mirror of
https://github.com/EGroupware/egroupware.git
synced 2025-01-12 08:58:30 +01:00
added support for limiting the access to setup on certain IP's, IP-ranges or hostnames
This commit is contained in:
parent
2981120ef4
commit
257b69a6fb
@ -22,6 +22,7 @@
|
|||||||
define('PHPGW_INCLUDE_ROOT','{INCLUDE_ROOT}');
|
define('PHPGW_INCLUDE_ROOT','{INCLUDE_ROOT}');
|
||||||
$GLOBALS['phpgw_info']['server']['header_admin_user'] = '{HEADER_ADMIN_USER}';
|
$GLOBALS['phpgw_info']['server']['header_admin_user'] = '{HEADER_ADMIN_USER}';
|
||||||
$GLOBALS['phpgw_info']['server']['header_admin_password'] = '{HEADER_ADMIN_PASSWORD}';
|
$GLOBALS['phpgw_info']['server']['header_admin_password'] = '{HEADER_ADMIN_PASSWORD}';
|
||||||
|
$GLOBALS['phpgw_info']['server']['setup_acl'] = '{SETUP_ACL}';
|
||||||
|
|
||||||
/* eGroupWare domain-specific db settings */{domains}
|
/* eGroupWare domain-specific db settings */{domains}
|
||||||
/*
|
/*
|
||||||
|
@ -114,8 +114,6 @@
|
|||||||
function auth($auth_type='Config')
|
function auth($auth_type='Config')
|
||||||
{
|
{
|
||||||
#phpinfo();
|
#phpinfo();
|
||||||
#$remoteip = $_SERVER['REMOTE_ADDR'];
|
|
||||||
|
|
||||||
$FormLogout = get_var('FormLogout', array('GET','POST'));
|
$FormLogout = get_var('FormLogout', array('GET','POST'));
|
||||||
if(!$FormLogout)
|
if(!$FormLogout)
|
||||||
{
|
{
|
||||||
@ -145,7 +143,8 @@
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
/* if(!empty($remoteip) && !$this->checkip($remoteip)) { return False; } */
|
$remoteip = $_SERVER['REMOTE_ADDR'];
|
||||||
|
if(!empty($remoteip) && !$this->checkip($remoteip)) { return False; }
|
||||||
|
|
||||||
/* If FormLogout is set, simply invalidate the cookies (LOGOUT) */
|
/* If FormLogout is set, simply invalidate the cookies (LOGOUT) */
|
||||||
switch(strtolower($FormLogout))
|
switch(strtolower($FormLogout))
|
||||||
@ -285,11 +284,15 @@
|
|||||||
function checkip($remoteip='')
|
function checkip($remoteip='')
|
||||||
{
|
{
|
||||||
$allowed_ips = split(',',$GLOBALS['phpgw_info']['server']['setup_acl']);
|
$allowed_ips = split(',',$GLOBALS['phpgw_info']['server']['setup_acl']);
|
||||||
if(is_array($allowed_ips))
|
if(!empty($GLOBALS['phpgw_info']['server']['setup_acl']) && is_array($allowed_ips) && count($allowed_ips) > 0)
|
||||||
{
|
{
|
||||||
$foundip = False;
|
$foundip = False;
|
||||||
while(list(,$value) = @each($allowed_ips))
|
foreach($allowed_ips as $value)
|
||||||
{
|
{
|
||||||
|
if (!preg_match('/^[0-9.]$/',$value))
|
||||||
|
{
|
||||||
|
$value = gethostbyname($value); // resolve domain-name, eg. a dyndns account
|
||||||
|
}
|
||||||
$test = split("\.",$value);
|
$test = split("\.",$value);
|
||||||
if(count($test) < 3)
|
if(count($test) < 3)
|
||||||
{
|
{
|
||||||
|
@ -40,7 +40,9 @@
|
|||||||
<tr>
|
<tr>
|
||||||
<td colspan="2"><b>{lang_adminpass}</b><br><input type="password" name="setting[HEADER_ADMIN_PASSWORD]" size="30" value="{header_admin_password}"><input type="hidden" name="setting[HEADER_ADMIN_PASS]" value="{header_admin_pass}"></td>
|
<td colspan="2"><b>{lang_adminpass}</b><br><input type="password" name="setting[HEADER_ADMIN_PASSWORD]" size="30" value="{header_admin_password}"><input type="hidden" name="setting[HEADER_ADMIN_PASS]" value="{header_admin_pass}"></td>
|
||||||
</tr>
|
</tr>
|
||||||
<br><br>
|
<tr>
|
||||||
|
<td colspan="2"><b>{lang_setup_acl}</b><br><input type="text" name="setting[setup_acl]" size="30" value="{setup_acl}"></td>
|
||||||
|
</tr>
|
||||||
<tr>
|
<tr>
|
||||||
<td><b>{lang_persist}</b><br>
|
<td><b>{lang_persist}</b><br>
|
||||||
<select type="checkbox" name="setting[db_persistent]">
|
<select type="checkbox" name="setting[db_persistent]">
|
||||||
|
Loading…
Reference in New Issue
Block a user