[qtadmin.git] / lib / utils.inc.php

<?php
/* vim: set ts=4 tw=0 sw=4 noet: */
require_once $CFG->root .'config.php';

class Utils {

    private $timeout = false;
    private $settings;
    private $log_level;
    private $log_method;
    private $header = '<!DOCTYPE html>
<html>
<head>
    <meta charset="utf-8">
    <link rel="stylesheet" href="css/styles.css">
    <script>
        var timeout = __TIMEOUT__;
    </script>
    <script src="__ROOT__js/timer.js"></script>
    <script src="__ROOT__js/checkbox.js"></script>
    <title>__TITLE__</title>
</head>
<body>';
    private $footer = '<p class="footer">Powered by <a href="https://qtadmin.datanom.net"
            title="Goto QtAdmin homepage">QtAdmin</a>. &copy; 2015 by Michael Rasmussen</p></body></html>';
    private $heading = '<p id="time" class="time">Session timeout:
            <span id="timer"></span></p><h1 class="h1">__TITLE__</h1>';

    public function __construct() {
        global $CFG;

        if (isset($CFG->log_level)) {
            $this->log_level = $CFG->log_level;
        } else {
            $this->log_level = 1;
        }

        if (isset($CFG->log_method)) {
            $this->log_method = $CFG->log_method;
        } else {
            $this->log_level = 'syslog';
        }

        $this->log("Init Utils", 4);

        $this->log("__construct[1]: user ".var_export($this->settings['user'], true), 3);
        $this->startSession();
        $this->log("__construct[2]: user ".var_export($this->settings['user'], true), 3);

        if (! isset($_SESSION['settings'])) {
            $this->initSettings();
        }
        $this->log("__construct[3]: user ".var_export($this->settings['user'], true), 3);
        $this->settings = $_SESSION['settings'];
        $this->log("__construct[4]: user ".var_export($this->settings['user'], true), 3);

        if ($CFG->auth_method == 'HTTP_AUTH') {
            if (isset($_SERVER['PHP_AUTH_USER'])) {
                $this->settings['user'] = $_SERVER['PHP_AUTH_USER'];
                $this->settings['loginStatus'] = 'OK';
                if ($CFG->admin_user == $this->settings['user'])
                    $this->settings['admin'] = true;
            }
        }
    }

    private function log($message, $level = 1) {
        global $CFG;

        if ($level > $this->log_level)
            return;

        $time = date('c');

        $priority = LOG_INFO;
        switch ($level) {
            case 1: $priority = LOG_ERR; break;
            case 2: $priority = LOG_WARNING; break;
            case 3: $priority = LOG_INFO; break;
            case 4: $priority = LOG_DEBUG; break;
        }

        switch ($this->log_method) {
            case 'file':
            case 'stderr':
            case 'syslog':
                syslog($priority, $message);
                break;
        }
    }

    private function initSettings() {
        $this->log("InitSettings", 4);

        if ('' == session_id()) {
            $this->startSession();
        }

        if (false !== $this->timeout) {
            $timeout = $this->timeout;
        } else {
            $timeout = 0;
        }

        $this->settings = array(
            'user' => null,
            'admin' => false,
            'loginStatus' => 'Not logged in',
            'timeout' => $timeout
        );

        $_SESSION['settings'] = $this->settings;
    }

    private function startSession() {
        global $CFG;

        $this->log("startSession", 4);

        if (isset($CFG->session_timeout)) {
            $this->timeout = $CFG->session_timeout * 60;
        } else {
            $this->timeout = 20 * 60;
        }

        if (ini_get('session.gc_maxlifetime') != $this->timeout)
            ini_set('session.gc_maxlifetime', $this->timeout);
        if (ini_get('session.cookie_lifetime') != $this->timeout)
            ini_set('session.cookie_lifetime', $this->timeout);

        session_start();
    }

    private function checkSession() {
        global $CFG;

        $this->log("checkSession", 4);

        if ('' == session_id()) {
            $this->startSession();
        }

        $time = $_SERVER['REQUEST_TIME'];
        if (isset($_SESSION['LAST_ACTIVITY']) &&
                ($time - $_SESSION['LAST_ACTIVITY']) >= $this->settings['timeout']) {
            $this->log('R_TIME: '.date('c', $time).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY'].
            'Test: '.($time - $_SESSION['LAST_ACTIVITY'])).' >= '.$this->settings['timeout'], 3);
            $this->logout();
        } else {
            $_SESSION['LAST_ACTIVITY'] = $time;
        }
    }

    public function logout() {
        $this->log("logout", 4);

        if (ini_get('session.use_cookies')) {
            $params = session_get_cookie_params();
            setcookie(session_name(), '', time() - 42000,
                $params['path'], $params['domain'],
                $params['secure'], $params['httponly']);
        }

        if ('' != session_id()) {
            $_SESSION = array();
            session_unset();
            session_destroy();
        }
        $this->settings = array();
    }

    public function isAdmin() {
        $admin = false;

        $this->log("isAdmin", 4);

        if (isset($this->settings['admin'])) {
            $admin = $this->settings['admin'];
        }

        return $admin;
    }

    public function login($user, $pw) {
        global $CFG;
        $result = false;

        $this->log("login", 4);

        if ('' == session_id()) {
            $this->startSession();
        }

        $this->settings['user'] = null;
        $this->settings['admin'] = false;

        $p = explode('@', $user);
        if (count($p) != 2) {
           $this->settings['loginStatus'] = 'Bad username';
        } else {
            $domain = $p[1];
            $dn = "mail=$user,ou=Users,domainName=$domain,$CFG->ldap_base_dn";
            $filter = "(&(objectclass=mailUser)(accountStatus=active)(mail=$user))";
            $ds = @ldap_connect($CFG->ldap_dsn);
            if ($ds) {
                @ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3);
                $r = @ldap_bind($ds, $dn, $pw);
                if ($r) {
                    $sr = @ldap_search($ds, $CFG->ldap_base_dn, $filter, array('mail','domainglobaladmin'));
                    $info = @ldap_get_entries($ds, $sr); // array
                    if ($info['count'] > 0) {
                        $this->settings['user'] = $user;
                        $result = true;
                        $this->settings['loginStatus'] = 'OK';
                        $admin = 'NO';
                        if (isset($info[0]['domainglobaladmin'])) {
                            $admin = $info[0]['domainglobaladmin'][0];
                            $admin = strtoupper($admin);
                        }
                        $this->settings['admin'] = ($admin == 'YES') ? true : false;
                    } else {
                        $this->settings['loginStatus'] = 'Login failed';
                    }
                } else {
                    $this->settings['loginStatus'] = ldap_error($ds);
                }
                @ldap_close($ds);
            } else {
                $this->settings['loginStatus'] = 'Connect to LDAP server failed';
            }
        }

        $_SESSION['settings'] = $this->settings;

        return $result;
    }

    public function getLoginStatus() {
        $status = 'Not logged in';

        $this->log("getLoginStatus", 4);

        if (isset($this->settings['loginStatus'])) {
            $status = $this->settings['loginStatus'];
        }

        return $status;
    }

    public function isLoggedIn() {
        global $CFG;
        $loggedIn = false;

        $this->log("isLoggedIn[1]: user ".var_export($this->settings['user'], true), 3);

        if ('' == session_id()) {
            $this->startSession();
        }

        $this->log("isLoggedIn[2]: user ".var_export($this->settings['user'], true), 3);
        $this->checkSession();
        $this->log("isLoggedIn[3]: user ".var_export($this->settings['user'], true), 3);

        if (isset($this->settings['user'])) {
            if ($this->settings['user'] != null) {
                $loggedIn = true;
            } else {
                if ($CFG->auth_method == 'HTTP_AUTH') {
                    if (isset($_SERVER['PHP_AUTH_USER'])) {
                        $this->settings['user'] = $_SERVER['PHP_AUTH_USER'];
                        $loggedIn = true;
                    }
                }
            }
        }

        if ($loggedIn == false) {
            echo '$this->settings: '.var_export($this->settings, true);
            echo 'R_TIME: '.date('c', $_SERVER['REQUEST_TIME']).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY']);
            //exit;
        }

        $_SESSION['settings'] = $this->settings;

        return $loggedIn;
    }

    public function getUser() {
        $user = null;

        $this->log("getUser", 4);

        if ($this->isLoggedIn()) {
            $user = $this->settings['user'];
        }

        return $user;
    }

    public function getHeader() {
        $this->log("getHeader", 4);

        return $this->header;
    }

    public function getFooter() {
        $this->log("getFooter", 4);

        return $this->footer;
    }

    public function getHeading() {
        $this->log("getHeading", 4);

        return $this->heading;
    }

    public function setHeading($heading) {
        global $CFG;

        $this->log("setHeading", 4);

        $timeout = $CFG->session_timeout * 60 * 1000;
        $this->heading = str_replace('__TITLE__', $heading, $this->heading);
        $this->header = str_replace('__TITLE__', $heading, $this->header);
        $this->header = str_replace('__ROOT__', $CFG->wwwroot, $this->header);
        $this->header = str_replace('__TIMEOUT__', $timeout, $this->header);
    }

    public function convertContent($code) {
        $this->log("convertContent", 4);

        $table = array(
            'V' => 'Virus',
            'B' => 'Banned',
            'U' => 'Unchecked',
            'S' => 'Spam',
            'Y' => 'Spammy',
            'M' => 'Bad Mime',
            'H' => 'Bad Header',
            'O' => 'Over sized',
            'T' => 'MTA err',
            'C' => 'Clean'
        );

        $string = $table[$code];
        if (empty($string))
            $string = 'Unknown';

        return $string;
    }

}
Commit	Line	Data
6df4b805 MR	1	<?php
	2	/* vim: set ts=4 tw=0 sw=4 noet: */
	3	require_once $CFG->root .'config.php';
	4
3056d117 MR	5	class Utils {
3056d117 MR	6
2b6294e9	7	private $timeout = false;
3056d117	8	private $settings;
01cc21cf MR	9	private $log_level;
01cc21cf MR	10	private $log_method;
b95d1cdb	11	private $header = '<!DOCTYPE html>
6df4b805 MR	12	<html>
6df4b805 MR	13	<head>
b95d1cdb MR	14	<meta charset="utf-8">
	15	<link rel="stylesheet" href="css/styles.css">
	16	<script>
	17	var timeout = __TIMEOUT__;
	18	</script>
	19	<script src="__ROOT__js/timer.js"></script>
5c7b972e	20	<script src="__ROOT__js/checkbox.js"></script>
b95d1cdb	21	<title>__TITLE__</title>
6df4b805 MR	22	</head>
6df4b805 MR	23	<body>';
bb06f172	24	private $footer = '<p class="footer">Powered by <a href="https://qtadmin.datanom.net"
b706c65f	25	title="Goto QtAdmin homepage">QtAdmin</a>. © 2015 by Michael Rasmussen</p></body></html>';
b95d1cdb MR	26	private $heading = '<p id="time" class="time">Session timeout:
	27	<span id="timer"></span></p><h1 class="h1">__TITLE__</h1>';
	28
3056d117	29	public function __construct() {
b95d1cdb MR	30	global $CFG;
b95d1cdb MR	31
01cc21cf MR	32	if (isset($CFG->log_level)) {
	33	$this->log_level = $CFG->log_level;
	34	} else {
	35	$this->log_level = 1;
	36	}
	37
	38	if (isset($CFG->log_method)) {
	39	$this->log_method = $CFG->log_method;
	40	} else {
	41	$this->log_level = 'syslog';
	42	}
	43
519a15b5 MR	44	$this->log("Init Utils", 4);
519a15b5 MR	45
9da61a01	46	$this->log("__construct[1]: user ".var_export($this->settings['user'], true), 3);
a675b383	47	$this->startSession();
9da61a01	48	$this->log("__construct[2]: user ".var_export($this->settings['user'], true), 3);
a675b383	49
3056d117 MR	50	if (! isset($_SESSION['settings'])) {
	51	$this->initSettings();
	52	}
9da61a01	53	$this->log("__construct[3]: user ".var_export($this->settings['user'], true), 3);
3056d117	54	$this->settings = $_SESSION['settings'];
9da61a01	55	$this->log("__construct[4]: user ".var_export($this->settings['user'], true), 3);
3056d117 MR	56
3056d117 MR	57	if ($CFG->auth_method == 'HTTP_AUTH') {
86fb546e MR	58	if (isset($_SERVER['PHP_AUTH_USER'])) {
86fb546e MR	59	$this->settings['user'] = $_SERVER['PHP_AUTH_USER'];
3056d117 MR	60	$this->settings['loginStatus'] = 'OK';
	61	if ($CFG->admin_user == $this->settings['user'])
	62	$this->settings['admin'] = true;
b95d1cdb MR	63	}
b95d1cdb MR	64	}
b95d1cdb MR	65	}
b95d1cdb MR	66
01cc21cf MR	67	private function log($message, $level = 1) {
	68	global $CFG;
	69
	70	if ($level > $this->log_level)
	71	return;
	72
	73	$time = date('c');
01cc21cf MR	74
	75	$priority = LOG_INFO;
	76	switch ($level) {
	77	case 1: $priority = LOG_ERR; break;
	78	case 2: $priority = LOG_WARNING; break;
	79	case 3: $priority = LOG_INFO; break;
	80	case 4: $priority = LOG_DEBUG; break;
	81	}
	82
	83	switch ($this->log_method) {
	84	case 'file':
	85	case 'stderr':
	86	case 'syslog':
2dd58fe8	87	syslog($priority, $message);
01cc21cf	88	break;
d6be2d1a	89	}
01cc21cf MR	90	}
01cc21cf MR	91
3056d117	92	private function initSettings() {
2dd58fe8 MR	93	$this->log("InitSettings", 4);
2dd58fe8 MR	94
3056d117 MR	95	if ('' == session_id()) {
	96	$this->startSession();
	97	}
b95d1cdb	98
2b6294e9 MR	99	if (false !== $this->timeout) {
	100	$timeout = $this->timeout;
	101	} else {
	102	$timeout = 0;
	103	}
	104
3056d117	105	$this->settings = array(
3056d117 MR	106	'user' => null,
	107	'admin' => false,
	108	'loginStatus' => 'Not logged in',
2b6294e9	109	'timeout' => $timeout
3056d117	110	);
6072c905	111
3056d117	112	$_SESSION['settings'] = $this->settings;
6072c905 MR	113	}
6072c905 MR	114
a675b383	115	private function startSession() {
b95d1cdb MR	116	global $CFG;
b95d1cdb MR	117
2dd58fe8 MR	118	$this->log("startSession", 4);
2dd58fe8 MR	119
b95d1cdb	120	if (isset($CFG->session_timeout)) {
2b6294e9	121	$this->timeout = $CFG->session_timeout * 60;
b95d1cdb	122	} else {
2b6294e9	123	$this->timeout = 20 * 60;
b95d1cdb MR	124	}
b95d1cdb MR	125
2b6294e9 MR	126	if (ini_get('session.gc_maxlifetime') != $this->timeout)
	127	ini_set('session.gc_maxlifetime', $this->timeout);
	128	if (ini_get('session.cookie_lifetime') != $this->timeout)
	129	ini_set('session.cookie_lifetime', $this->timeout);
a675b383 MR	130
a675b383 MR	131	session_start();
7d9c7fe2 MR	132	}
7d9c7fe2 MR	133
3056d117	134	private function checkSession() {
7d9c7fe2 MR	135	global $CFG;
7d9c7fe2 MR	136
2dd58fe8 MR	137	$this->log("checkSession", 4);
2dd58fe8 MR	138
39023189 MR	139	if ('' == session_id()) {
	140	$this->startSession();
	141	}
	142
b95d1cdb	143	$time = $_SERVER['REQUEST_TIME'];
7d9c7fe2	144	if (isset($_SESSION['LAST_ACTIVITY']) &&
3056d117	145	($time - $_SESSION['LAST_ACTIVITY']) >= $this->settings['timeout']) {
07124c37 MR	146	$this->log('R_TIME: '.date('c', $time).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY'].
07124c37 MR	147	'Test: '.($time - $_SESSION['LAST_ACTIVITY'])).' >= '.$this->settings['timeout'], 3);
3056d117	148	$this->logout();
a675b383 MR	149	} else {
	150	$_SESSION['LAST_ACTIVITY'] = $time;
	151	}
b95d1cdb MR	152	}
	153
	154	public function logout() {
2dd58fe8 MR	155	$this->log("logout", 4);
2dd58fe8 MR	156
b95d1cdb MR	157	if (ini_get('session.use_cookies')) {
	158	$params = session_get_cookie_params();
	159	setcookie(session_name(), '', time() - 42000,
	160	$params['path'], $params['domain'],
	161	$params['secure'], $params['httponly']);
	162	}
39023189 MR	163
	164	if ('' != session_id()) {
	165	$_SESSION = array();
	166	session_unset();
	167	session_destroy();
	168	}
3056d117	169	$this->settings = array();
b95d1cdb MR	170	}
	171
	172	public function isAdmin() {
3056d117 MR	173	$admin = false;
3056d117 MR	174
2dd58fe8 MR	175	$this->log("isAdmin", 4);
2dd58fe8 MR	176
3056d117 MR	177	if (isset($this->settings['admin'])) {
	178	$admin = $this->settings['admin'];
	179	}
	180
	181	return $admin;
b95d1cdb MR	182	}
	183
	184	public function login($user, $pw) {
	185	global $CFG;
	186	$result = false;
	187
2dd58fe8 MR	188	$this->log("login", 4);
2dd58fe8 MR	189
3056d117 MR	190	if ('' == session_id()) {
	191	$this->startSession();
	192	}
	193
	194	$this->settings['user'] = null;
	195	$this->settings['admin'] = false;
b95d1cdb MR	196
	197	$p = explode('@', $user);
	198	if (count($p) != 2) {
3056d117 MR	199	$this->settings['loginStatus'] = 'Bad username';
	200	} else {
	201	$domain = $p[1];
	202	$dn = "mail=$user,ou=Users,domainName=$domain,$CFG->ldap_base_dn";
	203	$filter = "(&(objectclass=mailUser)(accountStatus=active)(mail=$user))";
	204	$ds = @ldap_connect($CFG->ldap_dsn);
	205	if ($ds) {
	206	@ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3);
	207	$r = @ldap_bind($ds, $dn, $pw);
	208	if ($r) {
	209	$sr = @ldap_search($ds, $CFG->ldap_base_dn, $filter, array('mail','domainglobaladmin'));
	210	$info = @ldap_get_entries($ds, $sr); // array
	211	if ($info['count'] > 0) {
	212	$this->settings['user'] = $user;
	213	$result = true;
	214	$this->settings['loginStatus'] = 'OK';
	215	$admin = 'NO';
	216	if (isset($info[0]['domainglobaladmin'])) {
	217	$admin = $info[0]['domainglobaladmin'][0];
	218	$admin = strtoupper($admin);
	219	}
	220	$this->settings['admin'] = ($admin == 'YES') ? true : false;
	221	} else {
	222	$this->settings['loginStatus'] = 'Login failed';
b95d1cdb	223	}
6df4b805	224	} else {
3056d117	225	$this->settings['loginStatus'] = ldap_error($ds);
6df4b805	226	}
3056d117	227	@ldap_close($ds);
6df4b805	228	} else {
3056d117	229	$this->settings['loginStatus'] = 'Connect to LDAP server failed';
6df4b805	230	}
6df4b805 MR	231	}
6df4b805 MR	232
3056d117	233	$_SESSION['settings'] = $this->settings;
6e081c5f	234
b95d1cdb MR	235	return $result;
	236	}
	237
	238	public function getLoginStatus() {
3056d117 MR	239	$status = 'Not logged in';
3056d117 MR	240
2dd58fe8 MR	241	$this->log("getLoginStatus", 4);
2dd58fe8 MR	242
3056d117 MR	243	if (isset($this->settings['loginStatus'])) {
	244	$status = $this->settings['loginStatus'];
	245	}
	246
	247	return $status;
b95d1cdb MR	248	}
	249
	250	public function isLoggedIn() {
	251	global $CFG;
	252	$loggedIn = false;
	253
65f27692	254	$this->log("isLoggedIn[1]: user ".var_export($this->settings['user'], true), 3);
2dd58fe8	255
3056d117 MR	256	if ('' == session_id()) {
	257	$this->startSession();
	258	}
	259
65f27692	260	$this->log("isLoggedIn[2]: user ".var_export($this->settings['user'], true), 3);
39023189	261	$this->checkSession();
65f27692	262	$this->log("isLoggedIn[3]: user ".var_export($this->settings['user'], true), 3);
39023189	263
3056d117 MR	264	if (isset($this->settings['user'])) {
	265	if ($this->settings['user'] != null) {
	266	$loggedIn = true;
	267	} else {
	268	if ($CFG->auth_method == 'HTTP_AUTH') {
86fb546e MR	269	if (isset($_SERVER['PHP_AUTH_USER'])) {
86fb546e MR	270	$this->settings['user'] = $_SERVER['PHP_AUTH_USER'];
3056d117 MR	271	$loggedIn = true;
3056d117 MR	272	}
b95d1cdb MR	273	}
	274	}
	275	}
	276
85ec6a84	277	if ($loggedIn == false) {
258fa280	278	echo '$this->settings: '.var_export($this->settings, true);
18d80742	279	echo 'R_TIME: '.date('c', $_SERVER['REQUEST_TIME']).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY']);
d3c4a10f	280	//exit;
18d80742	281	}
6e081c5f	282
3056d117	283	$_SESSION['settings'] = $this->settings;
6e081c5f	284
b95d1cdb MR	285	return $loggedIn;
	286	}
	287
	288	public function getUser() {
3056d117 MR	289	$user = null;
3056d117 MR	290
2dd58fe8 MR	291	$this->log("getUser", 4);
2dd58fe8 MR	292
3056d117 MR	293	if ($this->isLoggedIn()) {
	294	$user = $this->settings['user'];
	295	}
	296
	297	return $user;
b95d1cdb MR	298	}
	299
	300	public function getHeader() {
2dd58fe8 MR	301	$this->log("getHeader", 4);
2dd58fe8 MR	302
b95d1cdb MR	303	return $this->header;
	304	}
	305
	306	public function getFooter() {
2dd58fe8 MR	307	$this->log("getFooter", 4);
2dd58fe8 MR	308
b95d1cdb MR	309	return $this->footer;
	310	}
	311
	312	public function getHeading() {
2dd58fe8 MR	313	$this->log("getHeading", 4);
2dd58fe8 MR	314
b95d1cdb MR	315	return $this->heading;
	316	}
	317
	318	public function setHeading($heading) {
	319	global $CFG;
	320
2dd58fe8 MR	321	$this->log("setHeading", 4);
2dd58fe8 MR	322
b95d1cdb MR	323	$timeout = $CFG->session_timeout * 60 * 1000;
	324	$this->heading = str_replace('__TITLE__', $heading, $this->heading);
	325	$this->header = str_replace('__TITLE__', $heading, $this->header);
	326	$this->header = str_replace('__ROOT__', $CFG->wwwroot, $this->header);
	327	$this->header = str_replace('__TIMEOUT__', $timeout, $this->header);
	328	}
	329
	330	public function convertContent($code) {
2dd58fe8 MR	331	$this->log("convertContent", 4);
2dd58fe8 MR	332
b95d1cdb MR	333	$table = array(
	334	'V' => 'Virus',
	335	'B' => 'Banned',
	336	'U' => 'Unchecked',
	337	'S' => 'Spam',
	338	'Y' => 'Spammy',
	339	'M' => 'Bad Mime',
	340	'H' => 'Bad Header',
	341	'O' => 'Over sized',
	342	'T' => 'MTA err',
	343	'C' => 'Clean'
	344	);
	345
	346	$string = $table[$code];
	347	if (empty($string))
	348	$string = 'Unknown';
	349
	350	return $string;
	351	}
6df4b805	352
6df4b805	353	}