projects / citadel.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
* Cleaned up the rcs/cvs Id tags and leading comments at the top of some files
[citadel.git] / webcit / useredit.c
1 /*
2  * $Id$
3  *
4  * Administrative screen to add/change/delete user accounts
5  *
6  */
7
8
9 #include <ctype.h>
10 #include <stdlib.h>
11 #include <unistd.h>
12 #include <stdio.h>
13 #include <fcntl.h>
14 #include <signal.h>
15 #include <sys/types.h>
16 #include <sys/wait.h>
17 #include <sys/socket.h>
18 #include <sys/time.h>
19 #include <limits.h>
20 #include <netinet/in.h>
21 #include <netdb.h>
22 #include <string.h>
23 #include <pwd.h>
24 #include <errno.h>
25 #include <stdarg.h>
26 #include <pthread.h>
27 #include <signal.h>
28 #include "webcit.h"
29 #include "webserver.h"
30
31
32
33
34
35 void select_user_to_edit(char *message, char *preselect)
36 {
37         char buf[SIZ];
38         char username[SIZ];
39
40         output_headers(1, 1, 0, 0, 0, 0, 0);    /* No room banner on this screen */
41
42         if (message != NULL) wprintf(message);
43
44         wprintf("<TABLE border=0 CELLSPACING=10><TR VALIGN=TOP><TD>\n");
45
46         svprintf("BOXTITLE", WCS_STRING, "Edit or Delete users");
47         do_template("beginbox");
48
49         wprintf("To edit an existing user account, select the user "
50                 "name from the list and click 'Edit'.<br /><br />");
51         
52         wprintf("<CENTER>"
53                 "<FORM METHOD=\"POST\" ACTION=\"/display_edituser\">\n");
54         wprintf("<SELECT NAME=\"username\" SIZE=10>\n");
55         serv_puts("LIST");
56         serv_gets(buf);
57         if (buf[0] == '1') {
58                 while (serv_gets(buf), strcmp(buf, "000")) {
59                         extract(username, buf, 0);
60                         wprintf("<OPTION");
61                         if (preselect != NULL)
62                            if (!strcasecmp(username, preselect))
63                               wprintf(" SELECTED");
64                         wprintf(">");
65                         escputs(username);
66                         wprintf("\n");
67                 }
68         }
69         wprintf("</SELECT><br />\n");
70
71         wprintf("<input type=submit name=sc value=\"Edit configuration\">");
72         wprintf("<input type=submit name=sc value=\"Edit address book entry\">");
73         wprintf("</FORM></CENTER>\n");
74         do_template("endbox");
75
76         wprintf("</TD><TD>");
77
78         svprintf("BOXTITLE", WCS_STRING, "Add users");
79         do_template("beginbox");
80
81         wprintf("To create a new user account, enter the desired "
82                 "user name in the box below and click 'Create'.<br /><br />");
83
84         wprintf("<CENTER><FORM METHOD=\"POST\" ACTION=\"/create_user\">\n");
85         wprintf("New user: ");
86         wprintf("<input type=text name=username><br />\n"
87                 "<input type=submit value=\"Create\">"
88                 "</FORM></CENTER>\n");
89
90         do_template("endbox");
91         wprintf("</TD></TR></TABLE>\n");
92
93         wDumpContent(1);
94 }
95
96
97
98 /* 
99  * Locate the message number of a user's vCard in the current room
100  */
101 long locate_user_vcard(char *username, long usernum) {
102         char buf[SIZ];
103         long vcard_msgnum = (-1L);
104         char content_type[SIZ];
105         char partnum[SIZ];
106         int already_tried_creating_one = 0;
107
108         struct stuff_t {
109                 struct stuff_t *next;
110                 long msgnum;
111         };
112
113         struct stuff_t *stuff = NULL;
114         struct stuff_t *ptr;
115
116 TRYAGAIN:
117         /* Search for the user's vCard */
118         serv_puts("MSGS ALL");
119         serv_gets(buf);
120         if (buf[0] == '1') while (serv_gets(buf), strcmp(buf, "000")) {
121                 ptr = malloc(sizeof(struct stuff_t));
122                 ptr->msgnum = atol(buf);
123                 ptr->next = stuff;
124                 stuff = ptr;
125         }
126
127         /* Iterate through the message list looking for vCards */
128         while (stuff != NULL) {
129                 serv_printf("MSG0 %ld|2", stuff->msgnum);
130                 serv_gets(buf);
131                 if (buf[0]=='1') {
132                         while(serv_gets(buf), strcmp(buf, "000")) {
133                                 if (!strncasecmp(buf, "part=", 5)) {
134                                         extract(partnum, &buf[5], 2);
135                                         extract(content_type, &buf[5], 4);
136                                         if (!strcasecmp(content_type,
137                                            "text/x-vcard")) {
138                                                 vcard_msgnum = stuff->msgnum;
139                                         }
140                                 }
141                         }
142                 }
143
144                 ptr = stuff->next;
145                 free(stuff);
146                 stuff = ptr;
147         }
148
149         /* If there's no vcard, create one */
150         if (vcard_msgnum < 0) if (already_tried_creating_one == 0) {
151                 already_tried_creating_one = 1;
152                 serv_puts("ENT0 1|||4");
153                 serv_gets(buf);
154                 if (buf[0] == '4') {
155                         serv_puts("Content-type: text/x-vcard");
156                         serv_puts("");
157                         serv_puts("begin:vcard");
158                         serv_puts("end:vcard");
159                         serv_puts("000");
160                 }
161                 goto TRYAGAIN;
162         }
163
164         return(vcard_msgnum);
165 }
166
167
168 /* 
169  * Display the form for editing a user's address book entry
170  */
171 void display_edit_address_book_entry(char *username, long usernum) {
172         char roomname[SIZ];
173         char buf[SIZ];
174         char error_message[SIZ];
175         long vcard_msgnum = (-1L);
176
177         /* Locate the user's config room, creating it if necessary */
178         sprintf(roomname, "%010ld.%s", usernum, USERCONFIGROOM);
179         serv_printf("GOTO %s||1", roomname);
180         serv_gets(buf);
181         if (buf[0] != '2') {
182                 serv_printf("CRE8 1|%s|5|||1|", roomname);
183                 serv_gets(buf);
184                 serv_printf("GOTO %s||1", roomname);
185                 serv_gets(buf);
186                 if (buf[0] != '2') {
187                         sprintf(error_message,
188                                 "<IMG SRC=\"static/error.gif\" ALIGN=CENTER>"
189                                 "%s<br /><br />\n", &buf[4]);
190                         select_user_to_edit(error_message, username);
191                         return;
192                 }
193         }
194
195         vcard_msgnum = locate_user_vcard(username, usernum);
196
197         if (vcard_msgnum < 0) {
198                 sprintf(error_message,
199                         "<IMG SRC=\"static/error.gif\" ALIGN=CENTER>"
200                         "Could not create/edit vCard"
201                         "<br /><br />\n"
202                 );
203                 select_user_to_edit(error_message, username);
204                 return;
205         }
206
207         do_edit_vcard(vcard_msgnum, "1", "/select_user_to_edit");
208 }
209
210
211
212
213 /*
214  * Edit a user.  If supplied_username is null, look in the "username"
215  * web variable for the name of the user to edit.
216  * 
217  * If "is_new" is set to nonzero, this screen will set the web variables
218  * to send the user to the vCard editor next.
219  */
220 void display_edituser(char *supplied_username, int is_new) {
221         char buf[SIZ];
222         char error_message[SIZ];
223         time_t now;
224
225         char username[SIZ];
226         char password[SIZ];
227         unsigned int flags;
228         int timescalled;
229         int msgsposted;
230         int axlevel;
231         long usernum;
232         time_t lastcall;
233         int purgedays;
234         int i;
235
236         if (supplied_username != NULL) {
237                 strcpy(username, supplied_username);
238         }
239         else {
240                 strcpy(username, bstr("username") );
241         }
242
243         serv_printf("AGUP %s", username);
244         serv_gets(buf);
245         if (buf[0] != '2') {
246                 sprintf(error_message,
247                         "<IMG SRC=\"static/error.gif\" ALIGN=CENTER>"
248                         "%s<br /><br />\n", &buf[4]);
249                 select_user_to_edit(error_message, username);
250                 return;
251         }
252
253         extract(username, &buf[4], 0);
254         extract(password, &buf[4], 1);
255         flags = extract_int(&buf[4], 2);
256         timescalled = extract_int(&buf[4], 3);
257         msgsposted = extract_int(&buf[4], 4);
258         axlevel = extract_int(&buf[4], 5);
259         usernum = extract_long(&buf[4], 6);
260         lastcall = extract_long(&buf[4], 7);
261         purgedays = extract_long(&buf[4], 8);
262
263         if (!strcmp(bstr("sc"), "Edit address book entry")) {
264                 display_edit_address_book_entry(username, usernum);
265                 return;
266         }
267
268         output_headers(1, 1, 2, 0, 0, 0, 0);
269         wprintf("<div id=\"banner\">\n");
270         wprintf("<TABLE WIDTH=100%% BORDER=0 BGCOLOR=\"#444455\"><TR><TD>");
271         wprintf("<SPAN CLASS=\"titlebar\">"
272                 "Edit user account: ");
273         escputs(username);
274         wprintf("</SPAN></TD></TR></TABLE>\n");
275         wprintf("</div>\n<div id=\"content\">\n");
276
277         do_template("beginbox_nt");
278         wprintf("<FORM METHOD=\"POST\" ACTION=\"/edituser\">\n"
279                 "<INPUT TYPE=\"hidden\" NAME=\"username\" VALUE=\"");
280         escputs(username);
281         wprintf("\">\n");
282         wprintf("<INPUT TYPE=\"hidden\" NAME=\"is_new\" VALUE=\"%d\">\n"
283                 "<INPUT TYPE=\"hidden\" NAME=\"usernum\" VALUE=\"%ld\">\n",
284                 is_new, usernum);
285
286         wprintf("<INPUT TYPE=\"hidden\" NAME=\"flags\" VALUE=\"%d\">\n", flags);
287
288         wprintf("<CENTER><TABLE>");
289
290         wprintf("<TR><TD>Password</TD><TD>"
291                 "<INPUT TYPE=\"password\" NAME=\"password\" VALUE=\"");
292         escputs(password);
293         wprintf("\" MAXLENGTH=\"20\"></TD></TR>\n");
294
295         wprintf("<TR><TD>Times logged in</TD><TD>"
296                 "<INPUT TYPE=\"text\" NAME=\"timescalled\" VALUE=\"");
297         wprintf("%d", timescalled);
298         wprintf("\" MAXLENGTH=\"6\"></TD></TR>\n");
299
300         wprintf("<TR><TD>Messages posted</TD><TD>"
301                 "<INPUT TYPE=\"text\" NAME=\"msgsposted\" VALUE=\"");
302         wprintf("%d", msgsposted);
303         wprintf("\" MAXLENGTH=\"6\"></TD></TR>\n");
304
305         wprintf("<TR><TD>Access level</TD><TD>"
306                 "<SELECT NAME=\"axlevel\">\n");
307         for (i=0; i<7; ++i) {
308                 wprintf("<OPTION ");
309                 if (axlevel == i) {
310                         wprintf("SELECTED ");
311                 }
312                 wprintf("VALUE=\"%d\">%d - %s</OPTION>\n",
313                         i, i, axdefs[i]);
314         }
315         wprintf("</SELECT></TD></TR>\n");
316
317         wprintf("<TR><TD>User ID number</TD><TD>"
318                 "<INPUT TYPE=\"text\" NAME=\"usernum\" VALUE=\"");
319         wprintf("%ld", usernum);
320         wprintf("\" MAXLENGTH=\"7\"></TD></TR>\n");
321
322         now = time(NULL);
323         wprintf("<TR><TD>Date/time of last login</TD><TD>"
324                 "<SELECT NAME=\"lastcall\">\n");
325
326         wprintf("<OPTION SELECTED VALUE=\"%ld\">", lastcall);
327         escputs(asctime(localtime(&lastcall)));
328         wprintf("</OPTION>\n");
329
330         wprintf("<OPTION VALUE=\"%ld\">", now);
331         escputs(asctime(localtime(&now)));
332         wprintf("</OPTION>\n");
333
334         wprintf("</SELECT></TD></TR>");
335
336         wprintf("<TR><TD>Auto-purge after days</TD><TD>"
337                 "<INPUT TYPE=\"text\" NAME=\"purgedays\" VALUE=\"");
338         wprintf("%d", purgedays);
339         wprintf("\" MAXLENGTH=\"5\"></TD></TR>\n");
340
341         wprintf("</TABLE>\n");
342
343         wprintf("<INPUT type=\"submit\" NAME=\"action\" VALUE=\"OK\">\n"
344                 "&nbsp;"
345                 "<INPUT type=\"submit\" NAME=\"action\" VALUE=\"Cancel\">\n"
346                 "<br /><br /></FORM>\n");
347
348         wprintf("</CENTER>\n");
349         do_template("endbox");
350
351         wDumpContent(1);
352
353 }
354
355
356
357 void edituser(void) {
358         char message[SIZ];
359         char buf[SIZ];
360         int is_new = 0;
361
362         is_new = atoi(bstr("is_new"));
363
364         if (strcasecmp(bstr("action"), "OK")) {
365                 strcpy(message, "Edit user cancelled.");
366         }
367
368         else {
369
370                 serv_printf("ASUP %s|%s|%s|%s|%s|%s|%s|%s|%s|",
371                         bstr("username"),
372                         bstr("password"),
373                         bstr("flags"),
374                         bstr("timescalled"),
375                         bstr("msgsposted"),
376                         bstr("axlevel"),
377                         bstr("usernum"),
378                         bstr("lastcall"),
379                         bstr("purgedays")
380                 );
381                 serv_gets(buf);
382                 if (buf[0] != '2') {
383                         sprintf(message,
384                                 "<IMG SRC=\"static/error.gif\" ALIGN=CENTER>"
385                                 "%s<br /><br />\n", &buf[4]);
386                 }
387                 else {
388                         strcpy(message, "");
389                 }
390         }
391
392         /* If we are in the middle of creating a new user, move on to
393          * the vCard edit screen.
394          */
395         if (is_new) {
396                 display_edit_address_book_entry( bstr("username"), atol(bstr("usernum")) );
397         }
398         else {
399                 select_user_to_edit(message, bstr("username"));
400         }
401 }
402
403
404
405
406 void create_user(void) {
407         char buf[SIZ];
408         char error_message[SIZ];
409         char username[SIZ];
410
411         strcpy(username, bstr("username"));
412
413         serv_printf("CREU %s", username);
414         serv_gets(buf);
415
416         if (buf[0] == '2') {
417                 /* sprintf(error_message, "<b>User has been created.</b>");
418                 select_user_to_edit(error_message, username); */
419                 display_edituser(username, 1);
420         }
421         else {
422                 sprintf(error_message,
423                         "<IMG SRC=\"static/error.gif\" ALIGN=CENTER>"
424                         "%s<br /><br />\n", &buf[4]);
425                 select_user_to_edit(error_message, NULL);
426         }
427
428 }
429
Citadel server, clients, utilities