<?php
/*
$Id$

  This code is part of LDAP Account Manager (http://www.sourceforge.net/projects/lam)
  Copyright (C) 2003  Tilo Lutz

  This program is free software; you can redistribute it and/or modify
  it under the terms of the GNU General Public License as published by
  the Free Software Foundation; either version 2 of the License, or
  (at your option) any later version.

  This program is distributed in the hope that it will be useful,
  but WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  GNU General Public License for more details.

  You should have received a copy of the GNU General Public License
  along with this program; if not, write to the Free Software
  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA


  LDAP Account Manager displays table for creating or modifying accounts in LDAP
*/

include_once('../lib/account.inc'); // File with custom functions
include_once('../lib/config.inc'); // File with configure-functions
include_once('../lib/ldap.inc'); // LDAP-functions
include_once('../lib/profiles.inc'); // functions to load and save profiles
include_once('../lib/status.inc'); // Return error-message
include_once('../lib/pdf.inc'); // Return a pdf-file

session_save_path('../sess');
@session_start();

$time=time();
if ($_POST['tolist'] && ($_FILES['userfile']['size']>0)) $select = 'list';
if ($_POST['list']) $select = 'list';
if ($_POST['back']) $select = 'main';
if ($_POST['cancel']) $select = 'cancel';
if ($_POST['create']) $select = 'create';
if ($_POST['pdf']) {
	createpdf($_SESSION['accounts']);
	$select='pdf';
	}
if (!$select && !$_SESSION['pointer']) $select='main';
if (!$select && $_SESSION['pointer']) $select='create';


if ($select!='pdf') {
	// Write HTML-Header and part of Table
	echo '<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
		"http://www.w3.org/TR/html4/loose.dtd">';
	echo '<html><head><title>';
	echo _('Create new Accounts');
	echo '</title>
		<link rel="stylesheet" type="text/css" href="../style/layout.css">
		<meta http-equiv="pragma" content="no-cache">
		<meta http-equiv="cache-control" content="no-cache">
		<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-15">';
	}

switch ($select) {
	case 'cancel':
		if ( session_is_registered("accounts")) session_unregister("accounts");
		if ( session_is_registered("pointer")) session_unregister("pointer");
		if ( session_is_registered("errors")) session_unregister("errors");
		echo '<meta http-equiv="refresh" content="0; URL=lists/listusers.php">';
		break;
	case 'create':
		if ($_SESSION['pointer'] < sizeof($_SESSION['accounts'])) {
			$refresh = get_cfg_var('max_execution_time')-5;
			echo '<meta http-equiv="refresh" content="'.$refresh.'; URL=masscreate.php">';
			}
		break;
	}

if ($select!='pdf') {
	echo	'</head><body>
		<form enctype="multipart/form-data" action="masscreate.php" method="post">';
	echo '<table class="masscreate" width="100%">
		<tr><td></td></tr>';
	}

switch ($select) {
	case 'main':
		if ( session_is_registered("accounts")) session_unregister("accounts");
		if ( session_is_registered("pointer")) session_unregister("pointer");
		if ( session_is_registered("errors")) session_unregister("errors");
		session_register("accounts");
		session_register("pointer");
		session_register("errors");
		$_SESSION['pointer']=0;
		$profilelist = getUserProfiles();
		echo '<tr><td><input name="select" type="hidden" value="main">';
		echo _('Mass Creation');
		echo '</td></tr><tr><td>';
		echo _('Please provide a csv-file with the following syntax. Values with * are required:');
		echo '</td></tr><tr><td>';
		echo _('Surname*,Givenname*,Username*,PrimaryGroup,Title,Mail,telephonenumber,');
		echo '</td></tr><tr><td>';
		echo _('mobileTelephoneNumber,facsimileNumber,street,postalCode,postalAddress,');
		echo '</td></tr><tr><td>';
		echo _('employeeType. If PrimaryGroup is not given it\'ll used from profile.');
		echo '</td></tr><tr><td>';
		echo _('If PrimaryGroup doesn\'t exist it will be created.');
		echo '</td></tr><tr><td>';
		echo _('Select Profile:');
		echo '</td><td><select name="f_selectprofile">';
			foreach ($profilelist as $profile) echo '<option>' . $profile;
			echo '</select>';
		echo '</td></tr>'."\n".'<tr><td>';
		echo _('Suffix'); echo '</td><td><select name="f_general_suffix">';
		foreach ($_SESSION['ldap']->search_units($_SESSION['config']->get_UserSuffix()) as $suffix) {
			if ($_POST['f_general_suffix']) {
				if ($_POST['f_general_suffix'] == $suffix)
					echo '<option selected>' . $suffix. '</option>';
				else echo '<option>' . $suffix. '</option>';
				}
			else echo '<option>' . $suffix. '</option>';
			}
		echo '</select></td><td><a href="help.php?HelpNumber=461" target="lamhelp">'._('Help').'</a>
			</td></tr><tr><td>
			<input type="hidden" name="MAX_FILE_SIZE" value="100000">';
		echo _('Select file:');
		echo '</td><td><input name="userfile" type="file"></td></tr>
			<tr><td><input name="tolist" type="submit" value="'; echo _('Commit'); echo '">';
		echo '</td></tr>';
		break;
	case 'list':
		if (!is_array($accounts)) $accounts = array();
		$groups = array();
		echo '<tr><td>';
		echo _('Confirm List');
		echo '</td></tr>';
		if ($_FILES['userfile']['size']>0) {
			$handle = fopen($_FILES['userfile']['tmp_name'], 'r');
			for ($row=0; $line_array=fgetcsv($handle,2048); $row++) { // loops for every row
				$iv = base64_decode($_COOKIE["IV"]);
				$key = base64_decode($_COOKIE["Key"]);
				$_SESSION['accounts'][$row] = loadUserProfile($_POST['f_selectprofile']) ;
				$_SESSION['accounts'][$row]->general_dn = $_POST['f_general_suffix'];
				if ($line_array[0]) $_SESSION['accounts'][$row]->general_surname = $line_array[0];
				if ($line_array[1]) $_SESSION['accounts'][$row]->general_givenname = $line_array[1];
				if ($line_array[2]) $_SESSION['accounts'][$row]->general_username = $line_array[2];
				if ($line_array[3]) $_SESSION['accounts'][$row]->general_group = $line_array[3];
				if ($line_array[4]) $_SESSION['accounts'][$row]->personal_title = $line_array[4];
				if ($line_array[5]) $_SESSION['accounts'][$row]->personal_mail = $line_array[5];
				if ($line_array[6]) $_SESSION['accounts'][$row]->personal_telephoneNumber = $line_array[6];
				if ($line_array[7]) $_SESSION['accounts'][$row]->personal_mobileTelephoneNumber = $line_array[7];
				if ($line_array[8]) $_SESSION['accounts'][$row]->personal_facsimileTelephoneNumber = $line_array[8];
				if ($line_array[9]) $_SESSION['accounts'][$row]->personal_street = $line_array[9];
				if ($line_array[10]) $_SESSION['accounts'][$row]->personal_postalCode = $line_array[10];
				if ($line_array[11]) $_SESSION['accounts'][$row]->personal_postalAddress = $line_array[11];
				if ($line_array[12]) $_SESSION['accounts'][$row]->personal_employeeType = $line_array[12];
				$_SESSION['accounts'][$row]->unix_password = base64_encode(mcrypt_encrypt(MCRYPT_RIJNDAEL_256,
					$key, genpasswd(), MCRYPT_MODE_ECB, $iv));
				$_SESSION['accounts'][$row]->smb_password=$_SESSION['accounts'][$row]->unix_password;
				}
			}
			for ($row=0; $row<sizeof($_SESSION['accounts']); $row++) { // loops for every row
				list($values, $_SESSION['errors'][$row]) = checkglobal($_SESSION['accounts'][$row], 'user'); // account.inc
				if (is_object($values)) {
					while (list($key, $val) = each($values)) // Set only defined values
						if ($val) $_SESSION['accounts'][$row]->$key = $val;
					$_SESSION['accounts'][$row]->general_uidNumber="";
					}
				$error = checkunix($_SESSION['accounts'][$row], 'user'); // account.inc
				$_SESSION['errors'][$row] = array_merge($_SESSION['errors'][$row], $error);
				list($values, $error) = checksamba($_SESSION['accounts'][$row], 'user'); // account.inc
				if (is_object($values)) {
					while (list($key, $val) = each($values)) // Set only defined values
						if ($val) $_SESSION['accounts'][$row]->$key = $val;
					}
				$_SESSION['errors'][$row] = array_merge($_SESSION['errors'][$row], $error);
				list($values, $error) = checkquota($_SESSION['accounts'][$row], 'user'); // account.inc
				if (is_object($values)) {
					while (list($key, $val) = each($values)) // Set only defined values
						if ($val) $_SESSION['accounts'][$row]->$key = $val;
					}
				$_SESSION['errors'][$row] = array_merge($_SESSION['errors'][$row], $error);
				list($values, $error) = checkpersonal($_SESSION['accounts'][$row], 'user'); // account.inc
				if (is_object($values)) {
					while (list($key, $val) = each($values)) // Set only defined values
						if ($val) $_SESSION['accounts'][$row]->$key = $val;
					}
				$_SESSION['errors'][$row] = array_merge($_SESSION['errors'][$row], $error);
				}
		for ($i=0; $i<sizeof($groups); $i++)
			if ($_SESSION['accounts'][$i]->general_group!='')
				StatusMessage('INFO', _('Group ').
					$_SESSION['accounts'][$i]->general_group._(' not found!'), _('It will be created.'));
		if ($_FILES['userfile']['size']>0) {
			fclose($handle);
			unlink($_FILES['userfile']['tmp_name']);
			}
		echo '<tr><td>'._('row').'</td><td>'. _('Surname'). '</td><td>'. _('Givenname'). '</td><td>'. _('Username'). '</td><td>'. _('Primary Group'). '</td><td>'.
			_('Details'). '</td><td>' . _('Warnings'). '</td><td>' . _('Errors') . '</td></tr>';
		for ($row=0; $row<sizeof($_SESSION['accounts']); $row++) { // loops for every row
			echo '<tr><td>'.$row.'</td><td>'.
				$_SESSION['accounts'][$row]->general_surname.'</td><td>'.
				$_SESSION['accounts'][$row]->general_givenname.'</td><td>'.
				$_SESSION['accounts'][$row]->general_username.'</td><td>'.
				$_SESSION['accounts'][$row]->general_group.'</td><td>
				<a target=_blank href="massdetail.php?row='.$row.'&type=detail">'._('Show Details.').'</a></td><td>';
				for ($i=$row+1; $i<sizeof($_SESSION['accounts']); $i++ ) {
					if ($_SESSION['accounts'][$row]->general_username == $_SESSION['accounts'][$i]->general_username) { // Found user with same name
						// Set Info
						$_SESSION['errors'][$i][] = array('INFO', _('Warning'), _('Username in use. Selected next free username'));
						// get last character of username
						$lastchar = substr($_SESSION['accounts'][$i]->general_username, strlen($_SESSION['accounts'][$i]->general_username)-1, 1);
						// Last character is no number
						if ( !ereg('^([0-9])+$', $lastchar))
							$_SESSION['accounts'][$i]->general_username = $_SESSION['accounts'][$i]->general_username . '2';
						 else {
							$j=strlen($_SESSION['accounts'][$i]->general_username)-1;
							$mark = false;
							while (!$mark) {
								if (ereg('^([0-9])+$',substr($_SESSION['accounts'][$i]->general_username, $j, strlen($_SESSION['accounts'][$i]->general_username)-$j))) $j--;
									else $mark=true;
								}
							// increase last number with one
							$firstchars = substr($_SESSION['accounts'][$i]->general_username, 0, $j+1);
							$lastchars = substr($_SESSION['accounts'][$i]->general_username, $j+1, strlen($_SESSION['accounts'][$i]->general_username)-$j);
							$_SESSION['accounts'][$i]->general_username = $firstchars . (intval($lastchars)+1);
							}
						while ($temp = ldapexists($_SESSION['accounts'][$i], 'user')) {
							// get last character of username
							$lastchar = substr($_SESSION['accounts'][$i]->general_username, strlen($_SESSION['accounts'][$i]->general_username)-1, 1);
							// Last character is no number
							if ( !ereg('^([0-9])+$', $lastchar))
								$_SESSION['accounts'][$i]->general_username = $_SESSION['accounts'][$i]->general_username . '2';
							 else {
								$j=strlen($_SESSION['accounts'][$i]->general_username)-1;
								$mark = false;
								while (!$mark) {
									if (ereg('^([0-9])+$',substr($_SESSION['accounts'][$i]->general_username, $j, strlen($_SESSION['accounts'][$i]->general_username)-$j))) $i--;
										else $mark=true;
									}
								// increase last number with one
								$firstchars = substr($_SESSION['accounts'][$i]->general_username, 0, $j+1);
								$lastchars = substr($_SESSION['accounts'][$i]->general_username, $j+1, strlen($_SESSION['accounts'][$i]->general_username)-$j);
								$_SESSION['accounts'][$i]->general_username = $firstchars . (intval($lastchars)+1);
								}
							}
						}
					}
			if ($values->general_username != $return->general_username) $errors[] = array('WARN', _('Username'), _('Username allready in use. Selected next free username.'));
				$found=false;
				for ($i=0; $i<sizeof($_SESSION['errors'][$row]); $i++)
					if ($_SESSION['errors'][$row][$i][0] == 'INFO') $found=true;
				if ($found) echo '<a target="massdetail" href="massdetail.php?row='.$row.'&type=warn">'._('Show Warnings.').'</a>';
				echo '</td><td>';
				$found=false;
				for ($i=0; $i<sizeof($_SESSION['errors'][$row]); $i++)
					if ($_SESSION['errors'][$row][$i][0] == 'ERROR') $found=true;
				if ($found) echo '<a target="massdetail" href="massdetail.php?row='.$row.'&type=error">'._('Show Errors.').'</a>';
				echo '</td></tr>';

			}
		$noerrors=true;
		for ($i=0; $i<sizeof($_SESSION['errors']); $i++)
			for ($j=0; $j<sizeof($_SESSION['errors'][$i]); $j++)
				if ($_SESSION['errors'][$i][$j][0] == 'ERROR') $noerrors=false;
		$nowarn=true;
		for ($i=0; $i<sizeof($_SESSION['errors']); $i++)
			for ($j=0; $j<sizeof($_SESSION['errors'][$i]); $j++)
				if ($_SESSION['errors'][$i][$j][0] == 'INFO') $nowarn=false;
		echo '<br>';
		if (!$noerrors) { echo '<tr><td>'. _('There are some errors!!') . '</td></tr>'; }
		if (!$nowarn) { echo '<tr><td>'. _('There are some warnings.') . '</td></tr>'; }
		echo '</table><br><table class="masscreate" width="100%">
			<tr><td><input name="back" type="submit" value="'; echo _('Back'); echo '">';
		echo '</td><td><input name="cancel" type="submit" value="'; echo _('Cancel'); echo '">';
		echo '</td><td><input name="list" type="submit" value="'; echo _('Refresh'); echo '">';
		if ($noerrors) { echo '</td><td><input name="create" type="submit" value="'; echo _('Create'); echo '">'; }
		echo '</td></tr>';
		break;
	case 'create':
		$stay=true;
		while (($_SESSION['pointer'] < sizeof($_SESSION['accounts'])) && $stay) {
			if (getgid($_SESSION['accounts'][$_SESSION['pointer']]->general_group)==-1) {
				$group = new account();
				$group->general_username=$_SESSION['accounts'][$_SESSION['pointer']]->general_group;
				$group->general_uidNumber=checkid($_SESSION['accounts'][$_SESSION['pointer']], 'group');
				$group->general_gecos=$_SESSION['accounts'][$_SESSION['pointer']]->general_group;
				creategroup($group);
				}
			$_SESSION['accounts'][$_SESSION['pointer']]->general_uidNumber = checkid($_SESSION['accounts'][$_SESSION['pointer']], 'user');
			$iv = base64_decode($_COOKIE["IV"]);
			$key = base64_decode($_COOKIE["Key"]);
			$_SESSION['accounts'][$_SESSION['pointer']]->unix_password = base64_encode(mcrypt_encrypt(
				MCRYPT_RIJNDAEL_256, $key, genpasswd(), MCRYPT_MODE_ECB, $iv));
			$_SESSION['accounts'][$_SESSION['pointer']]->smb_password = $_SESSION['accounts'][$_SESSION['pointer']]->unix_password;
			if ( (time()-$time)<(get_cfg_var('max_execution_time')-10)) {
				$error = createuser($_SESSION['accounts'][$_SESSION['pointer']]);
				if ($error==1) $_SESSION['pointer']++;
					else {
					$stay = false;
					StatusMessage('ERROR', _('Could not create user'), _('Was unable to create ').$_SESSION['accounts'][$row]->general_username);
					}
				}
				else $stay=false;
			}
		if (!$stay) { echo '<tr><td><input name="cancel" type="submit" value="'; echo _('Cancel'); echo '">
			<td>'._('Please wait until all users are created if no error is shown.').'</td></tr>'; }
			else {
			echo '<tr><td>';
			echo _('All Users have been created');
			echo '</td></tr><tr><td>';
			echo '<tr><td><input name="cancel" type="submit" value="'; echo _('Mainmenu'); echo '">';
			echo '</td><td></td><td><input name="pdf" type="submit" value="'; echo _('Create PDF-File'); echo '">';
			echo '</td></tr>';
			}
		break;
	}


if ($select!='pdf') echo '</table></form></body></html>';
?>