search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
s3 swat: Add XSRF protection to wizard_params page
[Samba.git] / source3 / web / swat.c
blob1775a950c335fafdf95b09add465532d92812893
1 /*
2 Unix SMB/CIFS implementation.
3 Samba Web Administration Tool
4 Version 3.0.0
5 Copyright (C) Andrew Tridgell 1997-2002
6 Copyright (C) John H Terpstra 2002
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
20 */
21
22 /**
23 * @defgroup swat SWAT - Samba Web Administration Tool
24 * @{
25 * @file swat.c
26 *
27 * @brief Samba Web Administration Tool.
28 **/
29
30 #include "includes.h"
31 #include "system/filesys.h"
32 #include "popt_common.h"
33 #include "web/swat_proto.h"
34 #include "printing/pcap.h"
35 #include "printing/load.h"
36 #include "passdb.h"
37 #include "intl/lang_tdb.h"
38 #include "../lib/crypto/md5.h"
39
40 static int demo_mode = False;
41 static int passwd_only = False;
42 static bool have_write_access = False;
43 static bool have_read_access = False;
44 static int iNumNonAutoPrintServices = 0;
45
46 /*
47 * Password Management Globals
48 */
49 #define SWAT_USER "username"
50 #define OLD_PSWD "old_passwd"
51 #define NEW_PSWD "new_passwd"
52 #define NEW2_PSWD "new2_passwd"
53 #define CHG_S_PASSWD_FLAG "chg_s_passwd_flag"
54 #define CHG_R_PASSWD_FLAG "chg_r_passwd_flag"
55 #define ADD_USER_FLAG "add_user_flag"
56 #define DELETE_USER_FLAG "delete_user_flag"
57 #define DISABLE_USER_FLAG "disable_user_flag"
58 #define ENABLE_USER_FLAG "enable_user_flag"
59 #define RHOST "remote_host"
60 #define XSRF_TOKEN "xsrf"
61
62 #define _(x) lang_msg_rotate(talloc_tos(),x)
63
64 /****************************************************************************
65 ****************************************************************************/
66 static int enum_index(int value, const struct enum_list *enumlist)
67 {
68 int i;
69 for (i=0;enumlist[i].name;i++)
70 if (value == enumlist[i].value) break;
71 return(i);
72 }
73
74 static char *fix_backslash(const char *str)
75 {
76 static char newstring[1024];
77 char *p = newstring;
78
79 while (*str) {
80 if (*str == '\\') {*p++ = '\\';*p++ = '\\';}
81 else *p++ = *str;
82 ++str;
83 }
84 *p = '\0';
85 return newstring;
86 }
87
88 static const char *fix_quotes(TALLOC_CTX *ctx, const char *str)
89 {
90 char *newstring = NULL;
91 char *p = NULL;
92 size_t newstring_len;
93 int quote_len = strlen("&quot;");
94
95 /* Count the number of quotes. */
96 newstring_len = 1;
97 p = (char *) str;
98 while (*p) {
99 if ( *p == '\"') {
100 newstring_len += quote_len;
101 } else {
102 newstring_len++;
103 }
104 ++p;
105 }
106 newstring = TALLOC_ARRAY(ctx, char, newstring_len);
107 if (!newstring) {
108 return "";
109 }
110 for (p = newstring; *str; str++) {
111 if ( *str == '\"') {
112 strncpy( p, "&quot;", quote_len);
113 p += quote_len;
114 } else {
115 *p++ = *str;
116 }
117 }
118 *p = '\0';
119 return newstring;
120 }
121
122 static char *stripspaceupper(const char *str)
123 {
124 static char newstring[1024];
125 char *p = newstring;
126
127 while (*str) {
128 if (*str != ' ') *p++ = toupper_m(*str);
129 ++str;
130 }
131 *p = '\0';
132 return newstring;
133 }
134
135 static char *make_parm_name(const char *label)
136 {
137 static char parmname[1024];
138 char *p = parmname;
139
140 while (*label) {
141 if (*label == ' ') *p++ = '_';
142 else *p++ = *label;
143 ++label;
144 }
145 *p = '\0';
146 return parmname;
147 }
148
149 void get_xsrf_token(const char *username, const char *pass,
150 const char *formname, char token_str[33])
151 {
152 struct MD5Context md5_ctx;
153 uint8_t token[16];
154 int i;
155
156 token_str[0] = '\0';
157 ZERO_STRUCT(md5_ctx);
158 MD5Init(&md5_ctx);
159
160 MD5Update(&md5_ctx, (uint8_t *)formname, strlen(formname));
161 if (username != NULL) {
162 MD5Update(&md5_ctx, (uint8_t *)username, strlen(username));
163 }
164 if (pass != NULL) {
165 MD5Update(&md5_ctx, (uint8_t *)pass, strlen(pass));
166 }
167
168 MD5Final(token, &md5_ctx);
169
170 for(i = 0; i < sizeof(token); i++) {
171 char tmp[3];
172
173 snprintf(tmp, sizeof(tmp), "%02x", token[i]);
174 strncat(token_str, tmp, sizeof(tmp));
175 }
176 }
177
178 void print_xsrf_token(const char *username, const char *pass,
179 const char *formname)
180 {
181 char token[33];
182
183 get_xsrf_token(username, pass, formname, token);
184 printf("<input type=\"hidden\" name=\"%s\" value=\"%s\">\n",
185 XSRF_TOKEN, token);
186
187 }
188
189 bool verify_xsrf_token(const char *formname)
190 {
191 char expected[33];
192 const char *username = cgi_user_name();
193 const char *pass = cgi_user_pass();
194 const char *token = cgi_variable_nonull(XSRF_TOKEN);
195
196 get_xsrf_token(username, pass, formname, expected);
197 return (strncmp(expected, token, sizeof(expected)) == 0);
198 }
199
200
201 /****************************************************************************
202 include a lump of html in a page
203 ****************************************************************************/
204 static int include_html(const char *fname)
205 {
206 int fd;
207 char buf[1024];
208 int ret;
209
210 fd = web_open(fname, O_RDONLY, 0);
211
212 if (fd == -1) {
213 printf(_("ERROR: Can't open %s"), fname);
214 printf("\n");
215 return 0;
216 }
217
218 while ((ret = read(fd, buf, sizeof(buf))) > 0) {
219 if (write(1, buf, ret) == -1) {
220 break;
221 }
222 }
223
224 close(fd);
225 return 1;
226 }
227
228 /****************************************************************************
229 start the page with standard stuff
230 ****************************************************************************/
231 static void print_header(void)
232 {
233 if (!cgi_waspost()) {
234 printf("Expires: 0\r\n");
235 }
236 printf("Content-type: text/html\r\n\r\n");
237
238 if (!include_html("include/header.html")) {
239 printf("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 3.2//EN\">\n");
240 printf("<HTML>\n<HEAD>\n<TITLE>Samba Web Administration Tool</TITLE>\n</HEAD>\n<BODY background=\"/swat/images/background.jpg\">\n\n");
241 }
242 }
243
244 /* *******************************************************************
245 show parameter label with translated name in the following form
246 because showing original and translated label in one line looks
247 too long, and showing translated label only is unusable for
248 heavy users.
249 -------------------------------
250 HELP security [combo box][button]
251 SECURITY
252 -------------------------------
253 (capital words are translated by gettext.)
254 if no translation is available, then same form as original is
255 used.
256 "i18n_translated_parm" class is used to change the color of the
257 translated parameter with CSS.
258 **************************************************************** */
259 static const char *get_parm_translated(TALLOC_CTX *ctx,
260 const char* pAnchor, const char* pHelp, const char* pLabel)
261 {
262 const char *pTranslated = _(pLabel);
263 char *output;
264 if(strcmp(pLabel, pTranslated) != 0) {
265 output = talloc_asprintf(ctx,
266 "<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; %s <br><span class=\"i18n_translated_parm\">%s</span>",
267 pAnchor, pHelp, pLabel, pTranslated);
268 return output;
269 }
270 output = talloc_asprintf(ctx,
271 "<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; %s",
272 pAnchor, pHelp, pLabel);
273 return output;
274 }
275 /****************************************************************************
276 finish off the page
277 ****************************************************************************/
278 static void print_footer(void)
279 {
280 if (!include_html("include/footer.html")) {
281 printf("\n</BODY>\n</HTML>\n");
282 }
283 }
284
285 /****************************************************************************
286 display one editable parameter in a form
287 ****************************************************************************/
288 static void show_parameter(int snum, struct parm_struct *parm)
289 {
290 int i;
291 void *ptr = parm->ptr;
292 char *utf8_s1, *utf8_s2;
293 size_t converted_size;
294 TALLOC_CTX *ctx = talloc_stackframe();
295
296 if (parm->p_class == P_LOCAL && snum >= 0) {
297 ptr = lp_local_ptr_by_snum(snum, ptr);
298 }
299
300 printf("<tr><td>%s</td><td>", get_parm_translated(ctx,
301 stripspaceupper(parm->label), _("Help"), parm->label));
302 switch (parm->type) {
303 case P_CHAR:
304 printf("<input type=text size=2 name=\"parm_%s\" value=\"%c\">",
305 make_parm_name(parm->label), *(char *)ptr);
306 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%c\'\">",
307 _("Set Default"), make_parm_name(parm->label),(char)(parm->def.cvalue));
308 break;
309
310 case P_LIST:
311 printf("<input type=text size=40 name=\"parm_%s\" value=\"",
312 make_parm_name(parm->label));
313 if ((char ***)ptr && *(char ***)ptr && **(char ***)ptr) {
314 char **list = *(char ***)ptr;
315 for (;*list;list++) {
316 /* enclose in HTML encoded quotes if the string contains a space */
317 if ( strchr_m(*list, ' ') ) {
318 push_utf8_talloc(talloc_tos(), &utf8_s1, *list, &converted_size);
319 push_utf8_talloc(talloc_tos(), &utf8_s2, ((*(list+1))?", ":""), &converted_size);
320 printf("&quot;%s&quot;%s", utf8_s1, utf8_s2);
321 } else {
322 push_utf8_talloc(talloc_tos(), &utf8_s1, *list, &converted_size);
323 push_utf8_talloc(talloc_tos(), &utf8_s2, ((*(list+1))?", ":""), &converted_size);
324 printf("%s%s", utf8_s1, utf8_s2);
325 }
326 TALLOC_FREE(utf8_s1);
327 TALLOC_FREE(utf8_s2);
328 }
329 }
330 printf("\">");
331 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'",
332 _("Set Default"), make_parm_name(parm->label));
333 if (parm->def.lvalue) {
334 char **list = (char **)(parm->def.lvalue);
335 for (; *list; list++) {
336 /* enclose in HTML encoded quotes if the string contains a space */
337 if ( strchr_m(*list, ' ') )
338 printf("&quot;%s&quot;%s", *list, ((*(list+1))?", ":""));
339 else
340 printf("%s%s", *list, ((*(list+1))?", ":""));
341 }
342 }
343 printf("\'\">");
344 break;
345
346 case P_STRING:
347 case P_USTRING:
348 push_utf8_talloc(talloc_tos(), &utf8_s1, *(char **)ptr, &converted_size);
349 printf("<input type=text size=40 name=\"parm_%s\" value=\"%s\">",
350 make_parm_name(parm->label), fix_quotes(ctx, utf8_s1));
351 TALLOC_FREE(utf8_s1);
352 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%s\'\">",
353 _("Set Default"), make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue)));
354 break;
355
356 case P_BOOL:
357 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
358 printf("<option %s>Yes", (*(bool *)ptr)?"selected":"");
359 printf("<option %s>No", (*(bool *)ptr)?"":"selected");
360 printf("</select>");
361 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
362 _("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?0:1);
363 break;
364
365 case P_BOOLREV:
366 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
367 printf("<option %s>Yes", (*(bool *)ptr)?"":"selected");
368 printf("<option %s>No", (*(bool *)ptr)?"selected":"");
369 printf("</select>");
370 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
371 _("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?1:0);
372 break;
373
374 case P_INTEGER:
375 printf("<input type=text size=8 name=\"parm_%s\" value=\"%d\">", make_parm_name(parm->label), *(int *)ptr);
376 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%d\'\">",
377 _("Set Default"), make_parm_name(parm->label),(int)(parm->def.ivalue));
378 break;
379
380 case P_OCTAL: {
381 char *o;
382 o = octal_string(*(int *)ptr);
383 printf("<input type=text size=8 name=\"parm_%s\" value=%s>",
384 make_parm_name(parm->label), o);
385 TALLOC_FREE(o);
386 o = octal_string((int)(parm->def.ivalue));
387 printf("<input type=button value=\"%s\" "
388 "onClick=\"swatform.parm_%s.value=\'%s\'\">",
389 _("Set Default"), make_parm_name(parm->label), o);
390 TALLOC_FREE(o);
391 break;
392 }
393
394 case P_ENUM:
395 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
396 for (i=0;parm->enum_list[i].name;i++) {
397 if (i == 0 || parm->enum_list[i].value != parm->enum_list[i-1].value) {
398 printf("<option %s>%s",(*(int *)ptr)==parm->enum_list[i].value?"selected":"",parm->enum_list[i].name);
399 }
400 }
401 printf("</select>");
402 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
403 _("Set Default"), make_parm_name(parm->label),enum_index((int)(parm->def.ivalue),parm->enum_list));
404 break;
405 case P_SEP:
406 break;
407 }
408 printf("</td></tr>\n");
409 TALLOC_FREE(ctx);
410 }
411
412 /****************************************************************************
413 display a set of parameters for a service
414 ****************************************************************************/
415 static void show_parameters(int snum, int allparameters, unsigned int parm_filter, int printers)
416 {
417 int i = 0;
418 struct parm_struct *parm;
419 const char *heading = NULL;
420 const char *last_heading = NULL;
421
422 while ((parm = lp_next_parameter(snum, &i, allparameters))) {
423 if (snum < 0 && parm->p_class == P_LOCAL && !(parm->flags & FLAG_GLOBAL))
424 continue;
425 if (parm->p_class == P_SEPARATOR) {
426 heading = parm->label;
427 continue;
428 }
429 if (parm->flags & FLAG_HIDE) continue;
430 if (snum >= 0) {
431 if (printers & !(parm->flags & FLAG_PRINT)) continue;
432 if (!printers & !(parm->flags & FLAG_SHARE)) continue;
433 }
434
435 if (!( parm_filter & FLAG_ADVANCED )) {
436 if (!(parm->flags & FLAG_BASIC)) {
437 void *ptr = parm->ptr;
438
439 if (parm->p_class == P_LOCAL && snum >= 0) {
440 ptr = lp_local_ptr_by_snum(snum, ptr);
441 }
442
443 switch (parm->type) {
444 case P_CHAR:
445 if (*(char *)ptr == (char)(parm->def.cvalue)) continue;
446 break;
447
448 case P_LIST:
449 if (!str_list_equal(*(const char ***)ptr,
450 (const char **)(parm->def.lvalue))) continue;
451 break;
452
453 case P_STRING:
454 case P_USTRING:
455 if (!strcmp(*(char **)ptr,(char *)(parm->def.svalue))) continue;
456 break;
457
458 case P_BOOL:
459 case P_BOOLREV:
460 if (*(bool *)ptr == (bool)(parm->def.bvalue)) continue;
461 break;
462
463 case P_INTEGER:
464 case P_OCTAL:
465 if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
466 break;
467
468
469 case P_ENUM:
470 if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
471 break;
472 case P_SEP:
473 continue;
474 }
475 }
476 if (printers && !(parm->flags & FLAG_PRINT)) continue;
477 }
478
479 if ((parm_filter & FLAG_WIZARD) && !(parm->flags & FLAG_WIZARD)) continue;
480
481 if ((parm_filter & FLAG_ADVANCED) && !(parm->flags & FLAG_ADVANCED)) continue;
482
483 if (heading && heading != last_heading) {
484 printf("<tr><td></td></tr><tr><td><b><u>%s</u></b></td></tr>\n", _(heading));
485 last_heading = heading;
486 }
487 show_parameter(snum, parm);
488 }
489 }
490
491 /****************************************************************************
492 load the smb.conf file into loadparm.
493 ****************************************************************************/
494 static bool load_config(bool save_def)
495 {
496 return lp_load(get_dyn_CONFIGFILE(),False,save_def,False,True);
497 }
498
499 /****************************************************************************
500 write a config file
501 ****************************************************************************/
502 static void write_config(FILE *f, bool show_defaults)
503 {
504 TALLOC_CTX *ctx = talloc_stackframe();
505
506 fprintf(f, "# Samba config file created using SWAT\n");
507 fprintf(f, "# from %s (%s)\n", cgi_remote_host(), cgi_remote_addr());
508 fprintf(f, "# Date: %s\n\n", current_timestring(ctx, False));
509
510 lp_dump(f, show_defaults, iNumNonAutoPrintServices);
511
512 TALLOC_FREE(ctx);
513 }
514
515 /****************************************************************************
516 save and reload the smb.conf config file
517 ****************************************************************************/
518 static int save_reload(int snum)
519 {
520 FILE *f;
521 struct stat st;
522
523 f = sys_fopen(get_dyn_CONFIGFILE(),"w");
524 if (!f) {
525 printf(_("failed to open %s for writing"), get_dyn_CONFIGFILE());
526 printf("\n");
527 return 0;
528 }
529
530 /* just in case they have used the buggy xinetd to create the file */
531 if (fstat(fileno(f), &st) == 0 &&
532 (st.st_mode & S_IWOTH)) {
533 #if defined HAVE_FCHMOD
534 fchmod(fileno(f), S_IWUSR | S_IRUSR | S_IRGRP | S_IROTH);
535 #else
536 chmod(get_dyn_CONFIGFILE(), S_IWUSR | S_IRUSR | S_IRGRP | S_IROTH);
537 #endif
538 }
539
540 write_config(f, False);
541 if (snum >= 0)
542 lp_dump_one(f, False, snum);
543 fclose(f);
544
545 lp_kill_all_services();
546
547 if (!load_config(False)) {
548 printf(_("Can't reload %s"), get_dyn_CONFIGFILE());
549 printf("\n");
550 return 0;
551 }
552 iNumNonAutoPrintServices = lp_numservices();
553 if (pcap_cache_loaded()) {
554 load_printers(server_event_context(),
555 server_messaging_context());
556 }
557
558 return 1;
559 }
560
561 /****************************************************************************
562 commit one parameter
563 ****************************************************************************/
564 static void commit_parameter(int snum, struct parm_struct *parm, const char *v)
565 {
566 int i;
567 char *s;
568
569 if (snum < 0 && parm->p_class == P_LOCAL) {
570 /* this handles the case where we are changing a local
571 variable globally. We need to change the parameter in
572 all shares where it is currently set to the default */
573 for (i=0;i<lp_numservices();i++) {
574 s = lp_servicename(i);
575 if (s && (*s) && lp_is_default(i, parm)) {
576 lp_do_parameter(i, parm->label, v);
577 }
578 }
579 }
580
581 lp_do_parameter(snum, parm->label, v);
582 }
583
584 /****************************************************************************
585 commit a set of parameters for a service
586 ****************************************************************************/
587 static void commit_parameters(int snum)
588 {
589 int i = 0;
590 struct parm_struct *parm;
591 char *label;
592 const char *v;
593
594 while ((parm = lp_next_parameter(snum, &i, 1))) {
595 if (asprintf(&label, "parm_%s", make_parm_name(parm->label)) > 0) {
596 if ((v = cgi_variable(label)) != NULL) {
597 if (parm->flags & FLAG_HIDE)
598 continue;
599 commit_parameter(snum, parm, v);
600 }
601 SAFE_FREE(label);
602 }
603 }
604 }
605
606 /****************************************************************************
607 spit out the html for a link with an image
608 ****************************************************************************/
609 static void image_link(const char *name, const char *hlink, const char *src)
610 {
611 printf("<A HREF=\"%s/%s\"><img border=\"0\" src=\"/swat/%s\" alt=\"%s\"></A>\n",
612 cgi_baseurl(), hlink, src, name);
613 }
614
615 /****************************************************************************
616 display the main navigation controls at the top of each page along
617 with a title
618 ****************************************************************************/
619 static void show_main_buttons(void)
620 {
621 char *p;
622
623 if ((p = cgi_user_name()) && strcmp(p, "root")) {
624 printf(_("Logged in as <b>%s</b>"), p);
625 printf("<p>\n");
626 }
627
628 image_link(_("Home"), "", "images/home.gif");
629 if (have_write_access) {
630 image_link(_("Globals"), "globals", "images/globals.gif");
631 image_link(_("Shares"), "shares", "images/shares.gif");
632 image_link(_("Printers"), "printers", "images/printers.gif");
633 image_link(_("Wizard"), "wizard", "images/wizard.gif");
634 }
635 /* root always gets all buttons, otherwise look for -P */
636 if ( have_write_access || (!passwd_only && have_read_access) ) {
637 image_link(_("Status"), "status", "images/status.gif");
638 image_link(_("View Config"), "viewconfig", "images/viewconfig.gif");
639 }
640 image_link(_("Password Management"), "passwd", "images/passwd.gif");
641
642 printf("<HR>\n");
643 }
644
645 /****************************************************************************
646 * Handle Display/Edit Mode CGI
647 ****************************************************************************/
648 static void ViewModeBoxes(int mode)
649 {
650 printf("<p>%s:&nbsp;\n", _("Current View Is"));
651 printf("<input type=radio name=\"ViewMode\" value=0 %s>%s\n", ((mode == 0) ? "checked" : ""), _("Basic"));
652 printf("<input type=radio name=\"ViewMode\" value=1 %s>%s\n", ((mode == 1) ? "checked" : ""), _("Advanced"));
653 printf("<br>%s:&nbsp;\n", _("Change View To"));
654 printf("<input type=submit name=\"BasicMode\" value=\"%s\">\n", _("Basic"));
655 printf("<input type=submit name=\"AdvMode\" value=\"%s\">\n", _("Advanced"));
656 printf("</p><br>\n");
657 }
658
659 /****************************************************************************
660 display a welcome page
661 ****************************************************************************/
662 static void welcome_page(void)
663 {
664 if (file_exist("help/welcome.html")) {
665 include_html("help/welcome.html");
666 } else {
667 include_html("help/welcome-no-samba-doc.html");
668 }
669 }
670
671 /****************************************************************************
672 display the current smb.conf
673 ****************************************************************************/
674 static void viewconfig_page(void)
675 {
676 int full_view=0;
677 const char form_name[] = "viewconfig";
678
679 if (!verify_xsrf_token(form_name)) {
680 goto output_page;
681 }
682
683 if (cgi_variable("full_view")) {
684 full_view = 1;
685 }
686
687 output_page:
688 printf("<H2>%s</H2>\n", _("Current Config"));
689 printf("<form method=post>\n");
690 print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
691
692 if (full_view) {
693 printf("<input type=submit name=\"normal_view\" value=\"%s\">\n", _("Normal View"));
694 } else {
695 printf("<input type=submit name=\"full_view\" value=\"%s\">\n", _("Full View"));
696 }
697
698 printf("<p><pre>");
699 write_config(stdout, full_view);
700 printf("</pre>");
701 printf("</form>\n");
702 }
703
704 /****************************************************************************
705 second screen of the wizard ... Fetch Configuration Parameters
706 ****************************************************************************/
707 static void wizard_params_page(void)
708 {
709 unsigned int parm_filter = FLAG_WIZARD;
710 const char form_name[] = "wizard_params";
711
712 /* Here we first set and commit all the parameters that were selected
713 in the previous screen. */
714
715 printf("<H2>%s</H2>\n", _("Wizard Parameter Edit Page"));
716
717 if (!verify_xsrf_token(form_name)) {
718 goto output_page;
719 }
720
721 if (cgi_variable("Commit")) {
722 commit_parameters(GLOBAL_SECTION_SNUM);
723 save_reload(-1);
724 }
725
726 output_page:
727 printf("<form name=\"swatform\" method=post action=wizard_params>\n");
728 print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
729
730 if (have_write_access) {
731 printf("<input type=submit name=\"Commit\" value=\"Commit Changes\">\n");
732 }
733
734 printf("<input type=reset name=\"Reset Values\" value=\"Reset\">\n");
735 printf("<p>\n");
736
737 printf("<table>\n");
738 show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
739 printf("</table>\n");
740 printf("</form>\n");
741 }
742
743 /****************************************************************************
744 Utility to just rewrite the smb.conf file - effectively just cleans it up
745 ****************************************************************************/
746 static void rewritecfg_file(void)
747 {
748 commit_parameters(GLOBAL_SECTION_SNUM);
749 save_reload(-1);
750 printf("<H2>%s</H2>\n", _("Note: smb.conf file has been read and rewritten"));
751 }
752
753 /****************************************************************************
754 wizard to create/modify the smb.conf file
755 ****************************************************************************/
756 static void wizard_page(void)
757 {
758 /* Set some variables to collect data from smb.conf */
759 int role = 0;
760 int winstype = 0;
761 int have_home = -1;
762 int HomeExpo = 0;
763 int SerType = 0;
764
765 if (cgi_variable("Rewrite")) {
766 (void) rewritecfg_file();
767 return;
768 }
769
770 if (cgi_variable("GetWizardParams")){
771 (void) wizard_params_page();
772 return;
773 }
774
775 if (cgi_variable("Commit")){
776 SerType = atoi(cgi_variable_nonull("ServerType"));
777 winstype = atoi(cgi_variable_nonull("WINSType"));
778 have_home = lp_servicenumber(HOMES_NAME);
779 HomeExpo = atoi(cgi_variable_nonull("HomeExpo"));
780
781 /* Plain text passwords are too badly broken - use encrypted passwords only */
782 lp_do_parameter( GLOBAL_SECTION_SNUM, "encrypt passwords", "Yes");
783
784 switch ( SerType ){
785 case 0:
786 /* Stand-alone Server */
787 lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
788 lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
789 break;
790 case 1:
791 /* Domain Member */
792 lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "DOMAIN" );
793 lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
794 break;
795 case 2:
796 /* Domain Controller */
797 lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
798 lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "Yes" );
799 break;
800 }
801 switch ( winstype ) {
802 case 0:
803 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
804 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
805 break;
806 case 1:
807 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "Yes" );
808 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
809 break;
810 case 2:
811 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
812 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", cgi_variable_nonull("WINSAddr"));
813 break;
814 }
815
816 /* Have to create Homes share? */
817 if ((HomeExpo == 1) && (have_home == -1)) {
818 const char *unix_share = HOMES_NAME;
819
820 load_config(False);
821 lp_copy_service(GLOBAL_SECTION_SNUM, unix_share);
822 have_home = lp_servicenumber(HOMES_NAME);
823 lp_do_parameter( have_home, "read only", "No");
824 lp_do_parameter( have_home, "valid users", "%S");
825 lp_do_parameter( have_home, "browseable", "No");
826 commit_parameters(have_home);
827 save_reload(have_home);
828 }
829
830 /* Need to Delete Homes share? */
831 if ((HomeExpo == 0) && (have_home != -1)) {
832 lp_remove_service(have_home);
833 have_home = -1;
834 }
835
836 commit_parameters(GLOBAL_SECTION_SNUM);
837 save_reload(-1);
838 }
839 else
840 {
841 /* Now determine smb.conf WINS settings */
842 if (lp_wins_support())
843 winstype = 1;
844 if (lp_wins_server_list() && strlen(*lp_wins_server_list()))
845 winstype = 2;
846
847 /* Do we have a homes share? */
848 have_home = lp_servicenumber(HOMES_NAME);
849 }
850 if ((winstype == 2) && lp_wins_support())
851 winstype = 3;
852
853 role = lp_server_role();
854
855 /* Here we go ... */
856 printf("<H2>%s</H2>\n", _("Samba Configuration Wizard"));
857 printf("<form method=post action=wizard>\n");
858
859 if (have_write_access) {
860 printf("%s\n", _("The \"Rewrite smb.conf file\" button will clear the smb.conf file of all default values and of comments."));
861 printf("%s", _("The same will happen if you press the commit button."));
862 printf("<br><br>\n");
863 printf("<center>");
864 printf("<input type=submit name=\"Rewrite\" value=\"%s\"> &nbsp;&nbsp;",_("Rewrite smb.conf file"));
865 printf("<input type=submit name=\"Commit\" value=\"%s\"> &nbsp;&nbsp;",_("Commit"));
866 printf("<input type=submit name=\"GetWizardParams\" value=\"%s\">", _("Edit Parameter Values"));
867 printf("</center>\n");
868 }
869
870 printf("<hr>");
871 printf("<center><table border=0>");
872 printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Server Type"));
873 printf("<td><input type=radio name=\"ServerType\" value=\"0\" %s> %s&nbsp;</td>", ((role == ROLE_STANDALONE) ? "checked" : ""), _("Stand Alone"));
874 printf("<td><input type=radio name=\"ServerType\" value=\"1\" %s> %s&nbsp;</td>", ((role == ROLE_DOMAIN_MEMBER) ? "checked" : ""), _("Domain Member"));
875 printf("<td><input type=radio name=\"ServerType\" value=\"2\" %s> %s&nbsp;</td>", ((role == ROLE_DOMAIN_PDC) ? "checked" : ""), _("Domain Controller"));
876 printf("</tr>\n");
877 if (role == ROLE_DOMAIN_BDC) {
878 printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Unusual Type in smb.conf - Please Select New Mode"));
879 }
880 printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Configure WINS As"));
881 printf("<td><input type=radio name=\"WINSType\" value=\"0\" %s> %s&nbsp;</td>", ((winstype == 0) ? "checked" : ""), _("Not Used"));
882 printf("<td><input type=radio name=\"WINSType\" value=\"1\" %s> %s&nbsp;</td>", ((winstype == 1) ? "checked" : ""), _("Server for client use"));
883 printf("<td><input type=radio name=\"WINSType\" value=\"2\" %s> %s&nbsp;</td>", ((winstype == 2) ? "checked" : ""), _("Client of another WINS server"));
884 printf("</tr>\n");
885 printf("<tr><td></td><td></td><td></td><td>%s&nbsp;<input type=text size=\"16\" name=\"WINSAddr\" value=\"", _("Remote WINS Server"));
886
887 /* Print out the list of wins servers */
888 if(lp_wins_server_list()) {
889 int i;
890 const char **wins_servers = lp_wins_server_list();
891 for(i = 0; wins_servers[i]; i++) printf("%s ", wins_servers[i]);
892 }
893
894 printf("\"></td></tr>\n");
895 if (winstype == 3) {
896 printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Error: WINS Server Mode and WINS Support both set in smb.conf"));
897 printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Please Select desired WINS mode above."));
898 }
899 printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Expose Home Directories"));
900 printf("<td><input type=radio name=\"HomeExpo\" value=\"1\" %s> Yes</td>", (have_home == -1) ? "" : "checked ");
901 printf("<td><input type=radio name=\"HomeExpo\" value=\"0\" %s> No</td>", (have_home == -1 ) ? "checked" : "");
902 printf("<td></td></tr>\n");
903
904 /* Enable this when we are ready ....
905 * printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Is Print Server"));
906 * printf("<td><input type=radio name=\"PtrSvr\" value=\"1\" %s> Yes</td>");
907 * printf("<td><input type=radio name=\"PtrSvr\" value=\"0\" %s> No</td>");
908 * printf("<td></td></tr>\n");
909 */
910
911 printf("</table></center>");
912 printf("<hr>");
913
914 printf("%s\n", _("The above configuration options will set multiple parameters and will generally assist with rapid Samba deployment."));
915 printf("</form>\n");
916 }
917
918
919 /****************************************************************************
920 display a globals editing page
921 ****************************************************************************/
922 static void globals_page(void)
923 {
924 unsigned int parm_filter = FLAG_BASIC;
925 int mode = 0;
926
927 printf("<H2>%s</H2>\n", _("Global Parameters"));
928
929 if (cgi_variable("Commit")) {
930 commit_parameters(GLOBAL_SECTION_SNUM);
931 save_reload(-1);
932 }
933
934 if ( cgi_variable("ViewMode") )
935 mode = atoi(cgi_variable_nonull("ViewMode"));
936 if ( cgi_variable("BasicMode"))
937 mode = 0;
938 if ( cgi_variable("AdvMode"))
939 mode = 1;
940
941 printf("<form name=\"swatform\" method=post action=globals>\n");
942
943 ViewModeBoxes( mode );
944 switch ( mode ) {
945 case 0:
946 parm_filter = FLAG_BASIC;
947 break;
948 case 1:
949 parm_filter = FLAG_ADVANCED;
950 break;
951 }
952 printf("<br>\n");
953 if (have_write_access) {
954 printf("<input type=submit name=\"Commit\" value=\"%s\">\n",
955 _("Commit Changes"));
956 }
957
958 printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n",
959 _("Reset Values"));
960
961 printf("<p>\n");
962 printf("<table>\n");
963 show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
964 printf("</table>\n");
965 printf("</form>\n");
966 }
967
968 /****************************************************************************
969 display a shares editing page. share is in unix codepage,
970 ****************************************************************************/
971 static void shares_page(void)
972 {
973 const char *share = cgi_variable("share");
974 char *s;
975 char *utf8_s;
976 int snum = -1;
977 int i;
978 int mode = 0;
979 unsigned int parm_filter = FLAG_BASIC;
980 size_t converted_size;
981
982 if (share)
983 snum = lp_servicenumber(share);
984
985 printf("<H2>%s</H2>\n", _("Share Parameters"));
986
987 if (cgi_variable("Commit") && snum >= 0) {
988 commit_parameters(snum);
989 save_reload(-1);
990 snum = lp_servicenumber(share);
991 }
992
993 if (cgi_variable("Delete") && snum >= 0) {
994 lp_remove_service(snum);
995 save_reload(-1);
996 share = NULL;
997 snum = -1;
998 }
999
1000 if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
1001 snum = lp_servicenumber(share);
1002 if (snum < 0) {
1003 load_config(False);
1004 lp_copy_service(GLOBAL_SECTION_SNUM, share);
1005 snum = lp_servicenumber(share);
1006 save_reload(snum);
1007 snum = lp_servicenumber(share);
1008 }
1009 }
1010
1011 printf("<FORM name=\"swatform\" method=post>\n");
1012
1013 printf("<table>\n");
1014
1015 if ( cgi_variable("ViewMode") )
1016 mode = atoi(cgi_variable_nonull("ViewMode"));
1017 if ( cgi_variable("BasicMode"))
1018 mode = 0;
1019 if ( cgi_variable("AdvMode"))
1020 mode = 1;
1021
1022 ViewModeBoxes( mode );
1023 switch ( mode ) {
1024 case 0:
1025 parm_filter = FLAG_BASIC;
1026 break;
1027 case 1:
1028 parm_filter = FLAG_ADVANCED;
1029 break;
1030 }
1031 printf("<br><tr>\n");
1032 printf("<td><input type=submit name=selectshare value=\"%s\"></td>\n", _("Choose Share"));
1033 printf("<td><select name=share>\n");
1034 if (snum < 0)
1035 printf("<option value=\" \"> \n");
1036 for (i=0;i<lp_numservices();i++) {
1037 s = lp_servicename(i);
1038 if (s && (*s) && strcmp(s,"IPC$") && !lp_print_ok(i)) {
1039 push_utf8_talloc(talloc_tos(), &utf8_s, s, &converted_size);
1040 printf("<option %s value=\"%s\">%s\n",
1041 (share && strcmp(share,s)==0)?"SELECTED":"",
1042 utf8_s, utf8_s);
1043 TALLOC_FREE(utf8_s);
1044 }
1045 }
1046 printf("</select></td>\n");
1047 if (have_write_access) {
1048 printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Share"));
1049 }
1050 printf("</tr>\n");
1051 printf("</table>");
1052 printf("<table>");
1053 if (have_write_access) {
1054 printf("<tr>\n");
1055 printf("<td><input type=submit name=createshare value=\"%s\"></td>\n", _("Create Share"));
1056 printf("<td><input type=text size=30 name=newshare></td></tr>\n");
1057 }
1058 printf("</table>");
1059
1060
1061 if (snum >= 0) {
1062 if (have_write_access) {
1063 printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
1064 }
1065
1066 printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
1067 printf("<p>\n");
1068 }
1069
1070 if (snum >= 0) {
1071 printf("<table>\n");
1072 show_parameters(snum, 1, parm_filter, 0);
1073 printf("</table>\n");
1074 }
1075
1076 printf("</FORM>\n");
1077 }
1078
1079 /*************************************************************
1080 change a password either locally or remotely
1081 *************************************************************/
1082 static bool change_password(const char *remote_machine, const char *user_name,
1083 const char *old_passwd, const char *new_passwd,
1084 int local_flags)
1085 {
1086 NTSTATUS ret;
1087 char *err_str = NULL;
1088 char *msg_str = NULL;
1089
1090 if (demo_mode) {
1091 printf("%s\n<p>", _("password change in demo mode rejected"));
1092 return False;
1093 }
1094
1095 if (remote_machine != NULL) {
1096 ret = remote_password_change(remote_machine, user_name,
1097 old_passwd, new_passwd, &err_str);
1098 if (err_str != NULL)
1099 printf("%s\n<p>", err_str);
1100 SAFE_FREE(err_str);
1101 return NT_STATUS_IS_OK(ret);
1102 }
1103
1104 if(!initialize_password_db(True, NULL)) {
1105 printf("%s\n<p>", _("Can't setup password database vectors."));
1106 return False;
1107 }
1108
1109 ret = local_password_change(user_name, local_flags, new_passwd,
1110 &err_str, &msg_str);
1111
1112 if(msg_str)
1113 printf("%s\n<p>", msg_str);
1114 if(err_str)
1115 printf("%s\n<p>", err_str);
1116
1117 SAFE_FREE(msg_str);
1118 SAFE_FREE(err_str);
1119 return NT_STATUS_IS_OK(ret);
1120 }
1121
1122 /****************************************************************************
1123 do the stuff required to add or change a password
1124 ****************************************************************************/
1125 static void chg_passwd(void)
1126 {
1127 const char *host;
1128 bool rslt;
1129 int local_flags = 0;
1130
1131 /* Make sure users name has been specified */
1132 if (strlen(cgi_variable_nonull(SWAT_USER)) == 0) {
1133 printf("<p>%s\n", _(" Must specify \"User Name\" "));
1134 return;
1135 }
1136
1137 /*
1138 * smbpasswd doesn't require anything but the users name to delete, disable or enable the user,
1139 * so if that's what we're doing, skip the rest of the checks
1140 */
1141 if (!cgi_variable(DISABLE_USER_FLAG) && !cgi_variable(ENABLE_USER_FLAG) && !cgi_variable(DELETE_USER_FLAG)) {
1142
1143 /*
1144 * If current user is not root, make sure old password has been specified
1145 * If REMOTE change, even root must provide old password
1146 */
1147 if (((!am_root()) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0)) ||
1148 ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0))) {
1149 printf("<p>%s\n", _(" Must specify \"Old Password\" "));
1150 return;
1151 }
1152
1153 /* If changing a users password on a remote hosts we have to know what host */
1154 if ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(RHOST)) <= 0)) {
1155 printf("<p>%s\n", _(" Must specify \"Remote Machine\" "));
1156 return;
1157 }
1158
1159 /* Make sure new passwords have been specified */
1160 if ((strlen( cgi_variable_nonull(NEW_PSWD)) <= 0) ||
1161 (strlen( cgi_variable_nonull(NEW2_PSWD)) <= 0)) {
1162 printf("<p>%s\n", _(" Must specify \"New, and Re-typed Passwords\" "));
1163 return;
1164 }
1165
1166 /* Make sure new passwords was typed correctly twice */
1167 if (strcmp(cgi_variable_nonull(NEW_PSWD), cgi_variable_nonull(NEW2_PSWD)) != 0) {
1168 printf("<p>%s\n", _(" Re-typed password didn't match new password "));
1169 return;
1170 }
1171 }
1172
1173 if (cgi_variable(CHG_R_PASSWD_FLAG)) {
1174 host = cgi_variable(RHOST);
1175 } else if (am_root()) {
1176 host = NULL;
1177 } else {
1178 host = "127.0.0.1";
1179 }
1180
1181 /*
1182 * Set up the local flags.
1183 */
1184
1185 local_flags |= (cgi_variable(ADD_USER_FLAG) ? LOCAL_ADD_USER : 0);
1186 local_flags |= (cgi_variable(ADD_USER_FLAG) ? LOCAL_SET_PASSWORD : 0);
1187 local_flags |= (cgi_variable(CHG_S_PASSWD_FLAG) ? LOCAL_SET_PASSWORD : 0);
1188 local_flags |= (cgi_variable(DELETE_USER_FLAG) ? LOCAL_DELETE_USER : 0);
1189 local_flags |= (cgi_variable(ENABLE_USER_FLAG) ? LOCAL_ENABLE_USER : 0);
1190 local_flags |= (cgi_variable(DISABLE_USER_FLAG) ? LOCAL_DISABLE_USER : 0);
1191
1192 rslt = change_password(host,
1193 cgi_variable_nonull(SWAT_USER),
1194 cgi_variable_nonull(OLD_PSWD), cgi_variable_nonull(NEW_PSWD),
1195 local_flags);
1196
1197 if(cgi_variable(CHG_S_PASSWD_FLAG)) {
1198 printf("<p>");
1199 if (rslt == True) {
1200 printf("%s\n", _(" The passwd has been changed."));
1201 } else {
1202 printf("%s\n", _(" The passwd has NOT been changed."));
1203 }
1204 }
1205
1206 return;
1207 }
1208
1209 /****************************************************************************
1210 display a password editing page
1211 ****************************************************************************/
1212 static void passwd_page(void)
1213 {
1214 const char *new_name = cgi_user_name();
1215
1216 if (!new_name) new_name = "";
1217
1218 printf("<H2>%s</H2>\n", _("Server Password Management"));
1219
1220 printf("<FORM name=\"swatform\" method=post>\n");
1221
1222 printf("<table>\n");
1223
1224 /*
1225 * Create all the dialog boxes for data collection
1226 */
1227 printf("<tr><td> %s : </td>\n", _("User Name"));
1228 printf("<td><input type=text size=30 name=%s value=%s></td></tr> \n", SWAT_USER, new_name);
1229 if (!am_root()) {
1230 printf("<tr><td> %s : </td>\n", _("Old Password"));
1231 printf("<td><input type=password size=30 name=%s></td></tr> \n",OLD_PSWD);
1232 }
1233 printf("<tr><td> %s : </td>\n", _("New Password"));
1234 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1235 printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1236 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1237 printf("</table>\n");
1238
1239 /*
1240 * Create all the control buttons for requesting action
1241 */
1242 printf("<input type=submit name=%s value=\"%s\">\n",
1243 CHG_S_PASSWD_FLAG, _("Change Password"));
1244 if (demo_mode || am_root()) {
1245 printf("<input type=submit name=%s value=\"%s\">\n",
1246 ADD_USER_FLAG, _("Add New User"));
1247 printf("<input type=submit name=%s value=\"%s\">\n",
1248 DELETE_USER_FLAG, _("Delete User"));
1249 printf("<input type=submit name=%s value=\"%s\">\n",
1250 DISABLE_USER_FLAG, _("Disable User"));
1251 printf("<input type=submit name=%s value=\"%s\">\n",
1252 ENABLE_USER_FLAG, _("Enable User"));
1253 }
1254 printf("<p></FORM>\n");
1255
1256 /*
1257 * Do some work if change, add, disable or enable was
1258 * requested. It could be this is the first time through this
1259 * code, so there isn't anything to do. */
1260 if ((cgi_variable(CHG_S_PASSWD_FLAG)) || (cgi_variable(ADD_USER_FLAG)) || (cgi_variable(DELETE_USER_FLAG)) ||
1261 (cgi_variable(DISABLE_USER_FLAG)) || (cgi_variable(ENABLE_USER_FLAG))) {
1262 chg_passwd();
1263 }
1264
1265 printf("<H2>%s</H2>\n", _("Client/Server Password Management"));
1266
1267 printf("<FORM name=\"swatform\" method=post>\n");
1268
1269 printf("<table>\n");
1270
1271 /*
1272 * Create all the dialog boxes for data collection
1273 */
1274 printf("<tr><td> %s : </td>\n", _("User Name"));
1275 printf("<td><input type=text size=30 name=%s value=%s></td></tr>\n",SWAT_USER, new_name);
1276 printf("<tr><td> %s : </td>\n", _("Old Password"));
1277 printf("<td><input type=password size=30 name=%s></td></tr>\n",OLD_PSWD);
1278 printf("<tr><td> %s : </td>\n", _("New Password"));
1279 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1280 printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1281 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1282 printf("<tr><td> %s : </td>\n", _("Remote Machine"));
1283 printf("<td><input type=text size=30 name=%s></td></tr>\n",RHOST);
1284
1285 printf("</table>");
1286
1287 /*
1288 * Create all the control buttons for requesting action
1289 */
1290 printf("<input type=submit name=%s value=\"%s\">",
1291 CHG_R_PASSWD_FLAG, _("Change Password"));
1292
1293 printf("<p></FORM>\n");
1294
1295 /*
1296 * Do some work if a request has been made to change the
1297 * password somewhere other than the server. It could be this
1298 * is the first time through this code, so there isn't
1299 * anything to do. */
1300 if (cgi_variable(CHG_R_PASSWD_FLAG)) {
1301 chg_passwd();
1302 }
1303
1304 }
1305
1306 /****************************************************************************
1307 display a printers editing page
1308 ****************************************************************************/
1309 static void printers_page(void)
1310 {
1311 const char *share = cgi_variable("share");
1312 char *s;
1313 int snum=-1;
1314 int i;
1315 int mode = 0;
1316 unsigned int parm_filter = FLAG_BASIC;
1317
1318 if (share)
1319 snum = lp_servicenumber(share);
1320
1321 printf("<H2>%s</H2>\n", _("Printer Parameters"));
1322
1323 printf("<H3>%s</H3>\n", _("Important Note:"));
1324 printf("%s",_("Printer names marked with [*] in the Choose Printer drop-down box "));
1325 printf("%s",_("are autoloaded printers from "));
1326 printf("<A HREF=\"/swat/help/smb.conf.5.html#printcapname\" target=\"docs\">%s</A>\n", _("Printcap Name"));
1327 printf("%s\n", _("Attempting to delete these printers from SWAT will have no effect."));
1328
1329 if (cgi_variable("Commit") && snum >= 0) {
1330 commit_parameters(snum);
1331 if (snum >= iNumNonAutoPrintServices)
1332 save_reload(snum);
1333 else
1334 save_reload(-1);
1335 snum = lp_servicenumber(share);
1336 }
1337
1338 if (cgi_variable("Delete") && snum >= 0) {
1339 lp_remove_service(snum);
1340 save_reload(-1);
1341 share = NULL;
1342 snum = -1;
1343 }
1344
1345 if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
1346 snum = lp_servicenumber(share);
1347 if (snum < 0 || snum >= iNumNonAutoPrintServices) {
1348 load_config(False);
1349 lp_copy_service(GLOBAL_SECTION_SNUM, share);
1350 snum = lp_servicenumber(share);
1351 lp_do_parameter(snum, "print ok", "Yes");
1352 save_reload(snum);
1353 snum = lp_servicenumber(share);
1354 }
1355 }
1356
1357 printf("<FORM name=\"swatform\" method=post>\n");
1358
1359 if ( cgi_variable("ViewMode") )
1360 mode = atoi(cgi_variable_nonull("ViewMode"));
1361 if ( cgi_variable("BasicMode"))
1362 mode = 0;
1363 if ( cgi_variable("AdvMode"))
1364 mode = 1;
1365
1366 ViewModeBoxes( mode );
1367 switch ( mode ) {
1368 case 0:
1369 parm_filter = FLAG_BASIC;
1370 break;
1371 case 1:
1372 parm_filter = FLAG_ADVANCED;
1373 break;
1374 }
1375 printf("<table>\n");
1376 printf("<tr><td><input type=submit name=\"selectshare\" value=\"%s\"></td>\n", _("Choose Printer"));
1377 printf("<td><select name=\"share\">\n");
1378 if (snum < 0 || !lp_print_ok(snum))
1379 printf("<option value=\" \"> \n");
1380 for (i=0;i<lp_numservices();i++) {
1381 s = lp_servicename(i);
1382 if (s && (*s) && strcmp(s,"IPC$") && lp_print_ok(i)) {
1383 if (i >= iNumNonAutoPrintServices)
1384 printf("<option %s value=\"%s\">[*]%s\n",
1385 (share && strcmp(share,s)==0)?"SELECTED":"",
1386 s, s);
1387 else
1388 printf("<option %s value=\"%s\">%s\n",
1389 (share && strcmp(share,s)==0)?"SELECTED":"",
1390 s, s);
1391 }
1392 }
1393 printf("</select></td>");
1394 if (have_write_access) {
1395 printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Printer"));
1396 }
1397 printf("</tr>");
1398 printf("</table>\n");
1399
1400 if (have_write_access) {
1401 printf("<table>\n");
1402 printf("<tr><td><input type=submit name=\"createshare\" value=\"%s\"></td>\n", _("Create Printer"));
1403 printf("<td><input type=text size=30 name=\"newshare\"></td></tr>\n");
1404 printf("</table>");
1405 }
1406
1407
1408 if (snum >= 0) {
1409 if (have_write_access) {
1410 printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
1411 }
1412 printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
1413 printf("<p>\n");
1414 }
1415
1416 if (snum >= 0) {
1417 printf("<table>\n");
1418 show_parameters(snum, 1, parm_filter, 1);
1419 printf("</table>\n");
1420 }
1421 printf("</FORM>\n");
1422 }
1423
1424 /*
1425 when the _() translation macro is used there is no obvious place to free
1426 the resulting string and there is no easy way to give a static pointer.
1427 All we can do is rotate between some static buffers and hope a single d_printf()
1428 doesn't have more calls to _() than the number of buffers
1429 */
1430
1431 const char *lang_msg_rotate(TALLOC_CTX *ctx, const char *msgid)
1432 {
1433 const char *msgstr;
1434 const char *ret;
1435
1436 msgstr = lang_msg(msgid);
1437 if (!msgstr) {
1438 return msgid;
1439 }
1440
1441 ret = talloc_strdup(ctx, msgstr);
1442
1443 lang_msg_free(msgstr);
1444 if (!ret) {
1445 return msgid;
1446 }
1447
1448 return ret;
1449 }
1450
1451 /**
1452 * main function for SWAT.
1453 **/
1454 int main(int argc, char *argv[])
1455 {
1456 const char *page;
1457 poptContext pc;
1458 struct poptOption long_options[] = {
1459 POPT_AUTOHELP
1460 { "disable-authentication", 'a', POPT_ARG_VAL, &demo_mode, True, "Disable authentication (demo mode)" },
1461 { "password-menu-only", 'P', POPT_ARG_VAL, &passwd_only, True, "Show only change password menu" },
1462 POPT_COMMON_SAMBA
1463 POPT_TABLEEND
1464 };
1465 TALLOC_CTX *frame = talloc_stackframe();
1466
1467 fault_setup(NULL);
1468 umask(S_IWGRP | S_IWOTH);
1469
1470 #if defined(HAVE_SET_AUTH_PARAMETERS)
1471 set_auth_parameters(argc, argv);
1472 #endif /* HAVE_SET_AUTH_PARAMETERS */
1473
1474 /* just in case it goes wild ... */
1475 alarm(300);
1476
1477 setlinebuf(stdout);
1478
1479 /* we don't want any SIGPIPE messages */
1480 BlockSignals(True,SIGPIPE);
1481
1482 debug_set_logfile("/dev/null");
1483
1484 /* we don't want stderr screwing us up */
1485 close(2);
1486 open("/dev/null", O_WRONLY);
1487 setup_logging("swat", DEBUG_FILE);
1488
1489 load_case_tables();
1490
1491 pc = poptGetContext("swat", argc, (const char **) argv, long_options, 0);
1492
1493 /* Parse command line options */
1494
1495 while(poptGetNextOpt(pc) != -1) { }
1496
1497 poptFreeContext(pc);
1498
1499 /* This should set a more apporiate log file */
1500 load_config(True);
1501 reopen_logs();
1502 load_interfaces();
1503 iNumNonAutoPrintServices = lp_numservices();
1504 if (pcap_cache_loaded()) {
1505 load_printers(server_event_context(),
1506 server_messaging_context());
1507 }
1508
1509 cgi_setup(get_dyn_SWATDIR(), !demo_mode);
1510
1511 print_header();
1512
1513 cgi_load_variables();
1514
1515 if (!file_exist(get_dyn_CONFIGFILE())) {
1516 have_read_access = True;
1517 have_write_access = True;
1518 } else {
1519 /* check if the authenticated user has write access - if not then
1520 don't show write options */
1521 have_write_access = (access(get_dyn_CONFIGFILE(),W_OK) == 0);
1522
1523 /* if the user doesn't have read access to smb.conf then
1524 don't let them view it */
1525 have_read_access = (access(get_dyn_CONFIGFILE(),R_OK) == 0);
1526 }
1527
1528 show_main_buttons();
1529
1530 page = cgi_pathinfo();
1531
1532 /* Root gets full functionality */
1533 if (have_read_access && strcmp(page, "globals")==0) {
1534 globals_page();
1535 } else if (have_read_access && strcmp(page,"shares")==0) {
1536 shares_page();
1537 } else if (have_read_access && strcmp(page,"printers")==0) {
1538 printers_page();
1539 } else if (have_read_access && strcmp(page,"status")==0) {
1540 status_page();
1541 } else if (have_read_access && strcmp(page,"viewconfig")==0) {
1542 viewconfig_page();
1543 } else if (strcmp(page,"passwd")==0) {
1544 passwd_page();
1545 } else if (have_read_access && strcmp(page,"wizard")==0) {
1546 wizard_page();
1547 } else if (have_read_access && strcmp(page,"wizard_params")==0) {
1548 wizard_params_page();
1549 } else if (have_read_access && strcmp(page,"rewritecfg")==0) {
1550 rewritecfg_file();
1551 } else {
1552 welcome_page();
1553 }
1554
1555 print_footer();
1556
1557 TALLOC_FREE(frame);
1558 return 0;
1559 }
1560
1561 /** @} **/
Samba GIT mirror