summaryrefslogtreecommitdiff
path: root/bin/admin.pl
blob: 359defa73ffc8fd511cd0bfb6944f6e4ca62fe0a (plain) 
    

  1. #=====================================================================
    2. 

  2. # LedgerSMB 
    3. 

  3. # Small Medium Business Accounting software
    4. 

  4. # http://www.ledgersmb.org/
    5. 

  5. #
    6. 

  6. # 
    7. 

  7. # Copyright (C) 2006
    8. 

  8. # This work contains copyrighted information from a number of sources all used
    9. 

  9. # with permission.
    10. 

  10. #
    11. 

  11. # This file contains source code included with or based on SQL-Ledger which
    12. 

  12. # is Copyright Dieter Simader and DWS Systems Inc. 2000-2005 and licensed
    13. 

  13. # under the GNU General Public License version 2 or, at your option, any later
    14. 

  14. # version.  For a full list including contact information of contributors,
    15. 

  15. # maintainers, and copyright holders, see the CONTRIBUTORS file.
    16. 

  16. #
    17. 

  17. # Original Copyright Notice from SQL-Ledger 2.6.17 (before the fork):
    18. 

  18. # Copyright (c) 2000
    19. 

  19. #
    20. 

  20. #  Author: DWS Systems Inc.
    21. 

  21. #     Web: http://www.sql-ledger.org
    22. 

  22. #
    23. 

  23. #  Contributors:
    24. 

  24. #
    25. 

  25. #
    26. 

  26. #======================================================================
    27. 

  27. #
    28. 

  28. # This file has undergone whitespace cleanup.
    29. 

  29. #
    30. 

  30. #======================================================================
    31. 

  31. #
    32. 

  32. # setup module
    33. 

  33. # add/edit/delete users
    34. 

  34. #
    35. 

  35. #======================================================================
    36. 

  36. 

  37. $menufile = "menu.ini";
    38. 

  38. 

  39. use LedgerSMB::Form;
    40. 

  40. use LedgerSMB::User;
    41. 

  41. 

  42. 

  43. $form = new Form;
    44. 

  44. 

  45. $locale = new Locale $language, "admin";
    46. 

  46. $form->{charset} = $locale->{charset};
    47. 

  47. 

  48. eval { require DBI; };
    49. 

  49. $form->error($locale->text('DBI not installed!')) if ($@);
    50. 

  50. 

  51. $form->{stylesheet} = "ledger-smb.css";
    52. 

  52. $form->{favicon} = "favicon.ico";
    53. 

  53. $form->{timeout} = 600;
    54. 

  54. 

  55. require "bin/pw.pl";
    56. 

  56. 

  57. # customization
    58. 

  58. if (-f "bin/custom/$form->{script}") {
    59. 

  59.     eval { require "bin/custom/$form->{script}"; };
    60. 

  60.     $form->error($@) if ($@);
    61. 

  61. }
    62. 

  62. 

  63. 

  64. 

  65. 

  66. 

  67. if ($form->{action}) {
    68. 

  68. 

  69.     &check_password unless $form->{action} eq 'logout';
    70. 

  70.     &{ $locale->findsub($form->{action}) };
    71. 

  71. 

  72. } else {
    73. 

  73. 

  74.     # if there are no drivers bail out
    75. 

  75.     $form->error($locale->text('No Database Drivers available!')) unless (User->dbdrivers);
    76. 

  76. 

  77.     # create memberfile
    78. 

  78.     if (! -f $memberfile) {
    79. 

  79.         open(FH, ">$memberfile") or $form->error("$memberfile : $!");
    80. 

  80.         print FH qq|# LedgerSMB Accounting members
    81. 

  81. 

  82. [root login]
    83. 

  83. password=
    84. 

  84. |;
    85. 

  85.         close FH;
    86. 

  86.     }
    87. 

  87. 

  88.     $root = new User "$memberfile", "root login";
    89. 

  89. 

  90.     unless($root && $root->{password}) { 
    91. 

  91.          &setup_initial_password();
    92. 

  92.          exit;
    93. 

  93.     }
    94. 

  94. 

  95.     &adminlogin;
    96. 

  96. }
    97. 

  97. 

  98. 1;
    99. 

  99. # end
    100. 

  100. 

  101. 

  102. sub setup_initial_password {
    103. 

  103.     
    104. 

  104. 

  105.     $form->header();
    106. 

  106.     print qq|
    107. 

  107.     <body class="admin" onload="sf()">
    108. 

  108.     <div align="center">
    109. 

  109.         <a href="http://www.ledgersmb.org/"><img src="ledger-smb.png" width="200" height="100" border="0" alt="LedgerSMB Logo" /></a>
    110. 

  110.         <h1 class="login">|.$locale->text('Version').qq| $form->{version} <br />|.$locale->text('Administration').qq|</h1>
    111. 

  111.         
    112. 

  112.         <fieldset><legend>Change password</legend>
    113. 

  113.         <p>This is your first time logging into LedgerSMB.  Please set your administrative password</p>
    114. 

  114.         
    115. 

  115.         <form method="post" action="$form->{script}" name="admin">
    116. 

  116.                         <table>
    117. 

  117.                         <tr>
    118. 

  118.                             <th align="right">|.$locale->text('Password').qq|</th>
    119. 

  119.                             <td><input type="password" name="new_password" /></td>
    120. 

  120.                         </tr>
    121. 

  121.                         <tr>
    122. 

  122.                             <th align="right">|.$locale->text('Confirm').qq|</th>
    123. 

  123.                             <td><input type="password" name="confirm_password" /></td>
    124. 

  124.                         </tr>
    125. 

  125.                     </table>
    126. 

  126.         <input type="hidden" name="path" value="$form->{path}" />
    127. 

  127.         <input type="hidden" name="sessionid" value="$form->{sessionid}" />
    128. 

  128.         <p><input type="submit" class="submit" name="action" value="|.$locale->text('Change Password').qq|" /></p>
    129. 

  129.         </form>
    130. 

  130. 

  131.         <a href="http://www.ledgersmb.org/">LedgerSMB |.$locale->text('website').qq|</a>
    132. 

  132.     </div>
    133. 

  133.     </body>
    134. 

  134.     </html>
    135. 

  135. |;  
    136. 

  136. }
    137. 

  137. 

  138. sub adminlogin {
    139. 

  139. 

  140.     $form->{title} = qq|LedgerSMB $form->{version} |.$locale->text('Administration');
    141. 

  141. 

  142.     $myheaderadd = qq|  
    143. 

  143.     <script language="JavaScript" type="text/javascript">
    144. 

  144.     <!--
    145. 

  145.         function sf(){
    146. 

  146.             document.admin.password.focus();
    147. 

  147.         }   
    148. 

  148.     // End -->
    149. 

  149.     </script>
    150. 

  150.     |;
    151. 

  151.     $form->header(undef, $myheaderadd);
    152. 

  152. 

  153.     print qq|
    154. 

  154.     <body class="admin" onload="sf()">
    155. 

  155.     <div align="center">
    156. 

  156.         <a href="http://www.ledgersmb.org/"><img src="ledger-smb.png" width="200" height="100" border="0" alt="LedgerSMB Logo" /></a>
    157. 

  157.         <h1 class="login">|.$locale->text('Version').qq| $form->{version} <br />|.$locale->text('Administration').qq|</h1>
    158. 

  158.         <form method="post" action="$form->{script}" name="admin">
    159. 

  159.         <table>
    160. 

  160.             <tr>
    161. 

  161.                 <th>|.$locale->text('Password').qq|</th>
    162. 

  162.                 <td><input type="password" name="password" /></td>
    163. 

  163.                 <td><input type="submit" class="submit" name="action" value="|.$locale->text('Login').qq|" /></td>
    164. 

  164.             </tr>
    165. 

  165.         </table>
    166. 

  166.         <input type="hidden" name="action" value="login" />
    167. 

  167.         <input type="hidden" name="path" value="$form->{path}" />
    168. 

  168.         </form>
    169. 

  169. 

  170.         <p><a href="login.pl"
    171. 

  171.             >|.$locale->text("Application Login").qq|</a></p>
    172. 

  172. 

  173. 

  174.         <a href="http://www.ledgersmb.org/">LedgerSMB |.$locale->text('website').qq|</a>
    175. 

  175.     </div>
    176. 

  176.     </body>
    177. 

  177.     </html>
    178. 

  178.     |;
    179. 

  179. 

  180. }
    181. 

  181. 

  182. 

  183. sub login {
    184. 

  184. 

  185.     &list_users;
    186. 

  186. }
    187. 

  187. 

  188. 

  189. sub logout {
    190. 

  190. 

  191.     $form->{callback} = "$form->{script}?path=$form->{path}&amp;endsession=1";
    192. 

  192.     unlink "$userspath/adminhash";
    193. 

  193.     print qq|Set-Cookie: LedgerSMB=; path=/;\n|; 
    194. 

  194.     $form->redirect($locale->text('You are logged out'));
    195. 

  195. 

  196. }
    197. 

  197. 

  198. 

  199. sub add_user {
    200. 

  200. 

  201.     $form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Administration')." / ".$locale->text('Add User');
    202. 

  202. 

  203.     if (-f "css/ledger-smb.css") {
    204. 

  204.         $myconfig->{stylesheet} = "ledger-smb.css";
    205. 

  205.     }
    206. 

  206. 

  207.     $myconfig->{vclimit} = 1000;
    208. 

  208.     $myconfig->{menuwidth} = 155;
    209. 

  209.     $myconfig->{timeout} = 3600;
    210. 

  210. 

  211.     &form_header;
    212. 

  212.     &form_footer;
    213. 

  213. }
    214. 

  214. 

  215. 

  216. sub edit {
    217. 

  217. 

  218.     $form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Administration')." / ".$locale->text('Edit User');
    219. 

  219.     $form->{edit} = 1;
    220. 

  220. 

  221.     &form_header;
    222. 

  222.     &form_footer;
    223. 

  223. }
    224. 

  224. 

  225. 

  226. sub form_footer {
    227. 

  227. 

  228.     if ($form->{edit}) {
    229. 

  229.         $delete = qq|<input type="submit" class="submit" name="action" value="|.$locale->text('Delete').qq|" />
    230. 

  230.                      <input type="hidden" name="edit" value="1" />|;
    231. 

  231.     }
    232. 

  232. 

  233.     print qq|
    234. 

  234.     <input name="callback" type="hidden" value="$form->{script}?action=list_users&amp;path=$form->{path}&amp;sessionid=$form->{sessionid}" />
    235. 

  235.     <input type="hidden" name="path" value="$form->{path}" />
    236. 

  236.     <input type="hidden" name="sessionid" value="$form->{sessionid}" />
    237. 

  237.     <input type="submit" class="submit" name="action" value="|.$locale->text('Save').qq|" />
    238. 

  238.     $delete
    239. 

  239.     </form>
    240. 

  240.     </body>
    241. 

  241.     </html>
    242. 

  242.     |;
    243. 

  243. }
    244. 

  244. 

  245. 

  246. sub list_users {
    247. 

  247. 

  248.     open(FH, "$memberfile") or $form->error("$memberfile : $!");
    249. 

  249. 

  250.     $nologin = qq|<input type="submit" class="submit" name="action" value="|.$locale->text('Lock System').qq|" />|;
    251. 

  251. 

  252.     if (-e "$userspath/nologin") {
    253. 

  253.         $nologin = qq|<input type="submit" class="submit" name="action" value="|.$locale->text('Unlock System').qq|" />|;
    254. 

  254.     }
    255. 

  255. 

  256. 

  257.     while (<FH>) {
    258. 

  258.         chop;
    259. 

  259. 

  260.         if (/^\[.*\]/) {
    261. 

  261.             $login = $_;
    262. 

  262.             $login =~ s/(\[|\])//g;
    263. 

  263.         }
    264. 

  264. 

  265.         if (/^(name=|company=|templates=|dbuser=|dbdriver=|dbname=|dbhost=)/) {
    266. 

  266.             chop ($var = $&);
    267. 

  267.             ($null, $member{$login}{$var}) = split /=/, $_, 2;
    268. 

  268.         }
    269. 

  269.     }
    270. 

  270. 

  271.     close(FH);
    272. 

  272. 

  273.     # type=submit $locale->text('Pg Database Administration')
    274. 

  274.     # type=submit $locale->text('PgPP Database Administration')
    275. 

  275. 

  276.     foreach $item (User->dbdrivers) {
    277. 

  277.         $dbdrivers .= qq|<input name="action" type="submit" class="submit" value="|.$locale->text("$item Database Administration").qq|" />|;
    278. 

  278.     }
    279. 

  279. 

  280. 

  281.     $column_header{login} = qq|<th>|.$locale->text('Login').qq|</th>|;
    282. 

  282.     $column_header{name} = qq|<th>|.$locale->text('Name').qq|</th>|;
    283. 

  283.     $column_header{company} = qq|<th>|.$locale->text('Company').qq|</th>|;
    284. 

  284.     $column_header{dbdriver} = qq|<th>|.$locale->text('Driver').qq|</th>|;
    285. 

  285.     $column_header{dbhost} = qq|<th>|.$locale->text('Host').qq|</th>|;
    286. 

  286.     $column_header{dataset} = qq|<th>|.$locale->text('Dataset').qq|</th>|;
    287. 

  287.     $column_header{templates} = qq|<th>|.$locale->text('Templates').qq|</th>|;
    288. 

  288. 

  289.     @column_index = qw(login name company dbdriver dbhost dataset templates);
    290. 

  290. 

  291.     $form->{title} = "LedgerSMB ".$locale->text('Accounting')." ".$locale->text('Administration');
    292. 

  292. 

  293.     $form->{login} = "root login";
    294. 

  294.     $form->header;
    295. 

  295. 

  296.     print qq|
    297. 

  297.         <body class="admin">
    298. 

  298.         <form method="post" action="$form->{script}">
    299. 

  299.         <table width="100%">
    300. 

  300.             <tr class="listheading">
    301. 

  301.                 <th>$form->{title}</th>
    302. 

  302.             </tr>
    303. 

  303.             <tr size="5"></tr>
    304. 

  304.             <tr>
    305. 

  305.                 <td>
    306. 

  306.                     <table width="100%">
    307. 

  307.                         <tr class="listheading">|;
    308. 

  308. 

  309.     for (@column_index) { print "$column_header{$_}\n" }
    310. 

  310. 

  311.     print qq|           </tr>|;
    312. 

  312. 

  313.     foreach $key (sort keys %member) {
    314. 

  314. 

  315.         $href = "$script?action=edit&amp;login=$key&amp;path=$form->{path}&amp;sessionid=$form->{sessionid}";
    316. 

  316.         $href =~ s/ /%20/g;
    317. 

  317. 

  318.         $member{$key}{templates} =~ s/^$templates\///;
    319. 

  319.         $member{$key}{dbhost} = $locale->text('localhost') unless $member{$key}{dbhost};
    320. 

  320. 

  321.         $column_data{login} = qq|<td><a href="$href">$key</a></td>|;
    322. 

  322.         $column_data{name} = qq|<td>$member{$key}{name}</td>|;
    323. 

  323.         $column_data{company} = qq|<td>$member{$key}{company}</td>|;
    324. 

  324.         $column_data{dbdriver} = qq|<td>$member{$key}{dbdriver}</td>|;
    325. 

  325.         $column_data{dbhost} = qq|<td>$member{$key}{dbhost}</td>|;
    326. 

  326.         $column_data{dataset} = qq|<td>$member{$key}{dbname}</td>|;
    327. 

  327.         $column_data{templates} = qq|<td>$member{$key}{templates}</td>|;
    328. 

  328. 

  329.         $i++; $i %= 2;
    330. 

  330.         print qq|       <tr class="listrow$i">|;
    331. 

  331. 

  332.         for (@column_index) { print "$column_data{$_}\n"; }
    333. 

  333. 

  334.         print qq|       </tr>|;
    335. 

  335.     }
    336. 

  336. 

  337. 

  338.     print qq|       </table>
    339. 

  339.                 </td>
    340. 

  340.             </tr>
    341. 

  341.             <tr>
    342. 

  342.                 <td><hr size="3" noshade /></td>
    343. 

  343.             </tr>
    344. 

  344.         </table>
    345. 

  345.         <input type="hidden" name="path" value="$form->{path}" />
    346. 

  346.         <input type="hidden" name="sessionid" value="$form->{sessionid}" />
    347. 

  347.         <br />
    348. 

  348.         <input type="submit" class="submit" name="action" value="|.$locale->text('Add User').qq|" />
    349. 

  349.         <input type="submit" class="submit" name="action" value="|.$locale->text('Change Admin Password').qq|" />
    350. 

  350. 

  351.         $dbdrivers
    352. 

  352.         $nologin
    353. 

  353. 

  354.         <input type="submit" class="submit" name="action" value="|.$locale->text('Logout').qq|" />
    355. 

  355.         </form>
    356. 

  356. 

  357.     |.$locale->text('Click on login name to edit!').qq|
    358. 

  358.     <br />
    359. 

  359.     |.$locale->text('To add a user to a group edit a name, change the login name and save.  A new user with the same variables will then be saved under the new login name.').qq|
    360. 

  360. 

  361.     </body>
    362. 

  362.     </html>|;
    363. 

  363. }
    364. 

  364. 

  365. 

  366. sub form_header {
    367. 

  367. 

  368.     # if there is a login, get user
    369. 

  369.     if ($form->{login}) {
    370. 

  370. 

  371.         # get user
    372. 

  372.         $myconfig = new User "$memberfile", "$form->{login}";
    373. 

  373. 

  374.         for (qw(company address signature)) { $myconfig->{$_} = $form->quote($myconfig->{$_}) }
    375. 

  375.         for (qw(address signature)) { $myconfig->{$_} =~ s/\\n/\n/g }
    376. 

  376. 

  377.         # strip basedir from templates directory
    378. 

  378.         $myconfig->{templates} =~ s/^$templates\///;
    379. 

  379.         $myconfig->{dbpasswd} = unpack 'u', $myconfig->{dbpasswd};
    380. 

  380.     }
    381. 

  381. 

  382.     foreach $item (qw(mm-dd-yy mm/dd/yy dd-mm-yy dd/mm/yy dd.mm.yy yyyy-mm-dd)) {
    383. 

  383.         $dateformat .= ($item eq $myconfig->{dateformat}) ? "<option selected>$item</option>\n" : "<option>$item</option>\n";
    384. 

  384.     }
    385. 

  385. 

  386.     my @formats = qw(1,000.00 1000.00 1.000,00 1000,00 1'000.00);
    387. 

  387.     push @formats, '1 000.00';
    388. 

  388.     foreach $item (@formats) {
    389. 

  389.         $numberformat .= ($item eq $myconfig->{numberformat}) ? "<option selected>$item</option>\n" : "<option>$item</option>\n";
    390. 

  390.     }
    391. 

  391. 

  392. 

  393.     %countrycodes = User->country_codes;
    394. 

  394.     $countrycodes = "";
    395. 

  395. 

  396.     foreach $key (sort { $countrycodes{$a} cmp $countrycodes{$b} } keys %countrycodes) {
    397. 

  397.         $countrycodes .= ($myconfig->{countrycode} eq $key) ? qq|<option selected value="$key">$countrycodes{$key}</option>|
    398. 

  398.                                                             : qq|<option value="$key">$countrycodes{$key}</option>|;
    399. 

  399.     }
    400. 

  400. 

  401.     $countrycodes = qq|<option value="">English</option>\n$countrycodes|;
    402. 

  402. 

  403.     # is there a templates basedir
    404. 

  404.     if (! -d "$templates") {
    405. 

  405.         $form->error($locale->text('Directory').": $templates ".$locale->text('does not exist'));
    406. 

  406.     }
    407. 

  407. 

  408.     opendir TEMPLATEDIR, "$templates/." or $form->error("$templates : $!");
    409. 

  409.     @all = grep !/^\.\.?$/, readdir TEMPLATEDIR;
    410. 

  410.     closedir TEMPLATEDIR;
    411. 

  411. 

  412.     @allhtml = sort grep /\.html/, @all;
    413. 

  413. 

  414.     @alldir = ();
    415. 

  415.     for (@all) {
    416. 

  416. 

  417.         if (-d "$templates/$_") {
    418. 

  418.             push @alldir, $_;
    419. 

  419.         }
    420. 

  420.     }
    421. 

  421. 

  422.     @allhtml = reverse grep !/Default/, @allhtml;
    423. 

  423.     push @allhtml, 'Default';
    424. 

  424.     @allhtml = reverse @allhtml;
    425. 

  425. 

  426.     foreach $item (sort @alldir) {
    427. 

  427. 

  428.         if ($item eq $myconfig->{templates}) {
    429. 

  429.             $usetemplates .= qq|<option selected value="$item">$item</option>\n|;
    430. 

  430.         } else {
    431. 

  431.             $usetemplates .= qq|<option value="$item">$item</option>\n|;
    432. 

  432.         }
    433. 

  433.     }
    434. 

  434. 

  435.     $lastitem = $allhtml[0];
    436. 

  436.     $lastitem =~ s/-.*//g;
    437. 

  437.     $mastertemplates = qq|<option value="$lastitem">$lastitem</option>\n|;
    438. 

  438. 

  439.     foreach $item (@allhtml) {
    440. 

  440. 

  441.         $item =~ s/-.*//g;
    442. 

  442. 

  443.         if ($item ne $lastitem) {
    444. 

  444.             $mastertemplates .= qq|<option value="$item">$item</option>\n|;
    445. 

  445.             $lastitem = $item;
    446. 

  446.         }
    447. 

  447.     }
    448. 

  448. 

  449.     opendir CSS, "css/.";
    450. 

  450.     @all = grep /.*\.css$/, readdir CSS;
    451. 

  451.     closedir CSS;
    452. 

  452. 

  453.     foreach $item (@all) {
    454. 

  454. 

  455.         if ($item eq $myconfig->{stylesheet}) {
    456. 

  456.             $selectstylesheet .= qq|<option selected value="$item">$item</option>\n|;
    457. 

  457.         } else {
    458. 

  458.             $selectstylesheet .= qq|<option value="$item">$item</option>\n|;
    459. 

  459.         }
    460. 

  460.     }
    461. 

  461. 

  462.     $selectstylesheet .= "<option></option>\n";
    463. 

  463. 

  464.     if (%printer && $latex) {
    465. 

  465. 

  466.         $selectprinter = "<option></option>\n";
    467. 

  467. 

  468.         foreach $item (sort keys %printer) {
    469. 

  469. 

  470.             if ($myconfig->{printer} eq $item) {
    471. 

  471.                 $selectprinter .= qq|<option value="$item" selected>$item</option>\n|;
    472. 

  472.             } else {
    473. 

  473.                 $selectprinter .= qq|<option value="$item">$item</option>\n|;
    474. 

  474.             }
    475. 

  475.         }
    476. 

  476. 

  477.         $printer = qq|
    478. 

  478.             <tr>
    479. 

  479.                 <th align="right">|.$locale->text('Printer').qq|</th>
    480. 

  480.                 <td><select name="printer">$selectprinter</select></td>
    481. 

  481.             </tr>
    482. 

  482.         |;
    483. 

  483. 

  484.     }
    485. 

  485. 

  486.     $user = $form->{login};
    487. 

  487.     $form->{login} = "root login";
    488. 

  488.     $form->header;
    489. 

  489.     $form->{login} = $user;
    490. 

  490. 

  491.     print qq|
    492. 

  492.     <body class="admin">
    493. 

  493.     <form method="post" action="$form->{script}">
    494. 

  494.     <table width="100%">
    495. 

  495.         <tr class="listheading"><th colspan="2">$form->{title}</th></tr>
    496. 

  496.         <tr size="5"></tr>
    497. 

  497.         <tr valign="top">
    498. 

  498.             <td>
    499. 

  499.                 <table>
    500. 

  500.                     <tr>
    501. 

  501.                         <th align="right">|.$locale->text('Login').qq|</th>
    502. 

  502.                         <td><input name="login" value="$myconfig->{login}" /></td>
    503. 

  503.                     </tr>
    504. 

  504.                     <tr>
    505. 

  505.                         <th align="right">|.$locale->text('Password').qq|</th>
    506. 

  506.                         <td><input type="password" name="new_password" size="8" value="$myconfig->{password}" /></td>
    507. 

  507.                         <input type="hidden" name="old_password" value="$myconfig->{password}" />
    508. 

  508.                     </tr>
    509. 

  509.                     <tr>
    510. 

  510.                         <th align="right">|.$locale->text('Name').qq|</th>
    511. 

  511.                         <td><input name="name" size="15" value="$myconfig->{name}" /></td>
    512. 

  512.                     </tr>
    513. 

  513.                     <tr>
    514. 

  514.                         <th align="right">|.$locale->text('E-mail').qq|</th>
    515. 

  515.                         <td><input name="email" size="30" value="$myconfig->{email}" /></td>
    516. 

  516.                     </tr>
    517. 

  517.                     <tr valign="top">
    518. 

  518.                         <th align="right">|.$locale->text('Signature').qq|</th>
    519. 

  519.                         <td><textarea name="signature" rows="3" cols="35">$myconfig->{signature}</textarea></td>
    520. 

  520.                     </tr>
    521. 

  521.                     <tr>
    522. 

  522.                         <th align="right">|.$locale->text('Phone').qq|</th>
    523. 

  523.                         <td><input name="tel" size="14" value="$myconfig->{tel}" /></td>
    524. 

  524.                     </tr>
    525. 

  525.                     <tr>
    526. 

  526.                         <th align="right">|.$locale->text('Fax').qq|</th>
    527. 

  527.                         <td><input name="fax" size="14" value="$myconfig->{fax}" /></td>
    528. 

  528.                     </tr>
    529. 

  529.                     <tr>
    530. 

  530.                         <th align="right">|.$locale->text('Company').qq|</th>
    531. 

  531.                         <td><input name="company" size="35" value="$myconfig->{company}" /></td>
    532. 

  532.                     </tr>
    533. 

  533.                     <tr valign="top">
    534. 

  534.                         <th align="right">|.$locale->text('Address').qq|</th>
    535. 

  535.                         <td><textarea name="address" rows="4" cols="35">$myconfig->{address}</textarea></td>
    536. 

  536.                     </tr>
    537. 

  537.                 </table>
    538. 

  538.             </td>
    539. 

  539.             <td>
    540. 

  540.                 <table>
    541. 

  541.                     <tr>
    542. 

  542.                         <th align="right">|.$locale->text('Date Format').qq|</th>
    543. 

  543.                         <td><select name="dateformat">$dateformat</select></td>
    544. 

  544.                     </tr>
    545. 

  545.                     <tr>
    546. 

  546.                         <th align="right">|.$locale->text('Number Format').qq|</th>
    547. 

  547.                         <td><select name="numberformat">$numberformat</select></td>
    548. 

  548.                     </tr>
    549. 

  549.                     <tr>
    550. 

  550.                         <th align="right">|.$locale->text('Dropdown Limit').qq|</th>
    551. 

  551.                         <td><input name="vclimit" value="$myconfig->{vclimit}" /></td>
    552. 

  552.                     </tr>
    553. 

  553.                     <tr>
    554. 

  554.                         <th align="right">|.$locale->text('Menu Width').qq|</th>
    555. 

  555.                         <td><input name="menuwidth" value="$myconfig->{menuwidth}" /></td>
    556. 

  556.                     </tr>
    557. 

  557.                     <tr>
    558. 

  558.                         <th align="right">|.$locale->text('Language').qq|</th>
    559. 

  559.                         <td><select name="countrycode">$countrycodes</select></td>
    560. 

  560.                     </tr>
    561. 

  561.                     <tr>
    562. 

  562.                         <th align="right">|.$locale->text('Session Timeout').qq|</th>
    563. 

  563.                         <td><input name="newtimeout" value="$myconfig->{timeout}" /></td>
    564. 

  564.                     </tr>
    565. 

  565.                     <tr>
    566. 

  566.                         <th align="right">|.$locale->text('Stylesheet').qq|</th>
    567. 

  567.                         <td><select name="userstylesheet">$selectstylesheet</select></td>
    568. 

  568.                     </tr>
    569. 

  569.                         $printer
    570. 

  570.                     <tr>
    571. 

  571.                         <th align="right">|.$locale->text('Use Templates').qq|</th>
    572. 

  572.                         <td><select name="usetemplates">$usetemplates</select></td>
    573. 

  573.                     </tr>
    574. 

  574.                     <tr>
    575. 

  575.                         <th align="right">|.$locale->text('New Templates').qq|</th>
    576. 

  576.                         <td><input name="newtemplates" /></td>
    577. 

  577.                     </tr>
    578. 

  578.                     <tr>
    579. 

  579.                         <th align="right">|.$locale->text('Setup Templates').qq|</th>
    580. 

  580.                         <td><select name="mastertemplates">$mastertemplates</select></td>
    581. 

  581.                     </tr>
    582. 

  582.                 </table>
    583. 

  583.                 <input type="hidden" name="templates" value="$myconfig->{templates}" />
    584. 

  584.             </td>
    585. 

  585.         </tr>
    586. 

  586.         <tr class="listheading">
    587. 

  587.             <th colspan="2">|.$locale->text('Database').qq|</th>
    588. 

  588.         </tr>|;
    589. 

  589. 

  590.     # list section for database drivers
    591. 

  591.     foreach $item (User->dbdrivers) {
    592. 

  592. 

  593.         print qq|
    594. 

  594.             <tr>
    595. 

  595.                 <td colspan="2">
    596. 

  596.                     <table>
    597. 

  597.                         <tr>|;
    598. 

  598. 

  599.         $checked = "checked";
    600. 

  600. 

  601.         if ($myconfig->{dbdriver} eq $item) {
    602. 

  602. 

  603.             for (qw(dbhost dbport dbuser dbpasswd dbname sid)) { $form->{"${item}_$_"} = $myconfig->{$_} }
    604. 

  604.             $checked = "checked";
    605. 

  605.         }
    606. 

  606. 

  607.         print qq|
    608. 

  608.                             <th align="right">|.$locale->text('Driver').qq|</th>
    609. 

  609.                             <td><input name="dbdriver" type="radio" class="radio" value="$item" $checked />&nbsp;$item</td>
    610. 

  610.                             <th align="right">|.$locale->text('Host').qq|</th>
    611. 

  611.                             <td><input name="${item}_dbhost" size="30" value="$form->{"${item}_dbhost"}" /></td>
    612. 

  612.                         </tr>
    613. 

  613.                         <tr>|;
    614. 

  614. 

  615.             print qq|
    616. 

  616.                             <th align="right">|.$locale->text('Dataset').qq|</th>
    617. 

  617.                             <td><input name="${item}_dbname" size="15" value="$form->{"${item}_dbname"}" /></td>
    618. 

  618.                             <th align="right">|.$locale->text('Port').qq|</th>
    619. 

  619.                             <td><input name="${item}_dbport" size="4" value="$form->{"${item}_dbport"}" /></td>
    620. 

  620.                         </tr>
    621. 

  621.                         <tr>
    622. 

  622.                             <th align="right">|.$locale->text('User').qq|</th>
    623. 

  623.                             <td><input name="${item}_dbuser" size="15" value="$form->{"${item}_dbuser"}" /></td>
    624. 

  624.                             <th align="right">|.$locale->text('Password').qq|</th>
    625. 

  625.                             <td><input name="${item}_dbpasswd" type="password" size="10" value="$form->{"${item}_dbpasswd"}" /></td>
    626. 

  626.                         </tr>|;
    627. 

  627. 

  628.         print qq|
    629. 

  629.                     </table>
    630. 

  630.                     <input type="hidden" name="old_dbpasswd" value="$myconfig->{dbpasswd}" />
    631. 

  631.                 </td>
    632. 

  632.             </tr>
    633. 

  633.             <tr>
    634. 

  634.                 <td colspan="2"><hr size="2" noshade /></td>
    635. 

  635.             </tr>
    636. 

  636.         |;
    637. 

  637. 

  638.     }
    639. 

  639. 

  640. 

  641.     # access control
    642. 

  642.     open(FH, $menufile) or $form->error("$menufile : $!");
    643. 

  643.     # scan for first menu level
    644. 

  644.     @a = <FH>;
    645. 

  645.     close(FH);
    646. 

  646. 

  647.     if (open(FH, "custom_$menufile")) {
    648. 

  648.         push @a, <FH>;
    649. 

  649.     }
    650. 

  650. 

  651.     close(FH);
    652. 

  652. 

  653.     foreach $item (@a) {
    654. 

  654. 

  655.         next unless $item =~ /\[\w+/;
    656. 

  656.         next if $item =~ /\#/;
    657. 

  657. 

  658.         $item =~ s/(\[|\])//g;
    659. 

  659.         chop $item;
    660. 

  660. 

  661.         if ($item =~ /--/) {
    662. 

  662. 

  663.             ($level, $menuitem) = split /--/, $item, 2;
    664. 

  664.         } else {
    665. 

  665. 

  666.             $level = $item;
    667. 

  667.             $menuitem = $item;
    668. 

  668.             push @acsorder, $item;
    669. 

  669.         }
    670. 

  670. 

  671.         push @{ $acs{$level} }, $menuitem;
    672. 

  672. 

  673.     }
    674. 

  674. 

  675.     %role = (   'admin' => $locale->text('Administrator'),
    676. 

  676.                 'user' => $locale->text('User'),
    677. 

  677.                 'supervisor' => $locale->text('Supervisor'),
    678. 

  678.                 'manager' => $locale->text('Manager'));
    679. 

  679. 

  680.     $selectrole = "";
    681. 

  681. 

  682.     foreach $item (qw(user admin supervisor manager)) {
    683. 

  683.         $selectrole .= ($myconfig->{role} eq $item) ? "<option selected value=\"$item\">$role{$item}</option>\n" 
    684. 

  684.                                                     : "<option value=\"$item\">$role{$item}</option>\n";
    685. 

  685.     }
    686. 

  686. 

  687.     print qq|
    688. 

  688.         <tr class="listheading">
    689. 

  689.             <th colspan="2">|.$locale->text('Access Control').qq|</th>
    690. 

  690.         </tr>
    691. 

  691.         <tr>
    692. 

  692.             <td><select name="role">$selectrole</select></td>
    693. 

  693.         </tr>
    694. 

  694.     |;
    695. 

  695. 

  696.     foreach $item (split /;/, $myconfig->{acs}) {
    697. 

  697.         ($key, $value) = split /--/, $item, 2;
    698. 

  698.         $excl{$key}{$value} = 1;
    699. 

  699.     }
    700. 

  700. 

  701.     foreach $key (@acsorder) {
    702. 

  702. 

  703.         $checked = "checked";
    704. 

  704. 

  705.         if ($form->{login}) {
    706. 

  706.             $checked = ($excl{$key}{$key}) ? "" : "checked";
    707. 

  707.         }
    708. 

  708. 

  709.         # can't have variable names with & and spaces
    710. 

  710.         $item = $form->escape("${key}--$key",1);
    711. 

  711. 

  712.         $acsheading = $key;
    713. 

  713.         $acsheading =~ s/ /&nbsp;/g;
    714. 

  714. 

  715.         $acsheading = qq|
    716. 

  716.             <td align="left" nowrap="nowrap" style="background-color: #C7E9F7" colspan="2">                    
    717. 

  717.                         <input name="$item" class="checkbox" type="checkbox" value="1" $checked  />&nbsp;$acsheading</td><tr><td>\n|;
    718. 

  718.             $menuitems .= "$item;";
    719. 

  719.             $acsdata = "<td style=\"background-color: #F0F0F0\">";
    720. 

  720. 

  721.         foreach $item (@{ $acs{$key} }) {
    722. 

  722. 

  723.             next if ($key eq $item);
    724. 

  724. 

  725.             $checked = "checked";
    726. 

  726. 

  727.             if ($form->{login}) {
    728. 

  728.                 $checked = ($excl{$key}{$item}) ? "" : "checked";
    729. 

  729.             }
    730. 

  730. 

  731.             $acsitem = $form->escape("${key}--$item",1);
    732. 

  732. 

  733.             $acsdata .= qq|<br /><input name="$acsitem" class="checkbox" type="checkbox" value="1" $checked />&nbsp;$item|;
    734. 

  734.             $menuitems .= "$acsitem;";
    735. 

  735.         }
    736. 

  736. 

  737.         $acsdata .= "
    738. 

  738.         </td>";
    739. 

  739. 

  740.         print qq|
    741. 

  741.         <tr valign="top">$acsheading $acsdata
    742. 

  742.         </tr>
    743. 

  743.         |;
    744. 

  744.     }
    745. 

  745. 

  746.     print qq|<input type="hidden" name="acs" value="$menuitems" />
    747. 

  747.             <tr>
    748. 

  748.                 <td colspan="2"><hr size="3" noshade /></td>
    749. 

  749.             </tr>
    750. 

  750.         </table>
    751. 

  751.     </div>
    752. 

  752.     |;
    753. 

  753. 

  754. }
    755. 

  755. 

  756. 

  757. sub save {
    758. 

  758. 

  759.     # no driver checked
    760. 

  760.     $form->error($locale->text('Database Driver not checked!')) unless $form->{dbdriver};
    761. 

  761. 

  762.     # no spaces allowed in login name
    763. 

  763.     $form->{login} =~ s/ //g;
    764. 

  764. 

  765.     $form->isblank("login", $locale->text('Login name missing!'));
    766. 

  766. 

  767.     # check for duplicates
    768. 

  768.     if (!$form->{edit}) {
    769. 

  769. 

  770.         $temp = new User "$memberfile", "$form->{login}";
    771. 

  771. 

  772.         if ($temp->{login}) {
    773. 

  773.             $form->error("$form->{login} ".$locale->text('is already a member!'));
    774. 

  774.         }
    775. 

  775.     }
    776. 

  776. 

  777.     # no spaces allowed in directories
    778. 

  778.     $form->{newtemplates} =~ s/( |\.\.|\*)//g;
    779. 

  779. 

  780.     if ($form->{newtemplates} ne "") {
    781. 

  781.         $form->{templates} = $form->{newtemplates};
    782. 

  782.     } else {
    783. 

  783.         $form->{templates} = ($form->{usetemplates}) ? $form->{usetemplates} : $form->{login};
    784. 

  784.     }
    785. 

  785. 

  786.     # is there a basedir
    787. 

  787.     if (! -d "$templates") {
    788. 

  788.         $form->error($locale->text('Directory').": $templates ".$locale->text('does not exist'));
    789. 

  789.     }
    790. 

  790. 

  791.     # add base directory to $form->{templates}
    792. 

  792.     $form->{templates} = "$templates/$form->{templates}";
    793. 

  793. 

  794. 

  795.     $myconfig = new User "$memberfile", "$form->{login}";
    796. 

  796. 

  797.     # redo acs variable and delete all the acs codes
    798. 

  798.     @acs = split /;/, $form->{acs};
    799. 

  799.     $form->{acs} = "";
    800. 

  800. 

  801.     foreach $item (@acs) {
    802. 

  802. 

  803.         $item = $form->escape($item,1);
    804. 

  804. 

  805.         if (!$form->{$item}) {
    806. 

  806.             $form->{acs} .= $form->unescape($form->unescape("$item")).";";
    807. 

  807.         }
    808. 

  808. 

  809.         delete $form->{$item};
    810. 

  810.     }
    811. 

  811. 

  812.     # check which database was filled in
    813. 

  813. 

  814.     $form->{dbhost} = $form->{"$form->{dbdriver}_dbhost"};
    815. 

  815.     $form->{dbport} = $form->{"$form->{dbdriver}_dbport"};
    816. 

  816.     $form->{dbpasswd} = $form->{"$form->{dbdriver}_dbpasswd"};
    817. 

  817.     $form->{dbuser} = $form->{"$form->{dbdriver}_dbuser"};
    818. 

  818.     $form->{dbname} = $form->{"$form->{dbdriver}_dbname"};
    819. 

  819.     $form->isblank("dbname", $locale->text('Dataset missing!'));
    820. 

  820.     $form->isblank("dbuser", $locale->text('Database User missing!'));
    821. 

  821. 

  822.     foreach $item (keys %{$form}) {
    823. 

  823.         $myconfig->{$item} = $form->{$item};
    824. 

  824.     }
    825. 

  825. 

  826.     $myconfig->{password} = $form->{old_password};
    827. 

  827.     $myconfig->{password} = $form->{new_password} if $form->{new_password} ne $form->{old_password};
    828. 

  828.     $myconfig->{timeout} = $form->{newtimeout};
    829. 

  829. 

  830.     delete $myconfig->{stylesheet};
    831. 

  831. 

  832.     if ($form->{userstylesheet}) {
    833. 

  833.         $myconfig->{stylesheet} = $form->{userstylesheet};
    834. 

  834.     }
    835. 

  835. 

  836.     $myconfig->{packpw} = 1;
    837. 

  837. 

  838.     $myconfig->save_member($memberfile, $userspath);
    839. 

  839.     # create user template directory and copy master files
    840. 

  840.     if (! -d "$form->{templates}") {
    841. 

  841. 

  842.         umask(002);
    843. 

  843. 

  844.         if (mkdir "$form->{templates}", oct("771")) {
    845. 

  845. 

  846.             umask(007);
    847. 

  847. 

  848.             # copy templates to the directory
    849. 

  849.             opendir TEMPLATEDIR, "$templates/." or $form->error("$templates : $!");
    850. 

  850.             @templates = grep /$form->{mastertemplates}-/, readdir TEMPLATEDIR;
    851. 

  851.             closedir TEMPLATEDIR;
    852. 

  852. 

  853.             foreach $file (@templates) {
    854. 

  854. 

  855.                 open(TEMP, "$templates/$file") or $form->error("$templates/$file : $!");
    856. 

  856. 

  857.                 $file =~ s/$form->{mastertemplates}-//;
    858. 

  858.                 open(NEW, ">$form->{templates}/$file") or $form->error("$form->{templates}/$file : $!");
    859. 

  859. 

  860.                 while ($line = <TEMP>) {
    861. 

  861.                     print NEW $line;
    862. 

  862.                 }
    863. 

  863. 

  864.                 close(TEMP);
    865. 

  865.                 close(NEW);
    866. 

  866.             }
    867. 

  867. 

  868.         } else {
    869. 

  869.             $form->error("$form->{templates} : $!");
    870. 

  870.         }
    871. 

  871.     }
    872. 

  872. 

  873.     $form->redirect($locale->text('User saved!'));
    874. 

  874. }
    875. 

  875. 

  876. 

  877. sub delete {
    878. 

  878. 

  879.     $form->{templates} = ($form->{templates}) ? "$templates/$form->{templates}" : "$templates/$form->{login}";
    880. 

  880. 

  881.     $form->error("$memberfile ".$locale->text('locked!')) if (-f ${memberfile}.LCK);
    882. 

  882. 

  883.     open(FH, ">${memberfile}.LCK") or $form->error("${memberfile}.LCK : $!");
    884. 

  884.     close(FH);
    885. 

  885. 

  886.     if (! open(CONF, "+<$memberfile")) {
    887. 

  887.         unlink "${memberfile}.LCK";
    888. 

  888.         $form->error("$memberfile : $!");
    889. 

  889.     }
    890. 

  890. 

  891.     @config = <CONF>;
    892. 

  892. 

  893.     seek(CONF, 0, 0);
    894. 

  894.     truncate(CONF, 0);
    895. 

  895. 

  896.     while ($line = shift @config) {
    897. 

  897. 

  898.         chop $line;
    899. 

  899. 

  900.         if ($line =~ /^\[/) {
    901. 

  901.             last if ($line eq "[$form->{login}]");
    902. 

  902.             $login = &login_name($line);
    903. 

  903.         }
    904. 

  904. 

  905.         if ($line =~ /^templates=/) {
    906. 

  906.             ($null, $user{$login}) = split /=/, $line, 2;
    907. 

  907.         }
    908. 

  908. 

  909.         print CONF "$line\n";
    910. 

  910.     }
    911. 

  911. 

  912.     # remove everything up to next login or EOF
    913. 

  913.     # and save template variable
    914. 

  914.     while ($line = shift @config) {
    915. 

  915. 

  916.         chop $line;
    917. 

  917. 

  918.         ($key, $value) = split /=/, $line, 2;
    919. 

  919.         $myconfig{$key} = $value;
    920. 

  920. 

  921.         last if ($line =~ /^\[/);
    922. 

  922.     }
    923. 

  923. 

  924.     # this one is either the next login or EOF
    925. 

  925.     print CONF "$line\n";
    926. 

  926. 

  927.     $login = &login_name($line);
    928. 

  928. 

  929. 

  930.     while ($line = shift @config) {
    931. 

  931. 

  932.         chop $line;
    933. 

  933. 

  934.         if ($line =~ /^\[/) {
    935. 

  935.             $login = &login_name($line);
    936. 

  936.         }
    937. 

  937. 

  938.         if ($line =~ /^templates=/) {
    939. 

  939.             ($null, $user{$login}) = split /=/, $line, 2;
    940. 

  940.         }
    941. 

  941. 

  942.         print CONF "$line\n";
    943. 

  943.     }
    944. 

  944. 

  945.     close(CONF);
    946. 

  946.     unlink "${memberfile}.LCK";
    947. 

  947. 

  948.     # scan %user for $templatedir
    949. 

  949.     foreach $login (keys %user) {
    950. 

  950.         last if ($found = ($form->{templates} eq $user{$login}));
    951. 

  951.     }
    952. 

  952. 

  953.     # if found keep directory otherwise delete
    954. 

  954.     if (!$found) {
    955. 

  955. 

  956.         # delete it if there is a template directory
    957. 

  957.         $dir = "$form->{templates}";
    958. 

  958.         if (-d "$dir") {
    959. 

  959.             unlink <$dir/*>;
    960. 

  960.             rmdir "$dir";
    961. 

  961.         }
    962. 

  962.     }
    963. 

  963. 

  964.     if ($myconfig{dbconnect}) {
    965. 

  965. 

  966.         $myconfig{dbpasswd} = unpack 'u', $myconfig{dbpasswd};
    967. 

  967.         for (keys %myconfig) { $form->{$_} = $myconfig{$_} }
    968. 

  968. 

  969.         User->delete_login(\%$form);
    970. 

  970. 

  971.         # delete config file for user
    972. 

  972.         unlink "$userspath/$form->{login}.conf";
    973. 

  973.     }
    974. 

  974. 

  975.     $form->redirect($locale->text('User deleted!'));
    976. 

  976. }
    977. 

  977. 

  978. 

  979. sub login_name {
    980. 

  980. 

  981.     my $login = shift;
    982. 

  982.     $login =~ s/\[\]//g;
    983. 

  983.     return ($login) ? $login : undef;
    984. 

  984. }
    985. 

  985. 

  986. 

  987. sub change_admin_password {
    988. 

  988. 

  989.     $form->{title} = qq|LedgerSMB |.$locale->text('Accounting')." ".$locale->text('Administration')." / ".$locale->text('Change Admin Password');
    990. 

  990. 

  991.     $form->{login} = "root login";
    992. 

  992.     $form->header;
    993. 

  993. 

  994.     print qq|
    995. 

  995.     <body class="admin">
    996. 

  996.         <form method="post" action="$form->{script}">
    997. 

  997.         <table>
    998. 

  998.             <tr class="listheading">
    999. 

  999.                 <th>|.$locale->text('Change Password').qq|</th>
    1000. 

  1000.             </tr>
    1001. 

  1001.             <tr size="5"></tr>
    1002. 

  1002.             <tr>
    1003. 

  1003.                 <td>
    1004. 

  1004.                     <table width="100%">
    1005. 

  1005.                         <tr>
    1006. 

  1006.                             <th align="right">|.$locale->text('Password').qq|</th>
    1007. 

  1007.                             <td><input type="password" name="new_password" /></td>
    1008. 

  1008.                         </tr>
    1009. 

  1009.                         <tr>
    1010. 

  1010.                             <th align="right">|.$locale->text('Confirm').qq|</th>
    1011. 

  1011.                             <td><input type="password" name="confirm_password" /></td>
    1012. 

  1012.                         </tr>
    1013. 

  1013.                     </table>
    1014. 

  1014.                 </td>
    1015. 

  1015.             </tr>
    1016. 

  1016.         </table>
    1017. 

  1017.         <br />
    1018. 

  1018.         <hr size="3" noshade />
    1019. 

  1019.         <input type="hidden" name="path" value="$form->{path}" />
    1020. 

  1020.         <input type="hidden" name="sessionid" value="$form->{sessionid}" />
    1021. 

  1021.         <p><input type="submit" class="submit" name="action" value="|.$locale->text('Change Password').qq|" /></p>
    1022. 

  1022.         </form>
    1023. 

  1023.     </body>
    1024. 

  1024.     </html>
    1025. 

  1025.     |;
    1026. 

  1026. 

  1027. }
    1028. 

  1028. 

  1029. 

  1030. sub change_password {
    1031. 

  1031. 

  1032.     $form->error($locale->text('Passwords do not match!')) if $form->{new_password} ne $form->{confirm_password};
    1033. 

  1033.     $root->{password} = $form->{new_password};
    1034. 

  1034.     $root->{'root login'} = 1;
    1035. 

  1035.     $root->save_member($memberfile);
    1036. 

  1036.     $form->{callback} = "$form->{script}?action=list_users&amp;path=$form->{path}&amp;sessionid=$form->{sessionid}";
    1037. 

  1037.     $form->redirect($locale->text('Password changed!'));
    1038. 

  1038. }
    1039. 

  1039. 

  1040. sub get_hash {
    1041. 

  1041.     use Digest::MD5;
    1042. 

  1042.     $form->{hash} = Digest::MD5::md5_hex rand();  
    1043. 

  1043. 

  1044. }
    1045. 

  1045. 

  1046. sub check_password {
    1047. 

  1047. 

  1048.     $root = new User "$memberfile", "root login";
    1049. 

  1049. 

  1050.     if ($root->{password}) {
    1051. 

  1051. 

  1052.         if ($form->{password}) {
    1053. 

  1053. 

  1054.             $form->{callback} .= "&amp;password=$form->{password}" if $form->{callback};
    1055. 

  1055.             $form->{sessionid} = time;
    1056. 

  1056. 

  1057.             if ($root->{password} ne crypt $form->{password}, 'ro') {
    1058. 

  1058.                 &getpassword;
    1059. 

  1059.                 exit;
    1060. 

  1060.             }
    1061. 

  1061. 

  1062.             &get_hash;
    1063. 

  1063. 

  1064.             open(HASHFILE, "> $userspath/adminhash") || $form->error("Can't Open Hashfile: $!");
    1065. 

  1065.             print HASHFILE $form->{hash}; 
    1066. 

  1066.             print qq|Set-Cookie: LedgerSMB=$form->{hash}; path=/;\n|;
    1067. 

  1067. 

  1068.         } else {
    1069. 

  1069. 

  1070.             if ($ENV{HTTP_USER_AGENT}) {
    1071. 

  1071. 

  1072.                 $ENV{HTTP_COOKIE} =~ s/;\s*/;/g;
    1073. 

  1073.                 %cookie = split /[=;]/, $ENV{HTTP_COOKIE}; # Changeme to %cookies
    1074. 

  1074.                 $cookie = ($form->{path} eq 'bin/lynx') ? $cookie{login} : $cookie{"LedgerSMB-root login"};
    1075. 

  1075. 

  1076.                 #fixes problem with first login and such
    1077. 

  1077.                 if (!(-f "$userspath/adminhash")) {
    1078. 

  1078.                     &get_hash;
    1079. 

  1079.                     open(HASHFILE, "> $userspath/adminhash") || $form->error("Can't Open Hashfile: $!");
    1080. 

  1080.                     print HASHFILE $form->{hash}; 
    1081. 

  1081.                     close(HASHFILE);
    1082. 

  1082.                 }   
    1083. 

  1083. 

  1084.                 open (HASHFILE, "< $userspath/adminhash") || $form->error("Can't Open Hashfile: $!");
    1085. 

  1085.                 chomp($form->{hash} = <HASHFILE>);
    1086. 

  1086.                 %cookies = split /[=;]/, $ENV{HTTP_COOKIE};
    1087. 

  1087. 

  1088.                 if (! $cookie || $cookie ne $form->{sessionid} || $form->{hash} ne $cookies{LedgerSMB}) {
    1089. 

  1089. 

  1090.                         &getpassword;
    1091. 

  1091.                         exit;
    1092. 

  1092.                 }
    1093. 

  1093.             }
    1094. 

  1094.         }
    1095. 

  1095.     }
    1096. 

  1096. 

  1097. }
    1098. 

  1098. 

  1099. 

  1100. sub pg_database_administration {
    1101. 

  1101. 

  1102.     $form->{dbdriver} = 'Pg';
    1103. 

  1103.     &dbselect_source;
    1104. 

  1104. }
    1105. 

  1105. 

  1106. 

  1107. sub pgpp_database_administration {
    1108. 

  1108. 

  1109.     $form->{dbdriver} = 'PgPP';
    1110. 

  1110.     &dbselect_source;
    1111. 

  1111. 

  1112. }
    1113. 

  1113. 

  1114. 

  1115. sub dbdriver_defaults {
    1116. 

  1116. 

  1117.     # load some defaults for the selected driver
    1118. 

  1118.     %driverdefaults = ( 'Pg' => { dbport => '',
    1119. 

  1119.                                   dbuser => 'ledger-smb',
    1120. 

  1120.                                   dbdefault => 'template1',
    1121. 

  1121.                                   dbhost => '',
    1122. 

  1122.                                   connectstring => $locale->text('Connect to')
    1123. 

  1123.                                 } );
    1124. 

  1124. 

  1125.     $driverdefaults{PgPP} = $driverdefaults{Pg};
    1126. 

  1126. 

  1127.     for (keys %{ $driverdefaults{Pg} }) { $form->{$_} = $driverdefaults{$form->{dbdriver}}{$_} }
    1128. 

  1128. 

  1129. }
    1130. 

  1130. 

  1131. 

  1132. sub dbselect_source {
    1133. 

  1133. 

  1134.     &dbdriver_defaults;
    1135. 

  1135. 

  1136.     $form->{title} = "LedgerSMB ".$locale->text('Accounting')." / ".$locale->text('Database Administration');
    1137. 

  1137. 

  1138.     $form->{login} = "root login";
    1139. 

  1139.     $form->header;
    1140. 

  1140. 

  1141.     #an insane amount of table nesting here, this should be cleaned up.
    1142. 

  1142.     print qq|
    1143. 

  1143.     <body class="admin">
    1144. 

  1144.     <center>
    1145. 

  1145.     <h2>$form->{title}</h2>
    1146. 

  1146.     <form method="post" action="$form->{script}" />
    1147. 

  1147.         <table>
    1148. 

  1148.             <tr>
    1149. 

  1149.                 <td>
    1150. 

  1150.                     <table>
    1151. 

  1151.                         <tr class="listheading">
    1152. 

  1152.                             <th colspan="4">|.$locale->text('Database').qq|</th>
    1153. 

  1153.                         </tr>
    1154. 

  1154.                         <tr>
    1155. 

  1155.                             <td>
    1156. 

  1156.                                 <table>
    1157. 

  1157.                                     <tr>
    1158. 

  1158.                                         <th align="right">|.$locale->text('Host').qq|</th>
    1159. 

  1159.                                         <td><input name="dbhost" size="25" value="$form->{dbhost}" /></td>
    1160. 

  1160.                                         <th align="right">|.$locale->text('Port').qq|</th>
    1161. 

  1161.                                         <td><input name="dbport" size="5" value="$form->{dbport}" /></td>
    1162. 

  1162.                                     </tr>
    1163. 

  1163.                                     <tr>
    1164. 

  1164.                                         <th align="right">|.$locale->text('User').qq|</th>
    1165. 

  1165.                                         <td><input name="dbuser" size="10" value="$form->{dbuser}" /></td>
    1166. 

  1166. <th align="right">|.$locale->text('Password').qq|</th>              
    1167. 

  1167. <td><input type="password" name="dbpasswd" size="10" /></td>
    1168. 

  1168.                                     </tr>
    1169. 

  1169.                                     <tr>
    1170. 

  1170.                                         <th align="right">$form->{connectstring}</th>
    1171. 

  1171.                                         <td colspan="3"><input name="dbdefault" size="10" value="$form->{dbdefault}" /></td>
    1172. 

  1172.                                     </tr>
    1173. 

  1173. <th align="right">|.$locale->text("Superuser").qq|</th>
    1174. 

  1174.  <td><input name="dbsuperuser" size="10" value="$form->{dbsuperuser}" /></td>
    1175. 

  1175. <th align="right">|.$locale->text('Password').qq|</th>              
    1176. 

  1176. <td><input type="password" name="dbsuperpasswd" size="10" /></td>
    1177. 

  1177. 

  1178.                                 </table>
    1179. 

  1179.                             </td>
    1180. 

  1180.                         </tr>
    1181. 

  1181.                     </table>
    1182. 

  1182.                 </td>
    1183. 

  1183.             </tr>
    1184. 

  1184.         </table>
    1185. 

  1185.     <input type="hidden" name="dbdriver" value="$form->{dbdriver}" />
    1186. 

  1186.     <input name="callback" type="hidden" value="$form->{script}?action=list_users&amp;path=$form->{path}&amp;sessionid=$form->{sessionid}" />
    1187. 

  1187.     <input type="hidden" name="path" value="$form->{path}" />
    1188. 

  1188.     <input type="hidden" name="sessionid" value="$form->{sessionid}" />
    1189. 

  1189.     <br />
    1190. 

  1190.     <input type="submit" class="submit" name="action" value="|.$locale->text('Create Dataset').qq|" />
    1191. 

  1191.     <input type="submit" class="submit" name="action" value="|.$locale->text('Delete Dataset').qq|" />
    1192. 

  1192.     </form>
    1193. 

  1193.     <p>|.$locale->text('This is a preliminary check for existing sources. Nothing will be created or deleted at this stage!')
    1194. 

  1194.     .qq|</p>
    1195. 

  1195.     </center>
    1196. 

  1196.     </body>
    1197. 

  1197.     </html>
    1198. 

  1198.     |;
    1199. 

  1199. }
    1200. 

  1200. 

  1201. 

  1202. sub continue {
    1203. 

  1203. 

  1204.     &{ $form->{nextsub} };
    1205. 

  1205. }
    1206. 

  1206. 

  1207. 

  1208. sub dbupdate {
    1209. 

  1209. 

  1210.     User->dbupdate(\%$form);
    1211. 

  1211.     $form->redirect($locale->text('Dataset updated!'));
    1212. 

  1212. }
    1213. 

  1213. 

  1214. 

  1215. sub create_dataset {
    1216. 

  1216. 

  1217.     @dbsources = sort User->dbsources(\%$form);
    1218. 

  1218. 

  1219.     opendir SQLDIR, "sql/." or $form->error($!);
    1220. 

  1220. 

  1221.     foreach $item (sort grep /-chart\.sql/, readdir SQLDIR) {
    1222. 

  1222.         next if ($item eq 'Default-chart.sql');
    1223. 

  1223.         $item =~ s/-chart\.sql//;
    1224. 

  1224.         push @charts, qq|<input name="chart" class="radio" type="radio" value="$item" />$item|;
    1225. 

  1225.     }
    1226. 

  1226. 

  1227.     closedir SQLDIR;
    1228. 

  1228. 

  1229.     # add Default at beginning
    1230. 

  1230.     unshift @charts, qq|<input name="chart" class="radio" type="radio" value="Default" checked />Default|;
    1231. 

  1231. 

  1232.     $selectencoding = qq|<option></option>
    1233. 

  1233.     <option value="SQL_ASCII">ASCII</option>
    1234. 

  1234.     <option value="EUC_JP">Japanese EUC</option>
    1235. 

  1235.     <option value="EUC_CN">Chinese EUC</option>
    1236. 

  1236.     <option value="EUC_KR">Korean EUC</option>
    1237. 

  1237.     <option value="JOHAB">Korean EUC (Hangle base)</option>
    1238. 

  1238.     <option value="EUC_TW">Taiwan EUC</option>
    1239. 

  1239.     <option value="UNICODE">Unicode (UTF-8)</option>
    1240. 

  1240.     <option value="MULE_INTERNAL">Mule internal type</option>
    1241. 

  1241.     <option value="LATIN1">ISO 8859-1/ECMA 94 (Latin alphabet no. 1)</option>
    1242. 

  1242.     <option value="LATIN2">ISO 8859-2/ECMA 94 (Latin alphabet no. 2)</option>
    1243. 

  1243.     <option value="LATIN3">ISO 8859-3/ECMA 94 (Latin alphabet no. 3)</option>
    1244. 

  1244.     <option value="LATIN4">ISO 8859-4/ECMA 94 (Latin alphabet no. 4)</option>
    1245. 

  1245.     <option value="LATIN5">ISO 8859-9/ECMA 128 (Latin alphabet no. 5)</option>
    1246. 

  1246.     <option value="LATIN6">ISO 8859-10/ECMA 144 (Latin alphabet no. 6)</option>
    1247. 

  1247.     <option value="LATIN7">ISO 8859-13 (Latin alphabet no. 7)</option>
    1248. 

  1248.     <option value="LATIN8">ISO 8859-14 (Latin alphabet no. 8)</option>
    1249. 

  1249.     <option value="LATIN9">ISO 8859-15 (Latin alphabet no. 9)</option>
    1250. 

  1250.     <option value="LATIN10">ISO 8859-16/ASRO SR 14111 (Latin alphabet no. 10)</option>
    1251. 

  1251.     <option value="ISO_8859_5">ISO 8859-5/ECMA 113 (Latin/Cyrillic)</option>
    1252. 

  1252.     <option value="ISO_8859_6">ISO 8859-6/ECMA 114 (Latin/Arabic)</option>
    1253. 

  1253.     <option value="ISO_8859_7">ISO 8859-7/ECMA 118 (Latin/Greek)</option>
    1254. 

  1254.     <option value="ISO_8859_8">ISO 8859-8/ECMA 121 (Latin/Hebrew)</option>
    1255. 

  1255.     <option value="KOI8">KOI8-R(U)</option>
    1256. 

  1256.     <option value="WIN">Windows CP1251</option>
    1257. 

  1257.     <option value="ALT">Windows CP866</option>
    1258. 

  1258.     <option value="WIN1256">Windows CP1256 (Arabic)</option>
    1259. 

  1259.     <option value="TCVN">Windows CP1258 (Vietnamese)</option>
    1260. 

  1260.     <option value="WIN874">Windows CP874 (Thai)</option>
    1261. 

  1261.     |;
    1262. 

  1262. 

  1263.     $form->{title} = "LedgerSMB ".$locale->text('Accounting')
    1264. 

  1264.                     ." ".$locale->text('Database Administration')
    1265. 

  1265.                     ." / ".$locale->text('Create Dataset');
    1266. 

  1266.     $form->{login} = "root login";
    1267. 

  1267.     $form->header;
    1268. 

  1268. 

  1269.     print qq|
    1270. 

  1270.     <body class="admin">
    1271. 

  1271.     <center>
    1272. 

  1272.     <h2>$form->{title}</h2>
    1273. 

  1273.     <form method="post" action="$form->{script}" />
    1274. 

  1274.     <table width="100%">
    1275. 

  1275.         <tr class="listheading">
    1276. 

  1276.             <th colspan="2">&nbsp;</th>
    1277. 

  1277.         </tr>
    1278. 

  1278.         <tr>
    1279. 

  1279.             <th align="right" nowrap="nowrap">|.$locale->text('Existing Datasets').qq|</th>
    1280. 

  1280.             <td>
    1281. 

  1281.     |;
    1282. 

  1282. 

  1283.     for (@dbsources) { print "[&nbsp;$_&nbsp;] " }
    1284. 

  1284. 

  1285.     print qq|
    1286. 

  1286.             </td>
    1287. 

  1287.         </tr>
    1288. 

  1288.         <tr>
    1289. 

  1289.             <th align="right" nowrap="nowrap">|.$locale->text('Create Dataset').qq|</th>
    1290. 

  1290.             <td><input name="db" /></td>
    1291. 

  1291.         </tr>
    1292. 

  1292.         <tr>
    1293. 

  1293.             <th align="right" nowrap="nowrap">|.$locale->text('Multibyte Encoding').qq|</th>
    1294. 

  1294.             <td><select name="encoding">$selectencoding</select></td>
    1295. 

  1295.         </tr>
    1296. 

  1296.         <tr>
    1297. 

  1297.             <th align="right" nowrap="nowrap">|.$locale->text('Create Chart of Accounts').qq|</th>
    1298. 

  1298.             <td>
    1299. 

  1299.                 <table>
    1300. 

  1300.     |;
    1301. 

  1301. 

  1302.     while (@charts) {
    1303. 

  1303.         print qq|   <tr>|;
    1304. 

  1304. 

  1305.         for (0 .. 2) { print "<td>$charts[$_]</td>\n" }
    1306. 

  1306. 

  1307.         print qq|   </tr>|;
    1308. 

  1308. 

  1309.         splice @charts, 0, 3;
    1310. 

  1310.     }
    1311. 

  1311. 

  1312.     print qq|   </table>
    1313. 

  1313.             </td>
    1314. 

  1314.         </tr>
    1315. 

  1315.         <tr>
    1316. 

  1316.             <td colspan="2">
    1317. 

  1317.                 <hr size="3" noshade />
    1318. 

  1318.             </td>
    1319. 

  1319.         </tr>
    1320. 

  1320.     </table>
    1321. 

  1321.     |;
    1322. 

  1322. 

  1323.     $form->hide_form(qw(dbdriver dbsuperuser dbsuperpasswd dbuser dbhost dbport dbpasswd dbdefault path sessionid));
    1324. 

  1324. 

  1325.     print qq|
    1326. 

  1326.     <input name="callback" type="hidden" value="$form->{script}?action=list_users&amp;path=$form->{path}&amp;sessionid=$form->{sessionid}" />
    1327. 

  1327.     <input type="hidden" name="nextsub" value="dbcreate" />
    1328. 

  1328.     <br />
    1329. 

  1329.     <input type="submit" class="submit" name="action" value="|.$locale->text('Continue').qq|" />
    1330. 

  1330.     </form>
    1331. 

  1331.     </body>
    1332. 

  1332.     </html>
    1333. 

  1333.     |;
    1334. 

  1334. 

  1335. }
    1336. 

  1336. 

  1337. 

  1338. sub dbcreate {
    1339. 

  1339. 

  1340.     $form->isblank("db", $locale->text('Dataset missing!'));
    1341. 

  1341. 

  1342.     User->dbcreate(\%$form);
    1343. 

  1343. 

  1344.     $form->{title} = "LedgerSMB ".$locale->text('Accounting')
    1345. 

  1345.                     ." ".$locale->text('Database Administration')
    1346. 

  1346.                     ." / ".$locale->text('Create Dataset');
    1347. 

  1347. 

  1348.     $form->{login} = "root login";
    1349. 

  1349.     $form->header;
    1350. 

  1350. 

  1351.     print qq|
    1352. 

  1352.     <body class="admin">
    1353. 

  1353.     <center>
    1354. 

  1354.     <h2>$form->{title}</h2>
    1355. 

  1355.     <form method="post" action="$form->{script}">|
    1356. 

  1356.         .$locale->text('Dataset')." $form->{db} ".$locale->text('successfully created!')
    1357. 

  1357.         .qq|
    1358. 

  1358.         <input type="hidden" name="path" value="$form->{path}" />
    1359. 

  1359.         <input type="hidden" name="sessionid" value="$form->{sessionid}" />
    1360. 

  1360.         <input type="hidden" name="nextsub" value="list_users" />
    1361. 

  1361.         <p><input type="submit" class="submit" name="action" value="|.$locale->text('Continue').qq|" /></p>
    1362. 

  1362.     </form>
    1363. 

  1363.     </center>
    1364. 

  1364.     </body>
    1365. 

  1365.     </html>
    1366. 

  1366.     |;
    1367. 

  1367. }
    1368. 

  1368. 

  1369. 

  1370. sub delete_dataset {
    1371. 

  1371. 

  1372.     if (@dbsources = User->dbsources_unused(\%$form, $memberfile)) {
    1373. 

  1373. 

  1374.         foreach $item (sort @dbsources) {
    1375. 

  1375.             $dbsources .= qq|<input name="db" class="radio" type="radio" value="$item" />&nbsp;$item |;
    1376. 

  1376.         }
    1377. 

  1377. 

  1378.     } else {
    1379. 

  1379.         $form->error($locale->text('Nothing to delete!'));
    1380. 

  1380.     }
    1381. 

  1381. 

  1382.     $form->{title} = "LedgerSMB ".$locale->text('Accounting')
    1383. 

  1383.                     ." ".$locale->text('Database Administration')
    1384. 

  1384.                     ." / ".$locale->text('Delete Dataset');
    1385. 

  1385. 

  1386.     $form->{login} = "root login";
    1387. 

  1387.     $form->header;
    1388. 

  1388. 

  1389.     print qq|
    1390. 

  1390.     <body class="admin">
    1391. 

  1391.     <h2>$form->{title}</h2>
    1392. 

  1392.     <form method="post" action="$form->{script}" />
    1393. 

  1393.     <input type="hidden" name="dbdriver" value="$form->{dbdriver}" />
    1394. 

  1394.     <input type="hidden" name="dbuser" value="$form->{dbuser}" />
    1395. 

  1395.     <input type="hidden" name="dbhost" value="$form->{dbhost}" />
    1396. 

  1396.     <input type="hidden" name="dbport" value="$form->{dbport}" />
    1397. 

  1397.     <input type="hidden" name="dbpasswd" value="$form->{dbpasswd}" />
    1398. 

  1398.     <input type="hidden" name="dbdefault" value="$form->{dbdefault}" />
    1399. 

  1399.     <input name=callback type="hidden" value="$form->{script}?action=list_users&amp;path=$form->{path}&amp;sessionid=$form->{sessionid}">
    1400. 

  1400.     <input type="hidden" name="path" value="$form->{path}" />
    1401. 

  1401.     <input type="hidden" name="sessionid" value="$form->{sessionid}" />
    1402. 

  1402.     <input type="hidden" name="nextsub" value="dbdelete" />
    1403. 

  1403.     <table width="100%">
    1404. 

  1404.         <tr class="listheading">
    1405. 

  1405.             <th>|.$locale->text('The following Datasets are not in use and can be deleted').qq|</th>
    1406. 

  1406.         </tr>
    1407. 

  1407.         <tr>
    1408. 

  1408.             <td>
    1409. 

  1409.             $dbsources
    1410. 

  1410.             </td>
    1411. 

  1411.         </tr>
    1412. 

  1412.         <tr>
    1413. 

  1413.             <td>
    1414. 

  1414.                 <hr size="3" noshade />
    1415. 

  1415.                 <br />
    1416. 

  1416.                 <input type="submit" class="submit" name="action" value="|.$locale->text('Continue').qq|" />
    1417. 

  1417.             </td>
    1418. 

  1418.         </tr>
    1419. 

  1419.     </table>
    1420. 

  1420.     </form>
    1421. 

  1421.     </body>
    1422. 

  1422.     </html>
    1423. 

  1423.     |;
    1424. 

  1424. 

  1425. }
    1426. 

  1426. 

  1427. 

  1428. sub dbdelete {
    1429. 

  1429. 

  1430.     if (!$form->{db}) {
    1431. 

  1431.         $form->error($locale->text('No Dataset selected!'));
    1432. 

  1432.     }
    1433. 

  1433. 

  1434.     User->dbdelete(\%$form);
    1435. 

  1435. 

  1436.     $form->{title} = "LedgerSMB ".$locale->text('Accounting')
    1437. 

  1437.                     ." ".$locale->text('Database Administration')
    1438. 

  1438.                     ." / ".$locale->text('Delete Dataset');
    1439. 

  1439. 

  1440.     $form->{login} = "root login";
    1441. 

  1441.     $form->header;
    1442. 

  1442. 

  1443.     print qq|
    1444. 

  1444.     <body class="admin">
    1445. 

  1445.     <center>
    1446. 

  1446.     <h2>$form->{title}</h2>
    1447. 

  1447.     $form->{db} |.$locale->text('successfully deleted!')
    1448. 

  1448.     .qq|
    1449. 

  1449.     <form method="post" action="$form->{script}" />
    1450. 

  1450.     <input type="hidden" name="path" value="$form->{path}" />
    1451. 

  1451.     <input type="hidden" name="sessionid" value="$form->{sessionid}" />
    1452. 

  1452.     <input type="hidden" name="nextsub" value="list_users" />
    1453. 

  1453.     <p><input type="submit" class="submit" name="action" value="|.$locale->text('Continue').qq|" /></p>
    1454. 

  1454.     </form>
    1455. 

  1455.     </body>
    1456. 

  1456.     </html>
    1457. 

  1457.     |;
    1458. 

  1458. }
    1459. 

  1459. 

  1460. 

  1461. sub unlock_system {
    1462. 

  1462. 

  1463.     unlink "$userspath/nologin";
    1464. 

  1464.     $form->{callback} = "$form->{script}?action=list_users&amp;path=$form->{path}&amp;sessionid=$form->{sessionid}";
    1465. 

  1465.     $form->redirect($locale->text('Lockfile removed!'));
    1466. 

  1466. }
    1467. 

  1467. 

  1468. 

  1469. sub lock_system {
    1470. 

  1470. 

  1471.     open(FH, ">$userspath/nologin") or $form->error($locale->text('Cannot create Lock!'));
    1472. 

  1472.     close(FH);
    1473. 

  1473.     $form->{callback} = "$form->{script}?action=list_users&amp;path=$form->{path}&amp;sessionid=$form->{sessionid}";
    1474. 

  1474.     $form->redirect($locale->text('Lockfile created!'));
    1475. 

  1475. }
    1476.
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-01 19:31:59 +0000