138


	<?xml version="1.0" encoding="<X-FC-ITEM DATA[Charset]>"?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <!--^Bookmark/138 9.1R2 H=<X-FC-REQUEST-TIME HEADER> LS=<X-FC-REQUEST-TIME LOGIN.START> L=<X-FC-REQUEST-TIME LOGIN> OS=<X-FC-REQUEST-TIME OPEN.START> O=<X-FC-REQUEST-TIME OPEN> T=<X-FC-REQUEST-TIME>--><X-FC-WHITESPACE STRIP> <!--#if expr="@length('$USETICKETAUTH') == 0"--> <!--#set var="USETICKETAUTH" value="0"--> <!--#endif--> <!--#if expr="$USETICKETAUTH == 0 && <X-FC-SERVER USEDSLOGIN> == 0 && !$SUPPRESSDIGESTLOGIN && <X-FC-SERVER VERSION> >= 10250"--> <!--#set var="USEDIGESTLOGIN" value="1"--> <!--#if expr="@length('$ENABLEAUTHSAVING') == 0"--> <!--#set var="ENABLEAUTHSAVING" value="0"--> <!--#endif--> <!--#else--> <!--#set var="USEDIGESTLOGIN" value="0"--> <!--#set var="ENABLEAUTHSAVING" value="0"--> <!--#endif--> <X-FC-WHITESPACE RETAIN> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=<X-FC-ITEM DATA[Charset]>"/><!--#if expr="$USEDIGESTLOGIN"--> <meta http-equiv="Refresh" content="285;URL=/Login"/><!--#endif--> <title><X-FC-FIELD LANG.141.4 STRING></title><!--#if expr="@length($GLOBALSTYLES)"--> <link rel="stylesheet" type="text/css" href="<!--#echo var="GLOBALSTYLES"-->"/><!--#else--> <style type="text/css"> <!-- body{margin:0px;} .title{font-size:<X-FC-FIELD PREFS.5651 DEFAULT=LANG.49.5651.11 FONTSIZE>pt;color:<X-FC-FIELD PREFS.5652 DEFAULT=LANG.49.5652.11 RGB>;text-decoration:none;font-family:<X-FC-FIELD PREFS.5650 DEFAULT=LANG.49.5650.9 STRING>;} .button{font-size:<X-FC-FIELD PREFS.5646 DEFAULT=LANG.49.5646.11 FONTSIZE>pt;color:<X-FC-FIELD PREFS.5647 DEFAULT=LANG.49.5647.11 RGB>;text-decoration:none;font-family:<X-FC-FIELD PREFS.5645 DEFAULT=LANG.49.5645.9 STRING>;} .forms{font-size:<X-FC-FIELD PREFS.5696 DEFAULT=LANG.49.5696.11 FONTSIZE>pt;color:<X-FC-FIELD PREFS.5697 DEFAULT=LANG.49.5697.11 RGB>;text-decoration:none;font-family:<X-FC-FIELD PREFS.5695 DEFAULT=LANG.49.5695.9 STRING>;} .gt{font-size:<X-FC-FIELD PREFS.5671 DEFAULT=LANG.49.5686.11 FONTSIZE>pt;color:<X-FC-FIELD PREFS.5687 DEFAULT=LANG.49.5687.11 RGB>;text-decoration:none;font-family:<X-FC-FIELD PREFS.5685 DEFAULT=LANG.49.5685.9 STRING>;} --> </style><!--#endif--><!--#if expr="$USEDIGESTLOGIN"--> <script type="text/javascript"> <!-- <X-FC-WHITESPACE STRIP> var HD=new String("0123456789abcdef"); <!--#rem The following functions are necessary since various browser developers have failed to implement arithmetic operations on unsigned 32-bit numbers correctly AND(a,b) == a&b OR(a,b) == a\|b XOR(a,b) == a^b NOT(a) == ~a ADD(a,b) == a+b LS(a,s) == a<<s RS(a,s) == a>>s --> function AND(a,b){ var hb=(a>=0x80000000)&&(b>=0x80000000); var r=0; if(a>=0x80000000){a-=0x80000000;} if(b>=0x80000000){b-=0x80000000;} r=a&b; if(hb){r+=0x80000000;} return r; } function OR(a,b){ var hb=(a>=0x80000000)\|\|(b>=0x80000000); var r=0; if(a>=0x80000000){a-=0x80000000;} if(b>=0x80000000){b-=0x80000000;} r=a\|b; if(hb){r+=0x80000000;} return r; } function XOR(a,b){ var hb=((a>=0x80000000)&&(b<0x80000000))\|\|((a<0x80000000)&&(b>=0x80000000)); var r=0; if(a>=0x80000000){a-=0x80000000;} if(b>=0x80000000){b-=0x80000000;} r=a^b; if(hb){r+=0x80000000;} return r; } function NOT(a){ var b=0x80000000; var n=0; while(b>=1){ if(a>=b){ a-=b; }else{ n+=b; } b=b/2; } return n; } function ADD(a,b){ var n=0; if(a>=0x80000000){ ++n; a-=0x80000000; } if(b>=0x80000000){ ++n; b-=0x80000000; } a+=b; if(n==1){ if(a>=0x80000000){ a-=0x80000000; }else{ a+=0x80000000; } } return a; } function LS(a,s){ for(var i=0;i<s;i++){ if(a>=0x80000000){ a-=0x80000000; } a=a2; } return a; } function RS(a,s){ for(var i=0;i<s;i++){ if(a%2){ a-=1; } a=a/2; } return a; } <!--#rem function H1 converts the high nibble of the byte c into a hex character --> function HEX1(c){ return HD.substr((c>>4)&0x0F,1); } <!--#rem function H2 converts the low nibble of byte c into a hex character --> function HEX2(c){ return HD.substr(c&0x0F,1); } <!--#rem SHA1 State variables --> var PD=[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]; var H=[],B=[]; var KV=[0x5A827999,0x6ED9EBA1,0x8F1BBCDC,0xCA62C1D6]; var TL=0; var BL=0; function K(n){ return KV[Math.floor(n / 20)]; } function S(v,n){ return OR(LS(v,n),RS(v,32-n)); } function f(n,B,C,D){ switch(Math.floor(n/20)){ case 0:return OR(AND(B,C),AND(NOT(B),D)); case 2:return OR(OR(AND(B,C),AND(B,D)),AND(C,D)); default:return XOR(XOR(B,C),D); } }<!--#rem EC(I,L,O) Encode (Input, Length, Output) Encodes input (UINT4) into output (unsigned char). Assumes len is a multiple of 4. --> function EC(I,L,O){ var i, j; for(i=0,j=0;j<L;i++,j+=4){ O[j]=AND(RS(I[i],24),0xFF); O[j+1]=AND(RS(I[i],16),0xFF); O[j+2]=AND(RS(I[i],8),0xFF); O[j+3]=AND(I[i],0xFF); } }<!--#rem DC(I,L,O) Decode(Input, Length, Output) Decodes input (unsigned char) into output (UINT4). Assumes len is a multiple of 4. --> function DC(I,L,O){ var i, j; for (i=0,j=0;j<L;i++,j+=4){ O[i]=0; O[i]=ADD(O[i],LS(I[j],24)); O[i]=ADD(O[i],LS(I[j+1],16)); O[i]=ADD(O[i],LS(I[j+2],8)); O[i]=ADD(O[i],I[j+3]); } }<!--#rem TF(bl) Transform(block) SHA1 basic transformation. Transforms state based on block. --> function TF(bl){ var a,b,c,d,e,t; var W=[]; var i; DC(bl,64,W); for(i=16;i<80;i++){ W[i]=S(XOR(XOR(XOR(W[i-3],W[i-8]),W[i-14]),W[i-16]),1); } a=H[0];b=H[1];c=H[2];d=H[3];e=H[4]; for(i=0;i<80;i++){ t=ADD(ADD(ADD(ADD(S(a,5),f(i,b,c,d)),e),W[i]),K(i)); e=AND(d,0xFFFFFFFF); d=AND(c,0xFFFFFFFF); c=AND(S(b,30),0xFFFFFFFF); b=AND(a,0xFFFFFFFF); a=AND(t,0xFFFFFFFF); } H[0]=ADD(H[0],a); H[1]=ADD(H[1],b); H[2]=ADD(H[2],c); H[3]=ADD(H[3],d); H[4]=ADD(H[4],e); }<!--#rem CA(d, di, s, si, l) CopyArray (Destination, Destination Index, Source, Source Index, Length) --> function CA(d,di,s,si,L){ for(i=0;i<L;i++){ d[di+i]=s[si+i]; } }<!--#rem UD(I,L) Update (Input, Length) SHA1 block update operation. Continues an SHA1 message-digest operation, processing another message block, and updating the context. --> function UD(I,L){ var i=0; TL+=L; if(BL){ if(64-BL>L){ i=L; }else{ i=64-BL; } CA(B,BL,I,0,i); BL+=i; if(BL<64){ return; } TF(B); BL=0; } while(L-i>=64){ CA(B,0,I,i,64); i+=64; TF(B); } CA(B,0,I,i,L-i); BL=L-i; }<!--#rem F() Final () SHA1 finalization. Ends an SHA1 message-digest operation, writing the the message digest and zeroizing the context. --> function F(){ var D=[]; var R=""; B[BL++]=0x80; if(BL<56){ CA(B,BL,PD,0,59-BL); }else{ if(BL<64){ CA(B,BL,PD,0,64-BL); } TF(B); CA(B,0,PD,0,58); } B[59]=AND(RS(AND(TL,0xE0000000),29),0xFF); TL=LS(TL,3); B[60]=AND(RS(TL,24),0xFF); B[61]=AND(RS(TL,16),0xFF); B[62]=AND(RS(TL,8),0xFF); B[63]=AND(TL,0xFF); TF(B);<!--#rem Store state in digest--> EC(H,20,D); for(i=0;i<20;i++){ R+=String(HEX1(D[i])); R+=String(HEX2(D[i])); } return R; }<!--#rem SHA1(C,P) SHA1(challenge, password) computes the SHA-1 digest of the given password --> function SHA1(C,P){ var c=[],p=[]; var u; var s,d;<!--#rem Transfer challenge string to challenge byte array as UTF-8--> for (s=0,d=0;s<C.length;s++){ u=C.charCodeAt(s); if(u<0x80){ c[d++]=u; }else if(u<0x0800){ c[d++]=OR(RS(u,6),0xC0); c[d++]=OR(AND(u,0x0000003F),0x80); }else if(u<0x00010000){ c[d++]=OR(RS(u,12),0xE0); c[d++]=OR(AND(RS(u,6),0x0000003F),0x80); c[d++]=OR(AND(u,0x0000003F),0x80); }else if(u<0x00200000){ c[d++]=OR(RS(u,18),0xF0); c[d++]=OR(AND(RS(u,12),0x0000003F),0x80); c[d++]=OR(AND(RS(u,6),0x0000003F),0x80); c[d++]=OR(AND(u,0x0000003F),0x80); } }<!--#rem Transfer password string to password byte array as UTF-8--> for (s=0,d=0;s<P.length;s++){ u=P.charCodeAt(s); if(u<0x80){ p[d++]=u; }else if(u<0x0800){ p[d++]=OR(RS(u,6),0xC0); p[d++]=OR(AND(u,0x0000003F),0x80); }else if(u<0x00010000){ p[d++]=OR(RS(u,12),0xE0); p[d++]=OR(AND(RS(u,6),0x0000003F),0x80); p[d++]=OR(AND(u,0x0000003F),0x80); }else if(u<0x00200000){ p[d++]=OR(RS(u,18),0xF0); p[d++]=OR(AND(RS(u,12),0x0000003F),0x80); p[d++]=OR(AND(RS(u,6),0x0000003F),0x80); p[d++]=OR(AND(u,0x0000003F),0x80); } }<!--#rem Load magic initialization constants.--> H[0]=0x67452301; H[1]=0xEFCDAB89; H[2]=0x98BADCFE; H[3]=0x10325476; H[4]=0xC3D2E1F0; TL=0; BL=0; UD(c,c.length); UD(p,p.length); return F(); }<!--#rem DP(F) DigestPassword(Form) Determines if an SHA1 digest can be computed for the target HTML form, and if so computes it. --> function DP(F){ var p=self.sp; var E=F.elements; if(p==null){ p=E["password"].value.toUpperCase(); }else{ E["savedpw"].value="1"; } if (E["userid"].length==0){ return false; } E["sha1"].value=SHA1(E["challenge"].value,p); E["password"].value=""; return true; } var sp=null; <!--#if expr="$ENABLEAUTHSAVING"--> <!--#rem lc LoadCredentials checks for cookie saved credentials and pre-fills the login form with them --> function lc(){ var C=document.cookie; var t=null; var s=C.indexOf("fc1="); var e; var c; if(s!=-1){ var D=new Date(); D.setTime(D.getTime() + 7776000000); s+=4; e=C.indexOf(';',s); if(e==-1){ e=C.length; } t=C.substring(s,e); if(t.length){ document.cookie="fc1="+t+";path=/;expires="+D.toGMTString(); document.forms["LOGINFORM"].elements["userid"].value=du(t); s=C.indexOf("fc2="); if(s!=-1){ s+=4; e=C.indexOf(';',s); if(e==-1){ e=C.length; } t=C.substring(s,e); if(t.length){ document.cookie="fc2="+t+";path=/;expires="+D.toGMTString(); self.sp=t; document.forms["LOGINFORM"].elements["password"].value="**********"; } } } } }<!--#rem sc SaveCredentials Saves the current contents of the form in a cookie. May pop up a warning dialog if attempt to save pw. --> function sc(F){ var u=F.elements["userid"].value; var p=F.elements["password"].value; if(sp==null&&u.length){ var D=new Date(); D.setTime(D.getTime() + 7776000000); if(p.length){<!--#if expr="<X-FC-FIELD LANG.7539.1 LENGTH>"--> if(confirm("<X-FC-FIELD LANG.7539.1 STRING>")){<!--#else--> if(1){<!--#endif--> document.cookie="fc1="+eu(u)+";path=/;expires="+D.toGMTString(); document.cookie="fc2="+SHA1(u.toUpperCase(),p.toUpperCase())+";path=/;expires="+D.toGMTString(); } }else{ document.cookie="fc1="+eu(u)+";path=/;expires="+D.toGMTString(); document.cookie="fc2=;path=/;expires="+D.toGMTString(); } } }<!--#rem cc ClearCredentials Clears any cookie saved credentials --> function cc(F){ var D=new Date(); D.setTime(D.getTime() + 7776000000); F.elements["userid"].value=""; F.elements["password"].value=""; document.cookie="fc1=;path=/;expires="+D.toGMTString(); document.cookie="fc2=;path=/;expires="+D.toGMTString(); }<!--#rem eu EncodeUserID Extremely simple scramble algorithm to provide minimal obfuscation for saved userid cookies. Note that this is effectively security by obscurity and will only serve to discourage rank amateurs. --> function eu(p){ var pa=[],sa=[]; var oa=""; var s="<X-FC-SERVER NAME>"; var i=0; var cs=0; for(i=0;i<13;i++){ sa[i]=s.charCodeAt(i%s.length); if(cs==0){ sa[i]=sa[i]%256; } } pa[0]=p.length; for(i=0;i<p.length;i++) { pa[i+1]=p.charCodeAt(i); if(pa[i+1]>255){ cs=1; } } for(i=p.length;i<13;i++){ pa[i+1]=Math.floor(Math.random()(cs==1?65535:255)); } for(i=0;i<13;i++){ if(i%2){ pa[i]=pa[i]+sa[i]; if(cs){ pa[i]=pa[i]%65536; }else{ pa[i]=pa[i]%256; } }else{ pa[i]=pa[i]-sa[i]; if(pa[i]<0 && cs){ pa[i]+=65536; }else if(pa[i]<0){ pa[i]+=256; } } } if(cs){ for(i=0;i<13;i++){ oa+=HD.charAt(AND(RS(AND(pa[(i+2)%13],0x00F0),4),0x000F)); } for(i=0;i<13;i++){ oa+=HD.charAt(AND(RS(AND(pa[(i+11)%13],0xF000),12),0x000F)); } for(i=0;i<13;i++){ oa+=HD.charAt(AND(RS(AND(pa[(i+5)%13],0x0F00),8),0x000F)); } for(i=0;i<13;i++){ oa+=HD.charAt(AND(pa[(i+1)%13],0x000F)); } }else{ for(i=0;i<13;i++){ oa+=HD.charAt(AND(pa[(i+7)%13],0x0F)); } for(i=0;i<13;i++){ oa+=HD.charAt(AND(RS(AND(pa[(i+4)%13],0xF0),4),0x0F)); } } return oa; } <!--#rem du DecodeUserID Decodes a userID encoded using EncodeUserID --> function du(e){ var pa=[],sa=[]; var cs=(e.length==52?1:0); var s="<X-FC-SERVER NAME>"; var i=0; var p=""; for(i=0;i<13;i++){ sa[i]=s.charCodeAt(i%s.length); if(cs==0){ sa[i]=sa[i]%256; } } for(i=0;i<13;i++){ pa[i]=0; } if(cs){ for(i=0;i<13;i++){ pa[(i+2)%13]+=(0x0010parseInt(e.charAt(i),16)); } for(i=13;i<26;i++){ pa[(i+11)%13]+=(0x1000parseInt(e.charAt(i),16)); } for(i=26;i<39;i++){ pa[(i+5)%13]+=(0x0100parseInt(e.charAt(i),16)); } for(i=39;i<52;i++){ pa[(i+1)%13]+=(parseInt(e.charAt(i),16)); } }else{ for(i=0;i<13;i++){ pa[(i+7)%13]+=(parseInt(e.charAt(i),16)); } for(i=13;i<26;i++){ pa[(i+4)%13]+=(0x10parseInt(e.charAt(i),16)); } } for(i=0;i<13;i++){ pa[i]+=(cs==1?65536:256); } for(i=0;i<13;i++){ if(i%2){ pa[i]=pa[i]-sa[i]; }else{ pa[i]=pa[i]+sa[i]; } } for(i=0;i<13;i++){ pa[i]=pa[i]%(cs?65536:256); } for(i=1;i<(pa[0]+1);i++){ p+=String.fromCharCode(pa[i]); } return p; } <!--#endif--> <X-FC-WHITESPACE RETAIN> //--> </script><!--#endif--> </head> <body dir="<X-FC-FIELD LANG.7500 DEFAULT="ltr" STRING>" bgcolor="<X-FC-FIELD PREFS.5601 DEFAULT=LANG.49.5601.11 RGB>" onload="<!--#if expr="$ENABLEAUTHSAVING"-->lc();<!--#endif-->self.focus(); document.forms['LOGINFORM'].elements['userid'].focus();document.forms['LOGINFORM'].elements['userid'].select();"> <X-FC-WHITESPACE STRIP> <form name="LOGINFORM" action="/Login" method="post" enctype="application/x-www-form-urlencoded"<!--#if expr="$USEDIGESTLOGIN"--> onsubmit="return DP(this);"<!--#endif-->> <input type="hidden" name="charset" value="<X-FC-ITEM DATA[Charset]>"/> <input type="hidden" name="origurl" value="<!--#echo expr="@mlescape($SRVR_ERR_RESOURCE)"--><!--#if expr="@length($SRVR_ERR_RESOURCE_ARGS)"-->?<!--#echo expr="@mlescape($SRVR_ERR_RESOURCE_ARGS)"--><!--#endif-->"/> <!--#if expr="$USEDIGESTLOGIN"--> <input type="hidden" name="challenge" value="<!--#echo var="HTTP_LOGIN_CHALLENGE"-->"/> <input type="hidden" name="sha1" value=""/> <!--#endif--> <table width="100%" bgcolor="<X-FC-FIELD PREFS.5601 DEFAULT=LANG.49.5601.11 RGB>" cellpadding="2" cellspacing="0" border="0" summary=""> <tr> <td bgcolor="<X-FC-FIELD PREFS.5603 DEFAULT=LANG.49.5603.11 RGB>" colspan="3" style="height:1px;"></td> </tr> <tr> <td bgcolor="<X-FC-FIELD PREFS.5603 DEFAULT=LANG.49.5603.11 RGB>" colspan="3"><table cellpadding="0" cellspacing="0" border="0" summary=""> <tr> <td> </td> <td><img src="/Icons/11397" alt="" title="<X-FC-FIELD LANG.7548.1 STRING>" width="<X-FC-RESOURCE ICON.11397 WIDTH>" height="<X-FC-RESOURCE ICON.11397 HEIGHT>" border="0"/></td> <td> </td> <td class="title" nowrap="nowrap"><X-FC-FIELD LANG.7548.1 STRING></td> </tr> </table></td> </tr> <tr> <td bgcolor="<X-FC-FIELD PREFS.5603 DEFAULT=LANG.49.5603.11 RGB>" colspan="3" style="height:1px;"></td> </tr> <tr> <td colspan="3" style="height:3px;"></td> </tr> <tr> <td class="gt"> </td> <td class="gt" align="left" colspan="2"><!--#set var="SERVERSTR" value="<X-FC-FIELD LANG.7548.2 STRING>"--><!--#set var="SERVERPREFIX" expr="@split($SERVERSTR,'^1')"--><!--#echo var="SERVERPREFIX"--><!--#if expr="<X-FC-FIELD SITEPREF.5523 DEFAULT=LANG.49.5523.9 LENGTH>"--><X-FC-FIELD SITEPREF.5523 DEFAULT=LANG.49.5523.9 STRING><!--#else--><X-FC-SERVER NAME><!--#endif--><!--#echo var="SERVERSTR"--> <X-FC-FIELD LANG.7548.3 STRING></td> </tr> <tr> <td colspan="3" style="height:5px;"></td> </tr> <tr> <td class="gt"> </td> <td><img src="/Icons/24079" alt="" title="<X-FC-FIELD LANG.138.0.25 STRING>" width="<X-FC-RESOURCE ICON.24079 WIDTH>" height="<X-FC-RESOURCE ICON.24079 HEIGHT>" border="0"/></td> <td width="100%"><table cellpadding="2" cellspacing="0" border="0" summary=""> <tr> <td align="right" class="gt" nowrap="nowrap"><label for="f1"><X-FC-FIELD LANG.138.1101.9 STRING></label></td> <td><input class="forms" id="f1" type="text" name="userid" size="40" maxlength="15" value="" tabindex="1"/></td> </tr> <tr> <td align="right" class="gt" nowrap="nowrap"><label for="f2"><X-FC-FIELD LANG.138.1102.9 STRING></label></td> <td><!--#if expr="$USETICKETAUTH"--><input class="forms" type="password" id="f2" name="ticket" size="40" maxlength="12" value="" tabindex="2" onfocus="this.select();"/><!--#else--><input class="forms" type="password" id="f2" name="password" size="40" maxlength="12" value="" tabindex="2" onfocus="this.select();" onchange="sp=null;"/><!--#endif--></td> </tr> <tr> <td colspan="2" style="height:1px;"></td> </tr> <tr> <td class="gt"> </td> <td nowrap="nowrap"><input class="button" type="submit" name="login" value=" <X-FC-FIELD LANG.7548.4 STRING> "/> <input class="button" type="button" onclick="self.close();" value=" <X-FC-FIELD LANG.2.4 STRING> "/></td> </tr> </table></td> </tr> <tr> <td colspan="3" style="height:1px;"></td> </tr> </table> </form> <X-FC-WHITESPACE RETAIN><!--#if expr="$SRVR_ERR_FCPCODE"--> <script type="text/javascript"> <!-- alert("<X-FC-FIELD LANG.ERR.`$SRVR_ERR_FCPCODE` ESCAPED> [<!--#echo var="SRVR_ERR_FCPCODE"-->]"); //--> </script><!--#endif--> </body> <!--*138 T=<X-FC-REQUEST-TIME>--> </html>