Context Navigation

source: branches/samba-3.3.x/source/web/swat.c@ 701

Visit:

Last change on this file since 701 was 614, checked in by Herwig Bauernfeind, 14 years ago
Update Samba 3.3 to 3.3.16 (security update)
File size: 49.7 KB

Line
1	/*
2	Unix SMB/CIFS implementation.
3	Samba Web Administration Tool
4	Version 3.0.0
5	Copyright (C) Andrew Tridgell 1997-2002
6	Copyright (C) John H Terpstra 2002
7
8	This program is free software; you can redistribute it and/or modify
9	it under the terms of the GNU General Public License as published by
10	the Free Software Foundation; either version 3 of the License, or
11	(at your option) any later version.
12
13	This program is distributed in the hope that it will be useful,
14	but WITHOUT ANY WARRANTY; without even the implied warranty of
15	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16	GNU General Public License for more details.
17
18	You should have received a copy of the GNU General Public License
19	along with this program. If not, see <http://www.gnu.org/licenses/>.
20	*/
21
22	/**
23	* @defgroup swat SWAT - Samba Web Administration Tool
24	* @{
25	* @file swat.c
26	*
27	* @brief Samba Web Administration Tool.
28	**/
29
30	#include "includes.h"
31	#include "web/swat_proto.h"
32
33	static int demo_mode = False;
34	static int passwd_only = False;
35	static bool have_write_access = False;
36	static bool have_read_access = False;
37	static int iNumNonAutoPrintServices = 0;
38
39	/*
40	* Password Management Globals
41	*/
42	#define SWAT_USER "username"
43	#define OLD_PSWD "old_passwd"
44	#define NEW_PSWD "new_passwd"
45	#define NEW2_PSWD "new2_passwd"
46	#define CHG_S_PASSWD_FLAG "chg_s_passwd_flag"
47	#define CHG_R_PASSWD_FLAG "chg_r_passwd_flag"
48	#define ADD_USER_FLAG "add_user_flag"
49	#define DELETE_USER_FLAG "delete_user_flag"
50	#define DISABLE_USER_FLAG "disable_user_flag"
51	#define ENABLE_USER_FLAG "enable_user_flag"
52	#define RHOST "remote_host"
53	#define XSRF_TOKEN "xsrf"
54	#define XSRF_TIME "xsrf_time"
55	#define XSRF_TIMEOUT 300
56
57	#define _(x) lang_msg_rotate(talloc_tos(),x)
58
59	/****************************************************************************
60	****************************************************************************/
61	static int enum_index(int value, const struct enum_list *enumlist)
62	{
63	int i;
64	for (i=0;enumlist[i].name;i++)
65	if (value == enumlist[i].value) break;
66	return(i);
67	}
68
69	static char fix_backslash(const char str)
70	{
71	static char newstring[1024];
72	char *p = newstring;
73
74	while (*str) {
75	if (str == '\\') {p++ = '\\';*p++ = '\\';}
76	else p++ = str;
77	++str;
78	}
79	*p = '\0';
80	return newstring;
81	}
82
83	static const char fix_quotes(TALLOC_CTX ctx, const char *str)
84	{
85	char *newstring = NULL;
86	char *p = NULL;
87	size_t newstring_len;
88	int quote_len = strlen(""");
89
90	/* Count the number of quotes. */
91	newstring_len = 1;
92	p = (char *) str;
93	while (*p) {
94	if ( *p == '\"') {
95	newstring_len += quote_len;
96	} else {
97	newstring_len++;
98	}
99	++p;
100	}
101	newstring = TALLOC_ARRAY(ctx, char, newstring_len);
102	if (!newstring) {
103	return "";
104	}
105	for (p = newstring; *str; str++) {
106	if ( *str == '\"') {
107	strncpy( p, """, quote_len);
108	p += quote_len;
109	} else {
110	p++ = str;
111	}
112	}
113	*p = '\0';
114	return newstring;
115	}
116
117	static char stripspaceupper(const char str)
118	{
119	static char newstring[1024];
120	char *p = newstring;
121
122	while (*str) {
123	if (str != ' ') p++ = toupper_ascii(*str);
124	++str;
125	}
126	*p = '\0';
127	return newstring;
128	}
129
130	static char make_parm_name(const char label)
131	{
132	static char parmname[1024];
133	char *p = parmname;
134
135	while (*label) {
136	if (label == ' ') p++ = '_';
137	else p++ = label;
138	++label;
139	}
140	*p = '\0';
141	return parmname;
142	}
143
144	void get_xsrf_token(const char username, const char pass,
145	const char *formname, time_t xsrf_time, char token_str[33])
146	{
147	struct MD5Context md5_ctx;
148	uint8_t token[16];
149	int i;
150
151	token_str[0] = '\0';
152	ZERO_STRUCT(md5_ctx);
153	MD5Init(&md5_ctx);
154
155	MD5Update(&md5_ctx, (uint8_t *)formname, strlen(formname));
156	MD5Update(&md5_ctx, (uint8_t *)&xsrf_time, sizeof(time_t));
157	if (username != NULL) {
158	MD5Update(&md5_ctx, (uint8_t *)username, strlen(username));
159	}
160	if (pass != NULL) {
161	MD5Update(&md5_ctx, (uint8_t *)pass, strlen(pass));
162	}
163
164	MD5Final(token, &md5_ctx);
165
166	for(i = 0; i < sizeof(token); i++) {
167	char tmp[3];
168
169	snprintf(tmp, sizeof(tmp), "%02x", token[i]);
170	strncat(token_str, tmp, sizeof(tmp));
171	}
172	}
173
174	void print_xsrf_token(const char username, const char pass,
175	const char *formname)
176	{
177	char token[33];
178	time_t xsrf_time = time(NULL);
179
180	get_xsrf_token(username, pass, formname, xsrf_time, token);
181	printf("<input type=\"hidden\" name=\"%s\" value=\"%s\">\n",
182	XSRF_TOKEN, token);
183	printf("<input type=\"hidden\" name=\"%s\" value=\"%lld\">\n",
184	XSRF_TIME, (long long int)xsrf_time);
185	}
186
187	bool verify_xsrf_token(const char *formname)
188	{
189	char expected[33];
190	const char *username = cgi_user_name();
191	const char *pass = cgi_user_pass();
192	const char *token = cgi_variable_nonull(XSRF_TOKEN);
193	const char *time_str = cgi_variable_nonull(XSRF_TIME);
194	time_t xsrf_time = 0;
195	time_t now = time(NULL);
196
197	if (sizeof(time_t) == sizeof(int)) {
198	xsrf_time = atoi(time_str);
199	} else if (sizeof(time_t) == sizeof(long)) {
200	xsrf_time = atol(time_str);
201	} else if (sizeof(time_t) == sizeof(long long)) {
202	xsrf_time = atoll(time_str);
203	}
204
205	if (abs(now - xsrf_time) > XSRF_TIMEOUT) {
206	return false;
207	}
208
209	get_xsrf_token(username, pass, formname, xsrf_time, expected);
210	return (strncmp(expected, token, sizeof(expected)) == 0);
211	}
212
213
214	/****************************************************************************
215	include a lump of html in a page
216	****************************************************************************/
217	static int include_html(const char *fname)
218	{
219	int fd;
220	char buf[1024];
221	int ret;
222
223	fd = web_open(fname, O_RDONLY, 0);
224
225	if (fd == -1) {
226	printf(_("ERROR: Can't open %s"), fname);
227	printf("\n");
228	return 0;
229	}
230
231	while ((ret = read(fd, buf, sizeof(buf))) > 0) {
232	if (write(1, buf, ret) == -1) {
233	break;
234	}
235	}
236
237	close(fd);
238	return 1;
239	}
240
241	/****************************************************************************
242	start the page with standard stuff
243	****************************************************************************/
244	static void print_header(void)
245	{
246	if (!cgi_waspost()) {
247	printf("Expires: 0\r\n");
248	}
249	printf("Content-type: text/html\r\n\r\n");
250
251	if (!include_html("include/header.html")) {
252	printf("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 3.2//EN\">\n");
253	printf("<HTML>\n<HEAD>\n<TITLE>Samba Web Administration Tool</TITLE>\n</HEAD>\n<BODY background=\"/swat/images/background.jpg\">\n\n");
254	}
255	}
256
257	/* *******************************************************************
258	show parameter label with translated name in the following form
259	because showing original and translated label in one line looks
260	too long, and showing translated label only is unusable for
261	heavy users.
262	-------------------------------
263	HELP security [combo box][button]
264	SECURITY
265	-------------------------------
266	(capital words are translated by gettext.)
267	if no translation is available, then same form as original is
268	used.
269	"i18n_translated_parm" class is used to change the color of the
270	translated parameter with CSS.
271	**************************************************************** */
272	static const char get_parm_translated(TALLOC_CTX ctx,
273	const char* pAnchor, const char* pHelp, const char* pLabel)
274	{
275	const char *pTranslated = _(pLabel);
276	char *output;
277	if(strcmp(pLabel, pTranslated) != 0) {
278	output = talloc_asprintf(ctx,
279	"<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>       %s <br><span class=\"i18n_translated_parm\">%s</span>",
280	pAnchor, pHelp, pLabel, pTranslated);
281	return output;
282	}
283	output = talloc_asprintf(ctx,
284	"<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>       %s",
285	pAnchor, pHelp, pLabel);
286	return output;
287	}
288	/****************************************************************************
289	finish off the page
290	****************************************************************************/
291	static void print_footer(void)
292	{
293	if (!include_html("include/footer.html")) {
294	printf("\n</BODY>\n</HTML>\n");
295	}
296	}
297
298	/****************************************************************************
299	display one editable parameter in a form
300	****************************************************************************/
301	static void show_parameter(int snum, struct parm_struct *parm)
302	{
303	int i;
304	void *ptr = parm->ptr;
305	char utf8_s1, utf8_s2;
306	size_t converted_size;
307	TALLOC_CTX *ctx = talloc_stackframe();
308
309	if (parm->p_class == P_LOCAL && snum >= 0) {
310	ptr = lp_local_ptr(snum, ptr);
311	}
312
313	printf("<tr><td>%s</td><td>", get_parm_translated(ctx,
314	stripspaceupper(parm->label), _("Help"), parm->label));
315	switch (parm->type) {
316	case P_CHAR:
317	printf("<input type=text size=2 name=\"parm_%s\" value=\"%c\">",
318	make_parm_name(parm->label), (char )ptr);
319	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%c\'\">",
320	_("Set Default"), make_parm_name(parm->label),(char)(parm->def.cvalue));
321	break;
322
323	case P_LIST:
324	printf("<input type=text size=40 name=\"parm_%s\" value=\"",
325	make_parm_name(parm->label));
326	if ((char **)ptr && (char *)ptr && (char ***)ptr) {
327	char *list = (char ***)ptr;
328	for (;*list;list++) {
329	/* enclose in HTML encoded quotes if the string contains a space */
330	if ( strchr_m(*list, ' ') ) {
331	push_utf8_allocate(&utf8_s1, *list, &converted_size);
332	push_utf8_allocate(&utf8_s2, ((*(list+1))?", ":""), &converted_size);
333	printf(""%s"%s", utf8_s1, utf8_s2);
334	} else {
335	push_utf8_allocate(&utf8_s1, *list, &converted_size);
336	push_utf8_allocate(&utf8_s2, ((*(list+1))?", ":""), &converted_size);
337	printf("%s%s", utf8_s1, utf8_s2);
338	}
339	SAFE_FREE(utf8_s1);
340	SAFE_FREE(utf8_s2);
341	}
342	}
343	printf("\">");
344	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'",
345	_("Set Default"), make_parm_name(parm->label));
346	if (parm->def.lvalue) {
347	char list = (char )(parm->def.lvalue);
348	for (; *list; list++) {
349	/* enclose in HTML encoded quotes if the string contains a space */
350	if ( strchr_m(*list, ' ') )
351	printf(""%s"%s", list, (((list+1))?", ":""));
352	else
353	printf("%s%s", list, (((list+1))?", ":""));
354	}
355	}
356	printf("\'\">");
357	break;
358
359	case P_STRING:
360	case P_USTRING:
361	push_utf8_allocate(&utf8_s1, (char *)ptr, &converted_size);
362	printf("<input type=text size=40 name=\"parm_%s\" value=\"%s\">",
363	make_parm_name(parm->label), fix_quotes(ctx, utf8_s1));
364	SAFE_FREE(utf8_s1);
365	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%s\'\">",
366	_("Set Default"), make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue)));
367	break;
368
369	case P_BOOL:
370	printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
371	printf("<option %s>Yes", ((bool )ptr)?"selected":"");
372	printf("<option %s>No", ((bool )ptr)?"":"selected");
373	printf("</select>");
374	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
375	_("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?0:1);
376	break;
377
378	case P_BOOLREV:
379	printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
380	printf("<option %s>Yes", ((bool )ptr)?"":"selected");
381	printf("<option %s>No", ((bool )ptr)?"selected":"");
382	printf("</select>");
383	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
384	_("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?1:0);
385	break;
386
387	case P_INTEGER:
388	printf("<input type=text size=8 name=\"parm_%s\" value=\"%d\">", make_parm_name(parm->label), (int )ptr);
389	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%d\'\">",
390	_("Set Default"), make_parm_name(parm->label),(int)(parm->def.ivalue));
391	break;
392
393	case P_OCTAL: {
394	char *o;
395	o = octal_string((int )ptr);
396	printf("<input type=text size=8 name=\"parm_%s\" value=%s>",
397	make_parm_name(parm->label), o);
398	TALLOC_FREE(o);
399	o = octal_string((int)(parm->def.ivalue));
400	printf("<input type=button value=\"%s\" "
401	"onClick=\"swatform.parm_%s.value=\'%s\'\">",
402	_("Set Default"), make_parm_name(parm->label), o);
403	TALLOC_FREE(o);
404	break;
405	}
406
407	case P_ENUM:
408	printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
409	for (i=0;parm->enum_list[i].name;i++) {
410	if (i == 0 \|\| parm->enum_list[i].value != parm->enum_list[i-1].value) {
411	printf("<option %s>%s",((int )ptr)==parm->enum_list[i].value?"selected":"",parm->enum_list[i].name);
412	}
413	}
414	printf("</select>");
415	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
416	_("Set Default"), make_parm_name(parm->label),enum_index((int)(parm->def.ivalue),parm->enum_list));
417	break;
418	case P_SEP:
419	break;
420	}
421	printf("</td></tr>\n");
422	TALLOC_FREE(ctx);
423	}
424
425	/****************************************************************************
426	display a set of parameters for a service
427	****************************************************************************/
428	static void show_parameters(int snum, int allparameters, unsigned int parm_filter, int printers)
429	{
430	int i = 0;
431	struct parm_struct *parm;
432	const char *heading = NULL;
433	const char *last_heading = NULL;
434
435	while ((parm = lp_next_parameter(snum, &i, allparameters))) {
436	if (snum < 0 && parm->p_class == P_LOCAL && !(parm->flags & FLAG_GLOBAL))
437	continue;
438	if (parm->p_class == P_SEPARATOR) {
439	heading = parm->label;
440	continue;
441	}
442	if (parm->flags & FLAG_HIDE) continue;
443	if (snum >= 0) {
444	if (printers & !(parm->flags & FLAG_PRINT)) continue;
445	if (!printers & !(parm->flags & FLAG_SHARE)) continue;
446	}
447
448	if (!( parm_filter & FLAG_ADVANCED )) {
449	if (!(parm->flags & FLAG_BASIC)) {
450	void *ptr = parm->ptr;
451
452	if (parm->p_class == P_LOCAL && snum >= 0) {
453	ptr = lp_local_ptr(snum, ptr);
454	}
455
456	switch (parm->type) {
457	case P_CHAR:
458	if ((char )ptr == (char)(parm->def.cvalue)) continue;
459	break;
460
461	case P_LIST:
462	if (!str_list_compare((char )ptr, (char )(parm->def.lvalue))) continue;
463	break;
464
465	case P_STRING:
466	case P_USTRING:
467	if (!strcmp((char )ptr,(char )(parm->def.svalue))) continue;
468	break;
469
470	case P_BOOL:
471	case P_BOOLREV:
472	if ((bool )ptr == (bool)(parm->def.bvalue)) continue;
473	break;
474
475	case P_INTEGER:
476	case P_OCTAL:
477	if ((int )ptr == (int)(parm->def.ivalue)) continue;
478	break;
479
480
481	case P_ENUM:
482	if ((int )ptr == (int)(parm->def.ivalue)) continue;
483	break;
484	case P_SEP:
485	continue;
486	}
487	}
488	if (printers && !(parm->flags & FLAG_PRINT)) continue;
489	}
490
491	if ((parm_filter & FLAG_WIZARD) && !(parm->flags & FLAG_WIZARD)) continue;
492
493	if ((parm_filter & FLAG_ADVANCED) && !(parm->flags & FLAG_ADVANCED)) continue;
494
495	if (heading && heading != last_heading) {
496	printf("<tr><td></td></tr><tr><td><b><u>%s</u></b></td></tr>\n", _(heading));
497	last_heading = heading;
498	}
499	show_parameter(snum, parm);
500	}
501	}
502
503	/****************************************************************************
504	load the smb.conf file into loadparm.
505	****************************************************************************/
506	static bool load_config(bool save_def)
507	{
508	return lp_load(get_dyn_CONFIGFILE(),False,save_def,False,True);
509	}
510
511	/****************************************************************************
512	write a config file
513	****************************************************************************/
514	static void write_config(FILE *f, bool show_defaults)
515	{
516	TALLOC_CTX *ctx = talloc_stackframe();
517
518	fprintf(f, "# Samba config file created using SWAT\n");
519	fprintf(f, "# from %s (%s)\n", cgi_remote_host(), cgi_remote_addr());
520	fprintf(f, "# Date: %s\n\n", current_timestring(ctx, False));
521
522	lp_dump(f, show_defaults, iNumNonAutoPrintServices);
523
524	TALLOC_FREE(ctx);
525	}
526
527	/****************************************************************************
528	save and reload the smb.conf config file
529	****************************************************************************/
530	static int save_reload(int snum)
531	{
532	FILE *f;
533	struct stat st;
534
535	f = sys_fopen(get_dyn_CONFIGFILE(),"w");
536	if (!f) {
537	printf(_("failed to open %s for writing"), get_dyn_CONFIGFILE());
538	printf("\n");
539	return 0;
540	}
541
542	/* just in case they have used the buggy xinetd to create the file */
543	if (fstat(fileno(f), &st) == 0 &&
544	(st.st_mode & S_IWOTH)) {
545	#if defined HAVE_FCHMOD
546	fchmod(fileno(f), S_IWUSR \| S_IRUSR \| S_IRGRP \| S_IROTH);
547	#else
548	chmod(get_dyn_CONFIGFILE(), S_IWUSR \| S_IRUSR \| S_IRGRP \| S_IROTH);
549	#endif
550	}
551
552	write_config(f, False);
553	if (snum >= 0)
554	lp_dump_one(f, False, snum);
555	fclose(f);
556
557	lp_kill_all_services();
558
559	if (!load_config(False)) {
560	printf(_("Can't reload %s"), get_dyn_CONFIGFILE());
561	printf("\n");
562	return 0;
563	}
564	iNumNonAutoPrintServices = lp_numservices();
565	load_printers();
566
567	return 1;
568	}
569
570	/****************************************************************************
571	commit one parameter
572	****************************************************************************/
573	static void commit_parameter(int snum, struct parm_struct parm, const char v)
574	{
575	int i;
576	char *s;
577
578	if (snum < 0 && parm->p_class == P_LOCAL) {
579	/* this handles the case where we are changing a local
580	variable globally. We need to change the parameter in
581	all shares where it is currently set to the default */
582	for (i=0;i<lp_numservices();i++) {
583	s = lp_servicename(i);
584	if (s && (*s) && lp_is_default(i, parm)) {
585	lp_do_parameter(i, parm->label, v);
586	}
587	}
588	}
589
590	lp_do_parameter(snum, parm->label, v);
591	}
592
593	/****************************************************************************
594	commit a set of parameters for a service
595	****************************************************************************/
596	static void commit_parameters(int snum)
597	{
598	int i = 0;
599	struct parm_struct *parm;
600	char *label;
601	const char *v;
602
603	while ((parm = lp_next_parameter(snum, &i, 1))) {
604	if (asprintf(&label, "parm_%s", make_parm_name(parm->label)) > 0) {
605	if ((v = cgi_variable(label)) != NULL) {
606	if (parm->flags & FLAG_HIDE)
607	continue;
608	commit_parameter(snum, parm, v);
609	}
610	SAFE_FREE(label);
611	}
612	}
613	}
614
615	/****************************************************************************
616	spit out the html for a link with an image
617	****************************************************************************/
618	static void image_link(const char name, const char hlink, const char *src)
619	{
620	printf("<A HREF=\"%s/%s\"><img border=\"0\" src=\"/swat/%s\" alt=\"%s\"></A>\n",
621	cgi_baseurl(), hlink, src, name);
622	}
623
624	/****************************************************************************
625	display the main navigation controls at the top of each page along
626	with a title
627	****************************************************************************/
628	static void show_main_buttons(void)
629	{
630	char *p;
631
632	if ((p = cgi_user_name()) && strcmp(p, "root")) {
633	printf(_("Logged in as <b>%s</b>"), p);
634	printf("<p>\n");
635	}
636
637	image_link(_("Home"), "", "images/home.gif");
638	if (have_write_access) {
639	image_link(_("Globals"), "globals", "images/globals.gif");
640	image_link(_("Shares"), "shares", "images/shares.gif");
641	image_link(_("Printers"), "printers", "images/printers.gif");
642	image_link(_("Wizard"), "wizard", "images/wizard.gif");
643	}
644	/* root always gets all buttons, otherwise look for -P */
645	if ( have_write_access \|\| (!passwd_only && have_read_access) ) {
646	image_link(_("Status"), "status", "images/status.gif");
647	image_link(_("View Config"), "viewconfig", "images/viewconfig.gif");
648	}
649	image_link(_("Password Management"), "passwd", "images/passwd.gif");
650
651	printf("<HR>\n");
652	}
653
654	/****************************************************************************
655	* Handle Display/Edit Mode CGI
656	****************************************************************************/
657	static void ViewModeBoxes(int mode)
658	{
659	printf("<p>%s: \n", _("Current View Is"));
660	printf("<input type=radio name=\"ViewMode\" value=0 %s>%s\n", ((mode == 0) ? "checked" : ""), _("Basic"));
661	printf("<input type=radio name=\"ViewMode\" value=1 %s>%s\n", ((mode == 1) ? "checked" : ""), _("Advanced"));
662	printf("<br>%s: \n", _("Change View To"));
663	printf("<input type=submit name=\"BasicMode\" value=\"%s\">\n", _("Basic"));
664	printf("<input type=submit name=\"AdvMode\" value=\"%s\">\n", _("Advanced"));
665	printf("</p><br>\n");
666	}
667
668	/****************************************************************************
669	display a welcome page
670	****************************************************************************/
671	static void welcome_page(void)
672	{
673	if (file_exist("help/welcome.html", NULL)) {
674	include_html("help/welcome.html");
675	} else {
676	include_html("help/welcome-no-samba-doc.html");
677	}
678	}
679
680	/****************************************************************************
681	display the current smb.conf
682	****************************************************************************/
683	static void viewconfig_page(void)
684	{
685	int full_view=0;
686	const char form_name[] = "viewconfig";
687
688	if (!verify_xsrf_token(form_name)) {
689	goto output_page;
690	}
691
692	if (cgi_variable("full_view")) {
693	full_view = 1;
694	}
695
696	output_page:
697	printf("<H2>%s</H2>\n", _("Current Config"));
698	printf("<form method=post>\n");
699	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
700
701	if (full_view) {
702	printf("<input type=submit name=\"normal_view\" value=\"%s\">\n", _("Normal View"));
703	} else {
704	printf("<input type=submit name=\"full_view\" value=\"%s\">\n", _("Full View"));
705	}
706
707	printf("<p><pre>");
708	write_config(stdout, full_view);
709	printf("</pre>");
710	printf("</form>\n");
711	}
712
713	/****************************************************************************
714	second screen of the wizard ... Fetch Configuration Parameters
715	****************************************************************************/
716	static void wizard_params_page(void)
717	{
718	unsigned int parm_filter = FLAG_WIZARD;
719	const char form_name[] = "wizard_params";
720
721	/* Here we first set and commit all the parameters that were selected
722	in the previous screen. */
723
724	printf("<H2>%s</H2>\n", _("Wizard Parameter Edit Page"));
725
726	if (!verify_xsrf_token(form_name)) {
727	goto output_page;
728	}
729
730	if (cgi_variable("Commit")) {
731	commit_parameters(GLOBAL_SECTION_SNUM);
732	save_reload(0);
733	}
734
735	output_page:
736	printf("<form name=\"swatform\" method=post action=wizard_params>\n");
737	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
738
739	if (have_write_access) {
740	printf("<input type=submit name=\"Commit\" value=\"Commit Changes\">\n");
741	}
742
743	printf("<input type=reset name=\"Reset Values\" value=\"Reset\">\n");
744	printf("<p>\n");
745
746	printf("<table>\n");
747	show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
748	printf("</table>\n");
749	printf("</form>\n");
750	}
751
752	/****************************************************************************
753	Utility to just rewrite the smb.conf file - effectively just cleans it up
754	****************************************************************************/
755	static void rewritecfg_file(void)
756	{
757	commit_parameters(GLOBAL_SECTION_SNUM);
758	save_reload(0);
759	printf("<H2>%s</H2>\n", _("Note: smb.conf file has been read and rewritten"));
760	}
761
762	/****************************************************************************
763	wizard to create/modify the smb.conf file
764	****************************************************************************/
765	static void wizard_page(void)
766	{
767	/* Set some variables to collect data from smb.conf */
768	int role = 0;
769	int winstype = 0;
770	int have_home = -1;
771	int HomeExpo = 0;
772	int SerType = 0;
773	const char form_name[] = "wizard";
774
775	if (!verify_xsrf_token(form_name)) {
776	goto output_page;
777	}
778
779	if (cgi_variable("Rewrite")) {
780	(void) rewritecfg_file();
781	return;
782	}
783
784	if (cgi_variable("GetWizardParams")){
785	(void) wizard_params_page();
786	return;
787	}
788
789	if (cgi_variable("Commit")){
790	SerType = atoi(cgi_variable_nonull("ServerType"));
791	winstype = atoi(cgi_variable_nonull("WINSType"));
792	have_home = lp_servicenumber(HOMES_NAME);
793	HomeExpo = atoi(cgi_variable_nonull("HomeExpo"));
794
795	/* Plain text passwords are too badly broken - use encrypted passwords only */
796	lp_do_parameter( GLOBAL_SECTION_SNUM, "encrypt passwords", "Yes");
797
798	switch ( SerType ){
799	case 0:
800	/* Stand-alone Server */
801	lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
802	lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
803	break;
804	case 1:
805	/* Domain Member */
806	lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "DOMAIN" );
807	lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
808	break;
809	case 2:
810	/* Domain Controller */
811	lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
812	lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "Yes" );
813	break;
814	}
815	switch ( winstype ) {
816	case 0:
817	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
818	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
819	break;
820	case 1:
821	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "Yes" );
822	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
823	break;
824	case 2:
825	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
826	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", cgi_variable_nonull("WINSAddr"));
827	break;
828	}
829
830	/* Have to create Homes share? */
831	if ((HomeExpo == 1) && (have_home == -1)) {
832	const char *unix_share = HOMES_NAME;
833
834	load_config(False);
835	lp_copy_service(GLOBAL_SECTION_SNUM, unix_share);
836	have_home = lp_servicenumber(HOMES_NAME);
837	lp_do_parameter( have_home, "read only", "No");
838	lp_do_parameter( have_home, "valid users", "%S");
839	lp_do_parameter( have_home, "browseable", "No");
840	commit_parameters(have_home);
841	save_reload(have_home);
842	}
843
844	/* Need to Delete Homes share? */
845	if ((HomeExpo == 0) && (have_home != -1)) {
846	lp_remove_service(have_home);
847	have_home = -1;
848	}
849
850	commit_parameters(GLOBAL_SECTION_SNUM);
851	save_reload(0);
852	}
853	else
854	{
855	/* Now determine smb.conf WINS settings */
856	if (lp_wins_support())
857	winstype = 1;
858	if (lp_wins_server_list() && strlen(*lp_wins_server_list()))
859	winstype = 2;
860
861	/* Do we have a homes share? */
862	have_home = lp_servicenumber(HOMES_NAME);
863	}
864	if ((winstype == 2) && lp_wins_support())
865	winstype = 3;
866
867	role = lp_server_role();
868
869	output_page:
870	/* Here we go ... */
871	printf("<H2>%s</H2>\n", _("Samba Configuration Wizard"));
872	printf("<form method=post action=wizard>\n");
873	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
874
875	if (have_write_access) {
876	printf("%s\n", _("The \"Rewrite smb.conf file\" button will clear the smb.conf file of all default values and of comments."));
877	printf("%s", _("The same will happen if you press the commit button."));
878	printf("<br><br>\n");
879	printf("<center>");
880	printf("<input type=submit name=\"Rewrite\" value=\"%s\">   ",_("Rewrite smb.conf file"));
881	printf("<input type=submit name=\"Commit\" value=\"%s\">   ",_("Commit"));
882	printf("<input type=submit name=\"GetWizardParams\" value=\"%s\">", _("Edit Parameter Values"));
883	printf("</center>\n");
884	}
885
886	printf("<hr>");
887	printf("<center><table border=0>");
888	printf("<tr><td><b>%s: </b></td>\n", _("Server Type"));
889	printf("<td><input type=radio name=\"ServerType\" value=\"0\" %s> %s </td>", ((role == ROLE_STANDALONE) ? "checked" : ""), _("Stand Alone"));
890	printf("<td><input type=radio name=\"ServerType\" value=\"1\" %s> %s </td>", ((role == ROLE_DOMAIN_MEMBER) ? "checked" : ""), _("Domain Member"));
891	printf("<td><input type=radio name=\"ServerType\" value=\"2\" %s> %s </td>", ((role == ROLE_DOMAIN_PDC) ? "checked" : ""), _("Domain Controller"));
892	printf("</tr>\n");
893	if (role == ROLE_DOMAIN_BDC) {
894	printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Unusual Type in smb.conf - Please Select New Mode"));
895	}
896	printf("<tr><td><b>%s: </b></td>\n", _("Configure WINS As"));
897	printf("<td><input type=radio name=\"WINSType\" value=\"0\" %s> %s </td>", ((winstype == 0) ? "checked" : ""), _("Not Used"));
898	printf("<td><input type=radio name=\"WINSType\" value=\"1\" %s> %s </td>", ((winstype == 1) ? "checked" : ""), _("Server for client use"));
899	printf("<td><input type=radio name=\"WINSType\" value=\"2\" %s> %s </td>", ((winstype == 2) ? "checked" : ""), _("Client of another WINS server"));
900	printf("</tr>\n");
901	printf("<tr><td></td><td></td><td></td><td>%s <input type=text size=\"16\" name=\"WINSAddr\" value=\"", _("Remote WINS Server"));
902
903	/* Print out the list of wins servers */
904	if(lp_wins_server_list()) {
905	int i;
906	const char **wins_servers = lp_wins_server_list();
907	for(i = 0; wins_servers[i]; i++) printf("%s ", wins_servers[i]);
908	}
909
910	printf("\"></td></tr>\n");
911	if (winstype == 3) {
912	printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Error: WINS Server Mode and WINS Support both set in smb.conf"));
913	printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Please Select desired WINS mode above."));
914	}
915	printf("<tr><td><b>%s: </b></td>\n", _("Expose Home Directories"));
916	printf("<td><input type=radio name=\"HomeExpo\" value=\"1\" %s> Yes</td>", (have_home == -1) ? "" : "checked ");
917	printf("<td><input type=radio name=\"HomeExpo\" value=\"0\" %s> No</td>", (have_home == -1 ) ? "checked" : "");
918	printf("<td></td></tr>\n");
919
920	/* Enable this when we are ready ....
921	* printf("<tr><td><b>%s: </b></td>\n", _("Is Print Server"));
922	* printf("<td><input type=radio name=\"PtrSvr\" value=\"1\" %s> Yes</td>");
923	* printf("<td><input type=radio name=\"PtrSvr\" value=\"0\" %s> No</td>");
924	* printf("<td></td></tr>\n");
925	*/
926
927	printf("</table></center>");
928	printf("<hr>");
929
930	printf("%s\n", _("The above configuration options will set multiple parameters and will generally assist with rapid Samba deployment."));
931	printf("</form>\n");
932	}
933
934
935	/****************************************************************************
936	display a globals editing page
937	****************************************************************************/
938	static void globals_page(void)
939	{
940	unsigned int parm_filter = FLAG_BASIC;
941	int mode = 0;
942	const char form_name[] = "globals";
943
944	printf("<H2>%s</H2>\n", _("Global Parameters"));
945
946	if (!verify_xsrf_token(form_name)) {
947	goto output_page;
948	}
949
950	if (cgi_variable("Commit")) {
951	commit_parameters(GLOBAL_SECTION_SNUM);
952	save_reload(0);
953	}
954
955	if ( cgi_variable("ViewMode") )
956	mode = atoi(cgi_variable_nonull("ViewMode"));
957	if ( cgi_variable("BasicMode"))
958	mode = 0;
959	if ( cgi_variable("AdvMode"))
960	mode = 1;
961
962	output_page:
963	printf("<form name=\"swatform\" method=post action=globals>\n");
964	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
965
966	ViewModeBoxes( mode );
967	switch ( mode ) {
968	case 0:
969	parm_filter = FLAG_BASIC;
970	break;
971	case 1:
972	parm_filter = FLAG_ADVANCED;
973	break;
974	}
975	printf("<br>\n");
976	if (have_write_access) {
977	printf("<input type=submit name=\"Commit\" value=\"%s\">\n",
978	_("Commit Changes"));
979	}
980
981	printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n",
982	_("Reset Values"));
983
984	printf("<p>\n");
985	printf("<table>\n");
986	show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
987	printf("</table>\n");
988	printf("</form>\n");
989	}
990
991	/****************************************************************************
992	display a shares editing page. share is in unix codepage,
993	****************************************************************************/
994	static void shares_page(void)
995	{
996	const char *share = cgi_variable("share");
997	char *s;
998	char *utf8_s;
999	int snum = -1;
1000	int i;
1001	int mode = 0;
1002	unsigned int parm_filter = FLAG_BASIC;
1003	size_t converted_size;
1004	const char form_name[] = "shares";
1005
1006	printf("<H2>%s</H2>\n", _("Share Parameters"));
1007
1008	if (!verify_xsrf_token(form_name)) {
1009	goto output_page;
1010	}
1011
1012	if (share)
1013	snum = lp_servicenumber(share);
1014
1015
1016	if (cgi_variable("Commit") && snum >= 0) {
1017	commit_parameters(snum);
1018	save_reload(0);
1019	snum = lp_servicenumber(share);
1020	}
1021
1022	if (cgi_variable("Delete") && snum >= 0) {
1023	lp_remove_service(snum);
1024	save_reload(0);
1025	share = NULL;
1026	snum = -1;
1027	}
1028
1029	if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
1030	snum = lp_servicenumber(share);
1031	if (snum < 0) {
1032	load_config(False);
1033	lp_copy_service(GLOBAL_SECTION_SNUM, share);
1034	snum = lp_servicenumber(share);
1035	save_reload(snum);
1036	snum = lp_servicenumber(share);
1037	}
1038	}
1039
1040	if ( cgi_variable("ViewMode") )
1041	mode = atoi(cgi_variable_nonull("ViewMode"));
1042	if ( cgi_variable("BasicMode"))
1043	mode = 0;
1044	if ( cgi_variable("AdvMode"))
1045	mode = 1;
1046
1047	output_page:
1048	printf("<FORM name=\"swatform\" method=post>\n");
1049	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
1050
1051	printf("<table>\n");
1052
1053	ViewModeBoxes( mode );
1054	switch ( mode ) {
1055	case 0:
1056	parm_filter = FLAG_BASIC;
1057	break;
1058	case 1:
1059	parm_filter = FLAG_ADVANCED;
1060	break;
1061	}
1062	printf("<br><tr>\n");
1063	printf("<td><input type=submit name=selectshare value=\"%s\"></td>\n", _("Choose Share"));
1064	printf("<td><select name=share>\n");
1065	if (snum < 0)
1066	printf("<option value=\" \"> \n");
1067	for (i=0;i<lp_numservices();i++) {
1068	s = lp_servicename(i);
1069	if (s && (*s) && strcmp(s,"IPC$") && !lp_print_ok(i)) {
1070	push_utf8_allocate(&utf8_s, s, &converted_size);
1071	printf("<option %s value=\"%s\">%s\n",
1072	(share && strcmp(share,s)==0)?"SELECTED":"",
1073	utf8_s, utf8_s);
1074	SAFE_FREE(utf8_s);
1075	}
1076	}
1077	printf("</select></td>\n");
1078	if (have_write_access) {
1079	printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Share"));
1080	}
1081	printf("</tr>\n");
1082	printf("</table>");
1083	printf("<table>");
1084	if (have_write_access) {
1085	printf("<tr>\n");
1086	printf("<td><input type=submit name=createshare value=\"%s\"></td>\n", _("Create Share"));
1087	printf("<td><input type=text size=30 name=newshare></td></tr>\n");
1088	}
1089	printf("</table>");
1090
1091
1092	if (snum >= 0) {
1093	if (have_write_access) {
1094	printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
1095	}
1096
1097	printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
1098	printf("<p>\n");
1099	}
1100
1101	if (snum >= 0) {
1102	printf("<table>\n");
1103	show_parameters(snum, 1, parm_filter, 0);
1104	printf("</table>\n");
1105	}
1106
1107	printf("</FORM>\n");
1108	}
1109
1110	/*************************************************************
1111	change a password either locally or remotely
1112	*************************************************************/
1113	static bool change_password(const char remote_machine, const char user_name,
1114	const char old_passwd, const char new_passwd,
1115	int local_flags)
1116	{
1117	NTSTATUS ret;
1118	char *err_str = NULL;
1119	char *msg_str = NULL;
1120
1121	if (demo_mode) {
1122	printf("%s\n<p>", _("password change in demo mode rejected"));
1123	return False;
1124	}
1125
1126	if (remote_machine != NULL) {
1127	ret = remote_password_change(remote_machine, user_name,
1128	old_passwd, new_passwd, &err_str);
1129	if (err_str != NULL)
1130	printf("%s\n<p>", err_str);
1131	SAFE_FREE(err_str);
1132	return NT_STATUS_IS_OK(ret);
1133	}
1134
1135	if(!initialize_password_db(True, NULL)) {
1136	printf("%s\n<p>", _("Can't setup password database vectors."));
1137	return False;
1138	}
1139
1140	ret = local_password_change(user_name, local_flags, new_passwd,
1141	&err_str, &msg_str);
1142
1143	if(msg_str)
1144	printf("%s\n<p>", msg_str);
1145	if(err_str)
1146	printf("%s\n<p>", err_str);
1147
1148	SAFE_FREE(msg_str);
1149	SAFE_FREE(err_str);
1150	return NT_STATUS_IS_OK(ret);
1151	}
1152
1153	/****************************************************************************
1154	do the stuff required to add or change a password
1155	****************************************************************************/
1156	static void chg_passwd(void)
1157	{
1158	const char *host;
1159	bool rslt;
1160	int local_flags = 0;
1161
1162	/* Make sure users name has been specified */
1163	if (strlen(cgi_variable_nonull(SWAT_USER)) == 0) {
1164	printf("<p>%s\n", _(" Must specify \"User Name\" "));
1165	return;
1166	}
1167
1168	/*
1169	* smbpasswd doesn't require anything but the users name to delete, disable or enable the user,
1170	* so if that's what we're doing, skip the rest of the checks
1171	*/
1172	if (!cgi_variable(DISABLE_USER_FLAG) && !cgi_variable(ENABLE_USER_FLAG) && !cgi_variable(DELETE_USER_FLAG)) {
1173
1174	/*
1175	* If current user is not root, make sure old password has been specified
1176	* If REMOTE change, even root must provide old password
1177	*/
1178	if (((!am_root()) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0)) \|\|
1179	((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0))) {
1180	printf("<p>%s\n", _(" Must specify \"Old Password\" "));
1181	return;
1182	}
1183
1184	/* If changing a users password on a remote hosts we have to know what host */
1185	if ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(RHOST)) <= 0)) {
1186	printf("<p>%s\n", _(" Must specify \"Remote Machine\" "));
1187	return;
1188	}
1189
1190	/* Make sure new passwords have been specified */
1191	if ((strlen( cgi_variable_nonull(NEW_PSWD)) <= 0) \|\|
1192	(strlen( cgi_variable_nonull(NEW2_PSWD)) <= 0)) {
1193	printf("<p>%s\n", _(" Must specify \"New, and Re-typed Passwords\" "));
1194	return;
1195	}
1196
1197	/* Make sure new passwords was typed correctly twice */
1198	if (strcmp(cgi_variable_nonull(NEW_PSWD), cgi_variable_nonull(NEW2_PSWD)) != 0) {
1199	printf("<p>%s\n", _(" Re-typed password didn't match new password "));
1200	return;
1201	}
1202	}
1203
1204	if (cgi_variable(CHG_R_PASSWD_FLAG)) {
1205	host = cgi_variable(RHOST);
1206	} else if (am_root()) {
1207	host = NULL;
1208	} else {
1209	host = "127.0.0.1";
1210	}
1211
1212	/*
1213	* Set up the local flags.
1214	*/
1215
1216	local_flags \|= (cgi_variable(ADD_USER_FLAG) ? LOCAL_ADD_USER : 0);
1217	local_flags \|= (cgi_variable(ADD_USER_FLAG) ? LOCAL_SET_PASSWORD : 0);
1218	local_flags \|= (cgi_variable(CHG_S_PASSWD_FLAG) ? LOCAL_SET_PASSWORD : 0);
1219	local_flags \|= (cgi_variable(DELETE_USER_FLAG) ? LOCAL_DELETE_USER : 0);
1220	local_flags \|= (cgi_variable(ENABLE_USER_FLAG) ? LOCAL_ENABLE_USER : 0);
1221	local_flags \|= (cgi_variable(DISABLE_USER_FLAG) ? LOCAL_DISABLE_USER : 0);
1222
1223
1224	rslt = change_password(host,
1225	cgi_variable_nonull(SWAT_USER),
1226	cgi_variable_nonull(OLD_PSWD), cgi_variable_nonull(NEW_PSWD),
1227	local_flags);
1228
1229	if(cgi_variable(CHG_S_PASSWD_FLAG)) {
1230	printf("<p>");
1231	if (rslt == True) {
1232	printf("%s\n", _(" The passwd has been changed."));
1233	} else {
1234	printf("%s\n", _(" The passwd has NOT been changed."));
1235	}
1236	}
1237
1238	return;
1239	}
1240
1241	/****************************************************************************
1242	display a password editing page
1243	****************************************************************************/
1244	static void passwd_page(void)
1245	{
1246	const char *new_name = cgi_user_name();
1247	const char passwd_form[] = "passwd";
1248	const char rpasswd_form[] = "rpasswd";
1249
1250	if (!new_name) new_name = "";
1251
1252	printf("<H2>%s</H2>\n", _("Server Password Management"));
1253
1254	printf("<FORM name=\"swatform\" method=post>\n");
1255	print_xsrf_token(cgi_user_name(), cgi_user_pass(), passwd_form);
1256
1257	printf("<table>\n");
1258
1259	/*
1260	* Create all the dialog boxes for data collection
1261	*/
1262	printf("<tr><td> %s : </td>\n", _("User Name"));
1263	printf("<td><input type=text size=30 name=%s value=%s></td></tr> \n", SWAT_USER, new_name);
1264	if (!am_root()) {
1265	printf("<tr><td> %s : </td>\n", _("Old Password"));
1266	printf("<td><input type=password size=30 name=%s></td></tr> \n",OLD_PSWD);
1267	}
1268	printf("<tr><td> %s : </td>\n", _("New Password"));
1269	printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1270	printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1271	printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1272	printf("</table>\n");
1273
1274	/*
1275	* Create all the control buttons for requesting action
1276	*/
1277	printf("<input type=submit name=%s value=\"%s\">\n",
1278	CHG_S_PASSWD_FLAG, _("Change Password"));
1279	if (demo_mode \|\| am_root()) {
1280	printf("<input type=submit name=%s value=\"%s\">\n",
1281	ADD_USER_FLAG, _("Add New User"));
1282	printf("<input type=submit name=%s value=\"%s\">\n",
1283	DELETE_USER_FLAG, _("Delete User"));
1284	printf("<input type=submit name=%s value=\"%s\">\n",
1285	DISABLE_USER_FLAG, _("Disable User"));
1286	printf("<input type=submit name=%s value=\"%s\">\n",
1287	ENABLE_USER_FLAG, _("Enable User"));
1288	}
1289	printf("<p></FORM>\n");
1290
1291	/*
1292	* Do some work if change, add, disable or enable was
1293	* requested. It could be this is the first time through this
1294	* code, so there isn't anything to do. */
1295	if (verify_xsrf_token(passwd_form) &&
1296	((cgi_variable(CHG_S_PASSWD_FLAG)) \|\| (cgi_variable(ADD_USER_FLAG)) \|\| (cgi_variable(DELETE_USER_FLAG)) \|\|
1297	(cgi_variable(DISABLE_USER_FLAG)) \|\| (cgi_variable(ENABLE_USER_FLAG)))) {
1298	chg_passwd();
1299	}
1300
1301	printf("<H2>%s</H2>\n", _("Client/Server Password Management"));
1302
1303	printf("<FORM name=\"swatform\" method=post>\n");
1304	print_xsrf_token(cgi_user_name(), cgi_user_pass(), rpasswd_form);
1305
1306	printf("<table>\n");
1307
1308	/*
1309	* Create all the dialog boxes for data collection
1310	*/
1311	printf("<tr><td> %s : </td>\n", _("User Name"));
1312	printf("<td><input type=text size=30 name=%s value=%s></td></tr>\n",SWAT_USER, new_name);
1313	printf("<tr><td> %s : </td>\n", _("Old Password"));
1314	printf("<td><input type=password size=30 name=%s></td></tr>\n",OLD_PSWD);
1315	printf("<tr><td> %s : </td>\n", _("New Password"));
1316	printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1317	printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1318	printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1319	printf("<tr><td> %s : </td>\n", _("Remote Machine"));
1320	printf("<td><input type=text size=30 name=%s></td></tr>\n",RHOST);
1321
1322	printf("</table>");
1323
1324	/*
1325	* Create all the control buttons for requesting action
1326	*/
1327	printf("<input type=submit name=%s value=\"%s\">",
1328	CHG_R_PASSWD_FLAG, _("Change Password"));
1329
1330	printf("<p></FORM>\n");
1331
1332	/*
1333	* Do some work if a request has been made to change the
1334	* password somewhere other than the server. It could be this
1335	* is the first time through this code, so there isn't
1336	* anything to do. */
1337	if (verify_xsrf_token(passwd_form) && cgi_variable(CHG_R_PASSWD_FLAG)) {
1338	chg_passwd();
1339	}
1340
1341	}
1342
1343	/****************************************************************************
1344	display a printers editing page
1345	****************************************************************************/
1346	static void printers_page(void)
1347	{
1348	const char *share = cgi_variable("share");
1349	char *s;
1350	int snum=-1;
1351	int i;
1352	int mode = 0;
1353	unsigned int parm_filter = FLAG_BASIC;
1354	const char form_name[] = "printers";
1355
1356	if (!verify_xsrf_token(form_name)) {
1357	goto output_page;
1358	}
1359
1360	if (share)
1361	snum = lp_servicenumber(share);
1362
1363	if (cgi_variable("Commit") && snum >= 0) {
1364	commit_parameters(snum);
1365	if (snum >= iNumNonAutoPrintServices)
1366	save_reload(snum);
1367	else
1368	save_reload(0);
1369	snum = lp_servicenumber(share);
1370	}
1371
1372	if (cgi_variable("Delete") && snum >= 0) {
1373	lp_remove_service(snum);
1374	save_reload(0);
1375	share = NULL;
1376	snum = -1;
1377	}
1378
1379	if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
1380	snum = lp_servicenumber(share);
1381	if (snum < 0 \|\| snum >= iNumNonAutoPrintServices) {
1382	load_config(False);
1383	lp_copy_service(GLOBAL_SECTION_SNUM, share);
1384	snum = lp_servicenumber(share);
1385	lp_do_parameter(snum, "print ok", "Yes");
1386	save_reload(snum);
1387	snum = lp_servicenumber(share);
1388	}
1389	}
1390
1391	if ( cgi_variable("ViewMode") )
1392	mode = atoi(cgi_variable_nonull("ViewMode"));
1393	if ( cgi_variable("BasicMode"))
1394	mode = 0;
1395	if ( cgi_variable("AdvMode"))
1396	mode = 1;
1397
1398	output_page:
1399	printf("<H2>%s</H2>\n", _("Printer Parameters"));
1400
1401	printf("<H3>%s</H3>\n", _("Important Note:"));
1402	printf("%s",_("Printer names marked with [*] in the Choose Printer drop-down box "));
1403	printf("%s",_("are autoloaded printers from "));
1404	printf("<A HREF=\"/swat/help/smb.conf.5.html#printcapname\" target=\"docs\">%s</A>\n", _("Printcap Name"));
1405	printf("%s\n", _("Attempting to delete these printers from SWAT will have no effect."));
1406
1407
1408	printf("<FORM name=\"swatform\" method=post>\n");
1409	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
1410
1411	ViewModeBoxes( mode );
1412	switch ( mode ) {
1413	case 0:
1414	parm_filter = FLAG_BASIC;
1415	break;
1416	case 1:
1417	parm_filter = FLAG_ADVANCED;
1418	break;
1419	}
1420	printf("<table>\n");
1421	printf("<tr><td><input type=submit name=\"selectshare\" value=\"%s\"></td>\n", _("Choose Printer"));
1422	printf("<td><select name=\"share\">\n");
1423	if (snum < 0 \|\| !lp_print_ok(snum))
1424	printf("<option value=\" \"> \n");
1425	for (i=0;i<lp_numservices();i++) {
1426	s = lp_servicename(i);
1427	if (s && (*s) && strcmp(s,"IPC$") && lp_print_ok(i)) {
1428	if (i >= iNumNonAutoPrintServices)
1429	printf("<option %s value=\"%s\">[*]%s\n",
1430	(share && strcmp(share,s)==0)?"SELECTED":"",
1431	s, s);
1432	else
1433	printf("<option %s value=\"%s\">%s\n",
1434	(share && strcmp(share,s)==0)?"SELECTED":"",
1435	s, s);
1436	}
1437	}
1438	printf("</select></td>");
1439	if (have_write_access) {
1440	printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Printer"));
1441	}
1442	printf("</tr>");
1443	printf("</table>\n");
1444
1445	if (have_write_access) {
1446	printf("<table>\n");
1447	printf("<tr><td><input type=submit name=\"createshare\" value=\"%s\"></td>\n", _("Create Printer"));
1448	printf("<td><input type=text size=30 name=\"newshare\"></td></tr>\n");
1449	printf("</table>");
1450	}
1451
1452
1453	if (snum >= 0) {
1454	if (have_write_access) {
1455	printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
1456	}
1457	printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
1458	printf("<p>\n");
1459	}
1460
1461	if (snum >= 0) {
1462	printf("<table>\n");
1463	show_parameters(snum, 1, parm_filter, 1);
1464	printf("</table>\n");
1465	}
1466	printf("</FORM>\n");
1467	}
1468
1469	/*
1470	when the _() translation macro is used there is no obvious place to free
1471	the resulting string and there is no easy way to give a static pointer.
1472	All we can do is rotate between some static buffers and hope a single d_printf()
1473	doesn't have more calls to _() than the number of buffers
1474	*/
1475
1476	const char lang_msg_rotate(TALLOC_CTX ctx, const char *msgid)
1477	{
1478	const char *msgstr;
1479	const char *ret;
1480
1481	msgstr = lang_msg(msgid);
1482	if (!msgstr) {
1483	return msgid;
1484	}
1485
1486	ret = talloc_strdup(ctx, msgstr);
1487
1488	lang_msg_free(msgstr);
1489	if (!ret) {
1490	return msgid;
1491	}
1492
1493	return ret;
1494	}
1495
1496	/**
1497	* main function for SWAT.
1498	**/
1499	int main(int argc, char *argv[])
1500	{
1501	const char *page;
1502	poptContext pc;
1503	struct poptOption long_options[] = {
1504	POPT_AUTOHELP
1505	{ "disable-authentication", 'a', POPT_ARG_VAL, &demo_mode, True, "Disable authentication (demo mode)" },
1506	{ "password-menu-only", 'P', POPT_ARG_VAL, &passwd_only, True, "Show only change password menu" },
1507	POPT_COMMON_SAMBA
1508	POPT_TABLEEND
1509	};
1510	TALLOC_CTX *frame = talloc_stackframe();
1511
1512	fault_setup(NULL);
1513	umask(S_IWGRP \| S_IWOTH);
1514
1515	#if defined(HAVE_SET_AUTH_PARAMETERS)
1516	set_auth_parameters(argc, argv);
1517	#endif /* HAVE_SET_AUTH_PARAMETERS */
1518
1519	/* just in case it goes wild ... */
1520	alarm(300);
1521
1522	setlinebuf(stdout);
1523
1524	/* we don't want any SIGPIPE messages */
1525	BlockSignals(True,SIGPIPE);
1526
1527	dbf = x_fopen("/dev/null", O_WRONLY, 0);
1528	if (!dbf) dbf = x_stderr;
1529
1530	/* we don't want stderr screwing us up */
1531	close(2);
1532	open("/dev/null", O_WRONLY);
1533
1534	pc = poptGetContext("swat", argc, (const char **) argv, long_options, 0);
1535
1536	/* Parse command line options */
1537
1538	while(poptGetNextOpt(pc) != -1) { }
1539
1540	poptFreeContext(pc);
1541
1542	load_case_tables();
1543
1544	setup_logging(argv[0],False);
1545	load_config(True);
1546	load_interfaces();
1547	iNumNonAutoPrintServices = lp_numservices();
1548	load_printers();
1549
1550	#ifndef __OS2__
1551	cgi_setup(get_dyn_SWATDIR(), !demo_mode);
1552	#else
1553
1554	#if 0
1555	debug_set_logfile("swat.log"); // this produces a logfile in the dir where swat.exe is located.
1556	#endif
1557
1558	fstring path;
1559	fstrcpy(path, getcwd(NULL, _MAX_PATH));
1560	fstrcat(path, "/swat");
1561	cgi_setup(path, !demo_mode);
1562	#endif
1563
1564	print_header();
1565
1566	cgi_load_variables();
1567
1568	if (!file_exist(get_dyn_CONFIGFILE(), NULL)) {
1569	have_read_access = True;
1570	have_write_access = True;
1571	} else {
1572	/* check if the authenticated user has write access - if not then
1573	don't show write options */
1574	have_write_access = (access(get_dyn_CONFIGFILE(),W_OK) == 0);
1575
1576	/* if the user doesn't have read access to smb.conf then
1577	don't let them view it */
1578	have_read_access = (access(get_dyn_CONFIGFILE(),R_OK) == 0);
1579	}
1580
1581	show_main_buttons();
1582
1583	page = cgi_pathinfo();
1584
1585	/* Root gets full functionality */
1586	if (have_read_access && strcmp(page, "globals")==0) {
1587	globals_page();
1588	} else if (have_read_access && strcmp(page,"shares")==0) {
1589	shares_page();
1590	} else if (have_read_access && strcmp(page,"printers")==0) {
1591	printers_page();
1592	} else if (have_read_access && strcmp(page,"status")==0) {
1593	status_page();
1594	} else if (have_read_access && strcmp(page,"viewconfig")==0) {
1595	viewconfig_page();
1596	} else if (strcmp(page,"passwd")==0) {
1597	passwd_page();
1598	} else if (have_read_access && strcmp(page,"wizard")==0) {
1599	wizard_page();
1600	} else if (have_read_access && strcmp(page,"wizard_params")==0) {
1601	wizard_params_page();
1602	} else if (have_read_access && strcmp(page,"rewritecfg")==0) {
1603	rewritecfg_file();
1604	} else {
1605	welcome_page();
1606	}
1607
1608	print_footer();
1609
1610	TALLOC_FREE(frame);
1611	return 0;
1612	}
1613
1614	/ @} /

Note: See TracBrowser for help on using the repository browser.

Download in other formats: