summaryrefslogtreecommitdiff
path: root/actions/login.php
diff options
context:
space:
mode:
authorEvan Prodromou <evan@prodromou.name>2008-07-13 11:10:04 -0400
committerEvan Prodromou <evan@prodromou.name>2008-07-13 11:10:04 -0400
commit6ec4f035bda2a0e691574d619b28d4a1334544dc (patch)
tree4aecce0aeea50878c54fe224c3fb11bf825c8ea7 /actions/login.php
parenta55044ac0316ab04367b51639b6082bfd16aad79 (diff)
restore enhanced login instructions, lost in gettext() switchover
darcs-hash:20080713151004-84dde-6818a5392e8d78e6672399dfbc183b571751953a.gz
Diffstat (limited to 'actions/login.php')
-rw-r--r--actions/login.php19
1 files changed, 15 insertions, 4 deletions
diff --git a/actions/login.php b/actions/login.php
index d84a0b8cb..a60f3c65c 100644
--- a/actions/login.php
+++ b/actions/login.php
@@ -109,10 +109,21 @@ class LoginAction extends Action {
}
function get_instructions() {
- return _('Login with your username and password. ' .
- 'Don\'t have a username yet? ' .
- '[Register](%%action.register%%) a new account, or ' .
- 'try [OpenID](%%action.openidlogin%%). ');
+ if (common_logged_in() &&
+ !common_is_real_login() &&
+ common_get_returnto())
+ {
+ # rememberme logins have to reauthenticate before
+ # changing any profile settings (cookie-stealing protection)
+ return _('For security reasons, please re-enter your ' .
+ 'user name and password ' .
+ 'before changing your settings.');
+ } else {
+ return _('Login with your username and password. ' .
+ 'Don\'t have a username yet? ' .
+ '[Register](%%action.register%%) a new account, or ' .
+ 'try [OpenID](%%action.openidlogin%%). ');
+ }
}
function show_top($error=NULL) {