restore enhanced login instructions, lost in gettext() switchover

darcs-hash:20080713151004-84dde-6818a5392e8d78e6672399dfbc183b571751953a.gz
author: Evan Prodromou <evan@prodromou.name> 2008-07-13 11:10:04 -0400
committer: Evan Prodromou <evan@prodromou.name> 2008-07-13 11:10:04 -0400
commit: 6ec4f035bda2a0e691574d619b28d4a1334544dc (patch)
tree: 4aecce0aeea50878c54fe224c3fb11bf825c8ea7 /actions/login.php
parent: a55044ac0316ab04367b51639b6082bfd16aad79 (diff)
1 files changed, 15 insertions, 4 deletions
diff --git a/actions/login.php b/actions/login.php
index d84a0b8cb..a60f3c65c 100644
--- a/actions/login.php
+++ b/actions/login.php
@@ -109,10 +109,21 @@ class LoginAction extends Action {
 	}
 
 	function get_instructions() {
-		return _('Login with your username and password. ' .
-				  'Don\'t have a username yet? ' .
-				  '[Register](%%action.register%%) a new account, or ' .
-				  'try [OpenID](%%action.openidlogin%%). ');
+		if (common_logged_in() &&
+			!common_is_real_login() &&
+			common_get_returnto())
+		{
+			# rememberme logins have to reauthenticate before
+			# changing any profile settings (cookie-stealing protection)
+			return _('For security reasons, please re-enter your ' .
+					 'user name and password ' .
+					 'before changing your settings.');
+		} else {
+			return _('Login with your username and password. ' .
+					 'Don\'t have a username yet? ' .
+					 '[Register](%%action.register%%) a new account, or ' .
+					 'try [OpenID](%%action.openidlogin%%). ');
+		}
 	}
 
 	function show_top($error=NULL) {
author	Evan Prodromou <evan@prodromou.name>	2008-07-13 11:10:04 -0400
committer	Evan Prodromou <evan@prodromou.name>	2008-07-13 11:10:04 -0400
commit	6ec4f035bda2a0e691574d619b28d4a1334544dc (patch)
tree	4aecce0aeea50878c54fe224c3fb11bf825c8ea7 /actions/login.php
parent	a55044ac0316ab04367b51639b6082bfd16aad79 (diff)