Context Navigation

source: trunk/server/source3/web/swat.c@ 751

Visit:

Last change on this file since 751 was 751, checked in by Silvan Scherrer, 13 years ago
Samba Server: updated trunk to 3.6.9
File size: 50.4 KB

Line
1	/*
2	Unix SMB/CIFS implementation.
3	Samba Web Administration Tool
4	Version 3.0.0
5	Copyright (C) Andrew Tridgell 1997-2002
6	Copyright (C) John H Terpstra 2002
7
8	This program is free software; you can redistribute it and/or modify
9	it under the terms of the GNU General Public License as published by
10	the Free Software Foundation; either version 3 of the License, or
11	(at your option) any later version.
12
13	This program is distributed in the hope that it will be useful,
14	but WITHOUT ANY WARRANTY; without even the implied warranty of
15	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16	GNU General Public License for more details.
17
18	You should have received a copy of the GNU General Public License
19	along with this program. If not, see <http://www.gnu.org/licenses/>.
20	*/
21
22	/**
23	* @defgroup swat SWAT - Samba Web Administration Tool
24	* @{
25	* @file swat.c
26	*
27	* @brief Samba Web Administration Tool.
28	**/
29
30	#include "includes.h"
31	#include "system/filesys.h"
32	#include "popt_common.h"
33	#include "web/swat_proto.h"
34	#include "printing/pcap.h"
35	#include "printing/load.h"
36	#include "passdb.h"
37	#include "intl/lang_tdb.h"
38	#include "../lib/crypto/md5.h"
39
40	static int demo_mode = False;
41	static int passwd_only = False;
42	static bool have_write_access = False;
43	static bool have_read_access = False;
44	static int iNumNonAutoPrintServices = 0;
45
46	/*
47	* Password Management Globals
48	*/
49	#define SWAT_USER "username"
50	#define OLD_PSWD "old_passwd"
51	#define NEW_PSWD "new_passwd"
52	#define NEW2_PSWD "new2_passwd"
53	#define CHG_S_PASSWD_FLAG "chg_s_passwd_flag"
54	#define CHG_R_PASSWD_FLAG "chg_r_passwd_flag"
55	#define ADD_USER_FLAG "add_user_flag"
56	#define DELETE_USER_FLAG "delete_user_flag"
57	#define DISABLE_USER_FLAG "disable_user_flag"
58	#define ENABLE_USER_FLAG "enable_user_flag"
59	#define RHOST "remote_host"
60	#define XSRF_TOKEN "xsrf"
61	#define XSRF_TIME "xsrf_time"
62	#define XSRF_TIMEOUT 300
63
64	#define _(x) lang_msg_rotate(talloc_tos(),x)
65
66	/****************************************************************************
67	****************************************************************************/
68	static int enum_index(int value, const struct enum_list *enumlist)
69	{
70	int i;
71	for (i=0;enumlist[i].name;i++)
72	if (value == enumlist[i].value) break;
73	return(i);
74	}
75
76	static char fix_backslash(const char str)
77	{
78	static char newstring[1024];
79	char *p = newstring;
80
81	while (*str) {
82	if (str == '\\') {p++ = '\\';*p++ = '\\';}
83	else p++ = str;
84	++str;
85	}
86	*p = '\0';
87	return newstring;
88	}
89
90	static const char fix_quotes(TALLOC_CTX ctx, const char *str)
91	{
92	char *newstring = NULL;
93	char *p = NULL;
94	size_t newstring_len;
95	int quote_len = strlen(""");
96
97	/* Count the number of quotes. */
98	newstring_len = 1;
99	p = (char *) str;
100	while (*p) {
101	if ( *p == '\"') {
102	newstring_len += quote_len;
103	} else {
104	newstring_len++;
105	}
106	++p;
107	}
108	newstring = TALLOC_ARRAY(ctx, char, newstring_len);
109	if (!newstring) {
110	return "";
111	}
112	for (p = newstring; *str; str++) {
113	if ( *str == '\"') {
114	strncpy( p, """, quote_len);
115	p += quote_len;
116	} else {
117	p++ = str;
118	}
119	}
120	*p = '\0';
121	return newstring;
122	}
123
124	static char stripspaceupper(const char str)
125	{
126	static char newstring[1024];
127	char *p = newstring;
128
129	while (*str) {
130	if (str != ' ') p++ = toupper_m(*str);
131	++str;
132	}
133	*p = '\0';
134	return newstring;
135	}
136
137	static char make_parm_name(const char label)
138	{
139	static char parmname[1024];
140	char *p = parmname;
141
142	while (*label) {
143	if (label == ' ') p++ = '_';
144	else p++ = label;
145	++label;
146	}
147	*p = '\0';
148	return parmname;
149	}
150
151	void get_xsrf_token(const char username, const char pass,
152	const char *formname, time_t xsrf_time, char token_str[33])
153	{
154	MD5_CTX md5_ctx;
155	uint8_t token[16];
156	int i;
157
158	token_str[0] = '\0';
159	ZERO_STRUCT(md5_ctx);
160	MD5Init(&md5_ctx);
161
162	MD5Update(&md5_ctx, (uint8_t *)formname, strlen(formname));
163	MD5Update(&md5_ctx, (uint8_t *)&xsrf_time, sizeof(time_t));
164	if (username != NULL) {
165	MD5Update(&md5_ctx, (uint8_t *)username, strlen(username));
166	}
167	if (pass != NULL) {
168	MD5Update(&md5_ctx, (uint8_t *)pass, strlen(pass));
169	}
170
171	MD5Final(token, &md5_ctx);
172
173	for(i = 0; i < sizeof(token); i++) {
174	char tmp[3];
175
176	snprintf(tmp, sizeof(tmp), "%02x", token[i]);
177	strlcat(token_str, tmp, sizeof(tmp));
178	}
179	}
180
181	void print_xsrf_token(const char username, const char pass,
182	const char *formname)
183	{
184	char token[33];
185	time_t xsrf_time = time(NULL);
186
187	get_xsrf_token(username, pass, formname, xsrf_time, token);
188	printf("<input type=\"hidden\" name=\"%s\" value=\"%s\">\n",
189	XSRF_TOKEN, token);
190	printf("<input type=\"hidden\" name=\"%s\" value=\"%lld\">\n",
191	XSRF_TIME, (long long int)xsrf_time);
192	}
193
194	bool verify_xsrf_token(const char *formname)
195	{
196	char expected[33];
197	const char *username = cgi_user_name();
198	const char *pass = cgi_user_pass();
199	const char *token = cgi_variable_nonull(XSRF_TOKEN);
200	const char *time_str = cgi_variable_nonull(XSRF_TIME);
201	char *p = NULL;
202	long long xsrf_time_ll = 0;
203	time_t xsrf_time = 0;
204	time_t now = time(NULL);
205
206	errno = 0;
207	xsrf_time_ll = strtoll(time_str, &p, 10);
208	if (errno != 0) {
209	return false;
210	}
211	if (p == NULL) {
212	return false;
213	}
214	if (PTR_DIFF(p, time_str) > strlen(time_str)) {
215	return false;
216	}
217	if (xsrf_time_ll > _TYPE_MAXIMUM(time_t)) {
218	return false;
219	}
220	if (xsrf_time_ll < _TYPE_MINIMUM(time_t)) {
221	return false;
222	}
223	xsrf_time = xsrf_time_ll;
224
225	if (abs(now - xsrf_time) > XSRF_TIMEOUT) {
226	return false;
227	}
228
229	get_xsrf_token(username, pass, formname, xsrf_time, expected);
230	return (strncmp(expected, token, sizeof(expected)) == 0);
231	}
232
233
234	/****************************************************************************
235	include a lump of html in a page
236	****************************************************************************/
237	static int include_html(const char *fname)
238	{
239	int fd;
240	char buf[1024];
241	int ret;
242
243	fd = web_open(fname, O_RDONLY, 0);
244
245	if (fd == -1) {
246	printf(_("ERROR: Can't open %s"), fname);
247	printf("\n");
248	return 0;
249	}
250
251	while ((ret = read(fd, buf, sizeof(buf))) > 0) {
252	if (write(1, buf, ret) == -1) {
253	break;
254	}
255	}
256
257	close(fd);
258	return 1;
259	}
260
261	/****************************************************************************
262	start the page with standard stuff
263	****************************************************************************/
264	static void print_header(void)
265	{
266	if (!cgi_waspost()) {
267	printf("Expires: 0\r\n");
268	}
269	printf("Content-type: text/html\r\n\r\n");
270
271	if (!include_html("include/header.html")) {
272	printf("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 3.2//EN\">\n");
273	printf("<HTML>\n<HEAD>\n<TITLE>Samba Web Administration Tool</TITLE>\n</HEAD>\n<BODY background=\"/swat/images/background.jpg\">\n\n");
274	}
275	}
276
277	/* *******************************************************************
278	show parameter label with translated name in the following form
279	because showing original and translated label in one line looks
280	too long, and showing translated label only is unusable for
281	heavy users.
282	-------------------------------
283	HELP security [combo box][button]
284	SECURITY
285	-------------------------------
286	(capital words are translated by gettext.)
287	if no translation is available, then same form as original is
288	used.
289	"i18n_translated_parm" class is used to change the color of the
290	translated parameter with CSS.
291	**************************************************************** */
292	static const char get_parm_translated(TALLOC_CTX ctx,
293	const char* pAnchor, const char* pHelp, const char* pLabel)
294	{
295	const char *pTranslated = _(pLabel);
296	char *output;
297	if(strcmp(pLabel, pTranslated) != 0) {
298	output = talloc_asprintf(ctx,
299	"<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>       %s <br><span class=\"i18n_translated_parm\">%s</span>",
300	pAnchor, pHelp, pLabel, pTranslated);
301	return output;
302	}
303	output = talloc_asprintf(ctx,
304	"<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>       %s",
305	pAnchor, pHelp, pLabel);
306	return output;
307	}
308	/****************************************************************************
309	finish off the page
310	****************************************************************************/
311	static void print_footer(void)
312	{
313	if (!include_html("include/footer.html")) {
314	printf("\n</BODY>\n</HTML>\n");
315	}
316	}
317
318	/****************************************************************************
319	display one editable parameter in a form
320	****************************************************************************/
321	static void show_parameter(int snum, struct parm_struct *parm)
322	{
323	int i;
324	void *ptr = parm->ptr;
325	char utf8_s1, utf8_s2;
326	size_t converted_size;
327	TALLOC_CTX *ctx = talloc_stackframe();
328
329	if (parm->p_class == P_LOCAL && snum >= 0) {
330	ptr = lp_local_ptr_by_snum(snum, ptr);
331	}
332
333	printf("<tr><td>%s</td><td>", get_parm_translated(ctx,
334	stripspaceupper(parm->label), _("Help"), parm->label));
335	switch (parm->type) {
336	case P_CHAR:
337	printf("<input type=text size=2 name=\"parm_%s\" value=\"%c\">",
338	make_parm_name(parm->label), (char )ptr);
339	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%c\'\">",
340	_("Set Default"), make_parm_name(parm->label),(char)(parm->def.cvalue));
341	break;
342
343	case P_LIST:
344	printf("<input type=text size=40 name=\"parm_%s\" value=\"",
345	make_parm_name(parm->label));
346	if ((char **)ptr && (char *)ptr && (char ***)ptr) {
347	char *list = (char ***)ptr;
348	for (;*list;list++) {
349	/* enclose in HTML encoded quotes if the string contains a space */
350	if ( strchr_m(*list, ' ') ) {
351	push_utf8_talloc(talloc_tos(), &utf8_s1, *list, &converted_size);
352	push_utf8_talloc(talloc_tos(), &utf8_s2, ((*(list+1))?", ":""), &converted_size);
353	printf(""%s"%s", utf8_s1, utf8_s2);
354	} else {
355	push_utf8_talloc(talloc_tos(), &utf8_s1, *list, &converted_size);
356	push_utf8_talloc(talloc_tos(), &utf8_s2, ((*(list+1))?", ":""), &converted_size);
357	printf("%s%s", utf8_s1, utf8_s2);
358	}
359	TALLOC_FREE(utf8_s1);
360	TALLOC_FREE(utf8_s2);
361	}
362	}
363	printf("\">");
364	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'",
365	_("Set Default"), make_parm_name(parm->label));
366	if (parm->def.lvalue) {
367	char list = (char )(parm->def.lvalue);
368	for (; *list; list++) {
369	/* enclose in HTML encoded quotes if the string contains a space */
370	if ( strchr_m(*list, ' ') )
371	printf(""%s"%s", list, (((list+1))?", ":""));
372	else
373	printf("%s%s", list, (((list+1))?", ":""));
374	}
375	}
376	printf("\'\">");
377	break;
378
379	case P_STRING:
380	case P_USTRING:
381	push_utf8_talloc(talloc_tos(), &utf8_s1, (char *)ptr, &converted_size);
382	printf("<input type=text size=40 name=\"parm_%s\" value=\"%s\">",
383	make_parm_name(parm->label), fix_quotes(ctx, utf8_s1));
384	TALLOC_FREE(utf8_s1);
385	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%s\'\">",
386	_("Set Default"), make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue)));
387	break;
388
389	case P_BOOL:
390	printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
391	printf("<option %s>Yes", ((bool )ptr)?"selected":"");
392	printf("<option %s>No", ((bool )ptr)?"":"selected");
393	printf("</select>");
394	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
395	_("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?0:1);
396	break;
397
398	case P_BOOLREV:
399	printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
400	printf("<option %s>Yes", ((bool )ptr)?"":"selected");
401	printf("<option %s>No", ((bool )ptr)?"selected":"");
402	printf("</select>");
403	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
404	_("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?1:0);
405	break;
406
407	case P_INTEGER:
408	printf("<input type=text size=8 name=\"parm_%s\" value=\"%d\">", make_parm_name(parm->label), (int )ptr);
409	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%d\'\">",
410	_("Set Default"), make_parm_name(parm->label),(int)(parm->def.ivalue));
411	break;
412
413	case P_OCTAL: {
414	char *o;
415	o = octal_string((int )ptr);
416	printf("<input type=text size=8 name=\"parm_%s\" value=%s>",
417	make_parm_name(parm->label), o);
418	TALLOC_FREE(o);
419	o = octal_string((int)(parm->def.ivalue));
420	printf("<input type=button value=\"%s\" "
421	"onClick=\"swatform.parm_%s.value=\'%s\'\">",
422	_("Set Default"), make_parm_name(parm->label), o);
423	TALLOC_FREE(o);
424	break;
425	}
426
427	case P_ENUM:
428	printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
429	for (i=0;parm->enum_list[i].name;i++) {
430	if (i == 0 \|\| parm->enum_list[i].value != parm->enum_list[i-1].value) {
431	printf("<option %s>%s",((int )ptr)==parm->enum_list[i].value?"selected":"",parm->enum_list[i].name);
432	}
433	}
434	printf("</select>");
435	printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
436	_("Set Default"), make_parm_name(parm->label),enum_index((int)(parm->def.ivalue),parm->enum_list));
437	break;
438	case P_SEP:
439	break;
440	}
441	printf("</td></tr>\n");
442	TALLOC_FREE(ctx);
443	}
444
445	/****************************************************************************
446	display a set of parameters for a service
447	****************************************************************************/
448	static void show_parameters(int snum, int allparameters, unsigned int parm_filter, int printers)
449	{
450	int i = 0;
451	struct parm_struct *parm;
452	const char *heading = NULL;
453	const char *last_heading = NULL;
454
455	while ((parm = lp_next_parameter(snum, &i, allparameters))) {
456	if (snum < 0 && parm->p_class == P_LOCAL && !(parm->flags & FLAG_GLOBAL))
457	continue;
458	if (parm->p_class == P_SEPARATOR) {
459	heading = parm->label;
460	continue;
461	}
462	if (parm->flags & FLAG_HIDE) continue;
463	if (snum >= 0) {
464	if (printers & !(parm->flags & FLAG_PRINT)) continue;
465	if (!printers & !(parm->flags & FLAG_SHARE)) continue;
466	}
467
468	if (!( parm_filter & FLAG_ADVANCED )) {
469	if (!(parm->flags & FLAG_BASIC)) {
470	void *ptr = parm->ptr;
471
472	if (parm->p_class == P_LOCAL && snum >= 0) {
473	ptr = lp_local_ptr_by_snum(snum, ptr);
474	}
475
476	switch (parm->type) {
477	case P_CHAR:
478	if ((char )ptr == (char)(parm->def.cvalue)) continue;
479	break;
480
481	case P_LIST:
482	if (!str_list_equal((const char **)ptr,
483	(const char **)(parm->def.lvalue))) continue;
484	break;
485
486	case P_STRING:
487	case P_USTRING:
488	if (!strcmp((char )ptr,(char )(parm->def.svalue))) continue;
489	break;
490
491	case P_BOOL:
492	case P_BOOLREV:
493	if ((bool )ptr == (bool)(parm->def.bvalue)) continue;
494	break;
495
496	case P_INTEGER:
497	case P_OCTAL:
498	if ((int )ptr == (int)(parm->def.ivalue)) continue;
499	break;
500
501
502	case P_ENUM:
503	if ((int )ptr == (int)(parm->def.ivalue)) continue;
504	break;
505	case P_SEP:
506	continue;
507	}
508	}
509	if (printers && !(parm->flags & FLAG_PRINT)) continue;
510	}
511
512	if ((parm_filter & FLAG_WIZARD) && !(parm->flags & FLAG_WIZARD)) continue;
513
514	if ((parm_filter & FLAG_ADVANCED) && !(parm->flags & FLAG_ADVANCED)) continue;
515
516	if (heading && heading != last_heading) {
517	printf("<tr><td></td></tr><tr><td><b><u>%s</u></b></td></tr>\n", _(heading));
518	last_heading = heading;
519	}
520	show_parameter(snum, parm);
521	}
522	}
523
524	/****************************************************************************
525	load the smb.conf file into loadparm.
526	****************************************************************************/
527	static bool load_config(bool save_def)
528	{
529	return lp_load(get_dyn_CONFIGFILE(),False,save_def,False,True);
530	}
531
532	/****************************************************************************
533	write a config file
534	****************************************************************************/
535	static void write_config(FILE *f, bool show_defaults)
536	{
537	TALLOC_CTX *ctx = talloc_stackframe();
538
539	fprintf(f, "# Samba config file created using SWAT\n");
540	fprintf(f, "# from %s (%s)\n", cgi_remote_host(), cgi_remote_addr());
541	fprintf(f, "# Date: %s\n\n", current_timestring(ctx, False));
542
543	lp_dump(f, show_defaults, iNumNonAutoPrintServices);
544
545	TALLOC_FREE(ctx);
546	}
547
548	/****************************************************************************
549	save and reload the smb.conf config file
550	****************************************************************************/
551	static int save_reload(int snum)
552	{
553	FILE *f;
554	struct stat st;
555
556	f = sys_fopen(get_dyn_CONFIGFILE(),"w");
557	if (!f) {
558	printf(_("failed to open %s for writing"), get_dyn_CONFIGFILE());
559	printf("\n");
560	return 0;
561	}
562
563	/* just in case they have used the buggy xinetd to create the file */
564	if (fstat(fileno(f), &st) == 0 &&
565	(st.st_mode & S_IWOTH)) {
566	#if defined HAVE_FCHMOD
567	fchmod(fileno(f), S_IWUSR \| S_IRUSR \| S_IRGRP \| S_IROTH);
568	#else
569	chmod(get_dyn_CONFIGFILE(), S_IWUSR \| S_IRUSR \| S_IRGRP \| S_IROTH);
570	#endif
571	}
572
573	write_config(f, False);
574	if (snum >= 0)
575	lp_dump_one(f, False, snum);
576	fclose(f);
577
578	lp_kill_all_services();
579
580	if (!load_config(False)) {
581	printf(_("Can't reload %s"), get_dyn_CONFIGFILE());
582	printf("\n");
583	return 0;
584	}
585	iNumNonAutoPrintServices = lp_numservices();
586	if (pcap_cache_loaded()) {
587	load_printers(server_event_context(),
588	server_messaging_context());
589	}
590
591	return 1;
592	}
593
594	/****************************************************************************
595	commit one parameter
596	****************************************************************************/
597	static void commit_parameter(int snum, struct parm_struct parm, const char v)
598	{
599	int i;
600	char *s;
601
602	if (snum < 0 && parm->p_class == P_LOCAL) {
603	/* this handles the case where we are changing a local
604	variable globally. We need to change the parameter in
605	all shares where it is currently set to the default */
606	for (i=0;i<lp_numservices();i++) {
607	s = lp_servicename(i);
608	if (s && (*s) && lp_is_default(i, parm)) {
609	lp_do_parameter(i, parm->label, v);
610	}
611	}
612	}
613
614	lp_do_parameter(snum, parm->label, v);
615	}
616
617	/****************************************************************************
618	commit a set of parameters for a service
619	****************************************************************************/
620	static void commit_parameters(int snum)
621	{
622	int i = 0;
623	struct parm_struct *parm;
624	char *label;
625	const char *v;
626
627	while ((parm = lp_next_parameter(snum, &i, 1))) {
628	if (asprintf(&label, "parm_%s", make_parm_name(parm->label)) > 0) {
629	if ((v = cgi_variable(label)) != NULL) {
630	if (parm->flags & FLAG_HIDE)
631	continue;
632	commit_parameter(snum, parm, v);
633	}
634	SAFE_FREE(label);
635	}
636	}
637	}
638
639	/****************************************************************************
640	spit out the html for a link with an image
641	****************************************************************************/
642	static void image_link(const char name, const char hlink, const char *src)
643	{
644	printf("<A HREF=\"%s/%s\"><img border=\"0\" src=\"/swat/%s\" alt=\"%s\"></A>\n",
645	cgi_baseurl(), hlink, src, name);
646	}
647
648	/****************************************************************************
649	display the main navigation controls at the top of each page along
650	with a title
651	****************************************************************************/
652	static void show_main_buttons(void)
653	{
654	char *p;
655
656	if ((p = cgi_user_name()) && strcmp(p, "root")) {
657	printf(_("Logged in as <b>%s</b>"), p);
658	printf("<p>\n");
659	}
660
661	image_link(_("Home"), "", "images/home.gif");
662	if (have_write_access) {
663	image_link(_("Globals"), "globals", "images/globals.gif");
664	image_link(_("Shares"), "shares", "images/shares.gif");
665	image_link(_("Printers"), "printers", "images/printers.gif");
666	image_link(_("Wizard"), "wizard", "images/wizard.gif");
667	}
668	/* root always gets all buttons, otherwise look for -P */
669	if ( have_write_access \|\| (!passwd_only && have_read_access) ) {
670	image_link(_("Status"), "status", "images/status.gif");
671	image_link(_("View Config"), "viewconfig", "images/viewconfig.gif");
672	}
673	image_link(_("Password Management"), "passwd", "images/passwd.gif");
674
675	printf("<HR>\n");
676	}
677
678	/****************************************************************************
679	* Handle Display/Edit Mode CGI
680	****************************************************************************/
681	static void ViewModeBoxes(int mode)
682	{
683	printf("<p>%s: \n", _("Current View Is"));
684	printf("<input type=radio name=\"ViewMode\" value=0 %s>%s\n", ((mode == 0) ? "checked" : ""), _("Basic"));
685	printf("<input type=radio name=\"ViewMode\" value=1 %s>%s\n", ((mode == 1) ? "checked" : ""), _("Advanced"));
686	printf("<br>%s: \n", _("Change View To"));
687	printf("<input type=submit name=\"BasicMode\" value=\"%s\">\n", _("Basic"));
688	printf("<input type=submit name=\"AdvMode\" value=\"%s\">\n", _("Advanced"));
689	printf("</p><br>\n");
690	}
691
692	/****************************************************************************
693	display a welcome page
694	****************************************************************************/
695	static void welcome_page(void)
696	{
697	if (file_exist("help/welcome.html")) {
698	include_html("help/welcome.html");
699	} else {
700	include_html("help/welcome-no-samba-doc.html");
701	}
702	}
703
704	/****************************************************************************
705	display the current smb.conf
706	****************************************************************************/
707	static void viewconfig_page(void)
708	{
709	int full_view=0;
710	const char form_name[] = "viewconfig";
711
712	if (!verify_xsrf_token(form_name)) {
713	goto output_page;
714	}
715
716	if (cgi_variable("full_view")) {
717	full_view = 1;
718	}
719
720	output_page:
721	printf("<H2>%s</H2>\n", _("Current Config"));
722	printf("<form method=post>\n");
723	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
724
725	if (full_view) {
726	printf("<input type=submit name=\"normal_view\" value=\"%s\">\n", _("Normal View"));
727	} else {
728	printf("<input type=submit name=\"full_view\" value=\"%s\">\n", _("Full View"));
729	}
730
731	printf("<p><pre>");
732	write_config(stdout, full_view);
733	printf("</pre>");
734	printf("</form>\n");
735	}
736
737	/****************************************************************************
738	second screen of the wizard ... Fetch Configuration Parameters
739	****************************************************************************/
740	static void wizard_params_page(void)
741	{
742	unsigned int parm_filter = FLAG_WIZARD;
743	const char form_name[] = "wizard_params";
744
745	/* Here we first set and commit all the parameters that were selected
746	in the previous screen. */
747
748	printf("<H2>%s</H2>\n", _("Wizard Parameter Edit Page"));
749
750	if (!verify_xsrf_token(form_name)) {
751	goto output_page;
752	}
753
754	if (cgi_variable("Commit")) {
755	commit_parameters(GLOBAL_SECTION_SNUM);
756	save_reload(-1);
757	}
758
759	output_page:
760	printf("<form name=\"swatform\" method=post action=wizard_params>\n");
761	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
762
763	if (have_write_access) {
764	printf("<input type=submit name=\"Commit\" value=\"Commit Changes\">\n");
765	}
766
767	printf("<input type=reset name=\"Reset Values\" value=\"Reset\">\n");
768	printf("<p>\n");
769
770	printf("<table>\n");
771	show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
772	printf("</table>\n");
773	printf("</form>\n");
774	}
775
776	/****************************************************************************
777	Utility to just rewrite the smb.conf file - effectively just cleans it up
778	****************************************************************************/
779	static void rewritecfg_file(void)
780	{
781	commit_parameters(GLOBAL_SECTION_SNUM);
782	save_reload(-1);
783	printf("<H2>%s</H2>\n", _("Note: smb.conf file has been read and rewritten"));
784	}
785
786	/****************************************************************************
787	wizard to create/modify the smb.conf file
788	****************************************************************************/
789	static void wizard_page(void)
790	{
791	/* Set some variables to collect data from smb.conf */
792	int role = 0;
793	int winstype = 0;
794	int have_home = -1;
795	int HomeExpo = 0;
796	int SerType = 0;
797	const char form_name[] = "wizard";
798
799	if (!verify_xsrf_token(form_name)) {
800	goto output_page;
801	}
802
803	if (cgi_variable("Rewrite")) {
804	(void) rewritecfg_file();
805	return;
806	}
807
808	if (cgi_variable("GetWizardParams")){
809	(void) wizard_params_page();
810	return;
811	}
812
813	if (cgi_variable("Commit")){
814	SerType = atoi(cgi_variable_nonull("ServerType"));
815	winstype = atoi(cgi_variable_nonull("WINSType"));
816	have_home = lp_servicenumber(HOMES_NAME);
817	HomeExpo = atoi(cgi_variable_nonull("HomeExpo"));
818
819	/* Plain text passwords are too badly broken - use encrypted passwords only */
820	lp_do_parameter( GLOBAL_SECTION_SNUM, "encrypt passwords", "Yes");
821
822	switch ( SerType ){
823	case 0:
824	/* Stand-alone Server */
825	lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
826	lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
827	break;
828	case 1:
829	/* Domain Member */
830	lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "DOMAIN" );
831	lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
832	break;
833	case 2:
834	/* Domain Controller */
835	lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
836	lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "Yes" );
837	break;
838	}
839	switch ( winstype ) {
840	case 0:
841	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
842	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
843	break;
844	case 1:
845	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "Yes" );
846	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
847	break;
848	case 2:
849	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
850	lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", cgi_variable_nonull("WINSAddr"));
851	break;
852	}
853
854	/* Have to create Homes share? */
855	if ((HomeExpo == 1) && (have_home == -1)) {
856	const char *unix_share = HOMES_NAME;
857
858	load_config(False);
859	lp_copy_service(GLOBAL_SECTION_SNUM, unix_share);
860	have_home = lp_servicenumber(HOMES_NAME);
861	lp_do_parameter( have_home, "read only", "No");
862	lp_do_parameter( have_home, "valid users", "%S");
863	lp_do_parameter( have_home, "browseable", "No");
864	commit_parameters(have_home);
865	save_reload(have_home);
866	}
867
868	/* Need to Delete Homes share? */
869	if ((HomeExpo == 0) && (have_home != -1)) {
870	lp_remove_service(have_home);
871	have_home = -1;
872	}
873
874	commit_parameters(GLOBAL_SECTION_SNUM);
875	save_reload(-1);
876	}
877	else
878	{
879	/* Now determine smb.conf WINS settings */
880	if (lp_wins_support())
881	winstype = 1;
882	if (lp_wins_server_list() && strlen(*lp_wins_server_list()))
883	winstype = 2;
884
885	/* Do we have a homes share? */
886	have_home = lp_servicenumber(HOMES_NAME);
887	}
888	if ((winstype == 2) && lp_wins_support())
889	winstype = 3;
890
891	role = lp_server_role();
892
893	output_page:
894	/* Here we go ... */
895	printf("<H2>%s</H2>\n", _("Samba Configuration Wizard"));
896	printf("<form method=post action=wizard>\n");
897	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
898
899	if (have_write_access) {
900	printf("%s\n", _("The \"Rewrite smb.conf file\" button will clear the smb.conf file of all default values and of comments."));
901	printf("%s", _("The same will happen if you press the commit button."));
902	printf("<br><br>\n");
903	printf("<center>");
904	printf("<input type=submit name=\"Rewrite\" value=\"%s\">   ",_("Rewrite smb.conf file"));
905	printf("<input type=submit name=\"Commit\" value=\"%s\">   ",_("Commit"));
906	printf("<input type=submit name=\"GetWizardParams\" value=\"%s\">", _("Edit Parameter Values"));
907	printf("</center>\n");
908	}
909
910	printf("<hr>");
911	printf("<center><table border=0>");
912	printf("<tr><td><b>%s: </b></td>\n", _("Server Type"));
913	printf("<td><input type=radio name=\"ServerType\" value=\"0\" %s> %s </td>", ((role == ROLE_STANDALONE) ? "checked" : ""), _("Stand Alone"));
914	printf("<td><input type=radio name=\"ServerType\" value=\"1\" %s> %s </td>", ((role == ROLE_DOMAIN_MEMBER) ? "checked" : ""), _("Domain Member"));
915	printf("<td><input type=radio name=\"ServerType\" value=\"2\" %s> %s </td>", ((role == ROLE_DOMAIN_PDC) ? "checked" : ""), _("Domain Controller"));
916	printf("</tr>\n");
917	if (role == ROLE_DOMAIN_BDC) {
918	printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Unusual Type in smb.conf - Please Select New Mode"));
919	}
920	printf("<tr><td><b>%s: </b></td>\n", _("Configure WINS As"));
921	printf("<td><input type=radio name=\"WINSType\" value=\"0\" %s> %s </td>", ((winstype == 0) ? "checked" : ""), _("Not Used"));
922	printf("<td><input type=radio name=\"WINSType\" value=\"1\" %s> %s </td>", ((winstype == 1) ? "checked" : ""), _("Server for client use"));
923	printf("<td><input type=radio name=\"WINSType\" value=\"2\" %s> %s </td>", ((winstype == 2) ? "checked" : ""), _("Client of another WINS server"));
924	printf("</tr>\n");
925	printf("<tr><td></td><td></td><td></td><td>%s <input type=text size=\"16\" name=\"WINSAddr\" value=\"", _("Remote WINS Server"));
926
927	/* Print out the list of wins servers */
928	if(lp_wins_server_list()) {
929	int i;
930	const char **wins_servers = lp_wins_server_list();
931	for(i = 0; wins_servers[i]; i++) printf("%s ", wins_servers[i]);
932	}
933
934	printf("\"></td></tr>\n");
935	if (winstype == 3) {
936	printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Error: WINS Server Mode and WINS Support both set in smb.conf"));
937	printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Please Select desired WINS mode above."));
938	}
939	printf("<tr><td><b>%s: </b></td>\n", _("Expose Home Directories"));
940	printf("<td><input type=radio name=\"HomeExpo\" value=\"1\" %s> Yes</td>", (have_home == -1) ? "" : "checked ");
941	printf("<td><input type=radio name=\"HomeExpo\" value=\"0\" %s> No</td>", (have_home == -1 ) ? "checked" : "");
942	printf("<td></td></tr>\n");
943
944	/* Enable this when we are ready ....
945	* printf("<tr><td><b>%s: </b></td>\n", _("Is Print Server"));
946	* printf("<td><input type=radio name=\"PtrSvr\" value=\"1\" %s> Yes</td>");
947	* printf("<td><input type=radio name=\"PtrSvr\" value=\"0\" %s> No</td>");
948	* printf("<td></td></tr>\n");
949	*/
950
951	printf("</table></center>");
952	printf("<hr>");
953
954	printf("%s\n", _("The above configuration options will set multiple parameters and will generally assist with rapid Samba deployment."));
955	printf("</form>\n");
956	}
957
958
959	/****************************************************************************
960	display a globals editing page
961	****************************************************************************/
962	static void globals_page(void)
963	{
964	unsigned int parm_filter = FLAG_BASIC;
965	int mode = 0;
966	const char form_name[] = "globals";
967
968	printf("<H2>%s</H2>\n", _("Global Parameters"));
969
970	if (!verify_xsrf_token(form_name)) {
971	goto output_page;
972	}
973
974	if (cgi_variable("Commit")) {
975	commit_parameters(GLOBAL_SECTION_SNUM);
976	save_reload(-1);
977	}
978
979	if ( cgi_variable("ViewMode") )
980	mode = atoi(cgi_variable_nonull("ViewMode"));
981	if ( cgi_variable("BasicMode"))
982	mode = 0;
983	if ( cgi_variable("AdvMode"))
984	mode = 1;
985
986	output_page:
987	printf("<form name=\"swatform\" method=post action=globals>\n");
988	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
989
990	ViewModeBoxes( mode );
991	switch ( mode ) {
992	case 0:
993	parm_filter = FLAG_BASIC;
994	break;
995	case 1:
996	parm_filter = FLAG_ADVANCED;
997	break;
998	}
999	printf("<br>\n");
1000	if (have_write_access) {
1001	printf("<input type=submit name=\"Commit\" value=\"%s\">\n",
1002	_("Commit Changes"));
1003	}
1004
1005	printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n",
1006	_("Reset Values"));
1007
1008	printf("<p>\n");
1009	printf("<table>\n");
1010	show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
1011	printf("</table>\n");
1012	printf("</form>\n");
1013	}
1014
1015	/****************************************************************************
1016	display a shares editing page. share is in unix codepage,
1017	****************************************************************************/
1018	static void shares_page(void)
1019	{
1020	const char *share = cgi_variable("share");
1021	char *s;
1022	char *utf8_s;
1023	int snum = -1;
1024	int i;
1025	int mode = 0;
1026	unsigned int parm_filter = FLAG_BASIC;
1027	size_t converted_size;
1028	const char form_name[] = "shares";
1029
1030	printf("<H2>%s</H2>\n", _("Share Parameters"));
1031
1032	if (!verify_xsrf_token(form_name)) {
1033	goto output_page;
1034	}
1035
1036	if (share)
1037	snum = lp_servicenumber(share);
1038
1039
1040	if (cgi_variable("Commit") && snum >= 0) {
1041	commit_parameters(snum);
1042	save_reload(-1);
1043	snum = lp_servicenumber(share);
1044	}
1045
1046	if (cgi_variable("Delete") && snum >= 0) {
1047	lp_remove_service(snum);
1048	save_reload(-1);
1049	share = NULL;
1050	snum = -1;
1051	}
1052
1053	if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
1054	snum = lp_servicenumber(share);
1055	if (snum < 0) {
1056	load_config(False);
1057	lp_copy_service(GLOBAL_SECTION_SNUM, share);
1058	snum = lp_servicenumber(share);
1059	save_reload(snum);
1060	snum = lp_servicenumber(share);
1061	}
1062	}
1063
1064	if ( cgi_variable("ViewMode") )
1065	mode = atoi(cgi_variable_nonull("ViewMode"));
1066	if ( cgi_variable("BasicMode"))
1067	mode = 0;
1068	if ( cgi_variable("AdvMode"))
1069	mode = 1;
1070
1071	output_page:
1072	printf("<FORM name=\"swatform\" method=post>\n");
1073	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
1074
1075	printf("<table>\n");
1076
1077	ViewModeBoxes( mode );
1078	switch ( mode ) {
1079	case 0:
1080	parm_filter = FLAG_BASIC;
1081	break;
1082	case 1:
1083	parm_filter = FLAG_ADVANCED;
1084	break;
1085	}
1086	printf("<br><tr>\n");
1087	printf("<td><input type=submit name=selectshare value=\"%s\"></td>\n", _("Choose Share"));
1088	printf("<td><select name=share>\n");
1089	if (snum < 0)
1090	printf("<option value=\" \"> \n");
1091	for (i=0;i<lp_numservices();i++) {
1092	s = lp_servicename(i);
1093	if (s && (*s) && strcmp(s,"IPC$") && !lp_print_ok(i)) {
1094	push_utf8_talloc(talloc_tos(), &utf8_s, s, &converted_size);
1095	printf("<option %s value=\"%s\">%s\n",
1096	(share && strcmp(share,s)==0)?"SELECTED":"",
1097	utf8_s, utf8_s);
1098	TALLOC_FREE(utf8_s);
1099	}
1100	}
1101	printf("</select></td>\n");
1102	if (have_write_access) {
1103	printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Share"));
1104	}
1105	printf("</tr>\n");
1106	printf("</table>");
1107	printf("<table>");
1108	if (have_write_access) {
1109	printf("<tr>\n");
1110	printf("<td><input type=submit name=createshare value=\"%s\"></td>\n", _("Create Share"));
1111	printf("<td><input type=text size=30 name=newshare></td></tr>\n");
1112	}
1113	printf("</table>");
1114
1115
1116	if (snum >= 0) {
1117	if (have_write_access) {
1118	printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
1119	}
1120
1121	printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
1122	printf("<p>\n");
1123	}
1124
1125	if (snum >= 0) {
1126	printf("<table>\n");
1127	show_parameters(snum, 1, parm_filter, 0);
1128	printf("</table>\n");
1129	}
1130
1131	printf("</FORM>\n");
1132	}
1133
1134	/*************************************************************
1135	change a password either locally or remotely
1136	*************************************************************/
1137	static bool change_password(const char remote_machine, const char user_name,
1138	const char old_passwd, const char new_passwd,
1139	int local_flags)
1140	{
1141	NTSTATUS ret;
1142	char *err_str = NULL;
1143	char *msg_str = NULL;
1144
1145	if (demo_mode) {
1146	printf("%s\n<p>", _("password change in demo mode rejected"));
1147	return False;
1148	}
1149
1150	if (remote_machine != NULL) {
1151	ret = remote_password_change(remote_machine, user_name,
1152	old_passwd, new_passwd, &err_str);
1153	if (err_str != NULL)
1154	printf("%s\n<p>", err_str);
1155	SAFE_FREE(err_str);
1156	return NT_STATUS_IS_OK(ret);
1157	}
1158
1159	if(!initialize_password_db(True, NULL)) {
1160	printf("%s\n<p>", _("Can't setup password database vectors."));
1161	return False;
1162	}
1163
1164	ret = local_password_change(user_name, local_flags, new_passwd,
1165	&err_str, &msg_str);
1166
1167	if(msg_str)
1168	printf("%s\n<p>", msg_str);
1169	if(err_str)
1170	printf("%s\n<p>", err_str);
1171
1172	SAFE_FREE(msg_str);
1173	SAFE_FREE(err_str);
1174	return NT_STATUS_IS_OK(ret);
1175	}
1176
1177	/****************************************************************************
1178	do the stuff required to add or change a password
1179	****************************************************************************/
1180	static void chg_passwd(void)
1181	{
1182	const char *host;
1183	bool rslt;
1184	int local_flags = 0;
1185
1186	/* Make sure users name has been specified */
1187	if (strlen(cgi_variable_nonull(SWAT_USER)) == 0) {
1188	printf("<p>%s\n", _(" Must specify \"User Name\" "));
1189	return;
1190	}
1191
1192	/*
1193	* smbpasswd doesn't require anything but the users name to delete, disable or enable the user,
1194	* so if that's what we're doing, skip the rest of the checks
1195	*/
1196	if (!cgi_variable(DISABLE_USER_FLAG) && !cgi_variable(ENABLE_USER_FLAG) && !cgi_variable(DELETE_USER_FLAG)) {
1197
1198	/*
1199	* If current user is not root, make sure old password has been specified
1200	* If REMOTE change, even root must provide old password
1201	*/
1202	if (((!am_root()) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0)) \|\|
1203	((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0))) {
1204	printf("<p>%s\n", _(" Must specify \"Old Password\" "));
1205	return;
1206	}
1207
1208	/* If changing a users password on a remote hosts we have to know what host */
1209	if ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(RHOST)) <= 0)) {
1210	printf("<p>%s\n", _(" Must specify \"Remote Machine\" "));
1211	return;
1212	}
1213
1214	/* Make sure new passwords have been specified */
1215	if ((strlen( cgi_variable_nonull(NEW_PSWD)) <= 0) \|\|
1216	(strlen( cgi_variable_nonull(NEW2_PSWD)) <= 0)) {
1217	printf("<p>%s\n", _(" Must specify \"New, and Re-typed Passwords\" "));
1218	return;
1219	}
1220
1221	/* Make sure new passwords was typed correctly twice */
1222	if (strcmp(cgi_variable_nonull(NEW_PSWD), cgi_variable_nonull(NEW2_PSWD)) != 0) {
1223	printf("<p>%s\n", _(" Re-typed password didn't match new password "));
1224	return;
1225	}
1226	}
1227
1228	if (cgi_variable(CHG_R_PASSWD_FLAG)) {
1229	host = cgi_variable(RHOST);
1230	} else if (am_root()) {
1231	host = NULL;
1232	} else {
1233	host = "127.0.0.1";
1234	}
1235
1236	/*
1237	* Set up the local flags.
1238	*/
1239
1240	local_flags \|= (cgi_variable(ADD_USER_FLAG) ? LOCAL_ADD_USER : 0);
1241	local_flags \|= (cgi_variable(ADD_USER_FLAG) ? LOCAL_SET_PASSWORD : 0);
1242	local_flags \|= (cgi_variable(CHG_S_PASSWD_FLAG) ? LOCAL_SET_PASSWORD : 0);
1243	local_flags \|= (cgi_variable(DELETE_USER_FLAG) ? LOCAL_DELETE_USER : 0);
1244	local_flags \|= (cgi_variable(ENABLE_USER_FLAG) ? LOCAL_ENABLE_USER : 0);
1245	local_flags \|= (cgi_variable(DISABLE_USER_FLAG) ? LOCAL_DISABLE_USER : 0);
1246
1247	rslt = change_password(host,
1248	cgi_variable_nonull(SWAT_USER),
1249	cgi_variable_nonull(OLD_PSWD), cgi_variable_nonull(NEW_PSWD),
1250	local_flags);
1251
1252	if(cgi_variable(CHG_S_PASSWD_FLAG)) {
1253	printf("<p>");
1254	if (rslt == True) {
1255	printf("%s\n", _(" The passwd has been changed."));
1256	} else {
1257	printf("%s\n", _(" The passwd has NOT been changed."));
1258	}
1259	}
1260
1261	return;
1262	}
1263
1264	/****************************************************************************
1265	display a password editing page
1266	****************************************************************************/
1267	static void passwd_page(void)
1268	{
1269	const char *new_name = cgi_user_name();
1270	const char passwd_form[] = "passwd";
1271	const char rpasswd_form[] = "rpasswd";
1272
1273	if (!new_name) new_name = "";
1274
1275	printf("<H2>%s</H2>\n", _("Server Password Management"));
1276
1277	printf("<FORM name=\"swatform\" method=post>\n");
1278	print_xsrf_token(cgi_user_name(), cgi_user_pass(), passwd_form);
1279
1280	printf("<table>\n");
1281
1282	/*
1283	* Create all the dialog boxes for data collection
1284	*/
1285	printf("<tr><td> %s : </td>\n", _("User Name"));
1286	printf("<td><input type=text size=30 name=%s value=%s></td></tr> \n", SWAT_USER, new_name);
1287	if (!am_root()) {
1288	printf("<tr><td> %s : </td>\n", _("Old Password"));
1289	printf("<td><input type=password size=30 name=%s></td></tr> \n",OLD_PSWD);
1290	}
1291	printf("<tr><td> %s : </td>\n", _("New Password"));
1292	printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1293	printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1294	printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1295	printf("</table>\n");
1296
1297	/*
1298	* Create all the control buttons for requesting action
1299	*/
1300	printf("<input type=submit name=%s value=\"%s\">\n",
1301	CHG_S_PASSWD_FLAG, _("Change Password"));
1302	if (demo_mode \|\| am_root()) {
1303	printf("<input type=submit name=%s value=\"%s\">\n",
1304	ADD_USER_FLAG, _("Add New User"));
1305	printf("<input type=submit name=%s value=\"%s\">\n",
1306	DELETE_USER_FLAG, _("Delete User"));
1307	printf("<input type=submit name=%s value=\"%s\">\n",
1308	DISABLE_USER_FLAG, _("Disable User"));
1309	printf("<input type=submit name=%s value=\"%s\">\n",
1310	ENABLE_USER_FLAG, _("Enable User"));
1311	}
1312	printf("<p></FORM>\n");
1313
1314	/*
1315	* Do some work if change, add, disable or enable was
1316	* requested. It could be this is the first time through this
1317	* code, so there isn't anything to do. */
1318	if (verify_xsrf_token(passwd_form) &&
1319	((cgi_variable(CHG_S_PASSWD_FLAG)) \|\| (cgi_variable(ADD_USER_FLAG)) \|\| (cgi_variable(DELETE_USER_FLAG)) \|\|
1320	(cgi_variable(DISABLE_USER_FLAG)) \|\| (cgi_variable(ENABLE_USER_FLAG)))) {
1321	chg_passwd();
1322	}
1323
1324	printf("<H2>%s</H2>\n", _("Client/Server Password Management"));
1325
1326	printf("<FORM name=\"swatform\" method=post>\n");
1327	print_xsrf_token(cgi_user_name(), cgi_user_pass(), rpasswd_form);
1328
1329	printf("<table>\n");
1330
1331	/*
1332	* Create all the dialog boxes for data collection
1333	*/
1334	printf("<tr><td> %s : </td>\n", _("User Name"));
1335	printf("<td><input type=text size=30 name=%s value=%s></td></tr>\n",SWAT_USER, new_name);
1336	printf("<tr><td> %s : </td>\n", _("Old Password"));
1337	printf("<td><input type=password size=30 name=%s></td></tr>\n",OLD_PSWD);
1338	printf("<tr><td> %s : </td>\n", _("New Password"));
1339	printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1340	printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1341	printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1342	printf("<tr><td> %s : </td>\n", _("Remote Machine"));
1343	printf("<td><input type=text size=30 name=%s></td></tr>\n",RHOST);
1344
1345	printf("</table>");
1346
1347	/*
1348	* Create all the control buttons for requesting action
1349	*/
1350	printf("<input type=submit name=%s value=\"%s\">",
1351	CHG_R_PASSWD_FLAG, _("Change Password"));
1352
1353	printf("<p></FORM>\n");
1354
1355	/*
1356	* Do some work if a request has been made to change the
1357	* password somewhere other than the server. It could be this
1358	* is the first time through this code, so there isn't
1359	* anything to do. */
1360	if (verify_xsrf_token(passwd_form) && cgi_variable(CHG_R_PASSWD_FLAG)) {
1361	chg_passwd();
1362	}
1363
1364	}
1365
1366	/****************************************************************************
1367	display a printers editing page
1368	****************************************************************************/
1369	static void printers_page(void)
1370	{
1371	const char *share = cgi_variable("share");
1372	char *s;
1373	int snum=-1;
1374	int i;
1375	int mode = 0;
1376	unsigned int parm_filter = FLAG_BASIC;
1377	const char form_name[] = "printers";
1378
1379	if (!verify_xsrf_token(form_name)) {
1380	goto output_page;
1381	}
1382
1383	if (share)
1384	snum = lp_servicenumber(share);
1385
1386	if (cgi_variable("Commit") && snum >= 0) {
1387	commit_parameters(snum);
1388	if (snum >= iNumNonAutoPrintServices)
1389	save_reload(snum);
1390	else
1391	save_reload(-1);
1392	snum = lp_servicenumber(share);
1393	}
1394
1395	if (cgi_variable("Delete") && snum >= 0) {
1396	lp_remove_service(snum);
1397	save_reload(-1);
1398	share = NULL;
1399	snum = -1;
1400	}
1401
1402	if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
1403	snum = lp_servicenumber(share);
1404	if (snum < 0 \|\| snum >= iNumNonAutoPrintServices) {
1405	load_config(False);
1406	lp_copy_service(GLOBAL_SECTION_SNUM, share);
1407	snum = lp_servicenumber(share);
1408	lp_do_parameter(snum, "print ok", "Yes");
1409	save_reload(snum);
1410	snum = lp_servicenumber(share);
1411	}
1412	}
1413
1414	if ( cgi_variable("ViewMode") )
1415	mode = atoi(cgi_variable_nonull("ViewMode"));
1416	if ( cgi_variable("BasicMode"))
1417	mode = 0;
1418	if ( cgi_variable("AdvMode"))
1419	mode = 1;
1420
1421	output_page:
1422	printf("<H2>%s</H2>\n", _("Printer Parameters"));
1423
1424	printf("<H3>%s</H3>\n", _("Important Note:"));
1425	printf("%s",_("Printer names marked with [*] in the Choose Printer drop-down box "));
1426	printf("%s",_("are autoloaded printers from "));
1427	printf("<A HREF=\"/swat/help/smb.conf.5.html#printcapname\" target=\"docs\">%s</A>\n", _("Printcap Name"));
1428	printf("%s\n", _("Attempting to delete these printers from SWAT will have no effect."));
1429
1430
1431	printf("<FORM name=\"swatform\" method=post>\n");
1432	print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
1433
1434	ViewModeBoxes( mode );
1435	switch ( mode ) {
1436	case 0:
1437	parm_filter = FLAG_BASIC;
1438	break;
1439	case 1:
1440	parm_filter = FLAG_ADVANCED;
1441	break;
1442	}
1443	printf("<table>\n");
1444	printf("<tr><td><input type=submit name=\"selectshare\" value=\"%s\"></td>\n", _("Choose Printer"));
1445	printf("<td><select name=\"share\">\n");
1446	if (snum < 0 \|\| !lp_print_ok(snum))
1447	printf("<option value=\" \"> \n");
1448	for (i=0;i<lp_numservices();i++) {
1449	s = lp_servicename(i);
1450	if (s && (*s) && strcmp(s,"IPC$") && lp_print_ok(i)) {
1451	if (i >= iNumNonAutoPrintServices)
1452	printf("<option %s value=\"%s\">[*]%s\n",
1453	(share && strcmp(share,s)==0)?"SELECTED":"",
1454	s, s);
1455	else
1456	printf("<option %s value=\"%s\">%s\n",
1457	(share && strcmp(share,s)==0)?"SELECTED":"",
1458	s, s);
1459	}
1460	}
1461	printf("</select></td>");
1462	if (have_write_access) {
1463	printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Printer"));
1464	}
1465	printf("</tr>");
1466	printf("</table>\n");
1467
1468	if (have_write_access) {
1469	printf("<table>\n");
1470	printf("<tr><td><input type=submit name=\"createshare\" value=\"%s\"></td>\n", _("Create Printer"));
1471	printf("<td><input type=text size=30 name=\"newshare\"></td></tr>\n");
1472	printf("</table>");
1473	}
1474
1475
1476	if (snum >= 0) {
1477	if (have_write_access) {
1478	printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
1479	}
1480	printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
1481	printf("<p>\n");
1482	}
1483
1484	if (snum >= 0) {
1485	printf("<table>\n");
1486	show_parameters(snum, 1, parm_filter, 1);
1487	printf("</table>\n");
1488	}
1489	printf("</FORM>\n");
1490	}
1491
1492	/*
1493	when the _() translation macro is used there is no obvious place to free
1494	the resulting string and there is no easy way to give a static pointer.
1495	All we can do is rotate between some static buffers and hope a single d_printf()
1496	doesn't have more calls to _() than the number of buffers
1497	*/
1498
1499	const char lang_msg_rotate(TALLOC_CTX ctx, const char *msgid)
1500	{
1501	const char *msgstr;
1502	const char *ret;
1503
1504	msgstr = lang_msg(msgid);
1505	if (!msgstr) {
1506	return msgid;
1507	}
1508
1509	ret = talloc_strdup(ctx, msgstr);
1510
1511	lang_msg_free(msgstr);
1512	if (!ret) {
1513	return msgid;
1514	}
1515
1516	return ret;
1517	}
1518
1519	/**
1520	* main function for SWAT.
1521	**/
1522	int main(int argc, char *argv[])
1523	{
1524	const char *page;
1525	poptContext pc;
1526	struct poptOption long_options[] = {
1527	POPT_AUTOHELP
1528	{ "disable-authentication", 'a', POPT_ARG_VAL, &demo_mode, True, "Disable authentication (demo mode)" },
1529	{ "password-menu-only", 'P', POPT_ARG_VAL, &passwd_only, True, "Show only change password menu" },
1530	POPT_COMMON_SAMBA
1531	POPT_TABLEEND
1532	};
1533	TALLOC_CTX *frame = talloc_stackframe();
1534
1535	fault_setup(NULL);
1536	umask(S_IWGRP \| S_IWOTH);
1537
1538	#if defined(HAVE_SET_AUTH_PARAMETERS)
1539	set_auth_parameters(argc, argv);
1540	#endif /* HAVE_SET_AUTH_PARAMETERS */
1541
1542	/* just in case it goes wild ... */
1543	alarm(300);
1544
1545	setlinebuf(stdout);
1546
1547	/* we don't want any SIGPIPE messages */
1548	BlockSignals(True,SIGPIPE);
1549
1550	debug_set_logfile("/dev/null");
1551
1552	/* we don't want stderr screwing us up */
1553	close(2);
1554	open("/dev/null", O_WRONLY);
1555	setup_logging("swat", DEBUG_FILE);
1556
1557	load_case_tables();
1558
1559	pc = poptGetContext("swat", argc, (const char **) argv, long_options, 0);
1560
1561	/* Parse command line options */
1562
1563	while(poptGetNextOpt(pc) != -1) { }
1564
1565	poptFreeContext(pc);
1566
1567	/* This should set a more apporiate log file */
1568	load_config(True);
1569	reopen_logs();
1570	load_interfaces();
1571	iNumNonAutoPrintServices = lp_numservices();
1572	if (pcap_cache_loaded()) {
1573	load_printers(server_event_context(),
1574	server_messaging_context());
1575	}
1576
1577	#ifndef __OS2__
1578	cgi_setup(get_dyn_SWATDIR(), !demo_mode);
1579	#else
1580	#if 0
1581	debug_set_logfile("swat.log"); // this produces a logfile in the dir where swat.exe is located.
1582	#endif
1583	fstring path;
1584	fstrcpy(path, getcwd(NULL, _MAX_PATH));
1585	fstrcat(path, "/swat");
1586	cgi_setup(path, !demo_mode);
1587	#endif
1588
1589	print_header();
1590
1591	cgi_load_variables();
1592
1593	if (!file_exist(get_dyn_CONFIGFILE())) {
1594	have_read_access = True;
1595	have_write_access = True;
1596	} else {
1597	/* check if the authenticated user has write access - if not then
1598	don't show write options */
1599	have_write_access = (access(get_dyn_CONFIGFILE(),W_OK) == 0);
1600
1601	/* if the user doesn't have read access to smb.conf then
1602	don't let them view it */
1603	have_read_access = (access(get_dyn_CONFIGFILE(),R_OK) == 0);
1604	}
1605
1606	show_main_buttons();
1607
1608	page = cgi_pathinfo();
1609
1610	/* Root gets full functionality */
1611	if (have_read_access && strcmp(page, "globals")==0) {
1612	globals_page();
1613	} else if (have_read_access && strcmp(page,"shares")==0) {
1614	shares_page();
1615	} else if (have_read_access && strcmp(page,"printers")==0) {
1616	printers_page();
1617	} else if (have_read_access && strcmp(page,"status")==0) {
1618	status_page();
1619	} else if (have_read_access && strcmp(page,"viewconfig")==0) {
1620	viewconfig_page();
1621	} else if (strcmp(page,"passwd")==0) {
1622	passwd_page();
1623	} else if (have_read_access && strcmp(page,"wizard")==0) {
1624	wizard_page();
1625	} else if (have_read_access && strcmp(page,"wizard_params")==0) {
1626	wizard_params_page();
1627	} else if (have_read_access && strcmp(page,"rewritecfg")==0) {
1628	rewritecfg_file();
1629	} else {
1630	welcome_page();
1631	}
1632
1633	print_footer();
1634
1635	TALLOC_FREE(frame);
1636	return 0;
1637	}
1638
1639	/ @} /

Note: See TracBrowser for help on using the repository browser.

Download in other formats: