authserver/www/admin_actions.php

   1 <?php
   2 require_once("../lib/authClient.php");
   3
   4 $myAC = new GAAuthClient();
   5
   6 session_start();
   7
   8 if(isset($_SESSION["loggedin"])) if($_SESSION["loggedin"]) $loggedin = true;
   9 else $loggedin = false;
  10
  11 if(isset($_REQUEST["action"])) {
  12         switch($_REQUEST["action"]) {
  13                 case "login":
  14                         $username = $_REQUEST["username"];
  15                         $password = $_REQUEST["password"];
  16
  17                         if($myAC->authUserPass($username, $password)) {
  18                                 $_SESSION["loggedin"] = true;
  19                                 $_SESSION["username"] = $username;
  20                                 header("Location: admin.php");
  21                         } else {
  22                                 header("Location: admin.php?message=loginfail");
  23                         }
  24
  25                         exit(0);
  26                         break;
  27                 case "logout":
  28                         $_SESSION["loggedin"] = false;
  29                         $_SESSION["username"] = "";
  30                         header("Location: admin.php");
  31                         exit(0);
  32                         break;
  33                 case "createuser":
  34                         $username = $_REQUEST["username"];
  35                         $users = explode(",",$username);
  36                         foreach($users as $user) {
  37                                 $user = trim($user);
  38                                 error_log("createing, $user\n");
  39                                 if($user != "" && strlen($user)>2) $myAC->addUser($user);
  40                         }
  41                         header("Location: admin.php");
  42                         exit(0);
  43                         break;
  44                 case "update":
  45                         error_log("would update");
  46                         $err = print_r($_REQUEST, true);
  47                         error_log("req: $err\n");
  48                         $username = $_REQUEST["username"];
  49                         if($_REQUEST["realname"]!="") {
  50                                 $myAC->setUserRealName($username, $_REQUEST["realname"]);
  51                         }
  52                         if($_REQUEST["password"]!= "") {
  53                                 $myAC->setUserPass($username, $_REQUEST["password"]);
  54                         }
  55                         break;
  56                 case "delete":
  57                         $username = $_REQUEST["username"];
  58                         $myAC->deleteUser($username);
  59                         break;
  60                 case "deletepass":
  61                         $username = $_REQUEST["username"];
  62                         $myAC->setUserPass($username, "");
  63                         break;
  64                 case "getotkimg":
  65                         $otk = $_REQUEST["otk"];
  66                         $username = $_REQUEST["username"];
  67                         error_log("requesting otk, $otk");
  68                         $otk_img = $myAC->getOtkPng($username,$otk);
  69                         header("Content-type: image/png");
  70                         echo $otk_img;
  71                         exit(0);
  72                         break;
  73         }
  74 }
  75 ?>