source: trunk/FACT++/www/smartfact/index.php@ 14627

Last change on this file since 14627 was 14400, checked in by tbretz, 12 years ago
Return the user name if logged in; for the tim ebeing changed from --start to --batch
File size: 6.0 KB
Line 
1<?PHP
2
3require_once("config.php");
4
5function escape($msg)
6{
7 $msg = str_replace("\\", "\\\\", $msg);
8 $msg = str_replace('\"', '\"', $msg);
9 return $msg;
10}
11
12function login()
13{
14 global $ldaphost;
15 global $baseDN;
16 global $groupDN;
17
18 $username = $_SERVER['PHP_AUTH_USER'];
19 $password = $_SERVER['PHP_AUTH_PW'];
20
21 $con = @ldap_connect($ldaphost);
22 if (!$con)
23 return "ldap_connect failed to ".$ldaphost;
24
25 //------------------ Look for user common name
26 $attributes = array('cn', 'mail');
27 $dn = 'ou=People,'.$baseDN;
28 $filter = '(uid='.$username.')';
29
30 $sr = @ldap_search($con, $dn, $filter, $attributes);
31 if (!$sr)
32 return "ldap_search failed for dn=".$dn.": ".ldap_error($con);
33
34 $srData = @ldap_get_entries($con, $sr);
35 if ($srData["count"]==0)
36 return "No results returned by ldap_get_entries for dn=".$dn.".";
37
38 $email =$srData[0]['mail'][0];
39 $userCommonName=$srData[0]['cn'][0];
40 $userDN =$srData[0]['dn'];
41
42 //------------------ Authenticate user
43 if (!@ldap_bind($con, $userDN, $password))
44 return "ldap_bind failed: ".ldap_error($con);
45
46 //------------------ Check if the user is in FACT ldap group
47 $attributes= array("member");
48 $filter= '(objectClass=*)';
49
50 // Get all members of the group.
51 $sr = @ldap_read($con, $groupDN, $filter, $attributes);
52 if (!$sr)
53 return "ldap_read failed for dn=".$groupDN.": ".ldap_error($con);
54
55 // retrieve the corresponding data
56 $srData = @ldap_get_entries($con, $sr);
57 if ($srData["count"]==0)
58 return "No results returned by ldap_get_entries for dn=".$dn.".";
59
60 @ldap_unbind($con);
61
62 $found = false;
63 foreach ($srData[0]['member'] as $member)
64 if (strpos($member, "cn=".$userCommonName.",")===0)
65 return "";
66
67 return "Sorry, your credentials don't match!";
68}
69// --------------------------------------------------------------------
70
71if (isset($_GET['load']))
72{
73 require_once('log/Browscap.php');
74
75 $d = date("Y/m");
76
77 $path = "log/".$d;
78
79 if (!file_exists("log/cache"))
80 mkdir("log/cache", 0777, true);
81
82 if (!file_exists($path))
83 mkdir($path, 0777, true);
84
85 $addr = isset($_SERVER['REMOTE_ADDR']) ? $_SERVER['REMOTE_ADDR'] : "";
86 $user = isset($_SERVER['PHP_AUTH_USER']) ? $_SERVER['PHP_AUTH_USER'] : "";
87 $dns = gethostbyaddr($addr);
88
89 $bcap = new phpbrowscap\Browscap('log/cache');
90 $info = $bcap->getBrowser();
91
92 $file = fopen($path."/smartfact.log", "a");
93 fwrite($file,
94 date("Y-m-d H:i:s\t").$addr.
95 "\t".$info->Platform.
96 "\t".$info->Browser.
97 "\t".$info->Version.
98 "\t".($info->isMobileDevice?"mobile":"").
99 "\t".$user.
100 "\t".$dns."\n");
101 fclose($file);
102
103 // http://ip-address-lookup-v4.com/ip/92.205.118.219
104
105 print($user);
106
107 return;
108}
109
110if (isset($_GET['logout']))
111{
112 if (!isset($_SERVER['PHP_AUTH_USER']) || !isset($_SERVER['PHP_AUTH_PW']))
113 return;
114
115 return header('HTTP/1.0 401 Successfull logout!');
116}
117
118// --------------------------------------------------------------------
119
120if (!isset($_GET['start']) && !isset($_GET['stop']))
121 return header('HTTP/1.0 400 Command not supported');
122
123// --------------------------------------------------------------------
124
125if (!isset($_SERVER['PHP_AUTH_USER']) || !isset($_SERVER['PHP_AUTH_PW']))
126{
127 header('WWW-Authenticate: Basic realm="SmartFACT++"');
128 header('HTTP/1.0 401 Unauthorized');
129 return;
130}
131
132$rc = login();
133if ($rc!="")
134 return header('HTTP/1.0 401 '.$rc);
135
136// --------------------------------------------------------------------
137
138$out = array();
139
140if (isset($_GET['stop']))
141 $str = exec($path."/dimctrl --user '".$_SERVER['PHP_AUTH_USER']."' --stop", $out, $rc);
142
143if (isset($_GET['start']))
144{
145 // Filename
146 $script = '"scripts/'.$_GET['start'].'"';
147
148 unset($_GET['start']);
149
150 /*
151 $args = "";
152 foreach ($_GET as $key => $value)
153 $args .= " --arg:".$key."=".$value;
154 $str = exec($path."/dimctrl --exec ".$args, $out, $rc);
155 */
156
157 // Label
158 if (isset($_GET['label']))
159 {
160 if ($_GET['label']>=0)
161 $script .= ":".$_GET['label'];
162 unset($_GET['label']);
163 }
164
165 $msg = "";
166 if (isset($_GET['msg']))
167 {
168 if ($_GET['msg']>=0)
169 $msg = $_GET['msg'];
170 unset($_GET['msg']);
171 }
172
173 // Arguments
174 if (!empty($script) && empty($msg))
175 {
176 //foreach ($_GET as $key => $value)
177 // $args .= ' --arg:"'.$key.'='.escape($value).'"';
178
179 $args = "";
180 foreach ($_GET as $key => $value)
181 $args .= ' "'.$key.'"="'.$value.'"';
182
183 // $args = "filename":label --arg:"key1=value" --arg:"key2=value"
184 $cmd = $path.'/dimctrl --user "'.$_SERVER['PHP_AUTH_USER'].'" --batch '.escapeshellarg($script.$args);
185
186 // Execute
187 $str = exec($cmd, $out, $rc);
188
189 // Logging (mainly for debugging)
190 $d = date("Y/m");
191 $path = "log/".$d;
192 if (!file_exists($path))
193 mkdir($path, 0777, true);
194 $file = fopen($path."/exec.log", "a");
195 fwrite($file, $cmd."\n".$str."\n\n");
196 fclose($file);
197 }
198
199 if (!empty($msg))
200 {
201 $msg = escape($msg);
202
203 // $args = "filename":label --arg:"key1=value" --arg:"key2=value"
204 $cmd = $path.'/dimctrl --user "'.$_SERVER['PHP_AUTH_USER'].'" --msg '.escapeshellarg($msg);
205
206 // Execute
207 $str = exec($cmd, $out, $rc);
208
209 // Logging (mainly for debugging)
210 $d = date("Y/m");
211 $path = "log/".$d;
212 if (!file_exists($path))
213 mkdir($path, 0777, true);
214 $file = fopen($path."/exec.log", "a");
215 fwrite($file, $cmd."\n".$str."\n\n");
216 fclose($file);
217 }
218
219 // -------------------------------------------
220}
221
222if ($rc!=1 && $rc!=2)
223 return header('HTTP/1.0 500 Execution failed [rc='.$rc."]");
224
225print($_SERVER['PHP_AUTH_USER']."\n".$rc);
226
227if (isset($_GET['debug']))
228{
229 print("\n");
230 print_r($out);
231}
232
233?>
Note: See TracBrowser for help on using the repository browser.