WMDE
/
LDAPAccountManager
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

added basic security checks

This commit is contained in:
Roland Gruber 2006-03-26 17:51:25 +00:00
parent b4b43b8673
commit 209f3b52b8
47 changed files with 147 additions and 103 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
lam/HISTORY
View File

@ -1,7 +1,8 @@
??? 1.0.1 12.04.2006 1.0.1
- LAM can now be installed with "configure" and "make install" - LAM can now be installed with "configure" and "make install"
- Unix: merged password hash settings for Unix users and groups - Unix: merged password hash settings for Unix users and groups
- Samba 3: added Windows group to profile options - Samba 3: added Windows group to profile options
- security: LAM checks the session id and client IP
- fixed bugs: - fixed bugs:
-> Samba 3: hash values were wrong in some rare cases (1440021) -> Samba 3: hash values were wrong in some rare cases (1440021)
-> Samba 3: readded time zone selection for logon hours (1407761) -> Samba 3: readded time zone selection for logon hours (1407761)

5
lam/templates/account/edit.php
View File

@ -30,6 +30,8 @@ $Id$
* @author Tilo Lutz * @author Tilo Lutz
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** configuration options */ /** configuration options */
include_once('../../lib/config.inc'); include_once('../../lib/config.inc');
/** functions to load and save profiles */ /** functions to load and save profiles */
@ -42,8 +44,7 @@ include_once('../../lib/pdf.inc');
include_once('../../lib/modules.inc'); include_once('../../lib/modules.inc');
// Start session // Start session
session_save_path('../../sess'); startSecureSession();
@session_start();
// Redirect to startpage if user is not loged in // Redirect to startpage if user is not loged in
if (!isset($_SESSION['loggedIn'])) { if (!isset($_SESSION['loggedIn'])) {

4
lam/templates/config/confmain.php
View File

@ -31,10 +31,10 @@ $Id$
/** Access to config functions */ /** Access to config functions */
include_once ("../../lib/config.inc"); include_once("../../lib/config.inc");
/** access to module settings */ /** access to module settings */
include_once ("../../lib/modules.inc"); include_once("../../lib/modules.inc");
// start session // start session
session_save_path("../../sess"); session_save_path("../../sess");

4
lam/templates/config/confmodules.php
View File

@ -31,9 +31,9 @@ $Id$
/** Access to config functions */ /** Access to config functions */
include_once ('../../lib/config.inc'); include_once('../../lib/config.inc');
/** Access to module lists */ /** Access to module lists */
include_once ('../../lib/modules.inc'); include_once('../../lib/modules.inc');
// start session // start session
session_save_path("../../sess"); session_save_path("../../sess");

4
lam/templates/config/conftypes.php
View File

@ -31,9 +31,9 @@ $Id$
/** Access to config functions */ /** Access to config functions */
include_once ('../../lib/config.inc'); include_once('../../lib/config.inc');
/** Access to account types */ /** Access to account types */
include_once ('../../lib/types.inc'); include_once('../../lib/types.inc');
// start session // start session
session_save_path("../../sess"); session_save_path("../../sess");

5
lam/templates/delete.php
View File

@ -29,6 +29,8 @@
*/ */
/** security functions */
include_once("../lib/security.inc");
/** account functions */ /** account functions */
include_once('../lib/account.inc'); include_once('../lib/account.inc');
/** current configuration options */ /** current configuration options */
@ -43,8 +45,7 @@ include_once('../lib/lamdaemon.inc');
include_once('../lib/modules.inc'); include_once('../lib/modules.inc');
// Start session // Start session
session_save_path('../sess'); startSecureSession();
@session_start();
// Redirect to startpage if user is not loged in // Redirect to startpage if user is not loged in
if (!isset($_SESSION['loggedIn'])) { if (!isset($_SESSION['loggedIn'])) {

11
lam/templates/initsuff.php
View File

@ -28,16 +28,17 @@ $Id$
* @package main * @package main
*/ */
/** security functions */
include_once("../lib/security.inc");
/** access to configuration settings */ /** access to configuration settings */
include_once ("../lib/config.inc"); include_once("../lib/config.inc");
/** LDAP access */ /** LDAP access */
include_once ("../lib/ldap.inc"); include_once("../lib/ldap.inc");
/** status messages */ /** status messages */
include_once ("../lib/status.inc"); include_once("../lib/status.inc");
// start session // start session
session_save_path("../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

7
lam/templates/lists/list.php
View File

@ -29,14 +29,15 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** Used to get type information. */ /** Used to get type information. */
include_once("../../lib/types.inc"); include_once("../../lib/types.inc");
/** Access to configuration options */ /** Access to configuration options */
include_once ("../../lib/config.inc"); include_once("../../lib/config.inc");
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

9
lam/templates/lists/userlink.php
View File

@ -30,14 +30,15 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** Needed to find DNs of users */ /** Needed to find DNs of users */
include_once ("../../lib/ldap.inc"); include_once("../../lib/ldap.inc");
/** Used to display error messages */ /** Used to display error messages */
include_once ("../../lib/status.inc"); include_once("../../lib/status.inc");
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/logout.php
View File

@ -35,14 +35,15 @@ if (function_exists('mcrypt_create_iv')) {
setcookie("IV", "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx", 0, "/"); setcookie("IV", "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx", 0, "/");
} }
/** security functions */
include_once("../lib/security.inc");
/** Used to display status messages */ /** Used to display status messages */
include_once("../lib/status.inc"); include_once("../lib/status.inc");
/** LDAP settings are deleted at logout */ /** LDAP settings are deleted at logout */
include_once("../lib/ldap.inc"); include_once("../lib/ldap.inc");
// start session // start session
session_save_path("../sess"); startSecureSession();
@session_start();
// close LDAP connection // close LDAP connection
@$_SESSION["ldap"]->destroy(); @$_SESSION["ldap"]->destroy();

7
lam/templates/main_header.php
View File

@ -28,12 +28,13 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once("../lib/security.inc");
/** access to configuration options */ /** access to configuration options */
include_once ("../lib/config.inc"); include_once("../lib/config.inc");
// start session // start session
session_save_path("../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/massBuildAccounts.php
View File

@ -28,6 +28,8 @@ $Id$
* @package tools * @package tools
*/ */
/** security functions */
include_once("../lib/security.inc");
/** access to configuration */ /** access to configuration */
include_once('../lib/config.inc'); include_once('../lib/config.inc');
/** status messages */ /** status messages */
@ -37,8 +39,7 @@ include_once('../lib/modules.inc');
// Start session // Start session
session_save_path('../sess'); startSecureSession();
@session_start();
// Redirect to startpage if user is not loged in // Redirect to startpage if user is not loged in
if (!isset($_SESSION['loggedIn'])) { if (!isset($_SESSION['loggedIn'])) {

5
lam/templates/massDoUpload.php
View File

@ -28,6 +28,8 @@ $Id$
* @package tools * @package tools
*/ */
/** security functions */
include_once("../lib/security.inc");
/** access to configuration */ /** access to configuration */
include_once('../lib/config.inc'); include_once('../lib/config.inc');
/** LDAP handle */ /** LDAP handle */
@ -41,8 +43,7 @@ include_once('../lib/cache.inc');
// Start session // Start session
session_save_path('../sess'); startSecureSession();
@session_start();
// Redirect to startpage if user is not loged in // Redirect to startpage if user is not loged in
if (!isset($_SESSION['loggedIn'])) { if (!isset($_SESSION['loggedIn'])) {

5
lam/templates/masscreate.php
View File

@ -28,6 +28,8 @@ $Id$
* @package tools * @package tools
*/ */
/** security functions */
include_once("../lib/security.inc");
/** access to configuration */ /** access to configuration */
include_once('../lib/config.inc'); include_once('../lib/config.inc');
/** status messages */ /** status messages */
@ -37,8 +39,7 @@ include_once('../lib/modules.inc');
// Start session // Start session
session_save_path('../sess'); startSecureSession();
@session_start();
// Redirect to startpage if user is not loged in // Redirect to startpage if user is not loged in
if (!isset($_SESSION['loggedIn'])) { if (!isset($_SESSION['loggedIn'])) {

11
lam/templates/ou_edit.php
View File

@ -28,16 +28,17 @@ $Id$
* @package tools * @package tools
*/ */
/** security functions */
include_once("../lib/security.inc");
/** access to configuration data */ /** access to configuration data */
include_once ("../lib/config.inc"); include_once("../lib/config.inc");
/** access LDAP server */ /** access LDAP server */
include_once ("../lib/ldap.inc"); include_once("../lib/ldap.inc");
/** used to print status messages */ /** used to print status messages */
include_once ("../lib/status.inc"); include_once("../lib/status.inc");
// start session // start session
session_save_path("../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/pdfedit/pdfdelete.php
View File

@ -28,12 +28,13 @@ $Id$
* @author Michael Dürgner * @author Michael Dürgner
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** helper functions for pdf */ /** helper functions for pdf */
include_once('../../lib/pdfstruct.inc'); include_once('../../lib/pdfstruct.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/pdfedit/pdfmain.php
View File

@ -28,6 +28,8 @@ $Id$
* @package PDF * @package PDF
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** access to PDF configuration files */ /** access to PDF configuration files */
include_once("../../lib/pdfstruct.inc"); include_once("../../lib/pdfstruct.inc");
/** LDAP object */ /** LDAP object */
@ -38,8 +40,7 @@ include_once("../../lib/config.inc");
include_once("../../lib/modules.inc"); include_once("../../lib/modules.inc");
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/pdfedit/pdfpage.php
View File

@ -31,6 +31,8 @@ $Id$
* @package PDF * @package PDF
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** access to PDF configuration files */ /** access to PDF configuration files */
include_once('../../lib/pdfstruct.inc'); include_once('../../lib/pdfstruct.inc');
/** LDAP object */ /** LDAP object */
@ -43,8 +45,7 @@ include_once('../../lib/modules.inc');
include_once('../../lib/xml_parser.inc'); include_once('../../lib/xml_parser.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/profedit/profiledelete.php
View File

@ -28,6 +28,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** helper functions for profiles */ /** helper functions for profiles */
include_once("../../lib/profiles.inc"); include_once("../../lib/profiles.inc");
/** access to LDAP server */ /** access to LDAP server */
@ -36,8 +38,7 @@ include_once("../../lib/ldap.inc");
include_once("../../lib/config.inc"); include_once("../../lib/config.inc");
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/profedit/profilemain.php
View File

@ -28,6 +28,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** helper functions for profiles */ /** helper functions for profiles */
include_once("../../lib/profiles.inc"); include_once("../../lib/profiles.inc");
/** access to LDAP server */ /** access to LDAP server */
@ -36,8 +38,7 @@ include_once("../../lib/ldap.inc");
include_once("../../lib/config.inc"); include_once("../../lib/config.inc");
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/profedit/profilepage.php
View File

@ -28,6 +28,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** helper functions for profiles */ /** helper functions for profiles */
include_once("../../lib/profiles.inc"); include_once("../../lib/profiles.inc");
/** access to LDAP server */ /** access to LDAP server */
@ -40,8 +42,7 @@ include_once("../../lib/modules.inc");
include_once("../../lib/status.inc"); include_once("../../lib/status.inc");
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/schema/schema.php
View File

@ -31,6 +31,8 @@ $Id$
*/ */
/** security functions */
include_once("../../lib/security.inc");
/** access to LDAP server */ /** access to LDAP server */
include_once("../../lib/ldap.inc"); include_once("../../lib/ldap.inc");
/** access to configuration options */ /** access to configuration options */
@ -39,8 +41,7 @@ include_once("../../lib/config.inc");
require_once("../../lib/schema.inc"); require_once("../../lib/schema.inc");
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tools.php
View File

@ -28,12 +28,13 @@ $Id$
* @package tools * @package tools
*/ */
/** security functions */
include_once("../lib/security.inc");
/** access to configuration options */ /** access to configuration options */
include_once("../lib/config.inc"); include_once("../lib/config.inc");
// start session // start session
session_save_path("../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/add_attr.php
View File

@ -43,6 +43,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -55,8 +57,7 @@ include_once('../../lib/status.inc');
include_once('../../lib/account.inc'); include_once('../../lib/account.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/add_attr_form.php
View File

@ -40,6 +40,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -50,8 +52,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/add_oclass.php
View File

@ -45,6 +45,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -55,8 +57,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/add_oclass_form.php
View File

@ -46,6 +46,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -56,8 +58,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/add_value.php
View File

@ -45,6 +45,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -55,8 +57,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/add_value_form.php
View File

@ -42,6 +42,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -52,8 +54,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/collapse.php
View File

@ -44,6 +44,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -52,8 +54,7 @@ include_once('../../lib/config.inc');
include_once('../../lib/ldap.inc'); include_once('../../lib/ldap.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/create.php
View File

@ -45,6 +45,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -55,8 +57,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/create_form.php
View File

@ -41,6 +41,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -53,8 +55,7 @@ include_once('../../lib/status.inc');
include_once('templates/templates.inc'); include_once('templates/templates.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/creation_template.php
View File

@ -40,6 +40,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -52,8 +54,7 @@ include_once('../../lib/status.inc');
include_once('templates/templates.inc'); include_once('templates/templates.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/delete.php
View File

@ -40,6 +40,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -50,8 +52,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/delete_attr.php
View File

@ -40,6 +40,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -50,8 +52,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/delete_form.php
View File

@ -40,6 +40,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -50,8 +52,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/download_binary_attr.php
View File

@ -37,6 +37,8 @@ $Id$
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -47,8 +49,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/edit.php
View File

@ -42,6 +42,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -52,8 +54,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/expand.php
View File

@ -43,6 +43,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -51,8 +53,7 @@ include_once('../../lib/config.inc');
include_once('../../lib/ldap.inc'); include_once('../../lib/ldap.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/export.php
View File

@ -35,6 +35,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** export functions */ /** export functions */
require '../../lib/export.inc'; require '../../lib/export.inc';
/** common functions */ /** common functions */
@ -47,8 +49,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/export_form.php
View File

@ -40,6 +40,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** export functions */ /** export functions */
require '../../lib/export.inc'; require '../../lib/export.inc';
/** access to configuration */ /** access to configuration */
@ -50,8 +52,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/rdelete.php
View File

@ -39,6 +39,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -49,8 +51,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/status.inc'); include_once('../../lib/status.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/refresh.php
View File

@ -40,6 +40,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -48,8 +50,7 @@ include_once('../../lib/config.inc');
include_once('../../lib/ldap.inc'); include_once('../../lib/ldap.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
if( ! array_key_exists( 'tree', $_SESSION ) ) if( ! array_key_exists( 'tree', $_SESSION ) )
header( "Location: tree.php" ); header( "Location: tree.php" );

5
lam/templates/tree/tree.php
View File

@ -43,6 +43,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -51,8 +53,7 @@ include_once('../../lib/config.inc');
include_once('../../lib/ldap.inc'); include_once('../../lib/ldap.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/tree_view.php
View File

@ -30,6 +30,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -38,8 +40,7 @@ include_once('../../lib/config.inc');
include_once('../../lib/ldap.inc'); include_once('../../lib/ldap.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
// get encoding // get encoding
$lang = explode(":",$_SESSION['language']); $lang = explode(":",$_SESSION['language']);

5
lam/templates/tree/update.php
View File

@ -53,6 +53,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -61,8 +63,7 @@ include_once('../../lib/config.inc');
include_once('../../lib/ldap.inc'); include_once('../../lib/ldap.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();

5
lam/templates/tree/update_confirm.php
View File

@ -41,6 +41,8 @@ $Id$
* @author Roland Gruber * @author Roland Gruber
*/ */
/** security functions */
include_once('../../lib/security.inc');
/** tree functions */ /** tree functions */
include_once('../../lib/tree.inc'); include_once('../../lib/tree.inc');
/** access to configuration */ /** access to configuration */
@ -51,8 +53,7 @@ include_once('../../lib/ldap.inc');
include_once('../../lib/account.inc'); include_once('../../lib/account.inc');
// start session // start session
session_save_path("../../sess"); startSecureSession();
@session_start();
setlanguage(); setlanguage();