WebSVN – ALCASAR – Diff – /web/acc/admin/auth_exceptions.php


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><!-- written by Rexy - 3abtux -->
<HEAD>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<TITLE>Exceptions</TITLE>
<link rel="stylesheet" href="/css/style.css" type="text/css">
</HEAD>
<body>
<?
/********************
*  TEST CONF FILES  *
*********************/
define ("DOMAIN_ALLOWED_LIST", "/usr/local/etc/alcasar-uamdomain");
define ("IP_ALLOWED_LIST", "/usr/local/etc/alcasar-uamallowed");
$conf_files=array(DOMAIN_ALLOWED_LIST,IP_ALLOWED_LIST);
foreach ($conf_files as $file){
if (!file_exists($file)){
	exit("Requested file ".$file." isn't present");}
if (!is_readable($file)){
	exit("Can't read the file ".$file);}
}
$domain_allowed_list="/usr/local/etc/alcasar-uamdomain";
$url_allowed_list="/usr/local/etc/alcasar-uamallowed";
# Choice of language
$Language = 'en';
if(isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])){
	$Langue = explode(",",$_SERVER['HTTP_ACCEPT_LANGUAGE']);
	$Language = strtolower(substr(chop($Langue[0]),0,2)); }
if($Language == 'fr'){
	$l_error_open_file	= "Erreur d'ouverture du fichier";
	$l_trusted_domain	= "Noms de domaine Internet de confiance";
	$l_domain		= "Noms de domaine";
	$l_comment_explain	= "Lien affiché dans la page d'interception";
	$l_comment_explain2	= "Laissez vide si non affiché";
	$l_remove		= "Retirer de la liste";
	$l_trusted_ip		= "adresses IP de confiance";
	$l_trusted_equipments	= "Equipements de consultation de confiance";
	$l_comment		= "Commentaires";
	$l_trusted_domain_explain = "Gérez ici les noms de domaine Internet pouvant &ecirc;tre joints sans authentification";
	$l_trusted_equipments_explain	= "Pour gérer les équipements du réseau de consultation pouvant accéder à Internet sans aêtre interceptés : lisez la documentation d'exploitation (ch.4.7c)";
	$l_trusted_ip_explain	= "Gérez ici les adresses IP de systèmes ou de réseaux pouvant être joints sans authentification";
	$l_submit		= "Enregistrer";
	$l_add_to_list		= "Ajouter à la liste";
	$l_apply		= "Appliquer les changements";
}
else {
	$l_error_open_file	= "File open error";
	$l_trusted_domain	= "Trusted Internet domain names";
	$l_domain		= "Domain names";
	$l_comment_explain	= "Link displayed in intercept page";
	$l_comment_explain2	= "Let empty to not display link";
	$l_remove		= "Remove from list";
	$l_trusted_ip		= "Trusted Internet domain and IP addresses";
	$l_trusted_equipments	= "Trusted consultation equipements";
	$l_trusted_equipments_explain	= "To manage consultation equipments allowed to be connected to Internet withoout interception, read exploitation documentation (ch.4.7c)";
	$l_comment		= "Comments";
	$l_trusted_domain_explain = "Manage Internet domain names that can be joined without authentication";
	$l_trusted_ip_explain	= "Manage systems or networks IP addresses that can be joined without authentication";
	$l_submit		= "Submit";
	$l_add_to_list		= "Add to list";
	$l_apply		= "Apply changes";
}
if (isset($_POST['choix'])){ 
	switch ($_POST['choix'])
	{
	case 'new_uamdomain' :
	if (trim($_POST['add_uamdomain']) != "") 
		{
		$tab=file(DOMAIN_ALLOWED_LIST);
		$insert = true;
		if ($tab) // file isn't empty
			{
			foreach ($tab as $line) // test if domain address doesn't already exist
				{
				$domain=explode("\"", $line);
				if (strcmp(trim($_POST['add_uamdomain']),$domain[1]) == 0)
			       		{
					$insert = false;
					break;
					}
				}
			}
		if ($insert == true) 
			{
			$line ="\nuamdomain=\"" . trim($_POST['add_uamdomain']) . "\" #" . trim($_POST['add_domain_comment']);
			$pointeur=fopen(DOMAIN_ALLOWED_LIST,"a");
			fwrite ($pointeur, $line);
			fclose ($pointeur);
			exec ("sudo /usr/local/bin/alcasar-file-clean.sh");
			exec ("sudo service chilli restart");
			}
		}
	break;
	case 'change_uamdomain' :
	$tab=file(DOMAIN_ALLOWED_LIST);
	if ($tab)
		{
		$pointeur=fopen(DOMAIN_ALLOWED_LIST,"w+");
		foreach ($tab as $ligne)
			{
			$uamdomain1=explode("\"", $ligne);
			$remove_line = false;
			foreach ($_POST as $key => $value)
				{
				$key = str_replace ("_",".",$key); // dot are replace by '_' in post request
				if (strstr($key,'del-'))
					{
					$uamdomain2 = str_replace('del-','',$key);
					if (strcmp($uamdomain1[1],$uamdomain2) == 0)
				       		{
						$remove_line = True;
						break;
						}
					}
				}
			if (! $remove_line)
				{
				fwrite($pointeur,$ligne);
				}
			}
		fclose($pointeur);
		}
	exec ("sudo service chilli restart");
	break;
	case 'new_ip' :
	if (trim($_POST['add_ip']) != "") 
		{
		$tab=file(IP_ALLOWED_LIST);
		$insert = true;
		if ($tab) // file isn't empty
			{
			foreach ($tab as $line) // test if domain address doesn't already exist
				{
				$ip=explode("\"", $line);
				if (strcmp(trim($_POST['add_ip']),$ip[1]) == 0)
			       		{
					$insert = false;
					break;
					}
				}
			}
		if ($insert == true) 
			{
			$line ="\nuamallowed=\"" . trim($_POST['add_ip']) ."\" #" . trim($_POST['add_ip_comment']);
			$pointeur=fopen(IP_ALLOWED_LIST,"a");
			fwrite ($pointeur, $line);
			fclose ($pointeur);
			exec ("sudo /usr/local/bin/alcasar-file-clean.sh");
			exec ("sudo service chilli restart");
			}
		}
	break;
	case 'change_ip' :
	$tab=file(IP_ALLOWED_LIST);
	if ($tab)
		{
		$pointeur=fopen(IP_ALLOWED_LIST,"w+");
		foreach ($tab as $ligne)
			{
			$ip1=explode("\"", $ligne);
			$remove_line = false;
			foreach ($_POST as $key => $value)
				{
				$key = str_replace ("_",".",$key); // dot are replace by '_' in post request
				if (strstr($key,'del-'))
					{
					$ip2 = str_replace('del-','',$key);
					if (strcmp($ip1[1],$ip2) == 0)
				       		{
						$remove_line = True;
						break;
						}
					}
				}
			if (! $remove_line)
				{
				fwrite($pointeur,$ligne);
				}
			}
		fclose($pointeur);
		}
	exec ("sudo service chilli restart");
	break;
	}
}
?>
<TABLE width="100%" border=0 cellspacing=0 cellpadding=0>
<tr><th><?echo "$l_trusted_domain";?></th></tr>
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
</table>
<table width="100%" border=1 cellspacing=0 cellpadding=1>
<tr><td colspan=2 align="center">
<?
echo "$l_trusted_domain_explain</td></tr>";
echo "<tr><td align='center' valign='middle'>";
echo "<table cellspacing=2 cellpadding=2 border=1>";
echo "<FORM action='$_SERVER[PHP_SELF]' method='POST'>";
echo "<tr><th>$l_domain<th>$l_comment_explain<th>$l_remove</tr>";
// Read the "Domain alowed" file
$tab=file(DOMAIN_ALLOWED_LIST);
if ($tab)  # the file isn't empty
	{
	foreach ($tab as $line)
		{
		if (trim($line) != '') # the line isn't empty
			{
			$domain_allowed=explode("#", $line);
			$uamdomain=trim($domain_allowed[0],"#");
			$domain=explode("\"", $uamdomain);
			echo "<tr><td>$domain[1]";
			echo "<td>";
			if (isset ($domain_allowed[1])) {
				echo trim($domain_allowed[1]);}
			else echo "&nbsp";
			echo "<td>";
			echo "<input type='checkbox' name='del-$domain[1]'>";
			echo "</tr>";
			}
		}
	}
echo "</table>";
if ($tab)
	{
	echo "<input type='hidden' name='choix' value='change_uamdomain'>";
	echo "<input type='submit' value='$l_apply'>";
	}
?>
</form>
</td><td valign='middle' align='center'>
<form action='<?echo"$_SERVER[PHP_SELF]"?>' method='POST'>
<table cellspacing=2 cellpadding=3 border=1>
<tr><th><?echo "$l_domain</th><th>$l_comment_explain";?>
<td></td></tr>
<tr><td>exemple1 : www.mydomain.com <br>exemple2 : .yourdomain.net</td>
<td>My domain<br><?echo "$l_comment_explain2";?></td></tr>
<tr><td><input type='text' name='add_uamdomain' size='20'></td>
<td><input type='text' name='add_domain_comment' size='15'></td>
<input type='hidden' name='choix' value='new_uamdomain'>
<td><input type='submit' value='<?echo "$l_add_to_list";?>'></td>
</tr></table>
</form>
</td></tr>
</table>
<table width="100%" border="0" cellspacing="0" cellpadding="0">
	<tr><th><?php echo "$l_trusted_ip" ;?></th></tr>
	<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
 
 
</table>
<table width="100%" border=1 cellspacing=0 cellpadding=1>
<tr><td colspan=2 align="center">
<?
echo "$l_trusted_ip_explain</td></tr>";
echo "<tr><td align='center' valign='middle'>";
echo "<table cellspacing=2 cellpadding=2 border=1>";
echo "<FORM action='$_SERVER[PHP_SELF]' method='POST'>";
echo "<tr><th>$l_trusted_ip<th>$l_comment<th>$l_remove</tr>";
// Read the "ip alowed" file
$tab=file(IP_ALLOWED_LIST);
if ($tab)  # the file isn't empty
	{
	foreach ($tab as $line)
		{
		if (trim($line) != '') # the line isn't empty
			{
			$ip_allowed=explode("#", $line);
			$ip_a=trim($ip_allowed[0],"#");
			$ip=explode("\"", $ip_a);
			echo "<tr><td>$ip[1]";
			echo "<td>";
			if (isset($ip_allowed[1]))
				echo trim($ip_allowed[1]);
			else echo "&nbsp;";
			echo "<td><input type='checkbox' name='del-$ip[1]'>";
			echo "</tr>";
			}
		}
	}
echo "</table>";
if ($tab)
	{
	echo "<input type='hidden' name='choix' value='change_ip'>";
	echo "<input type='submit' value='$l_apply'>";
	}
?>
</form>
</td><td valign='middle' align='center'>
<form action='<?echo "$_SERVER[PHP_SELF]"?>' method='POST'>
<table cellspacing=2 cellpadding=3 border=1>
<tr><th><?echo "$l_trusted_ip</th><th>$l_comment";?>
<td></td></tr>
<tr><td>exemple1 : 170.25.23.10 <br>exemple2 : 15.20.20.0/16</td>
<td>my_web_server <br>my_dmz</td>
<tr><td><input type='text' name='add_ip' size='20'></td>
<td><input type='text' name='add_ip_comment' size='15'></td>
<input type='hidden' name='choix' value='new_ip'>
<td><input type='submit' value='<?echo "$l_add_to_list";?>'></td>
</tr></table>
</form>
</td></tr>
</table>
<table width="100%" border="0" cellspacing="0" cellpadding="0">
	<tr><th><?php echo "$l_trusted_equipments";?></th></tr>
	<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
</table>
<table width="100%" border=1 cellspacing=0 cellpadding=1>
<tr><td colspan=2 align="center">
<?echo "$l_trusted_equipments_explain";?>
</td></tr>
</table>
</BODY>
</HTML>
 

Rev 871	Rev 885
1	`<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">`	1	`<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">`
2	`<HTML><!-- written by Rexy - 3abtux -->`	2	`<HTML><!-- written by Rexy - 3abtux -->`
3	`<HEAD>`	3	`<HEAD>`
4	`<meta http-equiv="Content-Type" content="text/html; charset=utf-8">`	4	`<meta http-equiv="Content-Type" content="text/html; charset=utf-8">`
5	`<TITLE>Exceptions</TITLE>`	5	`<TITLE>Exceptions</TITLE>`
6	`<link rel="stylesheet" href="/css/style.css" type="text/css">`	6	`<link rel="stylesheet" href="/css/style.css" type="text/css">`
7	`</HEAD>`	7	`</HEAD>`
8	`<body>`	8	`<body>`
9	`<?`	9	`<?`
10	`/********************`	10	`/********************`
11	`* TEST CONF FILES *`	11	`* TEST CONF FILES *`
12	`*********************/`	12	`*********************/`
13	`define ("DOMAIN_ALLOWED_LIST", "/usr/local/etc/alcasar-uamdomain");`	13	`define ("DOMAIN_ALLOWED_LIST", "/usr/local/etc/alcasar-uamdomain");`
14	`define ("IP_ALLOWED_LIST", "/usr/local/etc/alcasar-uamallowed");`	14	`define ("IP_ALLOWED_LIST", "/usr/local/etc/alcasar-uamallowed");`
15	`$conf_files=array(DOMAIN_ALLOWED_LIST,IP_ALLOWED_LIST);`	15	`$conf_files=array(DOMAIN_ALLOWED_LIST,IP_ALLOWED_LIST);`
16	`foreach ($conf_files as $file){`	16	`foreach ($conf_files as $file){`
17	`if (!file_exists($file)){`	17	`if (!file_exists($file)){`
18	`exit("Requested file ".$file." isn't present");}`	18	`exit("Requested file ".$file." isn't present");}`
19	`if (!is_readable($file)){`	19	`if (!is_readable($file)){`
20	`exit("Can't read the file ".$file);}`	20	`exit("Can't read the file ".$file);}`
21	`}`	21	`}`
22	`$domain_allowed_list="/usr/local/etc/alcasar-uamdomain";`	22	`$domain_allowed_list="/usr/local/etc/alcasar-uamdomain";`
23	`$url_allowed_list="/usr/local/etc/alcasar-uamallowed";`	23	`$url_allowed_list="/usr/local/etc/alcasar-uamallowed";`
24	`# Choice of language`	24	`# Choice of language`
25	`$Language = 'en';`	25	`$Language = 'en';`
26	`if(isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])){`	26	`if(isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])){`
27	`$Langue = explode(",",$_SERVER['HTTP_ACCEPT_LANGUAGE']);`	27	`$Langue = explode(",",$_SERVER['HTTP_ACCEPT_LANGUAGE']);`
28	`$Language = strtolower(substr(chop($Langue[0]),0,2)); }`	28	`$Language = strtolower(substr(chop($Langue[0]),0,2)); }`
29	`if($Language == 'fr'){`	29	`if($Language == 'fr'){`
30	`$l_error_open_file = "Erreur d'ouverture du fichier";`	30	`$l_error_open_file = "Erreur d'ouverture du fichier";`
31	`$l_trusted_domain = "Noms de domaine Internet de confiance";`	31	`$l_trusted_domain = "Noms de domaine Internet de confiance";`
32	`$l_domain = "Noms de domaine";`	32	`$l_domain = "Noms de domaine";`
33	`$l_comment_explain = "Lien affiché dans la page d'interception";`	33	`$l_comment_explain = "Lien affiché dans la page d'interception";`
34	`$l_comment_explain2 = "Laissez vide si non affiché";`	34	`$l_comment_explain2 = "Laissez vide si non affiché";`
35	`$l_remove = "Retirer de la liste";`	35	`$l_remove = "Retirer de la liste";`
36	`$l_trusted_ip = "adresses IP de confiance";`	36	`$l_trusted_ip = "adresses IP de confiance";`
-		37	`$l_trusted_equipments = "Equipements de consultation de confiance";`
37	`$l_comment = "Commentaires";`	38	`$l_comment = "Commentaires";`
38	`$l_trusted_domain_explain = "Gérez ici les noms de domaine Internet pouvant être joints sans authentification";`	39	`$l_trusted_domain_explain = "Gérez ici les noms de domaine Internet pouvant être joints sans authentification";`
-		40	`$l_trusted_equipments_explain = "Pour gérer les équipements du réseau de consultation pouvant accéder à Internet sans aêtre interceptés : lisez la documentation d'exploitation (ch.4.7c)";`
39	`$l_trusted_ip_explain = "Gérez ici les adresses IP de systèmes ou de réseaux pouvant être joints sans authentification";`	41	`$l_trusted_ip_explain = "Gérez ici les adresses IP de systèmes ou de réseaux pouvant être joints sans authentification";`
40	`$l_submit = "Enregistrer";`	42	`$l_submit = "Enregistrer";`
41	`$l_add_to_list = "Ajouter à la liste";`	43	`$l_add_to_list = "Ajouter à la liste";`
42	`$l_apply = "Appliquer les changements";`	44	`$l_apply = "Appliquer les changements";`
43	`}`	45	`}`
44	`else {`	46	`else {`
45	`$l_error_open_file = "File open error";`	47	`$l_error_open_file = "File open error";`
46	`$l_trusted_domain = "Trusted Internet domain names";`	48	`$l_trusted_domain = "Trusted Internet domain names";`
47	`$l_domain = "Domain names";`	49	`$l_domain = "Domain names";`
48	`$l_comment_explain = "Link displayed in intercept page";`	50	`$l_comment_explain = "Link displayed in intercept page";`
49	`$l_comment_explain2 = "Let empty to not display link";`	51	`$l_comment_explain2 = "Let empty to not display link";`
50	`$l_remove = "Remove from list";`	52	`$l_remove = "Remove from list";`
51	`$l_trusted_ip = "Trusted Internet domain and IP addresses";`	53	`$l_trusted_ip = "Trusted Internet domain and IP addresses";`
-		54	`$l_trusted_equipments = "Trusted consultation equipements";`
-		55	`$l_trusted_equipments_explain = "To manage consultation equipments allowed to be connected to Internet withoout interception, read exploitation documentation (ch.4.7c)";`
52	`$l_comment = "Comments";`	56	`$l_comment = "Comments";`
53	`$l_trusted_domain_explain = "Manage Internet domain names that can be joined without authentication";`	57	`$l_trusted_domain_explain = "Manage Internet domain names that can be joined without authentication";`
54	`$l_trusted_ip_explain = "Manage systems or networks IP addresses that can be joined without authentication";`	58	`$l_trusted_ip_explain = "Manage systems or networks IP addresses that can be joined without authentication";`
55	`$l_submit = "Submit";`	59	`$l_submit = "Submit";`
56	`$l_add_to_list = "Add to list";`	60	`$l_add_to_list = "Add to list";`
57	`$l_apply = "Apply changes";`	61	`$l_apply = "Apply changes";`
58	`}`	62	`}`
59	`if (isset($_POST['choix'])){`	63	`if (isset($_POST['choix'])){`
60	`switch ($_POST['choix'])`	64	`switch ($_POST['choix'])`
61	`{`	65	`{`
62	`case 'new_uamdomain' :`	66	`case 'new_uamdomain' :`
63	`if (trim($_POST['add_uamdomain']) != "")`	67	`if (trim($_POST['add_uamdomain']) != "")`
64	`{`	68	`{`
65	`$tab=file(DOMAIN_ALLOWED_LIST);`	69	`$tab=file(DOMAIN_ALLOWED_LIST);`
66	`$insert = true;`	70	`$insert = true;`
67	`if ($tab) // file isn't empty`	71	`if ($tab) // file isn't empty`
68	`{`	72	`{`
69	`foreach ($tab as $line) // test if domain address doesn't already exist`	73	`foreach ($tab as $line) // test if domain address doesn't already exist`
70	`{`	74	`{`
71	`$domain=explode("\"", $line);`	75	`$domain=explode("\"", $line);`
72	`if (strcmp(trim($_POST['add_uamdomain']),$domain[1]) == 0)`	76	`if (strcmp(trim($_POST['add_uamdomain']),$domain[1]) == 0)`
73	`{`	77	`{`
74	`$insert = false;`	78	`$insert = false;`
75	`break;`	79	`break;`
76	`}`	80	`}`
77	`}`	81	`}`
78	`}`	82	`}`
79	`if ($insert == true)`	83	`if ($insert == true)`
80	`{`	84	`{`
81	`$line ="\nuamdomain=\"" . trim($_POST['add_uamdomain']) . "\" #" . trim($_POST['add_domain_comment']);`	85	`$line ="\nuamdomain=\"" . trim($_POST['add_uamdomain']) . "\" #" . trim($_POST['add_domain_comment']);`
82	`$pointeur=fopen(DOMAIN_ALLOWED_LIST,"a");`	86	`$pointeur=fopen(DOMAIN_ALLOWED_LIST,"a");`
83	`fwrite ($pointeur, $line);`	87	`fwrite ($pointeur, $line);`
84	`fclose ($pointeur);`	88	`fclose ($pointeur);`
85	`exec ("sudo /usr/local/bin/alcasar-file-clean.sh");`	89	`exec ("sudo /usr/local/bin/alcasar-file-clean.sh");`
86	`exec ("sudo service chilli restart");`	90	`exec ("sudo service chilli restart");`
87	`}`	91	`}`
88	`}`	92	`}`
89	`break;`	93	`break;`
90	`case 'change_uamdomain' :`	94	`case 'change_uamdomain' :`
91	`$tab=file(DOMAIN_ALLOWED_LIST);`	95	`$tab=file(DOMAIN_ALLOWED_LIST);`
92	`if ($tab)`	96	`if ($tab)`
93	`{`	97	`{`
94	`$pointeur=fopen(DOMAIN_ALLOWED_LIST,"w+");`	98	`$pointeur=fopen(DOMAIN_ALLOWED_LIST,"w+");`
95	`foreach ($tab as $ligne)`	99	`foreach ($tab as $ligne)`
96	`{`	100	`{`
97	`$uamdomain1=explode("\"", $ligne);`	101	`$uamdomain1=explode("\"", $ligne);`
98	`$remove_line = false;`	102	`$remove_line = false;`
99	`foreach ($_POST as $key => $value)`	103	`foreach ($_POST as $key => $value)`
100	`{`	104	`{`
101	`$key = str_replace ("_",".",$key); // dot are replace by '_' in post request`	105	`$key = str_replace ("_",".",$key); // dot are replace by '_' in post request`
102	`if (strstr($key,'del-'))`	106	`if (strstr($key,'del-'))`
103	`{`	107	`{`
104	`$uamdomain2 = str_replace('del-','',$key);`	108	`$uamdomain2 = str_replace('del-','',$key);`
105	`if (strcmp($uamdomain1[1],$uamdomain2) == 0)`	109	`if (strcmp($uamdomain1[1],$uamdomain2) == 0)`
106	`{`	110	`{`
107	`$remove_line = True;`	111	`$remove_line = True;`
108	`break;`	112	`break;`
109	`}`	113	`}`
110	`}`	114	`}`
111	`}`	115	`}`
112	`if (! $remove_line)`	116	`if (! $remove_line)`
113	`{`	117	`{`
114	`fwrite($pointeur,$ligne);`	118	`fwrite($pointeur,$ligne);`
115	`}`	119	`}`
116	`}`	120	`}`
117	`fclose($pointeur);`	121	`fclose($pointeur);`
118	`}`	122	`}`
119	`exec ("sudo service chilli restart");`	123	`exec ("sudo service chilli restart");`
120	`break;`	124	`break;`
121	`case 'new_ip' :`	125	`case 'new_ip' :`
122	`if (trim($_POST['add_ip']) != "")`	126	`if (trim($_POST['add_ip']) != "")`
123	`{`	127	`{`
124	`$tab=file(IP_ALLOWED_LIST);`	128	`$tab=file(IP_ALLOWED_LIST);`
125	`$insert = true;`	129	`$insert = true;`
126	`if ($tab) // file isn't empty`	130	`if ($tab) // file isn't empty`
127	`{`	131	`{`
128	`foreach ($tab as $line) // test if domain address doesn't already exist`	132	`foreach ($tab as $line) // test if domain address doesn't already exist`
129	`{`	133	`{`
130	`$ip=explode("\"", $line);`	134	`$ip=explode("\"", $line);`
131	`if (strcmp(trim($_POST['add_ip']),$ip[1]) == 0)`	135	`if (strcmp(trim($_POST['add_ip']),$ip[1]) == 0)`
132	`{`	136	`{`
133	`$insert = false;`	137	`$insert = false;`
134	`break;`	138	`break;`
135	`}`	139	`}`
136	`}`	140	`}`
137	`}`	141	`}`
138	`if ($insert == true)`	142	`if ($insert == true)`
139	`{`	143	`{`
140	`$line ="\nuamallowed=\"" . trim($_POST['add_ip']) ."\" #" . trim($_POST['add_ip_comment']);`	144	`$line ="\nuamallowed=\"" . trim($_POST['add_ip']) ."\" #" . trim($_POST['add_ip_comment']);`
141	`$pointeur=fopen(IP_ALLOWED_LIST,"a");`	145	`$pointeur=fopen(IP_ALLOWED_LIST,"a");`
142	`fwrite ($pointeur, $line);`	146	`fwrite ($pointeur, $line);`
143	`fclose ($pointeur);`	147	`fclose ($pointeur);`
144	`exec ("sudo /usr/local/bin/alcasar-file-clean.sh");`	148	`exec ("sudo /usr/local/bin/alcasar-file-clean.sh");`
145	`exec ("sudo service chilli restart");`	149	`exec ("sudo service chilli restart");`
146	`}`	150	`}`
147	`}`	151	`}`
148	`break;`	152	`break;`
149	`case 'change_ip' :`	153	`case 'change_ip' :`
150	`$tab=file(IP_ALLOWED_LIST);`	154	`$tab=file(IP_ALLOWED_LIST);`
151	`if ($tab)`	155	`if ($tab)`
152	`{`	156	`{`
153	`$pointeur=fopen(IP_ALLOWED_LIST,"w+");`	157	`$pointeur=fopen(IP_ALLOWED_LIST,"w+");`
154	`foreach ($tab as $ligne)`	158	`foreach ($tab as $ligne)`
155	`{`	159	`{`
156	`$ip1=explode("\"", $ligne);`	160	`$ip1=explode("\"", $ligne);`
157	`$remove_line = false;`	161	`$remove_line = false;`
158	`foreach ($_POST as $key => $value)`	162	`foreach ($_POST as $key => $value)`
159	`{`	163	`{`
160	`$key = str_replace ("_",".",$key); // dot are replace by '_' in post request`	164	`$key = str_replace ("_",".",$key); // dot are replace by '_' in post request`
161	`if (strstr($key,'del-'))`	165	`if (strstr($key,'del-'))`
162	`{`	166	`{`
163	`$ip2 = str_replace('del-','',$key);`	167	`$ip2 = str_replace('del-','',$key);`
164	`if (strcmp($ip1[1],$ip2) == 0)`	168	`if (strcmp($ip1[1],$ip2) == 0)`
165	`{`	169	`{`
166	`$remove_line = True;`	170	`$remove_line = True;`
167	`break;`	171	`break;`
168	`}`	172	`}`
169	`}`	173	`}`
170	`}`	174	`}`
171	`if (! $remove_line)`	175	`if (! $remove_line)`
172	`{`	176	`{`
173	`fwrite($pointeur,$ligne);`	177	`fwrite($pointeur,$ligne);`
174	`}`	178	`}`
175	`}`	179	`}`
176	`fclose($pointeur);`	180	`fclose($pointeur);`
177	`}`	181	`}`
178	`exec ("sudo service chilli restart");`	182	`exec ("sudo service chilli restart");`
179	`break;`	183	`break;`
180	`}`	184	`}`
181	`}`	185	`}`
182	`?>`	186	`?>`
183	`<TABLE width="100%" border=0 cellspacing=0 cellpadding=0>`	187	`<TABLE width="100%" border=0 cellspacing=0 cellpadding=0>`
184	`<tr><th><?echo "$l_trusted_domain";?></th></tr>`	188	`<tr><th><?echo "$l_trusted_domain";?></th></tr>`
185	`<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>`	189	`<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>`
186	`</table>`	190	`</table>`
187	`<table width="100%" border=1 cellspacing=0 cellpadding=1>`	191	`<table width="100%" border=1 cellspacing=0 cellpadding=1>`
188	`<tr><td colspan=2 align="center">`	192	`<tr><td colspan=2 align="center">`
189	`<?`	193	`<?`
190	`echo "$l_trusted_domain_explain</td></tr>";`	194	`echo "$l_trusted_domain_explain</td></tr>";`
191	`echo "<tr><td align='center' valign='middle'>";`	195	`echo "<tr><td align='center' valign='middle'>";`
192	`echo "<table cellspacing=2 cellpadding=2 border=1>";`	196	`echo "<table cellspacing=2 cellpadding=2 border=1>";`
193	`echo "<FORM action='$_SERVER[PHP_SELF]' method='POST'>";`	197	`echo "<FORM action='$_SERVER[PHP_SELF]' method='POST'>";`
194	`echo "<tr><th>$l_domain<th>$l_comment_explain<th>$l_remove</tr>";`	198	`echo "<tr><th>$l_domain<th>$l_comment_explain<th>$l_remove</tr>";`
195	`// Read the "Domain alowed" file`	199	`// Read the "Domain alowed" file`
196	`$tab=file(DOMAIN_ALLOWED_LIST);`	200	`$tab=file(DOMAIN_ALLOWED_LIST);`
197	`if ($tab) # the file isn't empty`	201	`if ($tab) # the file isn't empty`
198	`{`	202	`{`
199	`foreach ($tab as $line)`	203	`foreach ($tab as $line)`
200	`{`	204	`{`
201	`if (trim($line) != '') # the line isn't empty`	205	`if (trim($line) != '') # the line isn't empty`
202	`{`	206	`{`
203	`$domain_allowed=explode("#", $line);`	207	`$domain_allowed=explode("#", $line);`
204	`$uamdomain=trim($domain_allowed[0],"#");`	208	`$uamdomain=trim($domain_allowed[0],"#");`
205	`$domain=explode("\"", $uamdomain);`	209	`$domain=explode("\"", $uamdomain);`
206	`echo "<tr><td>$domain[1]";`	210	`echo "<tr><td>$domain[1]";`
207	`echo "<td>";`	211	`echo "<td>";`
208	`if (isset ($domain_allowed[1])) {`	212	`if (isset ($domain_allowed[1])) {`
209	`echo trim($domain_allowed[1]);}`	213	`echo trim($domain_allowed[1]);}`
210	`else echo "&nbsp";`	214	`else echo "&nbsp";`
211	`echo "<td>";`	215	`echo "<td>";`
212	`echo "<input type='checkbox' name='del-$domain[1]'>";`	216	`echo "<input type='checkbox' name='del-$domain[1]'>";`
213	`echo "</tr>";`	217	`echo "</tr>";`
214	`}`	218	`}`
215	`}`	219	`}`
216	`}`	220	`}`
217	`echo "</table>";`	221	`echo "</table>";`
218	`if ($tab)`	222	`if ($tab)`
219	`{`	223	`{`
220	`echo "<input type='hidden' name='choix' value='change_uamdomain'>";`	224	`echo "<input type='hidden' name='choix' value='change_uamdomain'>";`
221	`echo "<input type='submit' value='$l_apply'>";`	225	`echo "<input type='submit' value='$l_apply'>";`
222	`}`	226	`}`
223	`?>`	227	`?>`
224	`</form>`	228	`</form>`
225	`</td><td valign='middle' align='center'>`	229	`</td><td valign='middle' align='center'>`
226	`<form action='<?echo"$_SERVER[PHP_SELF]"?>' method='POST'>`	230	`<form action='<?echo"$_SERVER[PHP_SELF]"?>' method='POST'>`
227	`<table cellspacing=2 cellpadding=3 border=1>`	231	`<table cellspacing=2 cellpadding=3 border=1>`
228	`<tr><th><?echo"$l_domain</th><th>$l_comment_explain";?>`	232	`<tr><th><?echo "$l_domain</th><th>$l_comment_explain";?>`
229	`<td></td></tr>`	233	`<td></td></tr>`
230	`<tr><td>exemple1 : www.mydomain.com <br>exemple2 : .yourdomain.net</td>`	234	`<tr><td>exemple1 : www.mydomain.com <br>exemple2 : .yourdomain.net</td>`
231	`<td>My domain<br><?echo"$l_comment_explain2";?></td></tr>`	235	`<td>My domain<br><?echo "$l_comment_explain2";?></td></tr>`
232	`<tr><td><input type='text' name='add_uamdomain' size='20'></td>`	236	`<tr><td><input type='text' name='add_uamdomain' size='20'></td>`
233	`<td><input type='text' name='add_domain_comment' size='15'></td>`	237	`<td><input type='text' name='add_domain_comment' size='15'></td>`
234	`<input type='hidden' name='choix' value='new_uamdomain'>`	238	`<input type='hidden' name='choix' value='new_uamdomain'>`
235	`<td><input type='submit' value='<?echo"$l_add_to_list";?>'></td>`	239	`<td><input type='submit' value='<?echo "$l_add_to_list";?>'></td>`
236	`</tr></table>`	240	`</tr></table>`
237	`</form>`	241	`</form>`
238	`</td></tr>`	242	`</td></tr>`
239	`</table>`	243	`</table>`
240	`<TABLE width="100%" border="0" cellspacing="0" cellpadding="0">`	244	`<table width="100%" border="0" cellspacing="0" cellpadding="0">`
241	`<tr><th><?php echo $l_trusted_ip ;?></th></tr>`	245	`<tr><th><?php echo "$l_trusted_ip" ;?></th></tr>`
242	`<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>`	246	`<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>`
243	`</TABLE>`	-
244	`<TABLE width="100%" border=0 cellspacing=0 cellpadding=1>`	-
245	`</TABLE>`	247	`</table>`
246	`<table width="100%" border=1 cellspacing=0 cellpadding=1>`	248	`<table width="100%" border=1 cellspacing=0 cellpadding=1>`
247	`<tr><td colspan=2 align="center">`	249	`<tr><td colspan=2 align="center">`
248	`<?`	250	`<?`
249	`echo "$l_trusted_ip_explain</td></tr>";`	251	`echo "$l_trusted_ip_explain</td></tr>";`
250	`echo "<tr><td align='center' valign='middle'>";`	252	`echo "<tr><td align='center' valign='middle'>";`
251	`echo "<table cellspacing=2 cellpadding=2 border=1>";`	253	`echo "<table cellspacing=2 cellpadding=2 border=1>";`
252	`echo "<FORM action='$_SERVER[PHP_SELF]' method='POST'>";`	254	`echo "<FORM action='$_SERVER[PHP_SELF]' method='POST'>";`
253	`echo "<tr><th>$l_trusted_ip<th>$l_comment<th>$l_remove</tr>";`	255	`echo "<tr><th>$l_trusted_ip<th>$l_comment<th>$l_remove</tr>";`
254	`// Read the "ip alowed" file`	256	`// Read the "ip alowed" file`
255	`$tab=file(IP_ALLOWED_LIST);`	257	`$tab=file(IP_ALLOWED_LIST);`
256	`if ($tab) # the file isn't empty`	258	`if ($tab) # the file isn't empty`
257	`{`	259	`{`
258	`foreach ($tab as $line)`	260	`foreach ($tab as $line)`
259	`{`	261	`{`
260	`if (trim($line) != '') # the line isn't empty`	262	`if (trim($line) != '') # the line isn't empty`
261	`{`	263	`{`
262	`$ip_allowed=explode("#", $line);`	264	`$ip_allowed=explode("#", $line);`
263	`$ip_a=trim($ip_allowed[0],"#");`	265	`$ip_a=trim($ip_allowed[0],"#");`
264	`$ip=explode("\"", $ip_a);`	266	`$ip=explode("\"", $ip_a);`
265	`echo "<tr><td>$ip[1]";`	267	`echo "<tr><td>$ip[1]";`
266	`echo "<td>";`	268	`echo "<td>";`
267	`if (isset($ip_allowed[1]))`	269	`if (isset($ip_allowed[1]))`
268	`echo trim($ip_allowed[1]);`	270	`echo trim($ip_allowed[1]);`
269	`else echo " ";`	271	`else echo " ";`
270	`echo "<td><input type='checkbox' name='del-$ip[1]'>";`	272	`echo "<td><input type='checkbox' name='del-$ip[1]'>";`
271	`echo "</tr>";`	273	`echo "</tr>";`
272	`}`	274	`}`
273	`}`	275	`}`
274	`}`	276	`}`
275	`echo "</table>";`	277	`echo "</table>";`
276	`if ($tab)`	278	`if ($tab)`
277	`{`	279	`{`
278	`echo "<input type='hidden' name='choix' value='change_ip'>";`	280	`echo "<input type='hidden' name='choix' value='change_ip'>";`
279	`echo "<input type='submit' value='$l_apply'>";`	281	`echo "<input type='submit' value='$l_apply'>";`
280	`}`	282	`}`
281	`?>`	283	`?>`
282	`</form>`	284	`</form>`
283	`</td><td valign='middle' align='center'>`	285	`</td><td valign='middle' align='center'>`
284	`<form action='<?echo"$_SERVER[PHP_SELF]"?>' method='POST'>`	286	`<form action='<?echo "$_SERVER[PHP_SELF]"?>' method='POST'>`
285	`<table cellspacing=2 cellpadding=3 border=1>`	287	`<table cellspacing=2 cellpadding=3 border=1>`
286	`<tr><th><?echo"$l_trusted_ip</th><th>$l_comment";?>`	288	`<tr><th><?echo "$l_trusted_ip</th><th>$l_comment";?>`
287	`<td></td></tr>`	289	`<td></td></tr>`
288	`<tr><td>exemple1 : 170.25.23.10 <br>exemple2 : 15.20.20.0/16</td>`	290	`<tr><td>exemple1 : 170.25.23.10 <br>exemple2 : 15.20.20.0/16</td>`
289	`<td>my_web_server <br>my_dmz</td>`	291	`<td>my_web_server <br>my_dmz</td>`
290	`<tr><td><input type='text' name='add_ip' size='20'></td>`	292	`<tr><td><input type='text' name='add_ip' size='20'></td>`
291	`<td><input type='text' name='add_ip_comment' size='15'></td>`	293	`<td><input type='text' name='add_ip_comment' size='15'></td>`
292	`<input type='hidden' name='choix' value='new_ip'>`	294	`<input type='hidden' name='choix' value='new_ip'>`
293	`<td><input type='submit' value='<?echo"$l_add_to_list";?>'></td>`	295	`<td><input type='submit' value='<?echo "$l_add_to_list";?>'></td>`
294	`</tr></table>`	296	`</tr></table>`
295	`</form>`	297	`</form>`
296	`</td></tr>`	298	`</td></tr>`
-		299	`</table>`
-		300	`<table width="100%" border="0" cellspacing="0" cellpadding="0">`
-		301	`<tr><th><?php echo "$l_trusted_equipments";?></th></tr>`
-		302	`<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>`
-		303	`</table>`
-		304	`<table width="100%" border=1 cellspacing=0 cellpadding=1>`
-		305	`<tr><td colspan=2 align="center">`
-		306	`<?echo "$l_trusted_equipments_explain";?>`
-		307	`</td></tr>`
297	`</table>`	308	`</table>`
298	`</BODY>`	309	`</BODY>`
299	`</HTML>`	310	`</HTML>`
300		311

Subversion Repositories ALCASAR

(root)/web/acc/admin/auth_exceptions.php – Rev 871 → 885