search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
s3 swat: Fix possible XSS attack (bug #8289)
[Samba.git] / source / web / swat.c
blob434b1ace4ec5a0b3b3ed94f293812a433d59e842
1 /*
2 Unix SMB/CIFS implementation.
3 Samba Web Administration Tool
4 Version 3.0.0
5 Copyright (C) Andrew Tridgell 1997-2002
6 Copyright (C) John H Terpstra 2002
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
20 */
21
22 /**
23 * @defgroup swat SWAT - Samba Web Administration Tool
24 * @{
25 * @file swat.c
26 *
27 * @brief Samba Web Administration Tool.
28 **/
29
30 #include "includes.h"
31 #include "web/swat_proto.h"
32
33 static int demo_mode = False;
34 static int passwd_only = False;
35 static bool have_write_access = False;
36 static bool have_read_access = False;
37 static int iNumNonAutoPrintServices = 0;
38
39 /*
40 * Password Management Globals
41 */
42 #define SWAT_USER "username"
43 #define OLD_PSWD "old_passwd"
44 #define NEW_PSWD "new_passwd"
45 #define NEW2_PSWD "new2_passwd"
46 #define CHG_S_PASSWD_FLAG "chg_s_passwd_flag"
47 #define CHG_R_PASSWD_FLAG "chg_r_passwd_flag"
48 #define ADD_USER_FLAG "add_user_flag"
49 #define DELETE_USER_FLAG "delete_user_flag"
50 #define DISABLE_USER_FLAG "disable_user_flag"
51 #define ENABLE_USER_FLAG "enable_user_flag"
52 #define RHOST "remote_host"
53
54 #define _(x) lang_msg_rotate(talloc_tos(),x)
55
56 /****************************************************************************
57 ****************************************************************************/
58 static int enum_index(int value, const struct enum_list *enumlist)
59 {
60 int i;
61 for (i=0;enumlist[i].name;i++)
62 if (value == enumlist[i].value) break;
63 return(i);
64 }
65
66 static char *fix_backslash(const char *str)
67 {
68 static char newstring[1024];
69 char *p = newstring;
70
71 while (*str) {
72 if (*str == '\\') {*p++ = '\\';*p++ = '\\';}
73 else *p++ = *str;
74 ++str;
75 }
76 *p = '\0';
77 return newstring;
78 }
79
80 static const char *fix_quotes(TALLOC_CTX *ctx, const char *str)
81 {
82 char *newstring = NULL;
83 char *p = NULL;
84 size_t newstring_len;
85 int quote_len = strlen("&quot;");
86
87 /* Count the number of quotes. */
88 newstring_len = 1;
89 p = (char *) str;
90 while (*p) {
91 if ( *p == '\"') {
92 newstring_len += quote_len;
93 } else {
94 newstring_len++;
95 }
96 ++p;
97 }
98 newstring = TALLOC_ARRAY(ctx, char, newstring_len);
99 if (!newstring) {
100 return "";
101 }
102 for (p = newstring; *str; str++) {
103 if ( *str == '\"') {
104 strncpy( p, "&quot;", quote_len);
105 p += quote_len;
106 } else {
107 *p++ = *str;
108 }
109 }
110 *p = '\0';
111 return newstring;
112 }
113
114 static char *stripspaceupper(const char *str)
115 {
116 static char newstring[1024];
117 char *p = newstring;
118
119 while (*str) {
120 if (*str != ' ') *p++ = toupper_ascii(*str);
121 ++str;
122 }
123 *p = '\0';
124 return newstring;
125 }
126
127 static char *make_parm_name(const char *label)
128 {
129 static char parmname[1024];
130 char *p = parmname;
131
132 while (*label) {
133 if (*label == ' ') *p++ = '_';
134 else *p++ = *label;
135 ++label;
136 }
137 *p = '\0';
138 return parmname;
139 }
140
141 /****************************************************************************
142 include a lump of html in a page
143 ****************************************************************************/
144 static int include_html(const char *fname)
145 {
146 int fd;
147 char buf[1024];
148 int ret;
149
150 fd = web_open(fname, O_RDONLY, 0);
151
152 if (fd == -1) {
153 printf(_("ERROR: Can't open %s"), fname);
154 printf("\n");
155 return 0;
156 }
157
158 while ((ret = read(fd, buf, sizeof(buf))) > 0) {
159 if (write(1, buf, ret) == -1) {
160 break;
161 }
162 }
163
164 close(fd);
165 return 1;
166 }
167
168 /****************************************************************************
169 start the page with standard stuff
170 ****************************************************************************/
171 static void print_header(void)
172 {
173 if (!cgi_waspost()) {
174 printf("Expires: 0\r\n");
175 }
176 printf("Content-type: text/html\r\n\r\n");
177
178 if (!include_html("include/header.html")) {
179 printf("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 3.2//EN\">\n");
180 printf("<HTML>\n<HEAD>\n<TITLE>Samba Web Administration Tool</TITLE>\n</HEAD>\n<BODY background=\"/swat/images/background.jpg\">\n\n");
181 }
182 }
183
184 /* *******************************************************************
185 show parameter label with translated name in the following form
186 because showing original and translated label in one line looks
187 too long, and showing translated label only is unusable for
188 heavy users.
189 -------------------------------
190 HELP security [combo box][button]
191 SECURITY
192 -------------------------------
193 (capital words are translated by gettext.)
194 if no translation is available, then same form as original is
195 used.
196 "i18n_translated_parm" class is used to change the color of the
197 translated parameter with CSS.
198 **************************************************************** */
199 static const char *get_parm_translated(TALLOC_CTX *ctx,
200 const char* pAnchor, const char* pHelp, const char* pLabel)
201 {
202 const char *pTranslated = _(pLabel);
203 char *output;
204 if(strcmp(pLabel, pTranslated) != 0) {
205 output = talloc_asprintf(ctx,
206 "<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; %s <br><span class=\"i18n_translated_parm\">%s</span>",
207 pAnchor, pHelp, pLabel, pTranslated);
208 return output;
209 }
210 output = talloc_asprintf(ctx,
211 "<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; %s",
212 pAnchor, pHelp, pLabel);
213 return output;
214 }
215 /****************************************************************************
216 finish off the page
217 ****************************************************************************/
218 static void print_footer(void)
219 {
220 if (!include_html("include/footer.html")) {
221 printf("\n</BODY>\n</HTML>\n");
222 }
223 }
224
225 /****************************************************************************
226 display one editable parameter in a form
227 ****************************************************************************/
228 static void show_parameter(int snum, struct parm_struct *parm)
229 {
230 int i;
231 void *ptr = parm->ptr;
232 char *utf8_s1, *utf8_s2;
233 size_t converted_size;
234 TALLOC_CTX *ctx = talloc_stackframe();
235
236 if (parm->p_class == P_LOCAL && snum >= 0) {
237 ptr = lp_local_ptr(snum, ptr);
238 }
239
240 printf("<tr><td>%s</td><td>", get_parm_translated(ctx,
241 stripspaceupper(parm->label), _("Help"), parm->label));
242 switch (parm->type) {
243 case P_CHAR:
244 printf("<input type=text size=2 name=\"parm_%s\" value=\"%c\">",
245 make_parm_name(parm->label), *(char *)ptr);
246 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%c\'\">",
247 _("Set Default"), make_parm_name(parm->label),(char)(parm->def.cvalue));
248 break;
249
250 case P_LIST:
251 printf("<input type=text size=40 name=\"parm_%s\" value=\"",
252 make_parm_name(parm->label));
253 if ((char ***)ptr && *(char ***)ptr && **(char ***)ptr) {
254 char **list = *(char ***)ptr;
255 for (;*list;list++) {
256 /* enclose in HTML encoded quotes if the string contains a space */
257 if ( strchr_m(*list, ' ') ) {
258 push_utf8_allocate(&utf8_s1, *list, &converted_size);
259 push_utf8_allocate(&utf8_s2, ((*(list+1))?", ":""), &converted_size);
260 printf("&quot;%s&quot;%s", utf8_s1, utf8_s2);
261 } else {
262 push_utf8_allocate(&utf8_s1, *list, &converted_size);
263 push_utf8_allocate(&utf8_s2, ((*(list+1))?", ":""), &converted_size);
264 printf("%s%s", utf8_s1, utf8_s2);
265 }
266 SAFE_FREE(utf8_s1);
267 SAFE_FREE(utf8_s2);
268 }
269 }
270 printf("\">");
271 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'",
272 _("Set Default"), make_parm_name(parm->label));
273 if (parm->def.lvalue) {
274 char **list = (char **)(parm->def.lvalue);
275 for (; *list; list++) {
276 /* enclose in HTML encoded quotes if the string contains a space */
277 if ( strchr_m(*list, ' ') )
278 printf("&quot;%s&quot;%s", *list, ((*(list+1))?", ":""));
279 else
280 printf("%s%s", *list, ((*(list+1))?", ":""));
281 }
282 }
283 printf("\'\">");
284 break;
285
286 case P_STRING:
287 case P_USTRING:
288 push_utf8_allocate(&utf8_s1, *(char **)ptr, &converted_size);
289 printf("<input type=text size=40 name=\"parm_%s\" value=\"%s\">",
290 make_parm_name(parm->label), fix_quotes(ctx, utf8_s1));
291 SAFE_FREE(utf8_s1);
292 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%s\'\">",
293 _("Set Default"), make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue)));
294 break;
295
296 case P_BOOL:
297 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
298 printf("<option %s>Yes", (*(bool *)ptr)?"selected":"");
299 printf("<option %s>No", (*(bool *)ptr)?"":"selected");
300 printf("</select>");
301 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
302 _("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?0:1);
303 break;
304
305 case P_BOOLREV:
306 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
307 printf("<option %s>Yes", (*(bool *)ptr)?"":"selected");
308 printf("<option %s>No", (*(bool *)ptr)?"selected":"");
309 printf("</select>");
310 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
311 _("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?1:0);
312 break;
313
314 case P_INTEGER:
315 printf("<input type=text size=8 name=\"parm_%s\" value=\"%d\">", make_parm_name(parm->label), *(int *)ptr);
316 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%d\'\">",
317 _("Set Default"), make_parm_name(parm->label),(int)(parm->def.ivalue));
318 break;
319
320 case P_OCTAL: {
321 char *o;
322 o = octal_string(*(int *)ptr);
323 printf("<input type=text size=8 name=\"parm_%s\" value=%s>",
324 make_parm_name(parm->label), o);
325 TALLOC_FREE(o);
326 o = octal_string((int)(parm->def.ivalue));
327 printf("<input type=button value=\"%s\" "
328 "onClick=\"swatform.parm_%s.value=\'%s\'\">",
329 _("Set Default"), make_parm_name(parm->label), o);
330 TALLOC_FREE(o);
331 break;
332 }
333
334 case P_ENUM:
335 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
336 for (i=0;parm->enum_list[i].name;i++) {
337 if (i == 0 || parm->enum_list[i].value != parm->enum_list[i-1].value) {
338 printf("<option %s>%s",(*(int *)ptr)==parm->enum_list[i].value?"selected":"",parm->enum_list[i].name);
339 }
340 }
341 printf("</select>");
342 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
343 _("Set Default"), make_parm_name(parm->label),enum_index((int)(parm->def.ivalue),parm->enum_list));
344 break;
345 case P_SEP:
346 break;
347 }
348 printf("</td></tr>\n");
349 TALLOC_FREE(ctx);
350 }
351
352 /****************************************************************************
353 display a set of parameters for a service
354 ****************************************************************************/
355 static void show_parameters(int snum, int allparameters, unsigned int parm_filter, int printers)
356 {
357 int i = 0;
358 struct parm_struct *parm;
359 const char *heading = NULL;
360 const char *last_heading = NULL;
361
362 while ((parm = lp_next_parameter(snum, &i, allparameters))) {
363 if (snum < 0 && parm->p_class == P_LOCAL && !(parm->flags & FLAG_GLOBAL))
364 continue;
365 if (parm->p_class == P_SEPARATOR) {
366 heading = parm->label;
367 continue;
368 }
369 if (parm->flags & FLAG_HIDE) continue;
370 if (snum >= 0) {
371 if (printers & !(parm->flags & FLAG_PRINT)) continue;
372 if (!printers & !(parm->flags & FLAG_SHARE)) continue;
373 }
374
375 if (!( parm_filter & FLAG_ADVANCED )) {
376 if (!(parm->flags & FLAG_BASIC)) {
377 void *ptr = parm->ptr;
378
379 if (parm->p_class == P_LOCAL && snum >= 0) {
380 ptr = lp_local_ptr(snum, ptr);
381 }
382
383 switch (parm->type) {
384 case P_CHAR:
385 if (*(char *)ptr == (char)(parm->def.cvalue)) continue;
386 break;
387
388 case P_LIST:
389 if (!str_list_compare(*(char ***)ptr, (char **)(parm->def.lvalue))) continue;
390 break;
391
392 case P_STRING:
393 case P_USTRING:
394 if (!strcmp(*(char **)ptr,(char *)(parm->def.svalue))) continue;
395 break;
396
397 case P_BOOL:
398 case P_BOOLREV:
399 if (*(bool *)ptr == (bool)(parm->def.bvalue)) continue;
400 break;
401
402 case P_INTEGER:
403 case P_OCTAL:
404 if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
405 break;
406
407
408 case P_ENUM:
409 if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
410 break;
411 case P_SEP:
412 continue;
413 }
414 }
415 if (printers && !(parm->flags & FLAG_PRINT)) continue;
416 }
417
418 if ((parm_filter & FLAG_WIZARD) && !(parm->flags & FLAG_WIZARD)) continue;
419
420 if ((parm_filter & FLAG_ADVANCED) && !(parm->flags & FLAG_ADVANCED)) continue;
421
422 if (heading && heading != last_heading) {
423 printf("<tr><td></td></tr><tr><td><b><u>%s</u></b></td></tr>\n", _(heading));
424 last_heading = heading;
425 }
426 show_parameter(snum, parm);
427 }
428 }
429
430 /****************************************************************************
431 load the smb.conf file into loadparm.
432 ****************************************************************************/
433 static bool load_config(bool save_def)
434 {
435 return lp_load(get_dyn_CONFIGFILE(),False,save_def,False,True);
436 }
437
438 /****************************************************************************
439 write a config file
440 ****************************************************************************/
441 static void write_config(FILE *f, bool show_defaults)
442 {
443 TALLOC_CTX *ctx = talloc_stackframe();
444
445 fprintf(f, "# Samba config file created using SWAT\n");
446 fprintf(f, "# from %s (%s)\n", cgi_remote_host(), cgi_remote_addr());
447 fprintf(f, "# Date: %s\n\n", current_timestring(ctx, False));
448
449 lp_dump(f, show_defaults, iNumNonAutoPrintServices);
450
451 TALLOC_FREE(ctx);
452 }
453
454 /****************************************************************************
455 save and reload the smb.conf config file
456 ****************************************************************************/
457 static int save_reload(int snum)
458 {
459 FILE *f;
460 struct stat st;
461
462 f = sys_fopen(get_dyn_CONFIGFILE(),"w");
463 if (!f) {
464 printf(_("failed to open %s for writing"), get_dyn_CONFIGFILE());
465 printf("\n");
466 return 0;
467 }
468
469 /* just in case they have used the buggy xinetd to create the file */
470 if (fstat(fileno(f), &st) == 0 &&
471 (st.st_mode & S_IWOTH)) {
472 #if defined HAVE_FCHMOD
473 fchmod(fileno(f), S_IWUSR | S_IRUSR | S_IRGRP | S_IROTH);
474 #else
475 chmod(get_dyn_CONFIGFILE(), S_IWUSR | S_IRUSR | S_IRGRP | S_IROTH);
476 #endif
477 }
478
479 write_config(f, False);
480 if (snum >= 0)
481 lp_dump_one(f, False, snum);
482 fclose(f);
483
484 lp_kill_all_services();
485
486 if (!load_config(False)) {
487 printf(_("Can't reload %s"), get_dyn_CONFIGFILE());
488 printf("\n");
489 return 0;
490 }
491 iNumNonAutoPrintServices = lp_numservices();
492 load_printers();
493
494 return 1;
495 }
496
497 /****************************************************************************
498 commit one parameter
499 ****************************************************************************/
500 static void commit_parameter(int snum, struct parm_struct *parm, const char *v)
501 {
502 int i;
503 char *s;
504
505 if (snum < 0 && parm->p_class == P_LOCAL) {
506 /* this handles the case where we are changing a local
507 variable globally. We need to change the parameter in
508 all shares where it is currently set to the default */
509 for (i=0;i<lp_numservices();i++) {
510 s = lp_servicename(i);
511 if (s && (*s) && lp_is_default(i, parm)) {
512 lp_do_parameter(i, parm->label, v);
513 }
514 }
515 }
516
517 lp_do_parameter(snum, parm->label, v);
518 }
519
520 /****************************************************************************
521 commit a set of parameters for a service
522 ****************************************************************************/
523 static void commit_parameters(int snum)
524 {
525 int i = 0;
526 struct parm_struct *parm;
527 char *label;
528 const char *v;
529
530 while ((parm = lp_next_parameter(snum, &i, 1))) {
531 if (asprintf(&label, "parm_%s", make_parm_name(parm->label)) > 0) {
532 if ((v = cgi_variable(label)) != NULL) {
533 if (parm->flags & FLAG_HIDE)
534 continue;
535 commit_parameter(snum, parm, v);
536 }
537 SAFE_FREE(label);
538 }
539 }
540 }
541
542 /****************************************************************************
543 spit out the html for a link with an image
544 ****************************************************************************/
545 static void image_link(const char *name, const char *hlink, const char *src)
546 {
547 printf("<A HREF=\"%s/%s\"><img border=\"0\" src=\"/swat/%s\" alt=\"%s\"></A>\n",
548 cgi_baseurl(), hlink, src, name);
549 }
550
551 /****************************************************************************
552 display the main navigation controls at the top of each page along
553 with a title
554 ****************************************************************************/
555 static void show_main_buttons(void)
556 {
557 char *p;
558
559 if ((p = cgi_user_name()) && strcmp(p, "root")) {
560 printf(_("Logged in as <b>%s</b>"), p);
561 printf("<p>\n");
562 }
563
564 image_link(_("Home"), "", "images/home.gif");
565 if (have_write_access) {
566 image_link(_("Globals"), "globals", "images/globals.gif");
567 image_link(_("Shares"), "shares", "images/shares.gif");
568 image_link(_("Printers"), "printers", "images/printers.gif");
569 image_link(_("Wizard"), "wizard", "images/wizard.gif");
570 }
571 /* root always gets all buttons, otherwise look for -P */
572 if ( have_write_access || (!passwd_only && have_read_access) ) {
573 image_link(_("Status"), "status", "images/status.gif");
574 image_link(_("View Config"), "viewconfig", "images/viewconfig.gif");
575 }
576 image_link(_("Password Management"), "passwd", "images/passwd.gif");
577
578 printf("<HR>\n");
579 }
580
581 /****************************************************************************
582 * Handle Display/Edit Mode CGI
583 ****************************************************************************/
584 static void ViewModeBoxes(int mode)
585 {
586 printf("<p>%s:&nbsp;\n", _("Current View Is"));
587 printf("<input type=radio name=\"ViewMode\" value=0 %s>%s\n", ((mode == 0) ? "checked" : ""), _("Basic"));
588 printf("<input type=radio name=\"ViewMode\" value=1 %s>%s\n", ((mode == 1) ? "checked" : ""), _("Advanced"));
589 printf("<br>%s:&nbsp;\n", _("Change View To"));
590 printf("<input type=submit name=\"BasicMode\" value=\"%s\">\n", _("Basic"));
591 printf("<input type=submit name=\"AdvMode\" value=\"%s\">\n", _("Advanced"));
592 printf("</p><br>\n");
593 }
594
595 /****************************************************************************
596 display a welcome page
597 ****************************************************************************/
598 static void welcome_page(void)
599 {
600 if (file_exist("help/welcome.html", NULL)) {
601 include_html("help/welcome.html");
602 } else {
603 include_html("help/welcome-no-samba-doc.html");
604 }
605 }
606
607 /****************************************************************************
608 display the current smb.conf
609 ****************************************************************************/
610 static void viewconfig_page(void)
611 {
612 int full_view=0;
613
614 if (cgi_variable("full_view")) {
615 full_view = 1;
616 }
617
618 printf("<H2>%s</H2>\n", _("Current Config"));
619 printf("<form method=post>\n");
620
621 if (full_view) {
622 printf("<input type=submit name=\"normal_view\" value=\"%s\">\n", _("Normal View"));
623 } else {
624 printf("<input type=submit name=\"full_view\" value=\"%s\">\n", _("Full View"));
625 }
626
627 printf("<p><pre>");
628 write_config(stdout, full_view);
629 printf("</pre>");
630 printf("</form>\n");
631 }
632
633 /****************************************************************************
634 second screen of the wizard ... Fetch Configuration Parameters
635 ****************************************************************************/
636 static void wizard_params_page(void)
637 {
638 unsigned int parm_filter = FLAG_WIZARD;
639
640 /* Here we first set and commit all the parameters that were selected
641 in the previous screen. */
642
643 printf("<H2>%s</H2>\n", _("Wizard Parameter Edit Page"));
644
645 if (cgi_variable("Commit")) {
646 commit_parameters(GLOBAL_SECTION_SNUM);
647 save_reload(0);
648 }
649
650 printf("<form name=\"swatform\" method=post action=wizard_params>\n");
651
652 if (have_write_access) {
653 printf("<input type=submit name=\"Commit\" value=\"Commit Changes\">\n");
654 }
655
656 printf("<input type=reset name=\"Reset Values\" value=\"Reset\">\n");
657 printf("<p>\n");
658
659 printf("<table>\n");
660 show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
661 printf("</table>\n");
662 printf("</form>\n");
663 }
664
665 /****************************************************************************
666 Utility to just rewrite the smb.conf file - effectively just cleans it up
667 ****************************************************************************/
668 static void rewritecfg_file(void)
669 {
670 commit_parameters(GLOBAL_SECTION_SNUM);
671 save_reload(0);
672 printf("<H2>%s</H2>\n", _("Note: smb.conf file has been read and rewritten"));
673 }
674
675 /****************************************************************************
676 wizard to create/modify the smb.conf file
677 ****************************************************************************/
678 static void wizard_page(void)
679 {
680 /* Set some variables to collect data from smb.conf */
681 int role = 0;
682 int winstype = 0;
683 int have_home = -1;
684 int HomeExpo = 0;
685 int SerType = 0;
686
687 if (cgi_variable("Rewrite")) {
688 (void) rewritecfg_file();
689 return;
690 }
691
692 if (cgi_variable("GetWizardParams")){
693 (void) wizard_params_page();
694 return;
695 }
696
697 if (cgi_variable("Commit")){
698 SerType = atoi(cgi_variable_nonull("ServerType"));
699 winstype = atoi(cgi_variable_nonull("WINSType"));
700 have_home = lp_servicenumber(HOMES_NAME);
701 HomeExpo = atoi(cgi_variable_nonull("HomeExpo"));
702
703 /* Plain text passwords are too badly broken - use encrypted passwords only */
704 lp_do_parameter( GLOBAL_SECTION_SNUM, "encrypt passwords", "Yes");
705
706 switch ( SerType ){
707 case 0:
708 /* Stand-alone Server */
709 lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
710 lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
711 break;
712 case 1:
713 /* Domain Member */
714 lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "DOMAIN" );
715 lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
716 break;
717 case 2:
718 /* Domain Controller */
719 lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
720 lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "Yes" );
721 break;
722 }
723 switch ( winstype ) {
724 case 0:
725 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
726 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
727 break;
728 case 1:
729 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "Yes" );
730 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
731 break;
732 case 2:
733 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
734 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", cgi_variable_nonull("WINSAddr"));
735 break;
736 }
737
738 /* Have to create Homes share? */
739 if ((HomeExpo == 1) && (have_home == -1)) {
740 const char *unix_share = HOMES_NAME;
741
742 load_config(False);
743 lp_copy_service(GLOBAL_SECTION_SNUM, unix_share);
744 have_home = lp_servicenumber(HOMES_NAME);
745 lp_do_parameter( have_home, "read only", "No");
746 lp_do_parameter( have_home, "valid users", "%S");
747 lp_do_parameter( have_home, "browseable", "No");
748 commit_parameters(have_home);
749 save_reload(have_home);
750 }
751
752 /* Need to Delete Homes share? */
753 if ((HomeExpo == 0) && (have_home != -1)) {
754 lp_remove_service(have_home);
755 have_home = -1;
756 }
757
758 commit_parameters(GLOBAL_SECTION_SNUM);
759 save_reload(0);
760 }
761 else
762 {
763 /* Now determine smb.conf WINS settings */
764 if (lp_wins_support())
765 winstype = 1;
766 if (lp_wins_server_list() && strlen(*lp_wins_server_list()))
767 winstype = 2;
768
769 /* Do we have a homes share? */
770 have_home = lp_servicenumber(HOMES_NAME);
771 }
772 if ((winstype == 2) && lp_wins_support())
773 winstype = 3;
774
775 role = lp_server_role();
776
777 /* Here we go ... */
778 printf("<H2>%s</H2>\n", _("Samba Configuration Wizard"));
779 printf("<form method=post action=wizard>\n");
780
781 if (have_write_access) {
782 printf("%s\n", _("The \"Rewrite smb.conf file\" button will clear the smb.conf file of all default values and of comments."));
783 printf("%s", _("The same will happen if you press the commit button."));
784 printf("<br><br>\n");
785 printf("<center>");
786 printf("<input type=submit name=\"Rewrite\" value=\"%s\"> &nbsp;&nbsp;",_("Rewrite smb.conf file"));
787 printf("<input type=submit name=\"Commit\" value=\"%s\"> &nbsp;&nbsp;",_("Commit"));
788 printf("<input type=submit name=\"GetWizardParams\" value=\"%s\">", _("Edit Parameter Values"));
789 printf("</center>\n");
790 }
791
792 printf("<hr>");
793 printf("<center><table border=0>");
794 printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Server Type"));
795 printf("<td><input type=radio name=\"ServerType\" value=\"0\" %s> %s&nbsp;</td>", ((role == ROLE_STANDALONE) ? "checked" : ""), _("Stand Alone"));
796 printf("<td><input type=radio name=\"ServerType\" value=\"1\" %s> %s&nbsp;</td>", ((role == ROLE_DOMAIN_MEMBER) ? "checked" : ""), _("Domain Member"));
797 printf("<td><input type=radio name=\"ServerType\" value=\"2\" %s> %s&nbsp;</td>", ((role == ROLE_DOMAIN_PDC) ? "checked" : ""), _("Domain Controller"));
798 printf("</tr>\n");
799 if (role == ROLE_DOMAIN_BDC) {
800 printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Unusual Type in smb.conf - Please Select New Mode"));
801 }
802 printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Configure WINS As"));
803 printf("<td><input type=radio name=\"WINSType\" value=\"0\" %s> %s&nbsp;</td>", ((winstype == 0) ? "checked" : ""), _("Not Used"));
804 printf("<td><input type=radio name=\"WINSType\" value=\"1\" %s> %s&nbsp;</td>", ((winstype == 1) ? "checked" : ""), _("Server for client use"));
805 printf("<td><input type=radio name=\"WINSType\" value=\"2\" %s> %s&nbsp;</td>", ((winstype == 2) ? "checked" : ""), _("Client of another WINS server"));
806 printf("</tr>\n");
807 printf("<tr><td></td><td></td><td></td><td>%s&nbsp;<input type=text size=\"16\" name=\"WINSAddr\" value=\"", _("Remote WINS Server"));
808
809 /* Print out the list of wins servers */
810 if(lp_wins_server_list()) {
811 int i;
812 const char **wins_servers = lp_wins_server_list();
813 for(i = 0; wins_servers[i]; i++) printf("%s ", wins_servers[i]);
814 }
815
816 printf("\"></td></tr>\n");
817 if (winstype == 3) {
818 printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Error: WINS Server Mode and WINS Support both set in smb.conf"));
819 printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Please Select desired WINS mode above."));
820 }
821 printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Expose Home Directories"));
822 printf("<td><input type=radio name=\"HomeExpo\" value=\"1\" %s> Yes</td>", (have_home == -1) ? "" : "checked ");
823 printf("<td><input type=radio name=\"HomeExpo\" value=\"0\" %s> No</td>", (have_home == -1 ) ? "checked" : "");
824 printf("<td></td></tr>\n");
825
826 /* Enable this when we are ready ....
827 * printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Is Print Server"));
828 * printf("<td><input type=radio name=\"PtrSvr\" value=\"1\" %s> Yes</td>");
829 * printf("<td><input type=radio name=\"PtrSvr\" value=\"0\" %s> No</td>");
830 * printf("<td></td></tr>\n");
831 */
832
833 printf("</table></center>");
834 printf("<hr>");
835
836 printf("%s\n", _("The above configuration options will set multiple parameters and will generally assist with rapid Samba deployment."));
837 printf("</form>\n");
838 }
839
840
841 /****************************************************************************
842 display a globals editing page
843 ****************************************************************************/
844 static void globals_page(void)
845 {
846 unsigned int parm_filter = FLAG_BASIC;
847 int mode = 0;
848
849 printf("<H2>%s</H2>\n", _("Global Parameters"));
850
851 if (cgi_variable("Commit")) {
852 commit_parameters(GLOBAL_SECTION_SNUM);
853 save_reload(0);
854 }
855
856 if ( cgi_variable("ViewMode") )
857 mode = atoi(cgi_variable_nonull("ViewMode"));
858 if ( cgi_variable("BasicMode"))
859 mode = 0;
860 if ( cgi_variable("AdvMode"))
861 mode = 1;
862
863 printf("<form name=\"swatform\" method=post action=globals>\n");
864
865 ViewModeBoxes( mode );
866 switch ( mode ) {
867 case 0:
868 parm_filter = FLAG_BASIC;
869 break;
870 case 1:
871 parm_filter = FLAG_ADVANCED;
872 break;
873 }
874 printf("<br>\n");
875 if (have_write_access) {
876 printf("<input type=submit name=\"Commit\" value=\"%s\">\n",
877 _("Commit Changes"));
878 }
879
880 printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n",
881 _("Reset Values"));
882
883 printf("<p>\n");
884 printf("<table>\n");
885 show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
886 printf("</table>\n");
887 printf("</form>\n");
888 }
889
890 /****************************************************************************
891 display a shares editing page. share is in unix codepage,
892 ****************************************************************************/
893 static void shares_page(void)
894 {
895 const char *share = cgi_variable("share");
896 char *s;
897 char *utf8_s;
898 int snum = -1;
899 int i;
900 int mode = 0;
901 unsigned int parm_filter = FLAG_BASIC;
902 size_t converted_size;
903
904 if (share)
905 snum = lp_servicenumber(share);
906
907 printf("<H2>%s</H2>\n", _("Share Parameters"));
908
909 if (cgi_variable("Commit") && snum >= 0) {
910 commit_parameters(snum);
911 save_reload(0);
912 snum = lp_servicenumber(share);
913 }
914
915 if (cgi_variable("Delete") && snum >= 0) {
916 lp_remove_service(snum);
917 save_reload(0);
918 share = NULL;
919 snum = -1;
920 }
921
922 if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
923 snum = lp_servicenumber(share);
924 if (snum < 0) {
925 load_config(False);
926 lp_copy_service(GLOBAL_SECTION_SNUM, share);
927 snum = lp_servicenumber(share);
928 save_reload(snum);
929 snum = lp_servicenumber(share);
930 }
931 }
932
933 printf("<FORM name=\"swatform\" method=post>\n");
934
935 printf("<table>\n");
936
937 if ( cgi_variable("ViewMode") )
938 mode = atoi(cgi_variable_nonull("ViewMode"));
939 if ( cgi_variable("BasicMode"))
940 mode = 0;
941 if ( cgi_variable("AdvMode"))
942 mode = 1;
943
944 ViewModeBoxes( mode );
945 switch ( mode ) {
946 case 0:
947 parm_filter = FLAG_BASIC;
948 break;
949 case 1:
950 parm_filter = FLAG_ADVANCED;
951 break;
952 }
953 printf("<br><tr>\n");
954 printf("<td><input type=submit name=selectshare value=\"%s\"></td>\n", _("Choose Share"));
955 printf("<td><select name=share>\n");
956 if (snum < 0)
957 printf("<option value=\" \"> \n");
958 for (i=0;i<lp_numservices();i++) {
959 s = lp_servicename(i);
960 if (s && (*s) && strcmp(s,"IPC$") && !lp_print_ok(i)) {
961 push_utf8_allocate(&utf8_s, s, &converted_size);
962 printf("<option %s value=\"%s\">%s\n",
963 (share && strcmp(share,s)==0)?"SELECTED":"",
964 utf8_s, utf8_s);
965 SAFE_FREE(utf8_s);
966 }
967 }
968 printf("</select></td>\n");
969 if (have_write_access) {
970 printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Share"));
971 }
972 printf("</tr>\n");
973 printf("</table>");
974 printf("<table>");
975 if (have_write_access) {
976 printf("<tr>\n");
977 printf("<td><input type=submit name=createshare value=\"%s\"></td>\n", _("Create Share"));
978 printf("<td><input type=text size=30 name=newshare></td></tr>\n");
979 }
980 printf("</table>");
981
982
983 if (snum >= 0) {
984 if (have_write_access) {
985 printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
986 }
987
988 printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
989 printf("<p>\n");
990 }
991
992 if (snum >= 0) {
993 printf("<table>\n");
994 show_parameters(snum, 1, parm_filter, 0);
995 printf("</table>\n");
996 }
997
998 printf("</FORM>\n");
999 }
1000
1001 /*************************************************************
1002 change a password either locally or remotely
1003 *************************************************************/
1004 static bool change_password(const char *remote_machine, const char *user_name,
1005 const char *old_passwd, const char *new_passwd,
1006 int local_flags)
1007 {
1008 NTSTATUS ret;
1009 char *err_str = NULL;
1010 char *msg_str = NULL;
1011
1012 if (demo_mode) {
1013 printf("%s\n<p>", _("password change in demo mode rejected"));
1014 return False;
1015 }
1016
1017 if (remote_machine != NULL) {
1018 ret = remote_password_change(remote_machine, user_name,
1019 old_passwd, new_passwd, &err_str);
1020 if (err_str != NULL)
1021 printf("%s\n<p>", err_str);
1022 SAFE_FREE(err_str);
1023 return NT_STATUS_IS_OK(ret);
1024 }
1025
1026 if(!initialize_password_db(True, NULL)) {
1027 printf("%s\n<p>", _("Can't setup password database vectors."));
1028 return False;
1029 }
1030
1031 ret = local_password_change(user_name, local_flags, new_passwd,
1032 &err_str, &msg_str);
1033
1034 if(msg_str)
1035 printf("%s\n<p>", msg_str);
1036 if(err_str)
1037 printf("%s\n<p>", err_str);
1038
1039 SAFE_FREE(msg_str);
1040 SAFE_FREE(err_str);
1041 return NT_STATUS_IS_OK(ret);
1042 }
1043
1044 /****************************************************************************
1045 do the stuff required to add or change a password
1046 ****************************************************************************/
1047 static void chg_passwd(void)
1048 {
1049 const char *host;
1050 bool rslt;
1051 int local_flags = 0;
1052
1053 /* Make sure users name has been specified */
1054 if (strlen(cgi_variable_nonull(SWAT_USER)) == 0) {
1055 printf("<p>%s\n", _(" Must specify \"User Name\" "));
1056 return;
1057 }
1058
1059 /*
1060 * smbpasswd doesn't require anything but the users name to delete, disable or enable the user,
1061 * so if that's what we're doing, skip the rest of the checks
1062 */
1063 if (!cgi_variable(DISABLE_USER_FLAG) && !cgi_variable(ENABLE_USER_FLAG) && !cgi_variable(DELETE_USER_FLAG)) {
1064
1065 /*
1066 * If current user is not root, make sure old password has been specified
1067 * If REMOTE change, even root must provide old password
1068 */
1069 if (((!am_root()) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0)) ||
1070 ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0))) {
1071 printf("<p>%s\n", _(" Must specify \"Old Password\" "));
1072 return;
1073 }
1074
1075 /* If changing a users password on a remote hosts we have to know what host */
1076 if ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(RHOST)) <= 0)) {
1077 printf("<p>%s\n", _(" Must specify \"Remote Machine\" "));
1078 return;
1079 }
1080
1081 /* Make sure new passwords have been specified */
1082 if ((strlen( cgi_variable_nonull(NEW_PSWD)) <= 0) ||
1083 (strlen( cgi_variable_nonull(NEW2_PSWD)) <= 0)) {
1084 printf("<p>%s\n", _(" Must specify \"New, and Re-typed Passwords\" "));
1085 return;
1086 }
1087
1088 /* Make sure new passwords was typed correctly twice */
1089 if (strcmp(cgi_variable_nonull(NEW_PSWD), cgi_variable_nonull(NEW2_PSWD)) != 0) {
1090 printf("<p>%s\n", _(" Re-typed password didn't match new password "));
1091 return;
1092 }
1093 }
1094
1095 if (cgi_variable(CHG_R_PASSWD_FLAG)) {
1096 host = cgi_variable(RHOST);
1097 } else if (am_root()) {
1098 host = NULL;
1099 } else {
1100 host = "127.0.0.1";
1101 }
1102
1103 /*
1104 * Set up the local flags.
1105 */
1106
1107 local_flags |= (cgi_variable(ADD_USER_FLAG) ? LOCAL_ADD_USER : 0);
1108 local_flags |= (cgi_variable(ADD_USER_FLAG) ? LOCAL_SET_PASSWORD : 0);
1109 local_flags |= (cgi_variable(CHG_S_PASSWD_FLAG) ? LOCAL_SET_PASSWORD : 0);
1110 local_flags |= (cgi_variable(DELETE_USER_FLAG) ? LOCAL_DELETE_USER : 0);
1111 local_flags |= (cgi_variable(ENABLE_USER_FLAG) ? LOCAL_ENABLE_USER : 0);
1112 local_flags |= (cgi_variable(DISABLE_USER_FLAG) ? LOCAL_DISABLE_USER : 0);
1113
1114
1115 rslt = change_password(host,
1116 cgi_variable_nonull(SWAT_USER),
1117 cgi_variable_nonull(OLD_PSWD), cgi_variable_nonull(NEW_PSWD),
1118 local_flags);
1119
1120 if(cgi_variable(CHG_S_PASSWD_FLAG)) {
1121 printf("<p>");
1122 if (rslt == True) {
1123 printf("%s\n", _(" The passwd has been changed."));
1124 } else {
1125 printf("%s\n", _(" The passwd for has NOT been changed."));
1126 }
1127 }
1128
1129 return;
1130 }
1131
1132 /****************************************************************************
1133 display a password editing page
1134 ****************************************************************************/
1135 static void passwd_page(void)
1136 {
1137 const char *new_name = cgi_user_name();
1138
1139 if (!new_name) new_name = "";
1140
1141 printf("<H2>%s</H2>\n", _("Server Password Management"));
1142
1143 printf("<FORM name=\"swatform\" method=post>\n");
1144
1145 printf("<table>\n");
1146
1147 /*
1148 * Create all the dialog boxes for data collection
1149 */
1150 printf("<tr><td> %s : </td>\n", _("User Name"));
1151 printf("<td><input type=text size=30 name=%s value=%s></td></tr> \n", SWAT_USER, new_name);
1152 if (!am_root()) {
1153 printf("<tr><td> %s : </td>\n", _("Old Password"));
1154 printf("<td><input type=password size=30 name=%s></td></tr> \n",OLD_PSWD);
1155 }
1156 printf("<tr><td> %s : </td>\n", _("New Password"));
1157 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1158 printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1159 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1160 printf("</table>\n");
1161
1162 /*
1163 * Create all the control buttons for requesting action
1164 */
1165 printf("<input type=submit name=%s value=\"%s\">\n",
1166 CHG_S_PASSWD_FLAG, _("Change Password"));
1167 if (demo_mode || am_root()) {
1168 printf("<input type=submit name=%s value=\"%s\">\n",
1169 ADD_USER_FLAG, _("Add New User"));
1170 printf("<input type=submit name=%s value=\"%s\">\n",
1171 DELETE_USER_FLAG, _("Delete User"));
1172 printf("<input type=submit name=%s value=\"%s\">\n",
1173 DISABLE_USER_FLAG, _("Disable User"));
1174 printf("<input type=submit name=%s value=\"%s\">\n",
1175 ENABLE_USER_FLAG, _("Enable User"));
1176 }
1177 printf("<p></FORM>\n");
1178
1179 /*
1180 * Do some work if change, add, disable or enable was
1181 * requested. It could be this is the first time through this
1182 * code, so there isn't anything to do. */
1183 if ((cgi_variable(CHG_S_PASSWD_FLAG)) || (cgi_variable(ADD_USER_FLAG)) || (cgi_variable(DELETE_USER_FLAG)) ||
1184 (cgi_variable(DISABLE_USER_FLAG)) || (cgi_variable(ENABLE_USER_FLAG))) {
1185 chg_passwd();
1186 }
1187
1188 printf("<H2>%s</H2>\n", _("Client/Server Password Management"));
1189
1190 printf("<FORM name=\"swatform\" method=post>\n");
1191
1192 printf("<table>\n");
1193
1194 /*
1195 * Create all the dialog boxes for data collection
1196 */
1197 printf("<tr><td> %s : </td>\n", _("User Name"));
1198 printf("<td><input type=text size=30 name=%s value=%s></td></tr>\n",SWAT_USER, new_name);
1199 printf("<tr><td> %s : </td>\n", _("Old Password"));
1200 printf("<td><input type=password size=30 name=%s></td></tr>\n",OLD_PSWD);
1201 printf("<tr><td> %s : </td>\n", _("New Password"));
1202 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1203 printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1204 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1205 printf("<tr><td> %s : </td>\n", _("Remote Machine"));
1206 printf("<td><input type=text size=30 name=%s></td></tr>\n",RHOST);
1207
1208 printf("</table>");
1209
1210 /*
1211 * Create all the control buttons for requesting action
1212 */
1213 printf("<input type=submit name=%s value=\"%s\">",
1214 CHG_R_PASSWD_FLAG, _("Change Password"));
1215
1216 printf("<p></FORM>\n");
1217
1218 /*
1219 * Do some work if a request has been made to change the
1220 * password somewhere other than the server. It could be this
1221 * is the first time through this code, so there isn't
1222 * anything to do. */
1223 if (cgi_variable(CHG_R_PASSWD_FLAG)) {
1224 chg_passwd();
1225 }
1226
1227 }
1228
1229 /****************************************************************************
1230 display a printers editing page
1231 ****************************************************************************/
1232 static void printers_page(void)
1233 {
1234 const char *share = cgi_variable("share");
1235 char *s;
1236 int snum=-1;
1237 int i;
1238 int mode = 0;
1239 unsigned int parm_filter = FLAG_BASIC;
1240
1241 if (share)
1242 snum = lp_servicenumber(share);
1243
1244 printf("<H2>%s</H2>\n", _("Printer Parameters"));
1245
1246 printf("<H3>%s</H3>\n", _("Important Note:"));
1247 printf("%s",_("Printer names marked with [*] in the Choose Printer drop-down box "));
1248 printf("%s",_("are autoloaded printers from "));
1249 printf("<A HREF=\"/swat/help/smb.conf.5.html#printcapname\" target=\"docs\">%s</A>\n", _("Printcap Name"));
1250 printf("%s\n", _("Attempting to delete these printers from SWAT will have no effect."));
1251
1252 if (cgi_variable("Commit") && snum >= 0) {
1253 commit_parameters(snum);
1254 if (snum >= iNumNonAutoPrintServices)
1255 save_reload(snum);
1256 else
1257 save_reload(0);
1258 snum = lp_servicenumber(share);
1259 }
1260
1261 if (cgi_variable("Delete") && snum >= 0) {
1262 lp_remove_service(snum);
1263 save_reload(0);
1264 share = NULL;
1265 snum = -1;
1266 }
1267
1268 if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
1269 snum = lp_servicenumber(share);
1270 if (snum < 0 || snum >= iNumNonAutoPrintServices) {
1271 load_config(False);
1272 lp_copy_service(GLOBAL_SECTION_SNUM, share);
1273 snum = lp_servicenumber(share);
1274 lp_do_parameter(snum, "print ok", "Yes");
1275 save_reload(snum);
1276 snum = lp_servicenumber(share);
1277 }
1278 }
1279
1280 printf("<FORM name=\"swatform\" method=post>\n");
1281
1282 if ( cgi_variable("ViewMode") )
1283 mode = atoi(cgi_variable_nonull("ViewMode"));
1284 if ( cgi_variable("BasicMode"))
1285 mode = 0;
1286 if ( cgi_variable("AdvMode"))
1287 mode = 1;
1288
1289 ViewModeBoxes( mode );
1290 switch ( mode ) {
1291 case 0:
1292 parm_filter = FLAG_BASIC;
1293 break;
1294 case 1:
1295 parm_filter = FLAG_ADVANCED;
1296 break;
1297 }
1298 printf("<table>\n");
1299 printf("<tr><td><input type=submit name=\"selectshare\" value=\"%s\"></td>\n", _("Choose Printer"));
1300 printf("<td><select name=\"share\">\n");
1301 if (snum < 0 || !lp_print_ok(snum))
1302 printf("<option value=\" \"> \n");
1303 for (i=0;i<lp_numservices();i++) {
1304 s = lp_servicename(i);
1305 if (s && (*s) && strcmp(s,"IPC$") && lp_print_ok(i)) {
1306 if (i >= iNumNonAutoPrintServices)
1307 printf("<option %s value=\"%s\">[*]%s\n",
1308 (share && strcmp(share,s)==0)?"SELECTED":"",
1309 s, s);
1310 else
1311 printf("<option %s value=\"%s\">%s\n",
1312 (share && strcmp(share,s)==0)?"SELECTED":"",
1313 s, s);
1314 }
1315 }
1316 printf("</select></td>");
1317 if (have_write_access) {
1318 printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Printer"));
1319 }
1320 printf("</tr>");
1321 printf("</table>\n");
1322
1323 if (have_write_access) {
1324 printf("<table>\n");
1325 printf("<tr><td><input type=submit name=\"createshare\" value=\"%s\"></td>\n", _("Create Printer"));
1326 printf("<td><input type=text size=30 name=\"newshare\"></td></tr>\n");
1327 printf("</table>");
1328 }
1329
1330
1331 if (snum >= 0) {
1332 if (have_write_access) {
1333 printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
1334 }
1335 printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
1336 printf("<p>\n");
1337 }
1338
1339 if (snum >= 0) {
1340 printf("<table>\n");
1341 show_parameters(snum, 1, parm_filter, 1);
1342 printf("</table>\n");
1343 }
1344 printf("</FORM>\n");
1345 }
1346
1347 /*
1348 when the _() translation macro is used there is no obvious place to free
1349 the resulting string and there is no easy way to give a static pointer.
1350 All we can do is rotate between some static buffers and hope a single d_printf()
1351 doesn't have more calls to _() than the number of buffers
1352 */
1353
1354 const char *lang_msg_rotate(TALLOC_CTX *ctx, const char *msgid)
1355 {
1356 const char *msgstr;
1357 const char *ret;
1358
1359 msgstr = lang_msg(msgid);
1360 if (!msgstr) {
1361 return msgid;
1362 }
1363
1364 ret = talloc_strdup(ctx, msgstr);
1365
1366 lang_msg_free(msgstr);
1367 if (!ret) {
1368 return msgid;
1369 }
1370
1371 return ret;
1372 }
1373
1374 /**
1375 * main function for SWAT.
1376 **/
1377 int main(int argc, char *argv[])
1378 {
1379 const char *page;
1380 poptContext pc;
1381 struct poptOption long_options[] = {
1382 POPT_AUTOHELP
1383 { "disable-authentication", 'a', POPT_ARG_VAL, &demo_mode, True, "Disable authentication (demo mode)" },
1384 { "password-menu-only", 'P', POPT_ARG_VAL, &passwd_only, True, "Show only change password menu" },
1385 POPT_COMMON_SAMBA
1386 POPT_TABLEEND
1387 };
1388 TALLOC_CTX *frame = talloc_stackframe();
1389
1390 fault_setup(NULL);
1391 umask(S_IWGRP | S_IWOTH);
1392
1393 #if defined(HAVE_SET_AUTH_PARAMETERS)
1394 set_auth_parameters(argc, argv);
1395 #endif /* HAVE_SET_AUTH_PARAMETERS */
1396
1397 /* just in case it goes wild ... */
1398 alarm(300);
1399
1400 setlinebuf(stdout);
1401
1402 /* we don't want any SIGPIPE messages */
1403 BlockSignals(True,SIGPIPE);
1404
1405 dbf = x_fopen("/dev/null", O_WRONLY, 0);
1406 if (!dbf) dbf = x_stderr;
1407
1408 /* we don't want stderr screwing us up */
1409 close(2);
1410 open("/dev/null", O_WRONLY);
1411
1412 pc = poptGetContext("swat", argc, (const char **) argv, long_options, 0);
1413
1414 /* Parse command line options */
1415
1416 while(poptGetNextOpt(pc) != -1) { }
1417
1418 poptFreeContext(pc);
1419
1420 load_case_tables();
1421
1422 setup_logging(argv[0],False);
1423 load_config(True);
1424 load_interfaces();
1425 iNumNonAutoPrintServices = lp_numservices();
1426 load_printers();
1427
1428 cgi_setup(get_dyn_SWATDIR(), !demo_mode);
1429
1430 print_header();
1431
1432 cgi_load_variables();
1433
1434 if (!file_exist(get_dyn_CONFIGFILE(), NULL)) {
1435 have_read_access = True;
1436 have_write_access = True;
1437 } else {
1438 /* check if the authenticated user has write access - if not then
1439 don't show write options */
1440 have_write_access = (access(get_dyn_CONFIGFILE(),W_OK) == 0);
1441
1442 /* if the user doesn't have read access to smb.conf then
1443 don't let them view it */
1444 have_read_access = (access(get_dyn_CONFIGFILE(),R_OK) == 0);
1445 }
1446
1447 show_main_buttons();
1448
1449 page = cgi_pathinfo();
1450
1451 /* Root gets full functionality */
1452 if (have_read_access && strcmp(page, "globals")==0) {
1453 globals_page();
1454 } else if (have_read_access && strcmp(page,"shares")==0) {
1455 shares_page();
1456 } else if (have_read_access && strcmp(page,"printers")==0) {
1457 printers_page();
1458 } else if (have_read_access && strcmp(page,"status")==0) {
1459 status_page();
1460 } else if (have_read_access && strcmp(page,"viewconfig")==0) {
1461 viewconfig_page();
1462 } else if (strcmp(page,"passwd")==0) {
1463 passwd_page();
1464 } else if (have_read_access && strcmp(page,"wizard")==0) {
1465 wizard_page();
1466 } else if (have_read_access && strcmp(page,"wizard_params")==0) {
1467 wizard_params_page();
1468 } else if (have_read_access && strcmp(page,"rewritecfg")==0) {
1469 rewritecfg_file();
1470 } else {
1471 welcome_page();
1472 }
1473
1474 print_footer();
1475
1476 TALLOC_FREE(frame);
1477 return 0;
1478 }
1479
1480 /** @} **/
Samba GIT mirror