liam-linux-account-manager/views/serveraccount.php

<?php

try {
	$server = $server_dir->get_server_by_hostname($router->vars['hostname']);
	$server_admin = $active_user->admin_of($server);
	$account_admin = false;
	if(!$server_admin && !$active_user->admin) {
		try {
			$account = $server->get_account_by_name($router->vars['account']);
			$account_admin = $active_user->admin_of($account);
		} catch(ServerAccountNotFoundException $e) {
		}
		if(!$account_admin) {
			require('views/error403.php');
			die;
		}
	} else {
		$account = $server->get_account_by_name($router->vars['account']);
	}
} catch(ServerNotFoundException $e) {
	require('views/error404.php');
	die;
} catch(ServerAccountNotFoundException $e) {
	require('views/error404.php');
	die;
}
$account_access = $account->list_access();
$account_access_requests = $account->list_access_requests();
$account_remote_access = $account->list_remote_access();
$account_groups = $account->list_group_membership();
$account_admins = $account->list_admins();
$pubkeys = $account->list_public_keys();
if(isset($_POST['add_access']) && ($server_admin || $account_admin || $active_user->admin)) {
	if(isset($_POST['username'])) {
		try {
			$entity = $user_dir->get_user_by_uid(trim($_POST['username']));
		} catch(UserNotFoundException $e) {
			$content = new PageSection('user_not_found');
		}
	} elseif(isset($_POST['account'])) {
		try {
			$remoteserver = $server_dir->get_server_by_hostname(trim($_POST['hostname']));
			$entity = $remoteserver->get_account_by_name(trim($_POST['account']));
		} catch(ServerNotFoundException $e) {
			$content = new PageSection('server_not_found');
		} catch(ServerAccountNotFoundException $e) {
			$content = new PageSection('server_account_not_found');
		}
	} elseif(isset($_POST['group'])) {
		try {
			$entity = $group_dir->get_group_by_name(trim($_POST['group']));
		} catch(GroupNotFoundException $e) {
			$content = new PageSection('group_not_found');
		}
	}
	if(isset($entity)) {
		if($_POST['add_access'] == '2') {
			$options = array();
			if(isset($_POST['access_option'])) {
				foreach($_POST['access_option'] as $k => $v) {
					if(isset($v['enabled'])) {
						$option = new AccessOption();
						$option->option = $k;
						if(isset($v['value'])) {
							$option->value = $v['value'];
						} else {
							$option->value = null;
						}
						$options[] = $option;
					}
				}
			}
			$account->add_access($entity, $options);
			redirect('#access');
		} else {
			$content = new PageSection('access_options');
			$content->set('entity', $account);
			$content->set('remote_entity', $entity);
			$content->set('mode', 'create');
		}
	}
} elseif(isset($_POST['delete_access']) && ($server_admin || $account_admin || $active_user->admin)) {
	foreach($account_access as $access) {
		if($access->id == $_POST['delete_access']) {
			$access_to_delete = $access;
		}
	}
	if(isset($access_to_delete)) {
		$account->delete_access($access_to_delete);
	}
	redirect('#access');
} elseif(isset($_POST['approve_access']) && ($server_admin || $account_admin || $active_user->admin)) {
	foreach($account_access_requests as $request) {
		if($request->id == $_POST['approve_access']) {
			$request_to_approve = $request;
		}
	}
	if(isset($request_to_approve)) {
		$account->approve_access_request($request_to_approve);
		redirect('#access');
	}
} elseif(isset($_POST['reject_access']) && ($server_admin || $account_admin || $active_user->admin)) {
	foreach($account_access_requests as $request) {
		if($request->id == $_POST['reject_access']) {
			$request_to_reject = $request;
		}
	}
	if(isset($request_to_reject)) {
		$sync_status = $account->sync_status;
		$account->reject_access_request($request_to_reject);
		// Check to see if account still exists
		try {
			$account = $server->get_account_by_name($router->vars['account']);
			redirect('#access');
		} catch(ServerAccountNotFoundException $e) {
			redirect('/servers/'.urlencode($server->hostname).'#accounts');
		}
	}
} elseif(isset($_POST['add_public_key']) && ($server_admin || $account_admin || $active_user->admin)) {
	try {
		$public_key = new PublicKey;
		$public_key->import($_POST['add_public_key'], null, isset($_POST['force']) && $active_user->admin);
		$account->add_public_key($public_key);
		redirect('#pubkeys');
	} catch(InvalidArgumentException $e) {
		$content = new PageSection('key_upload_fail');
		switch($e->getMessage()) {
		case 'Insufficient bits in public key':
			$content->set('message', "The public key you submitted is of insufficient strength; it must be at least 4096 bits.");
			break;
		default:
			$content->set('message', "The public key you submitted doesn't look valid.");
		}
	}
} elseif(isset($_POST['delete_public_key']) && ($server_admin || $account_admin || $active_user->admin)) {
	foreach($pubkeys as $pubkey) {
		if($pubkey->id == $_POST['delete_public_key']) {
			$key_to_delete = $pubkey;
		}
	}
	if(isset($key_to_delete)) {
		$account->delete_public_key($key_to_delete);
	}
	redirect('#pubkeys');
} elseif(isset($_POST['add_admin']) && ($server_admin || $active_user->admin)) {
	try {
		$user = $user_dir->get_user_by_uid($_POST['user_name']);
	} catch(UserNotFoundException $e) {
		$content = new PageSection('user_not_found');
	}
	if(isset($user)) {
		$account->add_admin($user);
		redirect('#admins');
	}
} elseif(isset($_POST['delete_admin']) && ($server_admin || $active_user->admin)) {
	foreach($account_admins as $admin) {
		if($admin->id == $_POST['delete_admin']) {
			$admin_to_delete = $admin;
		}
	}
	if(isset($admin_to_delete)) {
		$account->delete_admin($admin_to_delete);
	}
	redirect('#admins');
} else {
	$content = new PageSection('serveraccount');
	$content->set('server', $server);
	$content->set('account', $account);
	$content->set('access', $account_access);
	$content->set('access_requests', $account_access_requests);
	$content->set('pubkeys', $pubkeys);
	$content->set('remote_access', $account_remote_access);
	$content->set('group_membership', $account_groups);
	$content->set('admins', $account_admins);
	$content->set('admin', $active_user->admin);
	$content->set('log', $account->get_log());
	$content->set('server_admin', $server_admin);
	$content->set('all_users', $user_dir->list_users());
	$content->set('all_servers', $server_dir->list_servers());
	$content->set('all_groups', $group_dir->list_groups());
}

$page = new PageSection('base');
$page->set('title', $account->name.'@'.$server->hostname);
$page->set('content', $content);
$page->set('alerts', $active_user->pop_alerts());
echo $page->generate();
Initial Commit 2021-11-16 15:11:32 +01:00			`<?php`

			`try {`
			`$server = $server_dir->get_server_by_hostname($router->vars['hostname']);`
			`$server_admin = $active_user->admin_of($server);`
			`$account_admin = false;`
			`if(!$server_admin && !$active_user->admin) {`
			`try {`
			`$account = $server->get_account_by_name($router->vars['account']);`
			`$account_admin = $active_user->admin_of($account);`
			`} catch(ServerAccountNotFoundException $e) {`
			`}`
			`if(!$account_admin) {`
			`require('views/error403.php');`
			`die;`
			`}`
			`} else {`
			`$account = $server->get_account_by_name($router->vars['account']);`
			`}`
			`} catch(ServerNotFoundException $e) {`
			`require('views/error404.php');`
			`die;`
			`} catch(ServerAccountNotFoundException $e) {`
			`require('views/error404.php');`
			`die;`
			`}`
			`$account_access = $account->list_access();`
			`$account_access_requests = $account->list_access_requests();`
			`$account_remote_access = $account->list_remote_access();`
			`$account_groups = $account->list_group_membership();`
			`$account_admins = $account->list_admins();`
			`$pubkeys = $account->list_public_keys();`
			`if(isset($_POST['add_access']) && ($server_admin \|\| $account_admin \|\| $active_user->admin)) {`
			`if(isset($_POST['username'])) {`
			`try {`
			`$entity = $user_dir->get_user_by_uid(trim($_POST['username']));`
			`} catch(UserNotFoundException $e) {`
			`$content = new PageSection('user_not_found');`
			`}`
			`} elseif(isset($_POST['account'])) {`
			`try {`
			`$remoteserver = $server_dir->get_server_by_hostname(trim($_POST['hostname']));`
			`$entity = $remoteserver->get_account_by_name(trim($_POST['account']));`
			`} catch(ServerNotFoundException $e) {`
			`$content = new PageSection('server_not_found');`
			`} catch(ServerAccountNotFoundException $e) {`
			`$content = new PageSection('server_account_not_found');`
			`}`
			`} elseif(isset($_POST['group'])) {`
			`try {`
			`$entity = $group_dir->get_group_by_name(trim($_POST['group']));`
			`} catch(GroupNotFoundException $e) {`
			`$content = new PageSection('group_not_found');`
			`}`
			`}`
			`if(isset($entity)) {`
			`if($_POST['add_access'] == '2') {`
			`$options = array();`
			`if(isset($_POST['access_option'])) {`
			`foreach($_POST['access_option'] as $k => $v) {`
			`if(isset($v['enabled'])) {`
			`$option = new AccessOption();`
			`$option->option = $k;`
			`if(isset($v['value'])) {`
			`$option->value = $v['value'];`
			`} else {`
			`$option->value = null;`
			`}`
			`$options[] = $option;`
			`}`
			`}`
			`}`
			`$account->add_access($entity, $options);`
			`redirect('#access');`
			`} else {`
			`$content = new PageSection('access_options');`
			`$content->set('entity', $account);`
			`$content->set('remote_entity', $entity);`
			`$content->set('mode', 'create');`
			`}`
			`}`
			`} elseif(isset($_POST['delete_access']) && ($server_admin \|\| $account_admin \|\| $active_user->admin)) {`
			`foreach($account_access as $access) {`
			`if($access->id == $_POST['delete_access']) {`
			`$access_to_delete = $access;`
			`}`
			`}`
			`if(isset($access_to_delete)) {`
			`$account->delete_access($access_to_delete);`
			`}`
			`redirect('#access');`
			`} elseif(isset($_POST['approve_access']) && ($server_admin \|\| $account_admin \|\| $active_user->admin)) {`
			`foreach($account_access_requests as $request) {`
			`if($request->id == $_POST['approve_access']) {`
			`$request_to_approve = $request;`
			`}`
			`}`
			`if(isset($request_to_approve)) {`
			`$account->approve_access_request($request_to_approve);`
			`redirect('#access');`
			`}`
			`} elseif(isset($_POST['reject_access']) && ($server_admin \|\| $account_admin \|\| $active_user->admin)) {`
			`foreach($account_access_requests as $request) {`
			`if($request->id == $_POST['reject_access']) {`
			`$request_to_reject = $request;`
			`}`
			`}`
			`if(isset($request_to_reject)) {`
			`$sync_status = $account->sync_status;`
			`$account->reject_access_request($request_to_reject);`
			`// Check to see if account still exists`
			`try {`
			`$account = $server->get_account_by_name($router->vars['account']);`
			`redirect('#access');`
			`} catch(ServerAccountNotFoundException $e) {`
			`redirect('/servers/'.urlencode($server->hostname).'#accounts');`
			`}`
			`}`
			`} elseif(isset($_POST['add_public_key']) && ($server_admin \|\| $account_admin \|\| $active_user->admin)) {`
			`try {`
			`$public_key = new PublicKey;`
			`$public_key->import($_POST['add_public_key'], null, isset($_POST['force']) && $active_user->admin);`
			`$account->add_public_key($public_key);`
			`redirect('#pubkeys');`
			`} catch(InvalidArgumentException $e) {`
			`$content = new PageSection('key_upload_fail');`
			`switch($e->getMessage()) {`
			`case 'Insufficient bits in public key':`
			`$content->set('message', "The public key you submitted is of insufficient strength; it must be at least 4096 bits.");`
			`break;`
			`default:`
			`$content->set('message', "The public key you submitted doesn't look valid.");`
			`}`
			`}`
			`} elseif(isset($_POST['delete_public_key']) && ($server_admin \|\| $account_admin \|\| $active_user->admin)) {`
			`foreach($pubkeys as $pubkey) {`
			`if($pubkey->id == $_POST['delete_public_key']) {`
			`$key_to_delete = $pubkey;`
			`}`
			`}`
			`if(isset($key_to_delete)) {`
			`$account->delete_public_key($key_to_delete);`
			`}`
			`redirect('#pubkeys');`
			`} elseif(isset($_POST['add_admin']) && ($server_admin \|\| $active_user->admin)) {`
			`try {`
			`$user = $user_dir->get_user_by_uid($_POST['user_name']);`
			`} catch(UserNotFoundException $e) {`
			`$content = new PageSection('user_not_found');`
			`}`
			`if(isset($user)) {`
			`$account->add_admin($user);`
			`redirect('#admins');`
			`}`
			`} elseif(isset($_POST['delete_admin']) && ($server_admin \|\| $active_user->admin)) {`
			`foreach($account_admins as $admin) {`
			`if($admin->id == $_POST['delete_admin']) {`
			`$admin_to_delete = $admin;`
			`}`
			`}`
			`if(isset($admin_to_delete)) {`
			`$account->delete_admin($admin_to_delete);`
			`}`
			`redirect('#admins');`
			`} else {`
			`$content = new PageSection('serveraccount');`
			`$content->set('server', $server);`
			`$content->set('account', $account);`
			`$content->set('access', $account_access);`
			`$content->set('access_requests', $account_access_requests);`
			`$content->set('pubkeys', $pubkeys);`
			`$content->set('remote_access', $account_remote_access);`
			`$content->set('group_membership', $account_groups);`
			`$content->set('admins', $account_admins);`
			`$content->set('admin', $active_user->admin);`
			`$content->set('log', $account->get_log());`
			`$content->set('server_admin', $server_admin);`
			`$content->set('all_users', $user_dir->list_users());`
			`$content->set('all_servers', $server_dir->list_servers());`
			`$content->set('all_groups', $group_dir->list_groups());`
			`}`

			`$page = new PageSection('base');`
			`$page->set('title', $account->name.'@'.$server->hostname);`
			`$page->set('content', $content);`
			`$page->set('alerts', $active_user->pop_alerts());`
			`echo $page->generate();`