BackupPC/CGI/Lib.pm

#============================================================= -*-perl-*-
#
# BackupPC::CGI::Lib package
#
# DESCRIPTION
#
#   This library defines a BackupPC::Lib class and a variety of utility
#   functions used by BackupPC.
#
# AUTHOR
#   Craig Barratt  <cbarratt@users.sourceforge.net>
#
# COPYRIGHT
#   Copyright (C) 2003  Craig Barratt
#
#   This program is free software; you can redistribute it and/or modify
#   it under the terms of the GNU General Public License as published by
#   the Free Software Foundation; either version 2 of the License, or
#   (at your option) any later version.
#
#   This program is distributed in the hope that it will be useful,
#   but WITHOUT ANY WARRANTY; without even the implied warranty of
#   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#   GNU General Public License for more details.
#
#   You should have received a copy of the GNU General Public License
#   along with this program; if not, write to the Free Software
#   Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
#
#========================================================================
#
# Version 2.1.2, released 5 Sep 2005.
#
# See http://backuppc.sourceforge.net.
#
#========================================================================

package BackupPC::CGI::Lib;

use strict;
use BackupPC::Lib;

require Exporter;

use vars qw( @ISA @EXPORT @EXPORT_OK %EXPORT_TAGS );

use vars qw($Cgi %In $MyURL $User %Conf $TopDir $BinDir $bpc);
use vars qw(%Status %Info %Jobs @BgQueue @UserQueue @CmdQueue
            %QueueLen %StatusHost);
use vars qw($Hosts $HostsMTime $ConfigMTime $PrivAdmin);
use vars qw(%UserEmailInfo $UserEmailInfoMTime %RestoreReq %ArchiveReq);
use vars qw($Lang);

@ISA = qw(Exporter);

@EXPORT    = qw( );

@EXPORT_OK = qw(
                    timeStamp2
                    HostLink
                    UserLink
                    EscHTML
                    EscURI
                    ErrorExit
                    ServerConnect
                    GetStatusInfo
                    ReadUserEmailInfo
                    CheckPermission
                    GetUserHosts
                    ConfirmIPAddress
                    Header
                    Trailer
                    NavSectionTitle
                    NavSectionStart
                    NavSectionEnd
                    NavLink
                    h1
                    h2
                    $Cgi %In $MyURL $User %Conf $TopDir $BinDir $bpc
                    %Status %Info %Jobs @BgQueue @UserQueue @CmdQueue
                    %QueueLen %StatusHost
                    $Hosts $HostsMTime $ConfigMTime $PrivAdmin
                    %UserEmailInfo $UserEmailInfoMTime %RestoreReq %ArchiveReq
                    $Lang
             );

%EXPORT_TAGS = (
    'all'    => [ @EXPORT_OK ],
);

sub NewRequest
{
    $Cgi = new CGI;
    %In = $Cgi->Vars;

    if ( !defined($bpc) ) {
        ErrorExit($Lang->{BackupPC__Lib__new_failed__check_apache_error_log})
            if ( !($bpc = BackupPC::Lib->new(undef, undef, 1)) );
        $TopDir = $bpc->TopDir();
        $BinDir = $bpc->BinDir();
        %Conf   = $bpc->Conf();
        $Lang   = $bpc->Lang();
        $ConfigMTime = $bpc->ConfigMTime();
    } elsif ( $bpc->ConfigMTime() != $ConfigMTime ) {
        $bpc->ConfigRead();
        %Conf   = $bpc->Conf();
        $Lang   = $bpc->Lang();
        $ConfigMTime = $bpc->ConfigMTime();
    }

    #
    # Default REMOTE_USER so in a miminal installation the user
    # has a sensible default.
    #
    $ENV{REMOTE_USER} = $Conf{BackupPCUser} if ( $ENV{REMOTE_USER} eq "" );

    #
    # We require that Apache pass in $ENV{SCRIPT_NAME} and $ENV{REMOTE_USER}.
    # The latter requires .ht_access style authentication.  Replace this
    # code if you are using some other type of authentication, and have
    # a different way of getting the user name.
    #
    $MyURL  = $ENV{SCRIPT_NAME};
    $User   = $ENV{REMOTE_USER};

    #
    # Clean up %ENV for taint checking
    #
    delete @ENV{qw(IFS CDPATH ENV BASH_ENV)};
    $ENV{PATH} = $Conf{MyPath};

    #
    # Verify we are running as the correct user
    #
    if ( $Conf{BackupPCUserVerify}
            && $> != (my $uid = (getpwnam($Conf{BackupPCUser}))[2]) ) {
        ErrorExit(eval("qq{$Lang->{Wrong_user__my_userid_is___}}"), <<EOF);
This script needs to run as the user specified in \$Conf{BackupPCUser},
which is set to $Conf{BackupPCUser}.
<p>
This is an installation problem.  If you are using mod_perl then
it appears that Apache is not running as user $Conf{BackupPCUser}.
If you are not using mod_perl, then most like setuid is not working
properly on BackupPC_Admin.  Check the permissions on
$Conf{CgiDir}/BackupPC_Admin and look at the documentation.
EOF
    }

    if ( !defined($Hosts) || $bpc->HostsMTime() != $HostsMTime ) {
        $HostsMTime = $bpc->HostsMTime();
        $Hosts = $bpc->HostInfoRead();

        # turn moreUsers list into a hash for quick lookups
        foreach my $host (keys %$Hosts) {
           $Hosts->{$host}{moreUsers} =
               {map {$_, 1} split(",", $Hosts->{$host}{moreUsers}) }
        }
    }

    #
    # Untaint the host name
    #
    if ( $In{host} =~ /^([\w.\s-]+)$/ ) {
        $In{host} = $1;
    } else {
        delete($In{host});
    }
}

sub timeStamp2
{
    my($sec,$min,$hour,$mday,$mon,$year,$wday,$yday,$isdst)
              = localtime($_[0] == 0 ? time : $_[0] );
    $mon++;
    if ( $Conf{CgiDateFormatMMDD} ) {
        return sprintf("$mon/$mday %02d:%02d", $hour, $min);
    } else {
        return sprintf("$mday/$mon %02d:%02d", $hour, $min);
    }
}

sub HostLink
{
    my($host) = @_;
    my($s);
    if ( defined($Hosts->{$host}) || defined($Status{$host}) ) {
        $s = "<a href=\"$MyURL?host=${EscURI($host)}\">$host</a>";
    } else {
        $s = $host;
    }
    return \$s;
}

sub UserLink
{
    my($user) = @_;
    my($s);

    return \$user if ( $user eq ""
                    || $Conf{CgiUserUrlCreate} eq "" );
    if ( $Conf{CgiUserHomePageCheck} eq ""
            || -f sprintf($Conf{CgiUserHomePageCheck}, $user, $user, $user) ) {
        $s = "<a href=\""
             . sprintf($Conf{CgiUserUrlCreate}, $user, $user, $user)
             . "\">$user</a>";
    } else {
        $s = $user;
    }
    return \$s;
}

sub EscHTML
{
    my($s) = @_;
    $s =~ s/&/&amp;/g;
    $s =~ s/\"/&quot;/g;
    $s =~ s/>/&gt;/g;
    $s =~ s/</&lt;/g;
    $s =~ s{([^[:print:]])}{sprintf("&\#x%02X;", ord($1));}eg;
    return \$s;
}

sub EscURI
{
    my($s) = @_;
    $s =~ s{([^\w.\/-])}{sprintf("%%%02X", ord($1));}eg;
    return \$s;
}

sub ErrorExit
{
    my(@mesg) = @_;
    my($head) = shift(@mesg);
    my($mesg) = join("</p>\n<p>", @mesg);

    if ( !defined($ENV{REMOTE_USER}) ) {
        $mesg .= <<EOF;
<p>
Note: \$ENV{REMOTE_USER} is not set, which could mean there is an
installation problem.  BackupPC_Admin expects Apache to authenticate
the user and pass their user name into this script as the REMOTE_USER
environment variable.  See the documentation.
EOF
    }

    $bpc->ServerMesg("log User $User (host=$In{host}) got CGI error: $head")
                            if ( defined($bpc) );
    if ( !defined($Lang->{Error}) ) {
        $mesg = <<EOF if ( !defined($mesg) );
There is some problem with the BackupPC installation.
Please check the permissions on BackupPC_Admin.
EOF
        my $content = <<EOF;
${h1("Error: Unable to read config.pl or language strings!!")}
<p>$mesg</p>
EOF
        Header("BackupPC: Error", $content);
        Trailer();
    } else {
        my $content = eval("qq{$Lang->{Error____head}}");
        Header(eval("qq{$Lang->{Error}}"), $content);
        Trailer();
    }
    exit(1);
}

sub ServerConnect
{
    #
    # Verify that the server connection is ok
    #
    return if ( $bpc->ServerOK() );
    $bpc->ServerDisconnect();
    if ( my $err = $bpc->ServerConnect($Conf{ServerHost}, $Conf{ServerPort}) ) {
        if ( CheckPermission() 
          && -f $Conf{ServerInitdPath}
          && $Conf{ServerInitdStartCmd} ne "" ) {
            my $content = eval("qq{$Lang->{Admin_Start_Server}}");
            Header(eval("qq{$Lang->{Unable_to_connect_to_BackupPC_server}}"), $content);
            Trailer();
            exit(1);
        } else {
            ErrorExit(eval("qq{$Lang->{Unable_to_connect_to_BackupPC_server}}"));
        }
    }
}

sub GetStatusInfo
{
    my($status) = @_;
    ServerConnect();
    %Status = ()     if ( $status =~ /\bhosts\b/ );
    %StatusHost = () if ( $status =~ /\bhost\(/ );
    my $reply = $bpc->ServerMesg("status $status");
    $reply = $1 if ( $reply =~ /(.*)/s );
    eval($reply);
    # ignore status related to admin and trashClean jobs
    if ( $status =~ /\bhosts\b/ ) {
        foreach my $host ( grep(/admin/, keys(%Status)) ) {
            delete($Status{$host}) if ( $bpc->isAdminJob($host) );
        }
        delete($Status{$bpc->trashJob});
    }
}

sub ReadUserEmailInfo
{
    if ( (stat("$TopDir/log/UserEmailInfo.pl"))[9] != $UserEmailInfoMTime ) {
        do "$TopDir/log/UserEmailInfo.pl";
        $UserEmailInfoMTime = (stat("$TopDir/log/UserEmailInfo.pl"))[9];
    }
}

#
# Check if the user is privileged.  A privileged user can access
# any information (backup files, logs, status pages etc).
#
# A user is privileged if they belong to the group
# $Conf{CgiAdminUserGroup}, or they are in $Conf{CgiAdminUsers}
# or they are the user assigned to a host in the host file.
#
sub CheckPermission
{
    my($host) = @_;
    my $Privileged = 0;

    return 0 if ( $User eq "" && $Conf{CgiAdminUsers} ne "*"
               || $host ne "" && !defined($Hosts->{$host}) );
    if ( $Conf{CgiAdminUserGroup} ne "" ) {
        my($n,$p,$gid,$mem) = getgrnam($Conf{CgiAdminUserGroup});
        $Privileged ||= ($mem =~ /\b$User\b/);

        # check against REMOTE_NTGROUP from mod_ntlm
        $Privileged ||= $Conf{CgiAdminUserGroup} eq $ENV{REMOTE_NTGROUP};
    }
    if ( $Conf{CgiAdminUsers} ne "" ) {
        $Privileged ||= ($Conf{CgiAdminUsers} =~ /\b$User\b/);
        $Privileged ||= $Conf{CgiAdminUsers} eq "*";
    }
    $PrivAdmin = $Privileged;
    return $Privileged if ( !defined($host) );

    $Privileged ||= $User eq $Hosts->{$host}{user};
    $Privileged ||= defined($Hosts->{$host}{moreUsers}{$User});
    return $Privileged;
}

#
# Returns the list of hosts that should appear in the navigation bar
# for this user.  If $getAll is set, the admin gets all the hosts.
# Otherwise, regular users get hosts for which they are the user or
# are listed in the moreUsers column in the hosts file.
#
sub GetUserHosts
{
    my($getAll) = @_;
    my @hosts;

    if ( $getAll && CheckPermission() ) {
        @hosts = sort keys %$Hosts;
    } else {
        @hosts = sort grep { $Hosts->{$_}{user} eq $User ||
                       defined($Hosts->{$_}{moreUsers}{$User}) } keys(%$Hosts);
    }
    return @hosts;
}

#
# Given a host name tries to find the IP address.  For non-dhcp hosts
# we just return the host name.  For dhcp hosts we check the address
# the user is using ($ENV{REMOTE_ADDR}) and also the last-known IP
# address for $host.  (Later we should replace this with a broadcast
# nmblookup.)
#
sub ConfirmIPAddress
{
    my($host) = @_;
    my $ipAddr = $host;

    if ( defined($Hosts->{$host}) && $Hosts->{$host}{dhcp}
               && $ENV{REMOTE_ADDR} =~ /^(\d+[\.\d]*)$/ ) {
        $ipAddr = $1;
        my($netBiosHost, $netBiosUser) = $bpc->NetBiosInfoGet($ipAddr);
        if ( $netBiosHost ne $host ) {
            my($tryIP);
            GetStatusInfo("host(${EscURI($host)})");
            if ( defined($StatusHost{dhcpHostIP})
                        && $StatusHost{dhcpHostIP} ne $ipAddr ) {
                $tryIP = eval("qq{$Lang->{tryIP}}");
                ($netBiosHost, $netBiosUser)
                        = $bpc->NetBiosInfoGet($StatusHost{dhcpHostIP});
            }
            if ( $netBiosHost ne $host ) {
                ErrorExit(eval("qq{$Lang->{Can_t_find_IP_address_for}}"),
                          eval("qq{$Lang->{host_is_a_DHCP_host}}"));
            }
            $ipAddr = $StatusHost{dhcpHostIP};
        }
    }
    return $ipAddr;
}

###########################################################################
# HTML layout subroutines
###########################################################################

sub Header
{
    my($title, $content, $noBrowse, $contentSub, $contentPost) = @_;
    my @adminLinks = (
        { link => "",                         name => $Lang->{Status}},
        { link => "?action=adminOpts",        name => $Lang->{Admin_Options},
                                              priv => 1},
        { link => "?action=summary",          name => $Lang->{PC_Summary}},
        { link => "?action=view&type=LOG",    name => $Lang->{LOG_file},
                                              priv => 1},
        { link => "?action=LOGlist",          name => $Lang->{Old_LOGs},
                                              priv => 1},
        { link => "?action=emailSummary",     name => $Lang->{Email_summary},
                                              priv => 1},
        { link => "?action=view&type=config", name => $Lang->{Config_file},
                                              priv => 1},
        { link => "?action=view&type=hosts",  name => $Lang->{Hosts_file},
                                              priv => 1},
        { link => "?action=queue",            name => $Lang->{Current_queues},
                                              priv => 1},
        { link => "?action=search",           name => $Lang->{Search_archive},
                                              priv => 0},
        { link => "?action=burn",             name => $Lang->{Burn_media},
                                              priv => 1},
        @{$Conf{CgiNavBarLinks} || []},
    );
    my $host = $In{host};

    print $Cgi->header();
    print <<EOF;
<!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN">
<html><head>
<title>$title</title>
<link rel=stylesheet type="text/css" href="$Conf{CgiImageDirURL}/$Conf{CgiCSSFile}" title="CSSFile">
$Conf{CgiHeaders}
</head><body onLoad="document.getElementById('NavMenu').style.height=document.body.scrollHeight">
<a href="http://backuppc.sourceforge.net"><img src="$Conf{CgiImageDirURL}/logo.gif" hspace="5" vspace="7" border="0"></a><br>
EOF

    if ( defined($Hosts) && defined($host) && defined($Hosts->{$host}) ) {
        print "<div class=\"NavMenu\">";
        NavSectionTitle("${EscHTML($host)}");
        print <<EOF;
</div>
<div class="NavMenu">
EOF
        NavLink("?host=${EscURI($host)}",
                "$host $Lang->{Home}", " class=\"navbar\"");
        NavLink("?action=browse&host=${EscURI($host)}",
                $Lang->{Browse}, " class=\"navbar\"") if ( !$noBrowse );
        NavLink("?action=view&type=LOG&host=${EscURI($host)}",
                $Lang->{LOG_file}, " class=\"navbar\"");
        NavLink("?action=LOGlist&host=${EscURI($host)}",
                $Lang->{LOG_files}, " class=\"navbar\"");
        if ( -f "$TopDir/pc/$host/SmbLOG.bad"
                    || -f "$TopDir/pc/$host/SmbLOG.bad.z"
                    || -f "$TopDir/pc/$host/XferLOG.bad"
                    || -f "$TopDir/pc/$host/XferLOG.bad.z" ) {
           NavLink("?action=view&type=XferLOGbad&host=${EscURI($host)}",
                    $Lang->{Last_bad_XferLOG}, " class=\"navbar\"");
           NavLink("?action=view&type=XferErrbad&host=${EscURI($host)}",
                    $Lang->{Last_bad_XferLOG_errors_only},
                    " class=\"navbar\"");
        }
        if ( -f "$TopDir/pc/$host/config.pl"
                    || ($host ne "config" && -f "$TopDir/conf/$host.pl") ) {
            NavLink("?action=view&type=config&host=${EscURI($host)}",
                    $Lang->{Config_file}, " class=\"navbar\"");
        }
        print "</div>\n";
    }
    print("<div id=\"Content\">\n$content\n");
    if ( defined($contentSub) && ref($contentSub) eq "CODE" ) {
        while ( (my $s = &$contentSub()) ne "" ) {
            print($s);
        }
    }
    print($contentPost) if ( defined($contentPost) );
    print <<EOF;
<br><br><br>
</div>
<div class="NavMenu" id="NavMenu" style="height:100%">
EOF
    my $hostSelectbox = "<option value=\"#\">$Lang->{Select_a_host}</option>";
    my @hosts = GetUserHosts($Conf{CgiNavBarAdminAllHosts});
    if ( defined($Hosts) && %$Hosts > 0 && @hosts ) {
        NavSectionTitle($Lang->{Hosts});
        foreach my $host ( @hosts ) {
            NavLink("?host=${EscURI($host)}", $host)
                    if ( @hosts < $Conf{CgiNavBarAdminAllHosts} );
            my $sel = " selected" if ( $host eq $In{host} );
            $hostSelectbox .= "<option value=\"?host=${EscURI($host)}\"$sel>"
                            . "$host</option>";
        }
    }
    if ( @hosts >= $Conf{CgiNavBarAdminAllHosts} ) {
        print <<EOF;
<br>
<select onChange="document.location=this.value">
$hostSelectbox
</select>
<br><br>
EOF
    }
    if ( $Conf{CgiSearchBoxEnable} ) {
        print <<EOF;
<form action="$MyURL" method="get">
    <input type="text" name="host" size="14" maxlength="64">
    <input type="hidden" name="action" value="hostInfo"><input type="submit" value="$Lang->{Go}" name="ignore">
    </form>
EOF
    }
    NavSectionTitle($Lang->{NavSectionTitle_});
    foreach my $l ( @adminLinks ) {
        if ( $PrivAdmin || !$l->{priv} ) {
            my $txt = $l->{lname} ne "" ? $Lang->{$l->{lname}} : $l->{name};
            NavLink($l->{link}, $txt);
        }
    }

    print <<EOF;
<br><br><br>
</div>
EOF
}

sub Trailer
{
    print <<EOF;
</body></html>
EOF
}


sub NavSectionTitle
{
    my($head) = @_;
    print <<EOF;
<div class="NavTitle">$head</div>
EOF
}

sub NavSectionStart
{
}

sub NavSectionEnd
{
}

sub NavLink
{
    my($link, $text) = @_;
    if ( defined($link) ) {
        my($class);
        $class = " class=\"NavCurrent\""
                if ( length($link) && $ENV{REQUEST_URI} =~ /\Q$link\E$/
                    || $link eq "" && $ENV{REQUEST_URI} !~ /\?/ );
        $link = "$MyURL$link" if ( $link eq "" || $link =~ /^\?/ );
        print <<EOF;
<a href="$link"$class>$text</a>
EOF
    } else {
        print <<EOF;
$text<br>
EOF
    }
}

sub h1
{
    my($str) = @_;
    return \<<EOF;
<div class="h1">$str</div>
EOF
}

sub h2
{
    my($str) = @_;
    return \<<EOF;
<div class="h2">$str</div>
EOF
}
1	#============================================================= --perl--
2	#
3	# BackupPC::CGI::Lib package
4	#
5	# DESCRIPTION
6	#
7	# This library defines a BackupPC::Lib class and a variety of utility
8	# functions used by BackupPC.
9	#
10	# AUTHOR
11	# Craig Barratt <cbarratt@users.sourceforge.net>
12	#
13	# COPYRIGHT
14	# Copyright (C) 2003 Craig Barratt
15	#
16	# This program is free software; you can redistribute it and/or modify
17	# it under the terms of the GNU General Public License as published by
18	# the Free Software Foundation; either version 2 of the License, or
19	# (at your option) any later version.
20	#
21	# This program is distributed in the hope that it will be useful,
22	# but WITHOUT ANY WARRANTY; without even the implied warranty of
23	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
24	# GNU General Public License for more details.
25	#
26	# You should have received a copy of the GNU General Public License
27	# along with this program; if not, write to the Free Software
28	# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
29	#
30	#========================================================================
31	#
32	# Version 2.1.2, released 5 Sep 2005.
33	#
34	# See http://backuppc.sourceforge.net.
35	#
36	#========================================================================
37
38	package BackupPC::CGI::Lib;
39
40	use strict;
41	use BackupPC::Lib;
42
43	require Exporter;
44
45	use vars qw( @ISA @EXPORT @EXPORT_OK %EXPORT_TAGS );
46
47	use vars qw($Cgi %In $MyURL $User %Conf $TopDir $BinDir $bpc);
48	use vars qw(%Status %Info %Jobs @BgQueue @UserQueue @CmdQueue
49	%QueueLen %StatusHost);
50	use vars qw($Hosts $HostsMTime $ConfigMTime $PrivAdmin);
51	use vars qw(%UserEmailInfo $UserEmailInfoMTime %RestoreReq %ArchiveReq);
52	use vars qw($Lang);
53
54	@ISA = qw(Exporter);
55
56	@EXPORT = qw( );
57
58	@EXPORT_OK = qw(
59	timeStamp2
60	HostLink
61	UserLink
62	EscHTML
63	EscURI
64	ErrorExit
65	ServerConnect
66	GetStatusInfo
67	ReadUserEmailInfo
68	CheckPermission
69	GetUserHosts
70	ConfirmIPAddress
71	Header
72	Trailer
73	NavSectionTitle
74	NavSectionStart
75	NavSectionEnd
76	NavLink
77	h1
78	h2
79	$Cgi %In $MyURL $User %Conf $TopDir $BinDir $bpc
80	%Status %Info %Jobs @BgQueue @UserQueue @CmdQueue
81	%QueueLen %StatusHost
82	$Hosts $HostsMTime $ConfigMTime $PrivAdmin
83	%UserEmailInfo $UserEmailInfoMTime %RestoreReq %ArchiveReq
84	$Lang
85	);
86
87	%EXPORT_TAGS = (
88	'all' => [ @EXPORT_OK ],
89	);
90
91	sub NewRequest
92	{
93	$Cgi = new CGI;
94	%In = $Cgi->Vars;
95
96	if ( !defined($bpc) ) {
97	ErrorExit($Lang->{BackupPC__Lib__new_failed__check_apache_error_log})
98	if ( !($bpc = BackupPC::Lib->new(undef, undef, 1)) );
99	$TopDir = $bpc->TopDir();
100	$BinDir = $bpc->BinDir();
101	%Conf = $bpc->Conf();
102	$Lang = $bpc->Lang();
103	$ConfigMTime = $bpc->ConfigMTime();
104	} elsif ( $bpc->ConfigMTime() != $ConfigMTime ) {
105	$bpc->ConfigRead();
106	%Conf = $bpc->Conf();
107	$Lang = $bpc->Lang();
108	$ConfigMTime = $bpc->ConfigMTime();
109	}
110
111	#
112	# Default REMOTE_USER so in a miminal installation the user
113	# has a sensible default.
114	#
115	$ENV{REMOTE_USER} = $Conf{BackupPCUser} if ( $ENV{REMOTE_USER} eq "" );
116
117	#
118	# We require that Apache pass in $ENV{SCRIPT_NAME} and $ENV{REMOTE_USER}.
119	# The latter requires .ht_access style authentication. Replace this
120	# code if you are using some other type of authentication, and have
121	# a different way of getting the user name.
122	#
123	$MyURL = $ENV{SCRIPT_NAME};
124	$User = $ENV{REMOTE_USER};
125
126	#
127	# Clean up %ENV for taint checking
128	#
129	delete @ENV{qw(IFS CDPATH ENV BASH_ENV)};
130	$ENV{PATH} = $Conf{MyPath};
131
132	#
133	# Verify we are running as the correct user
134	#
135	if ( $Conf{BackupPCUserVerify}
136	&& $> != (my $uid = (getpwnam($Conf{BackupPCUser}))[2]) ) {
137	ErrorExit(eval("qq{$Lang->{Wrong_user__my_userid_is___}}"), <<EOF);
138	This script needs to run as the user specified in \$Conf{BackupPCUser},
139	which is set to $Conf{BackupPCUser}.
140	<p>
141	This is an installation problem. If you are using mod_perl then
142	it appears that Apache is not running as user $Conf{BackupPCUser}.
143	If you are not using mod_perl, then most like setuid is not working
144	properly on BackupPC_Admin. Check the permissions on
145	$Conf{CgiDir}/BackupPC_Admin and look at the documentation.
146	EOF
147	}
148
149	if ( !defined($Hosts) \|\| $bpc->HostsMTime() != $HostsMTime ) {
150	$HostsMTime = $bpc->HostsMTime();
151	$Hosts = $bpc->HostInfoRead();
152
153	# turn moreUsers list into a hash for quick lookups
154	foreach my $host (keys %$Hosts) {
155	$Hosts->{$host}{moreUsers} =
156	{map {$_, 1} split(",", $Hosts->{$host}{moreUsers}) }
157	}
158	}
159
160	#
161	# Untaint the host name
162	#
163	if ( $In{host} =~ /^([\w.\s-]+)$/ ) {
164	$In{host} = $1;
165	} else {
166	delete($In{host});
167	}
168	}
169
170	sub timeStamp2
171	{
172	my($sec,$min,$hour,$mday,$mon,$year,$wday,$yday,$isdst)
173	= localtime($_[0] == 0 ? time : $_[0] );
174	$mon++;
175	if ( $Conf{CgiDateFormatMMDD} ) {
176	return sprintf("$mon/$mday %02d:%02d", $hour, $min);
177	} else {
178	return sprintf("$mday/$mon %02d:%02d", $hour, $min);
179	}
180	}
181
182	sub HostLink
183	{
184	my($host) = @_;
185	my($s);
186	if ( defined($Hosts->{$host}) \|\| defined($Status{$host}) ) {
187	$s = "<a href=\"$MyURL?host=${EscURI($host)}\">$host</a>";
188	} else {
189	$s = $host;
190	}
191	return \$s;
192	}
193
194	sub UserLink
195	{
196	my($user) = @_;
197	my($s);
198
199	return \$user if ( $user eq ""
200	\|\| $Conf{CgiUserUrlCreate} eq "" );
201	if ( $Conf{CgiUserHomePageCheck} eq ""
202	\|\| -f sprintf($Conf{CgiUserHomePageCheck}, $user, $user, $user) ) {
203	$s = "<a href=\""
204	. sprintf($Conf{CgiUserUrlCreate}, $user, $user, $user)
205	. "\">$user</a>";
206	} else {
207	$s = $user;
208	}
209	return \$s;
210	}
211
212	sub EscHTML
213	{
214	my($s) = @_;
215	$s =~ s/&/&/g;
216	$s =~ s/\"/"/g;
217	$s =~ s/>/>/g;
218	$s =~ s/</</g;
219	$s =~ s{([^[:print:]])}{sprintf("&\#x%02X;", ord($1));}eg;
220	return \$s;
221	}
222
223	sub EscURI
224	{
225	my($s) = @_;
226	$s =~ s{([^\w.\/-])}{sprintf("%%%02X", ord($1));}eg;
227	return \$s;
228	}
229
230	sub ErrorExit
231	{
232	my(@mesg) = @_;
233	my($head) = shift(@mesg);
234	my($mesg) = join("</p>\n<p>", @mesg);
235
236	if ( !defined($ENV{REMOTE_USER}) ) {
237	$mesg .= <<EOF;
238	<p>
239	Note: \$ENV{REMOTE_USER} is not set, which could mean there is an
240	installation problem. BackupPC_Admin expects Apache to authenticate
241	the user and pass their user name into this script as the REMOTE_USER
242	environment variable. See the documentation.
243	EOF
244	}
245
246	$bpc->ServerMesg("log User $User (host=$In{host}) got CGI error: $head")
247	if ( defined($bpc) );
248	if ( !defined($Lang->{Error}) ) {
249	$mesg = <<EOF if ( !defined($mesg) );
250	There is some problem with the BackupPC installation.
251	Please check the permissions on BackupPC_Admin.
252	EOF
253	my $content = <<EOF;
254	${h1("Error: Unable to read config.pl or language strings!!")}
255	<p>$mesg</p>
256	EOF
257	Header("BackupPC: Error", $content);
258	Trailer();
259	} else {
260	my $content = eval("qq{$Lang->{Error____head}}");
261	Header(eval("qq{$Lang->{Error}}"), $content);
262	Trailer();
263	}
264	exit(1);
265	}
266
267	sub ServerConnect
268	{
269	#
270	# Verify that the server connection is ok
271	#
272	return if ( $bpc->ServerOK() );
273	$bpc->ServerDisconnect();
274	if ( my $err = $bpc->ServerConnect($Conf{ServerHost}, $Conf{ServerPort}) ) {
275	if ( CheckPermission()
276	&& -f $Conf{ServerInitdPath}
277	&& $Conf{ServerInitdStartCmd} ne "" ) {
278	my $content = eval("qq{$Lang->{Admin_Start_Server}}");
279	Header(eval("qq{$Lang->{Unable_to_connect_to_BackupPC_server}}"), $content);
280	Trailer();
281	exit(1);
282	} else {
283	ErrorExit(eval("qq{$Lang->{Unable_to_connect_to_BackupPC_server}}"));
284	}
285	}
286	}
287
288	sub GetStatusInfo
289	{
290	my($status) = @_;
291	ServerConnect();
292	%Status = () if ( $status =~ /\bhosts\b/ );
293	%StatusHost = () if ( $status =~ /\bhost\(/ );
294	my $reply = $bpc->ServerMesg("status $status");
295	$reply = $1 if ( $reply =~ /(.*)/s );
296	eval($reply);
297	# ignore status related to admin and trashClean jobs
298	if ( $status =~ /\bhosts\b/ ) {
299	foreach my $host ( grep(/admin/, keys(%Status)) ) {
300	delete($Status{$host}) if ( $bpc->isAdminJob($host) );
301	}
302	delete($Status{$bpc->trashJob});
303	}
304	}
305
306	sub ReadUserEmailInfo
307	{
308	if ( (stat("$TopDir/log/UserEmailInfo.pl"))[9] != $UserEmailInfoMTime ) {
309	do "$TopDir/log/UserEmailInfo.pl";
310	$UserEmailInfoMTime = (stat("$TopDir/log/UserEmailInfo.pl"))[9];
311	}
312	}
313
314	#
315	# Check if the user is privileged. A privileged user can access
316	# any information (backup files, logs, status pages etc).
317	#
318	# A user is privileged if they belong to the group
319	# $Conf{CgiAdminUserGroup}, or they are in $Conf{CgiAdminUsers}
320	# or they are the user assigned to a host in the host file.
321	#
322	sub CheckPermission
323	{
324	my($host) = @_;
325	my $Privileged = 0;
326
327	return 0 if ( $User eq "" && $Conf{CgiAdminUsers} ne "*"
328	\|\| $host ne "" && !defined($Hosts->{$host}) );
329	if ( $Conf{CgiAdminUserGroup} ne "" ) {
330	my($n,$p,$gid,$mem) = getgrnam($Conf{CgiAdminUserGroup});
331	$Privileged \|\|= ($mem =~ /\b$User\b/);
332
333	# check against REMOTE_NTGROUP from mod_ntlm
334	$Privileged \|\|= $Conf{CgiAdminUserGroup} eq $ENV{REMOTE_NTGROUP};
335	}
336	if ( $Conf{CgiAdminUsers} ne "" ) {
337	$Privileged \|\|= ($Conf{CgiAdminUsers} =~ /\b$User\b/);
338	$Privileged \|\|= $Conf{CgiAdminUsers} eq "*";
339	}
340	$PrivAdmin = $Privileged;
341	return $Privileged if ( !defined($host) );
342
343	$Privileged \|\|= $User eq $Hosts->{$host}{user};
344	$Privileged \|\|= defined($Hosts->{$host}{moreUsers}{$User});
345	return $Privileged;
346	}
347
348	#
349	# Returns the list of hosts that should appear in the navigation bar
350	# for this user. If $getAll is set, the admin gets all the hosts.
351	# Otherwise, regular users get hosts for which they are the user or
352	# are listed in the moreUsers column in the hosts file.
353	#
354	sub GetUserHosts
355	{
356	my($getAll) = @_;
357	my @hosts;
358
359	if ( $getAll && CheckPermission() ) {
360	@hosts = sort keys %$Hosts;
361	} else {
362	@hosts = sort grep { $Hosts->{$_}{user} eq $User \|\|
363	defined($Hosts->{$_}{moreUsers}{$User}) } keys(%$Hosts);
364	}
365	return @hosts;
366	}
367
368	#
369	# Given a host name tries to find the IP address. For non-dhcp hosts
370	# we just return the host name. For dhcp hosts we check the address
371	# the user is using ($ENV{REMOTE_ADDR}) and also the last-known IP
372	# address for $host. (Later we should replace this with a broadcast
373	# nmblookup.)
374	#
375	sub ConfirmIPAddress
376	{
377	my($host) = @_;
378	my $ipAddr = $host;
379
380	if ( defined($Hosts->{$host}) && $Hosts->{$host}{dhcp}
381	&& $ENV{REMOTE_ADDR} =~ /^(\d+[\.\d]*)$/ ) {
382	$ipAddr = $1;
383	my($netBiosHost, $netBiosUser) = $bpc->NetBiosInfoGet($ipAddr);
384	if ( $netBiosHost ne $host ) {
385	my($tryIP);
386	GetStatusInfo("host(${EscURI($host)})");
387	if ( defined($StatusHost{dhcpHostIP})
388	&& $StatusHost{dhcpHostIP} ne $ipAddr ) {
389	$tryIP = eval("qq{$Lang->{tryIP}}");
390	($netBiosHost, $netBiosUser)
391	= $bpc->NetBiosInfoGet($StatusHost{dhcpHostIP});
392	}
393	if ( $netBiosHost ne $host ) {
394	ErrorExit(eval("qq{$Lang->{Can_t_find_IP_address_for}}"),
395	eval("qq{$Lang->{host_is_a_DHCP_host}}"));
396	}
397	$ipAddr = $StatusHost{dhcpHostIP};
398	}
399	}
400	return $ipAddr;
401	}
402
403	###########################################################################
404	# HTML layout subroutines
405	###########################################################################
406
407	sub Header
408	{
409	my($title, $content, $noBrowse, $contentSub, $contentPost) = @_;
410	my @adminLinks = (
411	{ link => "", name => $Lang->{Status}},
412	{ link => "?action=adminOpts", name => $Lang->{Admin_Options},
413	priv => 1},
414	{ link => "?action=summary", name => $Lang->{PC_Summary}},
415	{ link => "?action=view&type=LOG", name => $Lang->{LOG_file},
416	priv => 1},
417	{ link => "?action=LOGlist", name => $Lang->{Old_LOGs},
418	priv => 1},
419	{ link => "?action=emailSummary", name => $Lang->{Email_summary},
420	priv => 1},
421	{ link => "?action=view&type=config", name => $Lang->{Config_file},
422	priv => 1},
423	{ link => "?action=view&type=hosts", name => $Lang->{Hosts_file},
424	priv => 1},
425	{ link => "?action=queue", name => $Lang->{Current_queues},
426	priv => 1},
427	{ link => "?action=search", name => $Lang->{Search_archive},
428	priv => 0},
429	{ link => "?action=burn", name => $Lang->{Burn_media},
430	priv => 1},
431	@{$Conf{CgiNavBarLinks} \|\| []},
432	);
433	my $host = $In{host};
434
435	print $Cgi->header();
436	print <<EOF;
437	<!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN">
438	<html><head>
439	<title>$title</title>
440	<link rel=stylesheet type="text/css" href="$Conf{CgiImageDirURL}/$Conf{CgiCSSFile}" title="CSSFile">
441	$Conf{CgiHeaders}
442	</head><body onLoad="document.getElementById('NavMenu').style.height=document.body.scrollHeight">
443	<a href="http://backuppc.sourceforge.net"><img src="$Conf{CgiImageDirURL}/logo.gif" hspace="5" vspace="7" border="0"></a><br>
444	EOF
445
446	if ( defined($Hosts) && defined($host) && defined($Hosts->{$host}) ) {
447	print "<div class=\"NavMenu\">";
448	NavSectionTitle("${EscHTML($host)}");
449	print <<EOF;
450	</div>
451	<div class="NavMenu">
452	EOF
453	NavLink("?host=${EscURI($host)}",
454	"$host $Lang->{Home}", " class=\"navbar\"");
455	NavLink("?action=browse&host=${EscURI($host)}",
456	$Lang->{Browse}, " class=\"navbar\"") if ( !$noBrowse );
457	NavLink("?action=view&type=LOG&host=${EscURI($host)}",
458	$Lang->{LOG_file}, " class=\"navbar\"");
459	NavLink("?action=LOGlist&host=${EscURI($host)}",
460	$Lang->{LOG_files}, " class=\"navbar\"");
461	if ( -f "$TopDir/pc/$host/SmbLOG.bad"
462	\|\| -f "$TopDir/pc/$host/SmbLOG.bad.z"
463	\|\| -f "$TopDir/pc/$host/XferLOG.bad"
464	\|\| -f "$TopDir/pc/$host/XferLOG.bad.z" ) {
465	NavLink("?action=view&type=XferLOGbad&host=${EscURI($host)}",
466	$Lang->{Last_bad_XferLOG}, " class=\"navbar\"");
467	NavLink("?action=view&type=XferErrbad&host=${EscURI($host)}",
468	$Lang->{Last_bad_XferLOG_errors_only},
469	" class=\"navbar\"");
470	}
471	if ( -f "$TopDir/pc/$host/config.pl"
472	\|\| ($host ne "config" && -f "$TopDir/conf/$host.pl") ) {
473	NavLink("?action=view&type=config&host=${EscURI($host)}",
474	$Lang->{Config_file}, " class=\"navbar\"");
475	}
476	print "</div>\n";
477	}
478	print("<div id=\"Content\">\n$content\n");
479	if ( defined($contentSub) && ref($contentSub) eq "CODE" ) {
480	while ( (my $s = &$contentSub()) ne "" ) {
481	print($s);
482	}
483	}
484	print($contentPost) if ( defined($contentPost) );
485	print <<EOF;
486	<br><br><br>
487	</div>
488	<div class="NavMenu" id="NavMenu" style="height:100%">
489	EOF
490	my $hostSelectbox = "<option value=\"#\">$Lang->{Select_a_host}</option>";
491	my @hosts = GetUserHosts($Conf{CgiNavBarAdminAllHosts});
492	if ( defined($Hosts) && %$Hosts > 0 && @hosts ) {
493	NavSectionTitle($Lang->{Hosts});
494	foreach my $host ( @hosts ) {
495	NavLink("?host=${EscURI($host)}", $host)
496	if ( @hosts < $Conf{CgiNavBarAdminAllHosts} );
497	my $sel = " selected" if ( $host eq $In{host} );
498	$hostSelectbox .= "<option value=\"?host=${EscURI($host)}\"$sel>"
499	. "$host</option>";
500	}
501	}
502	if ( @hosts >= $Conf{CgiNavBarAdminAllHosts} ) {
503	print <<EOF;
504	<br>
505	<select onChange="document.location=this.value">
506	$hostSelectbox
507	</select>
508	<br><br>
509	EOF
510	}
511	if ( $Conf{CgiSearchBoxEnable} ) {
512	print <<EOF;
513	<form action="$MyURL" method="get">
514	<input type="text" name="host" size="14" maxlength="64">
515	<input type="hidden" name="action" value="hostInfo"><input type="submit" value="$Lang->{Go}" name="ignore">
516	</form>
517	EOF
518	}
519	NavSectionTitle($Lang->{NavSectionTitle_});
520	foreach my $l ( @adminLinks ) {
521	if ( $PrivAdmin \|\| !$l->{priv} ) {
522	my $txt = $l->{lname} ne "" ? $Lang->{$l->{lname}} : $l->{name};
523	NavLink($l->{link}, $txt);
524	}
525	}
526
527	print <<EOF;
528	<br><br><br>
529	</div>
530	EOF
531	}
532
533	sub Trailer
534	{
535	print <<EOF;
536	</body></html>
537	EOF
538	}
539
540
541	sub NavSectionTitle
542	{
543	my($head) = @_;
544	print <<EOF;
545	<div class="NavTitle">$head</div>
546	EOF
547	}
548
549	sub NavSectionStart
550	{
551	}
552
553	sub NavSectionEnd
554	{
555	}
556
557	sub NavLink
558	{
559	my($link, $text) = @_;
560	if ( defined($link) ) {
561	my($class);
562	$class = " class=\"NavCurrent\""
563	if ( length($link) && $ENV{REQUEST_URI} =~ /\Q$link\E$/
564	\|\| $link eq "" && $ENV{REQUEST_URI} !~ /\?/ );
565	$link = "$MyURL$link" if ( $link eq "" \|\| $link =~ /^\?/ );
566	print <<EOF;
567	<a href="$link"$class>$text</a>
568	EOF
569	} else {
570	print <<EOF;
571	$text<br>
572	EOF
573	}
574	}
575
576	sub h1
577	{
578	my($str) = @_;
579	return \<<EOF;
580	<div class="h1">$str</div>
581	EOF
582	}
583
584	sub h2
585	{
586	my($str) = @_;
587	return \<<EOF;
588	<div class="h2">$str</div>
589	EOF
590	}