<?php
-if(file_exists("config.php")) {
- require_once("config.php");
-} else {
- // config file doesnt exist, we must abort sensibly
-}
+// TODO: SO MUCH ERROR CHECKING ITS NOT FUNNY
+
// get out master library for ga4php
require_once("../lib/lib.php");
global $myga;
- print_r($myga);
-
while(true) {
msg_receive($sr_queue, 0, $msg_type, 16384, $msg);
- print_r($msg);
+ echo "got message of type $msg_type\n";
switch($msg_type) {
+ case MSG_GET_RADIUS_CLIENTS:
+ $sql = "select * from radclients";
+ $dbo = getDatabase();
+ $res = $dbo->query($sql);
+ $clients = "";
+ $i=0;
+ foreach($res as $row) {
+ // $sql = 'CREATE TABLE "radclients" ("rad_id" INTEGER PRIMARY KEY AUTOINCREMENT,"rad_name" TEXT, "rad_ip" TEXT, "rad_secret" TEXT, "rad_desc" TEXT);';
+ $clients[$i]["name"] = $row["rad_name"];
+ $clients[$i]["ip"] = $row["rad_ip"];
+ $clients[$i]["secret"] = $row["rad_secret"];
+ $clients[$i]["desc"] = $row["rad_desc"];
+ $i++;
+ }
+ msg_send($cl_queue, MSG_GET_RADIUS_CLIENTS, $clients);
+ break;
+ case MSG_REMOVE_RADIUS_CLIENT:
+ // it should send us a client by rad_name - doesnt work yet
+ $client = $msg["clientname"];
+ $sql = "delete from radclients where rad_name='$client'";
+ $dbo = getDatabase();
+ $res = $dbo->query($sql);
+ updateRadius();
+ msg_send($cl_queue, MSG_REMOVE_RADIUS_CLIENT, true);
+ break;
+ case MSG_ADD_RADIUS_CLIENT:
+ echo "in addradclient\n";
+ $client = $msg["clientname"];
+ $clientsecret = $msg["clientsecret"];
+ $clientip = $msg["clientip"];
+ $clientdesc = $msg["clientdescription"];
+ $dbo = getDatabase();
+
+ // check for existing clients with same name
+ $sql = "select * from radclients where rad_name='$client'";
+ echo "doing select, $sql\n";
+ $res = $dbo->query($sql);
+ if($res->fetchColumn() > 0) {
+ msg_send($cl_queue, MSG_ADD_RADIUS_CLIENT, "name");
+
+ } else {
+ // check for existing clients with same ip
+ $sql = "select * from radclients where rad_ip='$clientip'";
+ $res = $dbo->query($sql);
+ echo "doing select, $sql\n";
+ if($res->fetchColumn() > 0) {
+ msg_send($cl_queue, MSG_ADD_RADIUS_CLIENT, "ip");
+
+ } else {
+ $sql = "insert into radclients values (NULL, '$client', '$clientip', '$clientsecret', '$clientdesc')";
+ $res = $dbo->query($sql);
+ updateRadius();
+ msg_send($cl_queue, MSG_ADD_RADIUS_CLIENT, true);
+ break;
+ }
+ }
+ break;
+ case MSG_DELETE_USER_TOKEN:
+ $username = $msg["username"];
+
+ $sql = "select users_otk from users where users_username='$username'";
+ $dbo = getDatabase();
+ $res = $dbo->query($sql);
+ $otkid = "";
+ foreach($res as $row) {
+ $otkid = $row["users_otk"];
+ }
+ if($otkid!="") {
+ global $BASE_DIR;
+ unlink("$BASE_DIR/authserver/authd/otks/$otkid.png");
+ }
+
+ $sql = "update users set users_tokendata='',users_otk='' where users_username='$username'";
+ $dbo = getDatabase();
+ $res = $dbo->query($sql);
+
+ msg_send($cl_queue, MSG_DELETE_USER_TOKEN, true);
+ break;
case MSG_AUTH_USER_TOKEN:
echo "Call to auth user token\n";
// minimal checking, we leav it up to authenticateUser to do the real
$authval = $myga->authenticateUser($username, $passcode);
msg_send($cl_queue, MSG_AUTH_USER_TOKEN, $authval);
break;
-
- case MSG_GET_OTK_PNG:
+ case MSG_GET_OTK_ID:
if(!isset($msg["username"])) {
- msg_send($cl_queue, MSG_GET_OTK_PNG, false);
+ msg_send($cl_queue, MSG_GET_OTK_ID, false);
} else {
$username = $msg["username"];
$sql = "select users_otk from users where users_username='$username'";
$dbo = getDatabase();
$res = $dbo->query($sql);
- $otk = "";
+ $otkid = "";
foreach($res as $row) {
- $otk = $row["users_otk"];
+ $otkid = $row["users_otk"];
}
- if($otk == "") {
+ if($otkid == "") {
+ msg_send($cl_queue, MSG_GET_OTK_ID, false);
+ } else {
+ msg_send($cl_queue, MSG_GET_OTK_ID, $otkid);
+ }
+ }
+ break;
+ case MSG_GET_OTK_PNG:
+ if(!isset($msg["otk"])) {
+ msg_send($cl_queue, MSG_GET_OTK_PNG, false);
+ } else {
+ $otk = $msg["otk"];
+ $sql = "select users_username from users where users_otk='$otk'";
+ $dbo = getDatabase();
+ $res = $dbo->query($sql);
+ $username = "";
+ foreach($res as $row) {
+ $username = $row["users_username"];
+ }
+
+ if($username == "") {
+ msg_send($cl_queue, MSG_GET_OTK_PNG, false);
+ } else if($username != $msg["username"]) {
msg_send($cl_queue, MSG_GET_OTK_PNG, false);
} else {
- $hand = fopen("otks/$otk.png", "rb");
- $data = fread($hand, filesize("otks/$otk.png"));
+ global $BASE_DIR;
+ $hand = fopen("$BASE_DIR/authserver/authd/otks/$otk.png", "rb");
+ $data = fread($hand, filesize("$BASE_DIR/authserver/authd/otks/$otk.png"));
fclose($hand);
- msg_send($cl_queue, MSG_GET_OTK_PNG, $data);
- unlink("otks/$otk.png");
+ unlink("$BASE_DIR/authserver/authd/otks/$otk.png");
$sql = "update users set users_otk='' where users_username='$username'";
$dbo->query($sql);
+ error_log("senting otk, fsize: ".filesize("$BASE_DIR/authserver/authd/otks/$otk.png")." $otk ");
+ msg_send($cl_queue, MSG_GET_OTK_PNG, $data);
}
}
break;
+ case MSG_SYNC_TOKEN:
+ if(!isset($msg["username"])) {
+ msg_send($cl_queue, MSG_SYNC_TOKEN, false);
+ } else {
+ $tokenone = $msg["tokenone"];
+ $tokentwo = $msg["tokentwo"];
+
+ msg_send($cl_queue, MSG_SYNC_TOKEN, $myga->resyncCode($msg["username"], $tokenone, $tokentwo));
+ }
+
+ break;
+ case MSG_GET_TOKEN_TYPE:
+ if(!isset($msg["username"])) {
+ msg_send($cl_queue, MSG_GET_TOKEN_TYPE, false);
+ } else {
+ msg_send($cl_queue, MSG_GET_TOKEN_TYPE, $myga->getTokenType($msg["username"]));
+ }
+ break;
case MSG_ADD_USER_TOKEN:
echo "Call to add user token\n";
if(!isset($msg["username"])) {
msg_send($cl_queue, MSG_ADD_USER_TOKEN, false);
} else {
+ global $BASE_DIR;
$username = $msg["username"];
- $tokentype="HOTP";
+ $tokentype="TOTP";
if(isset($msg["tokentype"])) {
- $tokentype="HOTP";
+ $tokentype=$msg["tokentype"];
}
$hexkey = "";
if(isset($msg["hexkey"])) {
$myga->setUser($username, $tokentype, "", $hexkey);
$url = $myga->createUrl($username);
- mkdir("otks");
+ if(!file_exists("$BASE_DIR/authserver/authd/otks")) mkdir("$BASE_DIR/authserver/authd/otks");
$otk = generateRandomString();
- system("qrencode -o otks/$otk.png $url");
+ system("qrencode -o $BASE_DIR/authserver/authd/otks/$otk.png $url");
$sql = "update users set users_otk='$otk' where users_username='$username'";
$dbo = getDatabase();
} else {
$username = $msg["username"];
global $myga;
+
+ $sql = "select users_otk from users where users_username='$username'";
+ $dbo = getDatabase();
+ $res = $dbo->query($sql);
+ $otkid = "";
+ foreach($res as $row) {
+ $otkid = $row["users_otk"];
+ }
+ if($otkid!="") {
+ unlink("otks/$otkid.png");
+ }
+
+
$sql = "delete from users where users_username='$username'";
$dbo = getDatabase();
$dbo->query($sql);
break;
case MSG_SET_USER_PASSWORD:
- echo "Call to set user pass\n";
+ echo "how on earth is that happening Call to set user pass, wtf?\n";
// TODO
+ print_r($msg);
if(!isset($msg["username"])) {
msg_send($cl_queue, MSG_SET_USER_PASSWORD, false);
+ echo "in break 1\n";
break;
}
if(!isset($msg["password"])) {
msg_send($cl_queue, MSG_SET_USER_PASSWORD, false);
+ echo "in break 1\n";
break;
}
$username = $msg["username"];
$password = $msg["password"];
- $pass = hash('sha512', $password);
+ echo "would set pass for $username, to $password\n";
+ if($password == "") $pass = "";
+ else $pass = hash('sha512', $password);
$dbo = getDatabase();
+ echo "in set user pass for $username, $pass\n";
$sql = "update users set users_password='$pass' where users_username='$username'";
$dbo->query($sql);
} else {
$users[$i]["hastoken"] = false;
}
+
+ if($row["users_otk"]!="") {
+ $users[$i]["otk"] = $row["users_otk"];
+ } else {
+ $users[$i]["otk"] = "";
+ }
$i++;
}
msg_send($cl_queue, MSG_GET_USERS, $users);
projects / ga4php.git / blobdiff