index.php 19 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581
  1. <?php
  2. require_once(dirname(dirname(__FILE__)).'/header.php');
  3. header('X-UA-Compatible: IE=Edge');
  4. global $user;
  5. if($user = is_logged_in()){
  6. if(has_flag($user,'a')){
  7. $servers = get_servers_obj();
  8. $opers = get_opers_obj();
  9. }else{
  10. $servers = get_servers_for_current_user_obj();
  11. $opers = get_opers_for_current_user_obj();
  12. }
  13. }
  14. $dialogs = array();
  15. ?>
  16. <html>
  17. <head>
  18. <meta charset="UTF-8">
  19. <title>Omninet</title>
  20. <script>
  21. __HOSTNAME__ = '<?php echo HOSTNAME; ?>';
  22. </script>
  23. <link href="<?php echo HOSTNAME; ?>site/favicon.ico" rel="icon" type="image/x-icon" />
  24. <script src="<?php echo HOSTNAME; ?>site/js/pomo.min.js"></script>
  25. <script src="<?php echo HOSTNAME; ?>site/js/Modernizr.js"></script>
  26. <script src="//cdnjs.cloudflare.com/ajax/libs/jquery/2.1.0/jquery.min.js"></script>
  27. <script src="//cdnjs.cloudflare.com/ajax/libs/jqueryui/1.10.3/jquery-ui.min.js"></script>
  28. <script src="//cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.0/jquery.cookie.min.js"></script>
  29. <script src="//cdnjs.cloudflare.com/ajax/libs/selectize.js/0.8.5/js/selectize.min.js"></script>
  30. <script src="<?php echo HOSTNAME; ?>site/js/jquery.treegrid.js"></script>
  31. <script src="//cdnjs.cloudflare.com/ajax/libs/history.js/1.8/bundled/html5/jquery.history.min.js"></script>
  32. <script src="<?php echo HOSTNAME; ?>site/js/jquery.timepicker.js"></script>
  33. <script src="<?php echo HOSTNAME; ?>site/js/jquery.ba-resize.min.js"></script>
  34. <?php if(get_conf('2-factor-method') == 'authy'){ ?>
  35. <script src="//cdnjs.cloudflare.com/ajax/libs/authy-forms.js/2.0/form.authy.min.js"></script>
  36. <?php } ?>
  37. <script src="//cdnjs.cloudflare.com/ajax/libs/jquery-url-parser/2.3.1/purl.min.js"></script>
  38. <script src="//cdnjs.cloudflare.com/ajax/libs/handlebars.js/4.0.2/handlebars.min.js"></script>
  39. <?php if(get_conf('persona-endpoint') != 'none'){ ?>
  40. <script src="//login.persona.org/include.js"></script>
  41. <?php } ?>
  42. <script src="<?php echo HOSTNAME; ?>site/js/index.js"></script>
  43. <link href="//code.jquery.com/ui/1.10.4/themes/dot-luv/jquery-ui.css" rel="stylesheet"/>
  44. <link href="//cdnjs.cloudflare.com/ajax/libs/selectize.js/0.8.5/css/selectize.css" rel="stylesheet"/>
  45. <link href="//cdnjs.cloudflare.com/ajax/libs/selectize.js/0.8.5/css/selectize.default.css" rel="stylesheet"/>
  46. <link href="<?php echo HOSTNAME; ?>site/jquery.treegrid.css" rel="stylesheet"/>
  47. <link href="<?php echo HOSTNAME; ?>site/jquery.timepicker.css" rel="stylesheet"/>
  48. <?php if(get_conf('2-factor-method') == 'authy'){ ?>
  49. <link href="//cdnjs.cloudflare.com/ajax/libs/authy-forms.css/2.0/form.authy.min.css" rel="stylesheet"/>
  50. <?php } ?>
  51. <link href="<?php echo HOSTNAME; ?>site/index.css" rel="stylesheet"/>
  52. <script>
  53. function runWhenExists(name){
  54. var run = function(){
  55. if(typeof window[name] != 'function'){
  56. setTimeout(run,10);
  57. }else{
  58. window[name]();
  59. }
  60. };
  61. run();
  62. }
  63. </script>
  64. <?php
  65. if($user){
  66. echo "<script>function delayedload(){";
  67. if(is_logged_in() && is_verified()){
  68. echo "runWhenExists('ServerPing');";
  69. }
  70. if(has_flag($user,'u')){
  71. echo "runWhenExists('FetchMemos');";
  72. echo "runWhenExists('FetchNews');";
  73. echo "runWhenExists('FetchChannels');";
  74. }
  75. echo "};</script>";
  76. if(has_flag($user,'u')){ ?>
  77. <script id="template-memos" type="text/x-handlebars-template">
  78. <button class="button" value="<?php echo __('Refresh'); ?>" onclick="window.FetchMemos(true);">
  79. <?php echo __('Refresh'); ?>
  80. </button>
  81. <button style="background-color:green;background-image:none;" class="button" value="<?php echo __('New Memo'); ?>" id="send-memo" onclick="$('#memo-diag').dialog('open');">
  82. <?php echo __('New Memo'); ?>
  83. </button>
  84. <button class="button" style="background-color:red;background-image:none;" value="<?php echo __('Delete All'); ?>" onclick="return window.DeleteMemos();">
  85. <?php echo __('Delete All'); ?>
  86. </button>
  87. {{#each memos}}
  88. <div style="padding: 5px;" class="ui-widget ui-state-default ui-corner-all" id="memo-{{this.id}}">
  89. <div>
  90. <span>
  91. <?php echo __('From'); ?>:
  92. </span>
  93. <span style="font-weight:normal;" class='memo-from'>
  94. {{this.from}}
  95. </span>
  96. </div>
  97. <div>
  98. <span>
  99. <?php echo __('Sent'); ?>:
  100. </span>
  101. <span style="font-weight:normal;" class='memo-date'>
  102. {{this.date}}
  103. </span>
  104. </div>
  105. <div>
  106. <span>
  107. <?php echo __('Body'); ?>:
  108. </span>
  109. <span style="font-weight:normal;" class="memo-body">
  110. {{html this.body}}
  111. </span>
  112. </div>
  113. <button class="button" value="<?php echo __('Reply'); ?>" onclick="return window.ReplyToMemo('{{this.from}}');">
  114. <?php echo __('Reply'); ?>
  115. </button>
  116. <button style="background-color:red;background-image:none;" class="button" value="<?php echo __('Delete'); ?>" onclick="return window.DeleteMemo({{this.id}});">
  117. <?php echo __('Delete'); ?>
  118. </button>
  119. </div>
  120. {{/each}}
  121. </script>
  122. <script id="template-news" type="text/x-handlebars-template">
  123. <button value="<?php echo __('Refresh'); ?>" onclick="window.FetchNews(true);">
  124. <?php echo __('Refresh'); ?>
  125. </button>
  126. {{#each news}}
  127. <div id="news-{{this.id}}" class="ui-widget ui-state-default ui-corner-all" style="padding:5px;">
  128. <h2>
  129. {{this.title}}
  130. </h2>
  131. <div>
  132. <span>
  133. <?php echo __('From'); ?>:
  134. </span>
  135. <span style="font-weight:normal;">
  136. {{this.from}}
  137. </span>
  138. </div>
  139. <div>
  140. <span>
  141. <?php echo __('Sent'); ?>:
  142. </span>
  143. <span style="font-weight:normal;">
  144. {{this.date}}
  145. </span>
  146. </div>
  147. <p style="font-weight:normal;">
  148. {{html this.body}}
  149. </p>
  150. </div>
  151. {{/each}}
  152. </script>
  153. <script id="template-channels" type="text/x-handlebars-template">
  154. <button value="<?php echo __('Refresh'); ?>" onclick="window.FetchChannels(true);">
  155. <?php echo __('Refresh'); ?>
  156. </button>
  157. <button value="<?php echo __('New Channel'); ?>" style="background-color:green;background-image:none;" onclick="$('#channel-diag').dialog('open');">
  158. <?php echo __('New Channel'); ?>
  159. </button>
  160. {{#each channels}}
  161. <div id="channel-{{this.name}}" class="ui-widget ui-state-default ui-corner-all" style="padding:5px;">
  162. {{this.name}}
  163. <table class="tree">
  164. <tr style='font-weight:bold;' class='treegrid-0'>
  165. <td>
  166. <?php echo __('Access'); ?>
  167. </td>
  168. <td></td>
  169. </tr>
  170. {{#each this.users}}
  171. <tr style='font-weight:bold;' class='treegrid-{{this.id}} treegrid-parent-0'>
  172. <td>
  173. {{this.name}}
  174. </td>
  175. <td>
  176. {{#if ../canaccess}}
  177. <a onclick="window.ModifyChannelAccess('{{../name}}','{{this.name}}',{{this.id}});" style="cursor:pointer;">
  178. <?php echo __('Modify'); ?>
  179. </a>
  180. {{/if}}
  181. </td>
  182. </tr>
  183. {{#each this.flags}}
  184. <tr class='treegrid-{{this.flag}} treegrid-parent-{{../id}}'>
  185. <td></td>
  186. <td>
  187. {{this.name}}
  188. </td>
  189. </tr>
  190. {{/each}}
  191. {{/each}}
  192. </table>
  193. </ul>
  194. {{#if this.canaccess}}
  195. <button value="<?php echo __('Add Access'); ?>" onclick="window.ModifyChannelAccess('{{this.name}}');">
  196. <?php echo __('Add Access'); ?>
  197. </button>
  198. {{/if}}
  199. {{#if this.candrop}}
  200. <button value="<?php echo __('Delete'); ?>" style="background-color:red;background-image:none;" onclick="window.DeleteChannel('{{this.name}}');">
  201. <?php echo __('Delete'); ?>
  202. </button>
  203. {{/if}}
  204. </div>
  205. {{/each}}
  206. </script>
  207. <?php }
  208. }
  209. ?>
  210. </head>
  211. <body style="display:none;">
  212. <?php
  213. $flag = is_verified();
  214. if($user && $flag){
  215. ?>
  216. <div class="tabs">
  217. <ul>
  218. <?php
  219. if(has_flag($user,'u')){ ?>
  220. <li><a href="#news"><?php echo __('News'); ?></a></li>
  221. <li><a href="#memos"><?php echo __('Memos'); ?></a></li>
  222. <li><a href="#channels"><?php echo __('Channels'); ?></a></li>
  223. <?php }
  224. echo has_flag($user,'n')?'<li><a href="#servers">'.__('Servers').'</a></li>':'';
  225. echo has_flag($user,'o')?'<li><a href="#opers">'.__('Opers').'</a></li>':'';
  226. echo has_flag($user,'a')?'<li><a href="#config">'.__('Configuration').'</a></li>':'';
  227. ?>
  228. <li><a href="#profile"><?php echo __('Profile'); ?></a></li>
  229. <div id="user-menu-button" class="right button">
  230. <?php echo $user['nick']; ?>
  231. </div>
  232. </ul>
  233. <?php if(has_flag($user,'n')){?>
  234. <div id="servers">
  235. <?php
  236. echo get_servers_list_html($servers);
  237. ?>
  238. </div>
  239. <?php }
  240. if(has_flag($user,'o')){?>
  241. <div id="opers">
  242. <?php echo get_opers_html($opers); ?>
  243. </div>
  244. <?php }
  245. if(has_flag($user,'a')){ ?>
  246. <div id="config">
  247. <?php echo render_configuration_table(); ?>
  248. </div>
  249. <?php }
  250. if(has_flag($user,'u')){ ?>
  251. <div id="news"></div>
  252. <div id="memos"></div>
  253. <div id="channels"></div>
  254. <?php
  255. array_push($dialogs,array(
  256. 'id'=>'memo-diag',
  257. 'type'=>'form',
  258. 'form_id'=>'memo',
  259. 'form_submit_label'=>__('Send'),
  260. 'form_fields'=>array(
  261. array(
  262. 'name'=>'to',
  263. 'label'=>__('To'),
  264. 'type'=>'string',
  265. 'value'=>''
  266. ),
  267. array(
  268. 'name'=>'message',
  269. 'label'=>__('Message'),
  270. 'type'=>'string',
  271. 'value'=>''
  272. ),
  273. array(
  274. 'name'=>'action',
  275. 'type'=>'hidden',
  276. 'value'=>'send-memo'
  277. )
  278. )
  279. ));
  280. array_push($dialogs,array(
  281. 'id'=>'channel-diag',
  282. 'type'=>'form',
  283. 'form_id'=>'channel',
  284. 'form_submit_label'=>__('Register'),
  285. 'form_fields'=>array(
  286. array(
  287. 'name'=>'channel',
  288. 'label'=>__('Channel Name'),
  289. 'type'=>'string',
  290. 'value'=>''
  291. ),
  292. array(
  293. 'name'=>'action',
  294. 'type'=>'hidden',
  295. 'value'=>'register-channel'
  296. )
  297. )
  298. ));
  299. array_push($dialogs,array(
  300. 'id'=>'channel-flags-diag',
  301. 'type'=>'form',
  302. 'form_id'=>'channel-flags',
  303. 'form_submit_label'=>__('Modify'),
  304. 'form_fields'=>array(
  305. array(
  306. 'name'=>'user',
  307. 'label'=>__('User'),
  308. 'type'=>'string',
  309. 'value'=>''
  310. ),
  311. array(
  312. 'name'=>'flags',
  313. 'label'=>__('Flags'),
  314. 'type'=>'multi',
  315. 'values'=>array(
  316. channel_flag_obj('A'),
  317. channel_flag_obj('F'),
  318. channel_flag_obj('O'),
  319. channel_flag_obj('R'),
  320. channel_flag_obj('V'),
  321. channel_flag_obj('a'),
  322. channel_flag_obj('f'),
  323. channel_flag_obj('h'),
  324. channel_flag_obj('i'),
  325. channel_flag_obj('o'),
  326. channel_flag_obj('q'),
  327. channel_flag_obj('r'),
  328. channel_flag_obj('s'),
  329. channel_flag_obj('t'),
  330. channel_flag_obj('v'),
  331. channel_flag_obj('b')
  332. )
  333. ),
  334. array(
  335. 'name'=>'channel',
  336. 'type'=>'hidden',
  337. 'value'=>''
  338. ),
  339. array(
  340. 'name'=>'action',
  341. 'type'=>'hidden',
  342. 'value'=>'channel-flags'
  343. )
  344. )
  345. ));
  346. } ?>
  347. <div id="profile">
  348. <?php
  349. echo get_user_html($user);
  350. if(has_flag($user,'a') || has_flag($user,'o') || has_flag($user,'n')){
  351. if(!isset($user['secret_key']) || is_null($user['secret_key']) || $user['secret_key'] == ''){
  352. switch(get_conf('2-factor-method')){
  353. case 'authy':
  354. echo '<div class="login-form">Enable 2-factor Authentication'.get_form_html('2-factor',array(
  355. array(
  356. 'name'=>'country-code',
  357. 'label'=>__('Country'),
  358. 'type'=>'text',
  359. 'attributes'=>array(
  360. 'id'=>'authy-countries'
  361. )
  362. ),
  363. array(
  364. 'name'=>'cellphone',
  365. 'label'=>__('Cell #'),
  366. 'type'=>'text',
  367. 'attributes'=>array(
  368. 'id'=>'authy-cellphone'
  369. )
  370. ),
  371. array(
  372. 'name'=>'action',
  373. 'type'=>'hidden',
  374. 'value'=>'2-factor-register'
  375. )
  376. ),'Submit').'</div>';
  377. break;
  378. case 'google-authenticator':
  379. $api = get_api();
  380. $_SESSION['secret_key'] = $api->createSecret();
  381. echo '<div class="login-form">Enable 2-factor Authentication'.get_form_html('2-factor',array(
  382. array(
  383. 'type'=>'custom',
  384. 'html'=>"<img src='data:image/png;base64,".base64_encode(file_get_contents($api->getQRCodeGoogleUrl('Omninet',$_SESSION['secret_key'])))."'/>"
  385. ),
  386. array(
  387. 'name'=>'token',
  388. 'label'=>__('Token'),
  389. 'type'=>'text'
  390. ),
  391. array(
  392. 'name'=>'action',
  393. 'type'=>'hidden',
  394. 'value'=>'2-factor-register'
  395. )
  396. ),'Submit').'</div>';
  397. break;
  398. default:
  399. }
  400. }else{
  401. switch(get_conf('2-factor-method')){
  402. case 'authy':case 'google-authenticator':
  403. echo "<button id='2-factor-disable' value='".('Disable 2-factor')."'>".__('Disable 2-factor')."</button>";
  404. break;
  405. default:
  406. }
  407. }
  408. if(get_conf('persona-endpoint') != 'none'){
  409. echo "<div><span id='persona-register' class='ui-button ui-widget ui-state-default ui-corner-all' style='overflow:hidden;height:42px;padding:0px 20px 0px 0px;vertical-align:middle;'><img style='height:100%;float:left;' src='img/persona-logo.png'/><span style='display:inline-block;line-height:42px;'>".__('Link Persona')."</span></span></div>";
  410. $emails = get_emails($user['id'],true);
  411. foreach($emails as $k => $email){
  412. echo "<div><button id='persona-remove-{$email['id']}' value='".__('Remove')."'>".__('Remove')."</button>{$email['email']}</div>";
  413. }
  414. }
  415. }
  416. ?>
  417. </div>
  418. </div>
  419. <ul class="menu" id="user-menu">
  420. <li><a id="roles-button"><?php echo __('Switch Role'); ?></a></li>
  421. <?php if(has_flag($user,'n')||has_flag($user,'a')){?>
  422. <li><a id="rehash-servers"><?php echo __('Rehash'); ?></a></li>
  423. <?php } ?>
  424. <li><a id="newpass-button"><?php echo __('Change Password'); ?></a></li>
  425. <?php if(has_flag($user,'u')){ ?>
  426. <li><a id="sync-pass"><?php echo __('Sync Password'); ?></a></li>
  427. <li><a id="sync-groups"><?php echo __('Sync Groups'); ?></a></li>
  428. <?php } ?>
  429. <li><a id="logout"><?php echo __('Logout'); ?></a></li>
  430. </ul>
  431. <?php
  432. array_push($dialogs,array(
  433. 'id'=>'newpass-diag',
  434. 'type'=>'form',
  435. 'form_id'=>'newpass',
  436. 'form_submit_label'=>__('Change Password'),
  437. 'form_fields'=>array(
  438. array(
  439. 'name'=>'password',
  440. 'label'=>__('Password'),
  441. 'type'=>'password',
  442. 'value'=>''
  443. ),
  444. array(
  445. 'name'=>'newpass',
  446. 'label'=>__('New Password'),
  447. 'type'=>'password',
  448. 'value'=>''
  449. ),
  450. array(
  451. 'name'=>'action',
  452. 'type'=>'hidden',
  453. 'value'=>'newpass'
  454. )
  455. )
  456. ));
  457. $roles = array(array(
  458. 'value'=>'user',
  459. 'label'=>__('User')
  460. ));
  461. if($res = query("SELECT rt.name AS value,rt.description AS label FROM user_role_types rt JOIN user_roles r ON r.user_role_id = rt.id JOIN users u ON r.user_id = u.id WHERE u.id = %d",array($user['id']))){
  462. while($role = $res->fetch_assoc()){
  463. array_push($roles,$role);
  464. }
  465. }
  466. array_push($dialogs,array(
  467. 'id'=>'roles-diag',
  468. 'type'=>'form',
  469. 'form_id'=>'roles',
  470. 'form_submit_label'=>__('Switch'),
  471. 'form_fields'=>array(
  472. array(
  473. 'name'=>'type',
  474. 'label'=>__('Type'),
  475. 'type'=>'select',
  476. 'values'=>$roles,
  477. 'value'=>isset($_COOKIE['type'])?$_COOKIE['type']:'user'
  478. ),
  479. array(
  480. 'name'=>'action',
  481. 'type'=>'hidden',
  482. 'value'=>'role'
  483. )
  484. )
  485. ));
  486. }elseif($user && !$flag){
  487. array_push($dialogs,array(
  488. 'id'=>'verify-diag',
  489. 'type'=>'form',
  490. 'autocomplete'=>'off',
  491. 'form_id'=>'verify',
  492. 'form_submit_label'=>__('Login'),
  493. 'form_fields'=>array(
  494. array(
  495. 'name'=>'token',
  496. 'label'=>__('2-Factor Verification'),
  497. 'type'=>'text',
  498. 'attributes'=>array(
  499. 'id'=>'authy-token',
  500. 'style'=>'background-color:#F2DEDE;'
  501. )
  502. ),
  503. array(
  504. 'name'=>'action',
  505. 'type'=>'hidden',
  506. 'value'=>'verify'
  507. )
  508. )
  509. ));
  510. }else{
  511. $roles = array(array(
  512. 'value'=>'user',
  513. 'label'=>__('User')
  514. ));
  515. if($res = query("SELECT name AS value,description AS label FROM ircd.user_role_types")){
  516. while($role = $res->fetch_assoc()){
  517. array_push($roles,$role);
  518. }
  519. }
  520. array_push($dialogs,array(
  521. 'id'=>'login-diag',
  522. 'type'=>'form',
  523. 'form_id'=>'login',
  524. 'form_submit_label'=>__('Login'),
  525. 'form_fields'=>array(
  526. array(
  527. 'type'=>'custom',
  528. 'html'=>get_conf('persona-endpoint') != 'none'?"<div><span id='persona-register' class='ui-button ui-widget ui-state-default ui-corner-all' style='overflow:hidden;height:42px;padding:0px 20px 0px 0px;vertical-align:middle;'><img style='height:100%;float:left;' src='img/persona-logo.png'/><span style='display:inline-block;line-height:42px;'>".__('Persona')."</span></span></div>":''
  529. ),
  530. array(
  531. 'name'=>'username',
  532. 'label'=>__('Username'),
  533. 'type'=>'text',
  534. 'value'=>''
  535. ),
  536. array(
  537. 'name'=>'password',
  538. 'label'=>__('Password'),
  539. 'type'=>'password',
  540. 'value'=>''
  541. ),
  542. array(
  543. 'name'=>'type',
  544. 'label'=>__('Type'),
  545. 'type'=>'select',
  546. 'values'=>$roles
  547. ),
  548. array(
  549. 'name'=>'action',
  550. 'type'=>'hidden',
  551. 'value'=>'login'
  552. )
  553. )
  554. ));
  555. }
  556. ?>
  557. <div id="dialogs">
  558. <?php
  559. foreach($dialogs as $k => $diag){
  560. echo "<div id='{$diag['id']}'>";
  561. switch($diag['type']){
  562. case 'form':
  563. array_push($diag['form_fields'],array(
  564. 'type'=>'submit',
  565. 'value'=>$diag['form_submit_label']
  566. ));
  567. $attributes = array(
  568. 'id'=>$diag['form_id']
  569. );
  570. if(isset($diag['autocomplete'])){
  571. $attributes['autocomplete'] = $diag['autocomplete'];
  572. }
  573. echo get_form_html_advanced($attributes,$diag['form_fields']);
  574. break;
  575. }
  576. echo "</div>";
  577. }
  578. ?>
  579. </div>
  580. </body>
  581. </html>