Subversion Repositories ALCASAR

Rev

Rev 3130 | Rev 3135 | Go to most recent revision | Details | Compare with Previous | Last modification | View Log

Rev Author Line No. Line
2411 tom.houday 1
<?php
2265 richard 2
/********************
3
* READ CONF FILES   *
4
*********************/
2411 tom.houday 5
define("CONF_FILE", "/usr/local/etc/alcasar.conf");
6
define("ETHERS_INFO_FILE", "/usr/local/etc/alcasar-ethers-info");
2274 richard 7
$conf_files=array(CONF_FILE,ETHERS_INFO_FILE);
2411 tom.houday 8
foreach ($conf_files as $file) {
9
	if (!file_exists($file)) {
10
		exit("Requested file ".$file." isn't present");
11
	}
12
	if (!is_readable($file)) {
13
		exit("Can't read the file ".$file);
14
	}
2265 richard 15
}
2411 tom.houday 16
 
2299 tom.houday 17
$alcasar_conf_file = '/usr/local/etc/alcasar.conf';
18
$file_conf = fopen($alcasar_conf_file, 'r');
19
if (!$file_conf) {
20
	exit('Error opening the file '.$alcasar_conf_file);
21
}
22
while (!feof($file_conf)) {
23
	$buffer = fgets($file_conf, 4096);
24
	if ((strpos($buffer, '=') !== false) && (substr($buffer, 0, 1) !== '#')) {
2450 tom.houday 25
		$tmp = explode('=', $buffer, 2);
2299 tom.houday 26
		$conf[trim($tmp[0])] = trim($tmp[1]);
1667 richard 27
	}
28
}
2299 tom.houday 29
fclose($file_conf);
30
 
1667 richard 31
$tmp = explode("/",$conf["PRIVATE_IP"]);
2965 rexy 32
$private_ip=$tmp[0];
1667 richard 33
$intif = $conf["INTIF"];
2979 rexy 34
if ($conf['MULTIWAN'] !== 'off') {
2965 rexy 35
	exec ('sudo /usr/local/bin/alcasar-list-ip_gw.sh', $list_ip_gw); 
36
}
1667 richard 37
require('/etc/freeradius-web/config.php');
38
# Choice of language
39
$Language = 'en';
2411 tom.houday 40
if (isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])) {
41
	$Langue = explode(',', $_SERVER['HTTP_ACCEPT_LANGUAGE']);
42
	$Language = strtolower(substr(chop($Langue[0]), 0, 2));
1667 richard 43
}
2411 tom.houday 44
if ($Language === 'fr') {
45
	$l_activity = "Activité sur le réseau de consultation";
46
	$l_ip_adr = "Adresse IP";
47
	$l_mac_adr = "Adresse MAC";
2906 rexy 48
	$l_unknown = "manufacturer unknown";
2411 tom.houday 49
	$l_user = "Usager";
50
	$l_mac_allowed = "@MAC autorisée";
51
	$l_mac_temporarily_allowed = "@MAC autorisée temporairement";
52
	$l_action = "Action";
53
	$l_dissociate = "Dissocier @IP";
54
	$l_disconnect = "Déconnecter";
2888 rexy 55
	$l_stop_capture_disconnect = "Arrêter la capture et déconnecter";
2411 tom.houday 56
	$l_refresh = "Cette page est rafraichie toutes les 30 secondes";
2770 rexy 57
	$l_edit_user = "Editer l'utilisateur";
2411 tom.houday 58
	$l_connect = "Autoriser temporairement";
2770 rexy 59
	$l_captureon = "Autoriser et capturer";
60
	$l_captureoff = "Arrêter la capture";
61
	$l_captureonly_on = "Capturer";
3132 rexy 62
	$l_gw = "Routeur";
2853 rexy 63
} else if ($Language === 'es') {
64
	$l_activity = "Actividad en la LAN";
65
	$l_ip_adr = "Dirección IP";
2906 rexy 66
	$l_mac_adr = "Dirección MAC";
67
	$l_unknown = "fabricante desconocido";
2853 rexy 68
	$l_user = "Usuario";
69
	$l_mac_allowed = "@MAC autorizada";
70
	$l_mac_temporarily_allowed = "@MAC temporalmente autorizada";
71
	$l_action = "Acción";
72
	$l_dissociate = "Liberar @IP";
73
	$l_disconnect = "Desconectar";
74
	$l_stop_capture_disconnect = "Deje de capturar y desconecte";
75
	$l_refresh = "Esta información es actualizada cada 30''";
76
	$l_edit_user = "usuario de edición"; 
77
	$l_connect = "Permitir temporalmente";
78
	$l_captureon = "Autorizar y capturar";
79
	$l_captureoff = "Detener la captura";
80
	$l_captureonly_on = "Captura";
3132 rexy 81
	$l_gw = "Router";
2411 tom.houday 82
} else {
83
	$l_activity = "Activity on the consultation LAN";
2906 rexy 84
	$l_ip_adr = "IP Address";
85
	$l_mac_adr = "MAC Address";
86
	$l_unknown = "fabricant inconnu";
2411 tom.houday 87
	$l_user = "User";
88
	$l_mac_allowed = "@MAC allowed";
89
	$l_mac_temporarily_allowed = "@MAC temporarily allowed";
90
	$l_action = "Action";
91
	$l_dissociate = "Dissociate @IP";
92
	$l_disconnect = "Disconnect";
2770 rexy 93
	$l_stop_capture_disconnect = "Stop capture and disconnect";
2411 tom.houday 94
	$l_refresh = "This frame is refreshed every 30'";
2770 rexy 95
	$l_edit_user = "Edit user";
2411 tom.houday 96
	$l_connect = "Temporarily authorize";
2770 rexy 97
	$l_captureon = "Authorize and capture";
98
	$l_captureoff = "Stop capture";
99
	$l_captureonly_on = "Capture";
3132 rexy 100
	$l_gw = "Router";
1667 richard 101
}
2887 rexy 102
function taille_fichier($fichier)
103
{
104
	$taille_fichier = filesize($fichier);
105
	if ($taille_fichier >= 1073741824){
106
		$taille_fichier = round($taille_fichier / 1073741824 * 100) / 100 . " Go";}
107
	elseif ($taille_fichier >= 1048576){
108
		$taille_fichier = round($taille_fichier / 1048576 * 100) / 100 . " Mo";}
109
	elseif ($taille_fichier >= 1024){
110
		$taille_fichier = round($taille_fichier / 1024 * 100) / 100 . " Ko";}
111
	else {$taille_fichier = $taille_fichier . " o";}
112
	return $taille_fichier;
113
}
2411 tom.houday 114
 
1667 richard 115
if (isset($_POST['action'])){
3130 rexy 116
	if (filter_var(trim($_POST['mac_addr']), FILTER_VALIDATE_MAC) !== false){
117
		$mac= trim($_POST['mac_addr']);
118
		switch ($_POST['action']){
119
			case "$l_disconnect" :
120
				exec("sudo /usr/sbin/chilli_query logout ".$mac);
121
			break;
122
			case "$l_stop_capture_disconnect" :
123
				exec('sudo /usr/local/bin/alcasar-iot_capture.sh -k '.$mac.' &>/dev/null &');
124
				exec("sudo /usr/sbin/chilli_query logout ".$mac);
125
			break;
126
			case "$l_dissociate" :
127
				exec("sudo /usr/sbin/chilli_query dhcp-release ".$mac);
128
			break;
129
			case "$l_connect" :
130
				exec("sudo /usr/sbin/chilli_query authorize mac ".$mac);
131
			break;
132
			case "$l_captureon" :
133
				exec('sudo /usr/local/bin/alcasar-iot_capture.sh -l '.$mac.' &>/dev/null &');
134
				exec("sudo /usr/sbin/chilli_query authorize mac ".$mac);
135
			break;
136
			case "$l_captureonly_on" :
137
				exec('sudo /usr/local/bin/alcasar-iot_capture.sh -l '.$mac.' &>/dev/null &');
138
			break;	
139
			case "$l_captureoff" :
140
				exec('sudo /usr/local/bin/alcasar-iot_capture.sh -k '.$mac.' &>/dev/null &');
141
			break;
142
		}
143
	}
2887 rexy 144
	unset($_POST['mac_addr']);
1667 richard 145
}
146
?>
2411 tom.houday 147
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
2810 rexy 148
<html><!-- written by Rexy -->
2411 tom.houday 149
<head>
2810 rexy 150
<meta HTTP-EQUIV="Refresh" CONTENT="30">
2411 tom.houday 151
<meta http-equiv="Content-Type" content="text/html; charset=<?= $config['general_charset'] ?>">
152
<title>Activity</title>
2817 rexy 153
<link rel="stylesheet" type="text/css" href="/css/acc.css">
2411 tom.houday 154
</head>
155
<body>
3028 rexy 156
<div id="ldoverlay" class="overlay">
157
	<div class="lds-spinner" id="spinner"><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div><div></div></div>
158
</div>
2411 tom.houday 159
<table width="100%" border="0" cellspacing="0" cellpadding="0">
160
<tr><th><?= $l_activity ?></th></tr>
161
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
162
</table>
2134 richard 163
<table width="100%" border=1 cellspacing=0 cellpadding=1>
2411 tom.houday 164
	<tr><td valign="middle" align="center"><?= $l_refresh ?><br>
165
	<table border=1 width="80%" cellpadding=2 cellspacing=0>
166
		<tr>
167
			<th>#</th>
168
			<th><?= $l_ip_adr ?></th>
169
			<th><?= $l_mac_adr ?></th>
170
			<th><?= $l_user ?></th>
171
			<th><?= $l_action ?></th>
2965 rexy 172
			<?php
2979 rexy 173
			if ($conf['MULTIWAN'] !== 'off') {
2965 rexy 174
				echo "<th>$l_gw</th>";
175
			}
176
		echo "</tr>";
2770 rexy 177
		$IoT_capture = $conf["IOT_CAPTURE"];
1667 richard 178
		$output = array(); $detail = array(); $nb_ligne = 0;
2975 rexy 179
		exec("sudo /sbin/ip link show ".escapeshellarg($intif), $output); // retrieve ALCASAR @MAC
1667 richard 180
		$detail = explode (" " , $output[1]);
181
		$intif_mac_addr=strtoupper(str_replace(":","-",$detail[5]));
182
		unset ($output);unset ($detail);
2080 richard 183
		exec ('sudo /usr/sbin/chilli_query list|sort -k5 -r', $output); 
3076 rexy 184
		foreach($output as $ligne){
1667 richard 185
			$detail = explode (" ", $ligne);
186
			$nb_ligne ++;
2134 richard 187
			echo "<tr valign=\"middle\">";
188
			echo "<td>".$nb_ligne."</td>";
2975 rexy 189
			echo "<td>".$detail[1]."</td>"; // @IP
190
			echo "<td>$detail[0]"; // @MAC
191
			if(file_exists('/usr/local/share/nmap-mac-prefixes')){ // retrieve @MAC manufacturer
2065 raphael.pi 192
				$oui_id = substr(str_replace("-","",$detail[0]),0,6);
2888 rexy 193
				exec ("grep $oui_id /usr/local/share/nmap-mac-prefixes | cut -f2", $mac_manufacturer);
2906 rexy 194
				if(! empty($mac_manufacturer[0])) echo " <font size=\"1\">($mac_manufacturer[0])</font>";
195
					else echo " <font size=\"1\">($l_unknown)</font>";
2078 raphael.pi 196
				unset($mac_manufacturer);
2065 raphael.pi 197
			}
2975 rexy 198
			exec ("grep $detail[0] /usr/local/etc/alcasar-ethers-info |cut -d' ' -f3", $mac_in_ether_file); // retrieve @MAC info
199
			if (!empty($mac_in_ether_file[0])){
2906 rexy 200
				$mac_info= ltrim($mac_in_ether_file[0],'#');
201
				if (!empty($mac_info)) echo " - <b>" . ltrim($mac_in_ether_file[0],'#') . "</b>";
2265 richard 202
			}
203
			echo "</td><td>";
2975 rexy 204
			if ($detail[4] == "1"){ // is user authenticated ?
2080 richard 205
				$login = $detail[5];
2128 richard 206
				unset ($found_users); unset ($cn);
2975 rexy 207
				$search = $login; $search_IN = 'username'; // search user in database
2080 richard 208
				if (is_file("../lib/sql/find.php"))
2770 rexy 209
				include("../lib/sql/find.php");
2975 rexy 210
				if (isset ($found_users)){ // is user in database ? 
211
					if (is_file("../lib/sql/user_info.php")) // retrieve user info (especialy $cn)
2080 richard 212
						include("../lib/sql/user_info.php");
1667 richard 213
				}
2128 richard 214
				if (! isset ($cn)){ $cn='-';}
2975 rexy 215
				if ($detail[5] == $detail[0]){ // is user an @MAC ?
216
					if (isset ($found_users)){ // is @MAC allowed ?
217
						echo "<a href=\"/acc/manager/htdocs/user_admin.php?login=$detail[5]\" title=\"$l_edit_user\">$l_mac_allowed";if ($cn != '-'){ echo " ($cn)";};echo "</a>";
218
						echo "</td>";
219
						echo "<td>&nbsp;</td>"; // no 'disconnect' button for allowed @MAC
2129 richard 220
					}
2080 richard 221
					else {
2975 rexy 222
						echo "<b>$l_mac_temporarily_allowed</b>";
223
						echo "</td><td>";
224
						echo "<form action=\"".$_SERVER['PHP_SELF']."\" method=\"POST\">";
225
						echo "<input type=\"hidden\" name=\"mac_addr\" value=\"$detail[0]\">";
226
						if($IoT_capture == "on"){
227
							if(exec('sudo /usr/local/bin/alcasar-iot_capture.sh -i '.$detail[0]) == "CaptureON"){
3028 rexy 228
								echo "<input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_stop_capture_disconnect\">";
229
								echo "<input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_captureoff\">";
2975 rexy 230
							}
231
 							else {
3028 rexy 232
								echo "<input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_disconnect\">";
233
								echo "<br><input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_captureonly_on\">";
2975 rexy 234
								$file = '/var/Save/iot_captures/'.$detail[0].'.pcap';
235
								if (file_exists($file))	{
236
									echo "<br><center><a href=\"/save/iot_captures/$detail[0].pcap\">$detail[0].pcap</a> (";echo taille_fichier("/var/Save/iot_captures/".$detail[0].".pcap");echo ")</center>";
237
								}
238
							}	
2080 richard 239
						}
3028 rexy 240
						else echo "<input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_disconnect\">";
2975 rexy 241
						echo "</form></td>";
1667 richard 242
					}
2975 rexy 243
				}
244
				else { // The user is a humanoide ;-)
245
					if ($cn != '-') { echo "<a href=\"/acc/manager/htdocs/user_admin.php?login=$detail[5]\" title=\"$l_edit_user $detail[5]\">$detail[5] ($cn)</a>";}
246
					else { echo "<a href=\"/acc/manager/htdocs/user_admin.php?login=$detail[5]\" title=\"$l_edit_user $detail[5]\">$detail[5]</a>";}
247
					echo "<td>";
248
					echo "<form action=\"".$_SERVER['PHP_SELF']."\" method=\"POST\">";
249
					echo "<input type=\"hidden\" name=\"mac_addr\" value=\"$detail[0]\">";
3028 rexy 250
					echo "<input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_disconnect\">";
2975 rexy 251
					echo "</form></td>";
252
				}
253
			}
254
			// equipment without authenticated user
255
			else if (($detail[0] == $intif_mac_addr) || ($detail[1] == $private_ip)){ 
1667 richard 256
				echo "ALCASAR system";
2975 rexy 257
				echo "<td>";
1667 richard 258
				echo "&nbsp;";
2975 rexy 259
				echo "</td>";
260
			}	
2080 richard 261
			else {  
1667 richard 262
				echo "&nbsp;";
2975 rexy 263
				echo "<td>";		
264
				echo "<form action=\"".$_SERVER['PHP_SELF']."\" method=\"POST\">";
2065 raphael.pi 265
				# Dissociate user (... or other) who is not connected yet
2975 rexy 266
				echo "<input type=\"hidden\" name=\"mac_addr\" value=\"$detail[0]\">";
2276 richard 267
				exec ("grep $detail[0] /usr/local/etc/alcasar-ethers-info", $mac_in_ether_file);
2975 rexy 268
				if (empty($mac_in_ether_file[1])){
3028 rexy 269
					echo "<input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_dissociate\">"; // Dissociate only MAC not in ether file (dhcp)
2265 richard 270
				}
3028 rexy 271
				echo "<input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_connect\">"; // Enable temporarily @MAC access
2975 rexy 272
				if($IoT_capture == "on"){
273
					if(exec('sudo /usr/local/bin/alcasar-iot_capture.sh -i '.$detail[0]) == "CaptureON"){
3028 rexy 274
						echo "<br><input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_captureoff\">";
2770 rexy 275
					}
2975 rexy 276
					else {
3028 rexy 277
						echo "<br><input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_captureon\">";
278
						echo "<input type=\"submit\" onClick=\"document.getElementById('ldoverlay').style.display='block';\" name=\"action\" value=\"$l_captureonly_on\">";
2888 rexy 279
						$file = '/var/Save/iot_captures/'.$detail[0].'.pcap';
2975 rexy 280
						if (file_exists($file)) {
281
							echo "<br><center><a href=\"/save/iot_captures/$detail[0].pcap\">$detail[0].pcap</a> (";echo taille_fichier("/var/Save/iot_captures/".$detail[0].".pcap");echo ")</center>";
282
						}
2770 rexy 283
					}
284
				}
2975 rexy 285
				echo "</form></td>";
1667 richard 286
			}
2979 rexy 287
			if ($conf['MULTIWAN'] !== 'off') {
2975 rexy 288
				if ($detail[4] == "1"){ // authenticated user
3076 rexy 289
					foreach ($list_ip_gw as $ligne2){
2965 rexy 290
						$detail2 = explode (" ", $ligne2);
291
						if ($detail2[0] == $detail[1]){
292
							echo "<td>$detail2[1]</td>";
2975 rexy 293
							reset ($list_ip_gw);
294
							break;
295
						}
2965 rexy 296
					}
297
				}
2975 rexy 298
			else echo "<td>&nbsp;</td>"; 
2965 rexy 299
			}
2265 richard 300
			unset ($mac_in_ether_file);
2134 richard 301
			echo "</tr>";
1667 richard 302
		}
303
		?>
304
	</table>
305
	</td></tr>
306
</table>
307
</html>