#=====================================================================
# LedgerSMB
# Small Medium Business Accounting software
#
# See COPYRIGHT file for copyright information
#======================================================================
#
# This file has NOT undergone whitespace cleanup.
#
#======================================================================
#
# setup module
# add/edit/delete users
#
#======================================================================
$menufile = "menu.ini";
use LedgerSMB::Form;
use LedgerSMB::User;
$form = new Form;
$locale = new Locale $language, "admin";
$form->{charset} = $locale->{charset};
eval { require DBI; };
$form->error($locale->text('DBI not installed!')) if ($@);
$form->{stylesheet} = "ledger-smb.css";
$form->{favicon} = "favicon.ico";
$form->{timeout} = 600;
require "$form->{path}/pw.pl";
# customization
if (-f "$form->{path}/custom_$form->{script}") {
eval { require "$form->{path}/custom_$form->{script}"; };
$form->error($@) if ($@);
}
if ($form->{action}) {
&check_password unless $form->{action} eq 'logout';
&{ $locale->findsub($form->{action}) };
} else {
# if there are no drivers bail out
$form->error($locale->text('No Database Drivers available!')) unless (User->dbdrivers);
# create memberfile
if (! -f $memberfile) {
open(FH, ">$memberfile") or $form->error("$memberfile : $!");
print FH qq|# LedgerSMB Accounting members
[root login]
password=
|;
close FH;
}
&adminlogin;
}
1;
# end
sub adminlogin {
$form->{title} = qq|LedgerSMB $form->{version} |.$locale->text('Administration');
$form->header;
print qq|
<script language="JavaScript" type="text/javascript">
<!--
function sf(){
document.admin.password.focus();
}
// End -->
</script>
<body class=admin onload="sf()">
<div align=center>
<a href="http://sourceforge.net/projects/ledger-smb/"><img src="ledger-smb.png" width="200" height="100" border="0"></a>
<h1 class=login>|.$locale->text('Version').qq| $form->{version}<p>|.$locale->text('Administration').qq|</h1>
<form method=post action="$form->{script}" name=admin>
<table>
<tr>
<th>|.$locale->text('Password').qq|</th>
<td><input type=password name=password></td>
<td><input type=submit class=submit name=action value="|.$locale->text('Login').qq|"></td>
</tr>
<input type=hidden name=action value=login>
<input type=hidden name=path value=$form->{path}>
</table>
</form>
<a href="http://sourceforge.net/projects/ledger-smb/">LedgerSMB |.$locale->text('website').qq|</a>
</div>
</body>
</html>
|;
}
sub login {
&list_users;
}
sub logout {
$form->{callback} = "$form->{script}?path=$form->{path}&endsession=1";
unlink "$userspath/adminhash";
print qq|Set-Cookie: LedgerSMB=; path=/;\n|;
$form->redirect($locale->text('You are logged out'));
}
sub add_user {
$form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Administration')." / ".$locale->text('Add User');
$form->{Oracle_sid} = $sid;
$form->{Oracle_dbport} = '1521';
$form->{Oracle_dbhost} = `hostname`;
if (-f "css/ledger-smb.css") {
$myconfig->{stylesheet} = "ledger-smb.css";
}
$myconfig->{vclimit} = 1000;
$myconfig->{menuwidth} = 155;
$myconfig->{timeout} = 3600;
&form_header;
&form_footer;
}
sub edit {
$form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Administration')." / ".$locale->text('Edit User');
$form->{edit} = 1;
&form_header;
&form_footer;
}
sub form_footer {
if ($form->{edit}) {
$delete = qq|<input type=submit class=submit name=action value="|.$locale->text('Delete').qq|">
<input type=hidden name=edit value=1>|;
}
print qq|
<input name=callback type=hidden value="$form->{script}?action=list_users&path=$form->{path}&sessionid=$form->{sessionid}">
<input type=hidden name=path value=$form->{path}>
<input type=hidden name=sessionid value=$form->{sessionid}>
<input type=submit class=submit name=action value="|.$locale->text('Save').qq|">
$delete
</form>
</body>
</html>
|;
}
sub list_users {
open(FH, "$memberfile") or $form->error("$memberfile : $!");
$nologin = qq|
<input type=submit class=submit name=action value="|.$locale->text('Lock System').qq|">|;
if (-e "$userspath/nologin") {
$nologin = qq|
<input type=submit class=submit name=action value="|.$locale->text('Unlock System').qq|">|;
}
while (<FH>) {
chop;
if (/^\[.*\]/) {
$login = $_;
$login =~ s/(\[|\])//g;
}
if (/^(name=|company=|templates=|dbuser=|dbdriver=|dbname=|dbhost=)/) {
chop ($var = $&);
($null, $member{$login}{$var}) = split /=/, $_, 2;
}
}
close(FH);
# type=submit $locale->text('Pg Database Administration')
# type=submit $locale->text('PgPP Database Administration')
# type=submit $locale->text('Oracle Database Administration')
foreach $item (User->dbdrivers) {
$dbdrivers .= qq|<input name=action type=submit class=submit value="|.$locale->text("$item Database Administration").qq|">|;
}
$column_header{login} = qq|<th>|.$locale->text('Login').qq|</th>|;
$column_header{name} = qq|<th>|.$locale->text('Name').qq|</th>|;
$column_header{company} = qq|<th>|.$locale->text('Company').qq|</th>|;
$column_header{dbdriver} = qq|<th>|.$locale->text('Driver').qq|</th>|;
$column_header{dbhost} = qq|<th>|.$locale->text('Host').qq|</th>|;
$column_header{dataset} = qq|<th>|.$locale->text('Dataset').qq|</th>|;
$column_header{templates} = qq|<th>|.$locale->text('Templates').qq|</th>|;
@column_index = qw(login name company dbdriver dbhost dataset templates);
$form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Administration');
$form->{login} = "root login";
$form->header;
print qq|
<body class=admin>
<form method=post action=$form->{script}>
<table width=100%>
<tr>
<tr class=listheading>
<th>$form->{title}</th>
</tr>
<tr size=5></tr>
<tr>
<td>
<table width=100%>
<tr class=listheading>|;
for (@column_index) { print "$column_header{$_}\n" }
print qq|
</tr>
|;
foreach $key (sort keys %member) {
$href = "$script?action=edit&login=$key&path=$form->{path}&sessionid=$form->{sessionid}";
$href =~ s/ /%20/g;
$member{$key}{templates} =~ s/^$templates\///;
$member{$key}{dbhost} = $locale->text('localhost') unless $member{$key}{dbhost};
$member{$key}{dbname} = $member{$key}{dbuser} if ($member{$key}{dbdriver} eq 'Oracle');
$column_data{login} = qq|<td><a href=$href>$key</a></td>|;
$column_data{name} = qq|<td>$member{$key}{name}</td>|;
$column_data{company} = qq|<td>$member{$key}{company}</td>|;
$column_data{dbdriver} = qq|<td>$member{$key}{dbdriver}</td>|;
$column_data{dbhost} = qq|<td>$member{$key}{dbhost}</td>|;
$column_data{dataset} = qq|<td>$member{$key}{dbname}</td>|;
$column_data{templates} = qq|<td>$member{$key}{templates}</td>|;
$i++; $i %= 2;
print qq|
<tr class=listrow$i>|;
for (@column_index) { print "$column_data{$_}\n" }
print qq|
</tr>|;
}
print qq|
</table>
</td>
</tr>
<tr>
<td><hr size=3 noshade></td>
</tr>
</table>
<input type=hidden name=path value=$form->{path}>
<input type=hidden name=sessionid value=$form->{sessionid}>
<br><input type=submit class=submit name=action value="|.$locale->text('Add User').qq|">
<input type=submit class=submit name=action value="|.$locale->text('Change Admin Password').qq|">
$dbdrivers
$nologin
<input type=submit class=submit name=action value="|.$locale->text('Logout').qq|">
</form>
|.$locale->text('Click on login name to edit!').qq|
<br>
|.$locale->text('To add a user to a group edit a name, change the login name and save. A new user with the same variables will then be saved under the new login name.').qq|
</body>
</html>
|;
}
sub form_header {
# if there is a login, get user
if ($form->{login}) {
# get user
$myconfig = new User "$memberfile", "$form->{login}";
for (qw(company address signature)) { $myconfig->{$_} = $form->quote($myconfig->{$_}) }
for (qw(address signature)) { $myconfig->{$_} =~ s/\\n/\n/g }
# strip basedir from templates directory
$myconfig->{templates} =~ s/^$templates\///;
$myconfig->{dbpasswd} = unpack 'u', $myconfig->{dbpasswd};
}
foreach $item (qw(mm-dd-yy mm/dd/yy dd-mm-yy dd/mm/yy dd.mm.yy yyyy-mm-dd)) {
$dateformat .= ($item eq $myconfig->{dateformat}) ? "<option selected>$item\n" : "<option>$item\n";
}
foreach $item (qw(1,000.00 1000.00 1.000,00 1000,00 1'000.00)) {
$numberformat .= ($item eq $myconfig->{numberformat}) ? "<option selected>$item\n" : "<option>$item\n";
}
%countrycodes = User->country_codes;
$countrycodes = "";
foreach $key (sort { $countrycodes{$a} cmp $countrycodes{$b} } keys %countrycodes) {
$countrycodes .= ($myconfig->{countrycode} eq $key) ? "<option selected value=$key>$countrycodes{$key}" : "<option value=$key>$countrycodes{$key}";
}
$countrycodes = qq|<option value="">English\n$countrycodes|;
# is there a templates basedir
if (! -d "$templates") {
$form->error($locale->text('Directory').": $templates ".$locale->text('does not exist'));
}
opendir TEMPLATEDIR, "$templates/." or $form->error("$templates : $!");
@all = grep !/^\.\.?$/, readdir TEMPLATEDIR;
closedir TEMPLATEDIR;
@allhtml = sort grep /\.html/, @all;
@alldir = ();
for (@all) {
if (-d "$templates/$_") {
push @alldir, $_;
}
}
@allhtml = reverse grep !/Default/, @allhtml;
push @allhtml, 'Default';
@allhtml = reverse @allhtml;
foreach $item (sort @alldir) {
if ($item eq $myconfig->{templates}) {
$usetemplates .= qq|<option selected>$item\n|;
} else {
$usetemplates .= qq|<option>$item\n|;
}
}
$lastitem = $allhtml[0];
$lastitem =~ s/-.*//g;
$mastertemplates = qq|<option>$lastitem\n|;
foreach $item (@allhtml) {
$item =~ s/-.*//g;
if ($item ne $lastitem) {
$mastertemplates .= qq|<option>$item\n|;
$lastitem = $item;
}
}
opendir CSS, "css/.";
@all = grep /.*\.css$/, readdir CSS;
closedir CSS;
foreach $item (@all) {
if ($item eq $myconfig->{stylesheet}) {
$selectstylesheet .= qq|<option selected>$item\n|;
} else {
$selectstylesheet .= qq|<option>$item\n|;
}
}
$selectstylesheet .= "<option>\n";
if (%printer && $latex) {
$selectprinter = "<option>\n";
foreach $item (sort keys %printer) {
if ($myconfig->{printer} eq $item) {
$selectprinter .= qq|<option value="$item" selected>$item\n|;
} else {
$selectprinter .= qq|<option value="$item">$item\n|;
}
}
$printer = qq|
<tr>
<th align=right>|.$locale->text('Printer').qq|</th>
<td><select name=printer>$selectprinter</select></td>
</tr>
|;
}
$user = $form->{login};
$form->{login} = "root login";
$form->header;
$form->{login} = $user;
print qq|
<body class=admin>
<form method=post action=$form->{script}>
<table width=100%>
<tr class=listheading><th colspan=2>$form->{title}</th></tr>
<tr size=5></tr>
<tr valign=top>
<td>
<table>
<tr>
<th align=right>|.$locale->text('Login').qq|</th>
<td><input name=login value="$myconfig->{login}"></td>
</tr>
<tr>
<th align=right>|.$locale->text('Password').qq|</th>
<td><input type=password name=new_password size=8 value=$myconfig->{password}></td>
<input type=hidden name=old_password value=$myconfig->{password}>
</tr>
<tr>
<th align=right>|.$locale->text('Name').qq|</th>
<td><input name=name size=15 value="$myconfig->{name}"></td>
</tr>
<tr>
<th align=right>|.$locale->text('E-mail').qq|</th>
<td><input name=email size=30 value="$myconfig->{email}"></td>
</tr>
<tr valign=top>
<th align=right>|.$locale->text('Signature').qq|</th>
<td><textarea name=signature rows=3 cols=35>$myconfig->{signature}</textarea></td>
</tr>
<tr>
<th align=right>|.$locale->text('Phone').qq|</th>
<td><input name=tel size=14 value="$myconfig->{tel}"></td>
</tr>
<tr>
<th align=right>|.$locale->text('Fax').qq|</th>
<td><input name=fax size=14 value="$myconfig->{fax}"></td>
</tr>
<tr>
<th align=right>|.$locale->text('Company').qq|</th>
<td><input name=company size=35 value="$myconfig->{company}"></td>
</tr>
<tr valign=top>
<th align=right>|.$locale->text('Address').qq|</th>
<td><textarea name=address rows=4 cols=35>$myconfig->{address}</textarea></td>
</tr>
</table>
</td>
<td>
<table>
<tr>
<th align=right>|.$locale->text('Date Format').qq|</th>
<td><select name=dateformat>$dateformat</select></td>
</tr>
<tr>
<th align=right>|.$locale->text('Number Format').qq|</th>
<td><select name=numberformat>$numberformat</select></td>
</tr>
<tr>
<th align=right>|.$locale->text('Dropdown Limit').qq|</th>
<td><input name=vclimit value="$myconfig->{vclimit}"></td>
</tr>
<tr>
<th align=right>|.$locale->text('Menu Width').qq|</th>
<td><input name=menuwidth value="$myconfig->{menuwidth}"></td>
</tr>
<tr>
<th align=right>|.$locale->text('Language').qq|</th>
<td><select name=countrycode>$countrycodes</select></td>
</tr>
<tr>
<th align=right>|.$locale->text('Session Timeout').qq|</th>
<td><input name=newtimeout value="$myconfig->{timeout}"></td>
</tr>
<tr>
<th align=right>|.$locale->text('Stylesheet').qq|</th>
<td><select name=userstylesheet>$selectstylesheet</select></td>
</tr>
$printer
<tr>
<th align=right>|.$locale->text('Use Templates').qq|</th>
<td><select name=usetemplates>$usetemplates</select></td>
</tr>
<tr>
<th align=right>|.$locale->text('New Templates').qq|</th>
<td><input name=newtemplates></td>
</tr>
<tr>
<th align=right>|.$locale->text('Setup Templates').qq|</th>
<td><select name=mastertemplates>$mastertemplates</select></td>
</tr>
<input type=hidden name=templates value=$myconfig->{templates}>
</table>
</td>
</tr>
<tr class=listheading>
<th colspan=2>|.$locale->text('Database').qq|</th>
</tr>|;
# list section for database drivers
foreach $item (User->dbdrivers) {
print qq|
<tr>
<td colspan=2>
<table>
<tr>|;
$checked = "";
if ($myconfig->{dbdriver} eq $item) {
for (qw(dbhost dbport dbuser dbpasswd dbname sid)) { $form->{"${item}_$_"} = $myconfig->{$_} }
$checked = "checked";
}
print qq|
<th align=right>|.$locale->text('Driver').qq|</th>
<td><input name=dbdriver type=radio class=radio value=$item $checked> $item</td>
<th align=right>|.$locale->text('Host').qq|</th>
<td><input name="${item}_dbhost" size=30 value=$form->{"${item}_dbhost"}></td>
</tr>
<tr>|;
if ($item =~ /Pg/) {
print qq|
<th align=right>|.$locale->text('Dataset').qq|</th>
<td><input name="${item}_dbname" size=15 value=$form->{"${item}_dbname"}></td>
<th align=right>|.$locale->text('Port').qq|</th>
<td><input name="${item}_dbport" size=4 value=$form->{"${item}_dbport"}></td>
</tr>
<tr>
<th align=right>|.$locale->text('User').qq|</th>
<td><input name="${item}_dbuser" size=15 value=$form->{"${item}_dbuser"}></td>
<th align=right>|.$locale->text('Password').qq|</th>
<td><input name="${item}_dbpasswd" type=password size=10 value=$form->{"${item}_dbpasswd"}></td>
</tr>|;
}
if ($item eq 'Oracle') {
print qq|
<th align=right>SID</th>
<td><input name=Oracle_sid value=$form->{Oracle_sid}></td>
<th align=right>|.$locale->text('Port').qq|</th>
<td><input name="${item}_dbport size=4 value=$form->{"${item}_dbport"}></td>
</tr>
<tr>
<th align=right>|.$locale->text('Dataset').qq|</th>
<td><input name="${item}_dbuser" size=15 value=$form->{"${item}_dbuser"}></td>
<th align=right>|.$locale->text('Password').qq|</th>
<td><input name="${item}_dbpasswd" type=password size=10 value=$form->{"${item}_dbpasswd"}></td>
</tr>|;
}
print qq|
<input type=hidden name=old_dbpasswd value=$myconfig->{dbpasswd}>
</table>
</td>
</tr>
<tr>
<td colspan=2><hr size=2 noshade></td>
</tr>
|;
}
# access control
open(FH, $menufile) or $form->error("$menufile : $!");
# scan for first menu level
@a = <FH>;
close(FH);
if (open(FH, "custom_$menufile")) {
push @a, <FH>;
}
close(FH);
foreach $item (@a) {
next unless $item =~ /\[\w+/;
next if $item =~ /\#/;
$item =~ s/(\[|\])//g;
chop $item;
if ($item =~ /--/) {
($level, $menuitem) = split /--/, $item, 2;
} else {
$level = $item;
$menuitem = $item;
push @acsorder, $item;
}
push @{ $acs{$level} }, $menuitem;
}
%role = ( 'admin' => $locale->text('Administrator'),
'user' => $locale->text('User'),
'supervisor' => $locale->text('Supervisor'),
'manager' => $locale->text('Manager')
);
$selectrole = "";
foreach $item (qw(user admin supervisor manager)) {
$selectrole .= ($myconfig->{role} eq $item) ? "<option selected value=$item>$role{$item}\n" : "<option value=$item>$role{$item}\n";
}
print qq|
<tr class=listheading>
<th colspan=2>|.$locale->text('Access Control').qq|</th>
</tr>
<tr>
<td><select name=role>$selectrole</select></td>
</tr>
|;
foreach $item (split /;/, $myconfig->{acs}) {
($key, $value) = split /--/, $item, 2;
$excl{$key}{$value} = 1;
}
foreach $key (@acsorder) {
$checked = "checked";
if ($form->{login}) {
$checked = ($excl{$key}{$key}) ? "" : "checked";
}
# can't have variable names with & and spaces
$item = $form->escape("${key}--$key",1);
$acsheading = $key;
$acsheading =~ s/ / /g;
$acsheading = qq|
<th align=left nowrap><input name="$item" class=checkbox type=checkbox value=1 $checked> $acsheading</th>\n|;
$menuitems .= "$item;";
$acsdata = "
<td>";
foreach $item (@{ $acs{$key} }) {
next if ($key eq $item);
$checked = "checked";
if ($form->{login}) {
$checked = ($excl{$key}{$item}) ? "" : "checked";
}
$acsitem = $form->escape("${key}--$item",1);
$acsdata .= qq|
<br><input name="$acsitem" class=checkbox type=checkbox value=1 $checked> $item|;
$menuitems .= "$acsitem;";
}
$acsdata .= "
</td>";
print qq|
<tr valign=top>$acsheading $acsdata
</tr>
|;
}
print qq|<input type=hidden name=acs value="$menuitems">
<tr>
<td colspan=2><hr size=3 noshade></td>
</tr>
</table>
</div>
|;
}
sub save {
# no driver checked
$form->error($locale->text('Database Driver not checked!')) unless $form->{dbdriver};
# no spaces allowed in login name
$form->{login} =~ s/ //g;
$form->isblank("login", $locale->text('Login name missing!'));
# check for duplicates
if (!$form->{edit}) {
$temp = new User "$memberfile", "$form->{login}";
if ($temp->{login}) {
$form->error("$form->{login} ".$locale->text('is already a member!'));
}
}
# no spaces allowed in directories
$form->{newtemplates} =~ s/( |\.\.|\*)//g;
if ($form->{newtemplates} ne "") {
$form->{templates} = $form->{newtemplates};
} else {
$form->{templates} = ($form->{usetemplates}) ? $form->{usetemplates} : $form->{login};
}
# is there a basedir
if (! -d "$templates") {
$form->error($locale->text('Directory').": $templates ".$locale->text('does not exist'));
}
# add base directory to $form->{templates}
$form->{templates} = "$templates/$form->{templates}";
$myconfig = new User "$memberfile", "$form->{login}";
# redo acs variable and delete all the acs codes
@acs = split /;/, $form->{acs};
$form->{acs} = "";
foreach $item (@acs) {
$item = $form->escape($item,1);
if (!$form->{$item}) {
$form->{acs} .= $form->unescape($form->unescape("$item")).";";
}
delete $form->{$item};
}
# check which database was filled in
$form->{dbhost} = $form->{"$form->{dbdriver}_dbhost"};
$form->{dbport} = $form->{"$form->{dbdriver}_dbport"};
$form->{dbpasswd} = $form->{"$form->{dbdriver}_dbpasswd"};
$form->{dbuser} = $form->{"$form->{dbdriver}_dbuser"};
$form->{dbname} = $form->{"$form->{dbdriver}_dbname"};
if ($form->{dbdriver} eq 'Oracle') {
$form->{sid} = $form->{Oracle_sid}, ;
$form->isblank("dbhost", $locale->text('Hostname missing!'));
$form->isblank("dbport", $locale->text('Port missing!'));
$form->isblank("dbuser", $locale->text('Dataset missing!'));
}
if ($form->{dbdriver} =~ /Pg/) {
$form->isblank("dbname", $locale->text('Dataset missing!'));
$form->isblank("dbuser", $locale->text('Database User missing!'));
}
foreach $item (keys %{$form}) {
$myconfig->{$item} = $form->{$item};
}
$myconfig->{password} = $form->{old_password};
$myconfig->{password} = $form->{new_password} if $form->{new_password} ne $form->{old_password};
$myconfig->{timeout} = $form->{newtimeout};
delete $myconfig->{stylesheet};
if ($form->{userstylesheet}) {
$myconfig->{stylesheet} = $form->{userstylesheet};
}
$myconfig->{packpw} = 1;
$myconfig->save_member($memberfile, $userspath);
# create user template directory and copy master files
if (! -d "$form->{templates}") {
umask(002);
if (mkdir "$form->{templates}", oct("771")) {
umask(007);
# copy templates to the directory
opendir TEMPLATEDIR, "$templates/." or $form->error("$templates : $!");
@templates = grep /$form->{mastertemplates}-/, readdir TEMPLATEDIR;
closedir TEMPLATEDIR;
foreach $file (@templates) {
open(TEMP, "$templates/$file") or $form->error("$templates/$file : $!");
$file =~ s/$form->{mastertemplates}-//;
open(NEW, ">$form->{templates}/$file") or $form->error("$form->{templates}/$file : $!");
while ($line = <TEMP>) {
print NEW $line;
}
close(TEMP);
close(NEW);
}
} else {
$form->error("$form->{templates} : $!");
}
}
$form->redirect($locale->text('User saved!'));
}
sub delete {
$form->{templates} = ($form->{templates}) ? "$templates/$form->{templates}" : "$templates/$form->{login}";
$form->error("$memberfile ".$locale->text('locked!')) if (-f ${memberfile}.LCK);
open(FH, ">${memberfile}.LCK") or $form->error("${memberfile}.LCK : $!");
close(FH);
if (! open(CONF, "+<$memberfile")) {
unlink "${memberfile}.LCK";
$form->error("$memberfile : $!");
}
@config = <CONF>;
seek(CONF, 0, 0);
truncate(CONF, 0);
while ($line = shift @config) {
chop $line;
if ($line =~ /^\[/) {
last if ($line eq "[$form->{login}]");
$login = &login_name($line);
}
if ($line =~ /^templates=/) {
($null, $user{$login}) = split /=/, $line, 2;
}
print CONF "$line\n";
}
# remove everything up to next login or EOF
# and save template variable
while ($line = shift @config) {
chop $line;
($key, $value) = split /=/, $line, 2;
$myconfig{$key} = $value;
last if ($line =~ /^\[/);
}
# this one is either the next login or EOF
print CONF "$line\n";
$login = &login_name($line);
while ($line = shift @config) {
chop $line;
if ($line =~ /^\[/) {
$login = &login_name($line);
}
if ($line =~ /^templates=/) {
($null, $user{$login}) = split /=/, $line, 2;
}
print CONF "$line\n";
}
close(CONF);
unlink "${memberfile}.LCK";
# scan %user for $templatedir
foreach $login (keys %user) {
last if ($found = ($form->{templates} eq $user{$login}));
}
# if found keep directory otherwise delete
if (!$found) {
# delete it if there is a template directory
$dir = "$form->{templates}";
if (-d "$dir") {
unlink <$dir/*>;
rmdir "$dir";
}
}
if ($myconfig{dbconnect}) {
$myconfig{dbpasswd} = unpack 'u', $myconfig{dbpasswd};
for (keys %myconfig) { $form->{$_} = $myconfig{$_} }
User->delete_login(\%$form);
# delete config file for user
unlink "$userspath/$form->{login}.conf";
}
$form->redirect($locale->text('User deleted!'));
}
sub login_name {
my $login = shift;
$login =~ s/\[\]//g;
return ($login) ? $login : undef;
}
sub change_admin_password {
$form->{title} = qq|LedgerSMB |.$locale->text('Accounting')." ".$locale->text('Administration')." / ".$locale->text('Change Admin Password');
$form->{login} = "root login";
$form->header;
print qq|
<body class=admin>
<form method=post action=$form->{script}>
<table>
<tr>
<tr class=listheading>
<th>|.$locale->text('Change Password').qq|</th>
</tr>
<tr size=5></tr>
<tr>
<td>
<table width=100%>
<tr>
<th align=right>|.$locale->text('Password').qq|</th>
<td><input type=password name=new_password></td>
</tr>
<tr>
<th align=right>|.$locale->text('Confirm').qq|</th>
<td><input type=password name=confirm_password></td>
</tr>
</table>
</td>
</tr>
</table>
<br>
<hr size=3 noshade>
<input type=hidden name=path value=$form->{path}>
<input type=hidden name=sessionid value=$form->{sessionid}>
<p>
<input type=submit class=submit name=action value="|.$locale->text('Change Password').qq|">
</form>
</body>
</html>
|;
}
sub change_password {
$form->error($locale->text('Passwords do not match!')) if $form->{new_password} ne $form->{confirm_password};
$root->{password} = $form->{new_password};
$root->{'root login'} = 1;
$root->save_member($memberfile);
$form->{callback} = "$form->{script}?action=list_users&path=$form->{path}&sessionid=$form->{sessionid}";
$form->redirect($locale->text('Password changed!'));
}
sub get_hash {
use Digest::MD5;
$form->{hash} = Digest::MD5::md5_hex rand();
}
sub check_password {
$root = new User "$memberfile", "root login";
if ($root->{password}) {
if ($form->{password}) {
$form->{callback} .= "&password=$form->{password}" if $form->{callback};
$form->{sessionid} = time;
if ($root->{password} ne crypt $form->{password}, 'ro') {
&getpassword;
exit;
}
&get_hash;
open(HASHFILE, "> $userspath/adminhash")
|| $form->error("Can't Open Hashfile: $!");
print HASHFILE $form->{hash};
print qq|Set-Cookie: LedgerSMB=$form->{hash}; path=/;\n|;
} else {
if ($ENV{HTTP_USER_AGENT}) {
$ENV{HTTP_COOKIE} =~ s/;\s*/;/g;
%cookie = split /[=;]/, $ENV{HTTP_COOKIE}; # Changeme to %cookies
$cookie = ($form->{path} eq 'bin/lynx') ? $cookie{login} : $cookie{"LedgerSMB-root login"};
#fixes problem with first login and such
if (!(-f "$userspath/adminhash")) {
&get_hash;
open(HASHFILE, "> $userspath/adminhash") || $form->error("Can't Open Hashfile: $!");
print HASHFILE $form->{hash};
close(HASHFILE);
}
open (HASHFILE, "< $userspath/adminhash") || $form->error("Can't Open Hashfile: $!");
chomp($form->{hash} = <HASHFILE>);
%cookies = split /[=;]/, $ENV{HTTP_COOKIE};
if (! $cookie || $cookie ne $form->{sessionid} ||
$form->{hash} ne $cookies{LedgerSMB}) {
&getpassword;
exit;
}
}
}
}
}
sub pg_database_administration {
$form->{dbdriver} = 'Pg';
&dbselect_source;
}
sub pgpp_database_administration {
$form->{dbdriver} = 'PgPP';
&dbselect_source;
}
sub oracle_database_administration {
$form->{dbdriver} = 'Oracle';
&dbselect_source;
}
sub dbdriver_defaults {
# load some defaults for the selected driver
%driverdefaults = ( 'Pg' => { dbport => '',
dbuser => 'ledger-smb',
dbdefault => 'template1',
dbhost => '',
connectstring => $locale->text('Connect to')
},
'Oracle' => { dbport => '1521',
dbuser => 'oralin',
dbdefault => $sid,
dbhost => `hostname`,
connectstring => 'SID'
}
);
$driverdefaults{PgPP} = $driverdefaults{Pg};
for (keys %{ $driverdefaults{Pg} }) { $form->{$_} = $driverdefaults{$form->{dbdriver}}{$_} }
}
sub dbselect_source {
&dbdriver_defaults;
$form->{title} = "LedgerSMB ".$locale->text('Accounting')." / ".$locale->text('Database Administration');
$form->{login} = "root login";
$form->header;
print qq|
<body class=admin>
<center>
<h2>$form->{title}</h2>
<form method=post action=$form->{script}>
<table>
<tr>
<td>
<table>
<tr class=listheading>
<th colspan=4>|.$locale->text('Database').qq|</th>
</tr>
<input type=hidden name=dbdriver value=$form->{dbdriver}>
<tr>
<td>
<table>
<tr>
<th align=right>|.$locale->text('Host').qq|</th>
<td><input name=dbhost size=25 value=$form->{dbhost}></td>
<th align=right>|.$locale->text('Port').qq|</th>
<td><input name=dbport size=5 value=$form->{dbport}></td>
</tr>
<tr>
<th align=right>|.$locale->text('User').qq|</th>
<td><input name=dbuser size=10 value=$form->{dbuser}></td>
<th align=right>|.$locale->text('Password').qq|</th>
<td><input type=password name=dbpasswd size=10></td>
</tr>
<tr>
<th align=right>$form->{connectstring}</th>
<td colspan=3><input name=dbdefault size=10 value=$form->{dbdefault}></td>
</tr>
</table>
</td>
</tr>
</table>
<input name=callback type=hidden value="$form->{script}?action=list_users&path=$form->{path}&sessionid=$form->{sessionid}">
<input type=hidden name=path value=$form->{path}>
<input type=hidden name=sessionid value=$form->{sessionid}>
<br>
<input type=submit class=submit name=action value="|.$locale->text('Create Dataset').qq|">
<input type=submit class=submit name=action value="|.$locale->text('Update Dataset').qq|">
<input type=submit class=submit name=action value="|.$locale->text('Delete Dataset').qq|">
</form>
</td>
</tr>
</table>
<p>|.$locale->text('This is a preliminary check for existing sources. Nothing will be created or deleted at this stage!')
.qq|
</body>
</html>
|;
}
sub continue {
&{ $form->{nextsub} };
}
sub update_dataset {
%needsupdate = User->dbneedsupdate(\%$form);
$form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Database Administration')." / ".$locale->text('Update Dataset');
$form->{login} = "root login";
$form->header;
print qq|
<body class=admin>
<center>
<h2>$form->{title}</h2>
|;
foreach $key (sort keys %needsupdate) {
if ($needsupdate{$key} ne $form->{dbversion}) {
$upd .= qq|<input name="db$key" class=checkbox type=checkbox value=1 checked> $key\n|;
$form->{dbupdate} .= "db$key ";
}
}
chop $form->{dbupdate};
if ($form->{dbupdate}) {
print qq|
<table width=100%>
<form method=post action=$form->{script}>
<input type=hidden name=dbdriver value=$form->{dbdriver}>
<input type=hidden name=dbhost value=$form->{dbhost}>
<input type=hidden name=dbport value=$form->{dbport}>
<input type=hidden name=dbuser value=$form->{dbuser}>
<input type=hidden name=dbpasswd value=$form->{dbpasswd}>
<input type=hidden name=dbdefault value=$form->{dbdefault}>
<tr class=listheading>
<th>|.$locale->text('The following Datasets need to be updated').qq|</th>
</tr>
<tr>
<td>
$upd
</td>
</tr>
<tr>
<td>
<input name=dbupdate type=hidden value="$form->{dbupdate}">
<input name=callback type=hidden value="$form->{script}?action=list_users&path=$form->{path}&sessionid=$form->{sessionid}">
<input type=hidden name=path value=$form->{path}>
<input type=hidden name=sessionid value=$form->{sessionid}>
<input type=hidden name=nextsub value=dbupdate>
<hr size=3 noshade>
<br>
<input type=submit class=submit name=action value="|.$locale->text('Continue').qq|">
</td></tr>
</table>
</form>
|;
} else {
print $locale->text('DBA')." : $form->{dbuser} : " .$locale->text('All Datasets up to date!');
}
print qq|
</body>
</html>
|;
}
sub dbupdate {
User->dbupdate(\%$form);
$form->redirect($locale->text('Dataset updated!'));
}
sub create_dataset {
@dbsources = sort User->dbsources(\%$form);
opendir SQLDIR, "sql/." or $form->error($!);
foreach $item (sort grep /-chart\.sql/, readdir SQLDIR) {
next if ($item eq 'Default-chart.sql');
$item =~ s/-chart\.sql//;
push @charts, qq|<input name=chart class=radio type=radio value="$item">$item|;
}
closedir SQLDIR;
# add Default at beginning
unshift @charts, qq|<input name=chart class=radio type=radio value="Default" checked>Default|;
$selectencoding = qq|<option>
<option value=SQL_ASCII>ASCII
<option value=EUC_JP>Japanese EUC
<option value=EUC_CN>Chinese EUC
<option value=EUC_KR>Korean EUC
<option value=JOHAB>Korean EUC (Hangle base)
<option value=EUC_TW>Taiwan EUC
<option value=UNICODE>Unicode (UTF-8)
<option value=MULE_INTERNAL>Mule internal type
<option value=LATIN1>ISO 8859-1/ECMA 94 (Latin alphabet no. 1)
<option value=LATIN2>ISO 8859-2/ECMA 94 (Latin alphabet no. 2)
<option value=LATIN3>ISO 8859-3/ECMA 94 (Latin alphabet no. 3)
<option value=LATIN4>ISO 8859-4/ECMA 94 (Latin alphabet no. 4)
<option value=LATIN5>ISO 8859-9/ECMA 128 (Latin alphabet no. 5)
<option value=LATIN6>ISO 8859-10/ECMA 144 (Latin alphabet no. 6)
<option value=LATIN7>ISO 8859-13 (Latin alphabet no. 7)
<option value=LATIN8>ISO 8859-14 (Latin alphabet no. 8)
<option value=LATIN9>ISO 8859-15 (Latin alphabet no. 9)
<option value=LATIN10>ISO 8859-16/ASRO SR 14111 (Latin alphabet no. 10)
<option value=ISO_8859_5>ISO 8859-5/ECMA 113 (Latin/Cyrillic)
<option value=ISO_8859_6>ISO 8859-6/ECMA 114 (Latin/Arabic)
<option value=ISO_8859_7>ISO 8859-7/ECMA 118 (Latin/Greek)
<option value=ISO_8859_8>ISO 8859-8/ECMA 121 (Latin/Hebrew)
<option value=KOI8>KOI8-R(U)
<option value=WIN>Windows CP1251
<option value=ALT>Windows CP866
<option value=WIN1256>Windows CP1256 (Arabic)
<option value=TCVN>Windows CP1258 (Vietnamese)
<option value=WIN874>Windows CP874 (Thai)
|;
$form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Database Administration')." / ".$locale->text('Create Dataset');
$form->{login} = "root login";
$form->header;
print qq|
<body class=admin>
<center>
<h2>$form->{title}</h2>
<form method=post action=$form->{script}>
<table width=100%>
<tr class=listheading>
<th colspan=2> </th>
</tr>
<tr>
<th align=right nowrap>|.$locale->text('Existing Datasets').qq|</th>
<td>
|;
for (@dbsources) { print "[ $_ ] " }
print qq|
</td>
</tr>
<tr>
<th align=right nowrap>|.$locale->text('Create Dataset').qq|</th>
<td><input name=db></td>
</tr>
<tr>
<th align=right nowrap>|.$locale->text('Multibyte Encoding').qq|</th>
<td><select name=encoding>$selectencoding</select></td>
</tr>
<tr>
<th align=right nowrap>|.$locale->text('Create Chart of Accounts').qq|</th>
<td>
<table>
|;
while (@charts) {
print qq|
<tr>
|;
for (0 .. 2) { print "<td>$charts[$_]</td>\n" }
print qq|
</tr>
|;
splice @charts, 0, 3;
}
print qq|
</table>
</td>
</tr>
<tr>
<td colspan=2>
<hr size=3 noshade>
</td>
</tr>
</table>
|;
$form->hide_form(qw(dbdriver dbuser dbhost dbport dbpasswd dbdefault path sessionid));
print qq|
<input name=callback type=hidden value="$form->{script}?action=list_users&path=$form->{path}&sessionid=$form->{sessionid}">
<input type=hidden name=nextsub value=dbcreate>
<br>
<input type=submit class=submit name=action value="|.$locale->text('Continue').qq|">
</form>
</body>
</html>
|;
}
sub dbcreate {
$form->isblank("db", $locale->text('Dataset missing!'));
User->dbcreate(\%$form);
$form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Database Administration')." / ".$locale->text('Create Dataset');
$form->{login} = "root login";
$form->header;
print qq|
<body class=admin>
<center>
<h2>$form->{title}</h2>
<form method=post action=$form->{script}>|
.$locale->text('Dataset')." $form->{db} ".$locale->text('successfully created!')
.qq|
<input type=hidden name=path value="$form->{path}">
<input type=hidden name=sessionid value=$form->{sessionid}>
<input type=hidden name=nextsub value=list_users>
<p><input type=submit class=submit name=action value="|.$locale->text('Continue').qq|">
</form>
</body>
</html>
|;
}
sub delete_dataset {
if (@dbsources = User->dbsources_unused(\%$form, $memberfile)) {
foreach $item (sort @dbsources) {
$dbsources .= qq|<input name=db class=radio type=radio value=$item> $item |;
}
} else {
$form->error($locale->text('Nothing to delete!'));
}
$form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Database Administration')." / ".$locale->text('Delete Dataset');
$form->{login} = "root login";
$form->header;
print qq|
<body class=admin>
<h2>$form->{title}</h2>
<form method=post action=$form->{script}>
<table width=100%>
<tr class=listheading>
<th>|.$locale->text('The following Datasets are not in use and can be deleted').qq|</th>
</tr>
<tr>
<td>
$dbsources
</td>
</tr>
<tr><td>
<p>
<input type=hidden name=dbdriver value=$form->{dbdriver}>
<input type=hidden name=dbuser value=$form->{dbuser}>
<input type=hidden name=dbhost value=$form->{dbhost}>
<input type=hidden name=dbport value=$form->{dbport}>
<input type=hidden name=dbpasswd value=$form->{dbpasswd}>
<input type=hidden name=dbdefault value=$form->{dbdefault}>
<input name=callback type=hidden value="$form->{script}?action=list_users&path=$form->{path}&sessionid=$form->{sessionid}">
<input type=hidden name=path value="$form->{path}">
<input type=hidden name=sessionid value=$form->{sessionid}>
<input type=hidden name=nextsub value=dbdelete>
<hr size=3 noshade>
<br>
<input type=submit class=submit name=action value="|.$locale->text('Continue').qq|">
</td></tr>
</table>
</form>
</body>
</html>
|;
}
sub dbdelete {
if (!$form->{db}) {
$form->error($locale->text('No Dataset selected!'));
}
User->dbdelete(\%$form);
$form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Database Administration')." / ".$locale->text('Delete Dataset');
$form->{login} = "root login";
$form->header;
print qq|
<body class=admin>
<center>
<h2>$form->{title}</h2>
<form method=post action=$form->{script}>
$form->{db} |.$locale->text('successfully deleted!')
.qq|
<input type=hidden name=path value="$form->{path}">
<input type=hidden name=sessionid value=$form->{sessionid}>
<input type=hidden name=nextsub value=list_users>
<p><input type=submit class=submit name=action value="|.$locale->text('Continue').qq|">
</form>
</body>
</html>
|;
}
sub unlock_system {
unlink "$userspath/nologin";
$form->{callback} = "$form->{script}?action=list_users&path=$form->{path}&sessionid=$form->{sessionid}";
$form->redirect($locale->text('Lockfile removed!'));
}
sub lock_system {
open(FH, ">$userspath/nologin") or $form->error($locale->text('Cannot create Lock!'));
close(FH);
$form->{callback} = "$form->{script}?action=list_users&path=$form->{path}&sessionid=$form->{sessionid}";
$form->redirect($locale->text('Lockfile created!'));
}