From ef2e26c91b80556af033d3335e55f5dfa6fff31d Mon Sep 17 00:00:00 2001 From: Andrew Tridgell Date: Wed, 13 Aug 2003 01:53:07 +0000 Subject: first public release of samba4 code (This used to be commit b0510b5428b3461aeb9bbe3cc95f62fc73e2b97f) --- source4/web/swat.c | 1344 ++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 1344 insertions(+) create mode 100644 source4/web/swat.c (limited to 'source4/web/swat.c') diff --git a/source4/web/swat.c b/source4/web/swat.c new file mode 100644 index 0000000000..db48cbbb54 --- /dev/null +++ b/source4/web/swat.c @@ -0,0 +1,1344 @@ +/* + Unix SMB/CIFS implementation. + Samba Web Administration Tool + Version 3.0.0 + Copyright (C) Andrew Tridgell 1997-2002 + Copyright (C) John H Terpstra 2002 + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 2 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. +*/ + +/** + * @defgroup swat SWAT - Samba Web Administration Tool + * @{ + * @file swat.c + * + * @brief Samba Web Administration Tool. + **/ + +#include "includes.h" +#include "../web/swat_proto.h" + +#define GLOBALS_SNUM -1 + +static BOOL demo_mode = False; +static BOOL have_write_access = False; +static BOOL have_read_access = False; +static int iNumNonAutoPrintServices = 0; + +/* + * Password Management Globals + */ +#define SWAT_USER "username" +#define OLD_PSWD "old_passwd" +#define NEW_PSWD "new_passwd" +#define NEW2_PSWD "new2_passwd" +#define CHG_S_PASSWD_FLAG "chg_s_passwd_flag" +#define CHG_R_PASSWD_FLAG "chg_r_passwd_flag" +#define ADD_USER_FLAG "add_user_flag" +#define DELETE_USER_FLAG "delete_user_flag" +#define DISABLE_USER_FLAG "disable_user_flag" +#define ENABLE_USER_FLAG "enable_user_flag" +#define RHOST "remote_host" + +/* we need these because we link to locking*.o */ + void become_root(void) {} + void unbecome_root(void) {} + +/**************************************************************************** +****************************************************************************/ +static int enum_index(int value, const struct enum_list *enumlist) +{ + int i; + for (i=0;enumlist[i].name;i++) + if (value == enumlist[i].value) break; + return(i); +} + +static char *fix_backslash(const char *str) +{ + static char newstring[1024]; + char *p = newstring; + + while (*str) { + if (*str == '\\') {*p++ = '\\';*p++ = '\\';} + else *p++ = *str; + ++str; + } + *p = '\0'; + return newstring; +} + +static char *stripspaceupper(const char *str) +{ + static char newstring[1024]; + char *p = newstring; + + while (*str) { + if (*str != ' ') *p++ = toupper(*str); + ++str; + } + *p = '\0'; + return newstring; +} + +static char *make_parm_name(const char *label) +{ + static char parmname[1024]; + char *p = parmname; + + while (*label) { + if (*label == ' ') *p++ = '_'; + else *p++ = *label; + ++label; + } + *p = '\0'; + return parmname; +} + +/**************************************************************************** + include a lump of html in a page +****************************************************************************/ +static int include_html(const char *fname) +{ + int fd; + char buf[1024]; + int ret; + + fd = web_open(fname, O_RDONLY, 0); + + if (fd == -1) { + d_printf("ERROR: Can't open %s\n", fname); + return 0; + } + + while ((ret = read(fd, buf, sizeof(buf))) > 0) { + write(1, buf, ret); + } + + close(fd); + return 1; +} + +/**************************************************************************** + start the page with standard stuff +****************************************************************************/ +static void print_header(void) +{ + if (!cgi_waspost()) { + d_printf("Expires: 0\r\n"); + } + d_printf("Content-type: text/html\r\n\r\n"); + + if (!include_html("include/header.html")) { + d_printf("\n"); + d_printf("\n\nSamba Web Administration Tool\n\n\n\n"); + } +} + +/* ******************************************************************* + show parameter label with translated name in the following form + because showing original and translated label in one line looks + too long, and showing translated label only is unusable for + heavy users. + ------------------------------- + HELP security [combo box][button] + SECURITY + ------------------------------- + (capital words are translated by gettext.) + if no translation is available, then same form as original is + used. + "i18n_translated_parm" class is used to change the color of the + translated parameter with CSS. + **************************************************************** */ +static const char* get_parm_translated( + const char* pAnchor, const char* pHelp, const char* pLabel) +{ + const char* pTranslated = _(pLabel); + static pstring output; + if(strcmp(pLabel, pTranslated) != 0) + { + snprintf(output, sizeof(output), + " %s       %s
%s", + pAnchor, pHelp, pLabel, pTranslated); + return output; + } + snprintf(output, sizeof(output), + " %s       %s", + pAnchor, pHelp, pLabel); + return output; +} +/**************************************************************************** + finish off the page +****************************************************************************/ +static void print_footer(void) +{ + if (!include_html("include/footer.html")) { + d_printf("\n\n\n"); + } +} + +/**************************************************************************** + display one editable parameter in a form +****************************************************************************/ +static void show_parameter(int snum, struct parm_struct *parm) +{ + int i; + void *ptr = parm->ptr; + + if (parm->class == P_LOCAL && snum >= 0) { + ptr = lp_local_ptr(snum, ptr); + } + + printf("%s", get_parm_translated(stripspaceupper(parm->label), _("Help"), parm->label)); + switch (parm->type) { + case P_CHAR: + d_printf("", + make_parm_name(parm->label), *(char *)ptr); + d_printf("", + _("Set Default"), make_parm_name(parm->label),(char)(parm->def.cvalue)); + break; + + case P_LIST: + d_printf("label)); + if ((char ***)ptr && *(char ***)ptr && **(char ***)ptr) { + char **list = *(char ***)ptr; + for (;*list;list++) { + d_printf("%s%s", *list, ((*(list+1))?" ":"")); + } + } + d_printf("\">"); + d_printf("label)); + if (parm->def.lvalue) { + char **list = (char **)(parm->def.lvalue); + for (; *list; list++) { + d_printf("%s%s", *list, ((*(list+1))?" ":"")); + } + } + d_printf("\'\">"); + break; + + case P_STRING: + case P_USTRING: + d_printf("", + make_parm_name(parm->label), *(char **)ptr); + d_printf("", + _("Set Default"), make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue))); + break; + + case P_BOOL: + d_printf(""); + d_printf("", + _("Set Default"), make_parm_name(parm->label),(BOOL)(parm->def.bvalue)?0:1); + break; + + case P_BOOLREV: + d_printf(""); + d_printf("", + _("Set Default"), make_parm_name(parm->label),(BOOL)(parm->def.bvalue)?1:0); + break; + + case P_INTEGER: + d_printf("", make_parm_name(parm->label), *(int *)ptr); + d_printf("", + _("Set Default"), make_parm_name(parm->label),(int)(parm->def.ivalue)); + break; + + case P_OCTAL: + d_printf("", make_parm_name(parm->label), octal_string(*(int *)ptr)); + d_printf("", + _("Set Default"), make_parm_name(parm->label), + octal_string((int)(parm->def.ivalue))); + break; + + case P_ENUM: + d_printf(""); + d_printf("", + _("Set Default"), make_parm_name(parm->label),enum_index((int)(parm->def.ivalue),parm->enum_list)); + break; + case P_SEP: + break; + } + d_printf("\n"); +} + +/**************************************************************************** + display a set of parameters for a service +****************************************************************************/ +static void show_parameters(int snum, int allparameters, unsigned int parm_filter, int printers) +{ + int i = 0; + struct parm_struct *parm; + const char *heading = NULL; + const char *last_heading = NULL; + + while ((parm = lp_next_parameter(snum, &i, allparameters))) { + if (snum < 0 && parm->class == P_LOCAL && !(parm->flags & FLAG_GLOBAL)) + continue; + if (parm->class == P_SEPARATOR) { + heading = parm->label; + continue; + } + if (parm->flags & FLAG_HIDE) continue; + if (snum >= 0) { + if (printers & !(parm->flags & FLAG_PRINT)) continue; + if (!printers & !(parm->flags & FLAG_SHARE)) continue; + } + if (parm_filter == FLAG_BASIC) { + if (!(parm->flags & FLAG_BASIC)) { + void *ptr = parm->ptr; + + if (parm->class == P_LOCAL && snum >= 0) { + ptr = lp_local_ptr(snum, ptr); + } + + switch (parm->type) { + case P_CHAR: + if (*(char *)ptr == (char)(parm->def.cvalue)) continue; + break; + + case P_LIST: + if (!str_list_compare(*(char ***)ptr, (char **)(parm->def.lvalue))) continue; + break; + + case P_STRING: + case P_USTRING: + if (!strcmp(*(char **)ptr,(char *)(parm->def.svalue))) continue; + break; + + case P_BOOL: + case P_BOOLREV: + if (*(BOOL *)ptr == (BOOL)(parm->def.bvalue)) continue; + break; + + case P_INTEGER: + case P_OCTAL: + if (*(int *)ptr == (int)(parm->def.ivalue)) continue; + break; + + + case P_ENUM: + if (*(int *)ptr == (int)(parm->def.ivalue)) continue; + break; + case P_SEP: + continue; + } + } + if (printers && !(parm->flags & FLAG_PRINT)) continue; + } + if (parm_filter == FLAG_WIZARD) { + if (!((parm->flags & FLAG_WIZARD))) continue; + } + if (parm_filter == FLAG_ADVANCED) { + if (!((parm->flags & FLAG_ADVANCED))) continue; + } + if (heading && heading != last_heading) { + d_printf("%s\n", _(heading)); + last_heading = heading; + } + show_parameter(snum, parm); + } +} + +/**************************************************************************** + load the smb.conf file into loadparm. +****************************************************************************/ +static BOOL load_config(BOOL save_def) +{ + lp_resetnumservices(); + return lp_load(dyn_CONFIGFILE,False,save_def,False); +} + +/**************************************************************************** + write a config file +****************************************************************************/ +static void write_config(FILE *f, BOOL show_defaults) +{ + fprintf(f, "# Samba config file created using SWAT\n"); + fprintf(f, "# from %s (%s)\n", cgi_remote_host(), cgi_remote_addr()); + fprintf(f, "# Date: %s\n\n", timestring(False)); + + lp_dump(f, show_defaults, iNumNonAutoPrintServices); +} + +/**************************************************************************** + save and reload the smb.conf config file +****************************************************************************/ +static int save_reload(int snum) +{ + FILE *f; + struct stat st; + + f = sys_fopen(dyn_CONFIGFILE,"w"); + if (!f) { + d_printf("failed to open %s for writing\n", dyn_CONFIGFILE); + return 0; + } + + /* just in case they have used the buggy xinetd to create the file */ + if (fstat(fileno(f), &st) == 0 && + (st.st_mode & S_IWOTH)) { + fchmod(fileno(f), S_IWUSR | S_IRUSR | S_IRGRP | S_IROTH); + } + + write_config(f, False); + if (snum) + lp_dump_one(f, False, snum); + fclose(f); + + lp_killunused(NULL); + + if (!load_config(False)) { + d_printf("Can't reload %s\n", dyn_CONFIGFILE); + return 0; + } + iNumNonAutoPrintServices = lp_numservices(); + load_printers(); + + return 1; +} + +/**************************************************************************** + commit one parameter +****************************************************************************/ +static void commit_parameter(int snum, struct parm_struct *parm, const char *v) +{ + int i; + char *s; + + if (snum < 0 && parm->class == P_LOCAL) { + /* this handles the case where we are changing a local + variable globally. We need to change the parameter in + all shares where it is currently set to the default */ + for (i=0;ilabel, v); + } + } + } + + lp_do_parameter(snum, parm->label, v); +} + +/**************************************************************************** + commit a set of parameters for a service +****************************************************************************/ +static void commit_parameters(int snum) +{ + int i = 0; + struct parm_struct *parm; + pstring label; + const char *v; + + while ((parm = lp_next_parameter(snum, &i, 1))) { + slprintf(label, sizeof(label)-1, "parm_%s", make_parm_name(parm->label)); + if ((v = cgi_variable(label))) { + if (parm->flags & FLAG_HIDE) continue; + commit_parameter(snum, parm, v); + } + } +} + +/**************************************************************************** + spit out the html for a link with an image +****************************************************************************/ +static void image_link(const char *name, const char *hlink, const char *src) +{ + d_printf("\"%s\"\n", + cgi_baseurl(), hlink, src, name); +} + +/**************************************************************************** + display the main navigation controls at the top of each page along + with a title +****************************************************************************/ +static void show_main_buttons(void) +{ + char *p; + + if ((p = cgi_user_name()) && strcmp(p, "root")) { + d_printf(_("Logged in as %s

\n"), p); + } + + image_link(_("Home"), "", "images/home.gif"); + if (have_write_access) { + image_link(_("Globals"), "globals", "images/globals.gif"); + image_link(_("Shares"), "shares", "images/shares.gif"); + image_link(_("Printers"), "printers", "images/printers.gif"); + image_link(_("Wizard"), "wizard", "images/wizard.gif"); + } + if (have_read_access) { + image_link(_("Status"), "status", "images/status.gif"); + image_link(_("View Config"), "viewconfig", "images/viewconfig.gif"); + } + image_link(_("Password Management"), "passwd", "images/passwd.gif"); + + d_printf("


\n"); +} + +/**************************************************************************** + * Handle Display/Edit Mode CGI + ****************************************************************************/ +static void ViewModeBoxes(int mode) +{ + d_printf("

%s\n", _("Configuration View: ")); + d_printf("Basic\n", (mode == 0) ? "checked" : ""); + d_printf("Advanced\n", (mode == 1) ? "checked" : ""); + d_printf("Developer\n", (mode == 2) ? "checked" : ""); + d_printf("


\n"); +} + +/**************************************************************************** + display a welcome page +****************************************************************************/ +static void welcome_page(void) +{ + include_html("help/welcome.html"); +} + +/**************************************************************************** + display the current smb.conf +****************************************************************************/ +static void viewconfig_page(void) +{ + int full_view=0; + + if (cgi_variable("full_view")) { + full_view = 1; + } + + d_printf("

%s

\n", _("Current Config")); + d_printf("
\n"); + + if (full_view) { + d_printf("\n", _("Normal View")); + } else { + d_printf("\n", _("Full View")); + } + + d_printf("

");
+	write_config(stdout, full_view);
+	d_printf("
"); + d_printf("
\n"); +} + +/**************************************************************************** + second screen of the wizard ... Fetch Configuration Parameters +****************************************************************************/ +static void wizard_params_page(void) +{ + unsigned int parm_filter = FLAG_WIZARD; + + /* Here we first set and commit all the parameters that were selected + in the previous screen. */ + + d_printf("

Wizard Parameter Edit Page

\n"); + + if (cgi_variable("Commit")) { + commit_parameters(GLOBALS_SNUM); + save_reload(0); + } + + d_printf("
\n"); + + if (have_write_access) { + d_printf("\n"); + } + + d_printf("\n"); + d_printf("

\n"); + + d_printf("\n"); + show_parameters(GLOBALS_SNUM, 1, parm_filter, 0); + d_printf("
\n"); + d_printf("

\n"); +} + +/**************************************************************************** + Utility to just rewrite the smb.conf file - effectively just cleans it up +****************************************************************************/ +static void rewritecfg_file(void) +{ + commit_parameters(GLOBALS_SNUM); + save_reload(0); + d_printf("

Note: smb.conf %s

\n", _("file has been read and rewritten")); +} + +/**************************************************************************** + wizard to create/modify the smb.conf file +****************************************************************************/ +static void wizard_page(void) +{ + /* Set some variables to collect data from smb.conf */ + int role = 0; + int winstype = 0; + int have_home = -1; + int HomeExpo = 0; + int SerType = 0; + + if (cgi_variable("Rewrite")) { + (void) rewritecfg_file(); + return; + } + + if (cgi_variable("GetWizardParams")){ + (void) wizard_params_page(); + return; + } + + if (cgi_variable("Commit")){ + SerType = atoi(cgi_variable("ServerType")); + winstype = atoi(cgi_variable("WINSType")); + have_home = lp_servicenumber(HOMES_NAME); + HomeExpo = atoi(cgi_variable("HomeExpo")); + + /* Plain text passwords are too badly broken - use encrypted passwords only */ + lp_do_parameter( GLOBALS_SNUM, "encrypt passwords", "Yes"); + + switch ( SerType ){ + case 0: + /* Stand-alone Server */ + lp_do_parameter( GLOBALS_SNUM, "security", "USER" ); + lp_do_parameter( GLOBALS_SNUM, "domain logons", "No" ); + break; + case 1: + /* Domain Member */ + lp_do_parameter( GLOBALS_SNUM, "security", "DOMAIN" ); + lp_do_parameter( GLOBALS_SNUM, "domain logons", "No" ); + break; + case 2: + /* Domain Controller */ + lp_do_parameter( GLOBALS_SNUM, "security", "USER" ); + lp_do_parameter( GLOBALS_SNUM, "domain logons", "Yes" ); + break; + } + switch ( winstype ) { + case 0: + lp_do_parameter( GLOBALS_SNUM, "wins support", "No" ); + lp_do_parameter( GLOBALS_SNUM, "wins server", "" ); + break; + case 1: + lp_do_parameter( GLOBALS_SNUM, "wins support", "Yes" ); + lp_do_parameter( GLOBALS_SNUM, "wins server", "" ); + break; + case 2: + lp_do_parameter( GLOBALS_SNUM, "wins support", "No" ); + lp_do_parameter( GLOBALS_SNUM, "wins server", cgi_variable("WINSAddr")); + break; + } + + /* Have to create Homes share? */ + if ((HomeExpo == 1) && (have_home == -1)) { + pstring unix_share; + + pstrcpy(unix_share,HOMES_NAME); + load_config(False); + lp_copy_service(GLOBALS_SNUM, unix_share); + iNumNonAutoPrintServices = lp_numservices(); + have_home = lp_servicenumber(HOMES_NAME); + lp_do_parameter( have_home, "read only", "No"); + lp_do_parameter( have_home, "valid users", "%S"); + lp_do_parameter( have_home, "browseable", "No"); + commit_parameters(have_home); + } + + /* Need to Delete Homes share? */ + if ((HomeExpo == 0) && (have_home != -1)) { + lp_remove_service(have_home); + have_home = -1; + } + + commit_parameters(GLOBALS_SNUM); + save_reload(0); + } + else + { + /* Now determine smb.conf WINS settings */ + if (lp_wins_support()) + winstype = 1; + if (lp_wins_server_list() && strlen(*lp_wins_server_list())) + winstype = 2; + + + /* Do we have a homes share? */ + have_home = lp_servicenumber(HOMES_NAME); + } + if ((winstype == 2) && lp_wins_support()) + winstype = 3; + + role = lp_server_role(); + + /* Here we go ... */ + d_printf("

Samba Configuration Wizard

\n"); + d_printf("
\n"); + + if (have_write_access) { + d_printf(_("The \"Rewrite smb.conf file\" button will clear the smb.conf file of all default values and of comments.\n")); + d_printf(_("The same will happen if you press the commit button.")); + d_printf("

"); + d_printf("
"); + d_printf("   ",_("Rewrite smb.conf file")); + d_printf("   ",_("Commit")); + d_printf("", _("Edit Parameter Values")); + d_printf("
"); + } + + d_printf("
"); + d_printf("
"); + d_printf("\n", "Server Type: "); + d_printf("", (role == ROLE_STANDALONE) ? "checked" : ""); + d_printf("", (role == ROLE_DOMAIN_MEMBER) ? "checked" : ""); + d_printf("", (role == ROLE_DOMAIN_PDC) ? "checked" : ""); + d_printf(""); + if (role == ROLE_DOMAIN_BDC) { + d_printf(""); + } + d_printf("\n", "Configure WINS As: "); + d_printf("", (winstype == 0) ? "checked" : ""); + d_printf("", (winstype == 1) ? "checked" : ""); + d_printf("", (winstype == 2) ? "checked" : ""); + d_printf("",lp_wins_server_list()); + if (winstype == 3) { + d_printf(""); + d_printf(""); + } + d_printf(""); + d_printf("\n","Expose Home Directories: "); + d_printf("", (have_home == -1) ? "" : "checked "); + d_printf("", (have_home == -1 ) ? "checked" : ""); + d_printf(""); + + /* Enable this when we are ready .... + * d_printf("\n","Is Print Server: "); + * d_printf(""); + * d_printf(""); + * d_printf(""); + */ + + d_printf("
%s Stand Alone  Domain Member  Domain Controller 
Unusual Type in smb.conf - Please Select New Mode
%s Not Used  Server for client use  Client of another WINS server 
Remote WINS Server 
Error: WINS Server Mode and WINS Support both set in smb.conf
Please Select desired WINS mode above.
%s Yes No
%s Yes No
"); + d_printf("
"); + + d_printf(_("The above configuration options will set multiple parameters and will generally assist with rapid Samba deployment.\n")); + d_printf("
\n"); +} + + +/**************************************************************************** + display a globals editing page +****************************************************************************/ +static void globals_page(void) +{ + unsigned int parm_filter = FLAG_BASIC; + int mode = 0; + + d_printf("

%s

\n", _("Global Variables")); + + if (cgi_variable("Commit")) { + commit_parameters(GLOBALS_SNUM); + save_reload(0); + } + + if ( cgi_variable("ViewMode") ) + mode = atoi(cgi_variable("ViewMode")); + + d_printf("
\n"); + + ViewModeBoxes( mode ); + switch ( mode ) { + case 0: + parm_filter = FLAG_BASIC; + break; + case 1: + parm_filter = FLAG_ADVANCED; + break; + case 2: + parm_filter = FLAG_DEVELOPER; + break; + } + d_printf("
\n"); + if (have_write_access) { + d_printf("\n", + _("Commit Changes")); + } + + d_printf("\n", + _("Reset Values")); + + d_printf("

\n"); + d_printf("\n"); + show_parameters(GLOBALS_SNUM, 1, parm_filter, 0); + d_printf("
\n"); + d_printf("

\n"); +} + +/**************************************************************************** + display a shares editing page. share is in unix codepage, and must be in + dos codepage. FIXME !!! JRA. +****************************************************************************/ +static void shares_page(void) +{ + const char *share = cgi_variable("share"); + char *s; + int snum = -1; + int i; + int mode = 0; + unsigned int parm_filter = FLAG_BASIC; + + if (share) + snum = lp_servicenumber(share); + + d_printf("

%s

\n", _("Share Parameters")); + + if (cgi_variable("Commit") && snum >= 0) { + commit_parameters(snum); + save_reload(0); + } + + if (cgi_variable("Delete") && snum >= 0) { + lp_remove_service(snum); + save_reload(0); + share = NULL; + snum = -1; + } + + if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) { + load_config(False); + lp_copy_service(GLOBALS_SNUM, share); + iNumNonAutoPrintServices = lp_numservices(); + save_reload(0); + snum = lp_servicenumber(share); + } + + d_printf("
\n"); + + d_printf("\n"); + if ( cgi_variable("ViewMode") ) + mode = atoi(cgi_variable("ViewMode")); + ViewModeBoxes( mode ); + switch ( mode ) { + case 0: + parm_filter = FLAG_BASIC; + break; + case 1: + parm_filter = FLAG_ADVANCED; + break; + case 2: + parm_filter = FLAG_DEVELOPER; + break; + } + d_printf("
\n"); + d_printf("\n", _("Choose Share")); + d_printf("\n"); + if (have_write_access) { + d_printf("\n", _("Delete Share")); + } + d_printf("\n"); + d_printf("
"); + d_printf(""); + if (have_write_access) { + d_printf("\n"); + d_printf("\n", _("Create Share")); + d_printf("\n"); + } + d_printf("
"); + + + if (snum >= 0) { + if (have_write_access) { + d_printf("\n", _("Commit Changes")); + } + + d_printf("\n", _("Reset Values")); + d_printf("

\n"); + } + + if (snum >= 0) { + d_printf("\n"); + show_parameters(snum, 1, parm_filter, 0); + d_printf("
\n"); + } + + d_printf("

\n"); +} + +/************************************************************* +change a password either locally or remotely +*************************************************************/ +static BOOL change_password(const char *remote_machine, const char *user_name, + const char *old_passwd, const char *new_passwd, + int local_flags) +{ + BOOL ret = False; + pstring err_str; + pstring msg_str; + + if (demo_mode) { + d_printf("%s

", _("password change in demo mode rejected\n")); + return False; + } + + if (remote_machine != NULL) { + ret = remote_password_change(remote_machine, user_name, old_passwd, + new_passwd, err_str, sizeof(err_str)); + if(*err_str) + d_printf("%s\n

", err_str); + return ret; + } + + if(!initialize_password_db(True)) { + d_printf("Can't setup password database vectors.\n

"); + return False; + } + + ret = local_password_change(user_name, local_flags, new_passwd, err_str, sizeof(err_str), + msg_str, sizeof(msg_str)); + + if(*msg_str) + d_printf("%s\n

", msg_str); + if(*err_str) + d_printf("%s\n

", err_str); + + return ret; +} + +/**************************************************************************** + do the stuff required to add or change a password +****************************************************************************/ +static void chg_passwd(void) +{ + const char *host; + BOOL rslt; + int local_flags = 0; + + /* Make sure users name has been specified */ + if (strlen(cgi_variable(SWAT_USER)) == 0) { + d_printf("

%s", _(" Must specify \"User Name\" \n")); + return; + } + + /* + * smbpasswd doesn't require anything but the users name to delete, disable or enable the user, + * so if that's what we're doing, skip the rest of the checks + */ + if (!cgi_variable(DISABLE_USER_FLAG) && !cgi_variable(ENABLE_USER_FLAG) && !cgi_variable(DELETE_USER_FLAG)) { + + /* + * If current user is not root, make sure old password has been specified + * If REMOTE change, even root must provide old password + */ + if (((!am_root()) && (strlen( cgi_variable(OLD_PSWD)) <= 0)) || + ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable(OLD_PSWD)) <= 0))) { + d_printf("

%s", _(" Must specify \"Old Password\" \n")); + return; + } + + /* If changing a users password on a remote hosts we have to know what host */ + if ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable(RHOST)) <= 0)) { + d_printf("

%s", _(" Must specify \"Remote Machine\" \n")); + return; + } + + /* Make sure new passwords have been specified */ + if ((strlen( cgi_variable(NEW_PSWD)) <= 0) || + (strlen( cgi_variable(NEW2_PSWD)) <= 0)) { + d_printf("

%s", _(" Must specify \"New, and Re-typed Passwords\" \n")); + return; + } + + /* Make sure new passwords was typed correctly twice */ + if (strcmp(cgi_variable(NEW_PSWD), cgi_variable(NEW2_PSWD)) != 0) { + d_printf("

%s", _(" Re-typed password didn't match new password\n")); + return; + } + } + + if (cgi_variable(CHG_R_PASSWD_FLAG)) { + host = cgi_variable(RHOST); + } else if (am_root()) { + host = NULL; + } else { + host = "127.0.0.1"; + } + + /* + * Set up the local flags. + */ + + local_flags |= (cgi_variable(ADD_USER_FLAG) ? LOCAL_ADD_USER : 0); + local_flags |= (cgi_variable(DELETE_USER_FLAG) ? LOCAL_DELETE_USER : 0); + local_flags |= (cgi_variable(ENABLE_USER_FLAG) ? LOCAL_ENABLE_USER : 0); + local_flags |= (cgi_variable(DISABLE_USER_FLAG) ? LOCAL_DISABLE_USER : 0); + + rslt = change_password(host, + cgi_variable(SWAT_USER), + cgi_variable(OLD_PSWD), cgi_variable(NEW_PSWD), + local_flags); + + if(local_flags == 0) { + d_printf("

"); + if (rslt == True) { + d_printf(_(" The passwd for '%s' has been changed. \n"), cgi_variable(SWAT_USER)); + } else { + d_printf(_(" The passwd for '%s' has NOT been changed. \n"), cgi_variable(SWAT_USER)); + } + } + + return; +} + +/**************************************************************************** + display a password editing page +****************************************************************************/ +static void passwd_page(void) +{ + const char *new_name = cgi_user_name(); + + /* + * After the first time through here be nice. If the user + * changed the User box text to another users name, remember it. + */ + if (cgi_variable(SWAT_USER)) { + new_name = cgi_variable(SWAT_USER); + } + + if (!new_name) new_name = ""; + + d_printf("

%s

\n", _("Server Password Management")); + + d_printf("
\n"); + + d_printf("\n"); + + /* + * Create all the dialog boxes for data collection + */ + d_printf("\n", _(" User Name : ")); + d_printf(" \n", SWAT_USER, new_name); + if (!am_root()) { + d_printf("\n", _(" Old Password : ")); + d_printf(" \n",OLD_PSWD); + } + d_printf("\n", _(" New Password : ")); + d_printf("\n",NEW_PSWD); + d_printf("\n", _(" Re-type New Password : ")); + d_printf("\n",NEW2_PSWD); + d_printf("
%s
%s
%s
%s
\n"); + + /* + * Create all the control buttons for requesting action + */ + d_printf("\n", + CHG_S_PASSWD_FLAG, _("Change Password")); + if (demo_mode || am_root()) { + d_printf("\n", + ADD_USER_FLAG, _("Add New User")); + d_printf("\n", + DELETE_USER_FLAG, _("Delete User")); + d_printf("\n", + DISABLE_USER_FLAG, _("Disable User")); + d_printf("\n", + ENABLE_USER_FLAG, _("Enable User")); + } + d_printf("

\n"); + + /* + * Do some work if change, add, disable or enable was + * requested. It could be this is the first time through this + * code, so there isn't anything to do. */ + if ((cgi_variable(CHG_S_PASSWD_FLAG)) || (cgi_variable(ADD_USER_FLAG)) || (cgi_variable(DELETE_USER_FLAG)) || + (cgi_variable(DISABLE_USER_FLAG)) || (cgi_variable(ENABLE_USER_FLAG))) { + chg_passwd(); + } + + d_printf("

%s

\n", _("Client/Server Password Management")); + + d_printf("
\n"); + + d_printf("\n"); + + /* + * Create all the dialog boxes for data collection + */ + d_printf("\n", _(" User Name : ")); + d_printf("\n",SWAT_USER, new_name); + d_printf("\n", _(" Old Password : ")); + d_printf("\n",OLD_PSWD); + d_printf("\n", _(" New Password : ")); + d_printf("\n",NEW_PSWD); + d_printf("\n", _(" Re-type New Password : ")); + d_printf("\n",NEW2_PSWD); + d_printf("\n", _(" Remote Machine : ")); + d_printf("\n",RHOST); + + d_printf("
%s
%s
%s
%s
%s
"); + + /* + * Create all the control buttons for requesting action + */ + d_printf("", + CHG_R_PASSWD_FLAG, _("Change Password")); + + d_printf("

\n"); + + /* + * Do some work if a request has been made to change the + * password somewhere other than the server. It could be this + * is the first time through this code, so there isn't + * anything to do. */ + if (cgi_variable(CHG_R_PASSWD_FLAG)) { + chg_passwd(); + } + +} + +/**************************************************************************** + display a printers editing page +****************************************************************************/ +static void printers_page(void) +{ + const char *share = cgi_variable("share"); + char *s; + int snum=-1; + int i; + int mode = 0; + unsigned int parm_filter = FLAG_BASIC; + + if (share) + snum = lp_servicenumber(share); + + d_printf("

%s

\n", _("Printer Parameters")); + + d_printf("

%s

\n", _("Important Note:")); + d_printf(_("Printer names marked with [*] in the Choose Printer drop-down box ")); + d_printf(_("are autoloaded printers from ")); + d_printf("%s\n", _("Printcap Name")); + d_printf(_("Attempting to delete these printers from SWAT will have no effect.\n")); + + if (cgi_variable("Commit") && snum >= 0) { + commit_parameters(snum); + if (snum >= iNumNonAutoPrintServices) + save_reload(snum); + else + save_reload(0); + } + + if (cgi_variable("Delete") && snum >= 0) { + lp_remove_service(snum); + save_reload(0); + share = NULL; + snum = -1; + } + + if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) { + load_config(False); + lp_copy_service(GLOBALS_SNUM, share); + iNumNonAutoPrintServices = lp_numservices(); + snum = lp_servicenumber(share); + lp_do_parameter(snum, "print ok", "Yes"); + save_reload(0); + snum = lp_servicenumber(share); + } + + d_printf("
\n"); + + if ( cgi_variable("ViewMode") ) + mode = atoi(cgi_variable("ViewMode")); + ViewModeBoxes( mode ); + switch ( mode ) { + case 0: + parm_filter = FLAG_BASIC; + break; + case 1: + parm_filter = FLAG_ADVANCED; + break; + case 2: + parm_filter = FLAG_DEVELOPER; + break; + } + d_printf("\n"); + d_printf("\n", _("Choose Printer")); + d_printf(""); + if (have_write_access) { + d_printf("\n", _("Delete Printer")); + } + d_printf(""); + d_printf("
\n"); + + if (have_write_access) { + d_printf("\n"); + d_printf("\n", _("Create Printer")); + d_printf("\n"); + d_printf("
"); + } + + + if (snum >= 0) { + if (have_write_access) { + d_printf("\n", _("Commit Changes")); + } + d_printf("\n", _("Reset Values")); + d_printf("

\n"); + } + + if (snum >= 0) { + d_printf("\n"); + show_parameters(snum, 1, parm_filter, 1); + d_printf("
\n"); + } + d_printf("

\n"); +} + + +/** + * main function for SWAT. + **/ + int main(int argc, char *argv[]) +{ + extern char *optarg; + extern int optind; + int opt; + char *page; + + fault_setup(NULL); + umask(S_IWGRP | S_IWOTH); + +#if defined(HAVE_SET_AUTH_PARAMETERS) + set_auth_parameters(argc, argv); +#endif /* HAVE_SET_AUTH_PARAMETERS */ + + /* just in case it goes wild ... */ + alarm(300); + + setlinebuf(stdout); + + /* we don't want any SIGPIPE messages */ + BlockSignals(True,SIGPIPE); + + dbf = x_fopen("/dev/null", O_WRONLY, 0); + if (!dbf) dbf = x_stderr; + + /* we don't want stderr screwing us up */ + close(2); + open("/dev/null", O_WRONLY); + + while ((opt = getopt(argc, argv,"s:a")) != EOF) { + switch (opt) { + case 's': + pstrcpy(dyn_CONFIGFILE,optarg); + break; + case 'a': + demo_mode = True; + break; + } + } + + setup_logging(argv[0],False); + load_config(True); + iNumNonAutoPrintServices = lp_numservices(); + load_printers(); + + cgi_setup(dyn_SWATDIR, !demo_mode); + + print_header(); + + cgi_load_variables(); + + if (!file_exist(dyn_CONFIGFILE, NULL)) { + have_read_access = True; + have_write_access = True; + } else { + /* check if the authenticated user has write access - if not then + don't show write options */ + have_write_access = (access(dyn_CONFIGFILE,W_OK) == 0); + + /* if the user doesn't have read access to smb.conf then + don't let them view it */ + have_read_access = (access(dyn_CONFIGFILE,R_OK) == 0); + } + + show_main_buttons(); + + page = cgi_pathinfo(); + + /* Root gets full functionality */ + if (have_read_access && strcmp(page, "globals")==0) { + globals_page(); + } else if (have_read_access && strcmp(page,"shares")==0) { + shares_page(); + } else if (have_read_access && strcmp(page,"printers")==0) { + printers_page(); + } else if (have_read_access && strcmp(page,"status")==0) { + status_page(); + } else if (have_read_access && strcmp(page,"viewconfig")==0) { + viewconfig_page(); + } else if (strcmp(page,"passwd")==0) { + passwd_page(); + } else if (have_read_access && strcmp(page,"wizard")==0) { + wizard_page(); + } else if (have_read_access && strcmp(page,"wizard_params")==0) { + wizard_params_page(); + } else if (have_read_access && strcmp(page,"rewritecfg")==0) { + rewritecfg_file(); + } else { + welcome_page(); + } + + print_footer(); + return 0; +} + +/** @} **/ -- cgit