<?php namespace LAM\UPLOAD; use \htmlStatusMessage; use \htmlLink; use \htmlOutputText; use \htmlButton; use \htmlHiddenInput; use \htmlResponsiveRow; /* This code is part of LDAP Account Manager (http://www.ldap-account-manager.org/) Copyright (C) 2004 - 2018 Roland Gruber This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA */ /** * Creates the accounts by parsing the uploaded file. * * @author Roland Gruber * @package tools */ /** security functions */ include_once(__DIR__ . "/../../lib/security.inc"); /** access to configuration */ include_once(__DIR__ . '/../../lib/config.inc'); /** status messages */ include_once(__DIR__ . '/../../lib/status.inc'); /** account modules */ include_once(__DIR__ . '/../../lib/modules.inc'); // Start session startSecureSession(); enforceUserIsLoggedIn(); // check if this tool may be run checkIfToolIsActive('toolFileUpload'); // die if no write access if (!checkIfWriteAccessIsAllowed()) die(); // Redirect to startpage if user is not loged in if (!isLoggedIn()) { metaRefresh("../login.php"); exit; } // Set correct language, codepages, .... setlanguage(); if (!empty($_POST)) { validateSecurityToken(); } // show LDIF if requested if (isset($_GET['showldif'])) { //download file header('Content-Type: text/plain'); header('Content-disposition: attachment; filename=lam.ldif'); $accounts = unserialize(lamDecrypt($_SESSION['mass_accounts'])); foreach ($accounts as $account) { echo "DN: " . $account['dn'] . "\n"; unset($account['dn']); $keys = array_keys($account); foreach ($keys as $key) { if (strpos($key, 'INFO.') === 0) { continue; } if (is_array($account[$key])) { foreach ($account[$key] as $value) { echo $key . ": " . $value . "\n"; } } else { echo $key . ": " . $account[$key] . "\n"; } } echo "\n"; } exit; } include __DIR__ . '/../../lib/adminHeader.inc'; $typeId = htmlspecialchars($_POST['typeId']); $typeManager = new \LAM\TYPES\TypeManager(); $type = $typeManager->getConfiguredType($typeId); // check if account type is ok if ($type->isHidden()) { logNewMessage(LOG_ERR, 'User tried to access hidden upload: ' . $type->getId()); die(); } if (!checkIfNewEntriesAreAllowed($type->getId()) || !checkIfWriteAccessIsAllowed($type->getId())) { logNewMessage(LOG_ERR, 'User tried to access forbidden upload: ' . $type->getId()); die(); } echo '<form enctype="multipart/form-data" action="masscreate.php" method="post">'; echo '<div class="' . $type->getScope() . '-bright smallPaddingContent">'; $container = new htmlResponsiveRow(); $selectedModules = explode(',', $_POST['selectedModules']); if ($_FILES['inputfile'] && ($_FILES['inputfile']['size'] > 0)) { // check if input file is well formated $data = array(); // input values without first row $ids = array(); // <column name> => <column number for $data> // get input fields from modules $columns = getUploadColumns($type, $selectedModules); // read input file $handle = fopen ($_FILES['inputfile']['tmp_name'], "r"); if (($head = fgetcsv($handle, 2000)) !== false ) { // head row foreach ($head as $i => $headItem) { $ids[$headItem] = $i; } } while (($line = fgetcsv($handle, 2000)) !== false ) { // account rows $data[] = $line; } $errors = array(); // check if all required columns are present $checkcolumns = array(); $columns = call_user_func_array('array_merge', $columns); foreach ($columns as $column) { if (isset($column['required']) && ($column['required'] === true)) { if (isset($ids[$column['name']])) $checkcolumns[] = $ids[$column['name']]; else $errors[] = array(_("A required column is missing in your CSV file."), $column['name']); } } // check if all required attributes are given $invalidColumns = array(); $id_names = array_keys($ids); foreach ($checkcolumns as $checkcolumn) { foreach ($data as $dataRow) { if (empty($dataRow[$checkcolumn])) { $invalidColumns[] = $id_names[$checkcolumn]; break; } } } foreach ($data as $dataRow) { if (empty($dataRow[$ids['dn_rdn']])) { $invalidColumns[] = 'dn_rdn'; break; } } foreach ($invalidColumns as $invalidColumn) { $errors[] = array(_("One or more values of the required column \"$invalidColumn\" are missing."), ""); } // check if values in unique columns are correct foreach ($columns as $column) { if (isset($column['unique']) && ($column['unique'] === true) && isset($ids[$column['name']])) { $colNumber = $ids[$column['name']]; $values_given = array(); foreach ($data as $dataRow) { $values_given[] = $dataRow[$colNumber]; } $values_unique = array_unique($values_given); if (sizeof($values_given) != sizeof($values_unique)) { $duplicates = array(); foreach ($values_given as $key => $value) { if (!isset($values_unique[$key])) { $duplicates[] = htmlspecialchars($value); } } $duplicates = array_values(array_unique($duplicates)); $errors[] = array(_("This column is defined to include unique entries but duplicates were found:") . ' ' . $column['name'], implode(', ', $duplicates)); } } } // if input data is invalid just display error messages (max 50) if (sizeof($errors) > 0) { foreach ($errors as $error) { $container->add(new htmlStatusMessage("ERROR", $error[0], $error[1]), 12); } $container->addVerticalSpacer('2rem'); massPrintBackButton($type->getId(), $selectedModules, $container); } // let modules build accounts else { $accounts = buildUploadAccounts($type, $data, $ids, $selectedModules, $container); if ($accounts !== false) { $rdnList = getRDNAttributes($type->getId(), $selectedModules); $suffix = $type->getSuffix(); foreach ($accounts as $i => $account) { // set DN // check against list of possible RDN attributes if (!in_array($data[$i][$ids['dn_rdn']], $rdnList) || !isset($account[$data[$i][$ids['dn_rdn']]])) { $errors[] = array(_('Account %s:') . ' dn_rdn ' . $account[$data[$i][$ids['dn_rdn']]], _("Invalid RDN attribute!"), array($i)); } else { $account_dn = $data[$i][$ids['dn_rdn']] . "=" . escapeRDN($account[$data[$i][$ids['dn_rdn']]]) . ","; if ($data[$i][$ids['dn_suffix']] == "") $account_dn = $account_dn . $suffix; else $account_dn = $account_dn . $data[$i][$ids['dn_suffix']]; $accounts[$i]['dn'] = $account_dn; } // set overwrite if (isset($ids['overwrite']) && ($data[$i][$ids['overwrite']] === 'true')) { $accounts[$i]['INFO.overwrite'] = 'true'; } } // print errors if DN could not be built if (sizeof($errors) > 0) { foreach ($errors as $error) { $container->add(new htmlStatusMessage("ERROR", $error[0], $error[1], $error[2]), 12); } } else { // store accounts in session $_SESSION['mass_accounts'] = lamEncrypt(serialize($accounts)); $_SESSION['mass_errors'] = array(); $_SESSION['mass_failed'] = array(); $_SESSION['mass_postActions'] = array(); $_SESSION['mass_data'] = lamEncrypt(serialize($data)); $_SESSION['mass_ids'] = $ids; $_SESSION['mass_typeId'] = $type->getId(); $_SESSION['mass_selectedModules'] = $selectedModules; if (isset($_SESSION['mass_pdf'])) { unset($_SESSION['mass_pdf']); } if (isset($_POST['createPDF']) && ($_POST['createPDF'] == 'on')) { $_SESSION['mass_pdf']['structure'] = $_POST['pdfStructure']; $_SESSION['mass_pdf']['font'] = $_POST['pdf_font']; $_SESSION['mass_pdf']['counter'] = 0; $_SESSION['mass_pdf']['file'] = '../../tmp/lam_pdf' . getRandomNumber() . '.zip'; } else { $_SESSION['mass_pdf']['structure'] = null; } // show links for upload and LDIF export $container->addVerticalSpacer('2rem'); $container->add(new htmlOutputText(_("LAM has checked your input and is now ready to create the accounts.")), 12); $container->addVerticalSpacer('4rem'); $link = new htmlLink(_("Upload accounts to LDAP"), 'massDoUpload.php', '../../graphics/up.gif', true); $link->setCSSClasses(array('margin3')); $container->addLabel($link); $link = new htmlLink(_("Show LDIF file"), 'massBuildAccounts.php?showldif=true', '../../graphics/edit.png', true); $link->setCSSClasses(array('margin3')); $container->addField($link); $container->addVerticalSpacer('2rem'); massPrintBackButton($type->getId(), $selectedModules, $container); } } else { $container->addVerticalSpacer('2rem'); massPrintBackButton($type->getId(), $selectedModules, $container); } } } else { $container->add(new htmlStatusMessage('ERROR', _('Please provide a file to upload.')), 12); $container->addVerticalSpacer('2rem'); massPrintBackButton($type->getId(), $selectedModules, $container); } addSecurityTokenToMetaHTML($container); $tabindex = 1; parseHtml(null, $container, array(), false, $tabindex, $type->getScope()); echo '</div>'; echo '</form>'; include __DIR__ . '/../../lib/adminFooter.inc'; /** * Prints a back button to the page where the user enters a file to upload. * * @param String $typeId account type (e.g. user) * @param array $selectedModules selected modules for upload * @param htmlResponsiveRow $container table container */ function massPrintBackButton($typeId, $selectedModules, htmlResponsiveRow &$container) { $backButton = new htmlButton('submit', _('Back')); $backButton->setIconClass('backButton'); $container->add($backButton, 12); $container->add(new htmlHiddenInput('type', $typeId), 12); $createPDF = 0; if (isset($_POST['createPDF']) && ($_POST['createPDF'] == 'on')) { $createPDF = 1; } $container->add(new htmlHiddenInput('createPDF', $createPDF), 12); $container->add(new htmlHiddenInput('pdfStructure', $_POST['pdfStructure']), 12); foreach ($selectedModules as $selectedModule) { $container->add(new htmlHiddenInput($typeId . '___' . $selectedModule, 'on'), 12); } } ?>