2 /* vim: set ts=4 tw=0 sw=4 noet: */
3 require_once $CFG->root
.'config.php';
7 private $timeout = false;
11 private $header = '<!DOCTYPE html>
14 <meta charset="utf-8">
15 <link rel="stylesheet" href="css/styles.css">
17 var timeout = __TIMEOUT__;
19 <script src="__ROOT__js/timer.js"></script>
20 <script src="__ROOT__js/checkbox.js"></script>
21 <title>__TITLE__</title>
24 private $footer = '<p class="footer">Powered by <a href="https://qtadmin.datanom.net"
25 title="Goto QtAdmin homepage">QtAdmin</a>. © 2015 by Michael Rasmussen</p></body></html>';
26 private $heading = '<p id="time" class="time">Session timeout:
27 <span id="timer"></span></p><h1 class="h1">__TITLE__</h1>';
29 public function __construct() {
32 if (isset($CFG->log_level
)) {
33 $this->log_level
= $CFG->log_level
;
38 if (isset($CFG->log_method
)) {
39 $this->log_method
= $CFG->log_method
;
41 $this->log_level
= 'syslog';
44 $this->log("Init Utils", 4);
46 $this->log("__construct[1]: user ".var_export($this->settings
['user'], true), 3);
47 $this->startSession();
48 $this->log("__construct[2]: user ".var_export($this->settings
['user'], true), 3);
50 if (! isset($_SESSION['settings'])) {
51 $this->initSettings();
53 $this->log("__construct[3]: user ".var_export($this->settings
['user'], true), 3);
54 $this->settings
= $_SESSION['settings'];
55 $this->log("__construct[4]: user ".var_export($this->settings
['user'], true), 3);
57 if ($CFG->auth_method
== 'HTTP_AUTH') {
58 if (isset($_SERVER['PHP_AUTH_USER'])) {
59 $this->settings
['user'] = $_SERVER['PHP_AUTH_USER'];
60 $this->settings
['loginStatus'] = 'OK';
61 if ($CFG->admin_user
== $this->settings
['user'])
62 $this->settings
['admin'] = true;
67 private function log($message, $level = 1) {
70 if ($level > $this->log_level
)
77 case 1: $priority = LOG_ERR
; break;
78 case 2: $priority = LOG_WARNING
; break;
79 case 3: $priority = LOG_INFO
; break;
80 case 4: $priority = LOG_DEBUG
; break;
83 switch ($this->log_method
) {
85 if (isset($CFG->log_file
)) {
86 if ($CFG->log_file
[0] == '/') {
87 $file = $CFG->log_file
;
89 $file = $CFG->root
.$CFG->log_file
;
92 $file = $CFG->root
.'qtadmin.log';
94 file_put_contents($file, "[$time]: $message", FILE_APPEND | LOCK_EX
);
97 file_put_contents('php://stderr', "[$time]: $message");
100 syslog($priority, $message);
105 private function initSettings() {
106 $this->log("InitSettings", 4);
108 if ('' == session_id()) {
109 $this->startSession();
112 if (false !== $this->timeout
) {
113 $timeout = $this->timeout
;
118 $this->settings
= array(
121 'loginStatus' => 'Not logged in',
122 'timeout' => $timeout
125 $_SESSION['settings'] = $this->settings
;
128 private function startSession() {
131 $this->log("startSession", 4);
133 if (isset($CFG->session_timeout
)) {
134 $this->timeout
= $CFG->session_timeout
* 60;
136 $this->timeout
= 20 * 60;
139 if (ini_get('session.gc_maxlifetime') != $this->timeout
)
140 ini_set('session.gc_maxlifetime', $this->timeout
);
141 //if (ini_get('session.cookie_lifetime') != $this->timeout)
142 // ini_set('session.cookie_lifetime', $this->timeout);
143 ini_set('session.cookie_lifetime', 0);
148 private function checkSession() {
151 $this->log("checkSession", 4);
153 if ('' == session_id()) {
154 $this->startSession();
157 $time = $_SERVER['REQUEST_TIME'];
158 if (isset($_SESSION['LAST_ACTIVITY']) &&
159 ($time - $_SESSION['LAST_ACTIVITY']) >= $this->settings
['timeout']) {
160 $this->log('R_TIME: '.date('c', $time).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY'].
161 'Test: '.($time - $_SESSION['LAST_ACTIVITY'])).' >= '.$this->settings
['timeout'], 3);
164 $_SESSION['LAST_ACTIVITY'] = $time;
168 public function logout() {
169 $this->log("logout", 4);
171 if (ini_get('session.use_cookies')) {
172 $params = session_get_cookie_params();
173 setcookie(session_name(), '', time() - 42000,
174 $params['path'], $params['domain'],
175 $params['secure'], $params['httponly']);
178 if ('' != session_id()) {
183 $this->settings
= array();
186 public function isAdmin() {
189 $this->log("isAdmin", 4);
191 if (isset($this->settings
['admin'])) {
192 $admin = $this->settings
['admin'];
198 public function login($user, $pw) {
202 $this->log("login", 4);
204 if ('' == session_id()) {
205 $this->startSession();
208 $this->settings
['user'] = null;
209 $this->settings
['admin'] = false;
211 $p = explode('@', $user);
212 if (count($p) != 2) {
213 $this->settings
['loginStatus'] = 'Bad username';
216 $dn = "mail=$user,ou=Users,domainName=$domain,$CFG->ldap_base_dn";
217 $filter = "(&(objectclass=mailUser)(accountStatus=active)(mail=$user))";
218 $ds = @ldap_connect
($CFG->ldap_dsn
);
220 @ldap_set_option
($ds, LDAP_OPT_PROTOCOL_VERSION
, 3);
221 $r = @ldap_bind
($ds, $dn, $pw);
223 $sr = @ldap_search
($ds, $CFG->ldap_base_dn
, $filter, array('mail','domainglobaladmin'));
224 $info = @ldap_get_entries
($ds, $sr); // array
225 if ($info['count'] > 0) {
226 $this->settings
['user'] = $user;
228 $this->settings
['loginStatus'] = 'OK';
230 if (isset($info[0]['domainglobaladmin'])) {
231 $admin = $info[0]['domainglobaladmin'][0];
232 $admin = strtoupper($admin);
234 $this->settings
['admin'] = ($admin == 'YES') ?
true : false;
236 $this->settings
['loginStatus'] = 'Login failed';
239 $this->settings
['loginStatus'] = ldap_error($ds);
243 $this->settings
['loginStatus'] = 'Connect to LDAP server failed';
247 $_SESSION['settings'] = $this->settings
;
252 public function getLoginStatus() {
253 $status = 'Not logged in';
255 $this->log("getLoginStatus", 4);
257 if (isset($this->settings
['loginStatus'])) {
258 $status = $this->settings
['loginStatus'];
264 public function isLoggedIn() {
268 $this->log("isLoggedIn[1]: user ".var_export($this->settings
['user'], true), 3);
270 if ('' == session_id()) {
271 $this->startSession();
274 $this->log("isLoggedIn[2]: user ".var_export($this->settings
['user'], true), 3);
275 $this->checkSession();
276 $this->log("isLoggedIn[3]: user ".var_export($this->settings
['user'], true), 3);
278 if (isset($this->settings
['user'])) {
279 if ($this->settings
['user'] != null) {
282 if ($CFG->auth_method
== 'HTTP_AUTH') {
283 if (isset($_SERVER['PHP_AUTH_USER'])) {
284 $this->settings
['user'] = $_SERVER['PHP_AUTH_USER'];
291 if ($loggedIn == false) {
292 $this->log('$this->settings: '.var_export($this->settings
, true), 3);
293 $this->log('R_TIME: '.date('c', $_SERVER['REQUEST_TIME']).' L_ACT: '.date('c', $_SESSION['LAST_ACTIVITY']), 3);
296 $_SESSION['settings'] = $this->settings
;
301 public function getUser() {
304 $this->log("getUser", 4);
306 if ($this->isLoggedIn()) {
307 $user = $this->settings
['user'];
313 public function getHeader() {
314 $this->log("getHeader", 4);
316 return $this->header
;
319 public function getFooter() {
320 $this->log("getFooter", 4);
322 return $this->footer
;
325 public function getHeading() {
326 $this->log("getHeading", 4);
328 return $this->heading
;
331 public function setHeading($heading) {
334 $this->log("setHeading", 4);
336 $timeout = $CFG->session_timeout
* 60 * 1000;
337 $this->heading
= str_replace('__TITLE__', $heading, $this->heading
);
338 $this->header
= str_replace('__TITLE__', $heading, $this->header
);
339 $this->header
= str_replace('__ROOT__', $CFG->wwwroot
, $this->header
);
340 $this->header
= str_replace('__TIMEOUT__', $timeout, $this->header
);
343 public function convertContent($code) {
344 $this->log("convertContent", 4);
359 $string = $table[$code];