[qtadmin.git] / lib / utils.inc.php

<?php
/* vim: set ts=4 tw=0 sw=4 noet: */
require_once $CFG->root .'config.php';

class Utils {

    private $settings;
    private $header = '<!DOCTYPE html>
<html>
<head>
    <meta charset="utf-8">
    <link rel="stylesheet" href="css/styles.css">
    <script>
        var timeout = __TIMEOUT__;
    </script>
    <script src="__ROOT__js/timer.js"></script>
    <script src="__ROOT__js/checkbox.js"></script>
    <title>__TITLE__</title>
</head>
<body>';
    private $footer = '<p class="footer">Powered by <a href="https://qtadmin.datanom.net"
            title="Goto QtAdmin homepage">QtAdmin</a>. &copy; 2015 by Michael Rasmussen</p></body></html>';
    private $heading = '<p id="time" class="time">Session timeout:
            <span id="timer"></span></p><h1 class="h1">__TITLE__</h1>';

    public function __construct() {
        global $CFG;

        $this->startSession();

        if (! isset($_SESSION['settings'])) {
            $this->initSettings();
        }
        $this->settings = $_SESSION['settings'];

        if ($CFG->auth_method == 'HTTP_AUTH') {
            if (isset($this->server['PHP_AUTH_USER'])) {
                $this->settings['user'] = $this->server['PHP_AUTH_USER'];
                $this->settings['loginStatus'] = 'OK';
                if ($CFG->admin_user == $this->settings['user'])
                    $this->settings['admin'] = true;
            }
        }
    }

    private function initSettings() {
        if ('' == session_id()) {
            $this->startSession();
        }

        $this->settings = array(
            'server' => $_SERVER,
            'user' => null,
            'admin' => false,
            'loginStatus' => 'Not logged in',
            'timeout' => 0
        );

        $_SESSION['settings'] = $this->settings;
    }

    private function startSession() {
        global $CFG;

        if (isset($CFG->session_timeout)) {
            $this->timeout = $CFG->session_timeout * 60;
        } else {
            $this->timeout = 20 * 60;
        }

        if (ini_get('session.gc_maxlifetime') != $this->timeout)
            ini_set('session.gc_maxlifetime', $this->timeout);
        if (ini_get('session.cookie_lifetime') != $this->timeout)
            ini_set('session.cookie_lifetime', $this->timeout);

        session_start();
    }

    private function checkSession() {
        global $CFG;

        if ('' == session_id()) {
            $this->startSession();
        }

        $time = $_SERVER['REQUEST_TIME'];
        if (isset($_SESSION['LAST_ACTIVITY']) &&
                ($time - $_SESSION['LAST_ACTIVITY']) >= $this->settings['timeout']) {
            echo 'R_TIME: '.date('c', $time).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY']);
            $this->logout();
        } else {
            $_SESSION['LAST_ACTIVITY'] = $time;
        }
    }

    public function logout() {
        if (ini_get('session.use_cookies')) {
            $params = session_get_cookie_params();
            setcookie(session_name(), '', time() - 42000,
                $params['path'], $params['domain'],
                $params['secure'], $params['httponly']);
        }

        if ('' != session_id()) {
            $_SESSION = array();
            session_unset();
            session_destroy();
        }
        $this->settings = array();
    }

    public function isAdmin() {
        $admin = false;

        if (isset($this->settings['admin'])) {
            $admin = $this->settings['admin'];
        }

        return $admin;
    }

    public function login($user, $pw) {
        global $CFG;
        $result = false;

        if ('' == session_id()) {
            $this->startSession();
        }

        $this->settings['user'] = null;
        $this->settings['admin'] = false;

        $p = explode('@', $user);
        if (count($p) != 2) {
           $this->settings['loginStatus'] = 'Bad username';
        } else {
            $domain = $p[1];
            $dn = "mail=$user,ou=Users,domainName=$domain,$CFG->ldap_base_dn";
            $filter = "(&(objectclass=mailUser)(accountStatus=active)(mail=$user))";
            $ds = @ldap_connect($CFG->ldap_dsn);
            if ($ds) {
                @ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3);
                $r = @ldap_bind($ds, $dn, $pw);
                if ($r) {
                    $sr = @ldap_search($ds, $CFG->ldap_base_dn, $filter, array('mail','domainglobaladmin'));
                    $info = @ldap_get_entries($ds, $sr); // array
                    if ($info['count'] > 0) {
                        $this->settings['user'] = $user;
                        $result = true;
                        $this->settings['loginStatus'] = 'OK';
                        $admin = 'NO';
                        if (isset($info[0]['domainglobaladmin'])) {
                            $admin = $info[0]['domainglobaladmin'][0];
                            $admin = strtoupper($admin);
                        }
                        $this->settings['admin'] = ($admin == 'YES') ? true : false;
                    } else {
                        $this->settings['loginStatus'] = 'Login failed';
                    }
                } else {
                    $this->settings['loginStatus'] = ldap_error($ds);
                }
                @ldap_close($ds);
            } else {
                $this->settings['loginStatus'] = 'Connect to LDAP server failed';
            }
        }

        $_SESSION['settings'] = $this->settings;

        return $result;
    }

    public function getLoginStatus() {
        $status = 'Not logged in';

        if (isset($this->settings['loginStatus'])) {
            $status = $this->settings['loginStatus'];
        }

        return $status;
    }

    public function isLoggedIn() {
        global $CFG;
        $loggedIn = false;

        if ('' == session_id()) {
            $this->startSession();
        }

        $this->checkSession();

        if (isset($this->settings['user'])) {
            if ($this->settings['user'] != null) {
                $loggedIn = true;
            } else {
                if ($CFG->auth_method == 'HTTP_AUTH') {
                    if (isset($this->server['PHP_AUTH_USER'])) {
                        $this->settings['user'] = $this->server['PHP_AUTH_USER'];
                        $loggedIn = true;
                    }
                }
            }
        }

        if ($loggedIn == false) {
            echo '$this->user: '.$this->user.' $_SESSION[\'user\']: '.$_SESSION['user'];
            echo 'R_TIME: '.date('c', $_SERVER['REQUEST_TIME']).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY']);
            //exit;
        }

        $_SESSION['settings'] = $this->settings;

        return $loggedIn;
    }

    public function getUser() {
        $user = null;

        if ($this->isLoggedIn()) {
            $user = $this->settings['user'];
        }

        return $user;
    }

    public function getHeader() {
        return $this->header;
    }

    public function getFooter() {
        return $this->footer;
    }

    public function getHeading() {
        return $this->heading;
    }

    public function setHeading($heading) {
        global $CFG;

        $timeout = $CFG->session_timeout * 60 * 1000;
        $this->heading = str_replace('__TITLE__', $heading, $this->heading);
        $this->header = str_replace('__TITLE__', $heading, $this->header);
        $this->header = str_replace('__ROOT__', $CFG->wwwroot, $this->header);
        $this->header = str_replace('__TIMEOUT__', $timeout, $this->header);
    }

    public function convertContent($code) {
        $table = array(
            'V' => 'Virus',
            'B' => 'Banned',
            'U' => 'Unchecked',
            'S' => 'Spam',
            'Y' => 'Spammy',
            'M' => 'Bad Mime',
            'H' => 'Bad Header',
            'O' => 'Over sized',
            'T' => 'MTA err',
            'C' => 'Clean'
        );

        $string = $table[$code];
        if (empty($string))
            $string = 'Unknown';

        return $string;
    }

}
Commit	Line	Data
6df4b805 MR	1	<?php
	2	/* vim: set ts=4 tw=0 sw=4 noet: */
	3	require_once $CFG->root .'config.php';
	4
3056d117 MR	5	class Utils {
	6
	7	private $settings;
b95d1cdb	8	private $header = '<!DOCTYPE html>
6df4b805 MR	9	<html>
6df4b805 MR	10	<head>
b95d1cdb MR	11	<meta charset="utf-8">
	12	<link rel="stylesheet" href="css/styles.css">
	13	<script>
	14	var timeout = __TIMEOUT__;
	15	</script>
	16	<script src="__ROOT__js/timer.js"></script>
5c7b972e	17	<script src="__ROOT__js/checkbox.js"></script>
b95d1cdb	18	<title>__TITLE__</title>
6df4b805 MR	19	</head>
6df4b805 MR	20	<body>';
bb06f172	21	private $footer = '<p class="footer">Powered by <a href="https://qtadmin.datanom.net"
b706c65f	22	title="Goto QtAdmin homepage">QtAdmin</a>. © 2015 by Michael Rasmussen</p></body></html>';
b95d1cdb MR	23	private $heading = '<p id="time" class="time">Session timeout:
	24	<span id="timer"></span></p><h1 class="h1">__TITLE__</h1>';
	25
3056d117	26	public function __construct() {
b95d1cdb MR	27	global $CFG;
b95d1cdb MR	28
a675b383 MR	29	$this->startSession();
a675b383 MR	30
3056d117 MR	31	if (! isset($_SESSION['settings'])) {
	32	$this->initSettings();
	33	}
	34	$this->settings = $_SESSION['settings'];
	35
	36	if ($CFG->auth_method == 'HTTP_AUTH') {
	37	if (isset($this->server['PHP_AUTH_USER'])) {
	38	$this->settings['user'] = $this->server['PHP_AUTH_USER'];
	39	$this->settings['loginStatus'] = 'OK';
	40	if ($CFG->admin_user == $this->settings['user'])
	41	$this->settings['admin'] = true;
b95d1cdb MR	42	}
b95d1cdb MR	43	}
b95d1cdb MR	44	}
b95d1cdb MR	45
3056d117 MR	46	private function initSettings() {
	47	if ('' == session_id()) {
	48	$this->startSession();
	49	}
b95d1cdb	50
3056d117 MR	51	$this->settings = array(
	52	'server' => $_SERVER,
	53	'user' => null,
	54	'admin' => false,
	55	'loginStatus' => 'Not logged in',
	56	'timeout' => 0
	57	);
6072c905	58
3056d117	59	$_SESSION['settings'] = $this->settings;
6072c905 MR	60	}
6072c905 MR	61
a675b383	62	private function startSession() {
b95d1cdb MR	63	global $CFG;
b95d1cdb MR	64
b95d1cdb	65	if (isset($CFG->session_timeout)) {
7d9c7fe2	66	$this->timeout = $CFG->session_timeout * 60;
b95d1cdb	67	} else {
7d9c7fe2	68	$this->timeout = 20 * 60;
b95d1cdb MR	69	}
b95d1cdb MR	70
7d9c7fe2 MR	71	if (ini_get('session.gc_maxlifetime') != $this->timeout)
	72	ini_set('session.gc_maxlifetime', $this->timeout);
	73	if (ini_get('session.cookie_lifetime') != $this->timeout)
	74	ini_set('session.cookie_lifetime', $this->timeout);
a675b383 MR	75
a675b383 MR	76	session_start();
7d9c7fe2 MR	77	}
7d9c7fe2 MR	78
3056d117	79	private function checkSession() {
7d9c7fe2 MR	80	global $CFG;
7d9c7fe2 MR	81
39023189 MR	82	if ('' == session_id()) {
	83	$this->startSession();
	84	}
	85
b95d1cdb	86	$time = $_SERVER['REQUEST_TIME'];
7d9c7fe2	87	if (isset($_SESSION['LAST_ACTIVITY']) &&
3056d117	88	($time - $_SESSION['LAST_ACTIVITY']) >= $this->settings['timeout']) {
c0519296	89	echo 'R_TIME: '.date('c', $time).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY']);
3056d117	90	$this->logout();
a675b383 MR	91	} else {
	92	$_SESSION['LAST_ACTIVITY'] = $time;
	93	}
b95d1cdb MR	94	}
	95
	96	public function logout() {
b95d1cdb MR	97	if (ini_get('session.use_cookies')) {
	98	$params = session_get_cookie_params();
	99	setcookie(session_name(), '', time() - 42000,
	100	$params['path'], $params['domain'],
	101	$params['secure'], $params['httponly']);
	102	}
39023189 MR	103
	104	if ('' != session_id()) {
	105	$_SESSION = array();
	106	session_unset();
	107	session_destroy();
	108	}
3056d117	109	$this->settings = array();
b95d1cdb MR	110	}
	111
	112	public function isAdmin() {
3056d117 MR	113	$admin = false;
	114
	115	if (isset($this->settings['admin'])) {
	116	$admin = $this->settings['admin'];
	117	}
	118
	119	return $admin;
b95d1cdb MR	120	}
	121
	122	public function login($user, $pw) {
	123	global $CFG;
	124	$result = false;
	125
3056d117 MR	126	if ('' == session_id()) {
	127	$this->startSession();
	128	}
	129
	130	$this->settings['user'] = null;
	131	$this->settings['admin'] = false;
b95d1cdb MR	132
	133	$p = explode('@', $user);
	134	if (count($p) != 2) {
3056d117 MR	135	$this->settings['loginStatus'] = 'Bad username';
	136	} else {
	137	$domain = $p[1];
	138	$dn = "mail=$user,ou=Users,domainName=$domain,$CFG->ldap_base_dn";
	139	$filter = "(&(objectclass=mailUser)(accountStatus=active)(mail=$user))";
	140	$ds = @ldap_connect($CFG->ldap_dsn);
	141	if ($ds) {
	142	@ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3);
	143	$r = @ldap_bind($ds, $dn, $pw);
	144	if ($r) {
	145	$sr = @ldap_search($ds, $CFG->ldap_base_dn, $filter, array('mail','domainglobaladmin'));
	146	$info = @ldap_get_entries($ds, $sr); // array
	147	if ($info['count'] > 0) {
	148	$this->settings['user'] = $user;
	149	$result = true;
	150	$this->settings['loginStatus'] = 'OK';
	151	$admin = 'NO';
	152	if (isset($info[0]['domainglobaladmin'])) {
	153	$admin = $info[0]['domainglobaladmin'][0];
	154	$admin = strtoupper($admin);
	155	}
	156	$this->settings['admin'] = ($admin == 'YES') ? true : false;
	157	} else {
	158	$this->settings['loginStatus'] = 'Login failed';
b95d1cdb	159	}
6df4b805	160	} else {
3056d117	161	$this->settings['loginStatus'] = ldap_error($ds);
6df4b805	162	}
3056d117	163	@ldap_close($ds);
6df4b805	164	} else {
3056d117	165	$this->settings['loginStatus'] = 'Connect to LDAP server failed';
6df4b805	166	}
6df4b805 MR	167	}
6df4b805 MR	168
3056d117	169	$_SESSION['settings'] = $this->settings;
6e081c5f	170
b95d1cdb MR	171	return $result;
	172	}
	173
	174	public function getLoginStatus() {
3056d117 MR	175	$status = 'Not logged in';
	176
	177	if (isset($this->settings['loginStatus'])) {
	178	$status = $this->settings['loginStatus'];
	179	}
	180
	181	return $status;
b95d1cdb MR	182	}
	183
	184	public function isLoggedIn() {
	185	global $CFG;
	186	$loggedIn = false;
	187
3056d117 MR	188	if ('' == session_id()) {
	189	$this->startSession();
	190	}
	191
39023189 MR	192	$this->checkSession();
39023189 MR	193
3056d117 MR	194	if (isset($this->settings['user'])) {
	195	if ($this->settings['user'] != null) {
	196	$loggedIn = true;
	197	} else {
	198	if ($CFG->auth_method == 'HTTP_AUTH') {
	199	if (isset($this->server['PHP_AUTH_USER'])) {
	200	$this->settings['user'] = $this->server['PHP_AUTH_USER'];
	201	$loggedIn = true;
	202	}
b95d1cdb MR	203	}
	204	}
	205	}
	206
85ec6a84	207	if ($loggedIn == false) {
3679a8af	208	echo '$this->user: '.$this->user.' $_SESSION[\'user\']: '.$_SESSION['user'];
18d80742	209	echo 'R_TIME: '.date('c', $_SERVER['REQUEST_TIME']).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY']);
d3c4a10f	210	//exit;
18d80742	211	}
6e081c5f	212
3056d117	213	$_SESSION['settings'] = $this->settings;
6e081c5f	214
b95d1cdb MR	215	return $loggedIn;
	216	}
	217
	218	public function getUser() {
3056d117 MR	219	$user = null;
	220
	221	if ($this->isLoggedIn()) {
	222	$user = $this->settings['user'];
	223	}
	224
	225	return $user;
b95d1cdb MR	226	}
	227
	228	public function getHeader() {
	229	return $this->header;
	230	}
	231
	232	public function getFooter() {
	233	return $this->footer;
	234	}
	235
	236	public function getHeading() {
	237	return $this->heading;
	238	}
	239
	240	public function setHeading($heading) {
	241	global $CFG;
	242
	243	$timeout = $CFG->session_timeout * 60 * 1000;
	244	$this->heading = str_replace('__TITLE__', $heading, $this->heading);
	245	$this->header = str_replace('__TITLE__', $heading, $this->header);
	246	$this->header = str_replace('__ROOT__', $CFG->wwwroot, $this->header);
	247	$this->header = str_replace('__TIMEOUT__', $timeout, $this->header);
	248	}
	249
	250	public function convertContent($code) {
	251	$table = array(
	252	'V' => 'Virus',
	253	'B' => 'Banned',
	254	'U' => 'Unchecked',
	255	'S' => 'Spam',
	256	'Y' => 'Spammy',
	257	'M' => 'Bad Mime',
	258	'H' => 'Bad Header',
	259	'O' => 'Over sized',
	260	'T' => 'MTA err',
	261	'C' => 'Clean'
	262	);
	263
	264	$string = $table[$code];
	265	if (empty($string))
	266	$string = 'Unknown';
	267
	268	return $string;
	269	}
6df4b805	270
6df4b805	271	}