WebSVN – ALCASAR – Diff – /web/acc/admin/network.php

 <?php
-# $Id: network.php 2316 2017-06-30 11:40:00Z tom.houdayer $
+# $Id: network.php 2324 2017-07-10 10:18:59Z tom.houdayer $
 // written by steweb57, Rexy & Tom HOUDAYER
 /********************
 *  READ CONF FILES  *
 					if (file_exists($scpath))  unlink($scpath);
+				}
+			}
+		}
 		break;
+	case 'https_login':	// Set HTTPS login status
+		if ($_POST['https_login'] === 'on') {
+			exec('sudo /usr/local/bin/alcasar-https.sh --on');
+		} else {
+			exec('sudo /usr/local/bin/alcasar-https.sh --off');
+		}
+		header('Location: '.$_SERVER['PHP_SELF']);
+		exit();
+}
 // Network changes
 if ($choix === 'network_change') {
 	$network_modification = false;
 </table>
 <table width="100%" cellspacing="0" cellpadding="5" border="1">
 	<tr><td colspan="2" valign="middle" align="left">
 	<center><h3><?= $l_dhcp_state ?> : <?= ${'l_DHCP_'.$conf['DHCP']} ?></h3></center>
 	<form action="<?= htmlspecialchars($_SERVER['PHP_SELF']) ?>" method="POST">
-		<select name="choix">";
+		<select name="choix">
 			<option value="DHCP_Off"<?= ((!strcmp($conf['DHCP'], 'off')) ? ' selected' : '') ?>><?= $l_DHCP_off ?></option>
 			<option value="DHCP_On"<?= ((!strcmp($conf['DHCP'], 'on')) ? ' selected' : '') ?>><?= $l_DHCP_on ?></option>
 		</select>
 		<input type="submit" value="<?= $l_apply ?>">
 		<br><?= $l_DHCP_off_explain ?>
 	<tr><th><?= $l_import_cert ?></th></tr>
 	<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
 </table>
 <table width="100%" cellspacing="0" cellpadding="5" border="1">
 	<tr>
-		<td width="50%">
+		<td width="50%" valign="top">
-			<h3>Importer un certificat existant</h3>
-			<form method="post" action="<?= htmlspecialchars($_SERVER['PHP_SELF']) ?>" enctype="multipart/form-data">
+			<form method="post" action="<?= htmlspecialchars($_SERVER['PHP_SELF']) ?>">
-				<?= $l_private_key;?> <input type="file" name="key"><br>
+				<input type="hidden" name="choix" value="https_login">
-				<?= $l_certificate;?> <input type="file" name="crt"><br>
+				<span>Autoriser les utilisateurs à se connecter de manière non sécurisée :</span><br>
-				<?= $l_server_chain;?> <input type="file" name="sc"><br>
+				<select name="https_login">
+					<option value="on"<?=  (($conf['HTTPS_LOGIN'] === 'on')  ? ' selected' : '') ?>>Non</option>
-				<input type="hidden" name="choix" value="import_cert">
+					<option value="off"<?= (($conf['HTTPS_LOGIN'] === 'off') ? ' selected' : '') ?>>Oui</option>
+				</select>
-				<input type="submit" value="<?= $l_import ?>">
+				<input type="submit" value="<?= $l_apply ?>"><br>
+				<span>/!\ Les identifiants de connexion seront envoyés en clair.</span>
 			</form>
+			<br>
+			<form method="post" action="<?= htmlspecialchars($_SERVER['PHP_SELF']) ?>">
+				<input type="hidden" name="choix" value="default_cert">
+				<input type="submit" value="<?= $l_default_cert ?>" <?= (!file_exists('/etc/pki/tls/certs/alcasar.crt.old') || !file_exists('/etc/pki/tls/private/alcasar.key.old')) ? ' disabled' : '' ?>>
+			</form>
+		</td>
+		<td width="50%" valign="top">
 			<?php
 			$certificateInfos = openssl_x509_parse(file_get_contents('/etc/pki/tls/certs/alcasar.crt'));
 			$cert_expiration_date = date('d-m-Y H:i:s', $certificateInfos['validTo_time_t']);
 			$domain               = $certificateInfos['subject']['CN'];
 			$organization         = (isset($certificateInfos['subject']['O'])) ? $certificateInfos['subject']['O'] : '';
 			$CAdomain             = $certificateInfos['issuer']['CN'];
 			$CAorganization       = (isset($certificateInfos['issuer']['O'])) ? $certificateInfos['issuer']['O'] : '';
 			?>
-			<br>
-			<hr>
 			<h3><?= $l_current_certificate ?></h3>
 			Expiration Date : <?= $cert_expiration_date ?><br>
 			Common name : <?= $domain ?><br>
 			Organization : <?= $organization ?><br/>
 			<h4><?=  $l_validated ?></h4>
 			Common name : <?= $CAdomain ?><br>
 			Organization : <?= $CAorganization ?><br>
+		</td>
+	</tr>
-			<br>
+	<tr>
+		<td width="50%" valign="top">
+			<h3>Importer un certificat</h3>
-			<form method="post" action="<?= htmlspecialchars($_SERVER['PHP_SELF']) ?>">
+			<form method="post" action="<?= htmlspecialchars($_SERVER['PHP_SELF']) ?>" enctype="multipart/form-data">
+				<?= $l_private_key;?> <input type="file" name="key"><br>
+				<?= $l_certificate;?> <input type="file" name="crt"><br>
+				<?= $l_server_chain;?> <input type="file" name="sc"><br>
-				<input type="hidden" name="choix" value="default_cert">
+				<input type="hidden" name="choix" value="import_cert">
-				<input type="submit" value="<?= $l_default_cert ?>" <?= (!file_exists('/etc/pki/tls/certs/alcasar.crt.old') || !file_exists('/etc/pki/tls/private/alcasar.key.old')) ? ' disabled' : '' ?>>
+				<input type="submit" value="<?= $l_import ?>">
 			</form>
 		</td>
 		<td width="50%" valign="top">
 			<?php
 			// Get step
 			} else {
 				$step = 1;
+			}
 			?>
 			<h3>Intégration Let's Encrypt</h3>
-			<?php if ($step === 1) : ?>
+			<?php if ($step === 1): ?>
 				<form method="post" action="<?= htmlspecialchars($_SERVER['PHP_SELF']) ?>">
 					<input type="hidden" name="choix" value="le_issueCert">
 					Status : Inactif<br>
 					Email : <input type="text" name="email" placeholder="adresse@email.com"<?= ((!empty($LE_conf['email'])) ? ' value="'.$LE_conf['email'].'"' : '') ?>><br>
 					Nom de domaine : <input type="text" name="domainname" placeholder="alcasar.domain.tld" required><br>

Subversion Repositories ALCASAR

(root)/web/acc/admin/network.php @ 2979 – Rev 2316 → 2324