[54] | 1 | #!/usr/bin/perl
|
---|
| 2 | # ipdb/cgi-bin/admin.cgi
|
---|
| 3 | # Hack interface to make specific changes to IPDB that (for one reason
|
---|
| 4 | # or another) can't be made through the main interface.
|
---|
[65] | 5 | #
|
---|
[54] | 6 | ###
|
---|
| 7 | # SVN revision info
|
---|
| 8 | # $Date: 2015-12-10 21:49:01 +0000 (Thu, 10 Dec 2015) $
|
---|
| 9 | # SVN revision $Rev: 789 $
|
---|
| 10 | # Last update by $Author: kdeugau $
|
---|
| 11 | ###
|
---|
[417] | 12 | # Copyright (C) 2004-2010 - Kris Deugau
|
---|
[54] | 13 |
|
---|
| 14 | use strict;
|
---|
| 15 | use warnings;
|
---|
| 16 | use CGI::Carp qw(fatalsToBrowser);
|
---|
[517] | 17 | use CGI::Simple;
|
---|
| 18 | use HTML::Template;
|
---|
[54] | 19 | use DBI;
|
---|
| 20 | #use POSIX qw(ceil);
|
---|
| 21 | use NetAddr::IP;
|
---|
| 22 |
|
---|
| 23 | use Sys::Syslog;
|
---|
| 24 |
|
---|
[417] | 25 | # don't remove! required for GNU/FHS-ish install from tarball
|
---|
| 26 | ##uselib##
|
---|
| 27 |
|
---|
[515] | 28 | use CustIDCK;
|
---|
[417] | 29 | use MyIPDB;
|
---|
| 30 |
|
---|
[431] | 31 | openlog "IPDB-admin","pid","$IPDB::syslog_facility";
|
---|
[54] | 32 |
|
---|
| 33 | # Collect the username from HTTP auth. If undefined, we're in a test environment.
|
---|
| 34 | my $authuser;
|
---|
| 35 | if (!defined($ENV{'REMOTE_USER'})) {
|
---|
| 36 | $authuser = '__temptest';
|
---|
| 37 | } else {
|
---|
| 38 | $authuser = $ENV{'REMOTE_USER'};
|
---|
| 39 | }
|
---|
| 40 |
|
---|
| 41 | syslog "debug", "$authuser active";
|
---|
| 42 |
|
---|
[517] | 43 | # Set up the CGI object...
|
---|
| 44 | my $q = new CGI::Simple;
|
---|
| 45 | # ... and get query-string params as well as POST params if necessary
|
---|
| 46 | $q->parse_query_string;
|
---|
| 47 |
|
---|
| 48 | # Convenience; saves changing all references to %webvar
|
---|
| 49 | ##fixme: tweak for handling <select multiple='y' size=3> (list with multiple selection)
|
---|
| 50 | my %webvar = $q->Vars;
|
---|
| 51 |
|
---|
| 52 | # anyone got a better name? :P
|
---|
| 53 | my $thingroot = $ENV{SCRIPT_FILENAME};
|
---|
| 54 | $thingroot =~ s|cgi-bin/admin.cgi||;
|
---|
| 55 |
|
---|
| 56 | # Set up some globals
|
---|
| 57 | $ENV{HTML_TEMPLATE_ROOT} = $thingroot."templates";
|
---|
| 58 |
|
---|
[199] | 59 | # Why not a global DB handle? (And a global statement handle, as well...)
|
---|
| 60 | # Use the connectDB function, otherwise we end up confusing ourselves
|
---|
| 61 | my $ip_dbh;
|
---|
| 62 | my $sth;
|
---|
| 63 | my $errstr;
|
---|
| 64 | ($ip_dbh,$errstr) = connectDB_My;
|
---|
| 65 | if (!$ip_dbh) {
|
---|
[517] | 66 | $webvar{action} = "dberr";
|
---|
| 67 | } else {
|
---|
| 68 | initIPDBGlobals($ip_dbh);
|
---|
[199] | 69 | }
|
---|
| 70 |
|
---|
[548] | 71 | if(!defined($webvar{action})) {
|
---|
| 72 | $webvar{action} = "main"; #shuts up the warnings.
|
---|
| 73 | }
|
---|
| 74 |
|
---|
[517] | 75 | # handle DB error output
|
---|
| 76 | if ($webvar{action} eq 'dberr') {
|
---|
| 77 | my $page = HTML::Template->new(filename => "admin/dberr.tmpl");
|
---|
| 78 | $page->param(errmsg => $errstr);
|
---|
| 79 | print "Content-Type: text/html\n\n".$page->output;
|
---|
| 80 | exit;
|
---|
| 81 | }
|
---|
| 82 |
|
---|
[233] | 83 | if ($IPDBacl{$authuser} !~ /A/) {
|
---|
[517] | 84 | my $page = HTML::Template->new(filename => "admin/aclerr.tmpl");
|
---|
| 85 | ##fixme: need params for IPDB admin email and name
|
---|
| 86 | $page->param(ipdbadmin_email => 'ipdbadmin@example.com');
|
---|
| 87 | $page->param(ipdbadmin_name => 'the IPDB administrator');
|
---|
| 88 | print "Content-Type: text/html\n\n".$page->output;
|
---|
[233] | 89 | exit;
|
---|
| 90 | }
|
---|
| 91 |
|
---|
[517] | 92 | my $header = HTML::Template->new(filename => "admin/header.tmpl");
|
---|
[641] | 93 | $header->param(mainpage => 1) if $webvar{action} eq 'main';
|
---|
[669] | 94 | $header->param(webpath => $IPDB::webpath);
|
---|
[641] | 95 | print "Content-type: text/html\n\n".$header->output;
|
---|
[58] | 96 |
|
---|
[517] | 97 | my $page;
|
---|
| 98 | if (-e "$ENV{HTML_TEMPLATE_ROOT}/admin/$webvar{action}.tmpl") {
|
---|
| 99 | $page = HTML::Template->new(filename => "admin/$webvar{action}.tmpl");
|
---|
| 100 | } else {
|
---|
| 101 | $page = HTML::Template->new(filename => "admin/dunno.tmpl");
|
---|
| 102 | }
|
---|
| 103 |
|
---|
| 104 | # handle index page
|
---|
| 105 | if ($webvar{action} eq 'main') {
|
---|
[541] | 106 | my $tlist = getTypeList($ip_dbh, 'a');
|
---|
| 107 | $tlist->[0]->{sel} = 1;
|
---|
| 108 | $page->param(typelist => $tlist);
|
---|
[199] | 109 |
|
---|
[541] | 110 | my $mlist = getMasterList($ip_dbh, 'm');
|
---|
| 111 | $page->param(masterlist => $mlist);
|
---|
[54] | 112 | }
|
---|
| 113 |
|
---|
[517] | 114 | ## Non-default actions.
|
---|
[199] | 115 |
|
---|
[517] | 116 | elsif ($webvar{action} eq 'alloc') {
|
---|
[199] | 117 |
|
---|
[543] | 118 | my $cidr = new NetAddr::IP $webvar{cidr};
|
---|
| 119 | if (!$cidr || "$cidr" =~ /^0/) {
|
---|
[517] | 120 | $page->param(errmsg => "Can't allocate something that's not a netblock/ip");
|
---|
| 121 | goto ERRJUMP;
|
---|
[199] | 122 | }
|
---|
| 123 |
|
---|
[544] | 124 | my $custid = $def_custids{$webvar{alloctype}};
|
---|
[199] | 125 | if ($custid eq '') {
|
---|
[546] | 126 | # Crosscheck with billing.
|
---|
| 127 | my $status = CustIDCK->custid_exist($webvar{custid});
|
---|
| 128 | if ($CustIDCK::Error) {
|
---|
| 129 | $page->param(errmsg => "Error verifying customer ID: ".$CustIDCK::ErrMsg);
|
---|
| 130 | goto ERRJUMP;
|
---|
[400] | 131 | }
|
---|
[546] | 132 | if (!$status) {
|
---|
| 133 | $page->param(errmsg => "Customer ID not valid. Make sure the Customer ID ".
|
---|
| 134 | "is correct.<br>\nUse STAFF for staff static IPs, and $IPDB::defcustid for any other ".
|
---|
| 135 | "non-customer assignments.");
|
---|
| 136 | goto ERRJUMP;
|
---|
| 137 | }
|
---|
[199] | 138 | # Type that doesn't have a default custid
|
---|
| 139 | $custid = $webvar{custid};
|
---|
| 140 | }
|
---|
| 141 |
|
---|
[544] | 142 | my $maskbits = $cidr->masklen;
|
---|
[642] | 143 | my ($fbid, $fb, $fbparent);
|
---|
| 144 | ($fbid, $fb, $fbparent) = findAllocateFrom($ip_dbh, $maskbits, $webvar{alloctype}, '','',
|
---|
[544] | 145 | (gimme => "$cidr", allowpriv => 1));
|
---|
[642] | 146 | $page->param(fbid => $fbid);
|
---|
| 147 | $page->param(parid => $fbparent);
|
---|
| 148 | my $rdns = getBlockRDNS($ip_dbh, id => $fbparent, type => ($webvar{alloctype} =~ /^.i$/ ? 'i' : 'b'),
|
---|
| 149 | user => $authuser);
|
---|
| 150 | $page->param(rdns => $rdns);
|
---|
| 151 | if ($webvar{alloctype} =~ /^(.)i$/) {
|
---|
[544] | 152 | my $iptype = $1;
|
---|
[642] | 153 | my $ptmp = getBlockData($ip_dbh, $fbparent);
|
---|
[544] | 154 | if ($ptmp->{type} =~ /^(.)[dp]$/) {
|
---|
| 155 | my $newiptype = "$1i";
|
---|
| 156 | if ($ptmp->{type} !~ /^$iptype./) {
|
---|
| 157 | $page->param(warnmsg => "Warning: Allocating IP as '".$disp_alloctypes{$newiptype}."' instead of '".
|
---|
[642] | 158 | $disp_alloctypes{$webvar{alloctype}}."' to match pool ".$ptmp->{block}."\n");
|
---|
[544] | 159 | $webvar{alloctype} = $newiptype;
|
---|
| 160 | }
|
---|
| 161 | }
|
---|
[642] | 162 | if (!$fbid) {
|
---|
[517] | 163 | $page->param(errmsg => "Can't allocate static IP from outside a pool!!");
|
---|
| 164 | goto ERRJUMP;
|
---|
| 165 | }
|
---|
[199] | 166 | } else {
|
---|
[642] | 167 | if (!$fbid) {
|
---|
| 168 | $page->param(errmsg => "Can't allocate from outside a free block!!");
|
---|
[517] | 169 | goto ERRJUMP;
|
---|
| 170 | }
|
---|
[199] | 171 | }
|
---|
| 172 |
|
---|
[642] | 173 | my $alloc_from = new NetAddr::IP $fb;
|
---|
[199] | 174 |
|
---|
[517] | 175 | my @cities;
|
---|
[199] | 176 | foreach my $city (@citylist) {
|
---|
[517] | 177 | my %row = (city => $city);
|
---|
| 178 | push @cities, \%row;
|
---|
[199] | 179 | }
|
---|
[517] | 180 | $page->param(
|
---|
| 181 | cidr => $cidr,
|
---|
| 182 | disptype => $disp_alloctypes{$webvar{alloctype}},
|
---|
| 183 | type => $webvar{alloctype},
|
---|
| 184 | alloc_from => $alloc_from,
|
---|
| 185 | custid => $custid,
|
---|
| 186 | citylist => \@cities
|
---|
| 187 | );
|
---|
[199] | 188 |
|
---|
| 189 | } elsif ($webvar{action} eq 'confirm') {
|
---|
| 190 |
|
---|
[517] | 191 | $page->param(
|
---|
| 192 | cidr => $webvar{cidr},
|
---|
| 193 | custid => $webvar{custid},
|
---|
| 194 | desc => $webvar{desc},
|
---|
| 195 | disptype => $disp_alloctypes{$webvar{alloctype}}
|
---|
| 196 | );
|
---|
[199] | 197 | # Only need to check city here.
|
---|
| 198 | if ($webvar{city} eq '-') {
|
---|
[517] | 199 | $page->param(locerr => "Invalid customer location! Go back and select customer's location.");
|
---|
| 200 | goto ERRJUMP;
|
---|
[545] | 201 | }
|
---|
| 202 |
|
---|
[642] | 203 | my ($retcode,$msg) = allocateBlock($ip_dbh, cidr => $webvar{cidr}, fbid => $webvar{fbid},
|
---|
| 204 | parent => $webvar{parent}, custid => $webvar{custid}, type => $webvar{alloctype}, city => $webvar{city},
|
---|
| 205 | desc => $webvar{desc}, notes => $webvar{notes}, circid => $webvar{circid},
|
---|
| 206 | privdata => $webvar{privdata}, nodeid => $webvar{node}, rdns => $webvar{rdns}, user => $authuser);
|
---|
| 207 |
|
---|
[545] | 208 | if ($retcode eq 'OK') {
|
---|
| 209 | syslog "notice", "$authuser allocated '$webvar{cidr}' to '$webvar{custid}' as ".
|
---|
| 210 | "'$webvar{alloctype}'";
|
---|
| 211 | if ($webvar{alloctype} =~ /^.i$/) {
|
---|
| 212 | mailNotify($ip_dbh, "a$webvar{alloctype}", "ADDED: $disp_alloctypes{$webvar{alloctype}} allocation",
|
---|
| 213 | "$disp_alloctypes{$webvar{alloctype}} $webvar{cidr} allocated to customer $webvar{custid}\n".
|
---|
| 214 | "Description: $webvar{desc}\n\nAllocated by: $authuser\n");
|
---|
| 215 | }
|
---|
| 216 | } else {
|
---|
| 217 | $page->param(errmsg => $msg);
|
---|
| 218 | syslog "err", "($authuser) Allocation of '$webvar{cidr}' to '$webvar{custid}' as ".
|
---|
| 219 | "'$webvar{alloctype}' failed: '$msg'";
|
---|
| 220 | }
|
---|
[199] | 221 |
|
---|
[54] | 222 | } elsif ($webvar{action} eq 'alloctweak') {
|
---|
[517] | 223 |
|
---|
[54] | 224 | fix_allocfrom();
|
---|
| 225 | showAllocs($webvar{allocfrom});
|
---|
[517] | 226 |
|
---|
[54] | 227 | } elsif ($webvar{action} eq 'update') {
|
---|
[517] | 228 |
|
---|
[54] | 229 | update();
|
---|
[58] | 230 |
|
---|
[517] | 231 | } elsif ($webvar{action} eq 'touch') {
|
---|
[58] | 232 |
|
---|
[547] | 233 | my ($code,$msg) = touchMaster($ip_dbh, $webvar{whichmaster});
|
---|
| 234 | $page->param(errmsg => $msg) if $code eq 'FAIL';
|
---|
[517] | 235 |
|
---|
[329] | 236 | } elsif ($webvar{action} eq 'listcust') {
|
---|
[517] | 237 |
|
---|
[709] | 238 | my $clist = $ip_dbh->selectall_arrayref("SELECT custid,name AS custname,tech_handle AS tech ".
|
---|
| 239 | "FROM customers ORDER BY custid", { Slice => {} } );
|
---|
| 240 | $page->param(custlist => $clist);
|
---|
[517] | 241 |
|
---|
[331] | 242 | } elsif ($webvar{action} eq 'edcust') {
|
---|
[517] | 243 |
|
---|
[418] | 244 | if ($webvar{newcust}) {
|
---|
| 245 | $sth = $ip_dbh->prepare("INSERT INTO customers (custid) VALUES (?)");
|
---|
| 246 | $sth->execute($webvar{custid});
|
---|
| 247 | }
|
---|
[331] | 248 | $sth = $ip_dbh->prepare("select custid,name,street,city,province,".
|
---|
[436] | 249 | "country,pocode,phone,tech_handle,abuse_handle,admin_handle,special ".
|
---|
[331] | 250 | "from customers where custid='$webvar{custid}'");
|
---|
| 251 | $sth->execute;
|
---|
[436] | 252 | my ($custid, $name, $street, $city, $prov, $country, $pocode, $phone, $tech, $abuse, $admin, $special) =
|
---|
[331] | 253 | $sth->fetchrow_array;
|
---|
| 254 |
|
---|
[517] | 255 | $page->param(
|
---|
| 256 | custid => $custid,
|
---|
| 257 | name => $name,
|
---|
| 258 | street => $street,
|
---|
| 259 | city => $city,
|
---|
| 260 | prov => $prov,
|
---|
| 261 | country => $country,
|
---|
| 262 | pocode => $pocode,
|
---|
| 263 | phone => $phone,
|
---|
| 264 | tech => $tech,
|
---|
| 265 | abuse => $abuse,
|
---|
| 266 | admin => $admin,
|
---|
| 267 | special => $special
|
---|
| 268 | );
|
---|
| 269 |
|
---|
[329] | 270 | } elsif ($webvar{action} eq 'updcust') {
|
---|
[517] | 271 |
|
---|
[709] | 272 | if ($webvar{abutton} eq 'Update') {
|
---|
| 273 | $ip_dbh->do(q(
|
---|
| 274 | UPDATE customers
|
---|
| 275 | SET name = ?, street = ?, city = ?, province=?, country=?, pocode=?,
|
---|
| 276 | phone = ?, tech_handle = ?, abuse_handle = ?, admin_handle = ?, special = ?
|
---|
| 277 | WHERE custid = ?
|
---|
| 278 | ), undef,
|
---|
| 279 | ($webvar{name}, $webvar{street}, $webvar{city}, $webvar{province}, $webvar{country}, $webvar{pocode},
|
---|
| 280 | $webvar{phone}, $webvar{tech_handle}, $webvar{abuse_handle}, $webvar{admin_handle}, $webvar{special},
|
---|
| 281 | $webvar{custid})
|
---|
| 282 | );
|
---|
| 283 | $page->param(whatact => "Updated");
|
---|
| 284 | } elsif ($webvar{abutton} eq 'Delete (immediate)') {
|
---|
| 285 | $ip_dbh->do("DELETE FROM customers WHERE custid = ?", undef, $webvar{custid});
|
---|
| 286 | $page->param(whatact => "Deleted");
|
---|
| 287 | } else {
|
---|
| 288 | # Your llama is on fire
|
---|
| 289 | }
|
---|
| 290 | # Show what we've just either updated or deleted.
|
---|
| 291 | # Deleted, so that in case of "OOOPS!!", the "special" data can be recovered.
|
---|
[517] | 292 | $page->param(
|
---|
| 293 | custid => $webvar{custid},
|
---|
| 294 | name => $webvar{name},
|
---|
| 295 | street => $webvar{street},
|
---|
| 296 | city => $webvar{city},
|
---|
| 297 | prov => $webvar{province},
|
---|
| 298 | country => $webvar{country},
|
---|
| 299 | pocode => $webvar{pocode},
|
---|
| 300 | phone => $webvar{phone},
|
---|
| 301 | tech => $webvar{tech_handle},
|
---|
| 302 | abuse => $webvar{abuse_handle},
|
---|
| 303 | admin => $webvar{admin_handle},
|
---|
| 304 | special => $webvar{special}
|
---|
| 305 | );
|
---|
[418] | 306 |
|
---|
[65] | 307 | } elsif ($webvar{action} eq 'showpools') {
|
---|
[517] | 308 |
|
---|
[644] | 309 | my $plist = $ip_dbh->selectall_arrayref("SELECT a.id,a.cidr AS pool, count(*) AS free FROM poolips p ".
|
---|
| 310 | "JOIN allocations a ON a.id=p.parent_id ".
|
---|
| 311 | "WHERE available='y' GROUP BY a.cidr,a.id ORDER BY a.cidr", { Slice => {} });
|
---|
| 312 | $page->param(poollist => $plist);
|
---|
[517] | 313 |
|
---|
[65] | 314 | } elsif ($webvar{action} eq 'tweakpool') {
|
---|
[517] | 315 |
|
---|
[65] | 316 | showPool($webvar{pool});
|
---|
[517] | 317 |
|
---|
[65] | 318 | } elsif ($webvar{action} eq 'updatepool') {
|
---|
[199] | 319 |
|
---|
[644] | 320 | my $ip = $ip_dbh->selectrow_array("SELECT ip FROM poolips WHERE id=?", undef, ($webvar{id}) );
|
---|
| 321 | $page->param(ip => $ip);
|
---|
| 322 | $sth = $ip_dbh->prepare("UPDATE poolips SET custid=?, city=?, type=?, available='".
|
---|
[65] | 323 | (($webvar{available} eq 'y') ? 'y' : 'n').
|
---|
[517] | 324 | "', notes=?, description=? ".
|
---|
[644] | 325 | "WHERE id=?");
|
---|
| 326 | $sth->execute($webvar{custid}, $webvar{city}, $webvar{type}, $webvar{notes}, $webvar{desc}, $webvar{id});
|
---|
[65] | 327 | if ($sth->err) {
|
---|
[517] | 328 | $page->param(errmsg => $sth->errstr);
|
---|
[644] | 329 | syslog "err", "$authuser could not update pool IP $ip: ".$sth->errstr;
|
---|
[517] | 330 | } else {
|
---|
[644] | 331 | syslog "notice", "$authuser updated pool IP $ip";
|
---|
[65] | 332 | }
|
---|
[644] | 333 | my $poolid = $ip_dbh->selectrow_array("SELECT parent_id FROM poolips WHERE id=?", undef, ($webvar{id}) );
|
---|
| 334 | $page->param(poolid => $poolid);
|
---|
| 335 | my $pool = $ip_dbh->selectrow_array("SELECT cidr FROM allocations WHERE id=?", undef, ($poolid) );
|
---|
| 336 | $page->param(pool => $pool);
|
---|
[517] | 337 |
|
---|
[258] | 338 | } elsif ($webvar{action} eq 'showusers') {
|
---|
[233] | 339 |
|
---|
| 340 | $sth = $ip_dbh->prepare("select username,acl from users order by username");
|
---|
| 341 | $sth->execute;
|
---|
[517] | 342 | my @userlist;
|
---|
| 343 | while (my ($username,$acl) = $sth->fetchrow_array) {
|
---|
| 344 | ##fixme: funky things happening with HTML::Template here; shouldn't need the "logic ? iftrue : iffalse" structure
|
---|
| 345 | my %row = (
|
---|
| 346 | username => $username,
|
---|
| 347 | can_add => ($acl =~ /a/ ? 1 : 0),
|
---|
| 348 | can_change => ($acl =~ /c/ ? 1 : 0),
|
---|
| 349 | can_del => ($acl =~ /d/ ? 1 : 0),
|
---|
| 350 | sysnet => ($acl =~ /s/ ? 1 : 0),
|
---|
[789] | 351 | can_merge => ($acl =~ /m/ ? 1 : 0),
|
---|
[517] | 352 | is_admin => ($acl =~ /A/ ? 1 : 0),
|
---|
| 353 | acl => $acl
|
---|
| 354 | );
|
---|
| 355 | push @userlist, \%row;
|
---|
| 356 | }
|
---|
| 357 | $page->param(userlist => \@userlist);
|
---|
[233] | 358 |
|
---|
| 359 | } elsif ($webvar{action} eq 'updacl') {
|
---|
[517] | 360 |
|
---|
| 361 | $page->param(username => $webvar{username});
|
---|
[233] | 362 | my $acl = 'b';
|
---|
| 363 | if ($webvar{admin} eq 'on') {
|
---|
[789] | 364 | # as per request "admin" users do not automatically get merge permission. Networkz iz hard.
|
---|
| 365 | # Admin users that add the priviledge and then shoot everybody in all the feet probably
|
---|
| 366 | # shouldn't have had admin access in the first place.
|
---|
[284] | 367 | $acl .= "acdsA";
|
---|
[789] | 368 | $acl .= 'm' if $webvar{merge} eq 'on';
|
---|
[233] | 369 | } else {
|
---|
| 370 | $acl .= ($webvar{add} eq 'on' ? 'a' : '').
|
---|
| 371 | ($webvar{change} eq 'on' ? 'c' : '').
|
---|
[284] | 372 | ($webvar{del} eq 'on' ? 'd' : '').
|
---|
[789] | 373 | ($webvar{sysnet} eq 'on' ? 's' : '').
|
---|
| 374 | ($webvar{merge} eq 'on' ? 'm' : '');
|
---|
[233] | 375 | }
|
---|
[517] | 376 | $page->param(acl => $acl);
|
---|
[233] | 377 |
|
---|
| 378 | $sth = $ip_dbh->prepare("update users set acl='$acl' where username='$webvar{username}'");
|
---|
| 379 | $sth->execute;
|
---|
[517] | 380 | $page->param(errmsg => $sth->errstr) if $sth->err;
|
---|
[233] | 381 |
|
---|
[517] | 382 | } elsif ($webvar{action} eq 'newuser') {
|
---|
[233] | 383 |
|
---|
[517] | 384 | $page->param(username => $webvar{username});
|
---|
[259] | 385 | my $cr_pass = ($webvar{preenc} ? $webvar{password} :
|
---|
| 386 | crypt $webvar{password}, join('',('.','/',0..9,'A'..'Z','a'..'z')[rand 64, rand 64]));
|
---|
[258] | 387 | $sth = $ip_dbh->prepare("insert into users (username,password,acl) values ".
|
---|
| 388 | "('$webvar{username}','$cr_pass','b')");
|
---|
| 389 | $sth->execute;
|
---|
[517] | 390 | $page->param(errmsg => $sth->errstr) if $sth->err;
|
---|
[258] | 391 |
|
---|
[517] | 392 | } elsif ($webvar{action} eq 'deluser') {
|
---|
[258] | 393 |
|
---|
[517] | 394 | $page->param(username => $webvar{username});
|
---|
[258] | 395 | $sth = $ip_dbh->prepare("delete from users where username='$webvar{username}'");
|
---|
| 396 | $sth->execute;
|
---|
[517] | 397 | $page->param(errmsg => $sth->errstr) if $sth->err;
|
---|
[258] | 398 |
|
---|
[517] | 399 | } elsif ($webvar{action} eq 'emailnotice') {
|
---|
[258] | 400 |
|
---|
[422] | 401 | $sth = $ip_dbh->prepare("SELECT action,reciplist FROM notify");
|
---|
| 402 | $sth->execute;
|
---|
[517] | 403 | my @spamlist;
|
---|
[422] | 404 | while (my ($notice_code,$reciplist) = $sth->fetchrow_array() ) {
|
---|
| 405 | ##fixme: hairy mess, only a few things call mailNotify() anyway, so many possible notices won't work.
|
---|
| 406 | my $action_out = dispNoticeCode($notice_code);
|
---|
[517] | 407 | my %row = (
|
---|
| 408 | action => $action_out,
|
---|
| 409 | code => $notice_code,
|
---|
| 410 | recips => $reciplist
|
---|
| 411 | );
|
---|
| 412 | push @spamlist, \%row;
|
---|
[422] | 413 | }
|
---|
[517] | 414 | $page->param(spamlist => \@spamlist);
|
---|
[423] | 415 |
|
---|
| 416 | $sth = $ip_dbh->prepare("SELECT type,dispname FROM alloctypes WHERE listorder < 500 ".
|
---|
| 417 | "ORDER BY listorder");
|
---|
| 418 | $sth->execute;
|
---|
| 419 | my $i=0;
|
---|
[517] | 420 | my @typelist;
|
---|
[423] | 421 | while (my ($type,$disp) = $sth->fetchrow_array) {
|
---|
[517] | 422 | my %row = (
|
---|
| 423 | type => $type,
|
---|
| 424 | disptype => $disp,
|
---|
| 425 | # ahh, off-by-one counts, how we do love thee... NOT!
|
---|
| 426 | newrow => ($i+2 > $sth->rows ? 1 : (++$i % 4)),
|
---|
| 427 | );
|
---|
| 428 | push @typelist, \%row;
|
---|
[423] | 429 | }
|
---|
[517] | 430 | $page->param(typelist => \@typelist);
|
---|
[423] | 431 |
|
---|
[517] | 432 | } elsif ($webvar{action} eq 'addnotice') {
|
---|
[423] | 433 |
|
---|
[426] | 434 | $webvar{alloctype} = $webvar{special} if $webvar{msgaction} eq 's:';
|
---|
| 435 | if ($webvar{msgaction} && $webvar{alloctype} && $webvar{reciplist}) {
|
---|
[517] | 436 | $page->param(cantry => 1);
|
---|
[426] | 437 | $webvar{reciplist} =~ s/[\r\n]+/,/g;
|
---|
[438] | 438 | $webvar{msgaction} = "f:$webvar{msgaction}" if $webvar{onfail};
|
---|
[517] | 439 | $page->param(reciplist => $webvar{reciplist});
|
---|
| 440 | $page->param(dispnotice => dispNoticeCode($webvar{msgaction}.$webvar{alloctype}));
|
---|
[426] | 441 | $sth = $ip_dbh->prepare("INSERT INTO notify (action, reciplist) VALUES (?,?)");
|
---|
[423] | 442 | ##fixme: automagically merge reciplists iff action already exists
|
---|
[426] | 443 | $sth->execute($webvar{msgaction}.$webvar{alloctype}, $webvar{reciplist});
|
---|
[517] | 444 | $page->param(addfailed => $sth->errstr) if $sth->err;
|
---|
[423] | 445 | }
|
---|
| 446 |
|
---|
[424] | 447 | } elsif ($webvar{action} eq 'delnotice') {
|
---|
[517] | 448 |
|
---|
| 449 | $page->param(dispnotice => dispNoticeCode($webvar{code}.$webvar{alloctype}));
|
---|
[424] | 450 | $sth = $ip_dbh->prepare("DELETE FROM notify WHERE action=?");
|
---|
| 451 | $sth->execute($webvar{code});
|
---|
[517] | 452 | $page->param(delfailed => $sth->errstr) if $sth->err;
|
---|
[424] | 453 |
|
---|
[422] | 454 | } elsif ($webvar{action} eq 'ednotice') {
|
---|
[517] | 455 |
|
---|
| 456 | $page->param(dispnotice => dispNoticeCode($webvar{code}));
|
---|
| 457 | $page->param(code => $webvar{code});
|
---|
[422] | 458 | $sth = $ip_dbh->prepare("SELECT reciplist FROM notify WHERE action=?");
|
---|
| 459 | $sth->execute($webvar{code});
|
---|
| 460 | my ($reciplist) = $sth->fetchrow_array;
|
---|
| 461 | $reciplist =~ s/,/\n/g;
|
---|
[517] | 462 | $page->param(reciplist => $reciplist);
|
---|
| 463 |
|
---|
[422] | 464 | } elsif ($webvar{action} eq 'updnotice') {
|
---|
[517] | 465 |
|
---|
| 466 | $page->param(dispnotice => dispNoticeCode($webvar{code}));
|
---|
[422] | 467 | $sth = $ip_dbh->prepare("UPDATE notify SET reciplist=? WHERE action=?");
|
---|
| 468 | $webvar{reciplist} =~ s/[\r\n]+/,/g;
|
---|
| 469 | $sth->execute($webvar{reciplist}, $webvar{code});
|
---|
[517] | 470 | $page->param(updfailed => $sth->errstr) if $sth->err;
|
---|
| 471 |
|
---|
[256] | 472 | } elsif ($webvar{action} ne '<NULL>') {
|
---|
[517] | 473 | $page->param(dunno => $webvar{action});
|
---|
[54] | 474 | }
|
---|
| 475 |
|
---|
[643] | 476 | ERRJUMP:
|
---|
[517] | 477 | print $page->output;
|
---|
[54] | 478 |
|
---|
[517] | 479 | ##fixme: make me a footer param!
|
---|
[643] | 480 | print qq(<hr><div><a href="$IPDB::webpath/">Back</a> to the main IPDB</div>\n);
|
---|
[54] | 481 |
|
---|
[517] | 482 | # We print the footer here, so we don't have to do it elsewhere.
|
---|
| 483 | my $footer = HTML::Template->new(filename => "footer.tmpl");
|
---|
| 484 | # we're already in the admin tools, no need to provide a bottom link. maybe.
|
---|
| 485 | #$footer->param(adminlink => ($IPDBacl{$authuser} =~ /A/));
|
---|
[54] | 486 |
|
---|
[517] | 487 | print $footer->output;
|
---|
| 488 |
|
---|
[708] | 489 | $sth->finish if $sth;
|
---|
[54] | 490 | $ip_dbh->disconnect;
|
---|
| 491 |
|
---|
| 492 | exit;
|
---|
| 493 |
|
---|
| 494 |
|
---|
[517] | 495 | # Hokay. This is a little different. We have a few specific functions here:
|
---|
| 496 | # -> Assign arbitrary subnet from arbitrary free space
|
---|
| 497 | # -> Tweak individual DB fields
|
---|
| 498 | #
|
---|
| 499 |
|
---|
| 500 |
|
---|
[54] | 501 | # Tweak allocfrom into shape.
|
---|
| 502 | sub fix_allocfrom {
|
---|
| 503 | if ($webvar{allocfrom} =~ /^(\d+\.){2}\d+$/) {
|
---|
| 504 | # 3-octet class C specified
|
---|
| 505 | $webvar{allocfrom} .= ".0/24";
|
---|
| 506 | } elsif ($webvar{allocfrom} =~ /^(\d+\.){3}\d+$/) {
|
---|
| 507 | # 4-octet IP specified;
|
---|
| 508 | $webvar{allocfrom} .= "/24";
|
---|
| 509 | }
|
---|
| 510 | }
|
---|
| 511 |
|
---|
| 512 |
|
---|
[517] | 513 | # Show allocations to allow editing.
|
---|
| 514 | sub showAllocs {
|
---|
[58] | 515 |
|
---|
[517] | 516 | my $within = new NetAddr::IP $_[0];
|
---|
| 517 | $page->param(within => $within);
|
---|
[58] | 518 |
|
---|
[647] | 519 |
|
---|
| 520 | $sth = $ip_dbh->prepare("SELECT id,vrf,cidr,custid,type,city,description FROM allocations".
|
---|
| 521 | " WHERE cidr <<= ? ORDER BY vrf,cidr");
|
---|
| 522 | $sth->execute($within);
|
---|
[517] | 523 | my @blocklist;
|
---|
[647] | 524 | while (my ($id,$vrf,$cidr,$custid,$type,$city,$desc) = $sth->fetchrow_array) {
|
---|
[517] | 525 | my %row = (
|
---|
[647] | 526 | id => $id,
|
---|
[517] | 527 | cidr => $cidr,
|
---|
| 528 | custid => $custid,
|
---|
| 529 | city => $city,
|
---|
| 530 | desc => $desc,
|
---|
| 531 | );
|
---|
[54] | 532 |
|
---|
[517] | 533 | ##fixme: don't wanna retrieve the whole type list *every time around the outer loop*
|
---|
[647] | 534 | my $sth2 = $ip_dbh->prepare("SELECT type,listname FROM alloctypes".
|
---|
| 535 | " WHERE listorder < 999 AND NOT (type LIKE '_i') ORDER BY listorder");
|
---|
[348] | 536 | $sth2->execute;
|
---|
[517] | 537 | my @typelist;
|
---|
| 538 | while (my ($listtype,$dispname) = $sth2->fetchrow_array) {
|
---|
| 539 | my %subrow = (
|
---|
| 540 | type => $listtype,
|
---|
| 541 | dispname => $dispname,
|
---|
| 542 | selected => ($listtype eq $type)
|
---|
| 543 | );
|
---|
| 544 | push @typelist, \%subrow;
|
---|
[348] | 545 | }
|
---|
[517] | 546 | $row{typelist} = \@typelist;
|
---|
| 547 | push @blocklist, \%row;
|
---|
[54] | 548 | }
|
---|
[517] | 549 | $page->param(blocklist => \@blocklist);
|
---|
| 550 | } # end showAllocs()
|
---|
[54] | 551 |
|
---|
| 552 |
|
---|
| 553 | # Stuff updates into DB
|
---|
| 554 | sub update {
|
---|
[647] | 555 | my $cidr = $ip_dbh->selectrow_array("SELECT cidr FROM allocations WHERE id=?", undef, ($webvar{block}) );
|
---|
| 556 |
|
---|
[517] | 557 | # Relatively simple SQL transaction here. Note that we're deliberately NOT
|
---|
| 558 | # updating notes/desc here as it's available through the main interface.
|
---|
[647] | 559 | $ip_dbh->do("UPDATE allocations SET custid=?, city=?, type=? WHERE id=?", undef,
|
---|
| 560 | ($webvar{custid}, $webvar{city}, $webvar{alloctype}, $webvar{block}) );
|
---|
[517] | 561 |
|
---|
[647] | 562 | $page->param(block => $cidr);
|
---|
| 563 | if ($ip_dbh->err) {
|
---|
| 564 | $page->param(updfailed => $ip_dbh->errstr);
|
---|
| 565 | syslog "err", "$authuser could not update block '$cidr': '".$ip_dbh->errstr."'";
|
---|
[54] | 566 | } else {
|
---|
[647] | 567 | syslog "notice", "$authuser updated $cidr";
|
---|
[54] | 568 | }
|
---|
| 569 | # need to get /24 that block is part of
|
---|
[647] | 570 | my @bits = split /\./, $cidr;
|
---|
[54] | 571 | $bits[3] = "0/24";
|
---|
| 572 | showAllocs((join ".", @bits));
|
---|
[517] | 573 | } # end update()
|
---|
[65] | 574 |
|
---|
| 575 |
|
---|
| 576 | # showPool()
|
---|
| 577 | # List all IPs in a pool, and allow arbitrary admin changes to each
|
---|
| 578 | # Allow changes to ALL fields
|
---|
[548] | 579 | sub showPool {
|
---|
[647] | 580 | my $pool = shift;
|
---|
[348] | 581 |
|
---|
[647] | 582 | # arguably even presenting a list here is Wrong, because Pool IPs Should Alwasy Match The Pool Type, but...
|
---|
| 583 | # could also set "selected" on the "correct" type
|
---|
| 584 | my $tlist = getTypeList($ip_dbh, 'i');
|
---|
| 585 | $page->param(typelist => $tlist);
|
---|
[348] | 586 |
|
---|
[647] | 587 | $sth = $ip_dbh->prepare("SELECT id,ip,custid,city,type,available,description,notes from poolips".
|
---|
| 588 | " WHERE parent_id=? ORDER BY ip");
|
---|
[548] | 589 | $sth->execute($pool);
|
---|
[517] | 590 | my @iplist;
|
---|
[647] | 591 | while (my ($id,$ip,$custid,$city,$type,$avail,$desc,$notes) = $sth->fetchrow_array) {
|
---|
[517] | 592 | my %row = (
|
---|
[647] | 593 | id => $id,
|
---|
[517] | 594 | ip => $ip,
|
---|
| 595 | custid => $custid,
|
---|
| 596 | city => $city,
|
---|
| 597 | type => $type,
|
---|
| 598 | avail => $avail,
|
---|
| 599 | desc => $desc,
|
---|
| 600 | notes => $notes
|
---|
| 601 | );
|
---|
| 602 | push @iplist, \%row;
|
---|
[65] | 603 | }
|
---|
[517] | 604 | $page->param(iplist => \@iplist);
|
---|
| 605 | } # end showPool()
|
---|
[422] | 606 |
|
---|
| 607 |
|
---|
| 608 | # interpret the notify codes
|
---|
| 609 | sub dispNoticeCode {
|
---|
| 610 | my $code = shift;
|
---|
| 611 | my $action_out = '';
|
---|
[426] | 612 |
|
---|
| 613 | if ($code =~ /^s:/) {
|
---|
| 614 | $code =~ s/^s:/Special: /;
|
---|
| 615 | return $code;
|
---|
| 616 | }
|
---|
[422] | 617 | if ($code =~ /^f:(.+)$/) {
|
---|
| 618 | $code =~ s/^f://;
|
---|
| 619 | $action_out = "Failure on ";
|
---|
| 620 | }
|
---|
| 621 | if (my $target = $code =~ /^n(.+)/) {
|
---|
| 622 | $action_out .= "New ";
|
---|
| 623 | if ($1 eq 'ci') { $action_out .= "city"; }
|
---|
| 624 | elsif ($1 eq 'no') { $action_out .= "node"; }
|
---|
| 625 | else { $action_out .= '<unknown>'; }
|
---|
| 626 | } else {
|
---|
| 627 | my ($action,$target) = ($code =~ /^(.)(.+)$/);
|
---|
| 628 | if ($action eq 'a') { $action_out .= 'Add '; }
|
---|
| 629 | elsif ($action eq 'u') { $action_out .= 'Update '; }
|
---|
| 630 | elsif ($action eq 'd') { $action_out .= 'Delete '; }
|
---|
| 631 | ##fixme: what if we get something funky?
|
---|
[423] | 632 | # What about the eleventy-billion odd combinations possible?
|
---|
| 633 | # this should give an idea of the structure tho
|
---|
[422] | 634 | if ($target eq 'a') { $action_out .= "all"; }
|
---|
[438] | 635 | elsif ($target eq '.i') {
|
---|
[423] | 636 | $action_out .= "all static IPs";
|
---|
| 637 | }
|
---|
[422] | 638 | else { $action_out .= $disp_alloctypes{$target}; }
|
---|
| 639 | }
|
---|
| 640 | return $action_out;
|
---|
| 641 | }
|
---|