git.schokokeks.org
Repositories
Help
Report an Issue
webinterface.git
Code
Commits
Branches
Tags
Suche
Strukturansicht:
f89f9ca
Branches
Tags
master
ticket
webinterface.git
modules
index
include
x509.php
Cert-Login geht jetztauch mit sub-usern
bernd
commited
f89f9ca
at 2010-10-01 10:45:35
x509.php
Blame
History
Raw
<?php require_once('inc/security.php'); function get_logins_by_cert($cert) { $cert = mysql_real_escape_string(str_replace(array('-----BEGIN CERTIFICATE-----', '-----END CERTIFICATE-----', ' ', "\n"), array(), $cert)); $query = "SELECT type,username,startpage FROM system.clientcert WHERE cert='{$cert}'"; $result = db_query($query); if (mysql_num_rows($result) < 1) return NULL; else { $ret = array(); while ($row = mysql_fetch_assoc($result)) { $ret[] = $row; } return $ret; } } function get_cert_by_id($id) { $id = (int) $id; if ($id == 0) system_failure('no ID'); $query = "SELECT id,dn,issuer,cert,username,startpage FROM system.clientcert WHERE `id`='{$id}' LIMIT 1"; $result = db_query($query); if (mysql_num_rows($result) < 1) return NULL; $ret = mysql_fetch_assoc($result); DEBUG($ret); return $ret; } function get_certs_by_username($username) { $username = mysql_real_escape_string($username); if ($username == '') system_failure('empty username'); $query = "SELECT id,dn,issuer,cert,startpage FROM system.clientcert WHERE `username`='{$username}'"; $result = db_query($query); if (mysql_num_rows($result) < 1) return NULL; while ($row = mysql_fetch_assoc($result)) { $ret[] = $row; } return $ret; } function add_clientcert($certdata, $dn, $issuer, $startpage='') { $type = 'user'; if (isset($_SESSION['subuser'])) $type = 'subuser'; $certdata = mysql_real_escape_string($certdata); $dn = maybe_null(mysql_real_escape_string($dn)); $issuer = maybe_null(mysql_real_escape_string($issuer)); if ($startpage && ! check_path($startpage)) system_failure('Startseite kaputt'); $startpage = maybe_null(mysql_real_escape_string($startpage)); $username = mysql_real_escape_string($_SESSION['userinfo']['username']); if ($type == 'subuser') $username = $_SESSION['subuser']; if ($username == '') system_failure('Kein Username'); if ($certdata == '') system_failure('Kein Zertifikat'); DEBUG($certdata); DEBUG($dn); DEBUG($issuer); db_query("INSERT INTO system.clientcert (`dn`, `issuer`, `cert`, `type`, `username`, `startpage`) VALUES ({$dn}, {$issuer}, '{$certdata}', '{$type}', '{$username}', {$startpage})"); } function delete_clientcert($id) { $id = (int) $id; $username = mysql_real_escape_string($_SESSION['userinfo']['username']); db_query("DELETE FROM system.clientcert WHERE id={$id} AND username='{$username}' LIMIT 1"); }