| commit | author | age | ||
| e98a15 | 1 | <?php |
| TB | 2 | |
| 3 | /* | |
| 4 | Copyright (c) 2014, Till Brehm, projektfarm Gmbh | |
| 5 | All rights reserved. | |
| 6 | ||
| 7 | Redistribution and use in source and binary forms, with or without modification, | |
| 8 | are permitted provided that the following conditions are met: | |
| 9 | ||
| 10 | * Redistributions of source code must retain the above copyright notice, | |
| 11 | this list of conditions and the following disclaimer. | |
| 12 | * Redistributions in binary form must reproduce the above copyright notice, | |
| 13 | this list of conditions and the following disclaimer in the documentation | |
| 14 | and/or other materials provided with the distribution. | |
| 15 | * Neither the name of ISPConfig nor the names of its contributors | |
| 16 | may be used to endorse or promote products derived from this software without | |
| 17 | specific prior written permission. | |
| 18 | ||
| 19 | THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND | |
| 20 | ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED | |
| 21 | WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. | |
| 22 | IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, | |
| 23 | INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, | |
| 24 | BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | |
| 25 | DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY | |
| 26 | OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING | |
| 27 | NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, | |
| 28 | EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | |
| 29 | */ | |
| 30 | ||
| 31 | class validate_systemuser { | |
| 32 | ||
| 33 | /* | |
| 34 | Validator function to check if a given user is ok. | |
| 35 | */ | |
| 36 | function check_sysuser($field_name, $field_value, $validator) { | |
| 37 | global $app; | |
| 38 | ||
| 39 | $errmsg = $validator['errmsg']; | |
| 40 | $check_names = (isset($validator['check_names']) && $validator['check_names'] == true)?true:false; | |
| 41 | ||
| 42 | if($app->functions->is_allowed_user(trim(strtolower($field_value)),$check_names) == false) { | |
| 43 | return $app->tform->wordbook[$errmsg]."<br>\r\n"; | |
| 44 | } | |
| 45 | } | |
| 46 | ||
| 47 | /* | |
| 48 | Validator function to check if a given group is ok. | |
| 49 | */ | |
| 50 | function check_sysgroup($field_name, $field_value, $validator) { | |
| 51 | global $app; | |
| 52 | ||
| 53 | $errmsg = $validator['errmsg']; | |
| 54 | $check_names = (isset($validator['check_names']) && $validator['check_names'] == true)?true:false; | |
| 55 | ||
| 56 | if($app->functions->is_allowed_group(trim(strtolower($field_value)),$check_names) == false) { | |
| 57 | return $app->tform->wordbook[$errmsg]."<br>\r\n"; | |
| 58 | } | |
| 59 | } | |
| 60 | ||
| 9edea9 | 61 | /* |
| TB | 62 | Validator function to check if a given dir is ok. |
| 63 | */ | |
| 64 | function shelluser_dir($field_name, $field_value, $validator) { | |
| 65 | global $app; | |
| e98a15 | 66 | |
| 9edea9 | 67 | if($app->tform->primary_id == 0) { |
| TB | 68 | $errmsg = $validator['errmsg']; |
| 69 | if(isset($app->tform->wordbook[$errmsg])) { | |
| 70 | return $app->tform->wordbook[$errmsg]."<br>\r\n"; | |
| 71 | } else { | |
| 72 | return $errmsg."<br>\r\n"; | |
| 73 | } | |
| 74 | } | |
| 75 | ||
| 76 | ||
| 77 | $shell_data = $app->db->queryOneRecord("SELECT parent_domain_id FROM shell_user WHERE shell_user_id = '".$app->db->quote($app->tform->primary_id)."'"); | |
| 78 | if(!is_array($shell_data) || $shell_data["parent_domain_id"] < 1) { | |
| 79 | $errmsg = $validator['errmsg']; | |
| 80 | if(isset($app->tform->wordbook[$errmsg])) { | |
| 81 | return $app->tform->wordbook[$errmsg]."<br>\r\n"; | |
| 82 | } else { | |
| 83 | return $errmsg."<br>\r\n"; | |
| 84 | } | |
| 85 | } | |
| 86 | ||
| 87 | $domain_data = $app->db->queryOneRecord("SELECT domain_id, document_root FROM web_domain WHERE domain_id = '".$app->db->quote($shell_data["parent_domain_id"])."'"); | |
| 88 | if(!is_array($domain_data) || $domain_data["domain_id"] < 1) { | |
| 89 | $errmsg = $validator['errmsg']; | |
| 90 | if(isset($app->tform->wordbook[$errmsg])) { | |
| 91 | return $app->tform->wordbook[$errmsg]."<br>\r\n"; | |
| 92 | } else { | |
| 93 | return $errmsg."<br>\r\n"; | |
| 94 | } | |
| 95 | } | |
| 96 | ||
| 97 | $doc_root = $domain_data["document_root"]; | |
| 98 | $is_ok = false; | |
| 99 | if($doc_root == $field_value) $is_ok = true; | |
| 100 | ||
| 101 | $doc_root .= "/"; | |
| 102 | if(substr($field_value, 0, strlen($doc_root)) == $doc_root) $is_ok = true; | |
| 103 | ||
| 104 | if(stristr($field_value, '..') or stristr($field_value, './') or stristr($field_value, '/.')) $is_ok = false; | |
| 105 | ||
| 106 | //* Final check if docroot path of website is >= 5 chars | |
| 107 | if(strlen($doc_root) < 5) $is_ok = false; | |
| 108 | ||
| 109 | if($is_ok == false) { | |
| 110 | $errmsg = $validator['errmsg']; | |
| 111 | if(isset($app->tform->wordbook[$errmsg])) { | |
| 112 | return $app->tform->wordbook[$errmsg]."<br>\r\n"; | |
| 113 | } else { | |
| 114 | return $errmsg."<br>\r\n"; | |
| 115 | } | |
| 116 | } | |
| 117 | } | |
| e98a15 | 118 | |
| TB | 119 | |
| 120 | } | |
