* then user admin would be less disconnected. I.e. if a user was deleted from AD, their token
* data should disappear with them.
*/
-require_once("actions.php");
+require_once("admin_actions.php");
// the logged in component
if($loggedin) {
Welcome to the Google Authenticator Authentication Server Manager Application<br>
<hr><h2>Users</h2>
<table border="1">
-<tr><th>Username</th><th>RealName</th><th>Has Password?</th><th>Has Token?</th><th>OTK</th><th>Update</th><th>Delete</th></tr>
+<tr><th>Username</th><th>RealName</th><th>Has Password?</th><th>Has Token?</th><th>One Time Key</th><th>Update</th><th>Delete</th></tr>
<?php
$users = $myAC->getUsers();
foreach($users as $user) {
if($user["hastoken"]) $hastoken = "Yes";
else $hastoken = "No";
- if($user["otk"]!="") $otk = "<a href=\"?action=getotkimg&otk=".$user["otk"]."\">Get</a>";
+ if($user["otk"]!="") $otk = "<a href=\"?action=getotk&username=$username&otk=".$user["otk"]."\">Get</a>";
else $otk = "Already Claimed";
$delete = "<a href=\"?action=delete&username=$username\">Delete</a>";
</table><br>
<form method="post" action="?action=createuser">Create User(s) - Enter a comma seperated list of names: <input type="text" name="username" size="120"> <input type="submit" value="Create"></form>
+<?php
+if(isset($_REQUEST["action"])) if($_REQUEST["action"] == "getotk") {
+ $username = $_REQUEST["username"];
+ $otk = $_REQUEST["otk"];
+ echo "<hr>Got One Time Key for user $username, this one-time-key can only be retrieved once, after that it is deleted<br>";
+ echo "<img src=\"?action=getotkimg&username=$username&otk=$otk\" alt=\"one time key error\"><br>";
+}
+
+?>
<hr><h2>Radius Clients</h2>
Not yet implemented