05619b47c3238b3dcb09c80830cb53d4883a7a91
[people/pmueller/ipfire-2.x.git] / html / cgi-bin / captive / index.cgi
1 #!/usr/bin/perl
2 ###############################################################################
3 # #
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2016 Alexander Marx alexander.marx@ipfire.org #
6 # #
7 # This program is free software you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
11 # #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
16 # #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
19 # #
20 ###############################################################################
21
22 use strict;
23 use CGI ':standard';
24 use URI::Escape;
25 use HTML::Entities();
26 use HTML::Template;
27
28 # enable only the following on debugging purpose
29 #use warnings;
30 #use CGI::Carp 'fatalsToBrowser';
31
32 require '/var/ipfire/general-functions.pl';
33 require "${General::swroot}/lang.pl";
34
35 #Set Variables
36 my %voucherhash=();
37 my %clientshash=();
38 my %cgiparams=();
39 my %settings=();
40 my $voucherout="${General::swroot}/captive/voucher_out";
41 my $clients="${General::swroot}/captive/clients";
42 my $settingsfile="${General::swroot}/captive/settings";
43 my $redir=0;
44 my $errormessage;
45 my $url=param('redirect');
46
47 #Create /var/ipfire/captive/clients if not exist
48 unless (-f $clients){ system("touch $clients"); }
49
50 #Get GUI variables
51 &getcgihash(\%cgiparams);
52
53 #Read settings
54 &General::readhash("$settingsfile", \%settings) if(-f $settingsfile);
55
56 # Actions
57 if ($cgiparams{'ACTION'} eq "SUBMIT") {
58 #Get Clients IP-Address
59 my $ip_address = $ENV{X_FORWARDED_FOR} || $ENV{REMOTE_ADDR} ||"";
60
61 #Ask arp to give the corresponding MAC-Address
62 my $mac_address = qx(arp -a|grep $ip_address|cut -d ' ' -f 4);
63 $mac_address =~ s/\n+\z//;
64
65 &General::readhasharray("$clients", \%clientshash);
66 my $key = &General::findhasharraykey(\%clientshash);
67
68 if (!$errormessage){
69 foreach my $i (0 .. 5) { $clientshash{$key}[$i] = "";}
70
71 $clientshash{$key}[0] = $mac_address; #mac address of actual client
72 $clientshash{$key}[1] = $ip_address; #ip address of actual client
73 $clientshash{$key}[2] = time(); #actual time in unix seconds (timestamp of first conenction)
74 $clientshash{$key}[3] = $settings{'EXPIRE'}; #Expire time in seconds (1day, 1 week ....)
75 $clientshash{$key}[4] = $Lang::tr{'Captive auth_lic'}; #Type of license (license or voucher)
76 $clientshash{$key}[5] = '';
77
78 &General::writehasharray("$clients", \%clientshash);
79 system("/usr/local/bin/captivectrl");
80 &General::log("Captive", "Internet Access granted via license-agreement for $ip_address until $clientshash{$key}[3]");
81 $redir=1;
82 }
83 }
84
85 if ($cgiparams{'ACTION'} eq "SUBMIT") {
86 my $ip_address;
87 my $mac_address;
88 my $granted=0;
89 #Convert voucherinput to uppercase
90 $cgiparams{'VOUCHER'} = uc $cgiparams{'VOUCHER'};
91 #Get Clients IP-Address
92 $ip_address = $ENV{X_FORWARDED_FOR} || $ENV{REMOTE_ADDR} ||"";
93 #Ask arp to give the corresponding MAC-Address
94 $mac_address = qx(arp -a|grep $ip_address|cut -d ' ' -f 4);
95 $mac_address =~ s/\n+\z//;
96 #Check if voucher is valid and write client to clients file, delete voucher from voucherout
97 &General::readhasharray("$voucherout", \%voucherhash);
98 &General::readhasharray("$clients", \%clientshash);
99 foreach my $key (keys %voucherhash) {
100 if($voucherhash{$key}[1] eq $cgiparams{'VOUCHER'}){
101 #Voucher valid, write to clients, then delete from voucherout
102 my $key1 = &General::findhasharraykey(\%clientshash);
103 foreach my $i (0 .. 5) { $clientshash{$key1}[$i] = "";}
104
105 $clientshash{$key1}[0] = $mac_address;
106 $clientshash{$key1}[1] = $ip_address;
107 $clientshash{$key1}[2] = time();
108 $clientshash{$key1}[3] = $voucherhash{$key}[2];
109 $clientshash{$key1}[4] = $cgiparams{'VOUCHER'};
110 $clientshash{$key1}[5] = HTML::Entities::decode_entities($voucherhash{$key}[3]);
111
112 &General::writehasharray("$clients", \%clientshash);
113 &General::log("Captive", "Internet Access granted via voucher no. $clientshash{$key1}[4] for $ip_address until $clientshash{$key}[3] Remark: $clientshash{$key1}[7]");
114
115 delete $voucherhash{$key};
116 &General::writehasharray("$voucherout", \%voucherhash);
117 $granted=1;
118 last;
119 }
120 }
121 if($granted==1){
122 system("/usr/local/bin/captivectrl");
123 $redir=1;
124 }else{
125 $errormessage="$Lang::tr{'Captive invalid_voucher'}";
126 }
127 }
128
129 if($redir == 1){
130 print "Status: 302 Moved Temporarily\n";
131 print "Location: $url\n";
132 print "Connection: close\n";
133 print "\n";
134 exit 0;
135 }
136
137 #Open HTML Page, load header and css
138 my $tmpl = HTML::Template->new(
139 filename => "/srv/web/ipfire/html/captive/template.html",
140 die_on_bad_params => 0
141 );
142
143 $tmpl->param(REDIRECT_URL => $url);
144
145 # Voucher
146 if ($settings{'AUTH'} eq "VOUCHER") {
147 $tmpl->param(VOUCHER => 1);
148 }
149
150 $tmpl->param(TITLE => $settings{'TITLE'});
151 $tmpl->param(ERROR => $errormessage);
152
153 $tmpl->param(TAC => &gettac());
154
155 # Some translated strings
156 $tmpl->param(L_ACTIVATE => $Lang::tr{'Captive ACTIVATE'});
157 $tmpl->param(L_GAIN_ACCESS => $Lang::tr{'Captive GAIN ACCESS'});
158 $tmpl->param(L_HEADING_TAC => $Lang::tr{'Captive heading tac'});
159 $tmpl->param(L_HEADING_VOUCHER => $Lang::tr{'Captive heading voucher'});
160 $tmpl->param(L_AGREE_TAC => $Lang::tr{'Captive agree tac'});
161
162 # Print header
163 print "Pragma: no-cache\n";
164 print "Cache-control: no-cache\n";
165 print "Connection: close\n";
166 print "Content-type: text/html\n\n";
167
168 # Print rendered template
169 print $tmpl->output();
170
171 sub getcgihash {
172 my ($hash, $params) = @_;
173 my $cgi = CGI->new ();
174 $hash->{'__CGI__'} = $cgi;
175 return if ($ENV{'REQUEST_METHOD'} ne 'POST');
176 if (!$params->{'wantfile'}) {
177 $CGI::DISABLE_UPLOADS = 1;
178 $CGI::POST_MAX = 1024 * 1024;
179 } else {
180 $CGI::POST_MAX = 10 * 1024 * 1024;
181 }
182 $cgi->referer() =~ m/^http?\:\/\/([^\/]+)/;
183 my $referer = $1;
184 $cgi->url() =~ m/^http?\:\/\/([^\/]+)/;
185 my $servername = $1;
186 return if ($referer ne $servername);
187
188 ### Modified for getting multi-vars, split by |
189 my %temp = $cgi->Vars();
190 foreach my $key (keys %temp) {
191 $hash->{$key} = $temp{$key};
192 $hash->{$key} =~ s/\0/|/g;
193 $hash->{$key} =~ s/^\s*(.*?)\s*$/$1/;
194 }
195
196 if (($params->{'wantfile'})&&($params->{'filevar'})) {
197 $hash->{$params->{'filevar'}} = $cgi->upload
198 ($params->{'filevar'});
199 }
200 return;
201 }
202
203 sub gettac() {
204 my @tac = ();
205
206 open(my $handle, "<:utf8", "/var/ipfire/captive/agb.txt" ) or die("$!");
207 while(<$handle>) {
208 $_ = HTML::Entities::decode_entities($_);
209 push(@tac, $_);
210 }
211 close($handle);
212
213 my $tac = join("\n", @tac);
214
215 # Format paragraphs
216 $tac =~ s/\n\n/<\/p>\n<p>/g;
217
218 return $tac;
219 }