2 Unix SMB/Netbios implementation.
4 Samba Web Administration Tool
5 Copyright (C) Andrew Tridgell 1997-1998
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
29 #define GLOBALS_SNUM -1
31 static pstring servicesf = CONFIGFILE;
32 static BOOL demo_mode = False;
33 static BOOL have_write_access = False;
36 * Password Management Globals
38 #define SWAT_USER "username"
39 #define OLD_PSWD "old_passwd"
40 #define NEW_PSWD "new_passwd"
41 #define NEW2_PSWD "new2_passwd"
42 #define CHG_S_PASSWD_FLAG "chg_s_passwd_flag"
43 #define CHG_R_PASSWD_FLAG "chg_r_passwd_flag"
44 #define ADD_USER_FLAG "add_user_flag"
45 #define DISABLE_USER_FLAG "disable_user_flag"
46 #define ENABLE_USER_FLAG "enable_user_flag"
47 #define RHOST "remote_host"
49 /* we need these because we link to locking*.o */
50 void become_root(BOOL save_dir) {}
51 void unbecome_root(BOOL restore_dir) {}
53 /****************************************************************************
54 ****************************************************************************/
55 static int enum_index(int value, struct enum_list *enumlist)
58 for (i=0;enumlist[i].name;i++)
59 if (value == enumlist[i].value) break;
63 static char *fix_backslash(char *str)
65 static char newstring[1024];
69 if (*str == '\\') {*p++ = '\\';*p++ = '\\';}
77 static char *stripspace(char *str)
79 static char newstring[1024];
83 if (*str != ' ') *p++ = *str;
90 static char *make_parm_name(char *label)
92 static char parmname[1024];
96 if (*label == ' ') *p++ = '_';
104 /****************************************************************************
105 include a lump of html in a page
106 ****************************************************************************/
107 static int include_html(char *fname)
109 FILE *f = sys_fopen(fname,"r");
114 printf("ERROR: Can't open %s\n", fname);
119 ret = fread(buf, 1, sizeof(buf), f);
121 fwrite(buf, 1, ret, stdout);
128 /****************************************************************************
129 start the page with standard stuff
130 ****************************************************************************/
131 static void print_header(void)
133 if (!cgi_waspost()) {
134 printf("Expires: 0\r\n");
136 printf("Content-type: text/html\r\n\r\n");
138 if (!include_html("include/header.html")) {
139 printf("<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 3.2//EN\">\n");
140 printf("<HTML>\n<HEAD>\n<TITLE>Samba Web Administration Tool</TITLE>\n</HEAD>\n<BODY background=\"/swat/images/background.jpg\">\n\n");
144 /****************************************************************************
146 ****************************************************************************/
147 static void print_footer(void)
149 if (!include_html("include/footer.html")) {
150 printf("\n</BODY>\n</HTML>\n");
154 /****************************************************************************
155 display one editable parameter in a form
156 ****************************************************************************/
157 static void show_parameter(int snum, struct parm_struct *parm)
160 void *ptr = parm->ptr;
162 if (parm->class == P_LOCAL && snum >= 0) {
163 ptr = lp_local_ptr(snum, ptr);
166 printf("<tr><td><A HREF=\"/swat/help/smb.conf.5.html#%s\" target=\"docs\">Help</A> %s</td><td>",
167 stripspace(parm->label), parm->label);
169 switch (parm->type) {
171 printf("<input type=text size=2 name=\"parm_%s\" value=\"%c\">",
172 make_parm_name(parm->label), *(char *)ptr);
173 printf("<input type=button value=\"Set Default\" onClick=\"swatform.parm_%s.value=\'%c\'\">",
174 make_parm_name(parm->label),(char)(parm->def.cvalue));
179 printf("<input type=text size=40 name=\"parm_%s\" value=\"%s\">",
180 make_parm_name(parm->label), *(char **)ptr);
181 printf("<input type=button value=\"Set Default\" onClick=\"swatform.parm_%s.value=\'%s\'\">",
182 make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue)));
187 printf("<input type=text size=40 name=\"parm_%s\" value=\"%s\">",
188 make_parm_name(parm->label), (char *)ptr);
189 printf("<input type=button value=\"Set Default\" onClick=\"swatform.parm_%s.value=\'%s\'\">",
190 make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue)));
194 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
195 printf("<option %s>Yes", (*(BOOL *)ptr)?"selected":"");
196 printf("<option %s>No", (*(BOOL *)ptr)?"":"selected");
198 printf("<input type=button value=\"Set Default\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
199 make_parm_name(parm->label),(BOOL)(parm->def.bvalue)?0:1);
203 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
204 printf("<option %s>Yes", (*(BOOL *)ptr)?"":"selected");
205 printf("<option %s>No", (*(BOOL *)ptr)?"selected":"");
207 printf("<input type=button value=\"Set Default\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
208 make_parm_name(parm->label),(BOOL)(parm->def.bvalue)?1:0);
212 printf("<input type=text size=8 name=\"parm_%s\" value=%d>", make_parm_name(parm->label), *(int *)ptr);
213 printf("<input type=button value=\"Set Default\" onClick=\"swatform.parm_%s.value=\'%d\'\">",
214 make_parm_name(parm->label),(int)(parm->def.ivalue));
218 printf("<input type=text size=8 name=\"parm_%s\" value=0%o>", make_parm_name(parm->label), *(int *)ptr);
219 printf("<input type=button value=\"Set Default\" onClick=\"swatform.parm_%s.value=\'0%o\'\">",
220 make_parm_name(parm->label),(int)(parm->def.ivalue));
224 printf("<select name=\"parm_%s\">",make_parm_name(parm->label));
225 for (i=0;parm->enum_list[i].name;i++)
226 printf("<option %s>%s",(*(int *)ptr)==parm->enum_list[i].value?"selected":"",parm->enum_list[i].name);
228 printf("<input type=button value=\"Set Default\" onClick=\"swatform.parm_%s.selectedIndex=\'%d\'\">",
229 make_parm_name(parm->label),enum_index((int)(parm->def.ivalue),parm->enum_list));
234 printf("</td></tr>\n");
237 /****************************************************************************
238 display a set of parameters for a service
239 ****************************************************************************/
240 static void show_parameters(int snum, int allparameters, int advanced, int printers)
243 struct parm_struct *parm;
244 char *heading = NULL;
245 char *last_heading = NULL;
247 while ((parm = lp_next_parameter(snum, &i, allparameters))) {
248 if (snum < 0 && parm->class == P_LOCAL && !(parm->flags & FLAG_GLOBAL))
250 if (parm->class == P_SEPARATOR) {
251 heading = parm->label;
254 if (parm->flags & FLAG_HIDE) continue;
256 if (!printers && !(parm->flags & FLAG_BASIC)) {
257 void *ptr = parm->ptr;
259 switch (parm->type) {
261 if (*(char *)ptr == (char)(parm->def.cvalue)) continue;
266 if (!strcmp(*(char **)ptr,(char *)(parm->def.svalue))) continue;
271 if (!strcmp((char *)ptr,(char *)(parm->def.svalue))) continue;
276 if (*(BOOL *)ptr == (BOOL)(parm->def.bvalue)) continue;
281 if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
286 if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
292 if (printers && !(parm->flags & FLAG_PRINT)) continue;
294 if (heading && heading != last_heading) {
295 printf("<tr><td></td></tr><tr><td><b><u>%s</u></b></td></tr>\n", heading);
296 last_heading = heading;
298 show_parameter(snum, parm);
302 /****************************************************************************
304 ****************************************************************************/
305 static void write_config(FILE *f, BOOL show_defaults)
307 fprintf(f, "# Samba config file created using SWAT\n");
308 fprintf(f, "# from %s (%s)\n", cgi_remote_host(), cgi_remote_addr());
309 fprintf(f, "# Date: %s\n\n", timestring());
311 lp_dump(f, show_defaults);
314 /****************************************************************************
315 save and reoad the smb.conf config file
316 ****************************************************************************/
317 static int save_reload(void)
321 f = sys_fopen(servicesf,"w");
323 printf("failed to open %s for writing\n", servicesf);
327 write_config(f, False);
332 if (!lp_load(servicesf,False,False,False)) {
333 printf("Can't reload %s\n", servicesf);
340 /****************************************************************************
342 ****************************************************************************/
343 static void commit_parameter(int snum, struct parm_struct *parm, char *v)
348 if (snum < 0 && parm->class == P_LOCAL) {
349 /* this handles the case where we are changing a local
350 variable globally. We need to change the parameter in
351 all shares where it is currently set to the default */
352 for (i=0;i<lp_numservices();i++) {
353 s = lp_servicename(i);
354 if (s && (*s) && lp_is_default(i, parm)) {
355 lp_do_parameter(i, parm->label, v);
360 lp_do_parameter(snum, parm->label, v);
363 /****************************************************************************
364 commit a set of parameters for a service
365 ****************************************************************************/
366 static void commit_parameters(int snum)
369 struct parm_struct *parm;
373 while ((parm = lp_next_parameter(snum, &i, 1))) {
374 slprintf(label, sizeof(label)-1, "parm_%s", make_parm_name(parm->label));
375 if ((v = cgi_variable(label))) {
376 if (parm->flags & FLAG_HIDE) continue;
377 commit_parameter(snum, parm, v);
382 /****************************************************************************
383 load the smb.conf file into loadparm.
384 ****************************************************************************/
385 static BOOL load_config(void)
387 return lp_load(servicesf,False,True,False);
390 /****************************************************************************
391 spit out the html for a link with an image
392 ****************************************************************************/
393 static void image_link(char *name,char *hlink, char *src)
395 printf("<A HREF=\"%s/%s\"><img src=\"/swat/%s\" alt=\"%s\"></A>\n",
396 cgi_baseurl(), hlink, src, name);
399 /****************************************************************************
400 display the main navigation controls at the top of each page along
402 ****************************************************************************/
403 static void show_main_buttons(void)
405 image_link("Home", "", "images/home.gif");
407 image_link("Globals", "globals", "images/globals.gif");
408 image_link("Shares", "shares", "images/shares.gif");
409 image_link("Printers", "printers", "images/printers.gif");
410 image_link("Status", "status", "images/status.gif");
411 image_link("View Config", "viewconfig","images/viewconfig.gif");
412 image_link("Password Management", "passwd", "images/passwd.gif");
417 /****************************************************************************
418 display a welcome page
419 ****************************************************************************/
420 static void welcome_page(void)
422 include_html("help/welcome.html");
425 /****************************************************************************
426 display the current smb.conf
427 ****************************************************************************/
428 static void viewconfig_page(void)
432 if (cgi_variable("full_view")) {
436 printf("<H2>Current Config</H2>\n");
437 printf("<form method=post>\n");
440 printf("<input type=submit name=\"normal_view\" value=\"Normal View\">\n");
442 printf("<input type=submit name=\"full_view\" value=\"Full View\">\n");
446 write_config(stdout, full_view);
451 /****************************************************************************
452 display a globals editing page
453 ****************************************************************************/
454 static void globals_page(void)
458 printf("<H2>Global Variables</H2>\n");
460 if (cgi_variable("Advanced") && !cgi_variable("Basic"))
463 if (cgi_variable("Commit")) {
464 commit_parameters(GLOBALS_SNUM);
468 printf("<FORM name=\"swatform\" method=post>\n");
470 if (have_write_access) {
471 printf("<input type=submit name=\"Commit\" value=\"Commit Changes\">\n");
474 printf("<input type=reset name=\"Reset Values\" value=\"Reset Values\">\n");
476 printf("<input type=submit name=\"Advanced\" value=\"Advanced View\">\n");
478 printf("<input type=submit name=\"Basic\" value=\"Basic View\">\n");
483 show_parameters(GLOBALS_SNUM, 1, advanced, 0);
484 printf("</table>\n");
487 printf("<input type=hidden name=\"Advanced\" value=1>\n");
493 /****************************************************************************
494 display a shares editing page
495 ****************************************************************************/
496 static void shares_page(void)
498 char *share = cgi_variable("share");
505 snum = lp_servicenumber(share);
507 printf("<H2>Share Parameters</H2>\n");
509 if (cgi_variable("Advanced") && !cgi_variable("Basic"))
512 if (cgi_variable("Commit") && snum >= 0) {
513 commit_parameters(snum);
517 if (cgi_variable("Delete") && snum >= 0) {
518 lp_remove_service(snum);
524 if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
525 lp_copy_service(GLOBALS_SNUM, share);
527 snum = lp_servicenumber(share);
530 printf("<FORM name=\"swatform\" method=post>\n");
533 printf("<tr><td><input type=submit name=selectshare value=\"Choose Share\"></td>\n");
534 printf("<td><select name=share>\n");
536 printf("<option value=\" \"> \n");
537 for (i=0;i<lp_numservices();i++) {
538 s = lp_servicename(i);
539 if (s && (*s) && strcmp(s,"IPC$") && !lp_print_ok(i)) {
540 printf("<option %s value=\"%s\">%s\n",
541 (share && strcmp(share,s)==0)?"SELECTED":"",
545 printf("</select></td></tr><p>");
547 printf("<tr><td><input type=submit name=createshare value=\"Create Share\"></td>\n");
548 printf("<td><input type=text size=30 name=newshare></td></tr>\n");
553 if (have_write_access) {
554 printf("<input type=submit name=\"Commit\" value=\"Commit Changes\">\n");
557 printf("<input type=submit name=\"Delete\" value=\"Delete Share\">\n");
559 printf("<input type=submit name=\"Advanced\" value=\"Advanced View\">\n");
561 printf("<input type=submit name=\"Basic\" value=\"Basic View\">\n");
568 show_parameters(snum, 1, advanced, 0);
569 printf("</table>\n");
573 printf("<input type=hidden name=\"Advanced\" value=1>\n");
579 /*************************************************************
580 change a password either locally or remotely
581 *************************************************************/
582 static BOOL change_password(const char *remote_machine, char *user_name,
583 char *old_passwd, char *new_passwd,
584 BOOL add_user, BOOL enable_user, BOOL disable_user)
593 printf("password change in demo mode rejected\n<p>");
597 if (remote_machine != NULL) {
598 ret = remote_password_change(remote_machine, user_name, old_passwd,
599 new_passwd, err_str, sizeof(err_str));
601 printf("%s\n<p>", err_str);
605 if (!pwdb_initialise(False))
607 printf("Can't setup password database vectors.\n<p>");
613 acb_mask |= ACB_DISABLED;
614 acb_info &= ~ACB_DISABLED;
619 acb_mask |= ACB_DISABLED;
620 acb_info |= ACB_DISABLED;
623 ret = local_password_change(user_name, add_user,
625 new_passwd, err_str, sizeof(err_str),
626 msg_str, sizeof(msg_str));
629 printf("%s\n<p>", msg_str);
631 printf("%s\n<p>", err_str);
636 /****************************************************************************
637 do the stuff required to add or change a password
638 ****************************************************************************/
639 static void chg_passwd(void)
644 /* Make sure users name has been specified */
645 if (strlen(cgi_variable(SWAT_USER)) == 0) {
646 printf("<p> Must specify \"User Name\" \n");
651 * smbpasswd doesn't require anything but the users name to disable or enable the user,
652 * so if that's what we're doing, skip the rest of the checks
654 if (!cgi_variable(DISABLE_USER_FLAG) && !cgi_variable(ENABLE_USER_FLAG)) {
657 * If current user is not root, make sure old password has been specified
658 * If REMOTE change, even root must provide old password
660 if (((!am_root()) && (strlen( cgi_variable(OLD_PSWD)) <= 0)) ||
661 ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable(OLD_PSWD)) <= 0))) {
662 printf("<p> Must specify \"Old Password\" \n");
666 /* If changing a users password on a remote hosts we have to know what host */
667 if ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable(RHOST)) <= 0)) {
668 printf("<p> Must specify \"Remote Machine\" \n");
672 /* Make sure new passwords have been specified */
673 if ((strlen( cgi_variable(NEW_PSWD)) <= 0) ||
674 (strlen( cgi_variable(NEW2_PSWD)) <= 0)) {
675 printf("<p> Must specify \"New, and Re-typed Passwords\" \n");
679 /* Make sure new passwords was typed correctly twice */
680 if (strcmp(cgi_variable(NEW_PSWD), cgi_variable(NEW2_PSWD)) != 0) {
681 printf("<p> Re-typed password didn't match new password\n");
686 if (cgi_variable(CHG_R_PASSWD_FLAG)) {
687 host = cgi_variable(RHOST);
688 } else if (am_root()) {
693 rslt = change_password(host,
694 cgi_variable(SWAT_USER),
695 cgi_variable(OLD_PSWD), cgi_variable(NEW_PSWD),
696 cgi_variable(ADD_USER_FLAG)? True : False,
697 cgi_variable(ENABLE_USER_FLAG)? True : False,
698 cgi_variable(DISABLE_USER_FLAG)? True : False);
702 printf("<p> The passwd for '%s' has been changed. \n", cgi_variable(SWAT_USER));
704 printf("<p> The passwd for '%s' has NOT been changed. \n",cgi_variable(SWAT_USER));
710 /****************************************************************************
711 display a password editing page
712 ****************************************************************************/
713 static void passwd_page(void)
715 char *new_name = cgi_user_name();
718 * After the first time through here be nice. If the user
719 * changed the User box text to another users name, remember it.
721 if (cgi_variable(SWAT_USER)) {
722 new_name = cgi_variable(SWAT_USER);
725 if (!new_name) new_name = "";
727 printf("<H2>Server Password Management</H2>\n");
729 printf("<FORM name=\"swatform\" method=post>\n");
734 * Create all the dialog boxes for data collection
736 printf("<tr><td> User Name : </td>\n");
737 printf("<td><input type=text size=30 name=%s value=%s></td></tr> \n", SWAT_USER, new_name);
739 printf("<tr><td> Old Password : </td>\n");
740 printf("<td><input type=password size=30 name=%s></td></tr> \n",OLD_PSWD);
742 printf("<tr><td> New Password : </td>\n");
743 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
744 printf("<tr><td> Re-type New Password : </td>\n");
745 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
746 printf("</table>\n");
749 * Create all the control buttons for requesting action
751 printf("<input type=submit name=%s value=\"Change Password\">\n",
753 if (demo_mode || am_root()) {
754 printf("<input type=submit name=%s value=\"Add New User\">\n",
756 printf("<input type=submit name=%s value=\"Disable User\">\n",
758 printf("<input type=submit name=%s value=\"Enable User\">\n",
761 printf("<p></FORM>\n");
764 * Do some work if change, add, disable or enable was
765 * requested. It could be this is the first time through this
766 * code, so there isn't anything to do. */
767 if ((cgi_variable(CHG_S_PASSWD_FLAG)) || (cgi_variable(ADD_USER_FLAG)) ||
768 (cgi_variable(DISABLE_USER_FLAG)) || (cgi_variable(ENABLE_USER_FLAG))) {
772 printf("<H2>Client/Server Password Management</H2>\n");
774 printf("<FORM name=\"swatform\" method=post>\n");
779 * Create all the dialog boxes for data collection
781 printf("<tr><td> User Name : </td>\n");
782 printf("<td><input type=text size=30 name=%s value=%s></td></tr>\n",SWAT_USER, new_name);
783 printf("<tr><td> Old Password : </td>\n");
784 printf("<td><input type=password size=30 name=%s></td></tr>\n",OLD_PSWD);
785 printf("<tr><td> New Password : </td>\n");
786 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW_PSWD);
787 printf("<tr><td> Re-type New Password : </td>\n");
788 printf("<td><input type=password size=30 name=%s></td></tr>\n",NEW2_PSWD);
789 printf("<tr><td> Remote Machine : </td>\n");
790 printf("<td><input type=password size=30 name=%s></td></tr>\n",RHOST);
795 * Create all the control buttons for requesting action
797 printf("<input type=submit name=%s value=\"Change Password\">",
800 printf("<p></FORM>\n");
803 * Do some work if a request has been made to change the
804 * password somewhere other than the server. It could be this
805 * is the first time through this code, so there isn't
807 if (cgi_variable(CHG_R_PASSWD_FLAG)) {
813 /****************************************************************************
814 display a printers editing page
815 ****************************************************************************/
816 static void printers_page(void)
818 char *share = cgi_variable("share");
825 snum = lp_servicenumber(share);
827 printf("<H2>Printer Parameters</H2>\n");
829 if (cgi_variable("Advanced") && !cgi_variable("Basic"))
832 if (cgi_variable("Commit") && snum >= 0) {
833 commit_parameters(snum);
837 if (cgi_variable("Delete") && snum >= 0) {
838 lp_remove_service(snum);
844 if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
845 lp_copy_service(GLOBALS_SNUM, share);
846 snum = lp_servicenumber(share);
847 lp_do_parameter(snum, "print ok", "Yes");
849 snum = lp_servicenumber(share);
852 printf("<FORM name=\"swatform\" method=post>\n");
855 printf("<tr><td><input type=submit name=selectshare value=\"Choose Printer\"></td>\n");
856 printf("<td><select name=share>\n");
857 if (snum < 0 || !lp_print_ok(snum))
858 printf("<option value=\" \"> \n");
859 for (i=0;i<lp_numservices();i++) {
860 s = lp_servicename(i);
861 if (s && (*s) && strcmp(s,"IPC$") && lp_print_ok(i)) {
862 printf("<option %s value=\"%s\">%s\n",
863 (share && strcmp(share,s)==0)?"SELECTED":"",
867 printf("</select></td></tr><p>");
869 printf("<tr><td><input type=submit name=createshare value=\"Create Printer\"></td>\n");
870 printf("<td><input type=text size=30 name=newshare></td></tr>\n");
875 if (have_write_access) {
876 printf("<input type=submit name=\"Commit\" value=\"Commit Changes\">\n");
878 printf("<input type=submit name=\"Delete\" value=\"Delete Printer\">\n");
880 printf("<input type=submit name=\"Advanced\" value=\"Advanced View\">\n");
882 printf("<input type=submit name=\"Basic\" value=\"Basic View\">\n");
889 show_parameters(snum, 1, advanced, 1);
890 printf("</table>\n");
894 printf("<input type=hidden name=\"Advanced\" value=1>\n");
900 /****************************************************************************
902 ****************************************************************************/
903 int main(int argc, char *argv[])
911 /* just in case it goes wild ... */
914 dbf = sys_fopen("/dev/null", "w");
916 if (!dbf) dbf = stderr;
918 while ((opt = getopt(argc, argv,"s:a")) != EOF) {
921 pstrcpy(servicesf,optarg);
929 charset_initialise();
932 cgi_setup(SWATDIR, !demo_mode);
936 cgi_load_variables(NULL);
940 page = cgi_pathinfo();
942 /* check if the authenticated user has write access - if not then
943 don't show write options */
944 have_write_access = (access(servicesf,W_OK) == 0);
946 /* Root gets full functionality */
947 if (strcmp(page, "globals")==0) {
949 } else if (strcmp(page,"shares")==0) {
951 } else if (strcmp(page,"printers")==0) {
953 } else if (strcmp(page,"status")==0) {
955 } else if (strcmp(page,"viewconfig")==0) {
957 } else if (strcmp(page,"passwd")==0) {