Domů Procházet Nápověda
Přihlásit se
rajven
/
Eye
zrcadlo https://github.com/rajven/Eye
1
0
Rozštěpit 0
Soubory Úkoly 0 Wiki
Strom: 340b697bd7
Větve Značky
Eye
/
html
/
admin
/
iplist
/
index.php

index.php 9.2 KB
Historie Surový

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201 
  1. <?php
    2. 

  2. $default_displayed=500;
    3. 

  3. require_once ($_SERVER['DOCUMENT_ROOT']."/inc/auth.php");
    4. 

  4. require_once ($_SERVER['DOCUMENT_ROOT']."/inc/languages/" . HTML_LANG . ".php");
    5. 

  5. require_once ($_SERVER['DOCUMENT_ROOT']."/inc/header.php");
    6. 

  6. $default_sort='ip_int';
    7. 

  7. require_once ($_SERVER['DOCUMENT_ROOT']."/inc/oufilter.php");
    8. 

  8. require_once ($_SERVER['DOCUMENT_ROOT']."/inc/subnetfilter.php");
    9. 

  9. require_once ($_SERVER['DOCUMENT_ROOT']."/inc/sortfilter.php");
    10. 

  10. require_once ($_SERVER['DOCUMENT_ROOT']."/inc/gatefilter.php");
    11. 

  11. require_once ($_SERVER['DOCUMENT_ROOT']."/inc/enabledfilter.php");
    12. 

  12. 

  13. $sort_table = 'User_auth';
    14. 

  14. if ($sort_field == 'login') { $sort_table = 'User_list'; }
    15. 

  15. if ($sort_field == 'fio') { $sort_table = 'User_list'; }
    16. 

  16. 

  17. $sort_url = "<a href=index.php?ou=" . $rou; 
    18. 

  18. 

  19. if (isset($_POST["removeauth"])) {
    20. 

  20.     $auth_id = $_POST["fid"];
    21. 

  21.     foreach ($auth_id as $key => $val) {
    22. 

  22.         if ($val) {
    23. 

  23.                 run_sql($db_link, 'DELETE FROM connections WHERE auth_id='.$val);
    24. 

  24.                 run_sql($db_link, 'DELETE FROM User_auth_alias WHERE auth_id='.$val);
    25. 

  25.                 $auth["deleted"] = 1;
    26. 

  26.                 $changes = get_diff_rec($db_link,"User_auth","id='$val'", '', 0);
    27. 

  27.                 if (!empty($changes)) { LOG_WARNING($db_link,"Remove user ip: \r\n $changes"); }
    28. 

  28.                 update_record($db_link, "User_auth", "id=" . $val, $auth);
    29. 

  29.                 }
    30. 

  30.             }
    31. 

  31.     header("Location: " . $_SERVER["REQUEST_URI"]);
    32. 

  32.     exit;
    33. 

  33.     }
    34. 

  34. 

  35. if (isset($_POST["ApplyForAll"])) {
    36. 

  36.     $auth_id = $_POST["fid"];
    37. 

  37.     $a_enabled = $_POST["a_enabled"] * 1;
    38. 

  38.     $a_dhcp = $_POST["a_dhcp"] * 1;
    39. 

  39.     $a_dhcp_acl = $_POST["a_dhcp_acl"];
    40. 

  40.     $a_queue = $_POST["a_queue_id"] * 1;
    41. 

  41.     $a_group = $_POST["a_group_id"] * 1;
    42. 

  42.     $a_traf = $_POST["a_traf"] * 1;
    43. 

  43.     $msg="Massive User change!";
    44. 

  44.     foreach ($auth_id as $key => $val) {
    45. 

  45.         if ($val) {
    46. 

  46.             unset($auth);
    47. 

  47.             $auth['enabled'] = $a_enabled;
    48. 

  48.             $auth['filter_group_id'] = $a_group;
    49. 

  49.             $auth['queue_id'] = $a_queue;
    50. 

  50.             $auth['dhcp'] = $a_dhcp;
    51. 

  51.             $auth['dhcp_acl'] = $a_dhcp_acl;
    52. 

  52.             $auth['save_traf'] = $a_traf;
    53. 

  53.             update_record($db_link, "User_auth", "id='" . $val . "'", $auth);
    54. 

  54.             }
    55. 

  55.         }
    56. 

  56.     LOG_WARNING($db_link,$msg);
    57. 

  57.     header("Location: " . $_SERVER["REQUEST_URI"]);
    58. 

  58.     exit;
    59. 

  59.     }
    60. 

  60. 

  61. if ($rou == 0) { $ou_filter = ''; } else { $ou_filter = " and User_list.ou_id=$rou "; }
    62. 

  62. 

  63. if ($rsubnet == 0) { $subnet_filter = ''; } else {
    64. 

  64.     $subnet_range = get_subnet_range($db_link,$rsubnet);
    65. 

  65.     if (!empty($subnet_range)) { $subnet_filter = " and User_auth.ip_int>=".$subnet_range['start']." and User_auth.ip_int<=".$subnet_range['stop']; }
    66. 

  66.     }
    67. 

  67. 

  68. $enabled_filter='';
    69. 

  69. if ($enabled>0) {
    70. 

  70.     if ($enabled===2) { $enabled_filter = ' and User_auth.enabled=1'; }
    71. 

  71.     if ($enabled===1) { $enabled_filter = ' and User_auth.enabled=0'; }
    72. 

  72.     }
    73. 

  73. 

  74. 

  75. if (isset($_POST['ip'])) { $f_ip = $_POST['ip']; }
    76. 

  76. if (!isset($f_ip) and isset($_SESSION[$page_url]['ip'])) { $f_ip=$_SESSION[$page_url]['ip']; }
    77. 

  77. if (!isset($f_ip)) { $f_ip=''; }
    78. 

  78. $_SESSION[$page_url]['ip']=$f_ip;
    79. 

  79. 

  80. $ip_where = '';
    81. 

  81. if (!empty($f_ip)) {
    82. 

  82.     if (checkValidIp($f_ip)) { $ip_where = " and ip_int=inet_aton('" . $f_ip . "') "; }
    83. 

  83.     if (checkValidMac($f_ip)) { $ip_where = " and mac='" . mac_dotted($f_ip) . "'  "; }
    84. 

  84.     $ip_list_filter = $ip_where;
    85. 

  85.     } else {
    86. 

  86.     $ip_list_filter = $ou_filter.$subnet_filter.$enabled_filter;
    87. 

  87.     }
    88. 

  88. 

  89. print_ip_submenu($page_url);
    90. 

  90. 

  91. ?>
    92. 

  92. <div id="cont">
    93. 

  93. <form name="def" action="index.php" method="post">
    94. 

  94. <table class="data">
    95. 

  95. 	<tr>
    96. 

  96.         <td>
    97. 

  97.         <b><?php print WEB_cell_ou; ?> - </b><?php print_ou_select($db_link, 'ou', $rou); ?>
    98. 

  98.         <b><?php print WEB_network_subnet; ?> - </b><?php print_subnet_select_office($db_link, 'subnet', $rsubnet); ?>
    99. 

  99.         <b><?php echo WEB_ips_show_by_state; ?> - </b><?php print_enabled_select('enabled', $enabled); ?>
    100. 

  100.         <?php echo WEB_ips_search_host; ?>:&nbsp<input type="text" name="ip" value="<?php echo $f_ip; ?>" pattern="^((([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])|([0-9A-Fa-f]{2}[:-]){5}[0-9A-Fa-f]{2}|([0-9a-fA-F]{4}[\\.-][0-9a-fA-F]{4}[\\.-][0-9a-fA-F]{4})|[0-9A-Fa-f]{12})$"/>
    101. 

  101.         <?php print WEB_rows_at_page."&nbsp"; print_row_at_pages('rows',$displayed); ?>
    102. 

  102.         <input type="submit" value="<?php echo WEB_btn_show; ?>">
    103. 

  103.         </td>
    104. 

  104. 	</tr>
    105. 

  105. </table>
    106. 

  106. 

  107. <?php
    108. 

  108. $countSQL="SELECT Count(*) FROM User_auth, User_list WHERE User_auth.user_id = User_list.id AND User_auth.deleted =0 $ip_list_filter";
    109. 

  109. $res = mysqli_query($db_link, $countSQL);
    110. 

  110. $count_records = mysqli_fetch_array($res);
    111. 

  111. $total=ceil($count_records[0]/$displayed);
    112. 

  112. if ($page>$total) { $page=$total; }
    113. 

  113. if ($page<1) { $page=1; }
    114. 

  114. $start = ($page * $displayed) - $displayed; 
    115. 

  115. print_navigation($page_url,$page,$displayed,$count_records[0],$total);
    116. 

  116. ?>
    117. 

  117. <br>
    118. 

  118. 

  119. <table class="data">
    120. 

  120. <tr>
    121. 

  121. <td><?php print WEB_selection_title.": ".WEB_cell_enabled."&nbsp"; print_qa_select('a_enabled', 1); ?></td>
    122. 

  122. <td><?php print WEB_cell_filter."&nbsp";print_group_select($db_link, 'a_group_id', 0); ?></td>
    123. 

  123. <td><?php print WEB_cell_shaper."&nbsp";print_queue_select($db_link, 'a_queue_id', 0); ?></td>
    124. 

  124. <td>Dhcp&nbsp<?php print_qa_select('a_dhcp', 1); ?></td>
    125. 

  125. <td>Dhcp-acl&nbsp<?php print_dhcp_acl_select('a_dhcp_acl',''); ?></td>
    126. 

  126. <td>Save traffic&nbsp<?php print_qa_select('a_traf',1); ?></td>
    127. 

  127. <td>&nbsp<input type="submit" onclick="return confirm('<?php echo WEB_msg_apply_selected; ?>?')" name="ApplyForAll" value="<?php echo WEB_btn_apply; ?>"></td>
    128. 

  128. <td align=right><input type="submit" onclick="return confirm('<?php echo WEB_msg_delete; ?>?')" name="removeauth" value="<?php echo WEB_btn_delete; ?>"></td>
    129. 

  129. </tr>
    130. 

  130. </table>
    131. 

  131. 

  132. <table class="data">
    133. 

  133. 	<tr>
    134. 

  134.         <td align=Center><input type="checkbox" onClick="checkAll(this.checked);"></td>
    135. 

  135. 		<td align=Center><?php print $sort_url . "&sort=login&order=$new_order>" . WEB_cell_login . "</a>"; ?></td>
    136. 

  136. 		<td align=Center><?php print $sort_url . "&sort=ip_int&order=$new_order>" . WEB_cell_ip . "</a>"; ?></td>
    137. 

  137. 		<td align=Center><?php print $sort_url . "&sort=mac&order=$new_order>" . WEB_cell_mac . "</a>"; ?></td>
    138. 

  138. 		<td align=Center><?php print WEB_cell_comment; ?></td>
    139. 

  139. 		<td align=Center><?php print WEB_cell_dns_name; ?></td>
    140. 

  140. 		<td align=Center><?php print WEB_cell_enabled; ?></td>
    141. 

  141. 		<td align=Center><?php print WEB_cell_filter; ?></td>
    142. 

  142. 		<td align=Center><?php print WEB_cell_shaper; ?></td>
    143. 

  143. 		<td align=Center><?php print WEB_cell_traf; ?></td>
    144. 

  144. 		<td align=Center><?php print WEB_cell_dhcp; ?></td>
    145. 

  145. 		<td align=Center><?php print WEB_cell_acl; ?></td>
    146. 

  146. 		<td align=Center><?php print $sort_url . "&sort=dhcp_time&order=$new_order>DHCP event</a>"; ?></td>
    147. 

  147. 		<td align=Center><?php print $sort_url . "&sort=last_found&order=$new_order>Last</a>"; ?></td>
    148. 

  148. 		<td align=Center><?php print WEB_cell_connection; ?></td>
    149. 

  149. 	</tr>
    150. 

  150. <?php
    151. 

  151. 

  152. $sSQL = "SELECT User_auth.*, User_list.login FROM User_auth, User_list
    153. 

  153. WHERE User_auth.user_id = User_list.id AND User_auth.deleted =0 $ip_list_filter
    154. 

  154. ORDER BY $sort_table.$sort_field $order LIMIT $start,$displayed";
    155. 

  155. 

  156. $users = get_records_sql($db_link,$sSQL);
    157. 

  157. foreach ($users as $user) {
    158. 

  158.     if ($user['dhcp_time'] == '0000-00-00 00:00:00') {
    159. 

  159.         $dhcp_str = '';
    160. 

  160.     } else {
    161. 

  161.         $dhcp_str = $user['dhcp_time'] . " (" . $user['dhcp_action'] . ")";
    162. 

  162.     }
    163. 

  163.     if ($user['last_found'] == '0000-00-00 00:00:00') { $user['last_found'] = ''; }
    164. 

  164.     print "<tr align=center>\n";
    165. 

  165.     $cl = "data";
    166. 

  166.     if (!$user['enabled']) { $cl = "warn"; }
    167. 

  167.     if ($user['blocked']) { $cl = "error"; }
    168. 

  168.     print "<td class=\"$cl\" style='padding:0'><input type=checkbox name=fid[] value=".$user['id']."></td>\n";
    169. 

  169.     print "<td class=\"$cl\" ><a href=/admin/users/edituser.php?id=".$user['user_id'].">" . $user['login'] . "</a></td>\n";
    170. 

  170.     print "<td class=\"$cl\" ><a href=/admin/users/editauth.php?id=".$user['id'].">" . $user['ip'] . "</a></td>\n";
    171. 

  171.     print "<td class=\"$cl\" >" . expand_mac($db_link,$user['mac']) . "</td>\n";
    172. 

  172.     if (isset($user['dhcp_hostname']) and strlen($user['dhcp_hostname']) > 0) {
    173. 

  173.         print "<td class=\"$cl\" width=200 >".$user['comments']." [" . $user['dhcp_hostname'] . "]</td>\n";
    174. 

  174.     } else {
    175. 

  175.         print "<td class=\"$cl\" width=200 >".$user['comments']."</td>\n";
    176. 

  176.     }
    177. 

  177.     print "<td class=\"$cl\" >".$user['dns_name']."</td>\n";
    178. 

  178.     print "<td class=\"$cl\" >" . get_qa($user['enabled']) . "</td>\n";
    179. 

  179.     print "<td class=\"$cl\" >" . get_group($db_link, $user['filter_group_id']) . "</td>\n";
    180. 

  180.     print "<td class=\"$cl\" >" . get_queue($db_link, $user['queue_id']) . "</td>\n";
    181. 

  181.     print "<td class=\"$cl\" >" . get_qa($user['save_traf']) . "</td>\n";
    182. 

  182.     print "<td class=\"$cl\" >" . get_qa($user['dhcp']) . "</td>\n";
    183. 

  183.     print "<td class=\"$cl\" >".$user['dhcp_acl']."</td>\n";
    184. 

  184.     print "<td class=\"$cl\" >".$dhcp_str."</td>\n";
    185. 

  185.     print "<td class=\"$cl\" >".$user['last_found']."</td>\n";
    186. 

  186.     print "<td class=\"$cl\" >" . get_connection($db_link, $user['id']) . "</td>\n";
    187. 

  187.     print "</tr>\n";
    188. 

  188. }
    189. 

  189. print "</table>\n";
    190. 

  190. print_navigation($page_url,$page,$displayed,$count_records[0],$total);
    191. 

  191. ?>
    192. 

  192. <br>
    193. 

  193. <table class="data">
    194. 

  194. <tr><td><?php echo WEB_color_description; ?></td></tr>
    195. 

  195. <tr>
    196. 

  196. <td class="warn"><?php echo WEB_color_user_disabled; ?></td>
    197. 

  197. <td class="error"><?php echo WEB_color_user_blocked; ?></td>
    198. 

  198. </table>
    199. 

  199. <?php
    200. 

  200. require_once ($_SERVER['DOCUMENT_ROOT']."/inc/footer.php");
    201. 

  201. ?>
    202.