]>
git.ipfire.org Git - ipfire-2.x.git/blob - html/cgi-bin/samba.cgi
2 ###############################################################################
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2005-2013 IPFire Team <info@ipfire.org> #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
20 ###############################################################################
23 # enable only the following on debugging purpose
25 #use CGI::Carp 'fatalsToBrowser';
27 require '/var/ipfire/general-functions.pl';
28 require "${General::swroot}/lang.pl";
29 require "${General::swroot}/header.pl";
31 my %sambasettings = ();
36 my %mainsettings = ();
38 my $errormessage = "";
43 my $userfile = "${General::swroot}/samba/private/smbpasswd";
46 my $defaultoption= "[My Share]\npath = \ncomment = Share - Public Access\nbrowseable = yes\nwriteable = yes\ncreate mask = 0644\ndirectory mask = 0755\npublic = yes\nforce user = samba";
49 &General
::readhash
("${General::swroot}/ethernet/settings", \
%netsettings);
50 &General
::readhash
("${General::swroot}/main/settings", \
%mainsettings);
51 &General
::readhash
("/srv/web/ipfire/html/themes/".$mainsettings{'THEME'}."/include/colors.txt", \
%color);
53 ############################################################################################################################
54 ############################################# Samba Dienste fr Statusberprfung ##########################################
56 &Header
::showhttpheaders
();
58 ############################################################################################################################
59 #################################### Initialisierung von Samba Variablen fr global Settings ###############################
61 $sambasettings{'WORKGRP'} = uc($mainsettings{'DOMAINNAME'});
62 $sambasettings{'INTERFACES'} = '';
63 $sambasettings{'ROLE'} = 'standalone';
64 $sambasettings{'REMOTEANNOUNCE'} = '';
65 $sambasettings{'REMOTESYNC'} = '';
66 $sambasettings{'GUESTACCOUNT'} = 'samba';
67 $sambasettings{'MAPTOGUEST'} = 'Bad User';
68 $sambasettings{'ENCRYPTION'} = 'optional';
69 ### Values that have to be initialized
70 $sambasettings{'ACTION'} = '';
73 ############################################################################################################################
75 &General
::readhash
("${General::swroot}/samba/settings", \
%sambasettings);
76 &Header
::getcgihash
(\
%sambasettings);
78 &Header
::openpage
('Samba', 1, '');
79 &Header
::openbigbox
('100%', 'left', '', $errormessage);
81 ############################################################################################################################
82 ############################################# Samba Rootskript aufrufe fr SU-Actions #######################################
84 if ($sambasettings{'ACTION'} eq 'smbuserdisable'){system("/usr/local/bin/sambactrl smbuserdisable $sambasettings{'NAME'}");}
85 if ($sambasettings{'ACTION'} eq 'smbuserenable'){system("/usr/local/bin/sambactrl smbuserenable $sambasettings{'NAME'}");}
86 if ($sambasettings{'ACTION'} eq 'smbuseradd'){system("/usr/local/bin/sambactrl smbuseradd $sambasettings{'USERNAME'} $sambasettings{'PASSWORD'} $sambasettings{'GROUP'} $sambasettings{'SHELL'}");}
87 if ($sambasettings{'ACTION'} eq 'smbchangepw'){system("/usr/local/bin/sambactrl smbchangepw $sambasettings{'USERNAME'} $sambasettings{'PASSWORD'}");}
88 if ($sambasettings{'ACTION'} eq 'smbrestart'){system("/usr/local/bin/sambactrl smbrestart");}
89 if ($sambasettings{'ACTION'} eq 'smbstart'){system("/usr/local/bin/sambactrl smbstart");}
90 if ($sambasettings{'ACTION'} eq 'smbstop'){system("/usr/local/bin/sambactrl smbstop");}
91 if ($sambasettings{'ACTION'} eq 'smbreload'){system("/usr/local/bin/sambactrl smbreload");}
92 if ($sambasettings{'ACTION'} eq 'join') {
93 $message .= &joindomain
($sambasettings{'USERNAME'}, $sambasettings{'PASSWORD'});
96 ############################################################################################################################
97 ########################################### Samba Benutzer oder PC l�chen #################################################
99 if ($sambasettings{'ACTION'} eq 'userdelete'){system("/usr/local/bin/sambactrl smbuserdelete $sambasettings{'NAME'}");}
101 ############################################################################################################################
102 ##################################### Umsetzen der Werte von Checkboxen und Dropdowns ######################################
104 if ($sambasettings{'ACTION'} eq $Lang::tr
{'save'})
106 ############################################################################################################################
107 ##################################### Schreiben settings und bersetzen fr smb.conf #######################################
109 delete $sambasettings{'__CGI__'};delete $sambasettings{'x'};delete $sambasettings{'y'};
110 &General
::writehash
("${General::swroot}/samba/settings", \
%sambasettings);
112 ############################################################################################################################
113 ############################################# Schreiben der Samba globals ##################################################
115 open (FILE
, ">${General::swroot}/samba/global") or die "Can't save the global settings: $!";
119 # global.settings by IPFire Project
122 server string = Samba on IPFire
124 workgroup = $sambasettings{'WORKGRP'}
125 realm = $mainsettings{'DOMAINNAME'}
126 passdb backend = smbpasswd
128 map to guest = $sambasettings{'MAPTOGUEST'}
130 guest account = $sambasettings{'GUESTACCOUNT'}
131 unix password sync = no
133 bind interfaces only = true
134 interfaces = green0 blue0 127.0.0.0/8
135 remote announce = $sambasettings{'REMOTEANNOUNCE'}
136 remote browse sync = $sambasettings{'REMOTESYNC'}
138 winbind separator = +
139 winbind uid = 10000-20000
140 winbind gid = 10000-20000
141 winbind use default domain = yes
146 # Enable support for Apple
147 vfs objects = catia fruit streams_xattr recycle
149 # Enable following symlinks
156 if ($sambasettings{'ROLE'} eq "standalone") {
157 print FILE
"server role = standalone\n";
158 } elsif ($sambasettings{'ROLE'} eq "member") {
159 print FILE
"server role = member server\n";
162 if ($sambasettings{'ENCRYPTION'} =~ m/(desired|required)/) {
163 print FILE
"smb encrypt = $1\n";
167 # Export all printers
169 path = /var/spool/samba/
175 system("/usr/local/bin/sambactrl smbsafeconf");
176 system("/usr/local/bin/sambactrl smbreload");
178 &General
::readhash
("${General::swroot}/samba/settings", \
%sambasettings);
183 &Header
::openbox
('100%', 'left', $Lang::tr
{'error messages'});
184 print "<class name='base'>$errormessage\n";
185 print " </class>\n";
190 $message = &Header
::cleanhtml
($message);
191 $message =~ s/\n/<br>/g;
193 &Header
::openbox
('100%', 'left', $Lang::tr
{'messages'});
198 ############################################################################################################################
199 ########################################## Aktivieren von Checkboxen und Dropdowns #########################################
201 $selected{'ENCRYPTION'}{'optional'} = '';
202 $selected{'ENCRYPTION'}{'desired'} = '';
203 $selected{'ENCRYPTION'}{'required'} = '';
204 $selected{'ENCRYPTION'}{$sambasettings{'ENCRYPTION'}} = "selected='selected'";
205 $selected{'ROLE'}{'standalone'} = '';
206 $selected{'ROLE'}{'member'} = '';
207 $selected{'ROLE'}{$sambasettings{'ROLE'}} = "selected='selected'";
209 if ( $sambasettings{'MAPTOGUEST'} eq "Never" ) {
210 $sambasettings{'MAPTOGUEST'}="Bad User";
212 $selected{'MAPTOGUEST'}{$sambasettings{'MAPTOGUEST'}} = "selected='selected'";
214 ############################################################################################################################
215 ################################### Aufbau der HTML Seite fr globale Sambaeinstellungen ###################################
217 &Header
::openbox
('100%', 'center', $Lang::tr
{'samba'});
220 "nmbd" => $Lang::tr
{'netbios nameserver daemon'},
221 "smbd" => $Lang::tr
{'smb daemon'},
222 "winbindd" => $Lang::tr
{'winbind daemon'},
226 <table class="tbl" width='100%' cellspacing='0'>
227 <tr bgcolor='$color{'color20'}'>
228 <td colspan='2' align='left'><b>$Lang::tr{'all services'}</b></td>
232 foreach my $service (sort keys %servicenames) {
233 my $status = &isrunning
($service);
237 <td align='left' width='40%'>$servicenames{$service}</td>
249 <td width="33%" align="center">
250 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
251 <input type="hidden" name="ACTION" value="smbstart">
252 <input type="submit" value="$Lang::tr{'enable'}">
256 <td width="33%" align="center">
257 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
258 <input type="hidden" name="ACTION" value="smbstop">
259 <input type="submit" value="$Lang::tr{'disable'}">
263 <td width="33%" align="center">
264 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
265 <input type="hidden" name="ACTION" value="smbrestart">
266 <input type="submit" value="$Lang::tr{'restart'}">
273 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
274 <table class="tbl" width='100%' cellspacing='0'>
275 <tr bgcolor='$color{'color20'}'>
276 <td colspan='2' align='left'><b>$Lang::tr{'basic options'}</b></td>
279 <td align='left' width='40%'>$Lang::tr{'workgroup'}</td>
281 <input type='text' name='WORKGRP' value='$sambasettings{'WORKGRP'}' size="30" />
285 <td align='left'><br /></td>
288 <tr bgcolor='$color{'color20'}'>
289 <td colspan='2' align='left'><b>$Lang::tr{'security options'}</b></td>
292 <td align='left' width='40%'>$Lang::tr{'security'}</td>
294 <select name='ROLE' style="width: 165px">
295 <option value='standalone' $selected{'ROLE'}{'standalone'}>$Lang::tr{'samba server role standalone'}</option>
296 <option value='member' $selected{'ROLE'}{'member'}>$Lang::tr{'samba server role member'}</option>
301 <td align='left' width='40%'>$Lang::tr{'encryption'}</td>
303 <select name='ENCRYPTION' style="width: 165px">
304 <option value='optional' $selected{'ENCRYPTION'}{'optional'}>$Lang::tr{'optional'}</option>
305 <option value='desired' $selected{'ENCRYPTION'}{'desired'}>$Lang::tr{'desired'}</option>
306 <option value='required' $selected{'ENCRYPTION'}{'required'}>$Lang::tr{'required'}</option>
311 <td align='left' width='40%'>$Lang::tr{'map to guest'}</td>
313 <select name='MAPTOGUEST' style="width: 165px">
314 <option value='Bad User' $selected{'MAPTOGUEST'}{'Bad User'}>Bad User</option>
315 <option value='Bad Password' $selected{'MAPTOGUEST'}{'Bad Password'}>Bad Password</option>
320 <td align='left'><br /></td>
323 <tr bgcolor='$color{'color20'}'>
324 <td colspan='2' align='left'><b>$Lang::tr{'network options'}</b></td>
327 <td align='left' width='40%'>$Lang::tr{'remote announce'}</td>
329 <input type='text' name='REMOTEANNOUNCE' value='$sambasettings{'REMOTEANNOUNCE'}' size="30" />
333 <td align='left' width='40%'>$Lang::tr{'remote browse sync'}</td>
335 <input type='text' name='REMOTESYNC' value='$sambasettings{'REMOTESYNC'}' size="30" />
342 <table width='100%' cellspacing='0'>
345 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
346 <input type='hidden' name='ACTION' value="$Lang::tr{'save'}">
347 <input type='submit' value="$Lang::tr{'save'}">
357 ############################################################################################################################
358 ########################################## Benutzerverwaltung fr Usersecurity #############################################
360 if ($sambasettings{'ROLE'} eq 'standalone') {
361 &Header
::openbox
('100%', 'center', $Lang::tr
{'user management'});
364 <table class="tbl" width='100%' cellspacing='0'>
366 <th align='left'>$Lang::tr{'user'}</th>
367 <th colspan='3' width='5%'></th>
371 system('/usr/local/bin/sambactrl readsmbpasswd');
372 open(FILE
, "<${General::swroot}/samba/private/smbpasswd") or die "Can't read user file: $!";
375 system('/usr/local/bin/sambactrl locksmbpasswd');
378 foreach $userentry (sort @users) {
379 @userline = split( /\:/, $userentry);
382 print "<tr bgcolor='$color{'color20'}'>";
384 print "<tr bgcolor='$color{'color22'}'>";
388 print "<td align='left'>$userline[0]</td>";
390 if ($userline[4] =~ /D/) {
393 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
394 <input type='hidden' name='NAME' value='$userline[0]' />
395 <input type='hidden' name='ACTION' value='smbuserenable' />
396 <input type='image' alt='$Lang::tr{'activate'}' title='$Lang::tr{'activate'}' src='/images/off.gif' />
403 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
404 <input type='hidden' name='NAME' value='$userline[0]' />
405 <input type='hidden' name='ACTION' value='smbuserdisable' />
406 <input type='image' alt='$Lang::tr{'deactivate'}' title='$Lang::tr{'deactivate'}' src='/images/on.gif' />
412 # Machine accounts can't be edited
413 if ($userline[0] =~ /\$/) {
418 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
419 <input type='hidden' name='NAME' value='$userline[0]' />
420 <input type='hidden' name='ACTION' value='userchangepw' />
421 <input type='image' alt='$Lang::tr{'edit'}' title='$Lang::tr{'edit'}' src='/images/edit.gif' />
429 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
430 <input type='hidden' name='NAME' value='$userline[0]' />
431 <input type='hidden' name='ACTION' value='userdelete' />
432 <input type='image' alt='$Lang::tr{'delete'}' title='$Lang::tr{'delete'}' src='/images/user-option-remove.png' />
445 <table width='10%' cellspacing='0'>
448 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
449 <input type='hidden' name='ACTION' value='useradd'>
450 <input type='submit' value='$Lang::tr{'add user'}'>
457 if ($sambasettings{'ACTION'} eq 'userchangepw') {
458 my $username = $sambasettings{'NAME'};
459 my $password = 'samba';
463 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
464 <table width='100%' cellspacing='0'>
465 <tr bgcolor='$color{'color20'}'>
466 <td colspan='2' align='left'><b>$Lang::tr{'change passwords'}</b></td>
469 <td align='left'>$Lang::tr{'username'}</td>
471 <input type='text' name='USERNAME' value='$username' size='30' readonly='readonly' />
475 <td align='left'>$Lang::tr{'password'}</td>
477 <input type='password' name='PASSWORD' value='$password' size='30' />
481 <td colspan='2' align='center'>
482 <input type='hidden' name='ACTION' value='smbchangepw'>
483 <input type='submit' value='$Lang::tr{'save'}'>
491 if ($sambasettings{'ACTION'} eq 'useradd') {
492 my $username = "user";
493 my $password = "samba";
502 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
503 <table width='100%' cellspacing='0'>
504 <tr bgcolor='$color{'color20'}'>
505 <td colspan='2' align='left'><b>$Lang::tr{'add user'}</b></td>
508 <td align='left'>$Lang::tr{'username'}</td>
510 <input type='text' name='USERNAME' value='$username' size='30' />
514 <td align='left'>$Lang::tr{'password'}</td>
516 <input type='password' name='PASSWORD' value='$password' size='30' />
520 <td align='left'>$Lang::tr{'unix group'}</td>
522 <input type='text' name='GROUP' value='sambauser' size='30' />
526 <td align='left'>$Lang::tr{'unix shell'}</td>
528 <input type='text' name='SHELL' value='/bin/false' size='30' />
532 <td colspan='2' align='center'>
533 <input type='hidden' name='ACTION' value='smbuseradd'>
534 <input type='submit' value='$Lang::tr{'save'}'>
545 if ($sambasettings{'ROLE'} eq "member") {
546 &Header
::openbox
('100%', 'center', $Lang::tr
{'samba join a domain'});
548 my $AD_DOMAINNAME = uc($mainsettings{'DOMAINNAME'});
551 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
552 <input type="hidden" name="ACTION" value="join">
566 $Lang::tr{'administrator username'}
569 <input type="text" name="USERNAME" size="30">
574 $Lang::tr{'administrator password'}
577 <input type="password" name="PASSWORD" size="30">
583 <input type="submit" value="$Lang::tr{'samba join domain'}">
594 ############################################################################################################################
595 ############################################### Verwalten von Freigaben ####################################################
597 &Header
::openbox
('100%', 'center', $Lang::tr
{'shares'});
599 my %shares = config
("${General::swroot}/samba/shares");
602 <table class="tbl" width='100%' cellspacing='0'>
604 <th align='left'>$Lang::tr{'sharename'}</th>
605 <th colspan='2' width="5%" align='center'></th>
609 my @shares = keys(%shares);
612 foreach my $shareentry (sort @shares) {
616 $col = "bgcolor='$color{'color20'}'";
618 $col = "bgcolor='$color{'color22'}'";
623 <td align='left' $col>$shareentry</td>
625 <form method='post' action='$ENV{'SCRIPT_NAME'}#$Lang::tr{'manage shares'}'>
626 <input type='hidden' name='NAME' value='$shareentry' />
627 <input type='hidden' name='ACTION' value='sharechange' />
628 <input type='image' alt='$Lang::tr{'edit'}' title='$Lang::tr{'edit'}' src='/images/edit.gif' />
632 <form method='post' action='$ENV{'SCRIPT_NAME'}#$Lang::tr{'manage shares'}'>
633 <input type='hidden' name='NAME' value='$shareentry' />
634 <input type='hidden' name='ACTION' value='smbsharedel' />
635 <input type='image' alt='$Lang::tr{'delete'}' title='$Lang::tr{'delete'}' src='/images/user-trash.png' />
649 <table width='100%' cellspacing='0'>
652 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
653 <input type='hidden' name='ACTION' value='shareadd'>
654 <input type='submit' value='$Lang::tr{'add share'}'>
661 if ($sambasettings{'ACTION'} eq 'shareadd') {
665 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
666 <table width='100%' cellspacing='0'>
667 <tr bgcolor='$color{'color20'}'>
668 <td align='left'><b>$Lang::tr{'add share'}</b></td>
672 <textarea name="SHAREOPTION" cols="121" rows="15">$defaultoption</textarea>
677 <input type='hidden' name='ACTION' value='smbshareadd'>
678 <input type='submit' value='$Lang::tr{'save'}'>
686 if ($sambasettings{'ACTION'} eq 'sharechange') {
687 my $shareoption = $shares{$sambasettings{'NAME'}};
692 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
693 <input type='hidden' name='NAME' value='$sambasettings{'NAME'}'>
695 <table width='100%' cellspacing='0'>
696 <tr bgcolor='$color{'color20'}'>
697 <td align='left'><b>$Lang::tr{'edit share'}</b></td>
701 <textarea name="SHAREOPTION" cols="121" rows="15">$shareoption</textarea>
706 <input type='hidden' name='ACTION' value='smbsharechange'>
707 <input type='submit' value='$Lang::tr{'save'}'>
715 if ($sambasettings{'ACTION'} eq 'smbshareadd')
717 $shares{'xvx'}= "$sambasettings{'SHAREOPTION'}";
719 my $shares = config
("${General::swroot}/samba/shares");
721 if ($sambasettings{'ACTION'} eq 'smbsharedel')
723 delete $shares{$sambasettings{'NAME'}};
725 my %shares = config
("${General::swroot}/samba/shares");
727 if ($sambasettings{'ACTION'} eq 'smbsharechange')
729 $shares{$sambasettings{'NAME'}} = $sambasettings{'SHAREOPTION'};
731 my %shares = config
("${General::swroot}/samba/shares");
736 ############################################################################################################################
737 ############################################### Anzeige des Sambastatus ####################################################
739 &Header
::openbox
('100%', 'left', $Lang::tr
{'status'});
741 my $status = qx(/usr/local/bin/sambactrl smbstatus
);
742 $status = &Header
::cleanhtml
($status);
752 &Header
::closebigbox
();
753 &Header
::closepage
();
755 ############################################################################################################################
756 ############################################ Subfunktion fr Sambadienste ###################################################
761 my @allarray = `grep -n '^\\[' $file`;
766 my $EOF = qx(cat
$file | wc
-l
);
767 foreach my $allarrayentry (@allarray)
769 my @allarrayline = split( /\:/, $allarrayentry );
770 push(@linesarray,$allarrayline[0]);$allarrayline[1]=~s/\[//g;$allarrayline[1]=~s/\]//g;push(@namearray,$allarrayline[1]);
772 for(my $i = 0; $i <= $#namearray; $i++)
774 chomp $namearray[$i];
775 $namearray[$i]=~s/\[//g;$namearray[$i]=~s/\]//g;
776 if ( $i eq $#namearray )
778 my $lineend = $EOF-$linesarray[$i]+1;
779 $options=qx(tail
-$lineend $file);
783 my $linestart = $EOF-$linesarray[$i]+1;
784 my $lineend = $linesarray[$i+1]-$linesarray[$i];
785 $options=qx(tail
-$linestart $file | head
-$lineend);
787 $hash{$namearray[$i]} = "$options";
788 #print"<pre>$namearray[$i]\n$options\n</pre>"; # enable only for debuging
796 open (FILE
, ">${General::swroot}/samba/$smb") or die "Can't $smb settings $!";
799 if ( $smb eq 'shares')
800 {while (my ($name, $option) = each %shares){chomp $option;$option =~ s/\r\n/\n/gi;$option =~ s/^\n//gi;$option =~ s/^\r//gi;$option =~ s/^.\n//gi;$option =~ s/^.\r//gi;print FILE
"$option\n";} }
804 system("/usr/local/bin/sambactrl smbsafeconf");
805 system("/usr/local/bin/sambactrl smbreload");
811 my $status = "<td align='center' bgcolor='${Header::colourred}'><font color='white'><b>$Lang::tr{'stopped'}</b></font></td>";
819 if (open(FILE
, "/var/run/${cmd}.pid"))
821 $pid = <FILE
>; chomp $pid;
823 if (open(FILE
, "/proc/${pid}/status"))
833 if ($testcmd =~ /$exename/)
835 $status = "<td align='center' bgcolor='${Header::colourgreen}'><font color='white'><b>$Lang::tr{'running'}</b></font></td>";
843 my $username = shift;
844 my $password = shift;
846 my @options = ("/usr/local/bin/sambactrl", "join", $username, $password);
847 my $output = qx(@options);