holm/egroupware
1
1
Fork 0
forked from extern/egroupware
Code Issues Pull Requests Packages Projects Releases Wiki Activity

added support for limiting the access to setup on certain IP's, IP-ranges or hostnames

Browse Source
This commit is contained in:
Ralf Becker 2004-05-04 09:08:28 +00:00
parent 2981120ef4
commit 257b69a6fb
3 changed files with 12 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
header.inc.php.template
View File

@ -22,6 +22,7 @@
define('PHPGW_INCLUDE_ROOT','{INCLUDE_ROOT}'); define('PHPGW_INCLUDE_ROOT','{INCLUDE_ROOT}');
$GLOBALS['phpgw_info']['server']['header_admin_user'] = '{HEADER_ADMIN_USER}'; $GLOBALS['phpgw_info']['server']['header_admin_user'] = '{HEADER_ADMIN_USER}';
$GLOBALS['phpgw_info']['server']['header_admin_password'] = '{HEADER_ADMIN_PASSWORD}'; $GLOBALS['phpgw_info']['server']['header_admin_password'] = '{HEADER_ADMIN_PASSWORD}';
$GLOBALS['phpgw_info']['server']['setup_acl'] = '{SETUP_ACL}';
/* eGroupWare domain-specific db settings */{domains} /* eGroupWare domain-specific db settings */{domains}
/* /*

13
phpgwapi/inc/class.setup.inc.php
View File

@ -114,8 +114,6 @@
function auth($auth_type='Config') function auth($auth_type='Config')
{ {
#phpinfo(); #phpinfo();
#$remoteip = $_SERVER['REMOTE_ADDR'];
$FormLogout = get_var('FormLogout', array('GET','POST')); $FormLogout = get_var('FormLogout', array('GET','POST'));
if(!$FormLogout) if(!$FormLogout)
{ {
@ -145,7 +143,8 @@
} }
} }
/* if(!empty($remoteip) && !$this->checkip($remoteip)) { return False; } */ $remoteip = $_SERVER['REMOTE_ADDR'];
if(!empty($remoteip) && !$this->checkip($remoteip)) { return False; }
/* If FormLogout is set, simply invalidate the cookies (LOGOUT) */ /* If FormLogout is set, simply invalidate the cookies (LOGOUT) */
switch(strtolower($FormLogout)) switch(strtolower($FormLogout))
@ -285,11 +284,15 @@
function checkip($remoteip='') function checkip($remoteip='')
{ {
$allowed_ips = split(',',$GLOBALS['phpgw_info']['server']['setup_acl']); $allowed_ips = split(',',$GLOBALS['phpgw_info']['server']['setup_acl']);
if(is_array($allowed_ips)) if(!empty($GLOBALS['phpgw_info']['server']['setup_acl']) && is_array($allowed_ips) && count($allowed_ips) > 0)
{ {
$foundip = False; $foundip = False;
while(list(,$value) = @each($allowed_ips)) foreach($allowed_ips as $value)
{ {
if (!preg_match('/^[0-9.]$/',$value))
{
$value = gethostbyname($value); // resolve domain-name, eg. a dyndns account
}
$test = split("\.",$value); $test = split("\.",$value);
if(count($test) < 3) if(count($test) < 3)
{ {

4
setup/templates/default/manageheader.tpl
View File

@ -40,7 +40,9 @@
<tr> <tr>
<td colspan="2"><b>{lang_adminpass}</b><br><input type="password" name="setting[HEADER_ADMIN_PASSWORD]" size="30" value="{header_admin_password}"><input type="hidden" name="setting[HEADER_ADMIN_PASS]" value="{header_admin_pass}"></td> <td colspan="2"><b>{lang_adminpass}</b><br><input type="password" name="setting[HEADER_ADMIN_PASSWORD]" size="30" value="{header_admin_password}"><input type="hidden" name="setting[HEADER_ADMIN_PASS]" value="{header_admin_pass}"></td>
</tr> </tr>
<br><br> <tr>
<td colspan="2"><b>{lang_setup_acl}</b><br><input type="text" name="setting[setup_acl]" size="30" value="{setup_acl}"></td>
</tr>
<tr> <tr>
<td><b>{lang_persist}</b><br> <td><b>{lang_persist}</b><br>
<select type="checkbox" name="setting[db_persistent]"> <select type="checkbox" name="setting[db_persistent]">