]>
git.ipfire.org Git - people/pmueller/ipfire-2.x.git/blob - html/cgi-bin/samba.cgi
2 ###############################################################################
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2005-2013 IPFire Team <info@ipfire.org> #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
20 ###############################################################################
23 # enable only the following on debugging purpose
25 #use CGI::Carp 'fatalsToBrowser';
27 require '/var/ipfire/general-functions.pl';
28 require "${General::swroot}/lang.pl";
29 require "${General::swroot}/header.pl";
31 my %sambasettings = ();
36 my %mainsettings = ();
38 my $errormessage = "";
43 my $userfile = "${General::swroot}/samba/private/smbpasswd";
46 my $defaultoption= "[My Share]\npath = \ncomment = Share - Public Access\nbrowseable = yes\nwriteable = yes\ncreate mask = 0644\ndirectory mask = 0755\npublic = yes\nforce user = samba";
49 &General
::readhash
("${General::swroot}/ethernet/settings", \
%netsettings);
50 &General
::readhash
("${General::swroot}/main/settings", \
%mainsettings);
51 &General
::readhash
("/srv/web/ipfire/html/themes/".$mainsettings{'THEME'}."/include/colors.txt", \
%color);
53 ############################################################################################################################
54 ############################################# Samba Dienste fr Statusberprfung ##########################################
56 &Header
::showhttpheaders
();
58 ############################################################################################################################
59 #################################### Initialisierung von Samba Variablen fr global Settings ###############################
61 $sambasettings{'WORKGRP'} = uc($mainsettings{'DOMAINNAME'});
62 $sambasettings{'ROLE'} = 'standalone';
63 $sambasettings{'REMOTEANNOUNCE'} = '';
64 $sambasettings{'REMOTESYNC'} = '';
65 $sambasettings{'GUESTACCOUNT'} = 'samba';
66 $sambasettings{'MAPTOGUEST'} = 'Bad User';
67 $sambasettings{'ENCRYPTION'} = 'optional';
68 ### Values that have to be initialized
69 $sambasettings{'ACTION'} = '';
72 ############################################################################################################################
74 &General
::readhash
("${General::swroot}/samba/settings", \
%sambasettings);
75 &Header
::getcgihash
(\
%sambasettings);
77 &Header
::openpage
('Samba', 1, '');
78 &Header
::openbigbox
('100%', 'left', '', $errormessage);
80 ############################################################################################################################
81 ############################################# Samba Rootskript aufrufe fr SU-Actions #######################################
83 if ($sambasettings{'ACTION'} eq 'smbuserdisable'){system("/usr/local/bin/sambactrl smbuserdisable $sambasettings{'NAME'}");}
84 if ($sambasettings{'ACTION'} eq 'smbuserenable'){system("/usr/local/bin/sambactrl smbuserenable $sambasettings{'NAME'}");}
85 if ($sambasettings{'ACTION'} eq 'smbuseradd'){system("/usr/local/bin/sambactrl smbuseradd $sambasettings{'USERNAME'} $sambasettings{'PASSWORD'} $sambasettings{'GROUP'} $sambasettings{'SHELL'}");}
86 if ($sambasettings{'ACTION'} eq 'smbchangepw'){system("/usr/local/bin/sambactrl smbchangepw $sambasettings{'USERNAME'} $sambasettings{'PASSWORD'}");}
87 if ($sambasettings{'ACTION'} eq 'smbrestart'){system("/usr/local/bin/sambactrl smbrestart");}
88 if ($sambasettings{'ACTION'} eq 'smbstart'){system("/usr/local/bin/sambactrl smbstart");}
89 if ($sambasettings{'ACTION'} eq 'smbstop'){system("/usr/local/bin/sambactrl smbstop");}
90 if ($sambasettings{'ACTION'} eq 'smbreload'){system("/usr/local/bin/sambactrl smbreload");}
91 if ($sambasettings{'ACTION'} eq 'join') {
92 $message .= &joindomain
($sambasettings{'USERNAME'}, $sambasettings{'PASSWORD'});
95 ############################################################################################################################
96 ########################################### Samba Benutzer oder PC l�chen #################################################
98 if ($sambasettings{'ACTION'} eq 'userdelete'){system("/usr/local/bin/sambactrl smbuserdelete $sambasettings{'NAME'}");}
100 ############################################################################################################################
101 ##################################### Umsetzen der Werte von Checkboxen und Dropdowns ######################################
103 if ($sambasettings{'ACTION'} eq $Lang::tr
{'save'})
105 ############################################################################################################################
106 ##################################### Schreiben settings und bersetzen fr smb.conf #######################################
108 delete $sambasettings{'__CGI__'};delete $sambasettings{'x'};delete $sambasettings{'y'};
109 &General
::writehash
("${General::swroot}/samba/settings", \
%sambasettings);
111 ############################################################################################################################
112 ############################################# Schreiben der Samba globals ##################################################
114 open (FILE
, ">${General::swroot}/samba/global") or die "Can't save the global settings: $!";
118 # global.settings by IPFire Project
121 server string = Samba on IPFire
123 workgroup = $sambasettings{'WORKGRP'}
124 realm = $mainsettings{'DOMAINNAME'}
125 passdb backend = smbpasswd
127 map to guest = $sambasettings{'MAPTOGUEST'}
129 guest account = $sambasettings{'GUESTACCOUNT'}
130 unix password sync = no
132 bind interfaces only = true
133 interfaces = green0 blue0 127.0.0.0/8
134 remote announce = $sambasettings{'REMOTEANNOUNCE'}
135 remote browse sync = $sambasettings{'REMOTESYNC'}
137 winbind separator = +
138 winbind uid = 10000-20000
139 winbind gid = 10000-20000
140 winbind use default domain = yes
145 # Enable support for Apple
146 vfs objects = catia fruit streams_xattr recycle
148 # Enable following symlinks
155 if ($sambasettings{'ROLE'} eq "standalone") {
156 print FILE
"server role = standalone\n";
157 } elsif ($sambasettings{'ROLE'} eq "member") {
158 print FILE
"server role = member server\n";
161 if ($sambasettings{'ENCRYPTION'} =~ m/(desired|required)/) {
162 print FILE
"smb encrypt = $1\n";
166 # Export all printers
168 path = /var/spool/samba/
174 system("/usr/local/bin/sambactrl smbsafeconf");
175 system("/usr/local/bin/sambactrl smbreload");
177 &General
::readhash
("${General::swroot}/samba/settings", \
%sambasettings);
182 &Header
::openbox
('100%', 'left', $Lang::tr
{'error messages'});
183 print "<class name='base'>$errormessage\n";
184 print " </class>\n";
189 $message = &Header
::cleanhtml
($message);
190 $message =~ s/\n/<br>/g;
192 &Header
::openbox
('100%', 'left', $Lang::tr
{'messages'});
197 ############################################################################################################################
198 ########################################## Aktivieren von Checkboxen und Dropdowns #########################################
200 $selected{'ENCRYPTION'}{'optional'} = '';
201 $selected{'ENCRYPTION'}{'desired'} = '';
202 $selected{'ENCRYPTION'}{'required'} = '';
203 $selected{'ENCRYPTION'}{$sambasettings{'ENCRYPTION'}} = "selected='selected'";
204 $selected{'ROLE'}{'standalone'} = '';
205 $selected{'ROLE'}{'member'} = '';
206 $selected{'ROLE'}{$sambasettings{'ROLE'}} = "selected='selected'";
208 if ( $sambasettings{'MAPTOGUEST'} eq "Never" ) {
209 $sambasettings{'MAPTOGUEST'}="Bad User";
211 $selected{'MAPTOGUEST'}{$sambasettings{'MAPTOGUEST'}} = "selected='selected'";
213 ############################################################################################################################
214 ################################### Aufbau der HTML Seite fr globale Sambaeinstellungen ###################################
216 &Header
::openbox
('100%', 'center', $Lang::tr
{'samba'});
219 "nmbd" => $Lang::tr
{'netbios nameserver daemon'},
220 "smbd" => $Lang::tr
{'smb daemon'},
221 "winbindd" => $Lang::tr
{'winbind daemon'},
225 <table class="tbl" width='100%' cellspacing='0'>
226 <tr bgcolor='$color{'color20'}'>
227 <td colspan='2' align='left'><b>$Lang::tr{'all services'}</b></td>
231 foreach my $service (sort keys %servicenames) {
232 my $status = &isrunning
($service);
236 <td align='left' width='40%'>$servicenames{$service}</td>
248 <td width="33%" align="center">
249 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
250 <input type="hidden" name="ACTION" value="smbstart">
251 <input type="submit" value="$Lang::tr{'enable'}">
255 <td width="33%" align="center">
256 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
257 <input type="hidden" name="ACTION" value="smbstop">
258 <input type="submit" value="$Lang::tr{'disable'}">
262 <td width="33%" align="center">
263 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
264 <input type="hidden" name="ACTION" value="smbrestart">
265 <input type="submit" value="$Lang::tr{'restart'}">
272 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
273 <table class="tbl" width='100%' cellspacing='0'>
274 <tr bgcolor='$color{'color20'}'>
275 <td colspan='2' align='left'><b>$Lang::tr{'basic options'}</b></td>
278 <td align='left' width='40%'>$Lang::tr{'workgroup'}</td>
280 <input type='text' name='WORKGRP' value='$sambasettings{'WORKGRP'}' size="30" />
284 <td align='left'><br /></td>
287 <tr bgcolor='$color{'color20'}'>
288 <td colspan='2' align='left'><b>$Lang::tr{'security options'}</b></td>
291 <td align='left' width='40%'>$Lang::tr{'security'}</td>
293 <select name='ROLE' style="width: 165px">
294 <option value='standalone' $selected{'ROLE'}{'standalone'}>$Lang::tr{'samba server role standalone'}</option>
295 <option value='member' $selected{'ROLE'}{'member'}>$Lang::tr{'samba server role member'}</option>
300 <td align='left' width='40%'>$Lang::tr{'encryption'}</td>
302 <select name='ENCRYPTION' style="width: 165px">
303 <option value='optional' $selected{'ENCRYPTION'}{'optional'}>$Lang::tr{'optional'}</option>
304 <option value='desired' $selected{'ENCRYPTION'}{'desired'}>$Lang::tr{'desired'}</option>
305 <option value='required' $selected{'ENCRYPTION'}{'required'}>$Lang::tr{'required'}</option>
310 <td align='left' width='40%'>$Lang::tr{'map to guest'}</td>
312 <select name='MAPTOGUEST' style="width: 165px">
313 <option value='Bad User' $selected{'MAPTOGUEST'}{'Bad User'}>Bad User</option>
314 <option value='Bad Password' $selected{'MAPTOGUEST'}{'Bad Password'}>Bad Password</option>
319 <td align='left'><br /></td>
322 <tr bgcolor='$color{'color20'}'>
323 <td colspan='2' align='left'><b>$Lang::tr{'network options'}</b></td>
326 <td align='left' width='40%'>$Lang::tr{'remote announce'}</td>
328 <input type='text' name='REMOTEANNOUNCE' value='$sambasettings{'REMOTEANNOUNCE'}' size="30" />
332 <td align='left' width='40%'>$Lang::tr{'remote browse sync'}</td>
334 <input type='text' name='REMOTESYNC' value='$sambasettings{'REMOTESYNC'}' size="30" />
341 <table width='100%' cellspacing='0'>
344 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
345 <input type='hidden' name='ACTION' value="$Lang::tr{'save'}">
346 <input type='submit' value="$Lang::tr{'save'}">
356 ############################################################################################################################
357 ########################################## Benutzerverwaltung fr Usersecurity #############################################
359 if ($sambasettings{'ROLE'} eq 'standalone') {
360 &Header
::openbox
('100%', 'center', $Lang::tr
{'user management'});
363 <table class="tbl" width='100%' cellspacing='0'>
365 <th align='left'>$Lang::tr{'user'}</th>
366 <th colspan='3' width='5%'></th>
370 system('/usr/local/bin/sambactrl readsmbpasswd');
371 open(FILE
, "<${General::swroot}/samba/private/smbpasswd") or die "Can't read user file: $!";
374 system('/usr/local/bin/sambactrl locksmbpasswd');
377 foreach $userentry (sort @users) {
378 @userline = split( /\:/, $userentry);
381 print "<tr bgcolor='$color{'color20'}'>";
383 print "<tr bgcolor='$color{'color22'}'>";
387 print "<td align='left'>$userline[0]</td>";
389 if ($userline[4] =~ /D/) {
392 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
393 <input type='hidden' name='NAME' value='$userline[0]' />
394 <input type='hidden' name='ACTION' value='smbuserenable' />
395 <input type='image' alt='$Lang::tr{'activate'}' title='$Lang::tr{'activate'}' src='/images/off.gif' />
402 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
403 <input type='hidden' name='NAME' value='$userline[0]' />
404 <input type='hidden' name='ACTION' value='smbuserdisable' />
405 <input type='image' alt='$Lang::tr{'deactivate'}' title='$Lang::tr{'deactivate'}' src='/images/on.gif' />
411 # Machine accounts can't be edited
412 if ($userline[0] =~ /\$/) {
417 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
418 <input type='hidden' name='NAME' value='$userline[0]' />
419 <input type='hidden' name='ACTION' value='userchangepw' />
420 <input type='image' alt='$Lang::tr{'edit'}' title='$Lang::tr{'edit'}' src='/images/edit.gif' />
428 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
429 <input type='hidden' name='NAME' value='$userline[0]' />
430 <input type='hidden' name='ACTION' value='userdelete' />
431 <input type='image' alt='$Lang::tr{'delete'}' title='$Lang::tr{'delete'}' src='/images/delete.gif' />
444 <table width='10%' cellspacing='0'>
447 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
448 <input type='hidden' name='ACTION' value='useradd'>
449 <input type='submit' value='$Lang::tr{'add user'}'>
456 if ($sambasettings{'ACTION'} eq 'userchangepw') {
457 my $username = $sambasettings{'NAME'};
458 my $password = 'samba';
462 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
463 <table width='100%' cellspacing='0'>
464 <tr bgcolor='$color{'color20'}'>
465 <td colspan='2' align='left'><b>$Lang::tr{'change passwords'}</b></td>
468 <td align='left'>$Lang::tr{'username'}</td>
470 <input type='text' name='USERNAME' value='$username' size='30' readonly='readonly' />
474 <td align='left'>$Lang::tr{'password'}</td>
476 <input type='password' name='PASSWORD' value='$password' size='30' />
480 <td colspan='2' align='center'>
481 <input type='hidden' name='ACTION' value='smbchangepw'>
482 <input type='submit' value='$Lang::tr{'save'}'>
490 if ($sambasettings{'ACTION'} eq 'useradd') {
491 my $username = "user";
492 my $password = "samba";
501 <form method='post' action='$ENV{'SCRIPT_NAME'}'>
502 <table width='100%' cellspacing='0'>
503 <tr bgcolor='$color{'color20'}'>
504 <td colspan='2' align='left'><b>$Lang::tr{'add user'}</b></td>
507 <td align='left'>$Lang::tr{'username'}</td>
509 <input type='text' name='USERNAME' value='$username' size='30' />
513 <td align='left'>$Lang::tr{'password'}</td>
515 <input type='password' name='PASSWORD' value='$password' size='30' />
519 <td align='left'>$Lang::tr{'unix group'}</td>
521 <input type='text' name='GROUP' value='sambauser' size='30' />
525 <td align='left'>$Lang::tr{'unix shell'}</td>
527 <input type='text' name='SHELL' value='/bin/false' size='30' />
531 <td colspan='2' align='center'>
532 <input type='hidden' name='ACTION' value='smbuseradd'>
533 <input type='submit' value='$Lang::tr{'save'}'>
544 if ($sambasettings{'ROLE'} eq "member") {
545 &Header
::openbox
('100%', 'center', $Lang::tr
{'samba join a domain'});
547 my $AD_DOMAINNAME = uc($mainsettings{'DOMAINNAME'});
550 <form method="POST" action="$ENV{'SCRIPT_NAME'}">
551 <input type="hidden" name="ACTION" value="join">
565 $Lang::tr{'administrator username'}
568 <input type="text" name="USERNAME" size="30">
573 $Lang::tr{'administrator password'}
576 <input type="password" name="PASSWORD" size="30">
582 <input type="submit" value="$Lang::tr{'samba join domain'}">
593 ############################################################################################################################
594 ############################################### Verwalten von Freigaben ####################################################
596 &Header
::openbox
('100%', 'center', $Lang::tr
{'shares'});
598 my %shares = config
("${General::swroot}/samba/shares");
601 <table class="tbl" width='100%' cellspacing='0'>
603 <th align='left'>$Lang::tr{'sharename'}</th>
604 <th colspan='2' width="5%" align='center'></th>
608 my @shares = keys(%shares);
611 foreach my $shareentry (sort @shares) {
615 $col = "bgcolor='$color{'color20'}'";
617 $col = "bgcolor='$color{'color22'}'";
622 <td align='left' $col>$shareentry</td>
624 <form method='post' action='$ENV{'SCRIPT_NAME'}#$Lang::tr{'manage shares'}'>
625 <input type='hidden' name='NAME' value='$shareentry' />
626 <input type='hidden' name='ACTION' value='sharechange' />
627 <input type='image' alt='$Lang::tr{'edit'}' title='$Lang::tr{'edit'}' src='/images/edit.gif' />
631 <form method='post' action='$ENV{'SCRIPT_NAME'}#$Lang::tr{'manage shares'}'>
632 <input type='hidden' name='NAME' value='$shareentry' />
633 <input type='hidden' name='ACTION' value='smbsharedel' />
634 <input type='image' alt='$Lang::tr{'delete'}' title='$Lang::tr{'delete'}' src='/images/delete.gif' />
648 <table width='100%' cellspacing='0'>
651 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
652 <input type='hidden' name='ACTION' value='shareadd'>
653 <input type='submit' value='$Lang::tr{'add share'}'>
660 if ($sambasettings{'ACTION'} eq 'shareadd') {
664 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
665 <table width='100%' cellspacing='0'>
666 <tr bgcolor='$color{'color20'}'>
667 <td align='left'><b>$Lang::tr{'add share'}</b></td>
671 <textarea name="SHAREOPTION" cols="121" rows="15">$defaultoption</textarea>
676 <input type='hidden' name='ACTION' value='smbshareadd'>
677 <input type='submit' value='$Lang::tr{'save'}'>
685 if ($sambasettings{'ACTION'} eq 'sharechange') {
686 my $shareoption = $shares{$sambasettings{'NAME'}};
691 <form method='POST' action='$ENV{'SCRIPT_NAME'}'>
692 <input type='hidden' name='NAME' value='$sambasettings{'NAME'}'>
694 <table width='100%' cellspacing='0'>
695 <tr bgcolor='$color{'color20'}'>
696 <td align='left'><b>$Lang::tr{'edit share'}</b></td>
700 <textarea name="SHAREOPTION" cols="121" rows="15">$shareoption</textarea>
705 <input type='hidden' name='ACTION' value='smbsharechange'>
706 <input type='submit' value='$Lang::tr{'save'}'>
714 if ($sambasettings{'ACTION'} eq 'smbshareadd')
716 $shares{'xvx'}= "$sambasettings{'SHAREOPTION'}";
718 my $shares = config
("${General::swroot}/samba/shares");
720 if ($sambasettings{'ACTION'} eq 'smbsharedel')
722 delete $shares{$sambasettings{'NAME'}};
724 my %shares = config
("${General::swroot}/samba/shares");
726 if ($sambasettings{'ACTION'} eq 'smbsharechange')
728 $shares{$sambasettings{'NAME'}} = $sambasettings{'SHAREOPTION'};
730 my %shares = config
("${General::swroot}/samba/shares");
735 ############################################################################################################################
736 ############################################### Anzeige des Sambastatus ####################################################
738 &Header
::openbox
('100%', 'left', $Lang::tr
{'status'});
740 my $status = qx(/usr/local/bin/sambactrl smbstatus
);
741 $status = &Header
::cleanhtml
($status);
751 &Header
::closebigbox
();
752 &Header
::closepage
();
754 ############################################################################################################################
755 ############################################ Subfunktion fr Sambadienste ###################################################
760 my @allarray = `grep -n '^\\[' $file`;
765 my $EOF = qx(cat
$file | wc
-l
);
766 foreach my $allarrayentry (@allarray)
768 my @allarrayline = split( /\:/, $allarrayentry );
769 push(@linesarray,$allarrayline[0]);$allarrayline[1]=~s/\[//g;$allarrayline[1]=~s/\]//g;push(@namearray,$allarrayline[1]);
771 for(my $i = 0; $i <= $#namearray; $i++)
773 chomp $namearray[$i];
774 $namearray[$i]=~s/\[//g;$namearray[$i]=~s/\]//g;
775 if ( $i eq $#namearray )
777 my $lineend = $EOF-$linesarray[$i]+1;
778 $options=qx(tail
-$lineend $file);
782 my $linestart = $EOF-$linesarray[$i]+1;
783 my $lineend = $linesarray[$i+1]-$linesarray[$i];
784 $options=qx(tail
-$linestart $file | head
-$lineend);
786 $hash{$namearray[$i]} = "$options";
787 #print"<pre>$namearray[$i]\n$options\n</pre>"; # enable only for debuging
795 open (FILE
, ">${General::swroot}/samba/$smb") or die "Can't $smb settings $!";
798 if ( $smb eq 'shares')
799 {while (my ($name, $option) = each %shares){chomp $option;$option =~ s/\r\n/\n/gi;$option =~ s/^\n//gi;$option =~ s/^\r//gi;$option =~ s/^.\n//gi;$option =~ s/^.\r//gi;print FILE
"$option\n";} }
803 system("/usr/local/bin/sambactrl smbsafeconf");
804 system("/usr/local/bin/sambactrl smbreload");
810 my $status = "<td align='center' bgcolor='${Header::colourred}'><font color='white'><b>$Lang::tr{'stopped'}</b></font></td>";
818 if (open(FILE
, "/var/run/${cmd}.pid"))
820 $pid = <FILE
>; chomp $pid;
822 if (open(FILE
, "/proc/${pid}/status"))
832 if ($testcmd =~ /$exename/)
834 $status = "<td align='center' bgcolor='${Header::colourgreen}'><font color='white'><b>$Lang::tr{'running'}</b></font></td>";
842 my $username = shift;
843 my $password = shift;
845 my @options = ("/usr/local/bin/sambactrl", "join", $username, $password);
846 my $output = qx(@options);