malhuda/developer
1
0
Fork 0
mirror of https://github.com/easy-wi/developer.git synced 2025-02-20 11:23:28 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

#17 + #122: Check (SSH2) Login TSDNS Master

Browse Source
This commit is contained in:
Ulrich Block 2013-11-01 11:41:13 +01:00
parent 1fe287b71f
commit 117895dec8
3 changed files with 348 additions and 264 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

541
web/stuff/voice_tsdns.php
View File

@ -44,9 +44,12 @@ if ((!isset($admin_id) or $main != 1) or (isset($admin_id) and !$pa['voiceserver
}
include(EASYWIDIR . '/stuff/keyphrasefile.php');
include(EASYWIDIR . '/stuff/class_voice.php');
include(EASYWIDIR . '/stuff/ssh_exec.php');
include(EASYWIDIR . '/stuff/keyphrasefile.php');
include(EASYWIDIR . '/third_party/password_compat/password.php');
$sprache = getlanguagefile('voice',$user_language,$reseller_id);
$sprache = getlanguagefile('voice', $user_language, $reseller_id);
$usprache = getlanguagefile('user', $user_language, $reseller_id);
$loguserid = $admin_id;
$logusername = getusername($admin_id);
$logusertype = 'admin';
@ -54,157 +57,182 @@ if ($reseller_id == 0) {
$logreseller = 0;
$logsubuser = 0;
} else {
if (isset($_SESSION['oldid'])) {
$logsubuser = $_SESSION['oldid'];
} else {
$logsubuser = 0;
}
$logsubuser = (isset($_SESSION['oldid'])) ? $_SESSION['oldid'] : 0;
$logreseller = 0;
}
if ($reseller_id != 0 and $admin_id != $reseller_id) {
$reseller_id = $admin_id;
}
if ($ui->w('action', 4, 'post') and !token(true)) {
// CSFR protection with hidden tokens. If token(true) returns false, we likely have an attack
if ($ui->w('action',4, 'post') and !token(true)) {
$template_file = $spracheResponse->token;
// Add and modify entries. Same validation can be used.
} else if ($ui->st('d', 'get') == 'ad' or $ui->st('d', 'get') == 'md') {
if ($ui->st('d', 'get') == 'ad' and !$ui->smallletters('action',2, 'post')) {
$template_file = 'admin_voice_tsdns_add.tpl';
} else if ($ui->st('d', 'get') == 'md' and !$ui->smallletters('action',2, 'post') and $ui->id('id',19, 'get')) {
$id = $ui->id('id',19, 'get');
$query = $sql->prepare("SELECT *,AES_DECRYPT(`ssh2port`,:aeskey) AS `decryptedssh2port`,AES_DECRYPT(`ssh2user`,:aeskey) AS `decryptedssh2user`,AES_DECRYPT(`ssh2password`,:aeskey) AS `decryptedssh2password` FROM `voice_tsdns` WHERE `id`=:id AND `resellerid`=:reseller_id LIMIT 1");
$query->execute(array(':aeskey' => $aeskey,':id' => $id,':reseller_id' => $reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$active = $row['active'];
$description = $row['description'];
$autorestart = $row['autorestart'];
$defaultdns = $row['defaultdns'];
$publickey = $row['publickey'];
$ssh2ip = $row['ssh2ip'];
$ssh2port = $row['decryptedssh2port'];
$ssh2user = $row['decryptedssh2user'];
$ssh2password = $row['decryptedssh2password'];
$serverdir = $row['serverdir'];
$keyname = $row['keyname'];
$bit = $row['bitversion'];
}
if (isset($ssh2ip)) {
$template_file = 'admin_voice_tsdns_md.tpl';
} else {
$template_file = 'admin_404.tpl';
}
} else if ($ui->smallletters('action',2, 'post') == 'ad' or $ui->smallletters('action',2, 'post') == 'md') {
$error = array();
if ($ui->active('active', 'post')) {
$active = $ui->active('active', 'post');
} else {
$error[] = 'Active';
}
if ($ui->active('autorestart', 'post')) {
$autorestart = $ui->active('autorestart', 'post');
} else {
$error[] = 'autorestart';
}
if ($ui->active('publickey', 'post')) {
$publickey = $ui->active('publickey', 'post');
} else {
$error[]="Public key";
}
if ($ui->ip('ip', 'post')) {
$ip = $ui->ip('ip', 'post');
} else {
$error[]="IP";
}
if ($ui->port('port', 'post')) {
$port = $ui->port('port', 'post');
} else {
$error[]="Port";
}
if ($ui->username('user',50, 'post')) {
$user = $ui->username('user',50, 'post');
} else {
$error[]="Username";
}
if ($ui->id('bit',2, 'post')) {
$bit = $ui->id('bit',2, 'post');
} else {
$error[]="Bit";
}
$defaultdns=strtolower($ui->domain('defaultdns', 'post'));
$keyname = $ui->startparameter('keyname', 'post');
$pass = $ui->startparameter('pass', 'post');
$serverdir = $ui->folder('serverdir', 'post');
$description = $ui->escaped('description', 'post');
if (count($error)>0) {
$template_file = 'Error: '.implode('<br />',$error);
} else {
if ($ui->smallletters('action',2, 'post') == 'ad') {
$log='add';
$query = $sql->prepare("SELECT COUNT(`id`) AS `amount` FROM `voice_tsdns` WHERE `ssh2ip`=? LIMIT 1");
$query->execute(array($ip));
if ($query->fetchColumn()==0) {
$query = $sql->prepare("INSERT INTO `voice_tsdns` (`active`,`bitversion`,`defaultdns`,`publickey`,`ssh2ip`,`ssh2port`,`ssh2user`,`ssh2password`,`serverdir`,`keyname`,`autorestart`,`description`,`resellerid`) VALUES (:active,:bit,:defaultdns,:publickey,:ssh2ip,AES_ENCRYPT(:ssh2port,:aeskey),AES_ENCRYPT(:ssh2user,:aeskey),AES_ENCRYPT(:ssh2password,:aeskey),:serverdir,:keyname,:autorestart,:description,:reseller_id)");
$query->execute(array(':aeskey' => $aeskey,':active' => $active,':bit' => $bit,':defaultdns' => $defaultdns,':publickey' => $publickey,':ssh2ip' => $ip,':ssh2port' => $port,':ssh2user' => $user,':ssh2password' => $pass,':serverdir' => $serverdir,':keyname' => $keyname,':autorestart' => $autorestart,':description' => $description,':reseller_id' => $reseller_id));
} else {
$insterfail = true;
}
} else if ($ui->smallletters('action',2, 'post') == 'md') {
$log='mod';
$id = $ui->id('id',19, 'get');
$query = $sql->prepare("UPDATE `voice_tsdns` SET `active`=:active,`bitversion`=:bit,`defaultdns`=:defaultdns,`publickey`=:publickey,`ssh2ip`=:ssh2ip,`ssh2port`=AES_ENCRYPT(:ssh2port,:aeskey),`ssh2user`=AES_ENCRYPT(:ssh2user,:aeskey),`ssh2password`=AES_ENCRYPT(:ssh2password,:aeskey),`serverdir`=:serverdir,`keyname`=:keyname,`autorestart`=:autorestart,`description`=:description WHERE `id`=:id AND `resellerid`=:reseller_id LIMIT 1");
$query->execute(array(':aeskey' => $aeskey,':active' => $active,':bit' => $bit,':defaultdns' => $defaultdns,':publickey' => $publickey,':ssh2ip' => $ip,':ssh2port' => $port,':ssh2user' => $user,':ssh2password' => $pass,':serverdir' => $serverdir,':keyname' => $keyname,':autorestart' => $autorestart,':description' => $description,':id' => $id,':reseller_id' => $reseller_id));
// Error handling. Check if required attributes are set and can be validated
$errors = array();
// At this point all variables are defined that can come from the user
$id = $ui->id('id', 10, 'get');
$active = $ui->active('active', 'post');
$description = $ui->escaped('description', 'post');
$autorestart = $ui->active('autorestart', 'post');
$defaultdns=strtolower($ui->domain('defaultdns', 'post'));
$ssh2ip = $ui->ip('ip', 'post');
$ssh2port = $ui->port('port', 'post');
$ssh2user = $ui->username('user',50, 'post');
$ssh2password = $ui->startparameter('pass', 'post');
$serverdir = $ui->folder('serverdir', 'post');
$keyname = $ui->startparameter('keyname', 'post');
$bit = $ui->id('bit',2, 'post');
// Default variables. Mostly needed for the add operation
$publickey = ($ui->active('publickey', 'post')) ? $ui->active('publickey', 'post') : 'Y';
// Add or mod is opened
if (!$ui->smallletters('action', 2, 'post')) {
// Gather data for adding if needed and define add template
if ($ui->st('d', 'get') == 'ad') {
$template_file = 'admin_voice_tsdns_add.tpl';
// Gather data for modding in case we have an ID and define mod template
} else if ($ui->st('d', 'get') == 'md' and $id) {
$query = $sql->prepare("SELECT *,AES_DECRYPT(`ssh2port`,:aeskey) AS `decryptedssh2port`,AES_DECRYPT(`ssh2user`,:aeskey) AS `decryptedssh2user`,AES_DECRYPT(`ssh2password`,:aeskey) AS `decryptedssh2password` FROM `voice_tsdns` WHERE `id`=:id AND `resellerid`=:reseller_id LIMIT 1");
$query->execute(array(':aeskey' => $aeskey,':id' => $id,':reseller_id' => $reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$active = $row['active'];
$description = $row['description'];
$autorestart = $row['autorestart'];
$defaultdns = $row['defaultdns'];
$publickey = $row['publickey'];
$ssh2ip = $row['ssh2ip'];
$ssh2port = $row['decryptedssh2port'];
$ssh2user = $row['decryptedssh2user'];
$ssh2password = $row['decryptedssh2password'];
$serverdir = $row['serverdir'];
$keyname = $row['keyname'];
$bit = $row['bitversion'];
}
if (!isset($insterfail) and $query->rowCount()>0) {
$loguseraction="%$log% %voserver% %tsdns% $ip";
$insertlog->execute();
if ($ui->smallletters('action',2, 'post') == 'md') {
$template_file = $spracheResponse->table_add;
// Check if database entry exists and if not display 404 page
$template_file = ($query->rowCount() > 0) ? 'admin_voice_tsdns_md.tpl' : 'admin_404.tpl';
// Show 404 if GET parameters did not add up or no ID was given with mod
} else {
$template_file = 'admin_404.tpl';
}
// Form is submitted
} else if ($ui->st('action', 'post') == 'md' or $ui->st('action', 'post') == 'ad') {
if (!$ui->active('active', 'post')) {
$errors['active'] = $sprache->active;
}
if (!$ui->active('autorestart', 'post')) {
$errors['autorestart'] = $sprache->autorestart;
}
if (!$ui->active('publickey', 'post')) {
$errors['publickey'] = $sprache->keyuse;
}
if (!$ui->ip('ip', 'post')) {
$errors['ip'] = $sprache->ssh_ip;
}
if (!$ui->port('port', 'post')) {
$errors['port'] = $sprache->ssh_port;
}
if (!$ui->username('user', 50, 'post')) {
$errors['user'] = $sprache->ssh_user;
}
if (!$ui->id('bit',2, 'post')) {
$errors['active'] = $sprache->active;
}
$ssh2Check = (count($errors) == 0) ? ssh_check($ssh2ip, $ssh2port, $ssh2user, $publickey, $keyname, $ssh2password) : true;
if ($ssh2Check !== true) {
if ($ssh2Check == 'ipport') {
$errors['ip'] = $sprache->ssh_ip;
$errors['port'] = $sprache->ssh_port;
} else {
$errors['user'] = $sprache->ssh_user;
$errors['publickey'] = $sprache->keyuse;
if ($ui->active('publickey', 'post') == 'Y') {
$errors['keyname'] = $sprache->keyname;
} else {
$query = $sql->prepare("SELECT `id` FROM `voice_tsdns` WHERE `ssh2ip`=? ORDER BY `id` DESC LIMIT 1");
$query->execute(array($ip));
$id = $query->fetchColumn();
$dnsarray=tsdns('li',$ip,$port,$user,$publickey,$keyname,$pass,'N',$serverdir,$bit, array(''), array(''), array(''),$reseller_id);
$errors['pass'] = $sprache->ssh_pass;
}
}
}
// Submitted values are OK
if (count($errors) == 0) {
// Make the inserts or updates define the log entry and get the affected rows from insert
if ($ui->st('action', 'post') == 'ad') {
$query = $sql->prepare("INSERT INTO `voice_tsdns` (`active`,`bitversion`,`defaultdns`,`publickey`,`ssh2ip`,`ssh2port`,`ssh2user`,`ssh2password`,`serverdir`,`keyname`,`autorestart`,`description`,`resellerid`) VALUES (:active,:bit,:defaultdns,:publickey,:ssh2ip,AES_ENCRYPT(:ssh2port,:aeskey),AES_ENCRYPT(:ssh2user,:aeskey),AES_ENCRYPT(:ssh2password,:aeskey),:serverdir,:keyname,:autorestart,:description,:reseller_id)");
$query->execute(array(':aeskey' => $aeskey,':active' => $active,':bit' => $bit,':defaultdns' => $defaultdns,':publickey' => $publickey,':ssh2ip' => $ssh2ip,':ssh2port' => $ssh2port,':ssh2user' => $ssh2user,':ssh2password' => $ssh2password,':serverdir' => $serverdir,':keyname' => $keyname,':autorestart' => $autorestart,':description' => $description,':reseller_id' => $reseller_id));
$rowCount = $query->rowCount();
$id = $sql->lastInsertId();
$loguseraction = '%add% %voserver% %tsdns% ' . $ssh2ip;
} else if ($ui->st('action', 'post') == 'md') {
$query = $sql->prepare("UPDATE `voice_tsdns` SET `active`=:active,`bitversion`=:bit,`defaultdns`=:defaultdns,`publickey`=:publickey,`ssh2ip`=:ssh2ip,`ssh2port`=AES_ENCRYPT(:ssh2port,:aeskey),`ssh2user`=AES_ENCRYPT(:ssh2user,:aeskey),`ssh2password`=AES_ENCRYPT(:ssh2password,:aeskey),`serverdir`=:serverdir,`keyname`=:keyname,`autorestart`=:autorestart,`description`=:description WHERE `id`=:id AND `resellerid`=:reseller_id LIMIT 1");
$query->execute(array(':aeskey' => $aeskey,':active' => $active,':bit' => $bit,':defaultdns' => $defaultdns,':publickey' => $publickey,':ssh2ip' => $ssh2ip,':ssh2port' => $ssh2port,':ssh2user' => $ssh2user,':ssh2password' => $ssh2password,':serverdir' => $serverdir,':keyname' => $keyname,':autorestart' => $autorestart,':description' => $description,':id' => $id,':reseller_id' => $reseller_id));
$rowCount = $query->rowCount();
$loguseraction = '%mod% %voserver% %tsdns% ' . $ssh2ip;
}
// Check if a row was affected during insert or update
if (isset($rowCount) and $rowCount > 0) {
$insertlog->execute();
if ($ui->st('action', 'post') == 'md') {
$template_file = $spracheResponse->table_add;
} else {
unset($header, $text);
$newArray = array();
$table = array();
$newuser = ($rSA['prefix1'] == 'Y') ? 1 : 2;
$maxPost = @ini_get('suhosin.post.max_vars');
$maxRequests = @ini_get('suhosin.request.max_vars');
$i = 0;
$max = ($maxRequests and $maxPost and $maxPost<$maxRequests) ? $maxPost : $maxRequests;
$max = (isset($max)) ? ($max-10)/7 : count($dnsarray);
$dnsarray = tsdns('li', $ssh2ip, $ssh2port, $ssh2user, $publickey, $keyname, $ssh2password, 'N', $serverdir, $bit, array(''), array(''), array(''), $reseller_id);
if (is_array($dnsarray)) {
$table = array();
$query = $sql->prepare("SELECT `id`,`cname`,`vname`,`name` FROM `userdata` WHERE `resellerid`=? AND `accounttype`='u' ORDER BY `id` DESC");
$query->execute(array($reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$table[$row['id']] = trim($row['cname'] . ' ' . $row['vname'] . ' ' . $row['name']);
}
$query = $sql->prepare("SELECT `prefix1`,`prefix2` FROM `settings` WHERE `resellerid`=? LIMIT 1");
$query->execute(array($reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
if ($row['prefix1'] == 'Y') {
$newuser = 1;
} else {
$newuser = 2;
}
}
$usprache = getlanguagefile('user',$user_language,$reseller_id);
$newArray = array();
$maxPost=@ini_get('suhosin.post.max_vars');
$maxRequests=@ini_get('suhosin.request.max_vars');
if ($maxRequests and $maxPost and $maxPost<$maxRequests) {
$max = $maxPost;
} else {
$max = $maxRequests;
}
if (isset($max)) {
$max=($max-10)/6;
} else {
$max=count($dnsarray);
}
$i = 0;
$query = $sql->prepare("SELECT `tsdnsID` FROM `voice_dns` WHERE `dns`=? AND `resellerID`=? LIMIT 1");
$query2 = $sql->prepare("SELECT `id` FROM `voice_server` WHERE `dns`=? AND `resellerid`=? LIMIT 1");
foreach ($dnsarray as $k => $v) {
$query->execute(array($v,$reseller_id));
$query2->execute(array($v,$reseller_id));
$ex=explode(':',$k);
if ($query->rowCount()==0 and $query2->rowCount()==0 and $i<=$max and isset($ex[1]) and port($ex[1])) {
$query->execute(array($v, $reseller_id));
$query2->execute(array($v, $reseller_id));
$ex = explode(':', $k);
if ($query->rowCount() == 0 and $query2->rowCount() == 0 and $i <= $max and isset($ex[1]) and port($ex[1])) {
$newArray[$k] = $v;
$i++;
}
@ -212,16 +240,24 @@ if ($ui->w('action', 4, 'post') and !token(true)) {
}
$template_file = 'admin_voice_tsdns_import.tpl';
}
// No update or insert failed
} else {
$template_file = $spracheResponse->error_table;
}
// An error occurred during validation unset the redirect information and display the form again
} else {
unset($header, $text);
$template_file = ($ui->st('d', 'get') == 'ad') ? 'admin_voice_tsdns_add.tpl' : 'admin_voice_tsdns_md.tpl';
}
} else {
$template_file = 'admin_404.tpl';
}
} else if ($ui->st('d', 'get') == 'ip' and $ui->id('id',19, 'get')) {
$id = $ui->id('id',19, 'get');
if (!$ui->smallletters('action',2, 'post')) {
if (!$ui->smallletters('action', 2, 'post')) {
$query = $sql->prepare("SELECT *,AES_DECRYPT(`ssh2port`,:aeskey) AS `decryptedssh2port`,AES_DECRYPT(`ssh2user`,:aeskey) AS `decryptedssh2user`,AES_DECRYPT(`ssh2password`,:aeskey) AS `decryptedssh2password` FROM `voice_tsdns` WHERE `id`=:id AND `resellerid`=:reseller_id LIMIT 1");
$query->execute(array(':aeskey' => $aeskey,':id' => $id,':reseller_id' => $reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
@ -234,70 +270,72 @@ if ($ui->w('action', 4, 'post') and !token(true)) {
$keyname = $row['keyname'];
$bit = $row['bitversion'];
}
$dnsarray=tsdns('li',$ssh2ip,$ssh2port,$ssh2user,$publickey,$keyname,$ssh2password,'N',$serverdir,$bit, array(''), array(''), array(''),$reseller_id);
if (is_array($dnsarray)) {
$table = array();
$query = $sql->prepare("SELECT `id`,`cname`,`vname`,`name` FROM `userdata` WHERE `resellerid`=? AND `accounttype`='u' ORDER BY `id` DESC");
$query->execute(array($reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$table[$row['id']] = trim($row['cname'] . ' ' . $row['vname'] . ' ' . $row['name']);
}
$query = $sql->prepare("SELECT `prefix1`,`prefix2` FROM `settings` WHERE `resellerid`=? LIMIT 1");
$query->execute(array($reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
if ($row['prefix1'] == 'Y') {
$newuser = 1;
} else {
$newuser = 2;
}
}
$usprache = getlanguagefile('user',$user_language,$reseller_id);
$newArray = array();
$maxPost=@ini_get('suhosin.post.max_vars');
$maxRequests=@ini_get('suhosin.request.max_vars');
if ($maxRequests and $maxPost and $maxPost<$maxRequests) {
$max = $maxPost;
} else {
$max = $maxRequests;
}
if (isset($max)) {
$max=($max-10)/7;
} else {
$max=count($dnsarray);
}
$i = 0;
$query = $sql->prepare("SELECT `tsdnsID` FROM `voice_dns` WHERE `dns`=? AND `resellerID`=? LIMIT 1");
$query2 = $sql->prepare("SELECT `id` FROM `voice_server` WHERE `dns`=? AND `resellerid`=? LIMIT 1");
foreach ($dnsarray as $k => $v) {
$query->execute(array($v,$reseller_id));
$query2->execute(array($v,$reseller_id));
$ex=explode(':',$k);
if ($query->rowCount()==0 and $query2->rowCount()==0 and $i<=$max and isset($ex[1]) and port($ex[1])) {
$newArray[$k] = $v;
$i++;
if ($query->rowCount() > 0) {
$dnsarray = tsdns('li', $ssh2ip, $ssh2port, $ssh2user, $publickey, $keyname, $ssh2password, 'N', $serverdir, $bit, array(''), array(''), array(''), $reseller_id);
if (is_array($dnsarray)) {
$newArray = array();
$table = array();
$newuser = ($rSA['prefix1'] == 'Y') ? 1 : 2;
$maxPost = @ini_get('suhosin.post.max_vars');
$maxRequests = @ini_get('suhosin.request.max_vars');
$i = 0;
$max = ($maxRequests and $maxPost and $maxPost<$maxRequests) ? $maxPost : $maxRequests;
$max = (isset($max)) ? ($max-10)/7 : count($dnsarray);
$query = $sql->prepare("SELECT `id`,`cname`,`vname`,`name` FROM `userdata` WHERE `resellerid`=? AND `accounttype`='u' ORDER BY `id` DESC");
$query->execute(array($reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$table[$row['id']] = trim($row['cname'] . ' ' . $row['vname'] . ' ' . $row['name']);
}
$query = $sql->prepare("SELECT `tsdnsID` FROM `voice_dns` WHERE `dns`=? AND `resellerID`=? LIMIT 1");
$query2 = $sql->prepare("SELECT `id` FROM `voice_server` WHERE `dns`=? AND `resellerid`=? LIMIT 1");
foreach ($dnsarray as $k => $v) {
$query->execute(array($v, $reseller_id));
$query2->execute(array($v, $reseller_id));
$ex = explode(':', $k);
if ($query->rowCount() == 0 and $query2->rowCount() == 0 and $i <= $max and isset($ex[1]) and port($ex[1])) {
$newArray[$k] = $v;
$i++;
}
}
}
$template_file = 'admin_voice_tsdns_import.tpl';
} else {
$template_file = 'admin_404.tpl';
}
$template_file = 'admin_voice_tsdns_import.tpl';
} else if ($ui->smallletters('action',2, 'post') == 'ip') {
$query = $sql->prepare("SELECT `prefix2` FROM `settings` WHERE `resellerid`=? LIMIT 1");
$query->execute(array($reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$prefix = $row['prefix2'];
}
} else if ($ui->smallletters('action', 2, 'post') == 'ip') {
$added = '';
foreach ($ui->domain('dns', 'post') as $dns) {
$lookUp=str_replace('.','_',$dns);
$ex=explode(':',$ui->ipport("${lookUp}-address", 'post'));
$prefix = $rSA['prefix2'];
$dnsList = (array) $ui->domain('dns', 'post');
foreach ($dnsList as $dns) {
$lookUp = str_replace('.', '_', $dns);
$ex = explode(':', $ui->ipport("${lookUp}-address", 'post'));
if ($ui->active("${lookUp}-import", 'post') == 'Y' and isset($ex[1]) and port($ex[1])) {
$ip = $ex[0];
$port = $ex[1];
$customer = $ui->id("${lookUp}-customer",19, 'post');
if ($customer==0 or $customer == false or $customer==null) {
$customer = $ui->id("${lookUp}-customer", 19, 'post');
if ($customer == 0 or $customer == false or $customer == null) {
$usernew = true;
if ($ui->username("${lookUp}-username",50, 'post') and $ui->ismail("${lookUp}-email", 'post')) {
$query = $sql->prepare("SELECT `id` FROM `userdata` WHERE `cname`=? AND `mail`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($ui->username("${lookUp}-username",50, 'post'),$ui->ismail("${lookUp}-email", 'post'),$reseller_id));
$query->execute(array($ui->username("${lookUp}-username",50, 'post'), $ui->ismail("${lookUp}-email", 'post'), $reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$usernew = false;
$customer = $row['id'];
@ -316,81 +354,110 @@ if ($ui->w('action', 4, 'post') and !token(true)) {
}
$query = $sql->prepare("SELECT `id` FROM `userdata` WHERE `cname`=? AND `mail`=? AND `resellerid`=? ORDER BY `id` DESC LIMIT 1");
$query->execute(array($ui->username("${lookUp}-username",50, 'post'),$ui->ismail("${lookUp}-email", 'post'),$reseller_id));
$query->execute(array($ui->username("${lookUp}-username",50, 'post'), $ui->ismail("${lookUp}-email", 'post'), $reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$customer = $row['id'];
$cnamenew = $ui->username("${lookUp}-username",50, 'post');
sendmail('emailuseradd',$customer,$cnamenew,$initialpassword);
sendmail('emailuseradd', $customer, $cnamenew, $initialpassword);
}
}
} else {
$cldbid=rand(1,100) . '.' . rand(1,100);
$cnamenew = $prefix.$cldbid;
$cldbid = rand(1,100) . '.' . rand(1,100);
$cnamenew = $prefix . $cldbid;
$query = $sql->prepare("INSERT INTO `userdata` (`cname`,`security`,`mail`,`accounttype`,`resellerid`) VALUES (?,?,?,'u',?)");
$query->execute(array($cnamenew,passwordgenerate(10),'ts3@import.mail',$reseller_id));
$query->execute(array($cnamenew,passwordgenerate(10),'ts3@import.mail', $reseller_id));
$query = $sql->prepare("SELECT `id` FROM `userdata` WHERE `cname`=? AND `mail`='ts3@import.mail' ORDER BY `id` DESC LIMIT 1");
$query->execute(array($cnamenew));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$customer = $row['id'];
$cnamenew = $prefix.$customer;
$cnamenew = $prefix . $customer;
}
$query = $sql->prepare("UPDATE `userdata` SET `cname`=? WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($cnamenew,$customer,$reseller_id));
$query->execute(array($cnamenew, $customer, $reseller_id));
}
if ($usernew == true) {
$query = $sql->prepare("SELECT `id` FROM `usergroups` WHERE `active`='Y' AND `defaultgroup`='Y' AND `grouptype`='u' AND `resellerid`=? LIMIT 1");
$query->execute(array($reseller_id));
$groupID = $query->fetchColumn();
$query = $sql->prepare("UPDATE `userdata` SET `usergroup`=? WHERE id=? AND `resellerid`=? LIMIT 1");
$query->execute(array($groupID,$customer,$reseller_id));
$query->execute(array($groupID, $customer, $reseller_id));
}
$added .= 'User '.$cnamenew.' ';
$added .= 'User ' . $cnamenew . ' ';
} else {
$query = $sql->prepare("SELECT `cname` FROM `userdata` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($customer,$reseller_id));
$query->execute(array($customer, $reseller_id));
$cnamenew = $query->fetchColumn();
}
$added .= 'Server '.$ip . ':' . $port . ':' . $dns.'<br />';
$added .= 'Server ' . $ip . ':' . $port . ':' . $dns.'<br />';
$query = $sql->prepare("INSERT INTO `voice_dns` (`active`,`dns`,`ip`,`port`,`tsdnsID`,`userID`,`externalID`,`resellerID`) VALUES (?,?,?,?,?,?,?,?)");
$query->execute(array('Y',$dns,$ip,$port,$id,$customer,'',$reseller_id));
$query->execute(array('Y', $dns, $ip, $port, $id, $customer, '', $reseller_id));
}
}
$template_file = $added;
}
} else if ($ui->st('d', 'get') == 'dl' and $ui->id('id',19, 'get')) {
$id = $ui->id('id',19, 'get');
if (!$ui->smallletters('action',2, 'post')) {
// Remove entries in case we have an ID given with the GET request
} else if ($ui->st('d', 'get') == 'dl' and $ui->id('id', 10, 'get')) {
// Define the ID variable which will be used at the form and SQLs
$id = $ui->id('id', 10, 'get');
// Nothing submitted yet, display the delete form
if (!$ui->st('action', 'post')) {
$query = $sql->prepare("SELECT `ssh2ip`,`description` FROM `voice_tsdns` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($id,$reseller_id));
$query->execute(array($id, $reseller_id));
foreach ($query->fetchAll(PDO::FETCH_ASSOC) as $row) {
$ip = $row['ssh2ip'];
$description = $row['description'];
}
if (isset($ip)) {
$template_file = 'admin_voice_tsdns_dl.tpl';
} else {
$template_file = 'admin_404.tpl';
}
} else if ($ui->smallletters('action',2, 'post') == 'dl'){
// Check if we could find an entry and if not display 404 page
$template_file = ($query->rowCount() > 0) ? 'admin_voice_tsdns_dl.tpl' : 'admin_404.tpl';
// User submitted remove the entry
} else if ($ui->st('action', 'post') == 'dl') {
$query = $sql->prepare("SELECT `ssh2ip` FROM `voice_tsdns` WHERE `id`=? AND `resellerid`=? LIMIT 1");
$query->execute(array($id,$reseller_id));
$query->execute(array($id, $reseller_id));
$ip = $query->fetchColumn();
if ($query->rowCount()>0) {
$query = $sql->prepare("UPDATE `voice_masterserver` SET `tsdnsServerID`=NULL WHERE `tsdnsServerID`=? AND `resellerid`=?");
$query->execute(array($id,$reseller_id));
$query->execute(array($id, $reseller_id));
$query = $sql->prepare("DELETE FROM `voice_tsdns` WHERE `id`=? AND `resellerid`=?");
$query->execute(array($id,$reseller_id));
$loguseraction="%del% %voserver% %tsdns% $ip";
$insertlog->execute();
$template_file = $spracheResponse->table_del;
} else {
$template_file = 'admin_404.tpl';
$query->execute(array($id, $reseller_id));
}
// Check if a row was affected meaning an entry could be deleted. If yes add log entry and display success message
if ($query->rowCount()>0) {
$template_file = $spracheResponse->table_del;
$loguseraction = '%del% %voserver% %tsdns% ' . $ip;
$insertlog->execute();
// Nothing was deleted, display an error
} else {
$template_file = $spracheResponse->error_table;
}
// GET Request did not add up. Display 404 error.
} else {
$template_file = 'admin_404.tpl';
}
// List the available entries
} else {
$table = array();
$o = $ui->st('o', 'get');
if ($ui->st('o', 'get') == 'da') {
$orderby = '`active` DESC';
} else if ($ui->st('o', 'get') == 'aa') {
@ -416,11 +483,28 @@ if ($ui->w('action', 4, 'post') and !token(true)) {
$query = $sql->prepare("SELECT COUNT(`id`) AS `amount` FROM `voice_tsdns` WHERE `resellerid`=?");
$query->execute(array($reseller_id));
$colcount = $query->fetchColumn();
if ($start>$colcount) {
$start = $colcount-$amount;
if ($start<0)$start = 0;
if ($start > $colcount) {
$start = $colcount - $amount;
if ($start < 0) {
$start = 0;
}
}
$table = array();
$next = $start + $amount;
$vor = ($colcount > $next) ? $start + $amount : $start;
$back = $start - $amount;
$zur = ($back >= 0) ? $start - $amount : $start;
$pageamount = ceil($colcount / $amount);
$pages[] = '<a href="admin.php?w=vd&amp;o=' . $o . '&amp;a=' . (!isset($amount)) ? 20 : $amount . ($start == 0) ? '&p=0" class="bold">1</a>' : '&p=0">1</a>';
$i = 2;
while ($i<=$pageamount) {
$selectpage = ($i - 1) * $amount;
$pages[] = '<a href="admin.php?w=vd&amp;o=' . $o . '&amp;a=' . $amount . '&p=' . $selectpage . '"' . ($start==$selectpage) ? 'class="bold"' : '' . ' >' . $i . '</a>';
$i++;
}
$pages = implode(', ', $pages);
$query = $sql->prepare("SELECT * FROM `voice_tsdns` WHERE `resellerid`=? ORDER BY $orderby LIMIT $start,$amount");
$query2 = $sql->prepare("SELECT `dnsID`,`active`,`dns` FROM `voice_dns` WHERE `tsdnsID`=? AND `resellerID`=?");
$query->execute(array($reseller_id));
@ -438,22 +522,9 @@ if ($ui->w('action', 4, 'post') and !token(true)) {
$imgAlt='inactive';
}
$ds = array();
$query2->execute(array($row['id'],$reseller_id));
$query2->execute(array($row['id'], $reseller_id));
foreach ($query2->fetchAll(PDO::FETCH_ASSOC) as $row2) $ds[] = array('id' => $row2['dnsID'], 'address' => $row2['dns'], 'status' => ($row2['active'] == 'N') ? 2 : 1);
$table[] = array('id' => $row['id'], 'active' => $row['active'], 'img' => $imgName,'alt' => $imgAlt,'ip' => $row['ssh2ip'], 'defaultdns' => $row['defaultdns'], 'description' => $row['description'], 'server' => $ds);
}
$next = $start+$amount;
$vor=($colcount>$next) ? $start+$amount : $start;
$back = $start - $amount;
$zur = ($back >= 0) ? $start - $amount : $start;
$pageamount = ceil($colcount / $amount);
$pages[] = '<a href="admin.php?w=vd&amp;o='.$o.'&amp;a=' . (!isset($amount)) ? 20 : $amount . ($start==0) ? '&p=0" class="bold">1</a>' : '&p=0">1</a>';
$i = 2;
while ($i<=$pageamount) {
$selectpage = ($i - 1) * $amount;
$pages[] = '<a href="admin.php?w=vd&amp;o='.$o.'&amp;a=' . $amount . '&p=' . $selectpage . '"' . ($start==$selectpage) ? 'class="bold"' : '' . ' >' . $i . '</a>';
$i++;
}
$pages=implode(', ',$pages);
$template_file = 'admin_voice_tsdns_list.tpl';
}

48
web/template/default/admin_voice_tsdns_add.tpl
View File

@ -7,12 +7,19 @@
</ul>
</div>
</div>
<?php if (count($errors)>0){ ?>
<div class="alert alert-error">
<button type="button" class="close" data-dismiss="alert">&times;</button>
<h4>Error(s)</h4>
<?php echo implode(', ',$errors);?>
</div>
<?php }?>
<div class="row-fluid">
<div class="span6">
<form name="form" class="form-horizontal" action="admin.php?w=vd&amp;d=ad&amp;r=vd" onsubmit="return confirm('<?php echo $gsprache->sure;?>');" method="post">
<input type="hidden" name="token" value="<?php echo token();?>">
<input type="hidden" name="action" value="ad">
<div class="control-group">
<div class="control-group<?php if(isset($errors['active'])) echo ' error';?>">
<label class="control-label" for="inputActive"><?php echo $sprache->active;?></label>
<div class="controls">
<select id="inputActive" name="active">
@ -21,66 +28,65 @@
</select>
</div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['autorestart'])) echo ' error';?>">
<label class="control-label" for="inputAutoRestart"><?php echo $sprache->autorestart;?></label>
<div class="controls">
<select id="inputAutoRestart" name="autorestart">
<option value="Y"><?php echo $gsprache->yes;?></option>
<option value="N"><?php echo $gsprache->no;?></option>
<option value="N" <?php if($autorestart=='N') echo 'selected="selected"';?>><?php echo $gsprache->no;?></option>
</select>
</div>
</div>
<div class="control-group">
<label class="control-label" for="inputDefaultDns"><?php echo $sprache->defaultdns;?></label>
<div class="controls"><input id="inputDefaultDns" type="text" name="defaultdns"></div>
<div class="controls"><input id="inputDefaultDns" type="text" name="defaultdns" value="<?php echo $defaultdns;?>"></div>
</div>
<div class="control-group">
<label class="control-label" for="inputServerDir"><?php echo $sprache->serverdir;?></label>
<div class="controls"><input id="inputServerDir" type="text" name="serverdir"></div>
<div class="controls"><input id="inputServerDir" type="text" name="serverdir" value="<?php echo $serverdir;?>"></div>
</div>
<div class="control-group">
<label class="control-label" for="inputSshIp"><?php echo $sprache->ssh_ip;?></label>
<div class="controls"><input id="inputSshIp" type="text" name="ip" maxlength="15"></div>
<div class="control-group<?php if(isset($errors['ip'])) echo ' error';?>">
<label class="control-label" for="inputSshIP"><?php echo $sprache->ssh_ip;?></label>
<div class="controls"><input id="inputSshIP" type="text" name="ip" maxlength="15" value="<?php echo $ssh2ip;?>"></div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['port'])) echo ' error';?>">
<label class="control-label" for="inputSshPort"><?php echo $sprache->ssh_port;?></label>
<div class="controls"><input id="inputSshPort" type="text" name="port" value="22" maxlength="5"></div>
<div class="controls"><input id="inputSshPort" type="text" name="port" maxlength="5" value="<?php echo $ssh2port;?>"></div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['user'])) echo ' error';?>">
<label class="control-label" for="inputSshUser"><?php echo $sprache->ssh_user;?></label>
<div class="controls"><input id="inputSshUser" type="text" name="user" value="easy-wi" maxlength="15"></div>
<div class="controls"><input id="inputSshUser" type="text" name="user" maxlength="15" value="<?php echo $ssh2user;?>"></div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['pass'])) echo ' error';?>">
<label class="control-label" for="inputSshPass"><?php echo $sprache->ssh_pass;?></label>
<div class="controls"><input id="inputSshPass" type="password" name="pass"></div>
<div class="controls"><input id="inputSshPass" type="password" name="pass" value="<?php echo $ssh2password;?>"></div>
</div>
<div class="control-group">
<label class="control-label" for="inputKeyUse"><?php echo $sprache->keyuse;?></label>
<div class="controls">
<select id="inputKeyUse" name="publickey">
<option value="N"><?php echo $gsprache->no;?></option>
<option value="Y"><?php echo $gsprache->yes;?></option>
<option value="N" <?php if($publickey=='N') echo 'selected="selected"';?>><?php echo $gsprache->no;?></option>
</select>
</div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['keyname'])) echo ' error';?>">
<label class="control-label" for="inputKeyName"><?php echo $sprache->keyname;?></label>
<div class="controls"><input id="inputKeyName" type="text" name="keyname" maxlength="20" value="id_rsa"></div>
<div class="controls"><input id="inputKeyName" type="text" name="keyname" maxlength="20" value="<?php echo $keyname;?>"/></div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['bit'])) echo ' error';?>">
<label class="control-label" for="inputOsBit"><?php echo $sprache->os_bit;?></label>
<div class="controls">
<select id="inputOsBit" name="bit">
<option value="64">64</option>
<option value="32">32</option>
<option value="64" <?php if($bit=='64') echo 'selected="selected"';?>>64</option>
</select>
</div>
</div>
<div class="control-group">
<label class="control-label" for="inputDesc"><?php echo $sprache->description;?></label>
<div class="controls"><textarea id="inputDesc" name="description"></textarea></div>
<div class="controls"><textarea id="inputDesc" name="description"><?php echo $description;?></textarea></div>
</div>
<div class="control-group">
<label class="control-label" for="inputEdit"></label>
<div class="controls">

23
web/template/default/admin_voice_tsdns_md.tpl
View File

@ -8,12 +8,19 @@
</ul>
</div>
</div>
<?php if (count($errors)>0){ ?>
<div class="alert alert-error">
<button type="button" class="close" data-dismiss="alert">&times;</button>
<h4>Error(s)</h4>
<?php echo implode(', ',$errors);?>
</div>
<?php }?>
<div class="row-fluid">
<div class="span6">
<form name="form" class="form-horizontal" action="admin.php?w=vd&amp;d=md&amp;id=<?php echo $id;?>&amp;r=vd" onsubmit="return confirm('<?php echo $gsprache->sure;?>');" method="post">
<input type="hidden" name="token" value="<?php echo token();?>">
<input type="hidden" name="action" value="md">
<div class="control-group">
<div class="control-group<?php if(isset($errors['active'])) echo ' error';?>">
<label class="control-label" for="inputActive"><?php echo $sprache->active;?></label>
<div class="controls">
<select id="inputActive" name="active">
@ -22,7 +29,7 @@
</select>
</div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['autorestart'])) echo ' error';?>">
<label class="control-label" for="inputAutoRestart"><?php echo $sprache->autorestart;?></label>
<div class="controls">
<select id="inputAutoRestart" name="autorestart">
@ -39,19 +46,19 @@
<label class="control-label" for="inputServerDir"><?php echo $sprache->serverdir;?></label>
<div class="controls"><input id="inputServerDir" type="text" name="serverdir" value="<?php echo $serverdir;?>"></div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['ip'])) echo ' error';?>">
<label class="control-label" for="inputSshIP"><?php echo $sprache->ssh_ip;?></label>
<div class="controls"><input id="inputSshIP" type="text" name="ip" maxlength="15" value="<?php echo $ssh2ip;?>"></div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['port'])) echo ' error';?>">
<label class="control-label" for="inputSshPort"><?php echo $sprache->ssh_port;?></label>
<div class="controls"><input id="inputSshPort" type="text" name="port" maxlength="5" value="<?php echo $ssh2port;?>"></div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['user'])) echo ' error';?>">
<label class="control-label" for="inputSshUser"><?php echo $sprache->ssh_user;?></label>
<div class="controls"><input id="inputSshUser" type="text" name="user" maxlength="15" value="<?php echo $ssh2user;?>"></div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['pass'])) echo ' error';?>">
<label class="control-label" for="inputSshPass"><?php echo $sprache->ssh_pass;?></label>
<div class="controls"><input id="inputSshPass" type="password" name="pass" value="<?php echo $ssh2password;?>"></div>
</div>
@ -64,11 +71,11 @@
</select>
</div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['keyname'])) echo ' error';?>">
<label class="control-label" for="inputKeyName"><?php echo $sprache->keyname;?></label>
<div class="controls"><input id="inputKeyName" type="text" name="keyname" maxlength="20" value="<?php echo $keyname;?>"/></div>
</div>
<div class="control-group">
<div class="control-group<?php if(isset($errors['bit'])) echo ' error';?>">
<label class="control-label" for="inputOsBit"><?php echo $sprache->os_bit;?></label>
<div class="controls">
<select id="inputOsBit" name="bit">