search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
s3 swat: Add XSRF protection to wizard page
[Samba.git] / source3 / web / swat.c
blob3205386621c99b67fc5e2869eb468ab93a9d3d86
1 /*
2 Unix SMB/CIFS implementation.
3 Samba Web Administration Tool
4 Version 3.0.0
5 Copyright (C) Andrew Tridgell 1997-2002
6 Copyright (C) John H Terpstra 2002
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
20 */
21
22 /**
23 * @defgroup swat SWAT - Samba Web Administration Tool
24 * @{
25 * @file swat.c
26 *
27 * @brief Samba Web Administration Tool.
28 **/
29
30 #include "includes.h"
31 #include "system/filesys.h"
32 #include "popt_common.h"
33 #include "web/swat_proto.h"
34 #include "printing/pcap.h"
35 #include "printing/load.h"
36 #include "passdb.h"
37 #include "intl/lang_tdb.h"
38 #include "../lib/crypto/md5.h"
39
40 static int demo_mode = False;
41 static int passwd_only = False;
42 static bool have_write_access = False;
43 static bool have_read_access = False;
44 static int iNumNonAutoPrintServices = 0;
45
46 /*
47 * Password Management Globals
48 */
49 #define SWAT_USER "username"
50 #define OLD_PSWD "old_passwd"
51 #define NEW_PSWD "new_passwd"
52 #define NEW2_PSWD "new2_passwd"
53 #define CHG_S_PASSWD_FLAG "chg_s_passwd_flag"
54 #define CHG_R_PASSWD_FLAG "chg_r_passwd_flag"
55 #define ADD_USER_FLAG "add_user_flag"
56 #define DELETE_USER_FLAG "delete_user_flag"
57 #define DISABLE_USER_FLAG "disable_user_flag"
58 #define ENABLE_USER_FLAG "enable_user_flag"
59 #define RHOST "remote_host"
60 #define XSRF_TOKEN "xsrf"
61
62 #define _(x) lang_msg_rotate(talloc_tos(),x)
63
64 /****************************************************************************
65 ****************************************************************************/
66 static int enum_index(int value, const struct enum_list *enumlist)
67 {
68 int i;
69 for (i=0;enumlist[i].name;i++)
70 if (value == enumlist[i].value) break;
71 return(i);
72 }
73
74 static char *fix_backslash(const char *str)
75 {
76 static char newstring[1024];
77 char *p = newstring;
78
79 while (*str) {
80 if (*str == '\\') {*p++ = '\\';*p++ = '\\';}
81 else *p++ = *str;
82 ++str;
83 }
84 *p = '\0';
85 return newstring;
86 }
87
88 static const char *fix_quotes(TALLOC_CTX *ctx, const char *str)
89 {
90 char *newstring = NULL;
91 char *p = NULL;
92 size_t newstring_len;
93 int quote_len = strlen("&quot;");
94
95 /* Count the number of quotes. */
96 newstring_len = 1;
97 p = (char *) str;
98 while (*p) {
99 if ( *p == '\"') {
100 newstring_len += quote_len;
101 } else {
102 newstring_len++;
103 }
104 ++p;
105 }
106 newstring = TALLOC_ARRAY(ctx, char, newstring_len);
107 if (!newstring) {
108 return "";
109 }
110 for (p = newstring; *str; str++) {
111 if ( *str == '\"') {
112 strncpy( p, "&quot;", quote_len);
113 p += quote_len;
114 } else {
115 *p++ = *str;
116 }
117 }
118 *p = '\0';
119 return newstring;
120 }
121
122 static char *stripspaceupper(const char *str)
123 {
124 static char newstring[1024];
125 char *p = newstring;
126
127 while (*str) {
128 if (*str != ' ') *p++ = toupper_m(*str);
129 ++str;
130 }
131 *p = '\0';
132 return newstring;
133 }
134
135 static char *make_parm_name(const char *label)
136 {
137 static char parmname[1024];
138 char *p = parmname;
139
140 while (*label) {
141 if (*label == ' ') *p++ = '_';
142 else *p++ = *label;
143 ++label;
144 }
145 *p = '\0';
146 return parmname;
147 }
148
149 void get_xsrf_token(const char *username, const char *pass,
150 const char *formname, char token_str[33])
151 {
152 struct MD5Context md5_ctx;
153 uint8_t token[16];
154 int i;
155
156 token_str[0] = '\0';
157 ZERO_STRUCT(md5_ctx);
158 MD5Init(&md5_ctx);
159
160 MD5Update(&md5_ctx, (uint8_t *)formname, strlen(formname));
161 if (username != NULL) {
162 MD5Update(&md5_ctx, (uint8_t *)username, strlen(username));
163 }
164 if (pass != NULL) {
165 MD5Update(&md5_ctx, (uint8_t *)pass, strlen(pass));
166 }
167
168 MD5Final(token, &md5_ctx);
169
170 for(i = 0; i < sizeof(token); i++) {
171 char tmp[3];
172
173 snprintf(tmp, sizeof(tmp), "%02x", token[i]);
174 strncat(token_str, tmp, sizeof(tmp));
175 }
176 }
177
178 void print_xsrf_token(const char *username, const char *pass,
179 const char *formname)
180 {
181 char token[33];
182
183 get_xsrf_token(username, pass, formname, token);
184 printf("<input type=\"hidden\" name=\"%s\" value=\"%s\">\n",
185 XSRF_TOKEN, token);
186
187 }
188
189 bool verify_xsrf_token(const char *formname)
190 {
191 char expected[33];
192 const char *username = cgi_user_name();
193 const char *pass = cgi_user_pass();
194 const char *token = cgi_variable_nonull(XSRF_TOKEN);
195
196 get_xsrf_token(username, pass, formname, expected);
197 return (strncmp(expected, token, sizeof(expected)) == 0);
198 }
199
200
201 /****************************************************************************
202 include a lump of html in a page
203 ****************************************************************************/
204 static int include_html(const char *fname)
205 {
206 int fd;
207 char buf[1024];
208 int ret;
209
210 fd = web_open(fname, O_RDONLY, 0);
211
212 if (fd == -1) {
213 printf(_("ERROR: Can't open %s"), fname);
214 printf("\n");
215 return 0;
216 }
217
218 while ((ret = read(fd, buf, sizeof(buf))) > 0) {
219 if (write(1, buf, ret) == -1) {
220 break;
221 }
222 }
223
224 close(fd);
225 return 1;
226 }
227
228 /****************************************************************************
229 start the page with standard stuff
230 ****************************************************************************/
231 static void print_header(void)
232 {
233 if (!cgi_waspost()) {
234 printf("Expires: 0\r\n");
235 }
236 printf("Content-type: text/html\r\n\r\n");
237
238 if (!include_html("include/header.html")) {
239 printf("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 3.2//EN\">\n");
240 printf("<HTML>\n<HEAD>\n<TITLE>Samba Web Administration Tool</TITLE>\n</HEAD>\n<BODY background=\"/swat/images/background.jpg\">\n\n");
241 }
242 }
243
244 /* *******************************************************************
245 show parameter label with translated name in the following form
246 because showing original and translated label in one line looks
247 too long, and showing translated label only is unusable for
248 heavy users.
249 -------------------------------
250 HELP security [combo box][button]
251 SECURITY
252 -------------------------------
253 (capital words are translated by gettext.)
254 if no translation is available, then same form as original is
255 used.
256 "i18n_translated_parm" class is used to change the color of the
257 translated parameter with CSS.
258 **************************************************************** */
259 static const char *get_parm_translated(TALLOC_CTX *ctx,
260 const char* pAnchor, const char* pHelp, const char* pLabel)
261 {
262 const char *pTranslated = _(pLabel);
263 char *output;
264 if(strcmp(pLabel, pTranslated) != 0) {
265 output = talloc_asprintf(ctx,
266 "<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; %s <br><span class=\"i18n_translated_parm\">%s</span>",
267 pAnchor, pHelp, pLabel, pTranslated);
268 return output;
269 }
270 output = talloc_asprintf(ctx,
271 "<A HREF=\"/swat/help/manpages/smb.conf.5.html#%s\" target=\"docs\"> %s</A>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; %s",
272 pAnchor, pHelp, pLabel);
273 return output;
274 }
275 /****************************************************************************
276 finish off the page
277 ****************************************************************************/
278 static void print_footer(void)
279 {
280 if (!include_html("include/footer.html")) {
281 printf("\n</BODY>\n</HTML>\n");
282 }
283 }
284
285 /****************************************************************************
286 display one editable parameter in a form
287 ****************************************************************************/
288 static void show_parameter(int snum, struct parm_struct *parm)
289 {
290 int i;
291 void *ptr = parm->ptr;
292 char *utf8_s1, *utf8_s2;
293 size_t converted_size;
294 TALLOC_CTX *ctx = talloc_stackframe();
295
296 if (parm->p_class == P_LOCAL && snum >= 0) {
297 ptr = lp_local_ptr_by_snum(snum, ptr);
298 }
299
300 printf("<tr><td>%s</td><td>", get_parm_translated(ctx,
301 stripspaceupper(parm->label), _("Help"), parm->label));
302 switch (parm->type) {
303 case P_CHAR:
304 printf("<input type=text size=2 name=\"parm_%s\" value=\"%c\">",
305 make_parm_name(parm->label), *(char *)ptr);
306 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%c\'\">",
307 _("Set Default"), make_parm_name(parm->label),(char)(parm->def.cvalue));
308 break;
309
310 case P_LIST:
311 printf("<input type=text size=40 name=\"parm_%s\" value=\"",
312 make_parm_name(parm->label));
313 if ((char ***)ptr && *(char ***)ptr && **(char ***)ptr) {
314 char **list = *(char ***)ptr;
315 for (;*list;list++) {
316 /* enclose in HTML encoded quotes if the string contains a space */
317 if ( strchr_m(*list, ' ') ) {
318 push_utf8_talloc(talloc_tos(), &utf8_s1, *list, &converted_size);
319 push_utf8_talloc(talloc_tos(), &utf8_s2, ((*(list+1))?", ":""), &converted_size);
320 printf("&quot;%s&quot;%s", utf8_s1, utf8_s2);
321 } else {
322 push_utf8_talloc(talloc_tos(), &utf8_s1, *list, &converted_size);
323 push_utf8_talloc(talloc_tos(), &utf8_s2, ((*(list+1))?", ":""), &converted_size);
324 printf("%s%s", utf8_s1, utf8_s2);
325 }
326 TALLOC_FREE(utf8_s1);
327 TALLOC_FREE(utf8_s2);
328 }
329 }
330 printf("\">");
331 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'",
332 _("Set Default"), make_parm_name(parm->label));
333 if (parm->def.lvalue) {
334 char **list = (char **)(parm->def.lvalue);
335 for (; *list; list++) {
336 /* enclose in HTML encoded quotes if the string contains a space */
337 if ( strchr_m(*list, ' ') )
338 printf("&quot;%s&quot;%s", *list, ((*(list+1))?", ":""));
339 else
340 printf("%s%s", *list, ((*(list+1))?", ":""));
341 }
342 }
343 printf("\'\">");
344 break;
345
346 case P_STRING:
347 case P_USTRING:
348 push_utf8_talloc(talloc_tos(), &utf8_s1, *(char **)ptr, &converted_size);
349 printf("<input type=text size=40 name=\"parm_%s\" value=\"%s\">",
350 make_parm_name(parm->label), fix_quotes(ctx, utf8_s1));
351 TALLOC_FREE(utf8_s1);
352 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%s\'\">",
353 _("Set Default"), make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue)));
354 break;
355
356 case P_BOOL:
357 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
358 printf("<option %s>Yes", (*(bool *)ptr)?"selected":"");
359 printf("<option %s>No", (*(bool *)ptr)?"":"selected");
360 printf("</select>");
361 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
362 _("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?0:1);
363 break;
364
365 case P_BOOLREV:
366 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
367 printf("<option %s>Yes", (*(bool *)ptr)?"":"selected");
368 printf("<option %s>No", (*(bool *)ptr)?"selected":"");
369 printf("</select>");
370 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
371 _("Set Default"), make_parm_name(parm->label),(bool)(parm->def.bvalue)?1:0);
372 break;
373
374 case P_INTEGER:
375 printf("<input type=text size=8 name=\"parm_%s\" value=\"%d\">", make_parm_name(parm->label), *(int *)ptr);
376 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.value=\'%d\'\">",
377 _("Set Default"), make_parm_name(parm->label),(int)(parm->def.ivalue));
378 break;
379
380 case P_OCTAL: {
381 char *o;
382 o = octal_string(*(int *)ptr);
383 printf("<input type=text size=8 name=\"parm_%s\" value=%s>",
384 make_parm_name(parm->label), o);
385 TALLOC_FREE(o);
386 o = octal_string((int)(parm->def.ivalue));
387 printf("<input type=button value=\"%s\" "
388 "onClick=\"swatform.parm_%s.value=\'%s\'\">",
389 _("Set Default"), make_parm_name(parm->label), o);
390 TALLOC_FREE(o);
391 break;
392 }
393
394 case P_ENUM:
395 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
396 for (i=0;parm->enum_list[i].name;i++) {
397 if (i == 0 || parm->enum_list[i].value != parm->enum_list[i-1].value) {
398 printf("<option %s>%s",(*(int *)ptr)==parm->enum_list[i].value?"selected":"",parm->enum_list[i].name);
399 }
400 }
401 printf("</select>");
402 printf("<input type=button value=\"%s\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
403 _("Set Default"), make_parm_name(parm->label),enum_index((int)(parm->def.ivalue),parm->enum_list));
404 break;
405 case P_SEP:
406 break;
407 }
408 printf("</td></tr>\n");
409 TALLOC_FREE(ctx);
410 }
411
412 /****************************************************************************
413 display a set of parameters for a service
414 ****************************************************************************/
415 static void show_parameters(int snum, int allparameters, unsigned int parm_filter, int printers)
416 {
417 int i = 0;
418 struct parm_struct *parm;
419 const char *heading = NULL;
420 const char *last_heading = NULL;
421
422 while ((parm = lp_next_parameter(snum, &i, allparameters))) {
423 if (snum < 0 && parm->p_class == P_LOCAL && !(parm->flags & FLAG_GLOBAL))
424 continue;
425 if (parm->p_class == P_SEPARATOR) {
426 heading = parm->label;
427 continue;
428 }
429 if (parm->flags & FLAG_HIDE) continue;
430 if (snum >= 0) {
431 if (printers & !(parm->flags & FLAG_PRINT)) continue;
432 if (!printers & !(parm->flags & FLAG_SHARE)) continue;
433 }
434
435 if (!( parm_filter & FLAG_ADVANCED )) {
436 if (!(parm->flags & FLAG_BASIC)) {
437 void *ptr = parm->ptr;
438
439 if (parm->p_class == P_LOCAL && snum >= 0) {
440 ptr = lp_local_ptr_by_snum(snum, ptr);
441 }
442
443 switch (parm->type) {
444 case P_CHAR:
445 if (*(char *)ptr == (char)(parm->def.cvalue)) continue;
446 break;
447
448 case P_LIST:
449 if (!str_list_equal(*(const char ***)ptr,
450 (const char **)(parm->def.lvalue))) continue;
451 break;
452
453 case P_STRING:
454 case P_USTRING:
455 if (!strcmp(*(char **)ptr,(char *)(parm->def.svalue))) continue;
456 break;
457
458 case P_BOOL:
459 case P_BOOLREV:
460 if (*(bool *)ptr == (bool)(parm->def.bvalue)) continue;
461 break;
462
463 case P_INTEGER:
464 case P_OCTAL:
465 if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
466 break;
467
468
469 case P_ENUM:
470 if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
471 break;
472 case P_SEP:
473 continue;
474 }
475 }
476 if (printers && !(parm->flags & FLAG_PRINT)) continue;
477 }
478
479 if ((parm_filter & FLAG_WIZARD) && !(parm->flags & FLAG_WIZARD)) continue;
480
481 if ((parm_filter & FLAG_ADVANCED) && !(parm->flags & FLAG_ADVANCED)) continue;
482
483 if (heading && heading != last_heading) {
484 printf("<tr><td></td></tr><tr><td><b><u>%s</u></b></td></tr>\n", _(heading));
485 last_heading = heading;
486 }
487 show_parameter(snum, parm);
488 }
489 }
490
491 /****************************************************************************
492 load the smb.conf file into loadparm.
493 ****************************************************************************/
494 static bool load_config(bool save_def)
495 {
496 return lp_load(get_dyn_CONFIGFILE(),False,save_def,False,True);
497 }
498
499 /****************************************************************************
500 write a config file
501 ****************************************************************************/
502 static void write_config(FILE *f, bool show_defaults)
503 {
504 TALLOC_CTX *ctx = talloc_stackframe();
505
506 fprintf(f, "# Samba config file created using SWAT\n");
507 fprintf(f, "# from %s (%s)\n", cgi_remote_host(), cgi_remote_addr());
508 fprintf(f, "# Date: %s\n\n", current_timestring(ctx, False));
509
510 lp_dump(f, show_defaults, iNumNonAutoPrintServices);
511
512 TALLOC_FREE(ctx);
513 }
514
515 /****************************************************************************
516 save and reload the smb.conf config file
517 ****************************************************************************/
518 static int save_reload(int snum)
519 {
520 FILE *f;
521 struct stat st;
522
523 f = sys_fopen(get_dyn_CONFIGFILE(),"w");
524 if (!f) {
525 printf(_("failed to open %s for writing"), get_dyn_CONFIGFILE());
526 printf("\n");
527 return 0;
528 }
529
530 /* just in case they have used the buggy xinetd to create the file */
531 if (fstat(fileno(f), &st) == 0 &&
532 (st.st_mode & S_IWOTH)) {
533 #if defined HAVE_FCHMOD
534 fchmod(fileno(f), S_IWUSR | S_IRUSR | S_IRGRP | S_IROTH);
535 #else
536 chmod(get_dyn_CONFIGFILE(), S_IWUSR | S_IRUSR | S_IRGRP | S_IROTH);
537 #endif
538 }
539
540 write_config(f, False);
541 if (snum >= 0)
542 lp_dump_one(f, False, snum);
543 fclose(f);
544
545 lp_kill_all_services();
546
547 if (!load_config(False)) {
548 printf(_("Can't reload %s"), get_dyn_CONFIGFILE());
549 printf("\n");
550 return 0;
551 }
552 iNumNonAutoPrintServices = lp_numservices();
553 if (pcap_cache_loaded()) {
554 load_printers(server_event_context(),
555 server_messaging_context());
556 }
557
558 return 1;
559 }
560
561 /****************************************************************************
562 commit one parameter
563 ****************************************************************************/
564 static void commit_parameter(int snum, struct parm_struct *parm, const char *v)
565 {
566 int i;
567 char *s;
568
569 if (snum < 0 && parm->p_class == P_LOCAL) {
570 /* this handles the case where we are changing a local
571 variable globally. We need to change the parameter in
572 all shares where it is currently set to the default */
573 for (i=0;i<lp_numservices();i++) {
574 s = lp_servicename(i);
575 if (s && (*s) && lp_is_default(i, parm)) {
576 lp_do_parameter(i, parm->label, v);
577 }
578 }
579 }
580
581 lp_do_parameter(snum, parm->label, v);
582 }
583
584 /****************************************************************************
585 commit a set of parameters for a service
586 ****************************************************************************/
587 static void commit_parameters(int snum)
588 {
589 int i = 0;
590 struct parm_struct *parm;
591 char *label;
592 const char *v;
593
594 while ((parm = lp_next_parameter(snum, &i, 1))) {
595 if (asprintf(&label, "parm_%s", make_parm_name(parm->label)) > 0) {
596 if ((v = cgi_variable(label)) != NULL) {
597 if (parm->flags & FLAG_HIDE)
598 continue;
599 commit_parameter(snum, parm, v);
600 }
601 SAFE_FREE(label);
602 }
603 }
604 }
605
606 /****************************************************************************
607 spit out the html for a link with an image
608 ****************************************************************************/
609 static void image_link(const char *name, const char *hlink, const char *src)
610 {
611 printf("<A HREF=\"%s/%s\"><img border=\"0\" src=\"/swat/%s\" alt=\"%s\"></A>\n",
612 cgi_baseurl(), hlink, src, name);
613 }
614
615 /****************************************************************************
616 display the main navigation controls at the top of each page along
617 with a title
618 ****************************************************************************/
619 static void show_main_buttons(void)
620 {
621 char *p;
622
623 if ((p = cgi_user_name()) && strcmp(p, "root")) {
624 printf(_("Logged in as <b>%s</b>"), p);
625 printf("<p>\n");
626 }
627
628 image_link(_("Home"), "", "images/home.gif");
629 if (have_write_access) {
630 image_link(_("Globals"), "globals", "images/globals.gif");
631 image_link(_("Shares"), "shares", "images/shares.gif");
632 image_link(_("Printers"), "printers", "images/printers.gif");
633 image_link(_("Wizard"), "wizard", "images/wizard.gif");
634 }
635 /* root always gets all buttons, otherwise look for -P */
636 if ( have_write_access || (!passwd_only && have_read_access) ) {
637 image_link(_("Status"), "status", "images/status.gif");
638 image_link(_("View Config"), "viewconfig", "images/viewconfig.gif");
639 }
640 image_link(_("Password Management"), "passwd", "images/passwd.gif");
641
642 printf("<HR>\n");
643 }
644
645 /****************************************************************************
646 * Handle Display/Edit Mode CGI
647 ****************************************************************************/
648 static void ViewModeBoxes(int mode)
649 {
650 printf("<p>%s:&nbsp;\n", _("Current View Is"));
651 printf("<input type=radio name=\"ViewMode\" value=0 %s>%s\n", ((mode == 0) ? "checked" : ""), _("Basic"));
652 printf("<input type=radio name=\"ViewMode\" value=1 %s>%s\n", ((mode == 1) ? "checked" : ""), _("Advanced"));
653 printf("<br>%s:&nbsp;\n", _("Change View To"));
654 printf("<input type=submit name=\"BasicMode\" value=\"%s\">\n", _("Basic"));
655 printf("<input type=submit name=\"AdvMode\" value=\"%s\">\n", _("Advanced"));
656 printf("</p><br>\n");
657 }
658
659 /****************************************************************************
660 display a welcome page
661 ****************************************************************************/
662 static void welcome_page(void)
663 {
664 if (file_exist("help/welcome.html")) {
665 include_html("help/welcome.html");
666 } else {
667 include_html("help/welcome-no-samba-doc.html");
668 }
669 }
670
671 /****************************************************************************
672 display the current smb.conf
673 ****************************************************************************/
674 static void viewconfig_page(void)
675 {
676 int full_view=0;
677 const char form_name[] = "viewconfig";
678
679 if (!verify_xsrf_token(form_name)) {
680 goto output_page;
681 }
682
683 if (cgi_variable("full_view")) {
684 full_view = 1;
685 }
686
687 output_page:
688 printf("<H2>%s</H2>\n", _("Current Config"));
689 printf("<form method=post>\n");
690 print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
691
692 if (full_view) {
693 printf("<input type=submit name=\"normal_view\" value=\"%s\">\n", _("Normal View"));
694 } else {
695 printf("<input type=submit name=\"full_view\" value=\"%s\">\n", _("Full View"));
696 }
697
698 printf("<p><pre>");
699 write_config(stdout, full_view);
700 printf("</pre>");
701 printf("</form>\n");
702 }
703
704 /****************************************************************************
705 second screen of the wizard ... Fetch Configuration Parameters
706 ****************************************************************************/
707 static void wizard_params_page(void)
708 {
709 unsigned int parm_filter = FLAG_WIZARD;
710 const char form_name[] = "wizard_params";
711
712 /* Here we first set and commit all the parameters that were selected
713 in the previous screen. */
714
715 printf("<H2>%s</H2>\n", _("Wizard Parameter Edit Page"));
716
717 if (!verify_xsrf_token(form_name)) {
718 goto output_page;
719 }
720
721 if (cgi_variable("Commit")) {
722 commit_parameters(GLOBAL_SECTION_SNUM);
723 save_reload(-1);
724 }
725
726 output_page:
727 printf("<form name=\"swatform\" method=post action=wizard_params>\n");
728 print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
729
730 if (have_write_access) {
731 printf("<input type=submit name=\"Commit\" value=\"Commit Changes\">\n");
732 }
733
734 printf("<input type=reset name=\"Reset Values\" value=\"Reset\">\n");
735 printf("<p>\n");
736
737 printf("<table>\n");
738 show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
739 printf("</table>\n");
740 printf("</form>\n");
741 }
742
743 /****************************************************************************
744 Utility to just rewrite the smb.conf file - effectively just cleans it up
745 ****************************************************************************/
746 static void rewritecfg_file(void)
747 {
748 commit_parameters(GLOBAL_SECTION_SNUM);
749 save_reload(-1);
750 printf("<H2>%s</H2>\n", _("Note: smb.conf file has been read and rewritten"));
751 }
752
753 /****************************************************************************
754 wizard to create/modify the smb.conf file
755 ****************************************************************************/
756 static void wizard_page(void)
757 {
758 /* Set some variables to collect data from smb.conf */
759 int role = 0;
760 int winstype = 0;
761 int have_home = -1;
762 int HomeExpo = 0;
763 int SerType = 0;
764 const char form_name[] = "wizard";
765
766 if (!verify_xsrf_token(form_name)) {
767 goto output_page;
768 }
769
770 if (cgi_variable("Rewrite")) {
771 (void) rewritecfg_file();
772 return;
773 }
774
775 if (cgi_variable("GetWizardParams")){
776 (void) wizard_params_page();
777 return;
778 }
779
780 if (cgi_variable("Commit")){
781 SerType = atoi(cgi_variable_nonull("ServerType"));
782 winstype = atoi(cgi_variable_nonull("WINSType"));
783 have_home = lp_servicenumber(HOMES_NAME);
784 HomeExpo = atoi(cgi_variable_nonull("HomeExpo"));
785
786 /* Plain text passwords are too badly broken - use encrypted passwords only */
787 lp_do_parameter( GLOBAL_SECTION_SNUM, "encrypt passwords", "Yes");
788
789 switch ( SerType ){
790 case 0:
791 /* Stand-alone Server */
792 lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
793 lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
794 break;
795 case 1:
796 /* Domain Member */
797 lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "DOMAIN" );
798 lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "No" );
799 break;
800 case 2:
801 /* Domain Controller */
802 lp_do_parameter( GLOBAL_SECTION_SNUM, "security", "USER" );
803 lp_do_parameter( GLOBAL_SECTION_SNUM, "domain logons", "Yes" );
804 break;
805 }
806 switch ( winstype ) {
807 case 0:
808 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
809 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
810 break;
811 case 1:
812 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "Yes" );
813 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", "" );
814 break;
815 case 2:
816 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins support", "No" );
817 lp_do_parameter( GLOBAL_SECTION_SNUM, "wins server", cgi_variable_nonull("WINSAddr"));
818 break;
819 }
820
821 /* Have to create Homes share? */
822 if ((HomeExpo == 1) && (have_home == -1)) {
823 const char *unix_share = HOMES_NAME;
824
825 load_config(False);
826 lp_copy_service(GLOBAL_SECTION_SNUM, unix_share);
827 have_home = lp_servicenumber(HOMES_NAME);
828 lp_do_parameter( have_home, "read only", "No");
829 lp_do_parameter( have_home, "valid users", "%S");
830 lp_do_parameter( have_home, "browseable", "No");
831 commit_parameters(have_home);
832 save_reload(have_home);
833 }
834
835 /* Need to Delete Homes share? */
836 if ((HomeExpo == 0) && (have_home != -1)) {
837 lp_remove_service(have_home);
838 have_home = -1;
839 }
840
841 commit_parameters(GLOBAL_SECTION_SNUM);
842 save_reload(-1);
843 }
844 else
845 {
846 /* Now determine smb.conf WINS settings */
847 if (lp_wins_support())
848 winstype = 1;
849 if (lp_wins_server_list() && strlen(*lp_wins_server_list()))
850 winstype = 2;
851
852 /* Do we have a homes share? */
853 have_home = lp_servicenumber(HOMES_NAME);
854 }
855 if ((winstype == 2) && lp_wins_support())
856 winstype = 3;
857
858 role = lp_server_role();
859
860 output_page:
861 /* Here we go ... */
862 printf("<H2>%s</H2>\n", _("Samba Configuration Wizard"));
863 printf("<form method=post action=wizard>\n");
864 print_xsrf_token(cgi_user_name(), cgi_user_pass(), form_name);
865
866 if (have_write_access) {
867 printf("%s\n", _("The \"Rewrite smb.conf file\" button will clear the smb.conf file of all default values and of comments."));
868 printf("%s", _("The same will happen if you press the commit button."));
869 printf("<br><br>\n");
870 printf("<center>");
871 printf("<input type=submit name=\"Rewrite\" value=\"%s\"> &nbsp;&nbsp;",_("Rewrite smb.conf file"));
872 printf("<input type=submit name=\"Commit\" value=\"%s\"> &nbsp;&nbsp;",_("Commit"));
873 printf("<input type=submit name=\"GetWizardParams\" value=\"%s\">", _("Edit Parameter Values"));
874 printf("</center>\n");
875 }
876
877 printf("<hr>");
878 printf("<center><table border=0>");
879 printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Server Type"));
880 printf("<td><input type=radio name=\"ServerType\" value=\"0\" %s> %s&nbsp;</td>", ((role == ROLE_STANDALONE) ? "checked" : ""), _("Stand Alone"));
881 printf("<td><input type=radio name=\"ServerType\" value=\"1\" %s> %s&nbsp;</td>", ((role == ROLE_DOMAIN_MEMBER) ? "checked" : ""), _("Domain Member"));
882 printf("<td><input type=radio name=\"ServerType\" value=\"2\" %s> %s&nbsp;</td>", ((role == ROLE_DOMAIN_PDC) ? "checked" : ""), _("Domain Controller"));
883 printf("</tr>\n");
884 if (role == ROLE_DOMAIN_BDC) {
885 printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Unusual Type in smb.conf - Please Select New Mode"));
886 }
887 printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Configure WINS As"));
888 printf("<td><input type=radio name=\"WINSType\" value=\"0\" %s> %s&nbsp;</td>", ((winstype == 0) ? "checked" : ""), _("Not Used"));
889 printf("<td><input type=radio name=\"WINSType\" value=\"1\" %s> %s&nbsp;</td>", ((winstype == 1) ? "checked" : ""), _("Server for client use"));
890 printf("<td><input type=radio name=\"WINSType\" value=\"2\" %s> %s&nbsp;</td>", ((winstype == 2) ? "checked" : ""), _("Client of another WINS server"));
891 printf("</tr>\n");
892 printf("<tr><td></td><td></td><td></td><td>%s&nbsp;<input type=text size=\"16\" name=\"WINSAddr\" value=\"", _("Remote WINS Server"));
893
894 /* Print out the list of wins servers */
895 if(lp_wins_server_list()) {
896 int i;
897 const char **wins_servers = lp_wins_server_list();
898 for(i = 0; wins_servers[i]; i++) printf("%s ", wins_servers[i]);
899 }
900
901 printf("\"></td></tr>\n");
902 if (winstype == 3) {
903 printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Error: WINS Server Mode and WINS Support both set in smb.conf"));
904 printf("<tr><td></td><td colspan=3><font color=\"#ff0000\">%s</font></td></tr>\n", _("Please Select desired WINS mode above."));
905 }
906 printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Expose Home Directories"));
907 printf("<td><input type=radio name=\"HomeExpo\" value=\"1\" %s> Yes</td>", (have_home == -1) ? "" : "checked ");
908 printf("<td><input type=radio name=\"HomeExpo\" value=\"0\" %s> No</td>", (have_home == -1 ) ? "checked" : "");
909 printf("<td></td></tr>\n");
910
911 /* Enable this when we are ready ....
912 * printf("<tr><td><b>%s:&nbsp;</b></td>\n", _("Is Print Server"));
913 * printf("<td><input type=radio name=\"PtrSvr\" value=\"1\" %s> Yes</td>");
914 * printf("<td><input type=radio name=\"PtrSvr\" value=\"0\" %s> No</td>");
915 * printf("<td></td></tr>\n");
916 */
917
918 printf("</table></center>");
919 printf("<hr>");
920
921 printf("%s\n", _("The above configuration options will set multiple parameters and will generally assist with rapid Samba deployment."));
922 printf("</form>\n");
923 }
924
925
926 /****************************************************************************
927 display a globals editing page
928 ****************************************************************************/
929 static void globals_page(void)
930 {
931 unsigned int parm_filter = FLAG_BASIC;
932 int mode = 0;
933
934 printf("<H2>%s</H2>\n", _("Global Parameters"));
935
936 if (cgi_variable("Commit")) {
937 commit_parameters(GLOBAL_SECTION_SNUM);
938 save_reload(-1);
939 }
940
941 if ( cgi_variable("ViewMode") )
942 mode = atoi(cgi_variable_nonull("ViewMode"));
943 if ( cgi_variable("BasicMode"))
944 mode = 0;
945 if ( cgi_variable("AdvMode"))
946 mode = 1;
947
948 printf("<form name=\"swatform\" method=post action=globals>\n");
949
950 ViewModeBoxes( mode );
951 switch ( mode ) {
952 case 0:
953 parm_filter = FLAG_BASIC;
954 break;
955 case 1:
956 parm_filter = FLAG_ADVANCED;
957 break;
958 }
959 printf("<br>\n");
960 if (have_write_access) {
961 printf("<input type=submit name=\"Commit\" value=\"%s\">\n",
962 _("Commit Changes"));
963 }
964
965 printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n",
966 _("Reset Values"));
967
968 printf("<p>\n");
969 printf("<table>\n");
970 show_parameters(GLOBAL_SECTION_SNUM, 1, parm_filter, 0);
971 printf("</table>\n");
972 printf("</form>\n");
973 }
974
975 /****************************************************************************
976 display a shares editing page. share is in unix codepage,
977 ****************************************************************************/
978 static void shares_page(void)
979 {
980 const char *share = cgi_variable("share");
981 char *s;
982 char *utf8_s;
983 int snum = -1;
984 int i;
985 int mode = 0;
986 unsigned int parm_filter = FLAG_BASIC;
987 size_t converted_size;
988
989 if (share)
990 snum = lp_servicenumber(share);
991
992 printf("<H2>%s</H2>\n", _("Share Parameters"));
993
994 if (cgi_variable("Commit") && snum >= 0) {
995 commit_parameters(snum);
996 save_reload(-1);
997 snum = lp_servicenumber(share);
998 }
999
1000 if (cgi_variable("Delete") && snum >= 0) {
1001 lp_remove_service(snum);
1002 save_reload(-1);
1003 share = NULL;
1004 snum = -1;
1005 }
1006
1007 if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
1008 snum = lp_servicenumber(share);
1009 if (snum < 0) {
1010 load_config(False);
1011 lp_copy_service(GLOBAL_SECTION_SNUM, share);
1012 snum = lp_servicenumber(share);
1013 save_reload(snum);
1014 snum = lp_servicenumber(share);
1015 }
1016 }
1017
1018 printf("<FORM name=\"swatform\" method=post>\n");
1019
1020 printf("<table>\n");
1021
1022 if ( cgi_variable("ViewMode") )
1023 mode = atoi(cgi_variable_nonull("ViewMode"));
1024 if ( cgi_variable("BasicMode"))
1025 mode = 0;
1026 if ( cgi_variable("AdvMode"))
1027 mode = 1;
1028
1029 ViewModeBoxes( mode );
1030 switch ( mode ) {
1031 case 0:
1032 parm_filter = FLAG_BASIC;
1033 break;
1034 case 1:
1035 parm_filter = FLAG_ADVANCED;
1036 break;
1037 }
1038 printf("<br><tr>\n");
1039 printf("<td><input type=submit name=selectshare value=\"%s\"></td>\n", _("Choose Share"));
1040 printf("<td><select name=share>\n");
1041 if (snum < 0)
1042 printf("<option value=\" \"> \n");
1043 for (i=0;i<lp_numservices();i++) {
1044 s = lp_servicename(i);
1045 if (s && (*s) && strcmp(s,"IPC$") && !lp_print_ok(i)) {
1046 push_utf8_talloc(talloc_tos(), &utf8_s, s, &converted_size);
1047 printf("<option %s value=\"%s\">%s\n",
1048 (share && strcmp(share,s)==0)?"SELECTED":"",
1049 utf8_s, utf8_s);
1050 TALLOC_FREE(utf8_s);
1051 }
1052 }
1053 printf("</select></td>\n");
1054 if (have_write_access) {
1055 printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Share"));
1056 }
1057 printf("</tr>\n");
1058 printf("</table>");
1059 printf("<table>");
1060 if (have_write_access) {
1061 printf("<tr>\n");
1062 printf("<td><input type=submit name=createshare value=\"%s\"></td>\n", _("Create Share"));
1063 printf("<td><input type=text size=30 name=newshare></td></tr>\n");
1064 }
1065 printf("</table>");
1066
1067
1068 if (snum >= 0) {
1069 if (have_write_access) {
1070 printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
1071 }
1072
1073 printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
1074 printf("<p>\n");
1075 }
1076
1077 if (snum >= 0) {
1078 printf("<table>\n");
1079 show_parameters(snum, 1, parm_filter, 0);
1080 printf("</table>\n");
1081 }
1082
1083 printf("</FORM>\n");
1084 }
1085
1086 /*************************************************************
1087 change a password either locally or remotely
1088 *************************************************************/
1089 static bool change_password(const char *remote_machine, const char *user_name,
1090 const char *old_passwd, const char *new_passwd,
1091 int local_flags)
1092 {
1093 NTSTATUS ret;
1094 char *err_str = NULL;
1095 char *msg_str = NULL;
1096
1097 if (demo_mode) {
1098 printf("%s\n<p>", _("password change in demo mode rejected"));
1099 return False;
1100 }
1101
1102 if (remote_machine != NULL) {
1103 ret = remote_password_change(remote_machine, user_name,
1104 old_passwd, new_passwd, &err_str);
1105 if (err_str != NULL)
1106 printf("%s\n<p>", err_str);
1107 SAFE_FREE(err_str);
1108 return NT_STATUS_IS_OK(ret);
1109 }
1110
1111 if(!initialize_password_db(True, NULL)) {
1112 printf("%s\n<p>", _("Can't setup password database vectors."));
1113 return False;
1114 }
1115
1116 ret = local_password_change(user_name, local_flags, new_passwd,
1117 &err_str, &msg_str);
1118
1119 if(msg_str)
1120 printf("%s\n<p>", msg_str);
1121 if(err_str)
1122 printf("%s\n<p>", err_str);
1123
1124 SAFE_FREE(msg_str);
1125 SAFE_FREE(err_str);
1126 return NT_STATUS_IS_OK(ret);
1127 }
1128
1129 /****************************************************************************
1130 do the stuff required to add or change a password
1131 ****************************************************************************/
1132 static void chg_passwd(void)
1133 {
1134 const char *host;
1135 bool rslt;
1136 int local_flags = 0;
1137
1138 /* Make sure users name has been specified */
1139 if (strlen(cgi_variable_nonull(SWAT_USER)) == 0) {
1140 printf("<p>%s\n", _(" Must specify \"User Name\" "));
1141 return;
1142 }
1143
1144 /*
1145 * smbpasswd doesn't require anything but the users name to delete, disable or enable the user,
1146 * so if that's what we're doing, skip the rest of the checks
1147 */
1148 if (!cgi_variable(DISABLE_USER_FLAG) && !cgi_variable(ENABLE_USER_FLAG) && !cgi_variable(DELETE_USER_FLAG)) {
1149
1150 /*
1151 * If current user is not root, make sure old password has been specified
1152 * If REMOTE change, even root must provide old password
1153 */
1154 if (((!am_root()) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0)) ||
1155 ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(OLD_PSWD)) <= 0))) {
1156 printf("<p>%s\n", _(" Must specify \"Old Password\" "));
1157 return;
1158 }
1159
1160 /* If changing a users password on a remote hosts we have to know what host */
1161 if ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable_nonull(RHOST)) <= 0)) {
1162 printf("<p>%s\n", _(" Must specify \"Remote Machine\" "));
1163 return;
1164 }
1165
1166 /* Make sure new passwords have been specified */
1167 if ((strlen( cgi_variable_nonull(NEW_PSWD)) <= 0) ||
1168 (strlen( cgi_variable_nonull(NEW2_PSWD)) <= 0)) {
1169 printf("<p>%s\n", _(" Must specify \"New, and Re-typed Passwords\" "));
1170 return;
1171 }
1172
1173 /* Make sure new passwords was typed correctly twice */
1174 if (strcmp(cgi_variable_nonull(NEW_PSWD), cgi_variable_nonull(NEW2_PSWD)) != 0) {
1175 printf("<p>%s\n", _(" Re-typed password didn't match new password "));
1176 return;
1177 }
1178 }
1179
1180 if (cgi_variable(CHG_R_PASSWD_FLAG)) {
1181 host = cgi_variable(RHOST);
1182 } else if (am_root()) {
1183 host = NULL;
1184 } else {
1185 host = "127.0.0.1";
1186 }
1187
1188 /*
1189 * Set up the local flags.
1190 */
1191
1192 local_flags |= (cgi_variable(ADD_USER_FLAG) ? LOCAL_ADD_USER : 0);
1193 local_flags |= (cgi_variable(ADD_USER_FLAG) ? LOCAL_SET_PASSWORD : 0);
1194 local_flags |= (cgi_variable(CHG_S_PASSWD_FLAG) ? LOCAL_SET_PASSWORD : 0);
1195 local_flags |= (cgi_variable(DELETE_USER_FLAG) ? LOCAL_DELETE_USER : 0);
1196 local_flags |= (cgi_variable(ENABLE_USER_FLAG) ? LOCAL_ENABLE_USER : 0);
1197 local_flags |= (cgi_variable(DISABLE_USER_FLAG) ? LOCAL_DISABLE_USER : 0);
1198
1199 rslt = change_password(host,
1200 cgi_variable_nonull(SWAT_USER),
1201 cgi_variable_nonull(OLD_PSWD), cgi_variable_nonull(NEW_PSWD),
1202 local_flags);
1203
1204 if(cgi_variable(CHG_S_PASSWD_FLAG)) {
1205 printf("<p>");
1206 if (rslt == True) {
1207 printf("%s\n", _(" The passwd has been changed."));
1208 } else {
1209 printf("%s\n", _(" The passwd has NOT been changed."));
1210 }
1211 }
1212
1213 return;
1214 }
1215
1216 /****************************************************************************
1217 display a password editing page
1218 ****************************************************************************/
1219 static void passwd_page(void)
1220 {
1221 const char *new_name = cgi_user_name();
1222
1223 if (!new_name) new_name = "";
1224
1225 printf("<H2>%s</H2>\n", _("Server Password Management"));
1226
1227 printf("<FORM name=\"swatform\" method=post>\n");
1228
1229 printf("<table>\n");
1230
1231 /*
1232 * Create all the dialog boxes for data collection
1233 */
1234 printf("<tr><td> %s : </td>\n", _("User Name"));
1235 printf("<td><input type=text size=30 name=%s value=%s></td></tr> \n", SWAT_USER, new_name);
1236 if (!am_root()) {
1237 printf("<tr><td> %s : </td>\n", _("Old Password"));
1238 printf("<td><input type=password size=30 name=%s></td></tr> \n",OLD_PSWD);
1239 }
1240 printf("<tr><td> %s : </td>\n", _("New Password"));
1241 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1242 printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1243 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1244 printf("</table>\n");
1245
1246 /*
1247 * Create all the control buttons for requesting action
1248 */
1249 printf("<input type=submit name=%s value=\"%s\">\n",
1250 CHG_S_PASSWD_FLAG, _("Change Password"));
1251 if (demo_mode || am_root()) {
1252 printf("<input type=submit name=%s value=\"%s\">\n",
1253 ADD_USER_FLAG, _("Add New User"));
1254 printf("<input type=submit name=%s value=\"%s\">\n",
1255 DELETE_USER_FLAG, _("Delete User"));
1256 printf("<input type=submit name=%s value=\"%s\">\n",
1257 DISABLE_USER_FLAG, _("Disable User"));
1258 printf("<input type=submit name=%s value=\"%s\">\n",
1259 ENABLE_USER_FLAG, _("Enable User"));
1260 }
1261 printf("<p></FORM>\n");
1262
1263 /*
1264 * Do some work if change, add, disable or enable was
1265 * requested. It could be this is the first time through this
1266 * code, so there isn't anything to do. */
1267 if ((cgi_variable(CHG_S_PASSWD_FLAG)) || (cgi_variable(ADD_USER_FLAG)) || (cgi_variable(DELETE_USER_FLAG)) ||
1268 (cgi_variable(DISABLE_USER_FLAG)) || (cgi_variable(ENABLE_USER_FLAG))) {
1269 chg_passwd();
1270 }
1271
1272 printf("<H2>%s</H2>\n", _("Client/Server Password Management"));
1273
1274 printf("<FORM name=\"swatform\" method=post>\n");
1275
1276 printf("<table>\n");
1277
1278 /*
1279 * Create all the dialog boxes for data collection
1280 */
1281 printf("<tr><td> %s : </td>\n", _("User Name"));
1282 printf("<td><input type=text size=30 name=%s value=%s></td></tr>\n",SWAT_USER, new_name);
1283 printf("<tr><td> %s : </td>\n", _("Old Password"));
1284 printf("<td><input type=password size=30 name=%s></td></tr>\n",OLD_PSWD);
1285 printf("<tr><td> %s : </td>\n", _("New Password"));
1286 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
1287 printf("<tr><td> %s : </td>\n", _("Re-type New Password"));
1288 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
1289 printf("<tr><td> %s : </td>\n", _("Remote Machine"));
1290 printf("<td><input type=text size=30 name=%s></td></tr>\n",RHOST);
1291
1292 printf("</table>");
1293
1294 /*
1295 * Create all the control buttons for requesting action
1296 */
1297 printf("<input type=submit name=%s value=\"%s\">",
1298 CHG_R_PASSWD_FLAG, _("Change Password"));
1299
1300 printf("<p></FORM>\n");
1301
1302 /*
1303 * Do some work if a request has been made to change the
1304 * password somewhere other than the server. It could be this
1305 * is the first time through this code, so there isn't
1306 * anything to do. */
1307 if (cgi_variable(CHG_R_PASSWD_FLAG)) {
1308 chg_passwd();
1309 }
1310
1311 }
1312
1313 /****************************************************************************
1314 display a printers editing page
1315 ****************************************************************************/
1316 static void printers_page(void)
1317 {
1318 const char *share = cgi_variable("share");
1319 char *s;
1320 int snum=-1;
1321 int i;
1322 int mode = 0;
1323 unsigned int parm_filter = FLAG_BASIC;
1324
1325 if (share)
1326 snum = lp_servicenumber(share);
1327
1328 printf("<H2>%s</H2>\n", _("Printer Parameters"));
1329
1330 printf("<H3>%s</H3>\n", _("Important Note:"));
1331 printf("%s",_("Printer names marked with [*] in the Choose Printer drop-down box "));
1332 printf("%s",_("are autoloaded printers from "));
1333 printf("<A HREF=\"/swat/help/smb.conf.5.html#printcapname\" target=\"docs\">%s</A>\n", _("Printcap Name"));
1334 printf("%s\n", _("Attempting to delete these printers from SWAT will have no effect."));
1335
1336 if (cgi_variable("Commit") && snum >= 0) {
1337 commit_parameters(snum);
1338 if (snum >= iNumNonAutoPrintServices)
1339 save_reload(snum);
1340 else
1341 save_reload(-1);
1342 snum = lp_servicenumber(share);
1343 }
1344
1345 if (cgi_variable("Delete") && snum >= 0) {
1346 lp_remove_service(snum);
1347 save_reload(-1);
1348 share = NULL;
1349 snum = -1;
1350 }
1351
1352 if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
1353 snum = lp_servicenumber(share);
1354 if (snum < 0 || snum >= iNumNonAutoPrintServices) {
1355 load_config(False);
1356 lp_copy_service(GLOBAL_SECTION_SNUM, share);
1357 snum = lp_servicenumber(share);
1358 lp_do_parameter(snum, "print ok", "Yes");
1359 save_reload(snum);
1360 snum = lp_servicenumber(share);
1361 }
1362 }
1363
1364 printf("<FORM name=\"swatform\" method=post>\n");
1365
1366 if ( cgi_variable("ViewMode") )
1367 mode = atoi(cgi_variable_nonull("ViewMode"));
1368 if ( cgi_variable("BasicMode"))
1369 mode = 0;
1370 if ( cgi_variable("AdvMode"))
1371 mode = 1;
1372
1373 ViewModeBoxes( mode );
1374 switch ( mode ) {
1375 case 0:
1376 parm_filter = FLAG_BASIC;
1377 break;
1378 case 1:
1379 parm_filter = FLAG_ADVANCED;
1380 break;
1381 }
1382 printf("<table>\n");
1383 printf("<tr><td><input type=submit name=\"selectshare\" value=\"%s\"></td>\n", _("Choose Printer"));
1384 printf("<td><select name=\"share\">\n");
1385 if (snum < 0 || !lp_print_ok(snum))
1386 printf("<option value=\" \"> \n");
1387 for (i=0;i<lp_numservices();i++) {
1388 s = lp_servicename(i);
1389 if (s && (*s) && strcmp(s,"IPC$") && lp_print_ok(i)) {
1390 if (i >= iNumNonAutoPrintServices)
1391 printf("<option %s value=\"%s\">[*]%s\n",
1392 (share && strcmp(share,s)==0)?"SELECTED":"",
1393 s, s);
1394 else
1395 printf("<option %s value=\"%s\">%s\n",
1396 (share && strcmp(share,s)==0)?"SELECTED":"",
1397 s, s);
1398 }
1399 }
1400 printf("</select></td>");
1401 if (have_write_access) {
1402 printf("<td><input type=submit name=\"Delete\" value=\"%s\"></td>\n", _("Delete Printer"));
1403 }
1404 printf("</tr>");
1405 printf("</table>\n");
1406
1407 if (have_write_access) {
1408 printf("<table>\n");
1409 printf("<tr><td><input type=submit name=\"createshare\" value=\"%s\"></td>\n", _("Create Printer"));
1410 printf("<td><input type=text size=30 name=\"newshare\"></td></tr>\n");
1411 printf("</table>");
1412 }
1413
1414
1415 if (snum >= 0) {
1416 if (have_write_access) {
1417 printf("<input type=submit name=\"Commit\" value=\"%s\">\n", _("Commit Changes"));
1418 }
1419 printf("<input type=reset name=\"Reset Values\" value=\"%s\">\n", _("Reset Values"));
1420 printf("<p>\n");
1421 }
1422
1423 if (snum >= 0) {
1424 printf("<table>\n");
1425 show_parameters(snum, 1, parm_filter, 1);
1426 printf("</table>\n");
1427 }
1428 printf("</FORM>\n");
1429 }
1430
1431 /*
1432 when the _() translation macro is used there is no obvious place to free
1433 the resulting string and there is no easy way to give a static pointer.
1434 All we can do is rotate between some static buffers and hope a single d_printf()
1435 doesn't have more calls to _() than the number of buffers
1436 */
1437
1438 const char *lang_msg_rotate(TALLOC_CTX *ctx, const char *msgid)
1439 {
1440 const char *msgstr;
1441 const char *ret;
1442
1443 msgstr = lang_msg(msgid);
1444 if (!msgstr) {
1445 return msgid;
1446 }
1447
1448 ret = talloc_strdup(ctx, msgstr);
1449
1450 lang_msg_free(msgstr);
1451 if (!ret) {
1452 return msgid;
1453 }
1454
1455 return ret;
1456 }
1457
1458 /**
1459 * main function for SWAT.
1460 **/
1461 int main(int argc, char *argv[])
1462 {
1463 const char *page;
1464 poptContext pc;
1465 struct poptOption long_options[] = {
1466 POPT_AUTOHELP
1467 { "disable-authentication", 'a', POPT_ARG_VAL, &demo_mode, True, "Disable authentication (demo mode)" },
1468 { "password-menu-only", 'P', POPT_ARG_VAL, &passwd_only, True, "Show only change password menu" },
1469 POPT_COMMON_SAMBA
1470 POPT_TABLEEND
1471 };
1472 TALLOC_CTX *frame = talloc_stackframe();
1473
1474 fault_setup(NULL);
1475 umask(S_IWGRP | S_IWOTH);
1476
1477 #if defined(HAVE_SET_AUTH_PARAMETERS)
1478 set_auth_parameters(argc, argv);
1479 #endif /* HAVE_SET_AUTH_PARAMETERS */
1480
1481 /* just in case it goes wild ... */
1482 alarm(300);
1483
1484 setlinebuf(stdout);
1485
1486 /* we don't want any SIGPIPE messages */
1487 BlockSignals(True,SIGPIPE);
1488
1489 debug_set_logfile("/dev/null");
1490
1491 /* we don't want stderr screwing us up */
1492 close(2);
1493 open("/dev/null", O_WRONLY);
1494 setup_logging("swat", DEBUG_FILE);
1495
1496 load_case_tables();
1497
1498 pc = poptGetContext("swat", argc, (const char **) argv, long_options, 0);
1499
1500 /* Parse command line options */
1501
1502 while(poptGetNextOpt(pc) != -1) { }
1503
1504 poptFreeContext(pc);
1505
1506 /* This should set a more apporiate log file */
1507 load_config(True);
1508 reopen_logs();
1509 load_interfaces();
1510 iNumNonAutoPrintServices = lp_numservices();
1511 if (pcap_cache_loaded()) {
1512 load_printers(server_event_context(),
1513 server_messaging_context());
1514 }
1515
1516 cgi_setup(get_dyn_SWATDIR(), !demo_mode);
1517
1518 print_header();
1519
1520 cgi_load_variables();
1521
1522 if (!file_exist(get_dyn_CONFIGFILE())) {
1523 have_read_access = True;
1524 have_write_access = True;
1525 } else {
1526 /* check if the authenticated user has write access - if not then
1527 don't show write options */
1528 have_write_access = (access(get_dyn_CONFIGFILE(),W_OK) == 0);
1529
1530 /* if the user doesn't have read access to smb.conf then
1531 don't let them view it */
1532 have_read_access = (access(get_dyn_CONFIGFILE(),R_OK) == 0);
1533 }
1534
1535 show_main_buttons();
1536
1537 page = cgi_pathinfo();
1538
1539 /* Root gets full functionality */
1540 if (have_read_access && strcmp(page, "globals")==0) {
1541 globals_page();
1542 } else if (have_read_access && strcmp(page,"shares")==0) {
1543 shares_page();
1544 } else if (have_read_access && strcmp(page,"printers")==0) {
1545 printers_page();
1546 } else if (have_read_access && strcmp(page,"status")==0) {
1547 status_page();
1548 } else if (have_read_access && strcmp(page,"viewconfig")==0) {
1549 viewconfig_page();
1550 } else if (strcmp(page,"passwd")==0) {
1551 passwd_page();
1552 } else if (have_read_access && strcmp(page,"wizard")==0) {
1553 wizard_page();
1554 } else if (have_read_access && strcmp(page,"wizard_params")==0) {
1555 wizard_params_page();
1556 } else if (have_read_access && strcmp(page,"rewritecfg")==0) {
1557 rewritecfg_file();
1558 } else {
1559 welcome_page();
1560 }
1561
1562 print_footer();
1563
1564 TALLOC_FREE(frame);
1565 return 0;
1566 }
1567
1568 /** @} **/
Samba GIT mirror