            remember me
                        </label>
                    </div>
<?php if (isset($_GET['redirect'])): ?>
                    <input type="hidden" name="redirect" value="<?php echo htmlspecialchars($_GET['redirect']); ?>">
<?php endif; ?>
                    <input type="submit" class="btn btn-primary" value="Login" />
                </form>
                <div class="mt-3">
                    <a href="?page=login&action=forgot">forgot password?</a>
                </div>
            </div>
        </div>
        <!-- /login form -->
HTML fixes 2024-08-07 08:13:55 +00:00			`<!-- login form -->`
			`<div class="card text-center w-50 mx-auto">`
			`<h2 class="card-header">Login</h2>`
			`<div class="card-body">`
Adds forgotten password reset functionality 2025-04-08 09:12:14 +00:00			`<p class="card-text"><strong>Welcome to <?= htmlspecialchars($config['site_name']); ?>!</strong><br />Please enter login credentials:</p>`
Sanitize all output 2024-10-04 11:18:28 +00:00			`<form method="POST" action="<?= htmlspecialchars($app_root) ?>?page=login">`
Makes csrf_token a global constant and moves it to includes 2025-04-16 10:11:51 +00:00			`<?php include CSRF_TOKEN_INCLUDE; ?>`
Adds CSRF checks to login/logout pages 2025-01-30 16:48:46 +00:00			`<div class="form-group mb-3">`
Adds forgotten password reset functionality 2025-04-08 09:12:14 +00:00			`<input type="text" class="form-control w-50 mx-auto" name="username" placeholder="Username"`
Fixes login and register forms 2025-02-23 15:28:20 +00:00			`pattern="[A-Za-z0-9_\-]{3,20}" title="3-20 characters, letters, numbers, - and _"`
Removes username forms autofocus 2025-04-23 10:56:07 +00:00			`required />`
Adds CSRF checks to login/logout pages 2025-01-30 16:48:46 +00:00			`</div>`
			`<div class="form-group mb-3">`
Adds forgotten password reset functionality 2025-04-08 09:12:14 +00:00			`<input type="password" class="form-control w-50 mx-auto" name="password" placeholder="Password"`
Makes password at least 8 chars 2025-04-14 12:48:54 +00:00			`pattern=".{8,}" title="Eight or more characters"`
Adds CSRF checks to login/logout pages 2025-01-30 16:48:46 +00:00			`required />`
			`</div>`
			`<div class="form-group mb-3">`
			`<label for="remember_me">`
			`<input type="checkbox" id="remember_me" name="remember_me" />`
			`remember me`
			`</label>`
			`</div>`
Adds login redirection to original requested page 2025-04-22 12:31:50 +00:00			`<?php if (isset($_GET['redirect'])): ?>`
			`<input type="hidden" name="redirect" value="<?php echo htmlspecialchars($_GET['redirect']); ?>">`
			`<?php endif; ?>`
HTML fixes 2024-08-07 08:13:55 +00:00			`<input type="submit" class="btn btn-primary" value="Login" />`
			`</form>`
Adds forgotten password reset functionality 2025-04-08 09:12:14 +00:00			`<div class="mt-3">`
			`<a href="?page=login&action=forgot">forgot password?</a>`
			`</div>`
HTML fixes 2024-08-07 08:13:55 +00:00			`</div>`
Cleans up login and register pages. 2024-08-06 07:40:52 +00:00			`</div>`
HTML fixes 2024-08-07 08:13:55 +00:00			`<!-- /login form -->`