[SECURITY] Dropped small login form

Since we are adding more security realted features, we drop the small login in the header. It will need more workarounds than we'd like and is already dropped when re-Captcha is enabled. Security > Convenience :D
2014-01-17 15:43:58 +01:00 · 2014-01-17 15:43:58 +01:00 · 48a344ed25
commit 48a344ed25
parent ba67814d6c
2 changed files with 0 additions and 19 deletions
--- a/public/templates/mpos/global/header.tpl
+++ b/public/templates/mpos/global/header.tpl
@ -2,4 +2,3 @@
      <h1 class="site_title">{$GLOBAL.website.name|default:"Unknown Pool"}</h1>
      <h2 class="section_title">{if $smarty.request.action|escape|default:""}{$smarty.request.action|escape|capitalize}{else}{$smarty.request.page|escape|default:"home"|capitalize}{/if}</h2>
    </hgroup>
-    {if $GLOBAL.config.recaptcha_enabled|default:"0" != 1 || $GLOBAL.config.recaptcha_enabled_logins|default:"0" != 1}{nocache}{include file="login/small.tpl"}{/nocache}{/if}
--- a/public/templates/mpos/login/small.tpl
+++ b/public/templates/mpos/login/small.tpl
@ -1,18 +0,0 @@
-{if $smarty.session.AUTHENTICATED|default:"0" == 0}
-<div class="login_small">
-  <form action="{$smarty.server.SCRIPT_NAME}" method="post" id="loginForm">
-    <input type="hidden" name="page" value="login" />
-    {if $GLOBAL.csrf.enabled && $GLOBAL.csrf.forms.login}<input type="hidden" name="ctoken" value="{$CTOKEN}" />{/if}
-    <input type="hidden" name="to" value="{$smarty.server.SCRIPT_NAME}?page=dashboard" />
-    <fieldset2 class="small">
-      <label>E-Mail</label>
-      <input type="text" name="username" size="22" maxlength="100" required />
-      <fieldset2 class="small">
-        <label>Password</label>
-        <input type="password" name="password" size="22" maxlength="100" required />
-      </fieldset2>
-    </fieldset2>
-    <input type="submit" value="Login" class="alt_btn" />
-  </form>
-</div>
-{/if}