projects
/
mirror
/
userdir-ldap-cgi.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Add dependency on libcrypt-cbc-perl
[mirror/userdir-ldap-cgi.git]
/
update.cgi
diff --git
a/update.cgi
b/update.cgi
index
c4d121d
..
d109bf7
100755
(executable)
--- a/
update.cgi
+++ b/
update.cgi
@@
-25,8
+25,16
@@
my $proto = ($ENV{HTTPS} ? "https" : "http");
my $id = $query->param('id');
my $authtoken = $query->param('authtoken');
my $id = $query->param('id');
my $authtoken = $query->param('authtoken');
-my $password = &Util::CheckAuthToken($authtoken);
-my $editdn = $query->param('editdn');
+
+my $password = undef;
+
+if ($authtoken || $id) {
+ $password = Util::TouchAuthToken($authtoken, $id);
+} else {
+ $password = '';
+ $id = '';
+ $authtoken = '';
+}
if ($proto eq "http" || !($id && $password)) {
print "Location: https://$ENV{SERVER_NAME}/$config{webloginhtml}\n\n";
if ($proto eq "http" || !($id && $password)) {
print "Location: https://$ENV{SERVER_NAME}/$config{webloginhtml}\n\n";
@@
-45,6
+53,7
@@
sub DieHandler {
}
#$SIG{__DIE__} = \&DieHandler;
}
#$SIG{__DIE__} = \&DieHandler;
+my $editdn = "uid=$id,$config{basedn}";
$ldap = Net::LDAP->new($config{ldaphost});
&Util::UpgradeConnection($ldap) unless $config{usessl} eq 'False';
$ldap = Net::LDAP->new($config{ldaphost});
&Util::UpgradeConnection($ldap) unless $config{usessl} eq 'False';
@@
-146,7
+155,7
@@
if (!($query->param('doupdate'))) {
my $confirmstring = '';
my $sudopassword = '';
for my $e(@{$entry->{'sudopassword'}}) {
my $confirmstring = '';
my $sudopassword = '';
for my $e(@{$entry->{'sudopassword'}}) {
- my ($uuid, $status, $hosts, $crypted) = ($e =~ /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}) (confirmed:[0-9a-f]{40}|unconfirmed) ([a-z0-9.,*]+) ([^ ]+)$/);
+ my ($uuid, $status, $hosts, $crypted) = ($e =~ /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}) (confirmed:[0-9a-f]{40}|unconfirmed) ([a-z0-9.,*
-
]+) ([^ ]+)$/);
unless (defined $uuid) {
$sudopassword .= "<tr><td>Unparseable line!</td></tr>\n";
next;
unless (defined $uuid) {
$sudopassword .= "<tr><td>Unparseable line!</td></tr>\n";
next;
@@
-209,7
+218,7
@@
if (!($query->param('doupdate'))) {
# Actually update stuff...
# Actually update stuff...
- my ($newpassword, $newstaddress, $newwebpassword, $new
voip
password);
+ my ($newpassword, $newstaddress, $newwebpassword, $new
rtc
password);
# Good god, why would we want to do that here? it breaks password setting
# etc, and it doesn't prevent people from setting eveil stuff in ldap
# Good god, why would we want to do that here? it breaks password setting
# etc, and it doesn't prevent people from setting eveil stuff in ldap
@@
-255,20
+264,20
@@
if (!($query->param('doupdate'))) {
&Util::LDAPUpdate($ldap, $editdn, 'webPassword', $newwebpassword);
}
&Util::LDAPUpdate($ldap, $editdn, 'webPassword', $newwebpassword);
}
- if ($query->param('new
voippass') && $query->param('newvoip
passvrfy')) {
- if ($query->param('new
voippass') ne $query->param('newvoip
passvrfy')) {
+ if ($query->param('new
rtcpass') && $query->param('newrtc
passvrfy')) {
+ if ($query->param('new
rtcpass') ne $query->param('newrtc
passvrfy')) {
# passwords don't match...
# passwords don't match...
- &Util::HTMLError("The
voip
-passwords you specified do not match. Please go back and try again.");
+ &Util::HTMLError("The
rtc
-passwords you specified do not match. Please go back and try again.");
}
}
- my ($r, $msg) = &Util::checkPasswordQuality($query->param('new
voip
pass'), undef, [@ldapinfo_for_pwcheck]);
+ my ($r, $msg) = &Util::checkPasswordQuality($query->param('new
rtc
pass'), undef, [@ldapinfo_for_pwcheck]);
if ($r) {
if ($r) {
- &Util::HTMLError("Password check failed for
voip
-password: $msg. Please go back and try again.");
+ &Util::HTMLError("Password check failed for
rtc
-password: $msg. Please go back and try again.");
}
# create a md5 crypted password
}
# create a md5 crypted password
- $new
voippassword = &md5_hex( ldap_explode_dn($editid)->[0]{UID} . '@debian.org:sip.debian.org:' . $query->param('newvoip
pass') );
+ $new
rtcpassword = &md5_hex( ldap_explode_dn($editdn)->[0]{UID} . '@debian.org:rtc.debian.org:' . $query->param('newrtc
pass') );
- &Util::LDAPUpdate($ldap, $editdn, '
voipPassword', $newvoip
password);
+ &Util::LDAPUpdate($ldap, $editdn, '
rtcPassword', $newrtc
password);
}
$newstaddress = $query->param('staddress');
}
$newstaddress = $query->param('staddress');
@@
-399,8
+408,7
@@
if (!($query->param('doupdate'))) {
&Util::LDAPUpdate($ldap, $editdn, 'sudoPassword', \@keepsudo);
# when we are done, reload the page with the updated details.
&Util::LDAPUpdate($ldap, $editdn, 'sudoPassword', \@keepsudo);
# when we are done, reload the page with the updated details.
- my $url = "https://$ENV{SERVER_NAME}/$config{webupdateurl}?id=$id&authtoken=$authtoken&editdn=";
- $url .= uri_escape($editdn, "\x00-\x40\x7f-\xff");
+ my $url = "https://$ENV{SERVER_NAME}/$config{webupdateurl}?id=$id;authtoken=$authtoken";
print "Location: $url\n\n";
}
print "Location: $url\n\n";
}