h44z/OpenVPN_Management_GUI
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

VPN-Management-GUI 2.0.3 porting start

Browse Source
This commit is contained in:
Christoph Haas
2012-07-16 19:30:19 +00:00
commit d3b0130655
545 changed files with 19128 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

119
Admin/Modules/Usermanagement/include/adduser.php Executable file
View File

@@ -0,0 +1,119 @@
<?php
session_start();
include ($_SERVER["DOCUMENT_ROOT"]."/Site/checkadmin.php");
require($_SERVER["DOCUMENT_ROOT"]."/Site/mysql.php");
$ovpnkeydir = db_getconfval("ovpnkeydir");
$mserv = db_getconfval("mserv");
$muser = db_getconfval("muser");
$mpass = db_getconfval("mpass");
$mname = db_getconfval("mname");
$mrecv = db_getconfval("sitename");
$moduleurl = $_REQUEST["path"];
// Aufbau der Datenbankverbindung
require($_SERVER["DOCUMENT_ROOT"]."/Config/_dbconfig_.php");
@$y = mysql_connect($MYSQL_HOST,$MYSQL_USER,$MYSQL_PASS);
@$x = mysql_select_db($MYSQL_DATABASE);
if (empty($x))
{
die ("Could not connect to database!");
}
// Definition der Benutzer
$benutzer["IsAdmin"] = mysql_real_escape_string($_REQUEST["isadmin"]);
$benutzer["Email"] = mysql_real_escape_string(substr($_REQUEST["email"],0,39)); // safty xD
$benutzer["Nickname"] = mysql_real_escape_string($_REQUEST["nickname"]);
$benutzer["Kennwort"] = mysql_real_escape_string($_REQUEST["pwd"]);
$benutzer["Nachname"] = mysql_real_escape_string($_REQUEST["nachname"]);
$benutzer["Vorname"] = mysql_real_escape_string($_REQUEST["vorname"]);
$benutzer["VPN"] = mysql_real_escape_string($_REQUEST["vpn"]);
$benutzer["NovLogin"] = mysql_real_escape_string($_REQUEST["novlogin"]);
$benutzer["NovPass"] = mysql_real_escape_string($_REQUEST["novpass"]);
$benutzer["VPNId"] = "-";
// Sie können an dieser Stelle beliebig viele Benutzer anlegen.
// Achten Sie dabei nur auf die Fortführung der Nummer.
//+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
if($benutzer["VPN"] == "1")
{
//create certificate
//die($ovpnkeydir);
chdir ($ovpnkeydir);
$File = "keys/serial";
$fh = fopen($File, 'r');
$benutzer["VPNId"] = fread($fh, filesize($File));
fclose($fh);
exec(escapeshellcmd("./srcvar " .$benutzer["Email"]. " " .$benutzer["Nickname"]. " " .$benutzer["VPNId"]));
chdir ("/var/www/Admin/");
}
else
{
$benutzer["VPNId"] = "-";
}
//+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
// Daten eintragen
// SQL-Anweisung erstellen
$sql = "INSERT INTO ".
"userdata (IsAdmin, VPNId, Nickname, Kennwort, Nachname, Vorname, Email, NovLogin, NovPass) ".
"VALUES ('".$benutzer["IsAdmin"]."', '".
$benutzer["VPNId"]."', '".
$benutzer["Nickname"]."', '".
md5 ($benutzer["Kennwort"])."', '".
$benutzer["Nachname"]."', '".
$benutzer["Vorname"]."', '".
$benutzer["Email"]."', '".
$benutzer["NovLogin"]."', '".
$benutzer["NovPass"]."')";
//echo $sql;
mysql_query ($sql);
if (mysql_affected_rows ($y) > 0)
{
mysql_close();
// Send Confirmation Mail
if(db_getconfval("withmail") == "1")
{
require_once "Mail.php";
$from = $mrecv." <".$mname.">";
$to = $benutzer["Vorname"]." ".$benutzer["Nachname"]." <".$benutzer["Email"].">";
$subject = "VPN Account created!";
$body =
"Dear ".$benutzer["Vorname"]." ".$benutzer["Nachname"].",\n\nyour ".$mrecv." account has been created!\nYou can now login on with this credentials:\n\n#########################################################\nUsername: ".$benutzer["Nickname"]."\nPassword: ".$benutzer["Kennwort"]."\n#########################################################\nYou can change your password in the user section.\n\nAll files, programms and other stuff can be found on the homepage!\nTo start using your VPN Connection you have to download your config-file and your certificates!\nInstall everything as it is described in the README.txt!\n\nHave fun!!!\n\nIf you have questions write me an email!\n\n".$mrecv."\n";
$host = $mserv;
$username = $muser;
$password = $mpass;
$headers = array ( 'From' => $from,
'To' => $to,
'Subject' => $subject);
$smtp = Mail::factory('smtp',
array ( 'host' => $host,
'auth' => true,
'username' => $username,
'password' => $password));
$mail = $smtp->send($to, $headers, $body);
if (PEAR::isError($mail))
{
// evt deaktivieren
echo("<p>" . $mail->getMessage() . "</p>");
}
}
// Finish
mysql_close();
header ("Location: ".$moduleurl."&uebergabe2=1");
}
else
{
mysql_close();
echo "Fehler beim Anlegen des Benutzers.<br>\n";
}
?>

66
Admin/Modules/Usermanagement/include/adduser_index.php Executable file
View File

@@ -0,0 +1,66 @@
<?php
include ($_SERVER["DOCUMENT_ROOT"]."/Site/checkadmin.php");
?>
<!-- MAIN CONTENT BEGINN ################################################################################ -->
<h1><b>User Management</b></h1>
<h2>Add new User:</h2>
<form action="/Admin/Modules/Usermanagement/include/adduser.php" method="post" onsubmit="return chkFormular()">
<input type="hidden" name="path" size="50" value="<?php echo $moduleurl;?>">
<table>
<tr>
<td>Admin:</td>
<td>
<select name="isadmin" size=1>
<option value="0">No</option>
<option value="1">Yes</option>
</select>
</td>
</tr>
<tr>
<td>With VPN:</td>
<td>
<select name="vpn" size=1>
<option value="0">No</option>
<option value="1">Yes</option>
</select>
</td>
</tr>
<tr>
<td>Nickname:</td>
<td><input type="text" name="nickname" size="40"><td>
</tr>
<tr>
<td>Vorname:</td>
<td><input type="text" name="vorname" size="40"><td>
</tr>
<tr>
<td>Nachname:</td>
<td><input type="text" name="nachname" size="40"><td>
</tr>
<tr>
<td>Email Address:</td>
<td><input type="text" name="email" size="40"><td>
<td>(max 40 Char!!)</td>
</tr>
<tr>
<td>Passwort:</td>
<td><input type="password" name="pwd" size="40"></td>
</tr>
<tr>
<td>Novell Login:</td>
<td><input type="text" name="novlogin" size="50"></td>
</tr>
<tr>
<td>Novell Password:</td>
<td><input type="password" name="novpass" size="50"></td>
</tr>
</table>
<input type="submit" value="Add User">
</form>
<p> <a href="<?php echo $moduleurl;?>"><b>Back</b></a></p>
<!-- MAIN CONTENT END ################################################################################### -->

51
Admin/Modules/Usermanagement/include/deleteuser.php Executable file
View File

@@ -0,0 +1,51 @@
<?php
session_start();
include ($_SERVER["DOCUMENT_ROOT"]."/Site/checkadmin.php");
require($_SERVER["DOCUMENT_ROOT"]."/Site/mysql.php");
$ovpnkeydir = db_getconfval("ovpnkeydir");
// Aufbau der Datenbankverbindung
require($_SERVER["DOCUMENT_ROOT"]."/Config/_dbconfig_.php");
@$y = mysql_connect($MYSQL_HOST,$MYSQL_USER,$MYSQL_PASS);
@$x = mysql_select_db($MYSQL_DATABASE);
if (empty($x))
{
die ("Could not connect to database!");
}
// Definition der Benutzer
$benutzer["Nickname"] = mysql_real_escape_string($_REQUEST["nickname"]);
$moduleurl = $_REQUEST["path"];
// Get VPN id
$sql = "SELECT VPNId FROM userdata WHERE Nickname='".$benutzer["Nickname"]."'";
$result = mysql_query ($sql);
$benutzer["VPNId"] = mysql_fetch_array($result,MYSQL_ASSOC);
//echo $sql;
//echo $benutzer["VPNId"]["VPNId"];
//revoke certificate
chdir ("$ovpnkeydir");
exec(escapeshellcmd("./revoke " .$benutzer["VPNId"]["VPNId"]));
chdir ("/var/www/Admin/");
// Daten eintragen
// SQL-Anweisung erstellen
$sql = "DELETE FROM userdata WHERE Nickname = '" . $benutzer["Nickname"]."'";
mysql_query ($sql);
if (mysql_affected_rows ($y) > 0)
{
mysql_close();
header ("Location: ".$moduleurl."&uebergabe2=3");
}
else
{
mysql_close();
echo "Fehler beim Loeschen des Benutzers.<br>\n";
}
?>

21
Admin/Modules/Usermanagement/include/deleteuser_index.php Executable file
View File

@@ -0,0 +1,21 @@
<?php
include ($_SERVER["DOCUMENT_ROOT"]."/Site/checkadmin.php");
?>
<!-- MAIN CONTENT BEGINN ################################################################################ -->
<h1><b>User Management</b></h1>
<h2>Delete User:</h2>
<form action="/Admin/Modules/Usermanagement/include/deleteuser.php" method="post">
<input type="hidden" name="path" size="50" value="<?php echo $moduleurl;?>">
<table>
<tr>
<td>Nickname:</td>
<td><input type="text" name="nickname" size="20"><td>
</tr>
</table>
<input type="submit" value="Delete User">
</form>
<p> <a href="<?php echo $moduleurl;?>"><b>Back</b></a></p>
<!-- MAIN CONTENT END ################################################################################### -->

113
Admin/Modules/Usermanagement/include/edituser.php Executable file
View File

@@ -0,0 +1,113 @@
<?php
session_start();
include ($_SERVER["DOCUMENT_ROOT"]."/Site/checkadmin.php");
$moduleurl = $_REQUEST["path"];
// Aufbau der Datenbankverbindung
require($_SERVER["DOCUMENT_ROOT"]."/Config/_dbconfig_.php");
@$y = mysql_connect($MYSQL_HOST,$MYSQL_USER,$MYSQL_PASS);
@$x = mysql_select_db($MYSQL_DATABASE);
if (empty($x))
{
die ("Could not connect to database!");
}
// Definition der Benutzer
$benutzer["IsAdmin"] = mysql_real_escape_string($_REQUEST["isadmin"]);
$benutzer["VPNId"] = mysql_real_escape_string($_REQUEST["vpnid"]);
$benutzer["Nickname"] = mysql_real_escape_string($_REQUEST["nickname"]);
$benutzer["Kennwort"] = mysql_real_escape_string($_REQUEST["pwd"]);
$benutzer["Nachname"] = mysql_real_escape_string($_REQUEST["nachname"]);
$benutzer["Vorname"] = mysql_real_escape_string($_REQUEST["vorname"]);
$benutzer["Email"] = mysql_real_escape_string($_REQUEST["email"]);
$benutzer["NovLogin"] = mysql_real_escape_string($_REQUEST["novlogin"]);
$benutzer["NovPass"] = mysql_real_escape_string($_REQUEST["novpass"]);
// Daten eintragen
// SQL-Anweisung erstellen
$strcount = 0;
$sql = "UPDATE userdata SET ";
if($benutzer["IsAdmin"] != "")
{
$sql = $sql . "IsAdmin='".$benutzer["IsAdmin"]."' ";
$strcount = 1;
}
if($benutzer["VPNId"] != "")
{
if(isset($strcount))
{
$sql = $sql . ",";
}
$sql = $sql . "VPNId='". $benutzer["VPNId"]."' ";
$strcount = 1;
}
if($benutzer["Kennwort"] != "")
{
if(isset($strcount))
{
$sql = $sql . ",";
}
$sql = $sql . "Kennwort='". md5 ($benutzer["Kennwort"])."' ";
$strcount = 1;
}
if($benutzer["Nachname"] != "")
{
if(isset($strcount))
{
$sql = $sql . ",";
}
$sql = $sql . "Nachname='". $benutzer["Nachname"]."' ";
$strcount = 1;
}
if($benutzer["Vorname"] != "")
{
if(isset($strcount))
{
$sql = $sql . ",";
}
$sql = $sql . "Vorname='". $benutzer["Vorname"]."' ";
$strcount = 1;
}
if($benutzer["Email"] != "")
{
if(isset($strcount))
{
$sql = $sql . ",";
}
$sql = $sql . "Email='". $benutzer["Email"]."' ";
$strcount = 1;
}
if($benutzer["NovLogin"] != "")
{
if(isset($strcount))
{
$sql = $sql . ",";
}
$sql = $sql . "NovLogin='". $benutzer["NovLogin"]."' ";
$strcount = 1;
}
if($benutzer["NovPass"] != "")
{
if(isset($strcount))
{
$sql = $sql . ",";
}
$sql = $sql . "NovPass='". $benutzer["NovPass"]."' ";
$strcount = 1;
}
$sql = $sql . "WHERE Nickname = '" . $benutzer["Nickname"]."'";
//die($sql);
mysql_query ($sql);
if (mysql_affected_rows ($y) > 0)
{
mysql_close();
header ("Location: ".$moduleurl."&uebergabe2=2");
}
else
{
mysql_close();
echo "Fehler beim Editieren des Benutzers. (Nothing changed?)<br>\n";
}
?>

61
Admin/Modules/Usermanagement/include/edituser_index.php Executable file
View File

@@ -0,0 +1,61 @@
<?php
include ($_SERVER["DOCUMENT_ROOT"]."/Site/checkadmin.php");
$nick = $_POST["nickname"];
?>
<!-- MAIN CONTENT BEGINN ################################################################################ -->
<h1><b>User Management</b></h1>
<h2>Edit User:</h2>
<form action="/Admin/Modules/Usermanagement/include/edituser.php" method="post">
<input type="hidden" name="path" size="50" value="<?php echo $moduleurl;?>">
<table>
<tr>
<td>Admin:</td>
<td>
<select name="isadmin" size=1>
<option value="0">No</option>
<option value="1">Yes</option>
</select>
</td>
</tr>
<tr>
<td>Nickname:</td>
<td><input type="text" name="nickname" <?php if($nick != "") echo " value=".$nick;?> size=" 50"><td>
<td>*</td>
</tr>
<tr>
<td>VPN Id:</td>
<td><input type="text" name="vpnid" size="50"><td>
</tr>
<tr>
<td>Vorname:</td>
<td><input type="text" name="vorname" size="50"><td>
</tr>
<tr>
<td>Nachname:</td>
<td><input type="text" name="nachname" size="50"><td>
</tr>
<tr>
<td>Email Address:</td>
<td><input type="text" name="email" size="50"><td>
</tr>
<tr>
<td>Passwort:</td>
<td><input type="password" name="pwd" size="50"></td>
</tr>
<tr>
<td>Novell Login:</td>
<td><input type="text" name="novlogin" size="50"><td>
</tr>
<tr>
<td>Novell Passwort:</td>
<td><input type="password" name="novpass" size="50"></td>
</tr>
</table>
<input type="submit" value="Edit User">
</form>
* = Required
<p> <a href="<?php echo $moduleurl;?>"><b>Back</b></a></p>
<!-- MAIN CONTENT END ################################################################################### -->

95
Admin/Modules/Usermanagement/include/viewuser_index.php Executable file
View File

@@ -0,0 +1,95 @@
<?php
include ($_SERVER["DOCUMENT_ROOT"]."/Site/checkadmin.php");
include ($_SERVER["DOCUMENT_ROOT"]."/Config/_dbconfig_.php");
@mysql_connect($MYSQL_HOST,$MYSQL_USER,$MYSQL_PASS);
@$x=mysql_select_db($MYSQL_DATABASE);
if (empty($x))
{
echo "ERROR 0x01, Failed to connect to database!<br>";
exit;
}
$sort = mysql_real_escape_string($_POST["dirsort"]); //$_GET["sort"];
$by = mysql_real_escape_string($_POST["sortby"]); //$_GET["by"];
$search= mysql_real_escape_string($_POST["search"]);
if($sort== "") $sort = "DESC"; //$_GET["sort"];
if($by=="") $by = "Id"; //$_GET["by"];
?>
<!-- MAIN CONTENT BEGINN ################################################################################ -->
<form action="<?php echo $PHP_SELF; ?>" method="post">
<br>
<select name="dirsort" size=1>
<option <?php if($sort=="ASC") echo "selected";?> value="ASC">Up</option>
<option <?php if($sort=="DESC") echo "selected";?> value="DESC">Down</option>
</select>
<select name="sortby" size=1>
<option <?php if($by=="Id") echo "selected";?> value="Id">ID</option>
<option <?php if($by=="IsAdmin") echo "selected";?> value="IsAdmin">IsAdmin</option>
<option <?php if($by=="VPNId") echo "selected";?> value="VPNId">VPNId</option>
<option <?php if($by=="Vorname") echo "selected";?> value="Vorname">First Name</option>
<option <?php if($by=="Nachname") echo "selected";?> value="Nachname">Last Name</option>
<option <?php if($by=="Nickname") echo "selected";?> value="Nickname">Nickname</option>
<option <?php if($by=="Email") echo "selected";?> value="Email">Email Address</option>
</select>
Search User:<input type="text" name="search" size="20" <?php if($search !="") echo "value=".$search;?> ></td>
<input type="submit" value="go!">
</form>
<!------ Sorting Leiste Start-->
<?php
// MYsql befehl basteln
$sql = "SELECT * FROM userdata WHERE Id LIKE '%".$search."%' OR VPNId LIKE '%".$search."%' OR Nickname LIKE '%".$search."%' OR Vorname LIKE '%".$search."%' ORDER BY $by $sort;";
$result = mysql_query($sql);
echo "<br><table border=1>";
if($by != "")
{
echo "<tr><td>ID</td><td>IsAdmin</td><td>VPNId</td><td>Nickname</td><td>Firstname</td><td>Lastname</td><td>Email Address</td>
<td>Novell Login</td><td>Edit</td><td>Delete</td>
</tr>\n";
}
// ------------------------------------------------ Mysql lesen
if ($result)
{
while ($ar=mysql_fetch_array($result,MYSQL_ASSOC))
{
echo "<tr><td>", $ar["Id"],
"</td><td>",$ar["IsAdmin"],
"</td><td>",$ar["VPNId"],
"</td><td>",$ar["Nickname"],
"</td><td>",$ar["Vorname"],
"</td><td>",$ar["Nachname"],
"</td><td>",$ar["Email"],
"</td><td>",$ar["NovLogin"],
"</td>",
"<form action=".$moduleurl."&uebergabe=2 method=post>",
"<input type=hidden name=nickname value=".$ar["Nickname"]." size=20><td>",
"<input type=submit value=X>",
"</form>",
"<form action=/Admin/Modules/Usermanagement/include/deleteuser.php method=post>",
"<input type=hidden name=path value=".$moduleurl." size=20>",
"<input type=hidden name=nickname value=".$ar["Nickname"]." size=20><td bgcolor=#FA5858>",
"<input type=submit value=X>",
"</form>",
"</tr>\n";
}
}
else
{
echo "<br>";
}
echo "</table>";
mysql_close();
?>
<p> <a href="<?php echo $moduleurl;?>"><b>Back</b></a></p>
<!-- END CONTENT BEGINN ################################################################################# -->
<?php
include("footer.php");
?>

64
Admin/Modules/Usermanagement/index.php Executable file
View File

@@ -0,0 +1,64 @@
<?php
include ($_SERVER["DOCUMENT_ROOT"]."/Site/checkadmin.php");
$moduleurl = $_SERVER["REQUEST_URI"];
$urlcut = strpos($moduleurl, "&");
if($urlcut > 0)
{
$moduleurl = substr($moduleurl,0,$urlcut);
}
else
{
if(strpos($moduleurl, "?") == 0)
{
$moduleurl = $_SERVER["REQUEST_URI"]."?site=1";
}
}
$mode = $_REQUEST["uebergabe"];
$status = $_REQUEST["uebergabe2"];
echo" <p><a href=\"".$moduleurl."&uebergabe=0\">Home</a>
| <a href=\"".$moduleurl."&uebergabe=1\">Add new User</a>
| <a href=\"".$moduleurl."&uebergabe=2\">Edit User</a>
| <a href=\"".$moduleurl."&uebergabe=3\">Delete User</a>
| <a href=\"".$moduleurl."&uebergabe=4\">View Users</a></p><hr><br>";
switch($status)
{
case 1:
echo "<b>User added successfully!</b>";
break;
case 2:
echo "<b>User edited successfully!</b>";
break;
case 3:
echo "<b>User deleted successfully!</b>";
break;
default:
break;
}
switch($mode)
{
case 1:
include ($_SERVER["DOCUMENT_ROOT"]."/Admin/Modules/Usermanagement/include/adduser_index.php");
break;
case 2:
include ($_SERVER["DOCUMENT_ROOT"]."/Admin/Modules/Usermanagement/include/edituser_index.php");
break;
case 3:
include ($_SERVER["DOCUMENT_ROOT"]."/Admin/Modules/Usermanagement/include/deleteuser_index.php");
break;
case 4:
include ($_SERVER["DOCUMENT_ROOT"]."/Admin/Modules/Usermanagement/include/viewuser_index.php");
break;
default:
echo"<h1><b>User Management</b></h1>
<h2>Choose an action:</h2>
<p># <a href=\"".$moduleurl."&uebergabe=1\">Add new User</a></p>
<p># <a href=\"".$moduleurl."&uebergabe=2\">Edit User</a></p>
<p># <a href=\"".$moduleurl."&uebergabe=3\">Delete User</a></p>
<p># <a href=\"".$moduleurl."&uebergabe=4\">View Users</a></p><br>";
break;
}
?>