2010-01-27 08:54:31 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* This file is part of the Froxlor project.
|
|
|
|
|
* Copyright (c) 2010 the Froxlor Team (see authors).
|
|
|
|
|
*
|
2022-04-28 18:48:00 +00:00
|
|
|
* This program is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU General Public License
|
|
|
|
|
* as published by the Free Software Foundation; either version 2
|
|
|
|
|
* of the License, or (at your option) any later version.
|
2010-01-27 08:54:31 +00:00
|
|
|
*
|
2022-04-28 18:48:00 +00:00
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
* GNU General Public License for more details.
|
2011-05-04 09:59:20 +00:00
|
|
|
*
|
2022-04-28 18:48:00 +00:00
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
|
* along with this program; if not, you can also view it online at
|
|
|
|
|
* https://files.froxlor.org/misc/COPYING.txt
|
|
|
|
|
*
|
|
|
|
|
* @copyright the authors
|
|
|
|
|
* @author Froxlor team <team@froxlor.org>
|
|
|
|
|
* @license https://files.froxlor.org/misc/COPYING.txt GPLv2
|
2010-01-27 08:54:31 +00:00
|
|
|
*/
|
|
|
|
|
|
2022-02-20 17:00:44 +00:00
|
|
|
const AREA = 'admin';
|
2022-04-28 18:48:00 +00:00
|
|
|
require __DIR__ . '/lib/init.php';
|
2022-02-20 17:00:44 +00:00
|
|
|
|
2022-02-28 08:21:04 +00:00
|
|
|
use Froxlor\Api\Commands\Admins;
|
2022-04-28 18:48:00 +00:00
|
|
|
use Froxlor\CurrentUser;
|
2018-12-19 15:57:03 +00:00
|
|
|
use Froxlor\Database\Database;
|
2022-04-28 18:48:00 +00:00
|
|
|
use Froxlor\FroxlorLogger;
|
|
|
|
|
use Froxlor\PhpHelper;
|
2018-12-19 15:57:03 +00:00
|
|
|
use Froxlor\Settings;
|
2022-04-28 18:48:00 +00:00
|
|
|
use Froxlor\UI\Collection;
|
|
|
|
|
use Froxlor\UI\HTML;
|
|
|
|
|
use Froxlor\UI\Listing;
|
2022-02-18 21:19:36 +00:00
|
|
|
use Froxlor\UI\Panel\UI;
|
2022-02-20 17:00:44 +00:00
|
|
|
use Froxlor\UI\Request;
|
2022-04-28 18:48:00 +00:00
|
|
|
use Froxlor\UI\Response;
|
2018-12-18 12:45:05 +00:00
|
|
|
|
2022-12-30 20:43:27 +00:00
|
|
|
$id = (int)Request::any('id');
|
2010-01-27 08:54:31 +00:00
|
|
|
|
2022-07-23 09:52:22 +00:00
|
|
|
if (($page == 'admins' || $page == 'overview') && $userinfo['change_serversettings'] == '1') {
|
2013-11-16 16:23:51 +00:00
|
|
|
if ($action == '') {
|
2022-04-28 18:48:00 +00:00
|
|
|
$log->logAction(FroxlorLogger::ADM_ACTION, LOG_NOTICE, "viewed admin_admins");
|
2022-02-20 17:00:44 +00:00
|
|
|
|
2022-04-28 18:48:00 +00:00
|
|
|
try {
|
|
|
|
|
$admin_list_data = include_once dirname(__FILE__) . '/lib/tablelisting/admin/tablelisting.admins.php';
|
|
|
|
|
$collection = (new Collection(Admins::class, $userinfo))
|
2022-09-30 07:44:11 +00:00
|
|
|
->withPagination($admin_list_data['admin_list']['columns'], $admin_list_data['admin_list']['default_sorting']);
|
2019-11-10 17:35:32 +00:00
|
|
|
} catch (Exception $e) {
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::dynamicError($e->getMessage());
|
2019-11-10 17:35:32 +00:00
|
|
|
}
|
2010-01-27 08:54:31 +00:00
|
|
|
|
2022-03-18 11:53:34 +00:00
|
|
|
UI::view('user/table.html.twig', [
|
2022-04-28 18:48:00 +00:00
|
|
|
'listing' => Listing::format($collection, $admin_list_data, 'admin_list'),
|
|
|
|
|
'actions_links' => [
|
|
|
|
|
[
|
|
|
|
|
'href' => $linker->getLink(['section' => 'admins', 'page' => $page, 'action' => 'add']),
|
|
|
|
|
'label' => lng('admin.admin_add')
|
|
|
|
|
]
|
|
|
|
|
]
|
2022-02-25 19:41:06 +00:00
|
|
|
]);
|
|
|
|
|
} elseif ($action == 'su') {
|
2018-02-23 10:57:29 +00:00
|
|
|
try {
|
2022-04-28 18:48:00 +00:00
|
|
|
$json_result = Admins::getLocal($userinfo, [
|
2018-02-23 10:57:29 +00:00
|
|
|
'id' => $id
|
2022-04-28 18:48:00 +00:00
|
|
|
])->get();
|
2018-02-23 10:57:29 +00:00
|
|
|
} catch (Exception $e) {
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::dynamicError($e->getMessage());
|
2018-02-23 10:57:29 +00:00
|
|
|
}
|
|
|
|
|
$result = json_decode($json_result, true)['data'];
|
2010-01-27 08:54:31 +00:00
|
|
|
$destination_admin = $result['loginname'];
|
|
|
|
|
|
2018-12-22 07:15:31 +00:00
|
|
|
if ($destination_admin != '' && $result['adminid'] != $userinfo['userid']) {
|
2022-04-28 18:48:00 +00:00
|
|
|
$result['switched_user'] = CurrentUser::getData();
|
2022-03-14 21:51:59 +00:00
|
|
|
$result['adminsession'] = 1;
|
|
|
|
|
$result['userid'] = $result['adminid'];
|
2023-08-11 10:09:23 +00:00
|
|
|
session_regenerate_id(true);
|
2022-04-28 18:48:00 +00:00
|
|
|
CurrentUser::setData($result);
|
|
|
|
|
|
|
|
|
|
$log->logAction(
|
|
|
|
|
FroxlorLogger::ADM_ACTION,
|
|
|
|
|
LOG_INFO,
|
|
|
|
|
"switched adminuser and is now '" . $destination_admin . "'"
|
|
|
|
|
);
|
|
|
|
|
Response::redirectTo('admin_index.php');
|
2013-11-16 16:23:51 +00:00
|
|
|
} else {
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::redirectTo('index.php', [
|
2018-12-19 15:57:03 +00:00
|
|
|
'action' => 'login'
|
2022-04-28 18:48:00 +00:00
|
|
|
]);
|
2010-01-27 08:54:31 +00:00
|
|
|
}
|
2018-12-19 15:57:03 +00:00
|
|
|
} elseif ($action == 'delete' && $id != 0) {
|
2018-02-23 10:57:29 +00:00
|
|
|
try {
|
2022-04-28 18:48:00 +00:00
|
|
|
$json_result = Admins::getLocal($userinfo, [
|
2018-02-23 10:57:29 +00:00
|
|
|
'id' => $id
|
2022-04-28 18:48:00 +00:00
|
|
|
])->get();
|
2018-02-23 10:57:29 +00:00
|
|
|
} catch (Exception $e) {
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::dynamicError($e->getMessage());
|
2018-02-23 10:57:29 +00:00
|
|
|
}
|
|
|
|
|
$result = json_decode($json_result, true)['data'];
|
2013-11-16 16:23:51 +00:00
|
|
|
|
|
|
|
|
if ($result['loginname'] != '') {
|
2018-12-22 07:15:31 +00:00
|
|
|
if ($result['adminid'] == $userinfo['userid']) {
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::standardError('youcantdeleteyourself');
|
2010-01-27 08:54:31 +00:00
|
|
|
}
|
|
|
|
|
|
2024-05-09 13:48:23 +00:00
|
|
|
if (Request::post('send') == 'send') {
|
2022-04-28 18:48:00 +00:00
|
|
|
Admins::getLocal($userinfo, [
|
2018-02-23 10:57:29 +00:00
|
|
|
'id' => $id
|
2022-04-28 18:48:00 +00:00
|
|
|
])->delete();
|
|
|
|
|
Response::redirectTo($filename, [
|
2022-03-14 21:51:59 +00:00
|
|
|
'page' => $page
|
2022-04-28 18:48:00 +00:00
|
|
|
]);
|
2013-11-16 16:23:51 +00:00
|
|
|
} else {
|
2022-04-28 18:48:00 +00:00
|
|
|
HTML::askYesNo('admin_admin_reallydelete', $filename, [
|
2018-12-19 15:57:03 +00:00
|
|
|
'id' => $id,
|
|
|
|
|
'page' => $page,
|
|
|
|
|
'action' => $action
|
2022-04-28 18:48:00 +00:00
|
|
|
], $result['loginname']);
|
2010-01-27 08:54:31 +00:00
|
|
|
}
|
|
|
|
|
}
|
2018-12-19 15:57:03 +00:00
|
|
|
} elseif ($action == 'add') {
|
2024-05-09 13:48:23 +00:00
|
|
|
if (Request::post('send') == 'send') {
|
2018-02-22 15:51:56 +00:00
|
|
|
try {
|
2024-05-09 13:48:23 +00:00
|
|
|
Admins::getLocal($userinfo, Request::postAll())->add();
|
2018-02-22 15:51:56 +00:00
|
|
|
} catch (Exception $e) {
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::dynamicError($e->getMessage());
|
2010-01-27 08:54:31 +00:00
|
|
|
}
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::redirectTo($filename, [
|
2022-03-14 21:51:59 +00:00
|
|
|
'page' => $page
|
2022-04-28 18:48:00 +00:00
|
|
|
]);
|
2013-11-16 16:23:51 +00:00
|
|
|
} else {
|
2022-02-18 21:19:36 +00:00
|
|
|
$ipaddress = [];
|
2022-04-28 18:48:00 +00:00
|
|
|
$ipaddress[-1] = lng('admin.allips');
|
2013-11-16 16:23:51 +00:00
|
|
|
$ipsandports_stmt = Database::query("
|
2015-02-15 06:54:34 +00:00
|
|
|
SELECT `id`, `ip` FROM `" . TABLE_PANEL_IPSANDPORTS . "` GROUP BY `ip` ORDER BY `ip` ASC
|
2013-11-16 16:23:51 +00:00
|
|
|
");
|
|
|
|
|
while ($row = $ipsandports_stmt->fetch(PDO::FETCH_ASSOC)) {
|
2022-02-18 21:19:36 +00:00
|
|
|
$ipaddress[$row['id']] = $row['ip'];
|
2010-01-27 08:54:31 +00:00
|
|
|
}
|
|
|
|
|
|
2018-12-19 15:57:03 +00:00
|
|
|
$admin_add_data = include_once dirname(__FILE__) . '/lib/formfields/admin/admin/formfield.admin_add.php';
|
2015-06-10 12:59:38 +00:00
|
|
|
|
2022-03-18 11:53:34 +00:00
|
|
|
UI::view('user/form.html.twig', [
|
2022-04-28 18:48:00 +00:00
|
|
|
'formaction' => $linker->getLink(['section' => 'admins']),
|
2022-02-18 21:19:36 +00:00
|
|
|
'formdata' => $admin_add_data['admin_add']
|
|
|
|
|
]);
|
2010-01-27 08:54:31 +00:00
|
|
|
}
|
2018-12-19 15:57:03 +00:00
|
|
|
} elseif ($action == 'edit' && $id != 0) {
|
2018-02-23 10:57:29 +00:00
|
|
|
try {
|
2022-04-28 18:48:00 +00:00
|
|
|
$json_result = Admins::getLocal($userinfo, [
|
2018-02-23 10:57:29 +00:00
|
|
|
'id' => $id
|
2022-04-28 18:48:00 +00:00
|
|
|
])->get();
|
2018-02-23 10:57:29 +00:00
|
|
|
} catch (Exception $e) {
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::dynamicError($e->getMessage());
|
2018-02-23 10:57:29 +00:00
|
|
|
}
|
|
|
|
|
$result = json_decode($json_result, true)['data'];
|
2013-11-16 16:23:51 +00:00
|
|
|
|
|
|
|
|
if ($result['loginname'] != '') {
|
2024-05-09 13:48:23 +00:00
|
|
|
if (Request::post('send') == 'send') {
|
2018-02-23 10:57:29 +00:00
|
|
|
try {
|
2024-05-09 13:48:23 +00:00
|
|
|
Admins::getLocal($userinfo, Request::postAll())->update();
|
2018-02-23 10:57:29 +00:00
|
|
|
} catch (Exception $e) {
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::dynamicError($e->getMessage());
|
2015-02-08 11:43:04 +00:00
|
|
|
}
|
2022-04-28 18:48:00 +00:00
|
|
|
Response::redirectTo($filename, [
|
2022-03-14 21:51:59 +00:00
|
|
|
'page' => $page
|
2022-04-28 18:48:00 +00:00
|
|
|
]);
|
2013-11-16 16:23:51 +00:00
|
|
|
} else {
|
2013-12-15 10:47:23 +00:00
|
|
|
$dec_places = Settings::Get('panel.decimal_places');
|
|
|
|
|
$result['traffic'] = round($result['traffic'] / (1024 * 1024), $dec_places);
|
|
|
|
|
$result['diskspace'] = round($result['diskspace'] / 1024, $dec_places);
|
2010-01-27 08:54:31 +00:00
|
|
|
$result['email'] = $idna_convert->decode($result['email']);
|
|
|
|
|
|
2022-02-18 21:19:36 +00:00
|
|
|
$ipaddress = [];
|
2022-04-28 18:48:00 +00:00
|
|
|
$ipaddress[-1] = lng('admin.allips');
|
2013-11-16 16:23:51 +00:00
|
|
|
$ipsandports_stmt = Database::query("
|
2022-02-18 21:19:36 +00:00
|
|
|
SELECT `id`, `ip` FROM `" . TABLE_PANEL_IPSANDPORTS . "` GROUP BY `ip` ORDER BY `ip` ASC
|
2013-11-16 16:23:51 +00:00
|
|
|
");
|
|
|
|
|
while ($row = $ipsandports_stmt->fetch(PDO::FETCH_ASSOC)) {
|
2022-02-18 21:19:36 +00:00
|
|
|
$ipaddress[$row['id']] = $row['ip'];
|
2010-01-27 08:54:31 +00:00
|
|
|
}
|
|
|
|
|
|
2022-04-28 18:48:00 +00:00
|
|
|
$result = PhpHelper::htmlentitiesArray($result);
|
2011-02-08 11:53:24 +00:00
|
|
|
|
2018-12-19 15:57:03 +00:00
|
|
|
$admin_edit_data = include_once dirname(__FILE__) . '/lib/formfields/admin/admin/formfield.admin_edit.php';
|
2011-02-08 11:53:24 +00:00
|
|
|
|
2022-03-18 11:53:34 +00:00
|
|
|
UI::view('user/form.html.twig', [
|
2022-04-28 18:48:00 +00:00
|
|
|
'formaction' => $linker->getLink(['section' => 'admins', 'id' => $id]),
|
2022-02-28 09:51:19 +00:00
|
|
|
'formdata' => $admin_edit_data['admin_edit'],
|
|
|
|
|
'editid' => $id
|
2022-02-18 21:19:36 +00:00
|
|
|
]);
|
2010-01-27 08:54:31 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
