<?php
require_once ($_SERVER["DOCUMENT_ROOT"]."/inc/auth.php");
require_once ($_SERVER["DOCUMENT_ROOT"]."/inc/languages/" . HTML_LANG . ".php");
require_once ($_SERVER["DOCUMENT_ROOT"]."/inc/idfilter.php");


$default_sort='ip_int';
require_once ($_SERVER['DOCUMENT_ROOT']."/inc/sortfilter.php");

$msg_error = "";

$sSQL = "SELECT * FROM User_list WHERE id=$id";
$user_info = get_record_sql($db_link, $sSQL);

if (isset($_POST["edituser"])) {
    unset($new);
    $new["ou_id"] = $_POST["f_ou"] * 1;
    $new["filter_group_id"] = $_POST["f_filter"]*1;
    $new["queue_id"] = $_POST["f_queue"]*1;
    $new["login"] = trim($_POST["f_login"]);
    $new["fio"] = trim($_POST["f_fio"]);
    if (get_const('default_user_ou_id') == $new["ou_id"] or get_const('default_hotspot_ou_id') == $new["ou_id"]) {
        $new["enabled"] = 0;
        $new["blocked"] = 0;
        $new["day_quota"] = 0;
        $new["month_quota"] = 0;
        $auth["enabled"] = 0;
        $auth["blocked"] = 0;
    } else {
        $new["enabled"] = $_POST["f_enabled"] * 1;
        $new["blocked"] = $_POST["f_blocked"] * 1;
        $new["day_quota"] = trim($_POST["f_perday"]) * 1;
        $new["month_quota"] = trim($_POST["f_permonth"]) * 1;
    }
    $changes = get_diff_rec($db_link,"User_list","id='$id'", $new, 0);
    if (!empty($changes)) { LOG_WARNING($db_link,"Changed user id: $id login: ".$new["login"].". \r\Apply: $changes"); }
    update_record($db_link, "User_list", "id='$id'", $new);
    run_sql($db_link, "UPDATE User_auth SET ou_id=".$new["ou_id"]." WHERE user_id=".$id);
    run_sql($db_link, "UPDATE devices SET device_name='".$new["login"]."' WHERE user_id=".$id);
    header("Location: " . $_SERVER["REQUEST_URI"]);
    exit;
}

if (isset($_POST["addMacRule"])) {
    unset($new);
    $first_auth = get_record_sql($db_link,"SELECT mac FROM User_auth WHERE user_id=".$id." AND deleted=0 AND LENGTH(mac)>0 ORDER BY id");
    if (!empty($first_auth) and !empty($first_auth['mac'])) {
        $new['user_id']=$id;
        $new['type']=2;
        $new['rule']=$first_auth['mac'];
	    insert_record($db_link,"auth_rules",$new);
	    LOG_INFO($db_link,"Create auto rule at id: ".$id." login: ".$user_info["login"]." for mac ".$first_auth['mac']);
	    }
    header("Location: " . $_SERVER["REQUEST_URI"]);
    exit;
}

if (isset($_POST["delMacRule"])) {
    run_sql($db_link,"DELETE FROM auth_rules WHERE user_id=".$id." AND type=2");
    LOG_INFO($db_link,"All autorules removed for id: $id login: ".$user_info["login"]." by mac");
    header("Location: " . $_SERVER["REQUEST_URI"]);
    exit;
}

if (isset($_POST["addIPRule"])) {
    unset($new);
    $first_auth = get_record_sql($db_link,"SELECT ip FROM User_auth WHERE user_id=".$id." AND deleted=0 AND LENGTH(ip)>0 ORDER BY id");
    if (!empty($first_auth) and !empty($first_auth['ip'])) {
        $new['user_id']=$id;
        $new['type']=1;
        $new['rule']=$first_auth['ip'];
	    insert_record($db_link,"auth_rules",$new);
	    LOG_INFO($db_link,"Create auto rule id: ".$id." login: ".$user_info["login"]." for ip ".$first_auth['IP']);
	}
    header("Location: " . $_SERVER["REQUEST_URI"]);
    exit;
}

if (isset($_POST["delIPRule"])) {
    run_sql($db_link,"DELETE FROM auth_rules WHERE user_id=".$id." AND type=1");
    LOG_INFO($db_link,"Removed all auto rules for id: $id login: ".$user_info["login"]." by ip");
    header("Location: " . $_SERVER["REQUEST_URI"]);
    exit;
}

if (isset($_POST["showDevice"])) {
    $device = get_record_sql($db_link,"SELECT * FROM devices WHERE user_id=".$id);
    $auth = get_record_sql($db_link,"SELECT * FROM User_auth WHERE user_id=".$id);
    if (empty($device) and !empty($auth)) {
	    $new['user_id']=$id;
        $new['device_name'] = $user_info['login'];
        $new['device_type'] = 5;
        $new['ip']=$auth['ip'];
        $new['community'] = get_const('snmp_default_community');
        $new['snmp_version'] = get_const('snmp_default_version');
        $new_id=insert_record($db_link, "devices", $new);
        unset($_POST);
        if (!empty($new_id)) {
            LOG_INFO($db_link, "Created device with id: $new_id for auth_id: $id");
	        header("Location: /admin/devices/editdevice.php?id={$new_id}");
	        exit;
	        } else {
	        header("Location: ".$_SERVER["REQUEST_URI"]);
	        exit;
	        }
	    }
    header("Location: /admin/devices/editdevice.php?id=".$device['id']);
    exit;
}

if (isset($_POST["addauth"])) {
    $fip = substr(trim($_POST["newip"]), 0, 18);
    if (isset($_POST["newmac"])) { $fmac = mac_dotted(substr(trim($_POST["newmac"]), 0, 17)); }
    if ($fip) {
        if (checkValidIp($fip)) {
            $ip_aton = ip2long($fip);
            //search mac
            $mac_exists=find_mac_in_subnet($db_link,$fip,$fmac);
            if (isset($mac_exists) and $mac_exists['count']>=1 and !in_array($id,$mac_exists['users_id'])) {
                $dup_sql = "SELECT * FROM User_list WHERE id=".$mac_exists['users_id']['0'];
                $dup_info = get_record_sql($db_link, $dup_sql);
                $msg_error="Mac already exists at another user in this subnet! Skip creating $fip [$fmac].<br>Old user id: ".$dup_info['id']." login: ".$dup_info['login'];
                $_SESSION[$page_url]['msg'] = $msg_error;
                LOG_ERROR($db_link, $msg_error);
                header("Location: " . $_SERVER["REQUEST_URI"]);
                exit;
                }
            //disable dhcp for secondary ip
            $f_dhcp = 1;
            if (in_array($id,$mac_exists['users_id'])) { $f_dhcp = 0; }
            //search ip
            $dup_ip_record = get_record_sql($db_link, "SELECT * FROM User_auth WHERE `ip_int`=$ip_aton AND user_id<>".$id." AND deleted=0");
            if (!empty($dup_ip_record)) {
                $dup_info = get_record_sql($db_link, "SELECT * FROM User_list WHERE id=".$dup_ip_record['user_id']);
                $msg_error = "$fip already exists. Skip creating $fip [$fmac].<br>Old user id: ".$dup_info['id']." login: ".$dup_info['login'];
                $_SESSION[$page_url]['msg'] = $msg_error;
                LOG_ERROR($db_link, $msg_error);
                header("Location: " . $_SERVER["REQUEST_URI"]);
                exit;
                }
            $fid = new_auth($db_link, $fip, $fmac, $id);
            if (!empty($fid)) {
                $new['dhcp']=$f_dhcp;
                update_record($db_link,"User_auth","id=".$fid,$new);
                apply_auth_rule($db_link,$fid,$id);
                LOG_WARNING($db_link,"Add ip for login: ".$user_info["login"].": ip => $fip, mac => $fmac",$fid);
                header("Location: /admin/users/editauth.php?id=".$fid);
                exit;
                }
	        header("Location: " . $_SERVER["REQUEST_URI"]);
	        exit;
    	    } else {
                $msg_error = "$msg_ip_error xxx.xxx.xxx.xxx";
                $_SESSION[$page_url]['msg'] = $msg_error;
    	    }
	}
    header("Location: " . $_SERVER["REQUEST_URI"]);
    exit;
    }

if (isset($_POST["removeauth"])) {
    $auth_id = $_POST["f_auth_id"];
    foreach ($auth_id as $key => $val) {
        if ($val) {
            run_sql($db_link, 'DELETE FROM connections WHERE auth_id='.$val);
            run_sql($db_link, 'DELETE FROM User_auth_alias WHERE auth_id='.$val);
            $auth["deleted"] = 1;
            $changes = get_diff_rec($db_link,"User_auth","id='$val'", '', 0);
            if (!empty($changes)) { LOG_WARNING($db_link,"Removed ip from login: ".$user_info["login"].": \r\n $changes",$val); }
            update_record($db_link, "User_auth", "id=" . $val, $auth);
        }
    }
    header("Location: " . $_SERVER["REQUEST_URI"]);
    exit;
}

if (isset($_POST["new_user"])) {
    $auth_id = $_POST["f_auth_id"];
    $save_traf = get_option($db_link, 23) * 1;
    foreach ($auth_id as $key => $val) {
        if ($val) {
	        $auth_info = get_record_sql($db_link,"SELECT ip, mac, comments, dns_name, dhcp_hostname FROM User_auth WHERE id=$val");
            $ou_id = $user_info["ou_id"];
            $login = NULL;
            if (!empty($auth_info["dns_name"])) { $login = $auth_info["dns_name"]; }
            if (empty($login) and !empty($auth_info["comments"])) { $login = transliterate($auth_info["comments"]); }
            if (empty($login) and !empty($auth_info["dhcp_hostname"])) { $login = $auth_info["dhcp_hostname"]; }
            if (empty($login) and !empty($auth_info["mac"])) { $login = $auth_info["mac"]; }
	        if (empty($login)) { $login = $auth_info["ip"]; }
	        $new_user = get_record_sql($db_link,"SELECT * FROM User_list WHERE LCase(login)=LCase('$login') and deleted=0");
            if (!empty($new_user)) {
                // move auth
                $auth["user_id"] = $new_user["id"];
                $auth["ou_id"] = $new_user["ou_id"];
                $auth["save_traf"] = $save_traf;
                update_record($db_link, "User_auth", "id='" . $val . "'", $auth);
                apply_auth_rule($db_link,$val,$l_id);
                LOG_WARNING($db_link,"ip from id: $val moved to another user user_id: ".$new_user["id"], $val);
            } else {
                $new["login"] = $login;
                $new["ou_id"] = $ou_id;
                $l_id=insert_record($db_link, "User_list", $new);
                $auth["user_id"] = $l_id;
                $auth["save_traf"] = $save_traf;
                update_record($db_link, "User_auth", "id='" . $val . "'", $auth);
                LOG_WARNING($db_link,"Create user from ip: login => $login. ip-record auth_id: $val moved to this user.", $val);
            }
        }
    }
    header("Location: " . $_SERVER["REQUEST_URI"]);
    exit;
}

unset($_POST);

require_once ($_SERVER["DOCUMENT_ROOT"]."/inc/header.php");
?>
<div id="cont">
<?php
if (!empty($_SESSION[$page_url]['msg'])) {
    print '<div id="msg">'.$_SESSION[$page_url]['msg'].'</div>';
    unset($_SESSION[$page_url]['msg']);
    }
?>
<form name="def" action="edituser.php?id=<?php echo $id; ?>" method="post">
<input type="hidden" name="id" value=<?php echo $id; ?>>
<table class="data">
<tr>
<td colspan=2><?php print WEB_cell_login; ?></td>
<td colspan=2><?php print WEB_cell_fio; ?></td>
<td colspan=2><?php print WEB_cell_ou; ?></td>
</tr>
<tr>
<td colspan=2><input type="text" name="f_login" value="<?php print $user_info["login"]; ?>" size=25></td>
<td colspan=2><input type="text" name="f_fio" value="<?php print $user_info["fio"]; ?>" size=25></td>
<td colspan=2><?php print_ou_set($db_link, 'f_ou', $user_info["ou_id"]); ?></td>
</tr>
<tr>
<td colspan=2><?php print WEB_cell_perday; ?></td>
<td colspan=2><?php print WEB_cell_permonth; ?></td>
<td><?php print WEB_cell_blocked; ?></td>
<td><?php print WEB_cell_enabled; ?></td>
</tr>
<tr>
<td colspan=2><input type="text" name="f_perday" value="<?php echo $user_info["day_quota"]; ?>" size=5></td>
<td colspan=2><input type="text" name="f_permonth" value="<?php echo $user_info["month_quota"]; ?>" size=5></td>
<td ><?php print_qa_select('f_blocked', $user_info["blocked"]); ?></td>
<td ><?php print_qa_select('f_enabled', $user_info["enabled"]); ?></td>
</tr>
<tr><td class=data colspan=6><?php echo WEB_user_rules_for_autoassign; ?>:</td></tr>
<tr>
<td colspan=2><?php print WEB_cell_filter; ?></td>
<td colspan=2><?php print WEB_cell_shaper; ?></td>
<td colspan=2></td>
</tr>
<tr>
<td colspan=2><?php print_group_select($db_link, 'f_filter', $user_info["filter_group_id"]); ?></td>
<td colspan=2><?php print_queue_select($db_link, 'f_queue', $user_info["queue_id"]); ?></td>
<td colspan=2></td>
</tr>
<tr>
<?php
print "<td>"; print_url(WEB_user_rule_list,"/admin/users/edit_rules.php?id=$id"); print "</td>";
$rule_count = get_count_records($db_link,"auth_rules","user_id=".$id);
print "<td > Count: ".$rule_count."</td>";
$first_auth = get_record_sql($db_link,"SELECT id FROM User_auth WHERE user_id=".$id." AND deleted=0 ORDER BY id");
if (!empty($first_auth)) {
    //mac
    $mac_rule_count = get_count_records($db_link,"auth_rules","user_id=".$id." AND type=2");
    if (!empty($mac_rule_count)) { 
	    print "<td><input type=\"submit\" name=\"delMacRule\" value=".WEB_btn_mac_del." ></td>";
	    } else {
	    print "<td><input type=\"submit\" name=\"addMacRule\" value=".WEB_btn_mac_add." ></td>";
	    }
    //ip
    $ip_rule_count = get_count_records($db_link,"auth_rules","user_id=".$id." AND type=1");
    if (!empty($ip_rule_count)) { 
	    print "<td><input type=\"submit\" name=\"delIPRule\" value=".WEB_btn_ip_del." ></td>";
	    } else {
	    print "<td><input type=\"submit\" name=\"addIPRule\" value=".WEB_btn_ip_add." ></td>";
	    }
    } else { print "<td colspan=2></td>"; }
?>
<td colspan=2 align=right><?php print WEB_cell_created.":";print $user_info["timestamp"]; ?></td>
</tr>
<tr>
<?php print "<td colspan=2>"; print_url(WEB_report_by_day,"/admin/reports/userday.php?id=$id"); ?></td>
<td></td>
<td><input type="submit" name="showDevice" value=<?php print WEB_btn_device; ?>></td>
<td></td>
<td align=right><input type="submit" name="edituser" value=<?php print WEB_btn_save; ?>></td>
</tr>
</table>
<?php
if ($msg_error) { print "<div id='msg'><b>$msg_error</b></div><br>\n"; }

$sort_table = 'User_auth';
$sort_url = "<a href=edituser.php?id=" . $id;
?>

<br><b><?php echo WEB_user_ip_list; ?></b><br>
<table class="data">
<tr>
<td class="data"><?php echo WEB_user_add_ip; ?>:&nbsp<input type=text name=newip value=""></td>
<td class="data"><?php echo WEB_user_add_mac; ?>:&nbsp<input type=text name=newmac value=""></td>
<td class="data"><input type="submit" name="addauth" value="<?php echo WEB_btn_add; ?>"></td>
<td class="data" align=right><input type="submit" name="new_user" value="<?php echo WEB_btn_transfom; ?>"></td>
</tr>
</table>

<table class="data">
<tr>
<td class="data"><input type="checkbox" onClick="checkAll(this.checked);"></td>
<td class="data"><?php print $sort_url . "&sort=ip_int&order=$new_order>" . WEB_cell_ip . "</a>"; ?></td>
<td class="data"><?php print $sort_url . "&sort=mac&order=$new_order>" . WEB_cell_mac . "</a>"; ?></td>
<td class="data"><?php print WEB_cell_comment; ?></td>
<td class="data"><?php print $sort_url . "&sort=dns_name&order=$new_order>" . WEB_cell_dns_name . "</a>"; ?></td>
<td class="data"><?php print WEB_cell_enabled; ?></td>
<td class="data"><?php print WEB_cell_dhcp; ?></td>
<td class="data"><?php print WEB_cell_filter; ?></td>
<td class="data"><?php print WEB_cell_shaper; ?></td>
<td class="data"><?php print WEB_cell_perday."/<br>".WEB_cell_permonth.", Mb"; ?></td>
<td class="data"><?php print WEB_cell_connection; ?></td>
<td class="data"><?php print $sort_url . "&sort=timestamp&order=$new_order>".WEB_cell_created."</a>"; ?></td>
<td class="data">Last DHCP/ARP Event</td>
<td class="data"><?php print $sort_url . "&sort=last_found&order=$new_order>".WEB_cell_last_found."</a>"; ?></td>
<td class="data"><?php print "<input type=\"submit\" onclick=\"return confirm('".WEB_msg_apply_selected."?')\" name=\"removeauth\" value=".WEB_btn_remove.">"; ?></td>
</tr>

<?php

$flist=get_records($db_link,'User_auth',"user_id=".$id." and deleted=0 ORDER BY $sort_table.$sort_field $order");
if (!empty($flist)) {
    foreach ( $flist as $row ) {
        if ($row["dhcp_time"] == '0000-00-00 00:00:00') {
            $dhcp_str = '';
            } else {
            $dhcp_str = FormatDateStr('Y.m.d H:m',$row["dhcp_time"]) . " (" . $row["dhcp_action"] . ")";
            }
        if ($row["last_found"] == '0000-00-00 00:00:00') { $row["last_found"] = ''; }
        print "<tr align=center>\n";
        print "<td class=\"data\" style='padding:0'><input type=checkbox name=f_auth_id[] value=".$row["id"]." ></td>\n";
        print "<td class=\"data\" align=left><a href=editauth.php?id=".$row["id"].">" . $row["ip"] . "</a></td>\n";
        print "<td class=\"data\" >" . expand_mac($db_link,$row["mac"]) . "</td>\n";
        if (isset($row["dhcp_hostname"]) and strlen($row["dhcp_hostname"]) > 0) {
            print "<td class=\"data\" >".$row["comments"]." [" . $row["dhcp_hostname"] . "]</td>\n";
            } else {
            print "<td class=\"data\" >".$row["comments"]."</td>\n";
            }
        print "<td class=\"data\" >".$row["dns_name"]."</td>\n";
        $ip_status = 1;
        if ($row["blocked"] or !$row["enabled"]) { $ip_status = 0; }
        print "<td class=\"data\" >" . get_qa($ip_status). "</td>\n";
        print "<td class=\"data\" >" . get_qa($row["dhcp"]). "</td>\n";
        print "<td class=\"data\" >" . get_group($db_link, $row["filter_group_id"]) . "</td>\n";
        print "<td class=\"data\" >" . get_queue($db_link, $row["queue_id"]) . "</td>\n";
        print "<td class=\"data\" >".$row["day_quota"]."/".$row["month_quota"]."</td>\n";
        print "<td class=\"data\" >" . get_connection($db_link, $row["id"]) . "</td>\n";
        print "<td class=\"data\" >" . FormatDateStr('Y.m.d',$row["timestamp"]) . "</td>\n";
        print "<td class=\"data\" >" . $dhcp_str . "</td>\n";
        print "<td class=\"data\" >" . FormatDateStr('Y.m.d H:i',$row["last_found"]) . "</td>\n";
        print "<td class=\"data\" ></td></tr>";
        }
    }
?>
</table>
</form>
<?php
require_once ($_SERVER["DOCUMENT_ROOT"]."/inc/footer.php");
?>