functions.inc.php 24.1 KB
Newer Older
latham's avatar
latham committed
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
<?php

/*
Copyright (c) 2010, Till Brehm, projektfarm Gmbh
All rights reserved.

Redistribution and use in source and binary forms, with or without modification,
are permitted provided that the following conditions are met:

    * Redistributions of source code must retain the above copyright notice,
      this list of conditions and the following disclaimer.
    * Redistributions in binary form must reproduce the above copyright notice,
      this list of conditions and the following disclaimer in the documentation
      and/or other materials provided with the distribution.
    * Neither the name of ISPConfig nor the names of its contributors
      may be used to endorse or promote products derived from this software without
      specific prior written permission.

THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/

Jesse Norell's avatar
Jesse Norell committed
31
require_once __DIR__.'/../compatibility.inc.php';
Jesse Norell's avatar
Jesse Norell committed
32

latham's avatar
latham committed
33
34
35
36
//* The purpose of this library is to provide some general functions.
//* This class is loaded automatically by the ispconfig framework.

class functions {
37
	var $idn_converter = null;
38
	var $idn_converter_name = '';
latham's avatar
latham committed
39

40
	public function mail($to, $subject, $text, $from, $filepath = '', $filetype = 'application/pdf', $filename = '', $cc = '', $bcc = '', $from_name = '') {
41
42
		global $app, $conf;

latham's avatar
latham committed
43
		if($conf['demo_mode'] == true) $app->error("Mail sending disabled in demo mode.");
44
45

		$app->uses('getconf,ispcmail');
46
47
48
49
50
		$mail_config = $app->getconf->get_global_config('mail');
		if($mail_config['smtp_enabled'] == 'y') {
			$mail_config['use_smtp'] = true;
			$app->ispcmail->setOptions($mail_config);
		}
51
		$app->ispcmail->setSender($from, $from_name);
52
53
		$app->ispcmail->setSubject($subject);
		$app->ispcmail->setMailText($text);
54

55
56
57
58
		if($filepath != '') {
			if(!file_exists($filepath)) $app->error("Mail attachement does not exist ".$filepath);
			$app->ispcmail->readAttachFile($filepath);
		}
59

60
61
		if($cc != '') $app->ispcmail->setHeader('Cc', $cc);
		if($bcc != '') $app->ispcmail->setHeader('Bcc', $bcc);
62

63
64
65
		if(is_string($to) && strpos($to, ',') !== false) {
				$to = preg_split('/\s*,\s*/', $to);
		}
66

67
68
		$app->ispcmail->send($to);
		$app->ispcmail->finish();
69

latham's avatar
latham committed
70
71
		return true;
	}
72
73

	public function array_merge($array1, $array2) {
latham's avatar
latham committed
74
75
76
77
78
79
		$out = $array1;
		foreach($array2 as $key => $val) {
			$out[$key] = $val;
		}
		return $out;
	}
80

81
	public function currency_format($number, $view = '') {
latham's avatar
latham committed
82
		global $app;
83
		if($view != '') $number_format_decimals = (int)$app->lng('number_format_decimals_'.$view);
84
85
		if(!$number_format_decimals) $number_format_decimals = (int)$app->lng('number_format_decimals');

latham's avatar
latham committed
86
87
88
89
90
		$number_format_dec_point = $app->lng('number_format_dec_point');
		$number_format_thousands_sep = $app->lng('number_format_thousands_sep');
		if($number_format_thousands_sep == 'number_format_thousands_sep') $number_format_thousands_sep = '';
		return number_format((double)$number, $number_format_decimals, $number_format_dec_point, $number_format_thousands_sep);
	}
91

92
93
94
	//* convert currency formatted number back to floating number
	public function currency_unformat($number) {
		global $app;
95

96
97
98
		$number_format_dec_point = $app->lng('number_format_dec_point');
		$number_format_thousands_sep = $app->lng('number_format_thousands_sep');
		if($number_format_thousands_sep == 'number_format_thousands_sep') $number_format_thousands_sep = '';
99

100
101
		if($number_format_thousands_sep != '') $number = str_replace($number_format_thousands_sep, '', $number);
		if($number_format_dec_point != '.' && $number_format_dec_point != '') $number = str_replace($number_format_dec_point, '.', $number);
102

103
104
		return (double)$number;
	}
105

latham's avatar
latham committed
106
	public function get_ispconfig_url() {
107
		global $app;
108
109

		$url = (stristr($_SERVER['SERVER_PROTOCOL'], 'HTTPS') || stristr($_SERVER['HTTPS'], 'on'))?'https':'http';
110
111
112
113
114
115
116
		if($_SERVER['SERVER_NAME'] != '_') {
			$url .= '://'.$_SERVER['SERVER_NAME'];
			if($_SERVER['SERVER_PORT'] != 80 && $_SERVER['SERVER_PORT'] != 443) {
				$url .= ':'.$_SERVER['SERVER_PORT'];
			}
		} else {
			$app->uses("getconf");
117
			$server_config = $app->getconf->get_server_config(1, 'server');
118
119
120
121
			$url .= '://'.$server_config['hostname'];
			if($_SERVER['SERVER_PORT'] != 80 && $_SERVER['SERVER_PORT'] != 443) {
				$url .= ':'.$_SERVER['SERVER_PORT'];
			}
latham's avatar
latham committed
122
123
124
		}
		return $url;
	}
125
126

	public function json_encode($data) {
127
		if(!function_exists('json_encode')){
128
			if(is_array($data) || is_object($data)){
129
				$islist = is_array($data) && (empty($data) || array_keys($data) === range(0, count($data)-1));
130
131
132
133

				if($islist){
					$json = '[' . implode(',', array_map(array($this, "json_encode"), $data) ) . ']';
				} else {
134
					$items = array();
135
136
					foreach( $data as $key => $value ) {
						$items[] = $this->json_encode("$key") . ':' . $this->json_encode($value);
137
					}
138
139
140
					$json = '{' . implode(',', $items) . '}';
				}
			} elseif(is_string($data)){
141
142
				// Escape non-printable or Non-ASCII characters.
				// I also put the \\ character first, as suggested in comments on the 'addclashes' page.
143
144
145
				$string = '"'.addcslashes($data, "\\\"\n\r\t/".chr(8).chr(12)).'"';
				$json = '';
				$len = strlen($string);
146
				// Convert UTF-8 to Hexadecimal Codepoints.
147
148
149
150
				for($i = 0; $i < $len; $i++){
					$char = $string[$i];
					$c1 = ord($char);

151
					// Single byte;
152
153
154
					if($c1 <128){
						$json .= ($c1 > 31) ? $char : sprintf("\\u%04x", $c1);
						continue;
155
					}
156

157
					// Double byte
158
159
160
161
162
163
					$c2 = ord($string[++$i]);
					if(($c1 & 32) === 0){
						$json .= sprintf("\\u%04x", ($c1 - 192) * 64 + $c2 - 128);
						continue;
					}

164
					// Triple
165
166
167
168
169
170
					$c3 = ord($string[++$i]);
					if(($c1 & 16) === 0){
						$json .= sprintf("\\u%04x", (($c1 - 224) <<12) + (($c2 - 128) << 6) + ($c3 - 128));
						continue;
					}

171
					// Quadruple
172
173
174
175
176
177
178
179
180
181
					$c4 = ord($string[++$i]);
					if(($c1 & 8) === 0){
						$u = (($c1 & 15) << 2) + (($c2>>4) & 3) - 1;

						$w1 = (54<<10) + ($u<<6) + (($c2 & 15) << 2) + (($c3>>4) & 3);
						$w2 = (55<<10) + (($c3 & 15)<<6) + ($c4-128);
						$json .= sprintf("\\u%04x\\u%04x", $w1, $w2);
					}
				}
			} else {
182
				// int, floats, bools, null
183
				$json = strtolower(var_export($data, true));
184
			}
185
			return $json;
186
187
188
		} else {
			return json_encode($data);
		}
189
190
	}

Falko Timme's avatar
Falko Timme committed
191
192
	public function suggest_ips($type = 'IPv4'){
		global $app;
193

Falko Timme's avatar
Falko Timme committed
194
		if($type == 'IPv4'){
Florian Schaal's avatar
Florian Schaal committed
195
196
//			$regex = "/^[0-9]{1,3}(\.)[0-9]{1,3}(\.)[0-9]{1,3}(\.)[0-9]{1,3}$/";
			$regex = "/^((25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\\.){3}(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$/";
Falko Timme's avatar
Falko Timme committed
197
198
		} else {
			// IPv6
199
			$regex = "/(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))/";
Falko Timme's avatar
Falko Timme committed
200
		}
201

202
203
204
205
206
207
208
209
		$server_by_id = array();
		$server_by_ip = array();
		$servers = $app->db->queryAllRecords("SELECT * FROM server");
		if(is_array($servers) && !empty($servers)){
			foreach($servers as $server){
				$server_by_id[$server['server_id']] = $server['server_name'];
			}
		}
210

Falko Timme's avatar
Falko Timme committed
211
		$ips = array();
212
		$results = $app->db->queryAllRecords("SELECT ip_address AS ip, server_id FROM server_ip WHERE ip_type = ?", $type);
Falko Timme's avatar
Falko Timme committed
213
214
		if(!empty($results) && is_array($results)){
			foreach($results as $result){
215
216
217
218
				if(preg_match($regex, $result['ip'])){
					$ips[] = $result['ip'];
					$server_by_ip[$result['ip']] = $server_by_id[$result['server_id']];
				}
Falko Timme's avatar
Falko Timme committed
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
			}
		}
		$results = $app->db->queryAllRecords("SELECT ip_address AS ip FROM openvz_ip");
		if(!empty($results) && is_array($results)){
			foreach($results as $result){
				if(preg_match($regex, $result['ip'])) $ips[] = $result['ip'];
			}
		}
		$results = $app->db->queryAllRecords("SELECT data AS ip FROM dns_rr WHERE type = 'A' OR type = 'AAAA'");
		if(!empty($results) && is_array($results)){
			foreach($results as $result){
				if(preg_match($regex, $result['ip'])) $ips[] = $result['ip'];
			}
		}
		$results = $app->db->queryAllRecords("SELECT ns AS ip FROM dns_slave");
		if(!empty($results) && is_array($results)){
			foreach($results as $result){
				if(preg_match($regex, $result['ip'])) $ips[] = $result['ip'];
			}
		}
239

Falko Timme's avatar
Falko Timme committed
240
241
242
243
244
245
246
247
248
249
250
251
252
253
		$results = $app->db->queryAllRecords("SELECT remote_ips FROM web_database WHERE remote_ips != ''");
		if(!empty($results) && is_array($results)){
			foreach($results as $result){
				$tmp_ips = explode(',', $result['remote_ips']);
				foreach($tmp_ips as $tmp_ip){
					$tmp_ip = trim($tmp_ip);
					if(preg_match($regex, $tmp_ip)) $ips[] = $tmp_ip;
				}
			}
		}
		$ips = array_unique($ips);
		sort($ips, SORT_NUMERIC);

		$result_array = array('cheader' => array(), 'cdata' => array());
254

Falko Timme's avatar
Falko Timme committed
255
256
		if(!empty($ips)){
			$result_array['cheader'] = array('title' => 'IPs',
257
258
259
260
				'total' => count($ips),
				'limit' => count($ips)
			);

Falko Timme's avatar
Falko Timme committed
261
			foreach($ips as $ip){
262
263
264
265
266
				$result_array['cdata'][] = array( 'title' => $ip,
					'description' => $type.($server_by_ip[$ip] != ''? ' &gt; '.$server_by_ip[$ip] : ''),
					'onclick' => '',
					'fill_text' => $ip
				);
Falko Timme's avatar
Falko Timme committed
267
268
			}
		}
269

Falko Timme's avatar
Falko Timme committed
270
271
		return $result_array;
	}
272

273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
	public function intval($string, $force_numeric = false) {
		if(intval($string) == 2147483647 || ($string > 0 && intval($string) < 0)) {
			if($force_numeric == true) return floatval($string);
			elseif(preg_match('/^([-]?)[0]*([1-9][0-9]*)([^0-9].*)*$/', $string, $match)) return $match[1].$match[2];
			else return 0;
		} else {
			return intval($string);
		}
	}

	/**
	 * Function to change bytes to kB, MB, GB or TB
	 * @param int $size - size in bytes
	 * @param int precicion - after-comma-numbers (default: 2)
	 * @return string - formated bytes
	 */
	public function formatBytes($size, $precision = 2) {
		$base=log($size)/log(1024);
291
		$suffixes=array('', ' kB', ' MB', ' GB', ' TB');
292
293
294
		return round(pow(1024, $base-floor($base)), $precision).$suffixes[floor($base)];
	}

295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322

	/**
	 * Normalize a path and strip duplicate slashes from it
	 *
	 * This will also remove all /../ from the path, reducing the preceding path elements
	 *
	 * @param string $path
	 * @return string
	 */
	public function normalize_path($path) {
		$path = preg_replace('~[/]{2,}~', '/', $path);
		$parts = explode('/', $path);
		$return_parts = array();

		foreach($parts as $current_part) {
			if($current_part === '..') {
				if(!empty($return_parts) && end($return_parts) !== '') {
					array_pop($return_parts);
				}
			} else {
				$return_parts[] = $current_part;
			}
		}

		return implode('/', $return_parts);
	}


323
324
325
326
327
328
329
330
331
332
333
334
335
336
	/** IDN converter wrapper.
	 * all converter classes should be placed in ISPC_CLASS_PATH.'/idn/'
	 */
	private function _idn_encode_decode($domain, $encode = true) {
		if($domain == '') return '';
		if(preg_match('/^[0-9\.]+$/', $domain)) return $domain; // may be an ip address - anyway does not need to bee encoded

		// get domain and user part if it is an email
		$user_part = false;
		if(strpos($domain, '@') !== false) {
			$user_part = substr($domain, 0, strrpos($domain, '@'));
			$domain = substr($domain, strrpos($domain, '@') + 1);
		}

337
		// idn_to_* chokes on leading dots, but we need them for amavis, so remove it for later
338
		if(substr($domain, 0, 1) === '.') {
339
340
341
342
343
344
			$leading_dot = true;
			$domain = substr($domain, 1);
		} else {
			$leading_dot = false;
		}

345
346
		if($encode == true) {
			if(function_exists('idn_to_ascii')) {
347
348
349
350
351
				if(defined('IDNA_NONTRANSITIONAL_TO_ASCII') && defined('INTL_IDNA_VARIANT_UTS46') && constant('IDNA_NONTRANSITIONAL_TO_ASCII')) {
					$domain = idn_to_ascii($domain, IDNA_NONTRANSITIONAL_TO_ASCII, INTL_IDNA_VARIANT_UTS46);
				} else {
					$domain = idn_to_ascii($domain);
				}
352
353
			} elseif(file_exists(ISPC_CLASS_PATH.'/idn/idna_convert.class.php')) {
				/* use idna class:
354
355
356
357
                 * @author  Matthias Sommerfeld <mso@phlylabs.de>
                 * @copyright 2004-2011 phlyLabs Berlin, http://phlylabs.de
                 * @version 0.8.0 2011-03-11
                 */
358
359
360
361
362
363
364
365
366
367

				if(!is_object($this->idn_converter) || $this->idn_converter_name != 'idna_convert.class') {
					include_once ISPC_CLASS_PATH.'/idn/idna_convert.class.php';
					$this->idn_converter = new idna_convert(array('idn_version' => 2008));
					$this->idn_converter_name = 'idna_convert.class';
				}
				$domain = $this->idn_converter->encode($domain);
			}
		} else {
			if(function_exists('idn_to_utf8')) {
368
369
370
371
372
				if(defined('IDNA_NONTRANSITIONAL_TO_ASCII') && defined('INTL_IDNA_VARIANT_UTS46') && constant('IDNA_NONTRANSITIONAL_TO_ASCII')) {
					$domain = idn_to_utf8($domain, IDNA_NONTRANSITIONAL_TO_ASCII, INTL_IDNA_VARIANT_UTS46);
				} else {
					$domain = idn_to_utf8($domain);
				}
373
374
			} elseif(file_exists(ISPC_CLASS_PATH.'/idn/idna_convert.class.php')) {
				/* use idna class:
375
376
377
378
                 * @author  Matthias Sommerfeld <mso@phlylabs.de>
                 * @copyright 2004-2011 phlyLabs Berlin, http://phlylabs.de
                 * @version 0.8.0 2011-03-11
                 */
379
380
381
382
383
384
385
386
387
388

				if(!is_object($this->idn_converter) || $this->idn_converter_name != 'idna_convert.class') {
					include_once ISPC_CLASS_PATH.'/idn/idna_convert.class.php';
					$this->idn_converter = new idna_convert(array('idn_version' => 2008));
					$this->idn_converter_name = 'idna_convert.class';
				}
				$domain = $this->idn_converter->decode($domain);
			}
		}

389
390
391
392
		if($leading_dot == true) {
			$domain = '.' . $domain;
		}

393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
		if($user_part !== false) return $user_part . '@' . $domain;
		else return $domain;
	}

	public function idn_encode($domain) {
		$domains = explode("\n", $domain);
		for($d = 0; $d < count($domains); $d++) {
			$domains[$d] = $this->_idn_encode_decode($domains[$d], true);
		}
		return implode("\n", $domains);
	}

	public function idn_decode($domain) {
		$domains = explode("\n", $domain);
		for($d = 0; $d < count($domains); $d++) {
			$domains[$d] = $this->_idn_encode_decode($domains[$d], false);
		}
		return implode("\n", $domains);
	}

Marius Cramer's avatar
Marius Cramer committed
413
414
	public function is_allowed_user($username, $restrict_names = false) {
		global $app;
415

Till Brehm's avatar
Till Brehm committed
416
417
		$name_blacklist = array('root','ispconfig','vmail','getmail');
		if(in_array($username,$name_blacklist)) return false;
418

419
		if(preg_match('/^[a-zA-Z0-9\.\-_]{1,32}$/', $username) == false) return false;
420

Marius Cramer's avatar
Marius Cramer committed
421
		if($restrict_names == true && preg_match('/^web\d+$/', $username) == false) return false;
422

Marius Cramer's avatar
Marius Cramer committed
423
424
		return true;
	}
425

Marius Cramer's avatar
Marius Cramer committed
426
427
	public function is_allowed_group($groupname, $restrict_names = false) {
		global $app;
428

Till Brehm's avatar
Till Brehm committed
429
430
		$name_blacklist = array('root','ispconfig','vmail','getmail');
		if(in_array($groupname,$name_blacklist)) return false;
431

432
		if(preg_match('/^[a-zA-Z0-9\.\-_]{1,32}$/', $groupname) == false) return false;
433

Marius Cramer's avatar
Marius Cramer committed
434
		if($restrict_names == true && preg_match('/^client\d+$/', $groupname) == false) return false;
435

Marius Cramer's avatar
Marius Cramer committed
436
437
		return true;
	}
438

Marius Cramer's avatar
Marius Cramer committed
439
440
441
442
443
444
	public function getimagesizefromstring($string){
		if (!function_exists('getimagesizefromstring')) {
			$uri = 'data://application/octet-stream;base64,' . base64_encode($string);
			return getimagesize($uri);
		} else {
			return getimagesizefromstring($string);
445
		}
Marius Cramer's avatar
Marius Cramer committed
446
	}
447

448
449
	public function password($minLength = 10, $special = false){
		global $app;
450

451
452
453
		$iteration = 0;
		$password = "";
		$maxLength = $minLength + 5;
Jesse Norell's avatar
Jesse Norell committed
454
		$length = random_int($minLength, $maxLength);
455
456

		while($iteration < $length){
Jesse Norell's avatar
Jesse Norell committed
457
			$randomNumber = random_int(33, 126);
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
			if(!$special){
				if (($randomNumber >=33) && ($randomNumber <=47)) { continue; }
				if (($randomNumber >=58) && ($randomNumber <=64)) { continue; }
				if (($randomNumber >=91) && ($randomNumber <=96)) { continue; }
				if (($randomNumber >=123) && ($randomNumber <=126)) { continue; }
			}
			$iteration++;
			$password .= chr($randomNumber);
		}
		$app->uses('validate_password');
		if($app->validate_password->password_check('', $password, '') !== false) $password = $this->password($minLength, $special);
		return $password;
	}

	public function generate_customer_no(){
		global $app;
		// generate customer no.
		$customer_no = mt_rand(100000, 999999);
476
		while($app->db->queryOneRecord("SELECT client_id FROM client WHERE customer_no = ?", $customer_no)) {
477
478
			$customer_no = mt_rand(100000, 999999);
		}
479

480
481
		return $customer_no;
	}
482

483
484
	public function generate_ssh_key($client_id, $username = ''){
		global $app;
485

486
		// generate the SSH key pair for the client
487
488
489
		if (! $tmpdir = $app->system->exec_safe('mktemp -dt id_rsa.XXXXXXXX')) {
			$app->log("mktemp failed, cannot create SSH keypair for ".$username, LOGLEVEL_WARN);
		}
Jesse Norell's avatar
Jesse Norell committed
490
		$id_rsa_file = $tmpdir . uniqid('',true);
491
492
493
494
		$id_rsa_pub_file = $id_rsa_file.'.pub';
		if(file_exists($id_rsa_file)) unset($id_rsa_file);
		if(file_exists($id_rsa_pub_file)) unset($id_rsa_pub_file);
		if(!file_exists($id_rsa_file) && !file_exists($id_rsa_pub_file)) {
495
			$app->system->exec_safe('ssh-keygen -t rsa -C ? -f ? -N ""', $username.'-rsa-key-'.time(), $id_rsa_file);
496
			$app->db->query("UPDATE client SET created_at = UNIX_TIMESTAMP(), id_rsa = ?, ssh_rsa = ? WHERE client_id = ?", @file_get_contents($id_rsa_file), @file_get_contents($id_rsa_pub_file), $client_id);
Jesse Norell's avatar
Jesse Norell committed
497
			$app->system->rmdir($tmpdir, true);
498
499
500
501
		} else {
			$app->log("Failed to create SSH keypair for ".$username, LOGLEVEL_WARN);
		}
	}
502

503
504
505
506
507
	public function htmlentities($value) {
		global $conf;

		if(is_array($value)) {
			$out = array();
508
			foreach($value as $key => $val) {
509
510
511
512
513
514
515
516
517
				if(is_array($val)) {
					$out[$key] = $this->htmlentities($val);
				} else {
					$out[$key] = htmlentities($val, ENT_QUOTES, $conf["html_content_encoding"]);
				}
			}
		} else {
			$out = htmlentities($value, ENT_QUOTES, $conf["html_content_encoding"]);
		}
518

519
520
		return $out;
	}
521

Till Brehm's avatar
Till Brehm committed
522
523
	// Function to check paths before we use it as include. Use with absolute paths only.
	public function check_include_path($path) {
Till Brehm's avatar
#5102    
Till Brehm committed
524
525
		if(strpos($path,'//') !== false) die('Include path seems to be an URL: '.$this->htmlentities($path));
		if(strpos($path,'..') !== false) die('Two dots are not allowed in include path: '.$this->htmlentities($path));
Till Brehm's avatar
Till Brehm committed
526
		if(!preg_match("/^[a-zA-Z0-9_\/\.\-]+$/", $path)) die('Wrong chars in include path: '.$this->htmlentities($path));
Till Brehm's avatar
Till Brehm committed
527
528
529
530
531
		$path = realpath($path);
		if($path == '') die('Include path does not exist.');
		if(substr($path,0,strlen(ISPC_ROOT_PATH)) != ISPC_ROOT_PATH) die('Path '.$this->htmlentities($path).' is outside of ISPConfig installation directory.');
		return $path;
	}
532

Till Brehm's avatar
Till Brehm committed
533
534
535
536
537
538
	// Function to check language strings
	public function check_language($language) {
		global $app;
		if(preg_match('/^[a-z]{2}$/',$language)) {
			 return $language;
		} else {
Till Brehm's avatar
Till Brehm committed
539
			$app->log('Wrong language string: '.$this->htmlentities($language),1);
540
			return 'en';
Till Brehm's avatar
Till Brehm committed
541
542
		}
	}
543

544
        // Function to lock a client
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
	public function func_client_lock($client_id,$locked) {
		global $app;
		$client_data = $app->db->queryOneRecord('SELECT `tmp_data` FROM `client` WHERE `client_id` = ?', $client_id);
		if($client_data['tmp_data'] == '') $tmp_data = array();
		else $tmp_data = unserialize($client_data['tmp_data']);
		if(!is_array($tmp_data)) $tmp_data = array();
		$to_disable = array('cron' => 'id',
							'ftp_user' => 'ftp_user_id',
							'mail_domain' => 'domain_id',
							'mail_user' => 'mailuser_id',
							'mail_user_smtp' => 'mailuser_id',
							'mail_forwarding' => 'forwarding_id',
							'mail_get' => 'mailget_id',
							'openvz_vm' => 'vm_id',
							'shell_user' => 'shell_user_id',
							'webdav_user' => 'webdav_user_id',
							'web_database' => 'database_id',
							'web_domain' => 'domain_id',
							'web_folder' => 'web_folder_id',
							'web_folder_user' => 'web_folder_user_id'
							);
		$udata = $app->db->queryOneRecord('SELECT `userid` FROM `sys_user` WHERE `client_id` = ?', $client_id);
		$gdata = $app->db->queryOneRecord('SELECT `groupid` FROM `sys_group` WHERE `client_id` = ?', $client_id);
		$sys_groupid = $gdata['groupid'];
		$sys_userid = $udata['userid'];
		if($locked == 'y') {
			$prev_active = array();
			$prev_sysuser = array();
			foreach($to_disable as $current => $keycolumn) {
				$active_col = 'active';
				$reverse = false;
				if($current == 'mail_user') {
						$active_col = 'postfix';
				} elseif($current == 'mail_user_smtp') {
						$current = 'mail_user';
						$active_col = 'disablesmtp';
						$reverse = true;
				}

				if(!isset($prev_active[$current])) $prev_active[$current] = array();
				if(!isset($prev_sysuser[$current])) $prev_sysuser[$current] = array();

				$entries = $app->db->queryAllRecords('SELECT ?? as `id`, `sys_userid`, ?? FROM ?? WHERE `sys_groupid` = ?', $keycolumn, $active_col, $current, $sys_groupid);
				foreach($entries as $item) {

						if($item[$active_col] != 'y' && $reverse == false) $prev_active[$current][$item['id']][$active_col] = 'n';
						elseif($item[$active_col] == 'y' && $reverse == true) $prev_active[$current][$item['id']][$active_col] = 'y';
						if($item['sys_userid'] != $sys_userid) $prev_sysuser[$current][$item['id']] = $item['sys_userid'];
						// we don't have to store these if y, as everything without previous state gets enabled later

						//$app->db->datalogUpdate($current, array($active_col => ($reverse == true ? 'y' : 'n'), 'sys_userid' => $_SESSION["s"]["user"]["userid"]), $keycolumn, $item['id']);
						$app->db->datalogUpdate($current, array($active_col => ($reverse == true ? 'y' : 'n'), 'sys_userid' => $sys_userid), $keycolumn, $item['id']);
				}
			}
599

600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
			$tmp_data['prev_active'] = $prev_active;
			$tmp_data['prev_sys_userid'] = $prev_sysuser;
			$app->db->query("UPDATE `client` SET `tmp_data` = ? WHERE `client_id` = ?", serialize($tmp_data), $client_id);
			unset($prev_active);
			unset($prev_sysuser);
		} elseif ($locked == 'n') {
			foreach($to_disable as $current => $keycolumn) {
				$active_col = 'active';
				$reverse = false;
				if($current == 'mail_user') {
						$active_col = 'postfix';
				} elseif($current == 'mail_user_smtp') {
						$current = 'mail_user';
						$active_col = 'disablesmtp';
						$reverse = true;
				}

				$entries = $app->db->queryAllRecords('SELECT ?? as `id` FROM ?? WHERE `sys_groupid` = ?', $keycolumn, $current, $sys_groupid);
				foreach($entries as $item) {
						$set_active = ($reverse == true ? 'n' : 'y');
						$set_inactive = ($reverse == true ? 'y' : 'n');
						$set_sysuser = $sys_userid;
						if(array_key_exists('prev_active', $tmp_data) == true
								&& array_key_exists($current, $tmp_data['prev_active']) == true
								&& array_key_exists($item['id'], $tmp_data['prev_active'][$current]) == true
								&& $tmp_data['prev_active'][$current][$item['id']][$active_col] == $set_inactive) $set_active = $set_inactive;
						if(array_key_exists('prev_sysuser', $tmp_data) == true
								&& array_key_exists($current, $tmp_data['prev_sysuser']) == true
								&& array_key_exists($item['id'], $tmp_data['prev_sysuser'][$current]) == true
								&& $tmp_data['prev_sysuser'][$current][$item['id']] != $sys_userid) $set_sysuser = $tmp_data['prev_sysuser'][$current][$item['id']];
						$app->db->datalogUpdate($current, array($active_col => $set_active, 'sys_userid' => $set_sysuser), $keycolumn, $item['id']);
				}
			}
			if(array_key_exists('prev_active', $tmp_data)) unset($tmp_data['prev_active']);
			$app->db->query("UPDATE `client` SET `tmp_data` = ? WHERE `client_id` = ?", serialize($tmp_data), $client_id);
		}
		unset($tmp_data);
		unset($entries);
		unset($to_disable);
    }
    // Function to cancel disable/enable a client
	public function func_client_cancel($client_id,$cancel) {
		global $app;
		if ($cancel == 'y') {
			$sql = "UPDATE sys_user SET active = '0' WHERE client_id = ?";
			$result = $app->db->query($sql, $client_id);
		} elseif($cancel == 'n') {
			$sql = "UPDATE sys_user SET active = '1' WHERE client_id = ?";
			$result = $app->db->query($sql, $client_id);
		} else {
			$result = false;
		}
		return $result;
	}	
654

latham's avatar
latham committed
655
656
}

657
?>