Rev 2299 | Rev 2324 | Go to most recent revision | Blame | Compare with Previous | Last modification | View Log
<?php
# $Id: network.php 2304 2017-06-26 12:56:14Z tom.houdayer $
/* written by steweb57 & Rexy */
/********************
* READ CONF FILES *
*********************/
define ("CONF_FILE", "/usr/local/etc/alcasar.conf");
define ("ETHERS_FILE", "/usr/local/etc/alcasar-ethers");
define ("ETHERS_INFO_FILE", "/usr/local/etc/alcasar-ethers-info");
define ("DNS_LOCAL_FILE", "/usr/local/etc/alcasar-dns-name");
define('LETS_ENCRYPT_FILE', '/usr/local/etc/alcasar-letsencrypt');
$conf_files=array(CONF_FILE,ETHERS_FILE,ETHERS_INFO_FILE,DNS_LOCAL_FILE, LETS_ENCRYPT_FILE);
$reg_ip = '/^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$/';
$reg_ip_cidr = '/^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])(\/([0-9]|[1-2][0-9]|3[0-2]))$/';
$network_modification=0;
foreach ($conf_files as $file){
if (!file_exists($file)){
exit("Requested file ".$file." isn't present");}
if (!is_readable($file)){
exit("Can't read the file ".$file);}
}
# Choice of language
$Language = 'en';
if(isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])){
$Langue = explode(",",$_SERVER['HTTP_ACCEPT_LANGUAGE']);
$Language = strtolower(substr(chop($Langue[0]),0,2)); }
if($Language == 'fr'){
$l_network_title = "Configuration réseau";
$l_extif_legend = " (Interface connectée à Internet)";
$l_intif_legend = " (Réseau de consultation)";
$l_internet_legend = "INTERNET";
$l_ip_mask = "Masque";
$l_ip_router = "Passerelle";
$l_ip_public = "Adresse IP publique";
$l_ip_dns1 = "DNS1";
$l_ip_dns2 = "DNS2";
$l_dhcp_title = "Service DHCP";
$l_dhcp_state = "Mode actuel";
$l_DHCP_on = "actif";
$l_DHCP_off = "inactif";
$l_DHCP_off_explain = "/!\\ Avant d'arrêter le serveur DHCP, vous devez renseigner les paramètres d'un serveur externe (cf. documentation).";
$l_static_dhcp_title = "Réservation d'adresses IP statiques";
$l_mac_address = "Adresse MAC";
$l_ip_address = "Adresse IP";
$l_host_name = "Nom d'hôte";
$l_del = "Supprimer de la liste";
$l_add_to_list = "Ajouter";
$l_apply = "Appliquer les changements";
$l_local_dns = "Résolution local de nom";
$l_import_cert = "Import de certificat";
$l_private_key = "Clé privée (.key) :";
$l_certificate = "Certificat (.crt) :";
$l_server_chain = "Chaîne de certification (si nécéssaire : .crt) :";
$l_default_cert = "Revenir au certificat d'origine";
$l_import = "Importer";
$l_current_certificate = "Certificat actuel";
$l_validated = "Validé par :";
} else {
$l_network_title = "Network configuration";
$l_extif_legend = " (Internet connected interface)";
$l_intif_legend = " (Private network)";
$l_internet_legend = "INTERNET";
$l_ip_mask = "Mask";
$l_ip_router = "Gateway";
$l_ip_public = "Public IP address";
$l_ip_dns1 = "DNS1";
$l_ip_dns2 = "DNS2";
$l_dhcp_title = "DHCP service";
$l_dhcp_state = "Current mode";
$l_DHCP_on = "enabled";
$l_DHCP_off = "disabled";
$l_DHCP_off_explain = "/!\\ Before disabling the DHCP server, you must write the extern DHCP parameters in the config file (see Documentation)";
$l_static_dhcp_title = "Static IP addresses reservation";
$l_mac_address = "MAC Address";
$l_ip_address = "IP Address";
$l_host_name = "Host name";
$l_del = "Delete from list";
$l_add_to_list = "Add";
$l_apply = "Apply changes";
$l_local_dns = "Local name resolution";
$l_import_cert = "Certificate import";
$l_private_key = "Private key (.key) :";
$l_certificate = "Certificate (.crt) :";
$l_server_chain = "Server-chain (if necessary : .crt) :";
$l_default_cert = "Back to default certificate";
$l_import = "Import";
$l_current_certificate = "Current certificate";
$l_validated = "Validated by :";
}
if (isset($_POST['choix'])){$choix=$_POST['choix'];} else {$choix="";}
switch ($choix)
{
case 'DHCP_On' :
exec ("sudo /usr/local/bin/alcasar-dhcp.sh -on");
break;
case 'DHCP_Off' :
exec ("sudo /usr/local/bin/alcasar-dhcp.sh -off");
break;
case 'new_mac' :
if ((trim($_POST['add_mac']) != "") and (trim($_POST['add_ip']) != ""))
{
$tab=file(ETHERS_FILE);
if ($tab) # the file isn't empty
{
$insert="True";
$new_mac_addr=trim($_POST['add_mac'],"\x00..\x20");
$new_ip_addr=trim($_POST['add_ip'],"\x00..\x20");
foreach ($tab as $line) # verify that MAC or IP address doesn't exist
{
$field=explode(" ", $line);
$mac_addr=trim($field[0]);$ip_addr=trim($field[1]);
if (strcasecmp($new_mac_addr, $mac_addr) == 0)
{
$insert="False";
break;
}
if (strcasecmp($new_ip_addr, $ip_addr) == 0)
{
$insert="False";
break;
}
}
if ($insert == "True")
{
$line = $new_mac_addr . " " . $new_ip_addr . "\n";
$pointeur=fopen(ETHERS_FILE,"a");
fwrite ($pointeur, $line);
fclose ($pointeur);
$pointeur=fopen(ETHERS_INFO_FILE,"a");
$line = $new_mac_addr . " " . $new_ip_addr . " #" . trim($_POST['info'],"\x00..\x20") . "\n";
fwrite ($pointeur, $line);
fclose ($pointeur);
exec ("sudo /usr/bin/systemctl reload chilli");
}
}
}
break;
case 'del_mac' :
foreach ($_POST as $key => $value)
{
if ($value == 'on')
{
$ether_file=ETHERS_FILE;
exec("/bin/sed -i \"/^$key/d\" $ether_file");
$ether_file=ETHERS_INFO_FILE;
exec("/bin/sed -i \"/^$key/d\" $ether_file");
exec ("sudo /usr/bin/systemctl reload chilli");
}
}
break;
case 'new_host' :
if ((trim($_POST['add_host']) != "") and (trim($_POST['add_ip']) != ""))
{
$tab=file(DNS_LOCAL_FILE);
$insert="True";
if ($tab) # the file isn't empty
{
foreach ($tab as $line) # verify that host or IP address doesn't exist
{
if (preg_match ('/^address/', $line))
{
$field=explode("/", $line);
$host_name=trim($field[1]);$ip_addr=trim($field[2]);
if (strcasecmp(trim($_POST['add_host']),trim($host_name)) == 0)
{
$insert="False";
break;
}
if (strcasecmp(trim($_POST['add_ip']), trim($ip_addr)) == 0)
{
$insert="False";
break;
}
}
}
if ($insert == "True")
{
$line1 = "address=/".trim($_POST['add_host'])."/".trim($_POST['add_ip'])."\n";
$explode_ip=explode('.',trim($_POST['add_ip']));
$reverse_ip=implode('.',array_reverse($explode_ip));
$line2 = "ptr-record=".$reverse_ip.".in-addr.arpa,".trim($_POST['add_host'])."\n";
$pointeur=fopen(DNS_LOCAL_FILE,"a");
fwrite ($pointeur, $line1);
fwrite ($pointeur, $line2);
fclose ($pointeur);
exec ("sudo /usr/bin/systemctl restart dnsmasq");
exec ("sudo /usr/bin/systemctl restart dnsmasq-blacklist");
exec ("sudo /usr/bin/systemctl restart dnsmasq-whitelist");
}
}
}
break;
case 'del_host' :
foreach ($_POST as $key => $value)
{
if ($value == 'on')
{
$dns_local_file=DNS_LOCAL_FILE;
exec("/bin/sed -i \"/$key/d\" $dns_local_file");
exec ("sudo /usr/bin/systemctl restart dnsmasq");
exec ("sudo /usr/bin/systemctl restart dnsmasq-blacklist");
exec ("sudo /usr/bin/systemctl restart dnsmasq-whitelist");
}
}
break;
}
// Fonction de test de connectivité internet
function internetTest(){
$host = "www.google.fr"; # Google Test
$port = "80";
//var $num; //not used
//var $error; //not used
if (! $sock = @fsockopen($host, $port, $num, $error, 5)) {
return false;
} else {
fclose($sock);
return true;
}
}
/***********************************
* Update ALCASAR_CONF_FILE *
***********************************/
/*******************************************
* Read ALCASAR_CONF_FILE Before *
********************************************/
$file_conf = fopen(CONF_FILE, 'r');
if (!$file_conf) {
exit('Error opening the file '.CONF_FILE);
}
while (!feof($file_conf)) {
$buffer = fgets($file_conf, 4096);
if ((strpos($buffer, '=') !== false) && (substr($buffer, 0, 1) !== '#')) {
$tmp = explode('=', $buffer);
$conf[trim($tmp[0])] = trim($tmp[1]);
}
}
fclose($file_conf);
if(isset($_POST['dns1']) && preg_match($reg_ip,$_POST['dns1']))
{
file_put_contents(CONF_FILE, str_replace('DNS1='.$conf['DNS1'],'DNS1='.$_POST['dns1']."\n",file_get_contents(CONF_FILE)));
$network_modification=1;
}
if(isset($_POST['dns2']) && preg_match($reg_ip,$_POST['dns2']))
{
file_put_contents(CONF_FILE, str_replace('DNS2='.$conf['DNS2'],'DNS2='.$_POST['dns2']."\n",file_get_contents(CONF_FILE)));
$network_modification=1;
}
if(isset($_POST['ip_public']) && preg_match($reg_ip_cidr,$_POST['ip_public']))
{
file_put_contents(CONF_FILE, str_replace('PUBLIC_IP='.$conf['PUBLIC_IP'],'PUBLIC_IP='.$_POST['ip_public']."\n",file_get_contents(CONF_FILE)));
$network_modification=1;
}
if(isset($_POST['ip_gw']) && preg_match($reg_ip,$_POST['ip_gw']))
{
file_put_contents(CONF_FILE, str_replace('GW='.$conf['GW'],'GW='.$_POST['ip_gw']."\n",file_get_contents(CONF_FILE)));
$network_modification=1;
}
if(isset($_POST['ip_private']) && preg_match($reg_ip_cidr,$_POST['ip_private']))
{
file_put_contents(CONF_FILE, str_replace('PRIVATE_IP='.$conf['PRIVATE_IP'],'PRIVATE_IP='.$_POST['ip_private']."\n",file_get_contents(CONF_FILE)));
$network_modification=1;
}
if($network_modification)
{
exec("sudo /usr/local/bin/alcasar-conf.sh -apply");
}
/*******************************************
* Read ALCASAR_CONF_FILE Updated *
********************************************/
$file_conf = fopen(CONF_FILE, 'r');
if (!$file_conf) {
exit('Error opening the file '.CONF_FILE);
}
while (!feof($file_conf)) {
$buffer = fgets($file_conf, 4096);
if ((strpos($buffer, '=') !== false) && (substr($buffer, 0, 1) !== '#')) {
$tmp = explode('=', $buffer);
$conf[trim($tmp[0])] = trim($tmp[1]);
}
}
fclose($file_conf);
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html><!-- written by steweb57 & rexy -->
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title><?php echo $l_network_title; ?></title>
<link rel="stylesheet" href="/css/style.css" type="text/css">
<script type="text/javascript">
function MAC_Control(formulaire){
/*MAC control (upper case and '-' separator*/
var regex1 = /^([0-9a-fA-F]{2}(-|:)){5}[0-9a-fA-F]{2}$/; //vérification adresse mac
if (regex1.test(document.forms[formulaire].add_mac.value)){
document.forms[formulaire].add_mac.value=document.forms[formulaire].add_mac.value.toUpperCase().replace(/:/g, '-');
return true;
} else {
alert("Invalid MAC address");//non internationnalisé
return false;
}
}
</script>
</head>
<body>
<table width="100%" cellspacing="0" cellpadding="0" border="0">
<tr><th><?php echo $l_network_title; ?></th></tr>
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
</table>
<? echo "<form action=".$_SERVER['PHP_SELF']." method='post'>";?>
<table width="100%" cellspacing="0" cellpadding="5" border="1">
<tr><td valign="middle" align="left">
<fieldset>
<legend><?php echo $l_internet_legend;
if (InternetTest()){
echo " <img src='/images/state_ok.gif'>";
$IP_PUB = exec ("wget http://ipecho.net/plain -O - -o /dev/null");}
else {
echo " <img src='/images/state_error.gif'>";
$IP_PUB = "-.-.-.-";}
?></legend>
<table>
<tr><td><?php echo $l_ip_public." : ".$IP_PUB;?></td></tr>
<?php
echo '<tr><td>'.$l_ip_dns1.' <input style="width:120px" type="text" name="dns1" value="'.$conf['DNS1'].'" /></td></tr>';
echo '<tr><td>'.$l_ip_dns2.' <input style="width:120px" type="text" name="dns2" value="'.$conf['DNS2'].'" /></td></tr>';
?>
</table>
</fieldset>
</td><td>
<fieldset>
<legend><?php echo $conf['EXTIF'].$l_extif_legend; ?></legend>
<table>
<?php
echo '<tr><td>'.$l_ip_address.' <input style="width:150px" type="text" name="ip_public" value="'.$conf['PUBLIC_IP'].'" /></td></tr>';
echo '<tr><td>'.$l_ip_router.' <input style="width:120px" type="text" name="ip_gw" value="'.$conf['GW'].'" /></td></tr>';
?>
</table>
</fieldset>
</td><td>
<fieldset>
<legend><?php echo $conf['INTIF'].$l_intif_legend; ?></legend>
<table>
<?php
echo '<tr><td>'.$l_ip_address.'</td><td> <input style="width:150px" type="text" name="ip_private" value="'.$conf['PRIVATE_IP'].'" /></td></tr>';
?>
</table>
</fieldset>
</td></tr>
<tr><td colspan="3" align="center">
<?php echo "<input type='submit' value='$l_apply'>";?>
</td></tr>
</table>
</form>
<table width="100%" cellspacing="0" cellpadding="0" border="0">
<tr><th><?php echo $l_dhcp_title;?></th></tr>
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
</table>
<table width="100%" cellspacing="0" cellpadding="5" border="1">
<tr><td colspan="2" valign="middle" align="left">
<?
$dhcp_state=trim($conf["DHCP"]);
echo "<CENTER><H3>$l_dhcp_state : ${"l_DHCP_".$dhcp_state}</H3></CENTER>";
echo "<FORM action='$_SERVER[PHP_SELF]' method=POST>";
echo "<select name='choix'>";
echo "<option value=\"DHCP_Off\" ";if (!strcmp($dhcp_state,"off")) echo "selected";echo ">$l_DHCP_off";
echo "<option value=\"DHCP_On\" ";if (!strcmp($dhcp_state,"on")) echo "selected";echo ">$l_DHCP_on";
echo "</select>";
echo "<input type=submit value='$l_apply'>";
echo "<br>$l_DHCP_off_explain";
echo "</FORM>";
echo "</td></tr>";
if (strncmp($conf["DHCP"],"on",2) == 0) { require ('network2.php');}
else { echo "</table>"; }
$maxsize=100000;
?>
<table width="100%" cellspacing="0" cellpadding="0" border="0">
<tr><th><?php echo $l_local_dns;?></th></tr>
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
</table>
<table width="100%" cellspacing="0" cellpadding="5" border="1">
<tr><td width="50%" align="center">
<?
echo "<FORM action='network.php' method='POST'>";
echo "<table cellspacing=2 cellpadding=3 border=1>";
echo "<tr><th>$l_host_name<th>$l_ip_address<th>$l_del</tr>";
// Read the "dns_local" file
$line_exist=False;
$tab=file(DNS_LOCAL_FILE);
if ($tab) # not empty
{
foreach ($tab as $line)
{
if (preg_match ('/^address/', $line))
{
$line_exist=True;
$field=explode("/", $line);
$host_name=$field[1];
$ip_addr=$field[2];
echo "<tr><td>$host_name";
echo "<td>$ip_addr";
echo "<td><input type='checkbox' name='$host_name'>";
echo "</tr>";
}
}
}
echo "</table>";
if ($line_exist)
{
echo "<input type='hidden' name='choix' value='del_host'>";
echo "<input type='submit' value='$l_apply'>";
}
echo "</form></td><td width=\"50%\" valign='middle' align='center'>";
echo "<FORM name='new_host' action='network.php' method='POST'>";
echo "<table cellspacing=2 cellpadding=3 border=1>";
echo "<tr><th>$l_host_name<th>$l_ip_address";
?>
<td></td></tr>
<tr><td>Ex. : my_nas</td><td>Ex. : 192.168.182.10</td><td></td></tr>
<tr><td><input type='text' name='add_host' size='17'></td>
<td><input type='text' name='add_ip' size='10'><input type='hidden' name='choix' value='new_host'></td>
<td><? echo "<input type=submit class=button value=\"$l_add_to_list\">"?></td>
</tr></table>
</form>
</td></tr>
</table>
<table width="100%" cellspacing="0" cellpadding="0" border="0">
<tr><th><?php echo $l_import_cert;?></th></tr>
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
</table>
<table width="100%" cellspacing="0" cellpadding="5" border="1">
<tr>
<td width="50%">
<h3>Importer un certificat existant</h3>
<form method="post" action="network.php" enctype="multipart/form-data">
<?php echo $l_private_key;?> <input type="file" name="key"><br>
<?php echo $l_certificate;?> <input type="file" name="crt"><br>
<?php echo $l_server_chain;?> <input type="file" name="sc">
<input type="hidden" name="MAX_FILE_SIZE" value=<?php echo $maxsize;?>><br>
<input type="submit" <?php echo "value=\"".$l_import."\""?>>
</form>
<?php
$certificateInfos = openssl_x509_parse(file_get_contents('/etc/pki/tls/certs/alcasar.crt'));
$cert_expiration_date = date('d-m-Y H:i:s', $certificateInfos['validTo_time_t']);
$domain = $certificateInfos['subject']['CN'];
$organization = (isset($certificateInfos['subject']['O'])) ? $certificateInfos['subject']['O'] : '';
$CAdomain = $certificateInfos['issuer']['CN'];
$CAorganization = (isset($certificateInfos['issuer']['O'])) ? $certificateInfos['issuer']['O'] : '';
?>
<br>
<h3><?= $l_current_certificate ?></h3>
Expiration Date : <?= $cert_expiration_date ?><br>
Common name : <?= $domain ?><br>
Organization : <?= $organization ?><br/>
<h4><?= $l_validated ?></h4>
Common name : <?= $CAdomain ?><br>
Organization : <?= $CAorganization ?><br>
<br>
<form method="post" action="network.php">
<input type="hidden" name="default">
<input type="submit" <?php echo "value=\"".$l_default_cert."\""; if(!file_exists("/etc/pki/tls/certs/alcasar.crt.old") || !file_exists("/etc/pki/tls/private/alcasar.key.old")){ echo " disabled";}?>>
</form>
</td>
<td width="50%" valign="top">
<?php
// Let's Encrypt actions
if ((isset($_POST['action']) && ($_POST['action'] === 'le_issueCert'))) {
// TODO: check ndd & mail format
$email = $_POST['email'];
$domainName = $_POST['domainname'];
exec('sudo /usr/local/bin/alcasar-letsencrypt.sh --issue --email '.escapeshellarg($email).' --domain '.escapeshellarg($domainName), $output, $exitCode);
$cmdResponse = implode("<br>\n", $output);
}
if ((isset($_POST['action']) && ($_POST['action'] === 'le_renewCert'))) {
if ((isset($_POST['recheck'])) && ((!empty($_POST['recheck'])) || (!empty($_POST['recheck_force'])))) {
$forceOpt = (!empty($_POST['recheck_force'])) ? ' --force' : '';
exec('sudo /usr/local/bin/alcasar-letsencrypt.sh --renew' . $forceOpt, $output, $exitCode);
$cmdResponse = implode("<br>\n", $output);
} else if ((isset($_POST['cancel'])) && (!empty($_POST['cancel']))) {
file_put_contents(LETS_ENCRYPT_FILE, preg_replace('/challenge=.*/','challenge=', file_get_contents(LETS_ENCRYPT_FILE)));
file_put_contents(LETS_ENCRYPT_FILE, preg_replace('/domainRequest=.*/','domainRequest=', file_get_contents(LETS_ENCRYPT_FILE)));
}
}
// Read Let's Encrypt configuration file
$file_conf_LE = fopen(LETS_ENCRYPT_FILE, 'r');
if (!$file_conf_LE) {
exit('Error opening the file '.LETS_ENCRYPT_FILE);
}
while (!feof($file_conf_LE)) {
$buffer = fgets($file_conf_LE, 4096);
if ((strpos($buffer, '=') !== false) && (substr($buffer, 0, 1) !== '#')) {
$tmp = explode('=', $buffer);
$LE_conf[trim($tmp[0])] = trim($tmp[1]);
}
}
fclose($file_conf_LE);
// Get step
if (empty($LE_conf['domainRequest'])) {
$step = 1;
} else if (!empty($LE_conf['challenge'])) {
$step = 2;
} else if (($domain === $LE_conf['domainRequest']) && (empty($LE_conf['challenge']))) {
$step = 3;
} else {
$step = 1;
}
?>
<h3>Intégration Let's Encrypt</h3>
<?php if ($step === 1) : ?>
<form method="post" action="network.php">
<input type="hidden" name="action" value="le_issueCert">
Status : Inactif<br>
Email : <input type="text" name="email" placeholder="adresse@email.com"<?= ((!empty($LE_conf['email'])) ? ' value="'.$LE_conf['email'].'"' : '') ?>><br>
Nom de domaine : <input type="text" name="domainname" placeholder="alcasar.domain.tld" required><br>
<input type="submit" name="issue" value="Envoyer"><br>
</form>
<?php elseif ($step === 2): ?>
<form method="post" action="network.php">
<input type="hidden" name="action" value="le_renewCert">
Status : En attente de validation<br>
Nom de domaine : <?= $LE_conf['domainRequest'] ?><br>
Demandé le : <?= date('d-m-Y H:i:s', $LE_conf['dateIssueRequest']) ?><br>
Entrée DNS TXT : "<?= '_acme-challenge.'.$LE_conf['domainRequest'] ?>"<br>
Challenge : "<?= $LE_conf['challenge'] ?>"<br>
<input type="submit" name="recheck" value="Revérifier"> <input type="submit" name="cancel" value="Annuler"><br>
</form>
<?php elseif ($step === 3): ?>
<form method="post" action="network.php">
<input type="hidden" name="action" value="le_renewCert">
Status : Actif<br>
Nom de domaine : <?= $LE_conf['domainRequest'] ?><br>
API : <?= $LE_conf['dnsapi'] ?><br>
Prochain renouvellement : <?= date('d-m-Y', $LE_conf['dateNextRenewal']) ?><br>
<?php if ($LE_conf['dateNextRenewal'] <= date('U')): ?>
<input type="submit" name="recheck" value="Renouveller"><br>
<?php else: ?>
<input type="submit" name="recheck_force" value="Renouveller (forcer)"><br>
<?php endif; ?>
</form>
<?php endif; ?>
<?php if (isset($cmdResponse)): ?>
<p><?= $cmdResponse ?></p>
<?php endif; ?>
</td>
</tr>
</table>
</body>
</html>
<?php
if(isset($_POST['default'])){
echo "$l_default_cert";
exec("sudo alcasar-importcert.sh -d");
}
if(isset($_POST['MAX_FILE_SIZE'])){
$maxsize = 100000;
if(isset($_FILES['key']) && isset($_FILES['crt']) && $_FILES['key']['error'] == 0 && $_FILES['crt']['error'] == 0){
$dest = "/tmp/";
if($_FILES['key']['size'] <= $maxsize && $_FILES['crt']['size'] <= $maxsize)
{
if(pathinfo($_FILES['key']['name'])['extension'] == 'key' && pathinfo($_FILES['crt']['name'])['extension'] == 'crt')
{
$scpath = "";
if(isset($_FILES['sc']) && pathinfo($_FILES['sc']['name'])['extension'] == 'crt')
{
$scpath = $dest."server-chain.crt";
move_uploaded_file($_FILES['sc']['tmp_name'], $scpath);
}
$keypath = $dest."alcasar.key";
$crtpath = $dest."alcasar.crt";
move_uploaded_file($_FILES['key']['tmp_name'], $keypath);
move_uploaded_file($_FILES['crt']['tmp_name'], $crtpath);
exec("sudo alcasar-importcert.sh -i $crtpath -k $keypath -c $scpath");
if (file_exists($crtpath)) unlink($crtpath);
if (file_exists($keypath)) unlink($keypath);
if (file_exists($scpath)) unlink($scpath);
}
}
}
}
?>