]>
git.ipfire.org Git - people/pmueller/ipfire-2.x.git/blob - html/cgi-bin/samba.cgi
2 ###############################################################################
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2005-2013 IPFire Team <info@ipfire.org> #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
20 ###############################################################################
23 # enable only the following on debugging purpose
25 #use CGI::Carp 'fatalsToBrowser';
27 require '/var/ipfire/general-functions.pl';
28 require "${General::swroot}/lang.pl";
29 require "${General::swroot}/header.pl";
31 my %sambasettings = ();
36 my %mainsettings = ();
38 my $errormessage = "";
43 my $userfile = "${General::swroot}/samba/private/smbpasswd";
46 my $defaultoption= "[My Share]\npath = \ncomment = Share - Public Access\nbrowseable = yes\nwriteable = yes\ncreate mask = 0644\ndirectory mask = 0755\npublic = yes\nforce user = samba";
47 my %shares = &config
("${General::swroot}/samba/shares");
49 &General
::readhash
("${General::swroot}/ethernet/settings", \
%netsettings);
50 &General
::readhash
("${General::swroot}/main/settings", \
%mainsettings);
51 &General
::readhash
("/srv/web/ipfire/html/themes/ipfire/include/colors.txt", \
%color);
53 ############################################################################################################################
54 #################################### Initialisierung von Samba Variablen fr global Settings ###############################
56 $sambasettings{'WORKGRP'} = uc($mainsettings{'DOMAINNAME'});
57 $sambasettings{'ROLE'} = 'standalone';
58 $sambasettings{'REMOTEANNOUNCE'} = '';
59 $sambasettings{'REMOTESYNC'} = '';
60 $sambasettings{'GUESTACCOUNT'} = 'samba';
61 $sambasettings{'MAPTOGUEST'} = 'Bad User';
62 $sambasettings{'ENCRYPTION'} = 'optional';
63 ### Values that have to be initialized
64 $sambasettings{'ACTION'} = '';
67 ############################################################################################################################
69 &General
::readhash
("${General::swroot}/samba/settings", \
%sambasettings);
71 # Hook to regenerate the configuration files.
72 if ($ENV{"REMOTE_ADDR"} eq "") {
73 &writeconfiguration
();
77 &Header
::showhttpheaders
();
79 &Header
::getcgihash
(\
%sambasettings);
80 delete $sambasettings{'__CGI__'};delete $sambasettings{'x'};delete $sambasettings{'y'};
82 &Header
::openpage
('Samba', 1, '');
83 &Header
::openbigbox
('100%', 'left', '', $errormessage);
85 ############################################################################################################################
86 ############################################# Samba Rootskript aufrufe fr SU-Actions #######################################
88 if ($sambasettings{'ACTION'} eq 'smbuserdisable'){&General
::system("/usr/local/bin/sambactrl", "smbuserdisable", "$sambasettings{'NAME'}");}
89 if ($sambasettings{'ACTION'} eq 'smbuserenable'){&General
::system("/usr/local/bin/sambactrl", "smbuserenable", "$sambasettings{'NAME'}");}
90 if ($sambasettings{'ACTION'} eq 'smbuseradd'){&General
::system("/usr/local/bin/sambactrl", "smbuseradd", "$sambasettings{'USERNAME'}", "$sambasettings{'PASSWORD'}");}
91 if ($sambasettings{'ACTION'} eq 'smbchangepw'){&General
::system("/usr/local/bin/sambactrl", "smbchangepw", "$sambasettings{'USERNAME'}", "$sambasettings{'PASSWORD'}");}
92 if ($sambasettings{'ACTION'} eq 'smbrestart'){&General
::system("/usr/local/bin/sambactrl", "smbrestart");}
93 if ($sambasettings{'ACTION'} eq 'smbstart'){&General
::system("/usr/local/bin/sambactrl", "smbstart");}
94 if ($sambasettings{'ACTION'} eq 'smbstop'){&General
::system("/usr/local/bin/sambactrl", "smbstop");}
95 if ($sambasettings{'ACTION'} eq 'smbreload'){&General
::system("/usr/local/bin/sambactrl", "smbreload");}
96 if ($sambasettings{'ACTION'} eq 'join') {
97 $message .= &joindomain
($sambasettings{'USERNAME'}, $sambasettings{'PASSWORD'});
100 if ($sambasettings{'ACTION'} eq 'smbshareadd') {
101 $shares{'xvx'} = $sambasettings{'SHAREOPTION'};
104 # Reload configuration
105 %shares = config
("${General::swroot}/samba/shares");
108 if ($sambasettings{'ACTION'} eq 'smbsharedel') {
109 delete $shares{$sambasettings{'NAME'}};
112 # Reload configuration
113 %shares = config
("${General::swroot}/samba/shares");
116 if ($sambasettings{'ACTION'} eq 'smbsharechange') {
117 $shares{$sambasettings{'NAME'}} = $sambasettings{'SHAREOPTION'};
120 # Reload configuration
121 %shares = config
("${General::swroot}/samba/shares");
124 ############################################################################################################################
125 ########################################### Samba Benutzer oder PC l�chen #################################################
127 if ($sambasettings{'ACTION'} eq 'userdelete'){&General
::system("/usr/local/bin/sambactrl", "smbuserdelete", "$sambasettings{'NAME'}");}
129 ############################################################################################################################
130 ##################################### Umsetzen der Werte von Checkboxen und Dropdowns ######################################
132 ############################################################################################################################
133 ##################################### Schreiben settings und bersetzen fr smb.conf #######################################
135 if ($sambasettings{'ACTION'} eq $Lang::tr
{'save'}) {
136 &General
::writehash
("${General::swroot}/samba/settings", \
%sambasettings);
138 # Write configuration to file
139 &writeconfiguration
();
141 &General
::system("/usr/local/bin/sambactrl", "smbreload");
144 &General
::readhash
("${General::swroot}/samba/settings", \
%sambasettings);
149 &Header
::openbox
('100%', 'left', $Lang::tr
{'error messages'});
150 print "<class name='base'>$errormessage\n";
151 print " </class>\n";
156 $message = &Header
::cleanhtml
($message);
157 $message =~ s/\n/<br>/g;
159 &Header
::openbox
('100%', 'left', $Lang::tr
{'messages'});
164 ############################################################################################################################
165 ########################################## Aktivieren von Checkboxen und Dropdowns #########################################
167 $selected{'ENCRYPTION'}{'optional'} = '';
168 $selected{'ENCRYPTION'}{'desired'} = '';
169 $selected{'ENCRYPTION'}{'required'} = '';
170 $selected{'ENCRYPTION'}{$sambasettings{'ENCRYPTION'}} = "selected='selected'";
171 $selected{'ROLE'}{'standalone'} = '';
172 $selected{'ROLE'}{'member'} = '';
173 $selected{'ROLE'}{$sambasettings{'ROLE'}} = "selected='selected'";
175 if ( $sambasettings{'MAPTOGUEST'} eq "Never" ) {
176 $sambasettings{'MAPTOGUEST'}="Bad User";
178 $selected{'MAPTOGUEST'}{$sambasettings{'MAPTOGUEST'}} = "selected='selected'";
180 ############################################################################################################################
181 ################################### Aufbau der HTML Seite fr globale Sambaeinstellungen ###################################
183 &Header
::openbox
('100%', 'center', $Lang::tr
{'samba'});
186 "nmbd" => $Lang::tr
{'netbios nameserver daemon'},
187 "smbd" => $Lang::tr
{'smb daemon'},
188 "winbindd" => $Lang::tr
{'winbind daemon'},
192 <table class="tbl" width='100%' cellspacing='0'>
193 <tr bgcolor='$color{'color20'}'>
194 <td colspan='2' align='left'><b>$Lang::tr{'all services'}</b></td>
198 foreach my $service (sort keys %servicenames) {
199 my $status = &isrunning
($service);
203 <td align='left' width='40%'>$servicenames{$service}</td>
215 <td width="33%" align="center">
216 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
217 <input type="hidden" name="ACTION" value="smbstart">
218 <input type="submit" value="$Lang::tr{'enable'}">
222 <td width="33%" align="center">
223 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
224 <input type="hidden" name="ACTION" value="smbstop">
225 <input type="submit" value="$Lang::tr{'disable'}">
229 <td width="33%" align="center">
230 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
231 <input type="hidden" name="ACTION" value="smbrestart">
232 <input type="submit" value="$Lang::tr{'restart'}">
239 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
240 <table class="tbl" width='100%' cellspacing='0'>
241 <tr bgcolor='$color{'color20'}'>
242 <td colspan='2' align='left'><b>$Lang::tr{'basic options'}</b></td>
245 <td align='left' width='40%'>$Lang::tr{'workgroup'}</td>
247 <input type='text' name='WORKGRP' value='$sambasettings{'WORKGRP'}' size="30" />
251 <td align='left'><br /></td>
254 <tr bgcolor='$color{'color20'}'>
255 <td colspan='2' align='left'><b>$Lang::tr{'security options'}</b></td>
258 <td align='left' width='40%'>$Lang::tr{'security'}</td>
260 <select name='ROLE' style="width: 165px">
261 <option value='standalone' $selected{'ROLE'}{'standalone'}>$Lang::tr{'samba server role standalone'}</option>
262 <option value='member' $selected{'ROLE'}{'member'}>$Lang::tr{'samba server role member'}</option>
267 <td align='left' width='40%'>$Lang::tr{'encryption'}</td>
269 <select name='ENCRYPTION' style="width: 165px">
270 <option value='optional' $selected{'ENCRYPTION'}{'optional'}>$Lang::tr{'optional'}</option>
271 <option value='desired' $selected{'ENCRYPTION'}{'desired'}>$Lang::tr{'desired'}</option>
272 <option value='required' $selected{'ENCRYPTION'}{'required'}>$Lang::tr{'required'}</option>
277 <td align='left' width='40%'>$Lang::tr{'map to guest'}</td>
279 <select name='MAPTOGUEST' style="width: 165px">
280 <option value='Bad User' $selected{'MAPTOGUEST'}{'Bad User'}>Bad User</option>
281 <option value='Bad Password' $selected{'MAPTOGUEST'}{'Bad Password'}>Bad Password</option>
286 <td align='left'><br /></td>
289 <tr bgcolor='$color{'color20'}'>
290 <td colspan='2' align='left'><b>$Lang::tr{'network options'}</b></td>
293 <td align='left' width='40%'>$Lang::tr{'remote announce'}</td>
295 <input type='text' name='REMOTEANNOUNCE' value='$sambasettings{'REMOTEANNOUNCE'}' size="30" />
299 <td align='left' width='40%'>$Lang::tr{'remote browse sync'}</td>
301 <input type='text' name='REMOTESYNC' value='$sambasettings{'REMOTESYNC'}' size="30" />
308 <table width='100%' cellspacing='0'>
311 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
312 <input type='hidden' name='ACTION' value="$Lang::tr{'save'}">
313 <input type='submit' value="$Lang::tr{'save'}">
323 ############################################################################################################################
324 ########################################## Benutzerverwaltung fr Usersecurity #############################################
326 if ($sambasettings{'ROLE'} eq 'standalone') {
327 &Header
::openbox
('100%', 'center', $Lang::tr
{'user management'});
330 <table class="tbl" width='100%' cellspacing='0'>
332 <th align='left'>$Lang::tr{'user'}</th>
333 <th colspan='3' width='5%'></th>
337 &General
::system("/usr/local/bin/sambactrl", "readsmbpasswd");
338 open(FILE
, "<${General::swroot}/samba/private/smbpasswd") or die "Can't read user file: $!";
341 &General
::system("/usr/local/bin/sambactrl", "locksmbpasswd");
344 foreach $userentry (sort @users) {
345 @userline = split( /\:/, $userentry);
348 print "<tr bgcolor='$color{'color20'}'>";
350 print "<tr bgcolor='$color{'color22'}'>";
354 print "<td align='left'>$userline[0]</td>";
356 if ($userline[4] =~ /D/) {
359 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
360 <input type='hidden' name='NAME' value='$userline[0]' />
361 <input type='hidden' name='ACTION' value='smbuserenable' />
362 <input type='image' alt='$Lang::tr{'activate'}' title='$Lang::tr{'activate'}' src='/images/off.gif' />
369 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
370 <input type='hidden' name='NAME' value='$userline[0]' />
371 <input type='hidden' name='ACTION' value='smbuserdisable' />
372 <input type='image' alt='$Lang::tr{'deactivate'}' title='$Lang::tr{'deactivate'}' src='/images/on.gif' />
378 # Machine accounts can't be edited
379 if ($userline[0] =~ /\$/) {
384 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
385 <input type='hidden' name='NAME' value='$userline[0]' />
386 <input type='hidden' name='ACTION' value='userchangepw' />
387 <input type='image' alt='$Lang::tr{'edit'}' title='$Lang::tr{'edit'}' src='/images/edit.gif' />
395 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
396 <input type='hidden' name='NAME' value='$userline[0]' />
397 <input type='hidden' name='ACTION' value='userdelete' />
398 <input type='image' alt='$Lang::tr{'delete'}' title='$Lang::tr{'delete'}' src='/images/delete.gif' />
411 <table width='10%' cellspacing='0'>
414 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
415 <input type='hidden' name='ACTION' value='useradd'>
416 <input type='submit' value='$Lang::tr{'add user'}'>
423 if ($sambasettings{'ACTION'} eq 'userchangepw') {
424 my $username = $sambasettings{'NAME'};
425 my $password = 'samba';
429 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
430 <table width='100%' cellspacing='0'>
431 <tr bgcolor='$color{'color20'}'>
432 <td colspan='2' align='left'><b>$Lang::tr{'change passwords'}</b></td>
435 <td align='left'>$Lang::tr{'username'}</td>
437 <input type='text' name='USERNAME' value='$username' size='30' readonly='readonly' />
441 <td align='left'>$Lang::tr{'password'}</td>
443 <input type='password' name='PASSWORD' value='$password' size='30' />
447 <td colspan='2' align='center'>
448 <input type='hidden' name='ACTION' value='smbchangepw'>
449 <input type='submit' value='$Lang::tr{'save'}'>
457 if ($sambasettings{'ACTION'} eq 'useradd') {
458 my $username = "user";
459 my $password = "samba";
468 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
469 <table width='100%' cellspacing='0'>
470 <tr bgcolor='$color{'color20'}'>
471 <td colspan='2' align='left'><b>$Lang::tr{'add user'}</b></td>
474 <td align='left'>$Lang::tr{'username'}</td>
476 <input type='text' name='USERNAME' value='$username' size='30' />
480 <td align='left'>$Lang::tr{'password'}</td>
482 <input type='password' name='PASSWORD' value='$password' size='30' />
486 <td colspan='2' align='center'>
487 <input type='hidden' name='ACTION' value='smbuseradd'>
488 <input type='submit' value='$Lang::tr{'save'}'>
499 if ($sambasettings{'ROLE'} eq "member") {
500 &Header
::openbox
('100%', 'center', $Lang::tr
{'samba join a domain'});
502 my $AD_DOMAINNAME = uc($mainsettings{'DOMAINNAME'});
505 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
506 <input type="hidden" name="ACTION" value="join">
520 $Lang::tr{'administrator username'}
523 <input type="text" name="USERNAME" size="30">
528 $Lang::tr{'administrator password'}
531 <input type="password" name="PASSWORD" size="30">
537 <input type="submit" value="$Lang::tr{'samba join domain'}">
548 ############################################################################################################################
549 ############################################### Verwalten von Freigaben ####################################################
551 &Header
::openbox
('100%', 'center', $Lang::tr
{'shares'});
554 <table class="tbl" width='100%' cellspacing='0'>
556 <th align='left'>$Lang::tr{'sharename'}</th>
557 <th colspan='2' width="5%" align='center'></th>
561 my @shares = keys(%shares);
564 foreach my $shareentry (sort @shares) {
568 $col = "bgcolor='$color{'color20'}'";
570 $col = "bgcolor='$color{'color22'}'";
575 <td align='left' $col>$shareentry</td>
577 <form method='post' action='$ENV{'SCRIPT_NAME'}#$Lang::tr{'manage shares'}'>
578 <input type='hidden' name='NAME' value='$shareentry' />
579 <input type='hidden' name='ACTION' value='sharechange' />
580 <input type='image' alt='$Lang::tr{'edit'}' title='$Lang::tr{'edit'}' src='/images/edit.gif' />
584 <form method='post' action='$ENV{'SCRIPT_NAME'}#$Lang::tr{'manage shares'}'>
585 <input type='hidden' name='NAME' value='$shareentry' />
586 <input type='hidden' name='ACTION' value='smbsharedel' />
587 <input type='image' alt='$Lang::tr{'delete'}' title='$Lang::tr{'delete'}' src='/images/delete.gif' />
601 <table width='100%' cellspacing='0'>
604 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
605 <input type='hidden' name='ACTION' value='shareadd'>
606 <input type='submit' value='$Lang::tr{'add share'}'>
613 if ($sambasettings{'ACTION'} eq 'shareadd') {
617 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
618 <table width='100%' cellspacing='0'>
619 <tr bgcolor='$color{'color20'}'>
620 <td align='left'><b>$Lang::tr{'add share'}</b></td>
624 <textarea name="SHAREOPTION" cols="121" rows="15">$defaultoption</textarea>
629 <input type='hidden' name='ACTION' value='smbshareadd'>
630 <input type='submit' value='$Lang::tr{'save'}'>
638 if ($sambasettings{'ACTION'} eq 'sharechange') {
639 my $shareoption = $shares{$sambasettings{'NAME'}};
644 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
645 <input type='hidden' name='NAME' value='$sambasettings{'NAME'}'>
647 <table width='100%' cellspacing='0'>
648 <tr bgcolor='$color{'color20'}'>
649 <td align='left'><b>$Lang::tr{'edit share'}</b></td>
653 <textarea name="SHAREOPTION" cols="121" rows="15">$shareoption</textarea>
658 <input type='hidden' name='ACTION' value='smbsharechange'>
659 <input type='submit' value='$Lang::tr{'save'}'>
669 ############################################################################################################################
670 ############################################### Anzeige des Sambastatus ####################################################
672 &Header
::openbox
('100%', 'left', $Lang::tr
{'status'});
674 my $status = qx(/usr/local/bin/sambactrl smbstatus
);
675 $status = &Header
::cleanhtml
($status);
685 &Header
::closebigbox
();
686 &Header
::closepage
();
688 ############################################################################################################################
689 ############################################ Subfunktion fr Sambadienste ###################################################
694 my @allarray = `grep -n '^\\[' $file`;
699 my $EOF = qx(cat
$file | wc
-l
);
700 foreach my $allarrayentry (@allarray)
702 my @allarrayline = split( /\:/, $allarrayentry );
703 push(@linesarray,$allarrayline[0]);$allarrayline[1]=~s/\[//g;$allarrayline[1]=~s/\]//g;push(@namearray,$allarrayline[1]);
705 for(my $i = 0; $i <= $#namearray; $i++)
707 chomp $namearray[$i];
708 $namearray[$i]=~s/\[//g;$namearray[$i]=~s/\]//g;
709 if ( $i eq $#namearray )
711 my $lineend = $EOF-$linesarray[$i]+1;
712 $options=qx(tail
-$lineend $file);
716 my $linestart = $EOF-$linesarray[$i]+1;
717 my $lineend = $linesarray[$i+1]-$linesarray[$i];
718 $options=qx(tail
-$linestart $file | head
-$lineend);
720 $hash{$namearray[$i]} = "$options";
721 #print"<pre>$namearray[$i]\n$options\n</pre>"; # enable only for debuging
729 open (FILE
, ">${General::swroot}/samba/$smb") or die "Can't $smb settings $!";
732 if ( $smb eq 'shares')
733 {while (my ($name, $option) = each %shares){chomp $option;$option =~ s/\r\n/\n/gi;$option =~ s/^\n//gi;$option =~ s/^\r//gi;$option =~ s/^.\n//gi;$option =~ s/^.\r//gi;print FILE
"$option\n";} }
737 &General
::system("/usr/local/bin/sambactrl", "smbsafeconf");
738 &General
::system("/usr/local/bin/sambactrl", "smbreload");
744 my $status = "<td align='center' bgcolor='${Header::colourred}'><font color='white'><b>$Lang::tr{'stopped'}</b></font></td>";
752 if (open(FILE
, "/var/run/${cmd}.pid"))
754 $pid = <FILE
>; chomp $pid;
756 if (open(FILE
, "/proc/${pid}/status"))
766 if ($testcmd =~ /$exename/)
768 $status = "<td align='center' bgcolor='${Header::colourgreen}'><font color='white'><b>$Lang::tr{'running'}</b></font></td>";
775 sub writeconfiguration
() {
776 open (FILE
, ">${General::swroot}/samba/global") or die "Can't save the global settings: $!";
780 # global.settings by IPFire Project
783 server string = Samba on IPFire
785 workgroup = $sambasettings{'WORKGRP'}
786 realm = $mainsettings{'DOMAINNAME'}
787 passdb backend = smbpasswd
789 map to guest = $sambasettings{'MAPTOGUEST'}
791 guest account = $sambasettings{'GUESTACCOUNT'}
792 unix password sync = no
794 bind interfaces only = true
795 interfaces = green0 blue0 127.0.0.0/8
796 remote announce = $sambasettings{'REMOTEANNOUNCE'}
797 remote browse sync = $sambasettings{'REMOTESYNC'}
799 winbind separator = +
800 winbind uid = 10000-20000
801 winbind gid = 10000-20000
802 winbind use default domain = yes
807 # Enable support for Apple
808 vfs objects = catia fruit streams_xattr recycle
810 # Enable following symlinks
813 # Disable smb1 unix extensions
814 smb1 unix extensions = no
819 if ($sambasettings{'ROLE'} eq "standalone") {
820 print FILE
"server role = standalone\n";
821 } elsif ($sambasettings{'ROLE'} eq "member") {
822 print FILE
"server role = member server\n";
825 if ($sambasettings{'ENCRYPTION'} =~ m/(desired|required)/) {
826 print FILE
"smb encrypt = $1\n";
829 # Include smb.conf.local
830 if (-e
"${General::swroot}/samba/smb.conf.local") {
831 open(LOCAL
, "<${General::swroot}/samba/smb.conf.local");
833 # Copy content line by line
842 # Export all printers
844 path = /var/spool/samba/
850 &General
::system("/usr/local/bin/sambactrl", "smbsafeconf");
854 my $username = shift;
855 my $password = shift;
857 my @options = ("/usr/local/bin/sambactrl", "join", $username, $password);
858 my $output = qx(@options);