2006-04-16 12:49:12 +00:00
|
|
|
<?php
|
|
|
|
|
/*
|
|
|
|
|
$Id$
|
|
|
|
|
|
2009-10-27 18:47:12 +00:00
|
|
|
This code is part of LDAP Account Manager (http://www.ldap-account-manager.org/)
|
2009-02-07 22:28:28 +00:00
|
|
|
Copyright (C) 2003 - 2009 Roland Gruber
|
2006-04-16 12:49:12 +00:00
|
|
|
|
|
|
|
|
This program is free software; you can redistribute it and/or modify
|
|
|
|
|
it under the terms of the GNU General Public License as published by
|
|
|
|
|
the Free Software Foundation; either version 2 of the License, or
|
|
|
|
|
(at your option) any later version.
|
|
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
GNU General Public License for more details.
|
|
|
|
|
|
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
|
|
|
along with this program; if not, write to the Free Software
|
|
|
|
|
Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
|
|
|
|
|
|
|
|
*/
|
|
|
|
|
|
2006-09-24 14:19:50 +00:00
|
|
|
|
2006-04-16 12:49:12 +00:00
|
|
|
/**
|
|
|
|
|
* Manages the main configuration options.
|
|
|
|
|
*
|
|
|
|
|
* @package configuration
|
|
|
|
|
* @author Roland Gruber
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/** Access to config functions */
|
|
|
|
|
include_once('../../lib/config.inc');
|
|
|
|
|
/** Used to print status messages */
|
|
|
|
|
include_once('../../lib/status.inc');
|
|
|
|
|
|
|
|
|
|
// start session
|
2009-07-08 18:03:28 +00:00
|
|
|
if (strtolower(session_module_name()) == 'files') {
|
|
|
|
|
session_save_path("../../sess");
|
|
|
|
|
}
|
2006-04-16 12:49:12 +00:00
|
|
|
@session_start();
|
|
|
|
|
|
|
|
|
|
setlanguage();
|
|
|
|
|
|
2006-09-24 14:19:50 +00:00
|
|
|
$cfg = new LAMCfgMain();
|
2006-04-16 12:49:12 +00:00
|
|
|
|
|
|
|
|
// check if user is logged in
|
2007-11-07 21:02:13 +00:00
|
|
|
if (!isset($_SESSION["mainconf_password"]) || (!$cfg->checkPassword($_SESSION["mainconf_password"]))) {
|
2006-04-16 12:49:12 +00:00
|
|
|
require('mainlogin.php');
|
|
|
|
|
exit();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
echo $_SESSION['header'];
|
|
|
|
|
|
|
|
|
|
?>
|
|
|
|
|
|
|
|
|
|
<title>
|
|
|
|
|
<?php
|
|
|
|
|
echo _("Edit general settings");
|
|
|
|
|
?>
|
|
|
|
|
</title>
|
|
|
|
|
<link rel="stylesheet" type="text/css" href="../../style/layout.css">
|
2008-01-01 13:06:51 +00:00
|
|
|
<link rel="shortcut icon" type="image/x-icon" href="../../graphics/favicon.ico">
|
2006-04-16 12:49:12 +00:00
|
|
|
</head>
|
|
|
|
|
<body>
|
2009-08-10 16:13:27 +00:00
|
|
|
<p align="center"><a href="http://www.ldap-account-manager.org/" target="_blank">
|
2006-04-16 12:49:12 +00:00
|
|
|
<img src="../../graphics/banner.jpg" border=1 alt="LDAP Account Manager"></a>
|
|
|
|
|
</p>
|
|
|
|
|
<hr><br>
|
|
|
|
|
|
|
|
|
|
<?php
|
2009-02-07 22:28:28 +00:00
|
|
|
echo "<script type=\"text/javascript\" src=\"../wz_tooltip.js\"></script>\n";
|
2006-04-16 12:49:12 +00:00
|
|
|
|
|
|
|
|
// check if submit button was pressed
|
2008-04-24 18:50:02 +00:00
|
|
|
if (isset($_POST['submit'])) {
|
2006-04-23 16:33:25 +00:00
|
|
|
// remove double slashes if magic quotes are on
|
|
|
|
|
if (get_magic_quotes_gpc() == 1) {
|
|
|
|
|
$postKeys = array_keys($_POST);
|
|
|
|
|
for ($i = 0; $i < sizeof($postKeys); $i++) {
|
|
|
|
|
if (is_string($_POST[$postKeys[$i]])) $_POST[$postKeys[$i]] = stripslashes($_POST[$postKeys[$i]]);
|
|
|
|
|
}
|
|
|
|
|
}
|
2006-04-18 10:57:16 +00:00
|
|
|
$errors = array();
|
2006-04-16 12:49:12 +00:00
|
|
|
// set master password
|
|
|
|
|
if (isset($_POST['masterpassword']) && ($_POST['masterpassword'] != "")) {
|
|
|
|
|
if ($_POST['masterpassword'] && $_POST['masterpassword2'] && ($_POST['masterpassword'] == $_POST['masterpassword2'])) {
|
2007-11-07 21:02:13 +00:00
|
|
|
$cfg->setPassword($_POST['masterpassword']);
|
2006-04-16 12:49:12 +00:00
|
|
|
$msg = _("New master password set successfully.");
|
|
|
|
|
unset($_SESSION["mainconf_password"]);
|
|
|
|
|
}
|
2006-04-18 10:57:16 +00:00
|
|
|
else $errors[] = _("Master passwords are different or empty!");
|
2006-04-16 12:49:12 +00:00
|
|
|
}
|
2006-04-18 10:57:16 +00:00
|
|
|
// set session timeout
|
|
|
|
|
$cfg->sessionTimeout = $_POST['sessionTimeout'];
|
2006-04-25 11:25:07 +00:00
|
|
|
// set allowed hosts
|
|
|
|
|
if (isset($_POST['allowedHosts'])) {
|
|
|
|
|
$allowedHosts = $_POST['allowedHosts'];
|
|
|
|
|
$allowedHostsList = explode("\n", $allowedHosts);
|
|
|
|
|
for ($i = 0; $i < sizeof($allowedHostsList); $i++) {
|
|
|
|
|
$allowedHostsList[$i] = trim($allowedHostsList[$i]);
|
|
|
|
|
// ignore empty lines
|
|
|
|
|
if ($allowedHostsList[$i] == "") {
|
|
|
|
|
unset($allowedHostsList[$i]);
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
// check each line
|
2009-08-14 18:06:15 +00:00
|
|
|
$ipRegex = '/^[0-9\\.\\*]+$/';
|
|
|
|
|
if (!preg_match($ipRegex, $allowedHostsList[$i]) || (strlen($allowedHostsList[$i]) > 15)) {
|
2006-04-25 11:25:07 +00:00
|
|
|
$errors[] = sprintf(_("The IP address %s is invalid!"), $allowedHostsList[$i]);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
$allowedHosts = implode(",", $allowedHostsList);
|
|
|
|
|
}
|
|
|
|
|
else $allowedHosts = "";
|
|
|
|
|
$cfg->allowedHosts = $allowedHosts;
|
2006-04-23 16:33:25 +00:00
|
|
|
// set log level
|
|
|
|
|
$cfg->logLevel = $_POST['logLevel'];
|
|
|
|
|
// set log destination
|
|
|
|
|
if ($_POST['logDestination'] == "none") $cfg->logDestination = "NONE";
|
|
|
|
|
elseif ($_POST['logDestination'] == "syslog") $cfg->logDestination = "SYSLOG";
|
|
|
|
|
else {
|
2009-10-28 16:05:25 +00:00
|
|
|
if (isset($_POST['logFile']) && ($_POST['logFile'] != "") && preg_match("/^[a-z0-9\\/\\\\:\\._-]+$/i", $_POST['logFile'])) {
|
2006-04-23 16:33:25 +00:00
|
|
|
$cfg->logDestination = $_POST['logFile'];
|
|
|
|
|
}
|
|
|
|
|
else $errors[] = _("The log file is empty or contains invalid characters! Valid characters are: a-z, A-Z, 0-9, /, \\, ., :, _ and -.");
|
|
|
|
|
}
|
2008-02-10 13:19:05 +00:00
|
|
|
// password policies
|
|
|
|
|
$cfg->passwordMinLength = $_POST['passwordMinLength'];
|
|
|
|
|
$cfg->passwordMinLower = $_POST['passwordMinLower'];
|
|
|
|
|
$cfg->passwordMinUpper = $_POST['passwordMinUpper'];
|
|
|
|
|
$cfg->passwordMinNumeric = $_POST['passwordMinNumeric'];
|
|
|
|
|
$cfg->passwordMinSymbol = $_POST['passwordMinSymbol'];
|
|
|
|
|
$cfg->passwordMinClasses = $_POST['passwordMinClasses'];
|
2006-04-18 10:57:16 +00:00
|
|
|
// save settings
|
|
|
|
|
$cfg->save();
|
2006-04-16 12:49:12 +00:00
|
|
|
// print messages
|
2006-04-18 10:57:16 +00:00
|
|
|
if (sizeof($errors) > 0) {
|
|
|
|
|
for ($i = 0; $i < sizeof($errors); $i++) StatusMessage("ERROR", $errors[$i]);
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
StatusMessage("INFO", _("Your settings were successfully saved."));
|
|
|
|
|
// back to login page
|
|
|
|
|
echo "<p><a href=\"../login.php\">" . _("Back to login") . "</a></p>";
|
|
|
|
|
exit();
|
2006-04-16 12:49:12 +00:00
|
|
|
}
|
|
|
|
|
}
|
2009-11-06 19:15:56 +00:00
|
|
|
|
|
|
|
|
// check if config file is writable
|
|
|
|
|
if (!$cfg->isWritable()) {
|
|
|
|
|
StatusMessage('WARN', 'The config file is not writable.', 'Your changes cannot be saved until you make the file writable for the webserver user.');
|
|
|
|
|
}
|
2006-04-16 12:49:12 +00:00
|
|
|
?>
|
|
|
|
|
|
|
|
|
|
<br>
|
|
|
|
|
<!-- form for adding/renaming/deleting profiles -->
|
|
|
|
|
<form action="mainmanage.php" method="post">
|
2006-04-25 11:25:07 +00:00
|
|
|
<table border="0" align="center">
|
2006-04-16 12:49:12 +00:00
|
|
|
<tr><td>
|
2006-04-18 10:57:16 +00:00
|
|
|
<fieldset>
|
|
|
|
|
<legend><b> <?php echo _("Security settings"); ?> </b></legend>
|
2007-12-31 12:37:00 +00:00
|
|
|
<br>
|
2006-04-18 10:57:16 +00:00
|
|
|
<table cellspacing="0" border="0">
|
|
|
|
|
<!-- session timeout -->
|
|
|
|
|
<tr>
|
2006-04-25 11:25:07 +00:00
|
|
|
<td align="left">
|
2006-04-18 10:57:16 +00:00
|
|
|
<?php echo _("Session timeout"); ?>
|
2006-04-25 11:25:07 +00:00
|
|
|
</td>
|
|
|
|
|
<td>
|
2006-04-18 10:57:16 +00:00
|
|
|
<SELECT name="sessionTimeout">
|
|
|
|
|
<?php
|
|
|
|
|
$options = array(5, 10, 20, 30, 60);
|
|
|
|
|
for ($i = 0; $i < sizeof($options); $i++) {
|
|
|
|
|
if ($cfg->sessionTimeout == $options[$i]) {
|
|
|
|
|
echo "<option selected>" . $cfg->sessionTimeout . "</option>";
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
echo "<option>" . $options[$i] . "</option>";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
?>
|
|
|
|
|
</SELECT>
|
|
|
|
|
</td>
|
|
|
|
|
<td>
|
|
|
|
|
<?PHP
|
2009-02-07 22:28:28 +00:00
|
|
|
printHelpLink(getHelp('', '238'), '238');
|
2006-04-18 10:57:16 +00:00
|
|
|
?>
|
|
|
|
|
</td>
|
|
|
|
|
</tr>
|
2006-04-25 11:25:07 +00:00
|
|
|
<!-- allowed hosts -->
|
|
|
|
|
<tr>
|
|
|
|
|
<td align="left">
|
|
|
|
|
<?php echo _("Allowed hosts"); ?>
|
|
|
|
|
</td>
|
|
|
|
|
<td>
|
|
|
|
|
<TEXTAREA cols="30" rows="7" name="allowedHosts"><?php echo implode("\n", explode(",", $cfg->allowedHosts)); ?></TEXTAREA>
|
|
|
|
|
</td>
|
|
|
|
|
<td>
|
|
|
|
|
<?PHP
|
2009-02-07 22:28:28 +00:00
|
|
|
printHelpLink(getHelp('', '241'), '241');
|
2006-04-25 11:25:07 +00:00
|
|
|
?>
|
|
|
|
|
</td>
|
|
|
|
|
</tr>
|
2006-04-18 10:57:16 +00:00
|
|
|
</table>
|
|
|
|
|
</fieldset>
|
|
|
|
|
<BR>
|
2008-02-10 13:19:05 +00:00
|
|
|
<fieldset>
|
|
|
|
|
<legend><b> <?php echo _("Password policy"); ?> </b></legend>
|
|
|
|
|
<br>
|
|
|
|
|
<table cellspacing="0" border="0">
|
|
|
|
|
<?php
|
|
|
|
|
$options = array(
|
|
|
|
|
array('passwordMinLength', _('Minimum password length'), 20),
|
|
|
|
|
array('passwordMinLower', _('Minimum lowercase characters'), 20),
|
|
|
|
|
array('passwordMinUpper', _('Minimum uppercase characters'), 20),
|
|
|
|
|
array('passwordMinNumeric', _('Minimum numeric characters'), 20),
|
|
|
|
|
array('passwordMinSymbol', _('Minimum symbolic characters'), 20),
|
|
|
|
|
array('passwordMinClasses', _('Minimum character classes'), 4)
|
|
|
|
|
);
|
|
|
|
|
for ($i = 0; $i < sizeof($options); $i++) {
|
|
|
|
|
echo "<tr>\n";
|
|
|
|
|
echo "<td>\n";
|
|
|
|
|
echo $options[$i][1] . " ";
|
|
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "<td>\n";
|
|
|
|
|
echo "<select name=\"" . $options[$i][0] . "\">\n";
|
|
|
|
|
for ($o = 0; $o <= $options[$i][2]; $o++) {
|
|
|
|
|
$selected = '';
|
|
|
|
|
if ($cfg->$options[$i][0] == $o) {
|
|
|
|
|
$selected = ' selected';
|
|
|
|
|
}
|
|
|
|
|
echo "<option" . $selected . ">" . $o . "</option>\n";
|
|
|
|
|
}
|
|
|
|
|
echo "</select>\n";
|
|
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "<td>\n";
|
2009-02-07 22:28:28 +00:00
|
|
|
printHelpLink(getHelp('', '242'), '242');
|
2008-02-10 13:19:05 +00:00
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "</tr>\n";
|
|
|
|
|
}
|
|
|
|
|
?>
|
|
|
|
|
</table>
|
|
|
|
|
<br>
|
|
|
|
|
</fieldset>
|
|
|
|
|
<BR>
|
2006-04-23 16:33:25 +00:00
|
|
|
<fieldset>
|
|
|
|
|
<legend><b> <?php echo _("Logging"); ?> </b></legend>
|
2007-12-31 12:37:00 +00:00
|
|
|
<br>
|
2006-04-23 16:33:25 +00:00
|
|
|
<table cellspacing="0" border="0">
|
|
|
|
|
<!-- log level -->
|
|
|
|
|
<tr>
|
|
|
|
|
<td>
|
|
|
|
|
<?php echo _("Log level"); ?>
|
|
|
|
|
<SELECT name="logLevel">
|
|
|
|
|
<?php
|
|
|
|
|
$options = array(_("Notice"), _("Warning"), _("Error"));
|
|
|
|
|
$levels = array(LOG_NOTICE, LOG_WARNING, LOG_ERR);
|
|
|
|
|
for ($i = 0; $i < sizeof($options); $i++) {
|
|
|
|
|
if ($cfg->logLevel == $levels[$i]) {
|
|
|
|
|
echo "<option selected value=\"" . $levels[$i] . "\">" . $options[$i] . "</option>";
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
echo "<option value=\"" . $levels[$i] . "\">" . $options[$i] . "</option>";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
?>
|
|
|
|
|
</SELECT>
|
|
|
|
|
</td>
|
|
|
|
|
<td>
|
|
|
|
|
<?PHP
|
2009-02-07 22:28:28 +00:00
|
|
|
printHelpLink(getHelp('', '239'), '239');
|
2006-04-23 16:33:25 +00:00
|
|
|
?>
|
|
|
|
|
</td>
|
|
|
|
|
</tr>
|
|
|
|
|
<TR><TD colspan="2"> </TD></TR>
|
|
|
|
|
<TR>
|
|
|
|
|
<TD>
|
|
|
|
|
<?PHP
|
|
|
|
|
echo _("Log destination") . ":";
|
|
|
|
|
?>
|
|
|
|
|
</TD>
|
|
|
|
|
<TD>
|
|
|
|
|
<?PHP
|
2009-02-07 22:28:28 +00:00
|
|
|
printHelpLink(getHelp('', '240'), '240');
|
2006-09-24 14:19:50 +00:00
|
|
|
?>
|
2006-04-23 16:33:25 +00:00
|
|
|
</TD>
|
|
|
|
|
</TR>
|
|
|
|
|
<TR>
|
|
|
|
|
<TD colspan="2">
|
|
|
|
|
<?PHP
|
|
|
|
|
$noLogChecked = false;
|
|
|
|
|
if ($cfg->logDestination == "NONE") $noLogChecked = true;
|
|
|
|
|
echo "<input type=\"radio\" name=\"logDestination\" value=\"none\"";
|
|
|
|
|
if ($noLogChecked) echo " checked";
|
|
|
|
|
echo ">" . _("No logging") . "\n";
|
|
|
|
|
?>
|
|
|
|
|
</TD>
|
|
|
|
|
</TR>
|
|
|
|
|
<TR>
|
|
|
|
|
<TD colspan="2">
|
|
|
|
|
<?PHP
|
|
|
|
|
$syslogChecked = false;
|
|
|
|
|
if ($cfg->logDestination == "SYSLOG") {
|
|
|
|
|
$syslogChecked = true;
|
|
|
|
|
}
|
|
|
|
|
echo "<input type=\"radio\" name=\"logDestination\" value=\"syslog\"";
|
|
|
|
|
if ($syslogChecked) echo " checked";
|
|
|
|
|
echo ">" . _("System logging") . "\n";
|
|
|
|
|
?>
|
|
|
|
|
</TD>
|
|
|
|
|
</TR>
|
|
|
|
|
<TR>
|
|
|
|
|
<TD colspan="2">
|
|
|
|
|
<?PHP
|
|
|
|
|
$logFile = "";
|
|
|
|
|
$logFileChecked = false;
|
|
|
|
|
if (($cfg->logDestination != "NONE") && ($cfg->logDestination != "SYSLOG")) {
|
|
|
|
|
$logFile = $cfg->logDestination;
|
|
|
|
|
$logFileChecked = true;
|
|
|
|
|
}
|
|
|
|
|
echo "<input type=\"radio\" name=\"logDestination\" value=\"file\"";
|
|
|
|
|
if ($logFileChecked) echo " checked";
|
|
|
|
|
echo ">" . _("File") . "\n";
|
|
|
|
|
echo "<input type=\"text\" name=\"logFile\" value=\"" . $logFile . "\">\n";
|
|
|
|
|
?>
|
|
|
|
|
</TD>
|
|
|
|
|
</TR>
|
|
|
|
|
</table>
|
|
|
|
|
</fieldset>
|
|
|
|
|
<BR>
|
2006-04-16 12:49:12 +00:00
|
|
|
<fieldset>
|
|
|
|
|
<legend><b> <?php echo _("Change master password"); ?> </b></legend>
|
2007-12-31 12:37:00 +00:00
|
|
|
<br>
|
2006-04-16 12:49:12 +00:00
|
|
|
<table cellspacing="0" border="0">
|
|
|
|
|
<!-- set master password -->
|
|
|
|
|
<tr>
|
|
|
|
|
<td align="right">
|
|
|
|
|
<FONT color="Red"><B>
|
2006-04-18 10:57:16 +00:00
|
|
|
<?php echo _("New master password"); ?>
|
2006-04-16 12:49:12 +00:00
|
|
|
</B></FONT>
|
|
|
|
|
<input type="password" name="masterpassword">
|
|
|
|
|
</td>
|
|
|
|
|
<td>
|
|
|
|
|
<?PHP
|
2009-02-07 22:28:28 +00:00
|
|
|
printHelpLink(getHelp('', '235'), '235');
|
2006-04-16 12:49:12 +00:00
|
|
|
?>
|
|
|
|
|
</td>
|
|
|
|
|
</tr>
|
|
|
|
|
<tr>
|
|
|
|
|
<td align="right">
|
|
|
|
|
<FONT color="Red"><B>
|
2006-04-18 10:57:16 +00:00
|
|
|
<?php echo _("Reenter new master password"); ?>
|
2006-04-16 12:49:12 +00:00
|
|
|
</B></FONT>
|
|
|
|
|
<input type="password" name="masterpassword2">
|
|
|
|
|
</td>
|
|
|
|
|
<td> </td>
|
|
|
|
|
</tr>
|
|
|
|
|
|
|
|
|
|
</table>
|
|
|
|
|
</fieldset>
|
|
|
|
|
</td></tr>
|
2006-04-25 11:25:07 +00:00
|
|
|
<TR>
|
|
|
|
|
<TD>
|
|
|
|
|
<BR>
|
2009-11-06 19:15:56 +00:00
|
|
|
<?php if ($cfg->isWritable()) { ?>
|
2006-04-25 11:25:07 +00:00
|
|
|
<input type="submit" name="submit" value=" <?php echo _("Ok"); ?> ">
|
2009-11-06 19:15:56 +00:00
|
|
|
<?php } ?>
|
2006-04-25 11:25:07 +00:00
|
|
|
</TD>
|
|
|
|
|
</TR>
|
2006-04-16 12:49:12 +00:00
|
|
|
</table>
|
2006-09-24 14:19:50 +00:00
|
|
|
|
2006-04-16 12:49:12 +00:00
|
|
|
</form>
|
|
|
|
|
<p><br></p>
|
|
|
|
|
|
|
|
|
|
<!-- back to login page -->
|
|
|
|
|
<p>
|
|
|
|
|
<a href="../login.php"> <?php echo _("Back to login"); ?> </a>
|
|
|
|
|
</p>
|
|
|
|
|
|
|
|
|
|
</body>
|
|
|
|
|
</html>
|
|
|
|
|
|
