cas_auth plugin

9d3aa272 · Eric Rasmussen · b6512ef8 · 9d3aa272 · 9d3aa272 · 9d3aa272
Commit 9d3aa272 authored 15 years ago by Eric Rasmussen
--- a/cas_auth/Copy of start.php
+++ b/cas_auth/Copy of start.php
+<?php
+	/**
+	 * Elgg CAS authentication
+	 * 
+	 * @package cas_auth
+	 * @license http://www.gnu.org/licenses/gpl.html
+	 * @author Xavier Roussel <xavier.roussel@uvsq.fr>
+	 * @copyright UVSQ 2008
+	 * @link http://www.uvsq.fr
+	 */
+
+	// Include main cas lib
+	include_once 'cas/CAS.php';
+	$casInitialized = false;
+	
+	/**
+	 * CAS Authentication init
+	 * 
+	 */
+	function cas_auth_init()
+	{
+		// global config
+		global $CONFIG;
+		// plugin config
+		$config = find_plugin_settings('cas_auth');
+		// todo : send message to user
+		if (!$config) return false;
+
+		// CAS auth required
+		if ( $_REQUEST['loginwith'] == 'UNLlogin' && !isset($_REQUEST['ticket']) )
+		{	
+			createCas();
+		}
+		// CAS auth done
+		if ( $_REQUEST['loginwith'] == 'UNLlogin' && isset($_REQUEST['ticket']) )
+		{
+			// Check CAS auth the CAS way just in case
+			if ( checkCas() ) {
+				$_SESSION['loggedWithCAS'] = true;
+				$uname = getUserCas();
+				var_dump($uname);
+				if(ldapAuthenticate( getUserCas() )) {
+					system_message(elgg_echo('loginok'));
+				}
+				else register_error(elgg_echo('loginerror'));
+			}
+		}
+		// The CAS ticket is lost, log out
+		if ( $_SESSION['loggedWithCAS'] && !checkCas() ) {
+			$_SESSION['loggedWithCAS'] = false;
+			forward($CONFIG->url.'/action/logout');
+		}
+	}
+	
+	// Register the initialisation function
+	register_elgg_event_handler('init','system','cas_auth_init');
+	// Register CAS logout to main logout only if user logged with CAS
+	if ( $_SESSION['loggedWithCAS'] ) {
+		register_elgg_event_handler('logout', 'user', 'logoutCas');
+	}
+
+	/**
+	 * CAS client initialization
+	 * 
+	 */
+	function initCas() {
+		if (!$GLOBALS[casInitialized]) {
+			$config = find_plugin_settings('cas_auth');
+			phpCAS::client(CAS_VERSION_2_0, $config->casurl, (int) $config->casport , $config->casuri );
+			$GLOBALS[casInitialized] = true;
+		}	
+	}
+
+	/**
+	 * Force authentication
+	 * 
+	 */
+	function createCas() {
+		initCas();
+		phpCAS::forceAuthentication();
+	}
+
+	/**
+	 * Check auth
+	 * 
+	 * @return boolean
+	 */
+	function checkCas() {		
+		initCas();
+		if (phpCAS::checkAuthentication()) {
+			return true;
+		}
+		else return false;
+	}
+
+	/**
+	 * Get CAS user
+	 * 
+	 * @return string name of the user
+	 */
+	function getUserCas() {
+		return phpCAS::getUser();
+	}
+
+	/**
+	 * CAS logout
+	 * 
+	 */
+	function logoutCas() {
+		global $CONFIG;
+		initCas();
+		phpCAS::logout($CONFIG->url.'/action/logout');	
+	}
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	
+	/**
+   * LDAP authentication
+   * 
+   * @param string $username Go around PAM handler credentials (CAS can't return a password)
+   * @return boolean
+   */
+	function ldapAuthenticate($username)
+	{
+		// Nothing to do if LDAP module not installed
+		if (!function_exists('ldap_connect')) {
+			return false;
+		}
+
+		// Get configuration settings
+		$config = find_plugin_settings('ldap_auth');
+
+		// Nothing to do if not configured
+		if (!$config)
+		{
+			return false;
+		}
+
+		if (empty($username)) {
+			return false;
+		}
+
+		// Perform the authentication
+		return ldapCheck($config, $username);
+	}
+   
+  /**
+   * Perform an LDAP authentication check
+   *
+   * @param ElggPlugin $config
+   * @param string $username
+   * @return boolean
+   */
+	function ldapCheck($config, $username)
+	{
+		$host = $config->hostname;
+
+		// No point continuing
+		if(empty($host))
+		{
+			error_log("LDAP error: no host configured.");
+			return;
+		}
+		$port        = $config->port;
+		$version     = $config->version;
+		$basedn      = $config->basedn;
+		$filter_attr = $config->filter_attr;
+		$search_attr = $config->search_attr;
+		$bind_dn     = $config->ldap_bind_dn;
+		$bind_pwd    = $config->ldap_bind_pwd;
+		$user_create = $config->user_create;
+		$start_tls   = $config->start_tls;
+
+		($user_create == 'on') ? $user_create = true : $user_create = false;
+		($start_tls == 'on') ? $start_tls = true : $start_tls = false;
+
+		$port        ? $port        : $port = 389;
+		$version     ? $version     : $version = 3;
+		$filter_attr ? $filter_attr : $filter_attr = 'uid';
+		$basedn      ? $basedn = array_map('trim', explode(':', $basedn)) : $basedn = array();
+
+		if (!empty($search_attr))
+		{
+			// $search_attr as in "email:email_address, name:name_name";
+
+			$pairs = array_map('trim',explode(',', $search_attr));
+
+			$values = array();
+
+			foreach ($pairs as $pair)
+			{
+				$parts = array_map('trim', explode(':', $pair));
+
+				$values[$parts[0]] = $parts[1];
+			}
+
+			$search_attr = $values;
+		}
+		else
+		{
+			$search_attr = array('dn' => 'dn');
+		}
+
+		// Create a connection
+		if ($ds = ldapConnect($host, $port, $version, $bind_dn, $bind_pwd))
+		{
+			if ($start_tls and !ldap_start_tls($ds)) return false;
+
+			// Perform a search
+			foreach ($basedn as $this_ldap_basedn)
+			{
+				$ldap_user_info = ldapDoAuth($ds, $this_ldap_basedn, $username, $filter_attr, $search_attr);
+
+				if($ldap_user_info)
+				{
+					// LDAP login successful
+					if ($user = get_user_by_username($username))
+					{
+						// User exists, login            	        
+						return login($user);
+					}
+					else
+					{
+						// Valid login but user doesn't exist
+						if ($user_create)
+						{
+							$name  = $ldap_user_info['firstname'];
+
+							if (isset($ldap_user_info['lastname']))
+							{
+								$name  = $name . " " . $ldap_user_info['lastname'];
+							}
+
+							($ldap_user_info['mail']) ? $email = $ldap_user_info['mail'] : $email = null;
+
+							if ($user_guid = register_user($username, 'generic', $name, $email))
+							{
+								// Success, credentials valid and account has been created                                
+								return login(get_user($user_guid));
+							}
+							else
+							{
+								register_error(elgg_echo('ldap_auth:no_register'));
+								return false;
+							}
+						}
+						else
+						{
+							register_error(elgg_echo("ldap_auth:no_account"));
+							return false;
+						}
+					}
+				}
+			}
+			// Close the connection
+			ldap_close($ds);
+			return false;
+		}
+		else
+		{
+			return false;
+		}
+	}
+    
+	/**
+	 * Create an LDAP connection
+	 *
+	 * @param string $host
+	 * @param int $port
+	 * @param int $version
+	 * @param string $bind_dn
+	 * @param string $bind_pwd
+	 * @return mixed LDAP link identifier on success, or false on error
+	 */
+	function ldapConnect($host, $port, $version, $bind_dn, $bind_pwd)
+	{
+		$ds = @ldap_connect($host, $port);
+
+		@ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, $version);
+		// Start the LDAP bind process
+		$ldapbind = null;
+
+		if ($ds)
+		{
+			if ($bind_dn != '')
+			{
+				$ldapbind = @ldap_bind($ds, $bind_dn, $bind_pwd);
+			}
+			else
+			{
+				// Anonymous bind
+				$ldapbind = @ldap_bind($ds);
+			}
+		}
+		else
+		{
+			// Unable to connect
+			error_log('Unable to connect to the LDAP server: '.ldap_error($ds));
+			return false;
+		}
+
+		if (!$ldapbind)
+		{
+			error_log('Unable to bind to the LDAP server with provided credentials: '.ldap_error($ds));
+			ldap_close($ds);
+			return false;
+		}
+		return $ds;
+	}
+
+	/**
+	 * Performs actual LDAP authentication
+	 *
+	 * @param object $ds LDAP link identifier
+	 * @param string $basedn
+	 * @param string $username
+	 * @param string $filter_attr
+	 * @param string $search_attr
+	 * @return mixed array with search attributes or false on error
+	 */
+	function ldapDoAuth($ds, $basedn, $username, $filter_attr, $search_attr)
+	{
+		$sr = @ldap_search($ds, $basedn, $filter_attr ."=". $username, array_values($search_attr));
+		if(!$sr)
+		{
+			error_log('Unable to perform LDAP search: '.ldap_error($ds));
+			return false;
+		}
+
+		$entry = ldap_get_entries($ds, $sr);
+		if(!$entry or !$entry[0])
+		{
+			return false; // didn't find username
+		}
+
+		// We have a bind, a valid login
+		foreach (array_keys($search_attr) as $attr)
+		{
+			$ldap_user_info[$attr] = $entry[0][$search_attr[$attr]][0];
+		}
+		return $ldap_user_info;
+	}
+?>
\ No newline at end of file
--- a/cas_auth/README.txt
+++ b/cas_auth/README.txt
+Elgg is an open source social networking platform.
+
+CAS (Central Authentification Service) is an SSO.
+
+This project tries to allow CAS authentification in Elgg. The idea is to authenticate with CAS, then look up the user info in LDAP
+and authenticate the user in Elgg.
+
+This plugin has been widely built on the ldap_auth plugin from Misja Hoebe and is inspired from the CAS authentification used in 
+Claroline : www.claroline.net
+
+You can edit the config in the Tool administration section by providing CAS host, port and URI.
+
+--
+
+Xavier Roussel
+Responsable technique - TICE
+Direction des Systèmes d'Information - UVSQ
+xavier.roussel@uvsq.fr
+www.uvsq.fr
+www.tice.uvsq.fr
\ No newline at end of file
--- a/cas_auth/cas/CAS.php
+++ b/cas_auth/cas/CAS.php
--- a/cas_auth/cas/PGTStorage/pgt-db.php
+++ b/cas_auth/cas/PGTStorage/pgt-db.php
+<?php // $Id: pgt-db.php 9707 2007-12-12 13:46:31Z mlaurent $
+if ( count( get_included_files() ) == 1 ) die( '---' );
+
+/**
+ * @file CAS/PGTStorage/pgt-db.php
+ * Basic class for PGT database storage
+ */
+
+// include phpDB library (the test was introduced in release 0.4.8 for
+// the integration into Tikiwiki).
+if (!class_exists('DB')) {
+  include_once('DB.php');
+}
+
+/**
+ * @class PGTStorageDB
+ * The PGTStorageDB class is a class for PGT database storage. An instance of
+ * this class is returned by CASClient::SetPGTStorageDB().
+ *
+ * @author Pascal Aubry <pascal.aubry at univ-rennes1.fr>
+ *
+ * @ingroup internalPGTStorageDB
+ */
+
+class PGTStorageDB extends PGTStorage
+{
+  /**
+   * @addtogroup internalPGTStorageDB
+   * @{
+   */
+
+  /**
+   * a string representing a PEAR DB URL to connect to the database. Written by
+   * PGTStorageDB::PGTStorageDB(), read by getURL().
+   *
+   * @hideinitializer
+   * @private
+   */
+  var $_url='';
+
+  /**
+   * This method returns the PEAR DB URL to use to connect to the database.
+   *
+   * @return a PEAR DB URL
+   *
+   * @private
+   */
+  function getURL()
+    {
+      return $this->_url;
+    }
+
+  /**
+   * The handle of the connection to the database where PGT's are stored. Written by
+   * PGTStorageDB::init(), read by getLink().
+   *
+   * @hideinitializer
+   * @private
+   */
+  var $_link = null;
+
+  /**
+   * This method returns the handle of the connection to the database where PGT's are
+   * stored.
+   *
+   * @return a handle of connection.
+   *
+   * @private
+   */
+  function getLink()
+    {
+      return $this->_link;
+    }
+
+  /**
+   * The name of the table where PGT's are stored. Written by
+   * PGTStorageDB::PGTStorageDB(), read by getTable().
+   *
+   * @hideinitializer
+   * @private
+   */
+  var $_table = '';
+
+  /**
+   * This method returns the name of the table where PGT's are stored.
+   *
+   * @return the name of a table.
+   *
+   * @private
+   */
+  function getTable()
+    {
+      return $this->_table;
+    }
+
+  // ########################################################################
+  //  DEBUGGING
+  // ########################################################################
+
+  /**
+   * This method returns an informational string giving the type of storage
+   * used by the object (used for debugging purposes).
+   *
+   * @return an informational string.
+   * @public
+   */
+  function getStorageType()
+    {
+      return "database";
+    }
+
+  /**
+   * This method returns an informational string giving informations on the
+   * parameters of the storage.(used for debugging purposes).
+   *
+   * @public
+   */
+  function getStorageInfo()
+    {
+      return 'url=`'.$this->getURL().'\', table=`'.$this->getTable().'\'';
+    }
+
+  // ########################################################################
+  //  CONSTRUCTOR
+  // ########################################################################
+
+  /**
+   * The class constructor, called by CASClient::SetPGTStorageDB().
+   *
+   * @param $cas_parent the CASClient instance that creates the object.
+   * @param $user the user to access the data with
+   * @param $password the user's password
+   * @param $database_type the type of the database hosting the data
+   * @param $hostname the server hosting the database
+   * @param $port the port the server is listening on
+   * @param $database the name of the database
+   * @param $table the name of the table storing the data
+   *
+   * @public
+   */
+  function PGTStorageDB($cas_parent,$user,$password,$database_type,$hostname,$port,$database,$table)
+    {
+      phpCAS::traceBegin();
+
+      // call the ancestor's constructor
+      $this->PGTStorage($cas_parent);
+
+      if ( empty($database_type) ) $database_type = CAS_PGT_STORAGE_DB_DEFAULT_DATABASE_TYPE;
+      if ( empty($hostname) ) $hostname = CAS_PGT_STORAGE_DB_DEFAULT_HOSTNAME;
+      if ( $port==0 ) $port = CAS_PGT_STORAGE_DB_DEFAULT_PORT;
+      if ( empty($database) ) $database = CAS_PGT_STORAGE_DB_DEFAULT_DATABASE;
+      if ( empty($table) ) $table = CAS_PGT_STORAGE_DB_DEFAULT_TABLE;
+
+      // build and store the PEAR DB URL
+      $this->_url = $database_type.':'.'//'.$user.':'.$password.'@'.$server.':'.$port.'/'.$database;
+
+      // XXX should use setURL and setTable
+      phpCAS::traceEnd();
+    }
+
+  // ########################################################################
+  //  INITIALIZATION
+  // ########################################################################
+
+  /**
+   * This method is used to initialize the storage. Halts on error.
+   *
+   * @public
+   */
+  function init()
+    {
+      phpCAS::traceBegin();
+      // if the storage has already been initialized, return immediatly
+      if ( $this->isInitialized() )
+	return;
+      // call the ancestor's method (mark as initialized)
+      parent::init();
+
+      // try to connect to the database
+      $this->_link = DB::connect($this->getURL());
+      if ( DB::isError($this->_link) ) {
+	phpCAS::error('could not connect to database ('.DB::errorMessage($this->_link).')');
+      }
+      var_dump($this->_link);
+      phpCAS::traceBEnd();
+    }
+
+  /** @} */
+}
+
+?>
\ No newline at end of file
--- a/cas_auth/cas/PGTStorage/pgt-file.php
+++ b/cas_auth/cas/PGTStorage/pgt-file.php
+<?php // $Id: pgt-file.php 9707 2007-12-12 13:46:31Z mlaurent $
+if ( count( get_included_files() ) == 1 ) die( '---' );
+
+/**
+ * @file CAS/PGTStorage/pgt-file.php
+ * Basic class for PGT file storage
+ */
+
+/**
+ * @class PGTStorageFile
+ * The PGTStorageFile class is a class for PGT file storage. An instance of
+ * this class is returned by CASClient::SetPGTStorageFile().
+ *
+ * @author Pascal Aubry <pascal.aubry at univ-rennes1.fr>
+ *
+ * @ingroup internalPGTStorageFile
+ */
+
+class PGTStorageFile extends PGTStorage
+{
+  /**
+   * @addtogroup internalPGTStorageFile
+   * @{
+   */
+
+  /**
+   * a string telling where PGT's should be stored on the filesystem. Written by
+   * PGTStorageFile::PGTStorageFile(), read by getPath().
+   *
+   * @private
+   */
+  var $_path;
+
+  /**
+   * This method returns the name of the directory where PGT's should be stored
+   * on the filesystem.
+   *
+   * @return the name of a directory (with leading and trailing '/')
+   *
+   * @private
+   */
+  function getPath()
+    {
+      return $this->_path;
+    }
+
+  /**
+   * a string telling the format to use to store PGT's (plain or xml). Written by
+   * PGTStorageFile::PGTStorageFile(), read by getFormat().
+   *
+   * @private
+   */
+  var $_format;
+
+  /**
+   * This method returns the format to use when storing PGT's on the filesystem.
+   *
+   * @return a string corresponding to the format used (plain or xml).
+   *
+   * @private
+   */
+  function getFormat()
+    {
+      return $this->_format;
+    }
+
+  // ########################################################################
+  //  DEBUGGING
+  // ########################################################################
+
+  /**
+   * This method returns an informational string giving the type of storage
+   * used by the object (used for debugging purposes).
+   *
+   * @return an informational string.
+   * @public
+   */
+  function getStorageType()
+    {
+      return "file";
+    }
+
+  /**
+   * This method returns an informational string giving informations on the
+   * parameters of the storage.(used for debugging purposes).
+   *
+   * @return an informational string.
+   * @public
+   */
+  function getStorageInfo()
+    {
+      return 'path=`'.$this->getPath().'\', format=`'.$this->getFormat().'\'';
+    }
+
+  // ########################################################################
+  //  CONSTRUCTOR
+  // ########################################################################
+
+  /**
+   * The class constructor, called by CASClient::SetPGTStorageFile().
+   *
+   * @param $cas_parent the CASClient instance that creates the object.
+   * @param $format the format used to store the PGT's (`plain' and `xml' allowed).
+   * @param $path the path where the PGT's should be stored
+   *
+   * @public
+   */
+  function PGTStorageFile($cas_parent,$format,$path)
+    {
+      phpCAS::traceBegin();
+      // call the ancestor's constructor
+      $this->PGTStorage($cas_parent);
+
+      if (empty($format) ) $format = CAS_PGT_STORAGE_FILE_DEFAULT_FORMAT;
+      if (empty($path) ) $path = CAS_PGT_STORAGE_FILE_DEFAULT_PATH;
+
+      // check that the path is an absolute path
+      if ( $path[0] != '/' ) {
+	phpCAS::error('an absolute path is needed for PGT storage to file');
+      }
+
+      // store the path (with a leading and trailing '/')
+      $path = preg_replace('|[/]*$|','/',$path);
+      $path = preg_replace('|^[/]*|','/',$path);
+      $this->_path = $path;
+
+      // check the format and store it
+      switch ($format) {
+      case CAS_PGT_STORAGE_FILE_FORMAT_PLAIN:
+      case CAS_PGT_STORAGE_FILE_FORMAT_XML:
+	$this->_format = $format;
+	break;
+      default:
+	phpCAS::error('unknown PGT file storage format (`'.CAS_PGT_STORAGE_FILE_FORMAT_PLAIN.'\' and `'.CAS_PGT_STORAGE_FILE_FORMAT_XML.'\' allowed)');
+      }
+      phpCAS::traceEnd();
+    }
+
+  // ########################################################################
+  //  INITIALIZATION
+  // ########################################################################
+
+  /**
+   * This method is used to initialize the storage. Halts on error.
+   *
+   * @public
+   */
+  function init()
+    {
+      phpCAS::traceBegin();
+      // if the storage has already been initialized, return immediatly
+      if ( $this->isInitialized() )
+	return;
+      // call the ancestor's method (mark as initialized)
+      parent::init();
+      phpCAS::traceEnd();
+    }
+
+  // ########################################################################
+  //  PGT I/O
+  // ########################################################################
+
+  /**
+   * This method returns the filename corresponding to a PGT Iou.
+   *
+   * @param $pgt_iou the PGT iou.
+   *
+   * @return a filename
+   * @private
+   */
+  function getPGTIouFilename($pgt_iou)
+    {
+      phpCAS::traceBegin();
+      return $this->getPath().$pgt_iou.'.'.$this->getFormat();
+      phpCAS::traceEnd();
+    }
+
+  /**
+   * This method stores a PGT and its corresponding PGT Iou into a file. Echoes a
+   * warning on error.
+   *
+   * @param $pgt the PGT
+   * @param $pgt_iou the PGT iou
+   *
+   * @public
+   */
+  function write($pgt,$pgt_iou)
+    {
+      phpCAS::traceBegin();
+      $fname = $this->getPGTIouFilename($pgt_iou);
+      if ( $f=fopen($fname,"w") ) {
+	if ( fputs($f,$pgt) === FALSE ) {
+	  phpCAS::error('could not write PGT to `'.$fname.'\'');
+	}
+	fclose($f);
+      } else {
+	phpCAS::error('could not open `'.$fname.'\'');
+      }
+      phpCAS::traceEnd();
+    }
+
+  /**
+   * This method reads a PGT corresponding to a PGT Iou and deletes the
+   * corresponding file.
+   *
+   * @param $pgt_iou the PGT iou
+   *
+   * @return the corresponding PGT, or FALSE on error
+   *
+   * @public
+   */
+  function read($pgt_iou)
+    {
+      phpCAS::traceBegin();
+      $pgt = FALSE;
+      $fname = $this->getPGTIouFilename($pgt_iou);
+      if ( !($f=fopen($fname,"r")) ) {
+	phpCAS::trace('could not open `'.$fname.'\'');
+      } else {
+	if ( ($pgt=fgets($f)) === FALSE ) {
+	  phpCAS::trace('could not read PGT from `'.$fname.'\'');
+	}
+	fclose($f);
+      }
+
+      // delete the PGT file
+      @unlink($fname);
+
+      phpCAS::traceEnd($pgt);
+      return $pgt;
+    }
+
+  /** @} */
+
+}
+
+
+?>
\ No newline at end of file
--- a/cas_auth/cas/PGTStorage/pgt-main.php
+++ b/cas_auth/cas/PGTStorage/pgt-main.php
+<?php // $Id: pgt-main.php 9707 2007-12-12 13:46:31Z mlaurent $
+if ( count( get_included_files() ) == 1 ) die( '---' );
+
+/**
+ * @file CAS/PGTStorage/pgt-main.php
+ * Basic class for PGT storage
+ */
+
+/**
+ * @class PGTStorage
+ * The PGTStorage class is a generic class for PGT storage. This class should
+ * not be instanciated itself but inherited by specific PGT storage classes.
+ *
+ * @author   Pascal Aubry <pascal.aubry at univ-rennes1.fr>
+ *
+ * @ingroup internalPGTStorage
+ */
+
+class PGTStorage
+{
+  /**
+   * @addtogroup internalPGTStorage
+   * @{
+   */
+
+  // ########################################################################
+  //  CONSTRUCTOR
+  // ########################################################################
+
+  /**
+   * The constructor of the class, should be called only by inherited classes.
+   *
+   * @param $cas_parent the CASclient instance that creates the current object.
+   *
+   * @protected
+   */
+  function PGTStorage($cas_parent)
+    {
+      phpCAS::traceBegin();
+      if ( !$cas_parent->isProxy() ) {
+	phpCAS::error('defining PGT storage makes no sense when not using a CAS proxy');
+      }
+      phpCAS::traceEnd();
+    }
+
+  // ########################################################################
+  //  DEBUGGING
+  // ########################################################################
+
+  /**
+   * This virtual method returns an informational string giving the type of storage
+   * used by the object (used for debugging purposes).
+   *
+   * @public
+   */
+  function getStorageType()
+    {
+      phpCAS::error(__CLASS__.'::'.__FUNCTION__.'() should never be called');
+    }
+
+  /**
+   * This virtual method returns an informational string giving informations on the
+   * parameters of the storage.(used for debugging purposes).
+   *
+   * @public
+   */
+  function getStorageInfo()
+    {
+      phpCAS::error(__CLASS__.'::'.__FUNCTION__.'() should never be called');
+    }
+
+  // ########################################################################
+  //  ERROR HANDLING
+  // ########################################################################
+
+  /**
+   * string used to store an error message. Written by PGTStorage::setErrorMessage(),
+   * read by PGTStorage::getErrorMessage().
+   *
+   * @hideinitializer
+   * @private
+   * @deprecated not used.
+   */
+  var $_error_message=FALSE;
+
+  /**
+   * This method sets en error message, which can be read later by
+   * PGTStorage::getErrorMessage().
+   *
+   * @param $error_message an error message
+   *
+   * @protected
+   * @deprecated not used.
+   */
+  function setErrorMessage($error_message)
+    {
+      $this->_error_message = $error_message;
+    }
+
+  /**
+   * This method returns an error message set by PGTStorage::setErrorMessage().
+   *
+   * @return an error message when set by PGTStorage::setErrorMessage(), FALSE
+   * otherwise.
+   *
+   * @public
+   * @deprecated not used.
+   */
+  function getErrorMessage()
+    {
+      return $this->_error_message;
+    }
+
+  // ########################################################################
+  //  INITIALIZATION
+  // ########################################################################
+
+  /**
+   * a boolean telling if the storage has already been initialized. Written by
+   * PGTStorage::init(), read by PGTStorage::isInitialized().
+   *
+   * @hideinitializer
+   * @private
+   */
+  var $_initialized = FALSE;
+
+  /**
+   * This method tells if the storage has already been intialized.
+   *
+   * @return a boolean
+   *
+   * @protected
+   */
+  function isInitialized()
+    {
+      return $this->_initialized;
+    }
+
+  /**
+   * This virtual method initializes the object.
+   *
+   * @protected
+   */
+  function init()
+    {
+      $this->_initialized = TRUE;
+    }
+
+  // ########################################################################
+  //  PGT I/O
+  // ########################################################################
+
+  /**
+   * This virtual method stores a PGT and its corresponding PGT Iuo.
+   * @note Should never be called.
+   *
+   * @param $pgt the PGT
+   * @param $pgt_iou the PGT iou
+   *
+   * @protected
+   */
+  function write($pgt,$pgt_iou)
+    {
+      phpCAS::error(__CLASS__.'::'.__FUNCTION__.'() should never be called');
+    }
+
+  /**
+   * This virtual method reads a PGT corresponding to a PGT Iou and deletes
+   * the corresponding storage entry.
+   * @note Should never be called.
+   *
+   * @param $pgt_iou the PGT iou
+   *
+   * @protected
+   */
+  function read($pgt_iou)
+    {
+      phpCAS::error(__CLASS__.'::'.__FUNCTION__.'() should never be called');
+    }
+
+  /** @} */
+
+}
+
+// include specific PGT storage classes
+include_once(dirname(__FILE__).'/pgt-file.php');
+include_once(dirname(__FILE__).'/pgt-db.php');
+
+?>
\ No newline at end of file
--- a/cas_auth/cas/client.php
+++ b/cas_auth/cas/client.php
--- a/cas_auth/cas/domxml-php4-php5.php
+++ b/cas_auth/cas/domxml-php4-php5.php
+<?php // $Id: domxml-php4-php5.php 9707 2007-12-12 13:46:31Z mlaurent $
+if ( count( get_included_files() ) == 1 ) die( '---' );
+
+/**
+ * @file domxml-php4-php5.php
+ * Require PHP5, uses built-in DOM extension.
+ * To be used in PHP4 scripts using DOMXML extension.
+ * Allows PHP4/DOMXML scripts to run on PHP5/DOM.
+ * (Requires PHP5/XSL extension for domxml_xslt functions)
+ *
+ * Typical use:
+ * <pre>
+ * {
+ *  if (version_compare(PHP_VERSION,'5','>='))
+ *   require_once('domxml-php4-to-php5.php');
+ * }
+ * </pre>
+ *
+ * Version 1.5.5, 2005-01-18, http://alexandre.alapetite.net/doc-alex/domxml-php4-php5/
+ *
+ * ------------------------------------------------------------------<br>
+ * Written by Alexandre Alapetite, http://alexandre.alapetite.net/cv/
+ *
+ * Copyright 2004, Licence: Creative Commons "Attribution-ShareAlike 2.0 France" BY-SA (FR),
+ * http://creativecommons.org/licenses/by-sa/2.0/fr/
+ * http://alexandre.alapetite.net/divers/apropos/#by-sa
+ * - Attribution. You must give the original author credit
+ * - Share Alike. If you alter, transform, or build upon this work,
+ *   you may distribute the resulting work only under a license identical to this one
+ * - The French law is authoritative
+ * - Any of these conditions can be waived if you get permission from Alexandre Alapetite
+ * - Please send to Alexandre Alapetite the modifications you make,
+ *   in order to improve this file for the benefit of everybody
+ *
+ * If you want to distribute this code, please do it as a link to:
+ * http://alexandre.alapetite.net/doc-alex/domxml-php4-php5/
+ */
+
+function domxml_new_doc($version) {return new php4DOMDocument('');}
+function domxml_open_file($filename) {return new php4DOMDocument($filename);}
+function domxml_open_mem($str)
+{
+ $dom=new php4DOMDocument('');
+ $dom->myDOMNode->loadXML($str);
+ return $dom;
+}
+function xpath_eval($xpath_context,$eval_str,$contextnode=null) {return $xpath_context->query($eval_str,$contextnode);}
+function xpath_new_context($dom_document) {return new php4DOMXPath($dom_document);}
+
+class php4DOMAttr extends php4DOMNode
+{
+ function php4DOMAttr($aDOMAttr) {$this->myDOMNode=$aDOMAttr;}
+ function Name() {return $this->myDOMNode->name;}
+ function Specified() {return $this->myDOMNode->specified;}
+ function Value() {return $this->myDOMNode->value;}
+}
+
+class php4DOMDocument extends php4DOMNode
+{
+ function php4DOMDocument($filename='')
+ {
+  $this->myDOMNode=new DOMDocument();
+  if ($filename!='') $this->myDOMNode->load($filename);
+ }
+ function create_attribute($name,$value)
+ {
+  $myAttr=$this->myDOMNode->createAttribute($name);
+  $myAttr->value=$value;
+  return new php4DOMAttr($myAttr,$this);
+ }
+ function create_cdata_section($content) {return new php4DOMNode($this->myDOMNode->createCDATASection($content),$this);}
+ function create_comment($data) {return new php4DOMNode($this->myDOMNode->createComment($data),$this);}
+ function create_element($name) {return new php4DOMElement($this->myDOMNode->createElement($name),$this);}
+ function create_text_node($content) {return new php4DOMNode($this->myDOMNode->createTextNode($content),$this);}
+ function document_element() {return new php4DOMElement($this->myDOMNode->documentElement,$this);}
+ function dump_file($filename,$compressionmode=false,$format=false) {return $this->myDOMNode->save($filename);}
+ function dump_mem($format=false,$encoding=false) {return $this->myDOMNode->saveXML();}
+ function get_element_by_id($id) {return new php4DOMElement($this->myDOMNode->getElementById($id),$this);}
+ function get_elements_by_tagname($name)
+ {
+  $myDOMNodeList=$this->myDOMNode->getElementsByTagName($name);
+  $nodeSet=array();
+  $i=0;
+  if (isset($myDOMNodeList))
+   while ($node=$myDOMNodeList->item($i))
+   {
+    $nodeSet[]=new php4DOMElement($node,$this);
+    $i++;
+   }
+  return $nodeSet;
+ }
+ function html_dump_mem() {return $this->myDOMNode->saveHTML();}
+ function root() {return new php4DOMElement($this->myDOMNode->documentElement,$this);}
+}
+
+class php4DOMElement extends php4DOMNode
+{
+ function get_attribute($name) {return $this->myDOMNode->getAttribute($name);}
+ function get_elements_by_tagname($name)
+ {
+  $myDOMNodeList=$this->myDOMNode->getElementsByTagName($name);
+  $nodeSet=array();
+  $i=0;
+  if (isset($myDOMNodeList))
+   while ($node=$myDOMNodeList->item($i))
+   {
+    $nodeSet[]=new php4DOMElement($node,$this->myOwnerDocument);
+    $i++;
+   }
+  return $nodeSet;
+ }
+ function has_attribute($name) {return $this->myDOMNode->hasAttribute($name);}
+ function remove_attribute($name) {return $this->myDOMNode->removeAttribute($name);}
+ function set_attribute($name,$value) {return $this->myDOMNode->setAttribute($name,$value);}
+ function tagname() {return $this->myDOMNode->tagName;}
+}
+
+class php4DOMNode
+{
+ var $myDOMNode;
+ var $myOwnerDocument;
+ function php4DOMNode($aDomNode,$aOwnerDocument)
+ {
+  $this->myDOMNode=$aDomNode;
+  $this->myOwnerDocument=$aOwnerDocument;
+ }
+ function __get($name)
+ {
+  if ($name=='type') return $this->myDOMNode->nodeType;
+  elseif ($name=='tagname') return $this->myDOMNode->tagName;
+  elseif ($name=='content') return $this->myDOMNode->textContent;
+  else
+  {
+   $myErrors=debug_backtrace();
+   trigger_error('Undefined property: '.get_class($this).'::$'.$name.' ['.$myErrors[0]['file'].':'.$myErrors[0]['line'].']',E_USER_NOTICE);
+   return false;
+  }
+ }
+ function append_child($newnode) {return new php4DOMElement($this->myDOMNode->appendChild($newnode->myDOMNode),$this->myOwnerDocument);}
+ function append_sibling($newnode) {return new php4DOMElement($this->myDOMNode->parentNode->appendChild($newnode->myDOMNode),$this->myOwnerDocument);}
+ function attributes()
+ {
+  $myDOMNodeList=$this->myDOMNode->attributes;
+  $nodeSet=array();
+  $i=0;
+  if (isset($myDOMNodeList))
+   while ($node=$myDOMNodeList->item($i))
+   {
+    $nodeSet[]=new php4DOMAttr($node,$this->myOwnerDocument);
+    $i++;
+   }
+  return $nodeSet;
+ }
+ function child_nodes()
+ {
+  $myDOMNodeList=$this->myDOMNode->childNodes;
+  $nodeSet=array();
+  $i=0;
+  if (isset($myDOMNodeList))
+   while ($node=$myDOMNodeList->item($i))
+   {
+    $nodeSet[]=new php4DOMElement($node,$this->myOwnerDocument);
+    $i++;
+   }
+  return $nodeSet;
+ }
+ function children() {return $this->child_nodes();}
+ function clone_node($deep=false) {return new php4DOMElement($this->myDOMNode->cloneNode($deep),$this->myOwnerDocument);}
+ function first_child() {return new php4DOMElement($this->myDOMNode->firstChild,$this->myOwnerDocument);}
+ function get_content() {return $this->myDOMNode->textContent;}
+ function has_attributes() {return $this->myDOMNode->hasAttributes();}
+ function has_child_nodes() {return $this->myDOMNode->hasChildNodes();}
+ function insert_before($newnode,$refnode) {return new php4DOMElement($this->myDOMNode->insertBefore($newnode->myDOMNode,$refnode->myDOMNode),$this->myOwnerDocument);}
+ function is_blank_node()
+ {
+  $myDOMNodeList=$this->myDOMNode->childNodes;
+  $i=0;
+  if (isset($myDOMNodeList))
+   while ($node=$myDOMNodeList->item($i))
+   {
+    if (($node->nodeType==XML_ELEMENT_NODE)||
+        (($node->nodeType==XML_TEXT_NODE)&&!ereg('^([[:cntrl:]]|[[:space:]])*$',$node->nodeValue)))
+     return false;
+    $i++;
+   }
+  return true;
+ }
+ function last_child() {return new php4DOMElement($this->myDOMNode->lastChild,$this->myOwnerDocument);}
+ function new_child($name,$content)
+ {
+  $mySubNode=$this->myDOMNode->ownerDocument->createElement($name);
+  $mySubNode->appendChild($this->myDOMNode->ownerDocument->createTextNode($content));
+  $this->myDOMNode->appendChild($mySubNode);
+  return new php4DOMElement($mySubNode,$this->myOwnerDocument);
+ }
+ function next_sibling() {return new php4DOMElement($this->myDOMNode->nextSibling,$this->myOwnerDocument);}
+ function node_name() {return $this->myDOMNode->localName;}
+ function node_type() {return $this->myDOMNode->nodeType;}
+ function node_value() {return $this->myDOMNode->nodeValue;}
+ function owner_document() {return $this->myOwnerDocument;}
+ function parent_node() {return new php4DOMElement($this->myDOMNode->parentNode,$this->myOwnerDocument);}
+ function prefix() {return $this->myDOMNode->prefix;}
+ function previous_sibling() {return new php4DOMElement($this->myDOMNode->previousSibling,$this->myOwnerDocument);}
+ function remove_child($oldchild) {return new php4DOMElement($this->myDOMNode->removeChild($oldchild->myDOMNode),$this->myOwnerDocument);}
+ function replace_child($oldnode,$newnode) {return new php4DOMElement($this->myDOMNode->replaceChild($oldnode->myDOMNode,$newnode->myDOMNode),$this->myOwnerDocument);}
+ function set_content($text)
+ {
+  if (($this->myDOMNode->hasChildNodes())&&($this->myDOMNode->firstChild->nodeType==XML_TEXT_NODE))
+   $this->myDOMNode->removeChild($this->myDOMNode->firstChild);
+  return $this->myDOMNode->appendChild($this->myDOMNode->ownerDocument->createTextNode($text));
+ }
+}
+
+class php4DOMNodelist
+{
+ var $myDOMNodelist;
+ var $nodeset;
+ function php4DOMNodelist($aDOMNodelist,$aOwnerDocument)
+ {
+  $this->myDOMNodelist=$aDOMNodelist;
+  $this->nodeset=array();
+  $i=0;
+  if (isset($this->myDOMNodelist))
+   while ($node=$this->myDOMNodelist->item($i))
+   {
+    $this->nodeset[]=new php4DOMElement($node,$aOwnerDocument);
+    $i++;
+   }
+ }
+}
+
+class php4DOMXPath
+{
+ var $myDOMXPath;
+ var $myOwnerDocument;
+ function php4DOMXPath($dom_document)
+ {
+  $this->myOwnerDocument=$dom_document;
+  $this->myDOMXPath=new DOMXPath($dom_document->myDOMNode);
+ }
+ function query($eval_str,$contextnode)
+ {
+  if (isset($contextnode)) return new php4DOMNodelist($this->myDOMXPath->query($eval_str,$contextnode->myDOMNode),$this->myOwnerDocument);
+  else return new php4DOMNodelist($this->myDOMXPath->query($eval_str),$this->myOwnerDocument);
+ }
+ function xpath_register_ns($prefix,$namespaceURI) {return $this->myDOMXPath->registerNamespace($prefix,$namespaceURI);}
+}
+
+if (extension_loaded('xsl'))
+{//See also: http://alexandre.alapetite.net/doc-alex/xslt-php4-php5/
+ function domxml_xslt_stylesheet($xslstring) {return new php4DomXsltStylesheet(DOMDocument::loadXML($xslstring));}
+ function domxml_xslt_stylesheet_doc($dom_document) {return new php4DomXsltStylesheet($dom_document);}
+ function domxml_xslt_stylesheet_file($xslfile) {return new php4DomXsltStylesheet(DOMDocument::load($xslfile));}
+ class php4DomXsltStylesheet
+ {
+  var $myxsltProcessor;
+  function php4DomXsltStylesheet($dom_document)
+  {
+   $this->myxsltProcessor=new xsltProcessor();
+   $this->myxsltProcessor->importStyleSheet($dom_document);
+  }
+  function process($dom_document,$xslt_parameters=array(),$param_is_xpath=false)
+  {
+   foreach ($xslt_parameters as $param=>$value)
+    $this->myxsltProcessor->setParameter('',$param,$value);
+   $myphp4DOMDocument=new php4DOMDocument();
+   $myphp4DOMDocument->myDOMNode=$this->myxsltProcessor->transformToDoc($dom_document->myDOMNode);
+   return $myphp4DOMDocument;
+  }
+  function result_dump_file($dom_document,$filename)
+  {
+   $html=$dom_document->myDOMNode->saveHTML();
+   file_put_contents($filename,$html);
+   return $html;
+  }
+  function result_dump_mem($dom_document) {return $dom_document->myDOMNode->saveHTML();}
+ }
+}
+?>
\ No newline at end of file
--- a/cas_auth/cas/languages/english.php
+++ b/cas_auth/cas/languages/english.php
+<?php // $Id: english.php 9707 2007-12-12 13:46:31Z mlaurent $
+if ( count( get_included_files() ) == 1 ) die( '---' );
+
+/**
+ * @file languages/english.php
+ * @author Pascal Aubry <pascal.aubry at univ-rennes1.fr>
+ * @sa @link internalLang Internationalization @endlink
+ * @ingroup internalLang
+ */
+
+$this->_strings = array(
+ CAS_STR_USING_SERVER
+ => 'using server',
+ CAS_STR_AUTHENTICATION_WANTED
+ => 'CAS Authentication wanted!',
+ CAS_STR_LOGOUT
+ => 'CAS logout wanted!',
+ CAS_STR_SHOULD_HAVE_BEEN_REDIRECTED
+ => 'You should already have been redirected to the CAS server. Click <a href="%s">here</a> to continue.',
+ CAS_STR_AUTHENTICATION_FAILED
+ => 'CAS Authentication failed!',
+ CAS_STR_YOU_WERE_NOT_AUTHENTICATED
+ => '<p>You were not authenticated.</p><p>You may submit your request again by clicking <a href="%s">here</a>.</p><p>If the problem persists, you may contact <a href="mailto:%s">the administrator of this site</a>.</p>',
+ CAS_STR_SERVICE_UNAVAILABLE
+ => 'The service `<b>%s</b>\' is not available (<b>%s</b>).'
+);
+
+?>
\ No newline at end of file
--- a/cas_auth/cas/languages/french.php
+++ b/cas_auth/cas/languages/french.php
+<?php // $Id: french.php 9707 2007-12-12 13:46:31Z mlaurent $
+if ( count( get_included_files() ) == 1 ) die( '---' );
+
+/**
+ * @file languages/english.php
+ * @author Pascal Aubry <pascal.aubry at univ-rennes1.fr>
+ * @sa @link internalLang Internationalization @endlink
+ * @ingroup internalLang
+ */
+
+$this->_strings = array(
+ CAS_STR_USING_SERVER
+ => 'utilisant le serveur',
+ CAS_STR_AUTHENTICATION_WANTED
+ => 'Authentication CAS ncessaire&nbsp;!',
+ CAS_STR_LOGOUT
+ => 'Dconnexion demande&nbsp;!',
+ CAS_STR_SHOULD_HAVE_BEEN_REDIRECTED
+ => 'Vous auriez du etre redirig(e) vers le serveur CAS. Cliquez <a href="%s">ici</a> pour continuer.',
+ CAS_STR_AUTHENTICATION_FAILED
+ => 'Authentification CAS infructueuse&nbsp;!',
+ CAS_STR_YOU_WERE_NOT_AUTHENTICATED
+ => '<p>Vous n\'avez pas t authentifi(e).</p><p>Vous pouvez soumettre votre requete  nouveau en cliquant <a href="%s">ici</a>.</p><p>Si le problme persiste, vous pouvez contacter <a href="mailto:%s">l\'administrateur de ce site</a>.</p>',
+ CAS_STR_SERVICE_UNAVAILABLE
+ => 'Le service `<b>%s</b>\' est indisponible (<b>%s</b>)'
+
+);
+
+?>
\ No newline at end of file
--- a/cas_auth/cas/languages/greek.php
+++ b/cas_auth/cas/languages/greek.php
+<?php // $Id: greek.php 9707 2007-12-12 13:46:31Z mlaurent $
+if ( count( get_included_files() ) == 1 ) die( '---' );
+
+/**
+ * @file languages/greek.php
+ * @author Vangelis Haniotakis <haniotak at ucnet.uoc.gr>
+ * @sa @link internalLang Internationalization @endlink
+ * @ingroup internalLang
+ */
+
+$this->_strings = array(
+ CAS_STR_USING_SERVER
+ => '  ',
+ CAS_STR_AUTHENTICATION_WANTED
+ => '   CAS!',
+ CAS_STR_LOGOUT
+ => '    CAS!',
+ CAS_STR_SHOULD_HAVE_BEEN_REDIRECTED
+ => '       CAS.   <a href="%s"></a>   .',
+ CAS_STR_AUTHENTICATION_FAILED
+ => '  CAS !',
+ CAS_STR_YOU_WERE_NOT_AUTHENTICATED
+ => '<p> .</p><p>  ,   <a href="%s"></a>.</p><p>   ,      <a href="mailto:%s"></a>.</p>',
+ CAS_STR_SERVICE_UNAVAILABLE
+ => '  `<b>%s</b>\'    (<b>%s</b>).'
+);
+
+?>
\ No newline at end of file
--- a/cas_auth/cas/languages/languages.php
+++ b/cas_auth/cas/languages/languages.php
+<?php // $Id: languages.php 9707 2007-12-12 13:46:31Z mlaurent $
+if ( count( get_included_files() ) == 1 ) die( '---' );
+
+/**
+ * @file languages/languages.php
+ * Internationalization constants
+ * @author Pascal Aubry <pascal.aubry at univ-rennes1.fr>
+ * @sa @link internalLang Internationalization @endlink
+ * @ingroup internalLang
+ */
+
+//@{
+/**
+ * a phpCAS string index
+ */
+define("CAS_STR_USING_SERVER",                1);
+define("CAS_STR_AUTHENTICATION_WANTED",       2);
+define("CAS_STR_LOGOUT",                      3);
+define("CAS_STR_SHOULD_HAVE_BEEN_REDIRECTED", 4);
+define("CAS_STR_AUTHENTICATION_FAILED",       5);
+define("CAS_STR_YOU_WERE_NOT_AUTHENTICATED",  6);
+define("CAS_STR_SERVICE_UNAVAILABLE",         7);
+//@}
+
+?>
\ No newline at end of file
--- a/cas_auth/images/connex_cas.gif
+++ b/cas_auth/images/connex_cas.gif
--- a/cas_auth/start.php
+++ b/cas_auth/start.php
--- a/cas_auth/views/default/account/forms/getemail.php
+++ b/cas_auth/views/default/account/forms/getemail.php
+<?php
+
+     /**
+	 * Elgg Get Email Only SSO register form
+	 * 
+	 * @package Elgg
+	 * @subpackage Core
+	 * @license http://www.gnu.org/licenses/old-licenses/gpl-2.0.html GNU Public License version 2
+	 * @author Curverider Ltd
+	 * @copyright Curverider Ltd 2008-2009
+	 * @link http://elgg.org/
+	 */
+	 
+	// if we're returning from a failed email validation, we'll put the failed email in the email form field
+	if( isset($_REQUEST['e']) )
+	{
+		$vars['unl_email'] = $_REQUEST['e'];
+	}
+
+	$form_body .= "<p><label>" . elgg_echo('email') . "<br />" . elgg_view('input/text' , array('internalname' => 'email', 'class' => "general-textarea", 'value' => $vars['unl_email'])) . "</label><br />";
+
+	$form_body .= elgg_view('input/submit', array('internalname' => 'submit', 'value' => 'Complete Registration and Login!')) . "</p>";
+?>
+
+	
+	<div id="register-box">
+	<h2>We just want to make sure we have your correct e-mail and then we'll log you in</h2>
+	<?php echo elgg_view('input/form', array('action' => "{$vars['url']}action/cas_auth/getemail", 'body' => $form_body)) ?>
+	</div>
\ No newline at end of file
--- a/cas_auth/views/default/account/forms/login.php
+++ b/cas_auth/views/default/account/forms/login.php
+<?php
+
+     /**
+	 * Elgg login form adapted for CAS Auth
+	 * 
+	 * @package cas_auth
+	 * @license http://www.gnu.org/licenses/gpl.html
+	 * @author Xavier Roussel
+	 * @copyright UVSQ 2008
+	 * @link http://www.uvsq.fr
+	 */
+	 
+	global $CONFIG;
+	
+	$form_body = "<p class=\"login-box\"><label>" . elgg_echo('username') . "<br />" . elgg_view('input/text', array('internalname' => 'username', 'class' => 'login-textarea')) . "</label>";
+	$form_body .= "<br />";
+	$form_body .= "<label>" . elgg_echo('password') . "<br />" . elgg_view('input/password', array('internalname' => 'password', 'class' => 'login-textarea')) . "</label><br />";
+	$form_body .= elgg_view('input/submit', array('value' => elgg_echo('login'))) . " <div id=\"persistent_login\"><label><input type=\"checkbox\" name=\"persistent\" value=\"true\" />".elgg_echo('user:persistent')."</label></div></p>";
+	$form_body .= "<p class=\"loginbox\">";
+	$form_body .= (!isset($CONFIG->disable_registration) || !($CONFIG->disable_registration)) ? "<a href=\"{$vars['url']}account/register.php\">" . elgg_echo('register') . "</a> | " : "";
+	$form_body .= "<a href=\"{$vars['url']}account/forgotten_password.php\">" . elgg_echo('user:password:lost') . "</a></p>";  
+	
+	//<input name=\"username\" type=\"text\" class="general-textarea" /></label>
+?>
+	
+	<div id="login-box">
+	<h2><?php echo elgg_echo('login'); ?></h2>
+		<!-- Comment the line below to allow only CAS authentification -->
+		<?php  echo elgg_view('input/form', array('body' => $form_body, 'action' => "{$vars['url']}action/login")); ?>
+		<a href="?loginwith=UNLlogin" alt="Login using your my.UNL credentials"><img src="<?php echo $CONFIG->wwwroot; ?>mod/cas_auth/images/connex_cas.gif" title="Login using your my.UNL credentials""></a>
+	</div>
--- a/cas_auth/views/default/account/getemail.php
+++ b/cas_auth/views/default/account/getemail.php
+<?php
+
+	/**
+	 * Get a UNL SSO user's email when they login the first time
+	 * 
+	 * @package cas_auth
+	 * @license http://www.gnu.org/licenses/old-licenses/gpl-2.0.html GNU Public License version 2
+	 * @author Eric Rasmussen
+	 * @copyright University of Nebraska-Lincoln 2009
+	 * @link http://www.unl.edu/
+	 */
+
+	/**
+	 * Start the Elgg engine
+	 */
+		require_once(dirname(dirname(dirname(dirname(dirname(dirname(__FILE__)))))) . "/engine/start.php");
+
+	
+	page_draw(elgg_echo('register'), elgg_view("account/forms/getemail"));
+
+		
+?>
\ No newline at end of file
--- a/cas_auth/views/default/actions/getemail.php
+++ b/cas_auth/views/default/actions/getemail.php
+<?php
+
+	/**
+	 * Elgg UNL SSO get email registration action
+	 * 
+	 * @package Elgg
+	 * @subpackage Core
+	 * @license http://www.gnu.org/licenses/old-licenses/gpl-2.0.html GNU Public License version 2
+	 * @author Curverider Ltd
+	 * @copyright Curverider Ltd 2008-2009
+	 * @link http://elgg.org/
+	 */
+
+//	require_once(dirname(dirname(__FILE__)) . "/engine/start.php");
+	global $CONFIG;
+	
+//	action_gatekeeper();
+
+
+	// Get variables
+
+		$email = get_input('email');
+	//	var_dump($email);
+	
+		$email = sanitise_string($email);
+	//	var_dump($email);
+
+		if (is_email_address($email))
+		{
+			if (!get_user_by_email($email))
+			{
+				forward('?loginwith=UNLlogin&email=' . $email);
+			}
+			else
+			{
+				register_error(elgg_echo("Sorry, that email has already been registered.  Please try again."));
+			}
+		}
+		else
+		{
+			register_error(elgg_echo("Sorry, that is not a complete email address.  Please try again."));
+		}
+	
+		
+		
+			
+		$qs = explode('?',$_SERVER['HTTP_REFERER']);
+		$qs = $qs[0];
+		$qs .= "?e=" . urlencode($email);
+		
+		forward($CONFIG->url . 'mod/cas_auth/views/default/account/getemail.php?e=' . urlencode($email));
+
+?>
\ No newline at end of file
--- a/cas_auth/views/default/settings/cas_auth/edit.php
+++ b/cas_auth/views/default/settings/cas_auth/edit.php
+<?php
+ /**
+* Elgg CAS authentication
+* 
+* @package cas_auth
+* @license http://www.gnu.org/licenses/gpl.html
+* @author Xavier Roussel <xavier.roussel@uvsq.fr>
+* @copyright UVSQ 2008
+* @link http://www.uvsq.fr
+*/
+?>
+<p>
+    <fieldset style="border: 1px solid; padding: 15px; margin: 0 10px 0 10px">
+        <legend><?php echo elgg_echo('CAS');?></legend>
+        
+        <label for="params[casurl]"><?php echo elgg_echo('CAS URL');?></label><br/>
+        <input type="text" name="params[casurl]" value="<?php echo $vars['entity']->casurl;?>" /><br/>
+        
+				<label for="params[casport]"><?php echo elgg_echo('CAS PORT');?></label><br/>
+        <input type="text" name="params[casport]" value="<?php echo $vars['entity']->casport;?>" /><br/>
+
+				<label for="params[casuri]"><?php echo elgg_echo('CAS URI');?></label><br/>
+        <input type="text" name="params[casuri]" value="<?php echo $vars['entity']->casuri;?>" /><br/>
+    </fieldset>
+</p>
\ No newline at end of file