bug 1276: Allow more name variants according to PracticeOnNames when signing a PGP key
[cacert-devel.git] / pages / account / 3.php
1 <? /*
2 LibreSSL - CAcert web application
3 Copyright (C) 2004-2008 CAcert Inc.
4
5 This program is free software; you can redistribute it and/or modify
6 it under the terms of the GNU General Public License as published by
7 the Free Software Foundation; version 2 of the License.
8
9 This program is distributed in the hope that it will be useful,
10 but WITHOUT ANY WARRANTY; without even the implied warranty of
11 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 GNU General Public License for more details.
13
14 You should have received a copy of the GNU General Public License
15 along with this program; if not, write to the Free Software
16 Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
17 */
18 include_once("../includes/shutdown.php");
19 ?>
20 <h3><?=_("CAcert Certificate Acceptable Use Policy")?></h3>
21 <p><?=_("Once you decide to subscribe for an SSL Server Certificate you will need to complete this agreement. Please read it carefully. Your Certificate Request can only be processed with your acceptance and understanding of this agreement.")?></p>
22
23 <p><?=_("I hereby represent that I am fully authorized by the owner of the information contained in the CSR sent to CAcert Inc. to apply for an Digital Certificate for secure and authenticated electronic transactions. I understand that a digital certificate serves to identify the Subscriber for the purposes of electronic communication and that the management of the private keys associated with such certificates is the responsibility of the subscriber's technical staff and/or contractors.")?></p>
24
25 <p><?=_("CAcert Inc.'s public certification services are governed by a CPS as amended from time to time which is incorporated into this Agreement by reference. The Subscriber will use the SSL Server Certificate in accordance with CAcert Inc.'s CPS and supporting documentation published at")?> <a href="http://www.cacert.org/cps.php">http://www.cacert.org/cps.php</a></p>
26
27 <p><?=_("If the Subscriber's name and/or domain name registration change the subscriber will immediately inform CAcert Inc. who shall revoke the digital certificate. When the Digital Certificate expires or is revoked the company will permanently remove the certificate from the server on which it is installed and will not use it for any purpose thereafter. The person responsible for key management and security is fully authorized to install and utilize the certificate to represent this organization's electronic presence.")?></p>
28
29 <form method="post" action="account.php">
30 <table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper">
31 <tr>
32 <td colspan="2" class="title"><?=_("New Client Certificate")?></td>
33 </tr>
34 <tr>
35 <td class="DataTD"><?=_("Add")?></td>
36 <td class="DataTD"><?=_("Address")?></td>
37
38 <?
39 $query = "select * from `email` where `memid`='".intval($_SESSION['profile']['id'])."' and `deleted`=0 and `hash`=''";
40 $res = mysql_query($query);
41 while($row = mysql_fetch_assoc($res))
42 { ?>
43 <tr>
44 <td class="DataTD"><input type="checkbox" name="addid[]" value="<?=intval($row['id'])?>"></td>
45 <td class="DataTD"><?=sanitizeHTML($row['email'])?></td>
46 </tr>
47 <? }
48 if($_SESSION['profile']['points'] >= 50)
49 {
50 $fname = $_SESSION['profile']['fname'];
51 $mname = $_SESSION['profile']['mname'];
52 $lname = $_SESSION['profile']['lname'];
53 $suffix = $_SESSION['profile']['suffix'];
54 ?>
55 <td class="DataTD" colspan="2" align="left">
56 <input type="radio" name="rootcert" value="1" checked /> <?=_("Sign by class 1 root certificate")?><br />
57 <input type="radio" name="rootcert" value="2" /> <?=_("Sign by class 3 root certificate")?><br />
58 <?=str_replace("\n", "<br />\n", wordwrap(_("Please note: The class 3 root certificate needs to be imported into your email program as well as the class 1 root certificate so your email program can build a full trust path chain. Until we are included in browsers this might not be a desirable option for most people"), 125))?>
59 </td>
60 </tr>
61 <tr>
62 <td class="DataTD" colspan="2" align="left">
63 <input type="radio" name="incname" value="0" checked /> <?=_("No Name")?><br />
64 <? if($fname && $lname) { ?><input type="radio" name="incname" value="1" /> <?=_("Include")?> '<?=$fname." ".$lname?>'<br /><? } ?>
65 <? if($fname && $mname && $lname) { ?><input type="radio" name="incname" value="2" /> <?=_("Include")?> '<?=$fname." ".$mname." ".$lname?>'<br /><? } ?>
66 <? if($fname && $lname && $suffix) { ?><input type="radio" name="incname" value="3" /> <?=_("Include")?> '<?=$fname." ".$lname." ".$suffix?>'<br /><? } ?>
67 <? if($fname && $mname && $lname && $suffix) { ?><input type="radio" name="incname" value="4" /> <?=_("Include")?> '<?=$fname." ".$mname." ".$lname." ".$suffix?>'<br /><? } ?>
68 </td>
69 </tr>
70 <? } ?>
71 <? if($_SESSION['profile']['points'] >= 100 && $_SESSION['profile']['codesign'] > 0) { ?>
72 <tr>
73 <td class="DataTD">
74 <input type="checkbox" name="codesign" value="1" />
75 </td>
76 <td class="DataTD" align="left">
77 <?=_("Code Signing")?><br />
78 <?=_("Please Note: By ticking this box you will automatically have your name included in any certificates.")?>
79 </td>
80 </tr>
81 <? } ?>
82
83 <tr>
84 <td class="DataTD">
85 <input type="checkbox" name="login" value="1" checked="checked" />
86 </td>
87 <td class="DataTD"> <?=_("Enable certificate login with this certificate")?><br />
88 <?=_("By allowing certificate login, this certificate can be used to login into this account at https://secure.cacert.org/ .")?><br/>
89 </td>
90 </tr>
91 <tr>
92 <td class="DataTD" colspan="2" align="left">
93 <?=_("Optional comment, only used in the certificate overview")?><br />
94 <input type="text" name="description" maxlength="100" size="100" />
95 </td>
96 </tr>
97
98 <tr name="expertoff" style="display:none">
99 <td class="DataTD">
100 <input type="checkbox" name="expertbox" onchange="showExpert(this.checked)" />
101 </td>
102 <td class="DataTD">
103 <?=_("Show advanced options")?>
104 </td>
105 </tr>
106
107 <tr name="expert">
108 <td class="DataTD" colspan="2" align="left">
109 <input type="radio" name="SSO" value="0" checked /> <?=_("No Single Sign On ID")?><br />
110 <input type="radio" name="SSO" value="1" /> <?=_("Add Single Sign On ID Information")?><br />
111 <?=str_replace("\n", "<br>\n", wordwrap(_("By adding Single Sign On (SSO) ID information to your certificates this could be used to track you, you can also issue certificates with no email addresses that are useful only for Authentication. Please see a more detailed description on our WIKI about it."), 125))?>
112 <a href="http://wiki.cacert.org/wiki/SSO"><?=_("SSO WIKI Entry")?></a>
113 </td>
114 </tr>
115
116
117 <tr name="expert">
118 <td class="DataTD" colspan="2"><?=_("Optional Client CSR, no information on the certificate will be used")?></td>
119 </tr>
120 <tr name="expert">
121 <td class="DataTD" colspan="2"><textarea name="optionalCSR" cols="80" rows="5"></textarea></td>
122 </tr>
123 <tr>
124 <td class="DataTD">
125 <input type="checkbox" name="CCA" />
126 </td>
127 <td class="DataTD" align="left">
128 <strong><?=sprintf(_("I accept the CAcert Community Agreement (%s)."),"<a href='/policy/CAcertCommunityAgreement.html'>CCA</a>")?></strong><br />
129 <?=_("Please Note: You need to accept the CCA to proceed.")?>
130 </td>
131 </tr>
132 <tr>
133 <td class="DataTD" colspan="2"><input type="submit" name="process" value="<?=_("Next")?>" /></td>
134 </tr>
135 </table>
136 <input type="hidden" name="oldid" value="<?=$id?>" />
137 </form>
138
139 <script language="javascript">
140 function showExpert(a)
141 {
142 b=document.getElementsByName("expert");
143 for(i=0;b.length>i;i++)
144 {
145 if(!a) {b[i].setAttribute("style","display:none"); }
146 else {b[i].removeAttribute("style");}
147 }
148 b=document.getElementsByName("expertoff");
149 for(i=0;b.length>i;i++)
150 {
151 b[i].removeAttribute("style");
152 }
153
154 }
155 showExpert(false);
156 </script>
157