/*
-------------------------------------------------------------------
 Login Script Version 1.9
 By H G Laughland 
 http://www.laughland.biz

This script can be used free of charge and may only be
redistributed the same way. The disclaimer must remain
intact.

DISCLAIMER: Use this script with caution. This script is not 
the most secure method available, for protecting material. Its
main purpose is to demonstrate the javascript techniques used.
The author takes no responsibility for data loss
resulting from the use of this script.
-------------------------------------------------------------------

INSTRUCTIONS - Read Before Using Script

If you are using frames, the code referred to in steps 2 - 5 must be put in the 
pages displayed in the frames and NOT in the parent document.

Step 1
In the Usernames & Passwords section, configure the variables as
indicated by the comments.
 
Step 2:
Add the following code to the <head> section of your login page: 
 <script src="scripts/login.js"></script> 
Change "scripts/login.js" to reflect the correct path to this script
file on your server. 
 
Step 3:
Add this code to the login page, at the place you want the login
panel to show:
 
 <script language="JavaScript">
  BuildPanel();
 </script>
 
Step 4:
Add the following code to the <head> section of each page procteded
by this script:
 
 <script src="scripts/login.js"></script>
 <script language="JavaScript">
  checkCookie();
 </script>

Change "scripts/login.js" to reflect the correct path to the script
file on your server.
 
Step 5: 
On the page that is to have the logout button, paste this code where you
want the button to be:

 <form action="" name="frmLogoff">
  <input type="button" name="btLogoff" value="log out" onclick="logout();">
 </form>
 
 To use your own image instead of the grey button change the type from button to image
 and add src="myimage.gif" where myimage.gif is the image (including the path to it if
 needed, you want to use.
 
Step 6:
Upload this script and your html pages to the relevant directories
on your server. 




*/

//----------------------------------------------------------------
//  Usernames, Passwords & User Pages - These require configuration.
//----------------------------------------------------------------

var cookiename ="";
var successpage ="";

var rootfolder = "accesstohistory2"; //add root folder name here
var cookiename = "accesstohistory2" //set this to unique cookie name so you cannot access other parts of the site with this login. 



var fullurl = window.location.href; //leave as is
var sPath = window.location.pathname; //leave as is
var sPath = sPath.replace(/%2D/gi, "-"); //takes out the %2D from the file path that is casued when you click on the breadcrumbs 
var rootfolderpath =  sPath.substring(sPath.lastIndexOf(rootfolder)); //leave as is
var sPagelogin1 = rootfolderpath.replace(rootfolder, ""); //leave as is
var sPagelogin = sPagelogin1.replace("/", ""); //leave as is


var loginpagepath = sPath.replace(sPagelogin, ""); //use this in loginpage variable if you need to use absolute path

var successpage = fullurl.substring(fullurl.lastIndexOf('?') +1); // The page users go to after login, if they have no personal page.
if (successpage == fullurl){
	successpage = "index.htm";}//set this incase the user goes straight to login page and url string is not set
	else {successpage = successpage;}

var loginpage = loginpagepath + "login.htm?" + sPagelogin;//Change this to the page the login panel is on.
var logoutpage = loginpagepath + "index.htm"; //leave blank to set it to the login page


var imgSubmit = ""; //Change to the path to your login image,if you don't want the standard button, otherwise do not change.
var imgReset = "";  //Change to the path to your reset image,if you don't want the standard button, otherwise do not change.
var users = new Array();

users[0] = new Array("access","history","");
users[1] = new Array("Access","History","");
users[2] = new Array("ACCESS","HISTORY","");
users[3] = new Array("1","1","");

// Add addtional logins, straight after these, as
// required, followig the same format. Increment the
// numbers in the square brackets, in new each one. Note:
// the 3rd parameter is the the page that user goes to
// after successful login. Ensure the paths are correct.
// Make this "" if user has no personal page.

//----------------------------------------------------------------
//  Login Functions
//----------------------------------------------------------------

if (cookiename == "")
{
	var cookiename = "login";
}
else
{cookiename = cookiename;
	
}

if (successpage == "")
{
	var successpage = "index.htm";
}
else
{successpage = successpage;
	
}

function login(username,password){
 var member = null;
 var loggedin = 0;
 var members = users.length;
 for(x=0;x<members && !loggedin; x++){
 if((username==users[x][0])&&(password==users[x][1])){
    loggedin = 1;
    member = x;
	break; // User validated, terminate the for loop.
   }
 } 
 
 if(loggedin==1){
  if(users[member][2] != "") {
   successpage = users[member][2];
  }
  setCookie(cookiename,1, '', '/', '', '' );
  if (top.location.href != location.href){
   location.href = successpage;           
  }else{
   top.location.href = successpage;  
  }
 }else{
  alert('Your user name and password are invalid, please check and try again');
 }  
}




//new logout so you can set a different logout destination to the login page if you wish



function logout() {
 deleteCookie(cookiename, '/'); 
 
 if (top.location.href != location.href && logout == ""){


  location.href = loginpage;           
 }
 
 else if (top.location.href != location.href && logout !== "") 
 {
  location.href = logoutpage;       
 }
 
 else{
if(logoutpage == ""){	 
	 
  top.location.href = loginpage;  }
  else
  {
	  top.location.href = logoutpage;
  }  
 } 
}




/*old logout

function logout() {
deleteCookie("login");
if (top.location.href != location.href){
 location.href = loginpage;          
}else{
 top.location.href = loginpage;  
}
}
*/

//----------------------------------------------------------------
// Cookie Handler
//----------------------------------------------------------------
var ckTemp = document.cookie;

function setCookie(name, value, expires, path, domain, secure) { 
 if (value != null && value != "")
  document.cookie=name + "=" + escape(value) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
( ( path ) ? ";path=" + path : "" ) +
( ( domain ) ? ";domain=" + domain : "" ) +
( ( secure ) ? ";secure" : "" );

 ckTemp = document.cookie;
 }
 
function deleteCookie(name, path) {
  if (getCookie(name)) {
    document.cookie = name + "=" + ( ( path ) ? ";path=" + path : "" ) +
    "; expires=Thu, 01-Jan-70 00:00:01 GMT";
  }
}

function getCookie(name) { 
 var index = ckTemp.indexOf(name + "=");
 if(index == -1) return null;
  index = ckTemp.indexOf("=", index) + 1;
 var endstr = ckTemp.indexOf(";", index);
 if (endstr == -1) endstr = ckTemp.length;
 return unescape(ckTemp.substring(index, endstr));
 }
  
function checkCookie() {
 var temp = getCookie(cookiename);
 if(!temp==1) {
//  alert('access denied'); 
  if(top.location.href != location.href){
   location.href = loginpage;           
  }else{
   top.location.href = loginpage;  
  }
 }
}


//----------------------------------------------------------------
// Login Panel
//----------------------------------------------------------------

function BuildPanel() {
document.write('<form name="logon" class="loginform"><table align="left" border="0" cellspacing="5"><tr><td align="right">');
document.write('Username:</td>');
document.write('<td><input type="text" name="username" size="30"></td></tr>');
document.write('<tr><td align="right">Password:</td>');
document.write('<td><input type="password" name="password" size="30" onkeydown="javascript:if (event.which || event.keyCode){if ((event.which == 13) || (event.keyCode == 13)) {login(username.value,password.value)}};"></td></tr>');

if(imgSubmit == ""){
document.write('<tr><td></td><td><p><input type="button" class="loginbutton" value="Log in" name="Logon" onclick="login(username.value,password.value)">');
}

else {
document.write('<tr><td align="center" colspan="2"><p><input type="image" src="'+imgSubmit+'" name="Logon" onclick="login(username.value,password.value)">');
}

/*else {
document.write('<tr><td></td><td><p><input type="image" src="'+imgSubmit+'" name="Logon" onclick="login(username.value,password.value)">');
}
if(imgReset == ""){
document.write('<input type="reset" value="Reset" name="Reset">');
} else {
document.write('<input type="image" src="'+imgReset+'" name="Reset" onclick="logon.reset();">');
}
*/
document.write('</p></td></tr></table></form>');
}