صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
rajven
/
Eye
mirrorاز https://github.com/rajven/Eye
1
0
انشعاب 0
پرونده‌ها مشکلات 0 ویکی
درخت: bcc33dff4d
شاخه‌ها تگ‌ها
Eye
/
html
/
admin
/
users
/
edituser.php

edituser.php 24 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521 
  1. <?php
    2. 

  2. require_once($_SERVER["DOCUMENT_ROOT"] . "/inc/auth.php");
    3. 

  3. require_once($_SERVER["DOCUMENT_ROOT"] . "/inc/languages/" . HTML_LANG . ".php");
    4. 

  4. require_once($_SERVER["DOCUMENT_ROOT"] . "/inc/idfilter.php");
    5. 

  5. 

  6. $default_sort = 'ip_int';
    7. 

  7. require_once($_SERVER['DOCUMENT_ROOT'] . "/inc/sortfilter.php");
    8. 

  8. 

  9. $msg_error = "";
    10. 

  10. 

  11. $sSQL = "SELECT * FROM user_list WHERE id = ?";
    12. 

  12. $user_info = get_record_sql($db_link, $sSQL, [$id]);
    13. 

  13. 

  14. if (empty($user_info)) {
    15. 

  15.     header("Location: /admin/");
    16. 

  16.     exit;
    17. 

  17. }
    18. 

  18. 

  19. // === РЕДАКТИРОВАНИЕ ПОЛЬЗОВАТЕЛЯ ===============================================
    20. 

  20. if (getPOST("edituser") !== null) {
    21. 

  21.     $new = [];
    22. 

  22. 

  23.     $f_ou = (int)getPOST("f_ou", null, 0);
    24. 

  24.     if ($f_ou > 0) {
    25. 

  25.         $new["ou_id"] = $f_ou;
    26. 

  26.     }
    27. 

  27. 

  28.     $new["filter_group_id"] = (int)getPOST("f_filter", null, 0);
    29. 

  29.     $new["queue_id"]         = (int)getPOST("f_queue", null, 0);
    30. 

  30.     
    31. 

  31.     $user_name = trim(getPOST("f_login", null, $user_info['login']));
    32. 

  32.     if ($user_name !== '') {
    33. 

  33.         $new["login"] = $user_name;
    34. 

  34.     }
    35. 

  35.     
    36. 

  36.     $new["description"] = trim(getPOST("f_description", null, ''));
    37. 

  37. 

  38.     // Настройки по OU
    39. 

  39.     if (get_const('default_user_ou_id') == ($new["ou_id"] ?? 0) || 
    40. 

  40.         get_const('default_hotspot_ou_id') == ($new["ou_id"] ?? 0)) {
    41. 

  41.         $new["enabled"]      = 0;
    42. 

  42.         $new["blocked"]      = 0;
    43. 

  43.         $new["day_quota"]    = 0;
    44. 

  44.         $new["month_quota"]  = 0;
    45. 

  45.         $new["permanent"]    = 0;
    46. 

  46.     } else {
    47. 

  47.         $new["enabled"]      = (int)getPOST("f_enabled", null, 0);
    48. 

  48.         $new["blocked"]      = (int)getPOST("f_blocked", null, 0);
    49. 

  49.         $new["day_quota"]    = (int)trim(getPOST("f_perday", null, 0));
    50. 

  50.         $new["month_quota"]  = (int)trim(getPOST("f_permonth", null, 0));
    51. 

  51.         $new["permanent"]    = (int)getPOST("f_permanent", null, 0);
    52. 

  52.     }
    53. 

  53. 

  54.     $changes = get_diff_rec($db_link, "user_list", "id = ?", $new, 0, [$id]);
    55. 

  55.     if (!empty($changes)) {
    56. 

  56.         LOG_WARNING($db_link, "Changed user id: $id login: " . ($new["login"] ?? '') . ". \r\nApply: $changes");
    57. 

  57.     }
    58. 

  58.     update_record($db_link, "user_list", "id = ?", $new, [$id]);
    59. 

  59. 

  60.     // Отключаем авторизацию, если пользователь выключен
    61. 

  61.     if (!$new["enabled"]) {
    62. 

  62.         update_records($db_link, 'user_auth', 'user_id = ?', ['enabled' => 0, 'changed' => 1], [$id]);
    63. 

  63.     }
    64. 

  64. 

  65.     // Обновляем описание в user_auth
    66. 

  66.     if (!empty($new["description"])) {
    67. 

  67.         update_records($db_link, 'user_auth',
    68. 

  68.             "user_id = ? AND deleted = 0 AND (description IS NULL OR description = '' OR description = ?)",
    69. 

  69.             ['description' => $new["description"]],
    70. 

  70.             [$id, $user_info["description"]]
    71. 

  71.         );
    72. 

  72.     }
    73. 

  73. 

  74.     // Обновление ou_id в user_auth
    75. 

  75.     update_records($db_link, 'user_auth', 'user_id = ? AND deleted = 0', ['ou_id' => $new["ou_id"]], [$id]);
    76. 

  76. 

  77.     // Обновление device_name в devices
    78. 

  78.     update_record($db_link, 'devices', 'user_id = ?', ['device_name' => $new["login"]], [$id]);
    79. 

  79. 

  80.     header("Location: " . $_SERVER["REQUEST_URI"]);
    81. 

  81.     exit;
    82. 

  82. }
    83. 

  83. 

  84. // === АВТОПРАВИЛА ПО MAC =========================================================
    85. 

  85. if (getPOST("addMacRule") !== null) {
    86. 

  86.     $first_auth = get_records_sql($db_link, 
    87. 

  87.         "SELECT mac FROM user_auth WHERE user_id = ? AND deleted = 0 AND LENGTH(mac) > 0 ORDER BY id", 
    88. 

  88.         [$id]
    89. 

  89.     );
    90. 

  90.     foreach ($first_auth as $row) {
    91. 

  91.         if (!empty($row['mac'])) {
    92. 

  92.             add_auth_rule($db_link, $row['mac'], 2, $id);
    93. 

  93.         }
    94. 

  94.     }
    95. 

  95.     header("Location: " . $_SERVER["REQUEST_URI"]);
    96. 

  96.     exit;
    97. 

  97. }
    98. 

  98. 

  99. if (getPOST("delMacRule") !== null) {
    100. 

  100.     delete_records($db_link, "auth_rules", "user_id = ? AND rule_type = 2", [$id]);
    101. 

  101.     LOG_INFO($db_link, "All autorules removed for id: $id login: " . $user_info["login"] . " by mac");
    102. 

  102.     header("Location: " . $_SERVER["REQUEST_URI"]);
    103. 

  103.     exit;
    104. 

  104. }
    105. 

  105. 

  106. // === АВТОПРАВИЛА ПО IP ==========================================================
    107. 

  107. if (getPOST("addIPRule") !== null) {
    108. 

  108.     $first_auth = get_records_sql($db_link,
    109. 

  109.         "SELECT ip FROM user_auth WHERE user_id = ? AND deleted = 0 AND ip IS NOT NULL ORDER BY id",
    110. 

  110.         [$id]
    111. 

  111.     );
    112. 

  112.     foreach ($first_auth as $row) {
    113. 

  113.         if (!empty($row['ip'])) {
    114. 

  114.             add_auth_rule($db_link, $row['ip'], 1, $id);
    115. 

  115.         }
    116. 

  116.     }
    117. 

  117.     header("Location: " . $_SERVER["REQUEST_URI"]);
    118. 

  118.     exit;
    119. 

  119. }
    120. 

  120. 

  121. if (getPOST("delIPRule") !== null) {
    122. 

  122.     delete_records($db_link, "auth_rules", "user_id = ? AND rule_type = 1", [$id]);
    123. 

  123.     LOG_INFO($db_link, "Removed all auto rules for id: $id login: " . $user_info["login"] . " by ip");
    124. 

  124.     header("Location: " . $_SERVER["REQUEST_URI"]);
    125. 

  125.     exit;
    126. 

  126. }
    127. 

  127. 

  128. // === СОЗДАНИЕ УСТРОЙСТВА ========================================================
    129. 

  129. if (getPOST("showDevice") !== null) {
    130. 

  130.     $device = get_record_sql($db_link, "SELECT * FROM devices WHERE user_id = ?", [$id]);
    131. 

  131.     $auth   = get_record_sql($db_link, "SELECT * FROM user_auth WHERE user_id = ?", [$id]);
    132. 

  132. 

  133.     if (empty($device) && !empty($auth)) {
    134. 

  134.         $new = [
    135. 

  135.             'user_id'          => $id,
    136. 

  136.             'device_name'      => $user_info['login'],
    137. 

  137.             'device_type'      => 5,
    138. 

  138.             'ip'               => $auth['ip'],
    139. 

  139.             'ip_int'           => $auth['ip_int'],
    140. 

  140.             'community'        => get_const('snmp_default_community'),
    141. 

  141.             'snmp_version'     => get_const('snmp_default_version'),
    142. 

  142.             'login'            => get_option($db_link, 28),
    143. 

  143.             'password'         => get_option($db_link, 29),
    144. 

  144.             'protocol'         => 0,
    145. 

  145.             'control_port'     => get_option($db_link, 30)
    146. 

  146.         ];
    147. 

  147. 

  148.         $new_id = insert_record($db_link, "devices", $new);
    149. 

  149.         if (!empty($new_id)) {
    150. 

  150.             LOG_INFO($db_link, "Created device with id: $new_id for auth_id: $id");
    151. 

  151.             header("Location: /admin/devices/editdevice.php?id={$new_id}");
    152. 

  152.             exit;
    153. 

  153.         }
    154. 

  154.     }
    155. 

  155. 

  156.     if (!empty($device['id'])) {
    157. 

  157.         header("Location: /admin/devices/editdevice.php?id=" . $device['id']);
    158. 

  158.     } else {
    159. 

  159.         header("Location: " . $_SERVER["REQUEST_URI"]);
    160. 

  160.     }
    161. 

  161.     exit;
    162. 

  162. }
    163. 

  163. 

  164. // === ДОБАВЛЕНИЕ ЗАПИСИ АВТОРИЗАЦИИ ==============================================
    165. 

  165. if (getPOST("addauth") !== null) {
    166. 

  166.     $fip = normalizeIpAddress(substr(trim(getPOST("newip", null, '')), 0, 18));
    167. 

  167.     $fdescription = null;
    168. 

  168.     $fmac = trim(getPOST("newmac", null, ''));
    169. 

  169. 

  170.     if (!empty($fmac)) {
    171. 

  171.         if (!checkValidMac($fmac)) {
    172. 

  172.             $fdescription = $fmac;
    173. 

  173.             $fmac = null;
    174. 

  174.         } else {
    175. 

  175.             $fmac = mac_dotted($fmac);
    176. 

  176.         }
    177. 

  177.     }
    178. 

  178. 

  179.     if (!empty($fip)) {
    180. 

  180.         $ip_aton = ip2long($fip);
    181. 

  181.         $f_dhcp = 1;
    182. 

  182. 

  183.         // Проверка MAC
    184. 

  184.         if (!empty($fmac)) {
    185. 

  185.             $mac_exists = find_mac_in_subnet($db_link, $fip, $fmac);
    186. 

  186.             if (!empty($mac_exists) && ($mac_exists['count'] ?? 0) >= 1 && !in_array($id, $mac_exists['users_id'] ?? [])) {
    187. 

  187.                 $dup_info = get_record_sql($db_link, "SELECT * FROM user_list WHERE id = ?", [$mac_exists['users_id'][0] ?? 0]);
    188. 

  188.                 $msg_error = "Mac already exists at another user in this subnet! Skip creating $fip [$fmac].<br>Old user id: " . ($dup_info['id'] ?? '') . " login: " . ($dup_info['login'] ?? '');
    189. 

  189.                 $_SESSION[$page_url]['msg'] = $msg_error;
    190. 

  190.                 LOG_ERROR($db_link, $msg_error);
    191. 

  191.                 header("Location: " . $_SERVER["REQUEST_URI"]);
    192. 

  192.                 exit;
    193. 

  193.             }
    194. 

  194. 

  195.             // DHCP для вторичного IP
    196. 

  196.             if (!empty($mac_exists) && in_array($id, $mac_exists['users_id'] ?? [])) {
    197. 

  197.                 $f_dhcp = 0;
    198. 

  198.             }
    199. 

  199.         }
    200. 

  200. 

  201.         // Проверка дубликата IP
    202. 

  202.         $dup_ip_record = get_record_sql($db_link, "SELECT * FROM user_auth WHERE ip_int = ? AND user_id <> ? AND deleted = 0", [$ip_aton, $id]);
    203. 

  203.         if (!empty($dup_ip_record)) {
    204. 

  204.             $dup_info = get_record_sql($db_link, "SELECT * FROM user_list WHERE id = ?", [$dup_ip_record['user_id']]);
    205. 

  205.             $msg_error = "$fip already exists. Skip creating $fip [$fmac].<br>Old user id: " . $dup_info['id'] . " login: " . $dup_info['login'];
    206. 

  206.             $_SESSION[$page_url]['msg'] = $msg_error;
    207. 

  207.             LOG_ERROR($db_link, $msg_error);
    208. 

  208.             header("Location: " . $_SERVER["REQUEST_URI"]);
    209. 

  209.             exit;
    210. 

  210.         }
    211. 

  211. 

  212.         $fid = new_auth($db_link, $fip, $fmac, $id);
    213. 

  213.         if (!empty($fid)) {
    214. 

  214.             $new_auth = ['dhcp' => $f_dhcp, 'created_by' => 'manual'];
    215. 

  215.             if (!empty($fdescription)) {
    216. 

  216.                 $new_auth['description'] = $fdescription;
    217. 

  217.             }
    218. 

  218.             update_record($db_link, "user_auth", "id = ?", $new_auth, [$fid]);
    219. 

  219.             LOG_WARNING($db_link, "Add ip for login: " . $user_info["login"] . ": ip => $fip, mac => $fmac", $fid);
    220. 

  220.             header("Location: /admin/users/editauth.php?id=" . $fid);
    221. 

  221.             exit;
    222. 

  222.         }
    223. 

  223.     } else {
    224. 

  224.         $msg_error = "IP-address format error!";
    225. 

  225.         $_SESSION[$page_url]['msg'] = $msg_error;
    226. 

  226.     }
    227. 

  227. 

  228.     header("Location: " . $_SERVER["REQUEST_URI"]);
    229. 

  229.     exit;
    230. 

  230. }
    231. 

  231. 

  232. // === УДАЛЕНИЕ ЗАПИСЕЙ АВТОРИЗАЦИИ ==============================================
    233. 

  233. if (getPOST("removeauth") !== null) {
    234. 

  234.     $auth_id = getPOST("f_auth_id", null, []);
    235. 

  235.     if (!empty($auth_id) && is_array($auth_id)) {
    236. 

  236.         foreach ($auth_id as $val) {
    237. 

  237.             $val = trim($val);
    238. 

  238.             if ($val !== '') {
    239. 

  239.                 delete_user_auth($db_link, (int)$val);
    240. 

  240.             }
    241. 

  241.         }
    242. 

  242.     }
    243. 

  243.     header("Location: " . $_SERVER["REQUEST_URI"]);
    244. 

  244.     exit;
    245. 

  245. }
    246. 

  246. 

  247. // === СОЗДАНИЕ НОВОГО ПОЛЬЗОВАТЕЛЯ ИЗ ЗАПИСИ АВТОРИЗАЦИИ =========================
    248. 

  248. if (getPOST("new_user") !== null) {
    249. 

  249.     $auth_id = getPOST("f_auth_id", null, []);
    250. 

  250.     $save_traf = (int)get_option($db_link, 23);
    251. 

  251. 

  252.     if (!empty($auth_id) && is_array($auth_id)) {
    253. 

  253.         foreach ($auth_id as $val) {
    254. 

  254.             $val = (int)$val;
    255. 

  255.             if ($val <= 0) continue;
    256. 

  256. 

  257.             $auth_info = get_record_sql($db_link, "SELECT * FROM user_auth WHERE id = ?", [$val]);
    258. 

  258.             if (empty($auth_info)) continue;
    259. 

  259. 

  260.             $ou_id = $user_info["ou_id"];
    261. 

  261.             $login = null;
    262. 

  262. 

  263.             if (!empty($auth_info["dns_name"])) {
    264. 

  264.                 $login = $auth_info["dns_name"];
    265. 

  265.             } elseif (!empty($auth_info["description"])) {
    266. 

  266.                 $login = transliterate($auth_info["description"]);
    267. 

  267.             } elseif (!empty($auth_info["dhcp_hostname"])) {
    268. 

  268.                 $login = $auth_info["dhcp_hostname"];
    269. 

  269.             } elseif (!empty($auth_info["mac"])) {
    270. 

  270.                 $login = $auth_info["mac"];
    271. 

  271.             } else {
    272. 

  272.                 $login = $auth_info["ip"];
    273. 

  273.             }
    274. 

  274. 

  275.             $new_user = get_record_sql($db_link, "SELECT * FROM user_list WHERE LOWER(login) = LOWER(?) AND deleted = 0", [$login]);
    276. 

  276.             if (!empty($new_user)) {
    277. 

  277.                 // Перенос записи авторизации
    278. 

  278.                 $auth_update = [
    279. 

  279.                     'user_id' => $new_user["id"],
    280. 

  280.                     'ou_id'   => $new_user["ou_id"],
    281. 

  281.                     'save_traf' => $save_traf
    282. 

  282.                 ];
    283. 

  283.                 $auth_update = apply_auth_rule($db_link, $auth_update, $new_user["id"]);
    284. 

  284.                 update_record($db_link, "user_auth", "id = ?", $auth_update, [$val]);
    285. 

  285.                 LOG_WARNING($db_link, "ip from id: $val moved to another user user_id: " . $new_user["id"], $val);
    286. 

  286.             } else {
    287. 

  287.                 $new_user_data = [
    288. 

  288.                     'login' => $login,
    289. 

  289.                     'ou_id' => $ou_id
    290. 

  290.                 ];
    291. 

  291.                 if (!empty($auth_info["description"])) {
    292. 

  292.                     $new_user_data["description"] = $auth_info["description"];
    293. 

  293.                 } elseif (!empty($auth_info["dns_name"])) {
    294. 

  294.                     $new_user_data["description"] = $auth_info["dns_name"];
    295. 

  295.                 } elseif (!empty($auth_info["dhcp_hostname"])) {
    296. 

  296.                     $new_user_data["description"] = $auth_info["dhcp_hostname"];
    297. 

  297.                 }
    298. 

  298. 

  299.                 $new_user_data["enabled"] = $auth_info["enabled"];
    300. 

  300.                 $l_id = insert_record($db_link, "user_list", $new_user_data);
    301. 

  301. 

  302.                 if (!empty($l_id)) {
    303. 

  303.                     $auth_update = ['user_id' => $l_id, 'save_traf' => $save_traf];
    304. 

  304.                     update_record($db_link, "user_auth", "id = ?", $auth_update, [$val]);
    305. 

  305.                     LOG_WARNING($db_link, "Create user from ip: login => $login. ip-record auth_id: $val moved to this user.", $val);
    306. 

  306.                 }
    307. 

  307.             }
    308. 

  308.         }
    309. 

  309.     }
    310. 

  310. 

  311.     header("Location: " . $_SERVER["REQUEST_URI"]);
    312. 

  312.     exit;
    313. 

  313. }
    314. 

  314. 

  315. unset($_POST);
    316. 

  316. 

  317. require_once($_SERVER["DOCUMENT_ROOT"] . "/inc/header.php");
    318. 

  318. ?>
    319. 

  319. <div id="cont">
    320. 

  320.     <?php
    321. 

  321.     if (!empty($_SESSION[$page_url]['msg'])) {
    322. 

  322.         print '<div id="msg">' . $_SESSION[$page_url]['msg'] . '</div>';
    323. 

  323.         unset($_SESSION[$page_url]['msg']);
    324. 

  324.     }
    325. 

  325.     ?>
    326. 

  326.     <form name="def" action="edituser.php?id=<?php echo $id; ?>" method="post">
    327. 

  327.         <input type="hidden" name="id" value=<?php echo $id; ?>>
    328. 

  328.         <table class="data">
    329. 

  329.             <tr>
    330. 

  330.                 <td colspan=2><?php print WEB_cell_login; ?></td>
    331. 

  331.                 <td colspan=2><?php print WEB_cell_description; ?></td>
    332. 

  332.                 <td colspan=2><?php print WEB_cell_ou; ?></td>
    333. 

  333.                 <td ><?php print WEB_user_permanent; ?></td>
    334. 

  334.             </tr>
    335. 

  335.             <tr>
    336. 

  336.                 <td colspan=2><input type="text" name="f_login" value="<?php print $user_info["login"]; ?>" size=25></td>
    337. 

  337.                 <td colspan=2><input type="text" name="f_description" value="<?php print $user_info["description"]; ?>" size=25></td>
    338. 

  338.                 <td colspan=2><?php print_ou_set($db_link, 'f_ou', $user_info["ou_id"]); ?></td>
    339. 

  339.                 <td><?php print_qa_select('f_permanent', $user_info["permanent"]); ?></td>
    340. 

  340.             </tr>
    341. 

  341.             <tr>
    342. 

  342.                 <td colspan=2><?php print WEB_cell_perday; ?></td>
    343. 

  343.                 <td colspan=2><?php print WEB_cell_permonth; ?></td>
    344. 

  344.                 <td><?php print WEB_cell_blocked; ?></td>
    345. 

  345.                 <td></td>
    346. 

  346.                 <td><?php print WEB_cell_enabled; ?></td>
    347. 

  347.             </tr>
    348. 

  348.             <tr>
    349. 

  349.                 <td colspan=2><input type="text" name="f_perday" value="<?php echo $user_info["day_quota"]; ?>" size=5></td>
    350. 

  350.                 <td colspan=2><input type="text" name="f_permonth" value="<?php echo $user_info["month_quota"]; ?>" size=5></td>
    351. 

  351.                 <td><?php print_qa_select('f_blocked', $user_info["blocked"]); ?></td>
    352. 

  352.                 <td></td>
    353. 

  353.                 <td><?php print_qa_select('f_enabled', $user_info["enabled"]); ?></td>
    354. 

  354.             </tr>
    355. 

  355.             <tr>
    356. 

  356.                 <td class=data colspan=7><?php echo WEB_user_rules_for_autoassign; ?>:</td>
    357. 

  357.             </tr>
    358. 

  358.             <tr>
    359. 

  359.                 <td colspan=2><?php print WEB_cell_filter; ?></td>
    360. 

  360.                 <td colspan=2><?php print WEB_cell_shaper; ?></td>
    361. 

  361.                 <td colspan=3></td>
    362. 

  362.             </tr>
    363. 

  363.             <tr>
    364. 

  364.                 <td colspan=2><?php print_filter_group_select($db_link, 'f_filter', $user_info["filter_group_id"]); ?></td>
    365. 

  365.                 <td colspan=2><?php print_queue_select($db_link, 'f_queue', $user_info["queue_id"]); ?></td>
    366. 

  366.                 <td colspan=3></td>
    367. 

  367.             </tr>
    368. 

  368.             <tr>
    369. 

  369.                 <?php
    370. 

  370.                 print "<td>";
    371. 

  371.                 print_url(WEB_user_rule_list, "/admin/users/edit_rules.php?id=$id");
    372. 

  372.                 print "</td>";
    373. 

  373.                 $rule_count = get_count_records($db_link, "auth_rules", "user_id=?", [ $id ]);
    374. 

  374.                 print "<td > Count: " . $rule_count . "</td>";
    375. 

  375.                 $first_auth = get_record_sql($db_link, "SELECT id FROM user_auth WHERE user_id=? AND deleted=0 ORDER BY id", [ $id ]);
    376. 

  376.                 if (!empty($first_auth)) {
    377. 

  377.                     //mac
    378. 

  378.                     $mac_rule_count = get_count_records($db_link, "auth_rules", "user_id=? AND rule_type=2", [ $id ]);
    379. 

  379.                     if (!empty($mac_rule_count)) {
    380. 

  380.                         print "<td><input type=\"submit\" name=\"delMacRule\" value=" . WEB_btn_mac_del . " ></td>";
    381. 

  381.                     } else {
    382. 

  382.                         print "<td><input type=\"submit\" name=\"addMacRule\" value=" . WEB_btn_mac_add . " ></td>";
    383. 

  383.                     }
    384. 

  384.                     //ip
    385. 

  385.                     $ip_rule_count = get_count_records($db_link, "auth_rules", "user_id=? AND rule_type=1", [ $id ]);
    386. 

  386.                     if (!empty($ip_rule_count)) {
    387. 

  387.                         print "<td><input type=\"submit\" name=\"delIPRule\" value=" . WEB_btn_ip_del . " ></td>";
    388. 

  388.                     } else {
    389. 

  389.                         print "<td><input type=\"submit\" name=\"addIPRule\" value=" . WEB_btn_ip_add . " ></td>";
    390. 

  390.                     }
    391. 

  391.                 } else {
    392. 

  392.                     print "<td colspan=2></td>";
    393. 

  393.                 }
    394. 

  394.                 ?>
    395. 

  395.                 <td colspan=3 align=right><?php print WEB_cell_created . ":&nbsp";
    396. 

  396.                                             print $user_info["ts"]; ?></td>
    397. 

  397.             </tr>
    398. 

  398.             <tr>
    399. 

  399.                 <?php print "<td colspan=2>";
    400. 

  400.                 print_url(WEB_report_by_day, "/admin/reports/userday.php?id=$id"); ?></td>
    401. 

  401.                 <td></td>
    402. 

  402.                 <td><input type="submit" name="showDevice" value=<?php print WEB_btn_device; ?>></td>
    403. 

  403.                 <td colspan=2></td>
    404. 

  404.                 <td align=right><input type="submit" name="edituser" value=<?php print WEB_btn_save; ?>></td>
    405. 

  405.             </tr>
    406. 

  406.         </table>
    407. 

  407.         <?php
    408. 

  408.         if ($msg_error) {
    409. 

  409.             print "<div id='msg'><b>$msg_error</b></div><br>\n";
    410. 

  410.         }
    411. 

  411. 

  412.         $sort_table = 'user_auth';
    413. 

  413.         $sort_url = "<a href=edituser.php?id=" . $id;
    414. 

  414.         ?>
    415. 

  415. 

  416.         <br><b><?php echo WEB_user_ip_list; ?></b><br>
    417. 

  417.         <table class="data">
    418. 

  418.             <tr>
    419. 

  419.                 <td class="data"><?php echo WEB_user_add_ip; ?>:&nbsp<input type=text name=newip value=""></td>
    420. 

  420.                 <td class="data"><?php echo WEB_user_add_mac; ?>:&nbsp<input type=text name=newmac value=""></td>
    421. 

  421.                 <td class="data"><input type="submit" name="addauth" value="<?php echo WEB_btn_add; ?>"></td>
    422. 

  422.                 <td class="data" align=right><input type="submit" name="new_user" value="<?php echo WEB_btn_transfom; ?>"></td>
    423. 

  423.             </tr>
    424. 

  424.         </table>
    425. 

  425. 

  426.         <table class="data" width=120%>
    427. 

  427.             <tr align=center>
    428. 

  428.                 <td class="data"><input type="checkbox" onClick="checkAll(this.checked);"></td>
    429. 

  429.                 <td class="data"><?php print $sort_url . "&sort=ip_int&order=$new_order>" . WEB_cell_ip . "</a>"; ?></td>
    430. 

  430.                 <td class="data"><?php print $sort_url . "&sort=mac&order=$new_order>" . WEB_cell_mac . "</a>"; ?></td>
    431. 

  431.                 <td class="data"><?php print WEB_cell_description; ?></td>
    432. 

  432.                 <td class="data"><?php print $sort_url . "&sort=dns_name&order=$new_order>" . WEB_cell_dns_name . "</a>"; ?></td>
    433. 

  433.                 <td class="data"><?php print WEB_cell_enabled; ?></td>
    434. 

  434.                 <td class="data"><?php print WEB_cell_dhcp; ?></td>
    435. 

  435.                 <td class="data"><?php print WEB_cell_filter; ?></td>
    436. 

  436.                 <td class="data"><?php print WEB_cell_shaper; ?></td>
    437. 

  437.                 <td class="data"><?php print WEB_cell_perday . "/<br>" . WEB_cell_permonth . ", Mb"; ?></td>
    438. 

  438.                 <td class="data"><?php print WEB_cell_temporary; ?></td>
    439. 

  439.                 <td class="data"><?php print "<input type=\"submit\" onclick=\"return confirm('" . WEB_msg_apply_selected . "?')\" name=\"removeauth\" value=" . WEB_btn_remove . ">"; ?></td>
    440. 

  440.             </tr>
    441. 

  441. 

  442.             <?php
    443. 

  443. 

  444.             $flist = get_records($db_link, 'user_auth', "user_id=? and deleted=0 ORDER BY $sort_table.$sort_field $order", [ $id ]);
    445. 

  445.             if (!empty($flist)) {
    446. 

  446.                 foreach ($flist as $row) {
    447. 

  447.                     $dhcp_str = '';
    448. 

  448.                     if ($row["dhcp_time"] !== '0000-00-00 00:00:00') {
    449. 

  449.                         if (!empty($row["dhcp_action"])) { $dhcp_str = FormatDateStr('Y.m.d H:m', $row["dhcp_time"]) . " (" . $row["dhcp_action"] . ")"; }
    450. 

  450.                     }
    451. 

  451.                     if ($row["last_found"] == '0000-00-00 00:00:00') {
    452. 

  452.                         $row["last_found"] = '';
    453. 

  453.                     }
    454. 

  454.                     if ($row["mac_found"] == '0000-00-00 00:00:00') {
    455. 

  455.                         $row["mac_found"] = '';
    456. 

  456.                     }
    457. 

  457.                     if ($row["arp_found"] == '0000-00-00 00:00:00') {
    458. 

  458.                         $row["arp_found"] = '';
    459. 

  459.                     }
    460. 

  460.                     print "<tr align=center>";
    461. 

  461.                     print "<td class=\"data\" style='padding:0'><input type=checkbox name=f_auth_id[] value=" . $row["id"] . " ></td>";
    462. 

  462. 

  463.                     print "<td class=\"data\" align=left><a href=editauth.php?id=" . $row["id"] . ">" . $row["ip"] . "</a>";
    464. 

  464.                     if (!empty($row["arp_found"])) { print "<p class='ts'>".FormatDateStr('Y.m.d H:i', $row["arp_found"])."</p>"; }
    465. 

  465.                     print "</td>";
    466. 

  466. 

  467.                     print "<td class=\"data\" >" . expand_mac($db_link, $row["mac"]);
    468. 

  468.                     if (!empty($row["mac_found"])) { print "<p class='ts'>".FormatDateStr('Y.m.d H:i', $row["mac_found"])."</p>"; }
    469. 

  469.                     print "</td>";
    470. 

  470. 

  471.                     if (isset($row["dhcp_hostname"]) and strlen($row["dhcp_hostname"]) > 0) {
    472. 

  472.                         print "<td class=\"data\" >" . $row["description"] . " [" . $row["dhcp_hostname"] . "]</td>";
    473. 

  473.                     } else {
    474. 

  474.                         print "<td class=\"data\" >" . $row["description"] . "</td>";
    475. 

  475.                     }
    476. 

  476.                     $f_dns_type = 'A';
    477. 

  477.                     if ($row["dns_ptr_only"]) { $f_dns_type = 'ptr'; }
    478. 

  478.                     $f_dns_row = '';
    479. 

  479.                     if (!empty($row["dns_name"])) { $f_dns_row = $row["dns_name"]."<hr>".$f_dns_type; }
    480. 

  480.                     print "<td class=\"data\" >" . $f_dns_row . "</td>";
    481. 

  481.                     $ip_status = 1;
    482. 

  482.                     if ($row["blocked"] or !$row["enabled"]) {
    483. 

  483.                         $ip_status = 0;
    484. 

  484.                     }
    485. 

  485. 

  486.                     print_td_qa($ip_status);
    487. 

  487. 

  488.                     $cl = "data_green";
    489. 

  489.                     if (!$row["dhcp"]) { $cl = "data_red"; }
    490. 

  490.                     print "<td class=\"$cl\" >" . get_qa($row["dhcp"]);
    491. 

  491.                     if (!empty($row["dhcp_acl"]) or !empty($row["dhcp_option_set"])) {
    492. 

  492.                             print "<p class='ts'>";
    493. 

  493.                             if (!empty($row["dhcp_acl"])) { print $row["dhcp_acl"]; }
    494. 

  494.                             if (!empty($row["dhcp_acl"]) and !empty($row["dhcp_option_set"])) { print "&nbsp/&nbsp"; }
    495. 

  495.                             if (!empty($row["dhcp_option_set"])) { print $row["dhcp_option_set"]; }
    496. 

  496.                             print "</p>";
    497. 

  497.                             }
    498. 

  498.                     if (!empty($dhcp_str)) { print "<p class='ts'>".$dhcp_str. "</p>"; }
    499. 

  499.                     print "</td>";
    500. 

  500. 

  501.                     print "<td class=\"data\" >" . get_group($db_link, $row["filter_group_id"]) . "</td>";
    502. 

  502.                     print "<td class=\"data\" >" . get_queue($db_link, $row["queue_id"]) . "</td>";
    503. 

  503.                     print "<td class=\"data\" >" . $row["day_quota"] . "/" . $row["month_quota"] . "</td>";
    504. 

  504. 

  505.                     if ($row['dynamic']) { $cl = "data_red"; } else { $cl = "data_green"; }
    506. 

  506.                     print "<td class=\"$cl\" >". get_qa($row['dynamic']);
    507. 

  507.                     if ($row['dynamic'] and !empty($row["end_life"])) { print "<p class='ts'>".FormatDateStr('Y.m.d H:i', $row["end_life"])."</p>"; } else { print "&nbsp"; }
    508. 

  508.                     print "</td>";
    509. 

  509. 

  510.                     print "<td class=\"data\" >";
    511. 

  511.                     if (!empty($row["created_by"])) { print $row["created_by"]; }  else { print "&nbsp"; }
    512. 

  512.                     print "</td>";
    513. 

  513.                     print "</tr>";
    514. 

  514.                 }
    515. 

  515.             }
    516. 

  516.             ?>
    517. 

  517.         </table>
    518. 

  518.     </form>
    519. 

  519.     <?php
    520. 

  520.     require_once($_SERVER["DOCUMENT_ROOT"] . "/inc/footer.php");
    521. 

  521.     ?>
    522.