]>
git.ipfire.org Git - people/teissler/ipfire-2.x.git/blob - html/cgi-bin/chpasswd.cgi
4 # $Id: chpasswd.cgi,v 1.0 2005/01/25 00:00:00 marco Exp $
9 $swroot = "/var/ipfire";
15 $proxysettings{'NCSA_MIN_PASS_LEN'} = 6;
17 ### Initialize environment
18 &readhash
("${swroot}/main/settings", \
%mainsettings);
19 &readhash
("${swroot}/proxy/advanced/settings", \
%proxysettings);
20 $language = $mainsettings{'LANGUAGE'};
22 ### Initialize language
23 if ($language =~ /^(\w+)$/) {$language = $1;}
25 # Uncomment this to force a certain language:
28 require "${swroot}/langs/en.pl";
29 require "${swroot}/langs/${language}.pl";
31 my $userdb = "$swroot/proxy/advanced/ncsa/passwd";
33 &readhash
("$swroot/ethernet/settings", \
%netsettings);
37 &getcgihash
(\
%cgiparams);
39 if ($cgiparams{'SUBMIT'} eq $tr{'advproxy chgwebpwd change password'})
41 if ($cgiparams{'USERNAME'} eq '')
43 $errormessage = $tr{'advproxy errmsg no username'};
46 if (($cgiparams{'OLD_PASSWORD'} eq '') || ($cgiparams{'NEW_PASSWORD_1'} eq '') || ($cgiparams{'NEW_PASSWORD_2'} eq ''))
48 $errormessage = $tr{'advproxy errmsg no password'};
51 if (!($cgiparams{'NEW_PASSWORD_1'} eq $cgiparams{'NEW_PASSWORD_2'}))
53 $errormessage = $tr{'advproxy errmsg passwords different'};
56 if (length($cgiparams{'NEW_PASSWORD_1'}) < $proxysettings{'NCSA_MIN_PASS_LEN'})
58 $errormessage = $tr{'advproxy errmsg password length 1'}.$proxysettings{'NCSA_MIN_PASS_LEN'}.$tr{'advproxy errmsg password length 2'};
73 @temp = split(/:/,$_);
74 if ($temp[0] =~ /^$cgiparams{'USERNAME'}$/i)
83 $errormessage = $tr{'advproxy errmsg invalid user'};
86 if (!(crypt($cgiparams{'OLD_PASSWORD'}, $cryptpwd) eq $cryptpwd))
88 $errormessage = $tr{'advproxy errmsg password incorrect'};
91 $returncode = system("/usr/bin/htpasswd -b $userdb $username $cgiparams{'NEW_PASSWORD_1'}");
97 $errormessage = $tr{'advproxy errmsg change fail'};
104 print "Pragma: no-cache\n";
105 print "Cache-control: no-cache\n";
106 print "Connection: close\n";
107 print "Content-type: text/html\n\n";
112 <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
116 <body bgcolor="#FFFFFF">
120 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
122 <table width="80%" cellspacing="10" cellpadding="5" border="0">
125 <td bgcolor="#C0C0C0">
126 <font face="verdana, arial, sans serif" color="#000000" size="2">
132 <td bgcolor="#F4F4F4" align="center">
133 <table width="100%" cellspacing="10" cellpadding="10">
135 <td nowrap bgcolor="#0050C0" align="center">
136 <font face="verdana, arial, sans serif" color="#FFFFFF" size="3">
137 <b>$tr{'advproxy chgwebpwd change web password'}</b>
143 <table width="70%" cellspacing="7" cellpadding="7">
145 <td nowrap bgcolor="#F4F4F4" align="left">
146 <font face="verdana, arial, sans serif" color="#000000" size="2">
147 <b>$tr{'advproxy chgwebpwd username'}:</b>
150 <td><input type="text" name="USERNAME" value="$cgiparams{'USERNAME'}" size="15"></td>
153 <td nowrap bgcolor="#F4F4F4" align="left">
154 <font face="verdana, arial, sans serif" color="#000000" size="2">
155 <b>$tr{'advproxy chgwebpwd old password'}:</b>
158 <td><input type="password" name="OLD_PASSWORD" value="$cgiparams{'OLD_PASSWORD'}" size="15"></td>
161 <td nowrap bgcolor="#F4F4F4" align="left">
162 <font face="verdana, arial, sans serif" color="#000000" size="2">
163 <b>$tr{'advproxy chgwebpwd new password'}:</b>
166 <td><input type="password" name="NEW_PASSWORD_1" value="$cgiparams{'NEW_PASSWORD_1'}" size="15"></td>
169 <td nowrap bgcolor="#F4F4F4" align="left">
170 <font face="verdana, arial, sans serif" color="#000000" size="2">
171 <b>$tr{'advproxy chgwebpwd new password confirm'}:</b>
174 <td><input type="password" name="NEW_PASSWORD_2" value="$cgiparams{'NEW_PASSWORD_2'}" size="15"></td>
177 <table width="100%" cellspacing="7" cellpadding="7">
179 <td align="center"><br><input type='submit' name='SUBMIT' value="$tr{'advproxy chgwebpwd change password'}"></td>
191 <td nowrap bgcolor="#FF0000" align="center">
192 <font face="verdana, arial, sans serif" color="#FFFFFF" size="2">
193 <b>$tr{'advproxy chgwebpwd ERROR'}</b> $errormessage
205 <td nowrap bgcolor="#00C000" align="center">
206 <font face="verdana, arial, sans serif" color="#FFFFFF" size="2">
207 <b>$tr{'advproxy chgwebpwd SUCCESS'}</b> $tr{'advproxy errmsg change success'}
223 <td bgcolor="#C0C0C0" align="right">
224 <a href="http://www.advproxy.net" target="_blank"><b>
225 <font face="verdana,arial,sans serif" color="#FFFFFF" size="1">Advanced Proxy</b></a> running on</font>
226 <a href="http://www.ipcop.org" target="_blank"><b>
227 <font face="verdana,arial,sans serif" color="#FFFFFF" size="1">IPCop</b></a></font>
243 # -------------------------------------------------------------------
247 my $filename = $_[0];
253 open(FILE
, $filename) or die "Unable to read file $filename";
257 ($var, $val) = split /=/, $_, 2;
263 # Untaint variables read from hash
264 $var =~ /([A-Za-z0-9_-]*)/; $var = $1;
265 $val =~ /([\w\W]*)/; $val = $1;
266 $hash->{$var} = $val;
273 # -------------------------------------------------------------------
277 my ($hash, $params) = @_;
278 my $cgi = CGI
->new ();
279 return if ($ENV{'REQUEST_METHOD'} ne 'POST');
280 if (!$params->{'wantfile'}) {
281 $CGI::DISABLE_UPLOADS
= 1;
282 $CGI::POST_MAX
= 512 * 1024;
284 $CGI::POST_MAX
= 10 * 1024 * 1024;
287 $cgi->referer() =~ m/^https?\:\/\
/([^\/]+)/;
289 $cgi->url() =~ m/^https?\:\/\
/([^\/]+)/;
291 return if ($referer ne $servername);
293 ### Modified for getting multi-vars, split by |
294 %temp = $cgi->Vars();
295 foreach my $key (keys %temp) {
296 $hash->{$key} = $temp{$key};
297 $hash->{$key} =~ s/\0/|/g;
298 $hash->{$key} =~ s/^\s*(.*?)\s*$/$1/;
301 if (($params->{'wantfile'})&&($params->{'filevar'})) {
302 $hash->{$params->{'filevar'}} = $cgi->upload
303 ($params->{'filevar'});
308 # -------------------------------------------------------------------