]>
git.ipfire.org Git - ipfire-2.x.git/blob - html/cgi-bin/samba.cgi
2 ###############################################################################
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2005-2013 IPFire Team <info@ipfire.org> #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
20 ###############################################################################
23 # enable only the following on debugging purpose
25 #use CGI::Carp 'fatalsToBrowser';
27 require '/var/ipfire/general-functions.pl';
28 require "${General::swroot}/lang.pl";
29 require "${General::swroot}/header.pl";
31 my %sambasettings = ();
36 my %mainsettings = ();
38 my $errormessage = "";
43 my $userfile = "${General::swroot}/samba/private/smbpasswd";
46 my $defaultoption= "[My Share]\npath = \ncomment = Share - Public Access\nbrowseable = yes\nwriteable = yes\ncreate mask = 0644\ndirectory mask = 0755\npublic = yes\nforce user = samba";
49 &General
::readhash
("${General::swroot}/ethernet/settings", \
%netsettings);
50 &General
::readhash
("${General::swroot}/main/settings", \
%mainsettings);
51 &General
::readhash
("/srv/web/ipfire/html/themes/".$mainsettings{'THEME'}."/include/colors.txt", \
%color);
53 ############################################################################################################################
54 #################################### Initialisierung von Samba Variablen fr global Settings ###############################
56 $sambasettings{'WORKGRP'} = uc($mainsettings{'DOMAINNAME'});
57 $sambasettings{'ROLE'} = 'standalone';
58 $sambasettings{'REMOTEANNOUNCE'} = '';
59 $sambasettings{'REMOTESYNC'} = '';
60 $sambasettings{'GUESTACCOUNT'} = 'samba';
61 $sambasettings{'MAPTOGUEST'} = 'Bad User';
62 $sambasettings{'ENCRYPTION'} = 'optional';
63 ### Values that have to be initialized
64 $sambasettings{'ACTION'} = '';
67 ############################################################################################################################
69 &General
::readhash
("${General::swroot}/samba/settings", \
%sambasettings);
71 # Hook to regenerate the configuration files.
72 if ($ENV{"REMOTE_ADDR"} eq "") {
73 &writeconfiguration
();
77 &Header
::showhttpheaders
();
79 &Header
::getcgihash
(\
%sambasettings);
80 delete $sambasettings{'__CGI__'};delete $sambasettings{'x'};delete $sambasettings{'y'};
82 &Header
::openpage
('Samba', 1, '');
83 &Header
::openbigbox
('100%', 'left', '', $errormessage);
85 ############################################################################################################################
86 ############################################# Samba Rootskript aufrufe fr SU-Actions #######################################
88 if ($sambasettings{'ACTION'} eq 'smbuserdisable'){system("/usr/local/bin/sambactrl smbuserdisable $sambasettings{'NAME'}");}
89 if ($sambasettings{'ACTION'} eq 'smbuserenable'){system("/usr/local/bin/sambactrl smbuserenable $sambasettings{'NAME'}");}
90 if ($sambasettings{'ACTION'} eq 'smbuseradd'){system("/usr/local/bin/sambactrl smbuseradd $sambasettings{'USERNAME'} $sambasettings{'PASSWORD'} $sambasettings{'GROUP'} $sambasettings{'SHELL'}");}
91 if ($sambasettings{'ACTION'} eq 'smbchangepw'){system("/usr/local/bin/sambactrl smbchangepw $sambasettings{'USERNAME'} $sambasettings{'PASSWORD'}");}
92 if ($sambasettings{'ACTION'} eq 'smbrestart'){system("/usr/local/bin/sambactrl smbrestart");}
93 if ($sambasettings{'ACTION'} eq 'smbstart'){system("/usr/local/bin/sambactrl smbstart");}
94 if ($sambasettings{'ACTION'} eq 'smbstop'){system("/usr/local/bin/sambactrl smbstop");}
95 if ($sambasettings{'ACTION'} eq 'smbreload'){system("/usr/local/bin/sambactrl smbreload");}
96 if ($sambasettings{'ACTION'} eq 'join') {
97 $message .= &joindomain
($sambasettings{'USERNAME'}, $sambasettings{'PASSWORD'});
100 ############################################################################################################################
101 ########################################### Samba Benutzer oder PC l�chen #################################################
103 if ($sambasettings{'ACTION'} eq 'userdelete'){system("/usr/local/bin/sambactrl smbuserdelete $sambasettings{'NAME'}");}
105 ############################################################################################################################
106 ##################################### Umsetzen der Werte von Checkboxen und Dropdowns ######################################
108 ############################################################################################################################
109 ##################################### Schreiben settings und bersetzen fr smb.conf #######################################
111 if ($sambasettings{'ACTION'} eq $Lang::tr
{'save'}) {
112 &General
::writehash
("${General::swroot}/samba/settings", \
%sambasettings);
114 # Write configuration to file
115 &writeconfiguration
();
117 system("/usr/local/bin/sambactrl smbreload");
120 &General
::readhash
("${General::swroot}/samba/settings", \
%sambasettings);
125 &Header
::openbox
('100%', 'left', $Lang::tr
{'error messages'});
126 print "<class name='base'>$errormessage\n";
127 print " </class>\n";
132 $message = &Header
::cleanhtml
($message);
133 $message =~ s/\n/<br>/g;
135 &Header
::openbox
('100%', 'left', $Lang::tr
{'messages'});
140 ############################################################################################################################
141 ########################################## Aktivieren von Checkboxen und Dropdowns #########################################
143 $selected{'ENCRYPTION'}{'optional'} = '';
144 $selected{'ENCRYPTION'}{'desired'} = '';
145 $selected{'ENCRYPTION'}{'required'} = '';
146 $selected{'ENCRYPTION'}{$sambasettings{'ENCRYPTION'}} = "selected='selected'";
147 $selected{'ROLE'}{'standalone'} = '';
148 $selected{'ROLE'}{'member'} = '';
149 $selected{'ROLE'}{$sambasettings{'ROLE'}} = "selected='selected'";
151 if ( $sambasettings{'MAPTOGUEST'} eq "Never" ) {
152 $sambasettings{'MAPTOGUEST'}="Bad User";
154 $selected{'MAPTOGUEST'}{$sambasettings{'MAPTOGUEST'}} = "selected='selected'";
156 ############################################################################################################################
157 ################################### Aufbau der HTML Seite fr globale Sambaeinstellungen ###################################
159 &Header
::openbox
('100%', 'center', $Lang::tr
{'samba'});
162 "nmbd" => $Lang::tr
{'netbios nameserver daemon'},
163 "smbd" => $Lang::tr
{'smb daemon'},
164 "winbindd" => $Lang::tr
{'winbind daemon'},
168 <table class="tbl" width='100%' cellspacing='0'>
169 <tr bgcolor='$color{'color20'}'>
170 <td colspan='2' align='left'><b>$Lang::tr{'all services'}</b></td>
174 foreach my $service (sort keys %servicenames) {
175 my $status = &isrunning
($service);
179 <td align='left' width='40%'>$servicenames{$service}</td>
191 <td width="33%" align="center">
192 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
193 <input type="hidden" name="ACTION" value="smbstart">
194 <input type="submit" value="$Lang::tr{'enable'}">
198 <td width="33%" align="center">
199 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
200 <input type="hidden" name="ACTION" value="smbstop">
201 <input type="submit" value="$Lang::tr{'disable'}">
205 <td width="33%" align="center">
206 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
207 <input type="hidden" name="ACTION" value="smbrestart">
208 <input type="submit" value="$Lang::tr{'restart'}">
215 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
216 <table class="tbl" width='100%' cellspacing='0'>
217 <tr bgcolor='$color{'color20'}'>
218 <td colspan='2' align='left'><b>$Lang::tr{'basic options'}</b></td>
221 <td align='left' width='40%'>$Lang::tr{'workgroup'}</td>
223 <input type='text' name='WORKGRP' value='$sambasettings{'WORKGRP'}' size="30" />
227 <td align='left'><br /></td>
230 <tr bgcolor='$color{'color20'}'>
231 <td colspan='2' align='left'><b>$Lang::tr{'security options'}</b></td>
234 <td align='left' width='40%'>$Lang::tr{'security'}</td>
236 <select name='ROLE' style="width: 165px">
237 <option value='standalone' $selected{'ROLE'}{'standalone'}>$Lang::tr{'samba server role standalone'}</option>
238 <option value='member' $selected{'ROLE'}{'member'}>$Lang::tr{'samba server role member'}</option>
243 <td align='left' width='40%'>$Lang::tr{'encryption'}</td>
245 <select name='ENCRYPTION' style="width: 165px">
246 <option value='optional' $selected{'ENCRYPTION'}{'optional'}>$Lang::tr{'optional'}</option>
247 <option value='desired' $selected{'ENCRYPTION'}{'desired'}>$Lang::tr{'desired'}</option>
248 <option value='required' $selected{'ENCRYPTION'}{'required'}>$Lang::tr{'required'}</option>
253 <td align='left' width='40%'>$Lang::tr{'map to guest'}</td>
255 <select name='MAPTOGUEST' style="width: 165px">
256 <option value='Bad User' $selected{'MAPTOGUEST'}{'Bad User'}>Bad User</option>
257 <option value='Bad Password' $selected{'MAPTOGUEST'}{'Bad Password'}>Bad Password</option>
262 <td align='left'><br /></td>
265 <tr bgcolor='$color{'color20'}'>
266 <td colspan='2' align='left'><b>$Lang::tr{'network options'}</b></td>
269 <td align='left' width='40%'>$Lang::tr{'remote announce'}</td>
271 <input type='text' name='REMOTEANNOUNCE' value='$sambasettings{'REMOTEANNOUNCE'}' size="30" />
275 <td align='left' width='40%'>$Lang::tr{'remote browse sync'}</td>
277 <input type='text' name='REMOTESYNC' value='$sambasettings{'REMOTESYNC'}' size="30" />
284 <table width='100%' cellspacing='0'>
287 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
288 <input type='hidden' name='ACTION' value="$Lang::tr{'save'}">
289 <input type='submit' value="$Lang::tr{'save'}">
299 ############################################################################################################################
300 ########################################## Benutzerverwaltung fr Usersecurity #############################################
302 if ($sambasettings{'ROLE'} eq 'standalone') {
303 &Header
::openbox
('100%', 'center', $Lang::tr
{'user management'});
306 <table class="tbl" width='100%' cellspacing='0'>
308 <th align='left'>$Lang::tr{'user'}</th>
309 <th colspan='3' width='5%'></th>
313 system('/usr/local/bin/sambactrl readsmbpasswd');
314 open(FILE
, "<${General::swroot}/samba/private/smbpasswd") or die "Can't read user file: $!";
317 system('/usr/local/bin/sambactrl locksmbpasswd');
320 foreach $userentry (sort @users) {
321 @userline = split( /\:/, $userentry);
324 print "<tr bgcolor='$color{'color20'}'>";
326 print "<tr bgcolor='$color{'color22'}'>";
330 print "<td align='left'>$userline[0]</td>";
332 if ($userline[4] =~ /D/) {
335 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
336 <input type='hidden' name='NAME' value='$userline[0]' />
337 <input type='hidden' name='ACTION' value='smbuserenable' />
338 <input type='image' alt='$Lang::tr{'activate'}' title='$Lang::tr{'activate'}' src='/images/off.gif' />
345 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
346 <input type='hidden' name='NAME' value='$userline[0]' />
347 <input type='hidden' name='ACTION' value='smbuserdisable' />
348 <input type='image' alt='$Lang::tr{'deactivate'}' title='$Lang::tr{'deactivate'}' src='/images/on.gif' />
354 # Machine accounts can't be edited
355 if ($userline[0] =~ /\$/) {
360 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
361 <input type='hidden' name='NAME' value='$userline[0]' />
362 <input type='hidden' name='ACTION' value='userchangepw' />
363 <input type='image' alt='$Lang::tr{'edit'}' title='$Lang::tr{'edit'}' src='/images/edit.gif' />
371 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
372 <input type='hidden' name='NAME' value='$userline[0]' />
373 <input type='hidden' name='ACTION' value='userdelete' />
374 <input type='image' alt='$Lang::tr{'delete'}' title='$Lang::tr{'delete'}' src='/images/delete.gif' />
387 <table width='10%' cellspacing='0'>
390 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
391 <input type='hidden' name='ACTION' value='useradd'>
392 <input type='submit' value='$Lang::tr{'add user'}'>
399 if ($sambasettings{'ACTION'} eq 'userchangepw') {
400 my $username = $sambasettings{'NAME'};
401 my $password = 'samba';
405 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
406 <table width='100%' cellspacing='0'>
407 <tr bgcolor='$color{'color20'}'>
408 <td colspan='2' align='left'><b>$Lang::tr{'change passwords'}</b></td>
411 <td align='left'>$Lang::tr{'username'}</td>
413 <input type='text' name='USERNAME' value='$username' size='30' readonly='readonly' />
417 <td align='left'>$Lang::tr{'password'}</td>
419 <input type='password' name='PASSWORD' value='$password' size='30' />
423 <td colspan='2' align='center'>
424 <input type='hidden' name='ACTION' value='smbchangepw'>
425 <input type='submit' value='$Lang::tr{'save'}'>
433 if ($sambasettings{'ACTION'} eq 'useradd') {
434 my $username = "user";
435 my $password = "samba";
444 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
445 <table width='100%' cellspacing='0'>
446 <tr bgcolor='$color{'color20'}'>
447 <td colspan='2' align='left'><b>$Lang::tr{'add user'}</b></td>
450 <td align='left'>$Lang::tr{'username'}</td>
452 <input type='text' name='USERNAME' value='$username' size='30' />
456 <td align='left'>$Lang::tr{'password'}</td>
458 <input type='password' name='PASSWORD' value='$password' size='30' />
462 <td align='left'>$Lang::tr{'unix group'}</td>
464 <input type='text' name='GROUP' value='sambauser' size='30' />
468 <td align='left'>$Lang::tr{'unix shell'}</td>
470 <input type='text' name='SHELL' value='/bin/false' size='30' />
474 <td colspan='2' align='center'>
475 <input type='hidden' name='ACTION' value='smbuseradd'>
476 <input type='submit' value='$Lang::tr{'save'}'>
487 if ($sambasettings{'ROLE'} eq "member") {
488 &Header
::openbox
('100%', 'center', $Lang::tr
{'samba join a domain'});
490 my $AD_DOMAINNAME = uc($mainsettings{'DOMAINNAME'});
493 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
494 <input type="hidden" name="ACTION" value="join">
508 $Lang::tr{'administrator username'}
511 <input type="text" name="USERNAME" size="30">
516 $Lang::tr{'administrator password'}
519 <input type="password" name="PASSWORD" size="30">
525 <input type="submit" value="$Lang::tr{'samba join domain'}">
536 ############################################################################################################################
537 ############################################### Verwalten von Freigaben ####################################################
539 &Header
::openbox
('100%', 'center', $Lang::tr
{'shares'});
541 my %shares = config
("${General::swroot}/samba/shares");
544 <table class="tbl" width='100%' cellspacing='0'>
546 <th align='left'>$Lang::tr{'sharename'}</th>
547 <th colspan='2' width="5%" align='center'></th>
551 my @shares = keys(%shares);
554 foreach my $shareentry (sort @shares) {
558 $col = "bgcolor='$color{'color20'}'";
560 $col = "bgcolor='$color{'color22'}'";
565 <td align='left' $col>$shareentry</td>
567 <form method='post' action='$ENV{'SCRIPT_NAME'}#$Lang::tr{'manage shares'}'>
568 <input type='hidden' name='NAME' value='$shareentry' />
569 <input type='hidden' name='ACTION' value='sharechange' />
570 <input type='image' alt='$Lang::tr{'edit'}' title='$Lang::tr{'edit'}' src='/images/edit.gif' />
574 <form method='post' action='$ENV{'SCRIPT_NAME'}#$Lang::tr{'manage shares'}'>
575 <input type='hidden' name='NAME' value='$shareentry' />
576 <input type='hidden' name='ACTION' value='smbsharedel' />
577 <input type='image' alt='$Lang::tr{'delete'}' title='$Lang::tr{'delete'}' src='/images/delete.gif' />
591 <table width='100%' cellspacing='0'>
594 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
595 <input type='hidden' name='ACTION' value='shareadd'>
596 <input type='submit' value='$Lang::tr{'add share'}'>
603 if ($sambasettings{'ACTION'} eq 'shareadd') {
607 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
608 <table width='100%' cellspacing='0'>
609 <tr bgcolor='$color{'color20'}'>
610 <td align='left'><b>$Lang::tr{'add share'}</b></td>
614 <textarea name="SHAREOPTION" cols="121" rows="15">$defaultoption</textarea>
619 <input type='hidden' name='ACTION' value='smbshareadd'>
620 <input type='submit' value='$Lang::tr{'save'}'>
628 if ($sambasettings{'ACTION'} eq 'sharechange') {
629 my $shareoption = $shares{$sambasettings{'NAME'}};
634 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
635 <input type='hidden' name='NAME' value='$sambasettings{'NAME'}'>
637 <table width='100%' cellspacing='0'>
638 <tr bgcolor='$color{'color20'}'>
639 <td align='left'><b>$Lang::tr{'edit share'}</b></td>
643 <textarea name="SHAREOPTION" cols="121" rows="15">$shareoption</textarea>
648 <input type='hidden' name='ACTION' value='smbsharechange'>
649 <input type='submit' value='$Lang::tr{'save'}'>
657 if ($sambasettings{'ACTION'} eq 'smbshareadd')
659 $shares{'xvx'}= "$sambasettings{'SHAREOPTION'}";
661 my $shares = config
("${General::swroot}/samba/shares");
663 if ($sambasettings{'ACTION'} eq 'smbsharedel')
665 delete $shares{$sambasettings{'NAME'}};
667 my %shares = config
("${General::swroot}/samba/shares");
669 if ($sambasettings{'ACTION'} eq 'smbsharechange')
671 $shares{$sambasettings{'NAME'}} = $sambasettings{'SHAREOPTION'};
673 my %shares = config
("${General::swroot}/samba/shares");
678 ############################################################################################################################
679 ############################################### Anzeige des Sambastatus ####################################################
681 &Header
::openbox
('100%', 'left', $Lang::tr
{'status'});
683 my $status = qx(/usr/local/bin/sambactrl smbstatus
);
684 $status = &Header
::cleanhtml
($status);
694 &Header
::closebigbox
();
695 &Header
::closepage
();
697 ############################################################################################################################
698 ############################################ Subfunktion fr Sambadienste ###################################################
703 my @allarray = `grep -n '^\\[' $file`;
708 my $EOF = qx(cat
$file | wc
-l
);
709 foreach my $allarrayentry (@allarray)
711 my @allarrayline = split( /\:/, $allarrayentry );
712 push(@linesarray,$allarrayline[0]);$allarrayline[1]=~s/\[//g;$allarrayline[1]=~s/\]//g;push(@namearray,$allarrayline[1]);
714 for(my $i = 0; $i <= $#namearray; $i++)
716 chomp $namearray[$i];
717 $namearray[$i]=~s/\[//g;$namearray[$i]=~s/\]//g;
718 if ( $i eq $#namearray )
720 my $lineend = $EOF-$linesarray[$i]+1;
721 $options=qx(tail
-$lineend $file);
725 my $linestart = $EOF-$linesarray[$i]+1;
726 my $lineend = $linesarray[$i+1]-$linesarray[$i];
727 $options=qx(tail
-$linestart $file | head
-$lineend);
729 $hash{$namearray[$i]} = "$options";
730 #print"<pre>$namearray[$i]\n$options\n</pre>"; # enable only for debuging
738 open (FILE
, ">${General::swroot}/samba/$smb") or die "Can't $smb settings $!";
741 if ( $smb eq 'shares')
742 {while (my ($name, $option) = each %shares){chomp $option;$option =~ s/\r\n/\n/gi;$option =~ s/^\n//gi;$option =~ s/^\r//gi;$option =~ s/^.\n//gi;$option =~ s/^.\r//gi;print FILE
"$option\n";} }
746 system("/usr/local/bin/sambactrl smbsafeconf");
747 system("/usr/local/bin/sambactrl smbreload");
753 my $status = "<td align='center' bgcolor='${Header::colourred}'><font color='white'><b>$Lang::tr{'stopped'}</b></font></td>";
761 if (open(FILE
, "/var/run/${cmd}.pid"))
763 $pid = <FILE
>; chomp $pid;
765 if (open(FILE
, "/proc/${pid}/status"))
775 if ($testcmd =~ /$exename/)
777 $status = "<td align='center' bgcolor='${Header::colourgreen}'><font color='white'><b>$Lang::tr{'running'}</b></font></td>";
784 sub writeconfiguration
() {
785 open (FILE
, ">${General::swroot}/samba/global") or die "Can't save the global settings: $!";
789 # global.settings by IPFire Project
792 server string = Samba on IPFire
794 workgroup = $sambasettings{'WORKGRP'}
795 realm = $mainsettings{'DOMAINNAME'}
796 passdb backend = smbpasswd
798 map to guest = $sambasettings{'MAPTOGUEST'}
800 guest account = $sambasettings{'GUESTACCOUNT'}
801 unix password sync = no
803 bind interfaces only = true
804 interfaces = green0 blue0 127.0.0.0/8
805 remote announce = $sambasettings{'REMOTEANNOUNCE'}
806 remote browse sync = $sambasettings{'REMOTESYNC'}
808 winbind separator = +
809 winbind uid = 10000-20000
810 winbind gid = 10000-20000
811 winbind use default domain = yes
816 # Enable support for Apple
817 vfs objects = catia fruit streams_xattr recycle
819 # Enable following symlinks
825 if ($sambasettings{'ROLE'} eq "standalone") {
826 print FILE
"server role = standalone\n";
827 } elsif ($sambasettings{'ROLE'} eq "member") {
828 print FILE
"server role = member server\n";
831 if ($sambasettings{'ENCRYPTION'} =~ m/(desired|required)/) {
832 print FILE
"smb encrypt = $1\n";
836 # Export all printers
838 path = /var/spool/samba/
844 system("/usr/local/bin/sambactrl smbsafeconf");
848 my $username = shift;
849 my $password = shift;
851 my @options = ("/usr/local/bin/sambactrl", "join", $username, $password);
852 my $output = qx(@options);