| 
									
										
										
										
											2024-03-22 14:54:28 +11:00
										 |  |  | package SrvMngr::Model::Main; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | use strict; | 
					
						
							|  |  |  | use warnings; | 
					
						
							|  |  |  | use utf8; | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-06-09 23:49:25 -04:00
										 |  |  | use esmith::ConfigDB::UTF8; | 
					
						
							|  |  |  | use esmith::AccountsDB::UTF8; | 
					
						
							| 
									
										
										
										
											2024-03-22 14:54:28 +11:00
										 |  |  | use esmith::util; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | use Net::LDAP qw/LDAP_INVALID_CREDENTIALS/; | 
					
						
							| 
									
										
										
										
											2025-06-09 23:49:25 -04:00
										 |  |  | our ($cdb,$adb); | 
					
						
							| 
									
										
										
										
											2024-03-22 14:54:28 +11:00
										 |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | sub init_data { | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     my %datas = (); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-06-09 23:49:25 -04:00
										 |  |  |     $cdb = esmith::ConfigDB::UTF8->open_ro() or die("can't open Config DB"); | 
					
						
							| 
									
										
										
										
											2024-03-22 14:54:28 +11:00
										 |  |  |     my $sysconfig = $cdb->get("sysconfig"); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     $datas{'lang'} = $sysconfig->prop('Language') || 'en_US'; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     ## convert xx_XX lang format to xx-xx + delete .UTFxx + lowercase | 
					
						
							|  |  |  |     $datas{'lang'} =~ s/_(.*)\..*$/-${1}/;		# just keep 'en-us' | 
					
						
							|  |  |  | #    $datas{'lang'} = lc( substr( $datas{'lang'},0,2 ));	# just keep 'en' | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     $datas{'releaseVersion'} = $sysconfig->prop("ReleaseVersion") || '??'; | 
					
						
							|  |  |  |     $datas{'copyRight'} = 'All rights reserved'; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     $datas{'PwdSet'} = ($cdb->get('PasswordSet')->value eq "yes") || '0' ; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     $datas{'SystemName'} = $cdb->get("SystemName")->value; | 
					
						
							|  |  |  |     $datas{'DomainName'} = $cdb->get("DomainName")->value; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     my $rec = $cdb->get("smanager"); | 
					
						
							|  |  |  |     $datas{'Access'} = $rec->prop('access') || 'private'; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     return \%datas; | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | sub reconf_needed { | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-06-09 23:49:25 -04:00
										 |  |  |     $cdb = esmith::ConfigDB::UTF8->open_ro() or die("can't open Config DB"); | 
					
						
							| 
									
										
										
										
											2025-01-28 14:02:31 +00:00
										 |  |  |     #my $unsafe = ($cdb->get('bootstrap-console') and $cdb->get('bootstrap-console')->prop('Run') eq 'yes') || | 
					
						
							|  |  |  |     #     ($cdb->get('UnsavedChanges') and $cdb->get('UnsavedChanges')->value eq 'yes') || '0'; | 
					
						
							|  |  |  | 	my $unsafe = ($cdb->get('UnsavedChanges') and $cdb->get('UnsavedChanges')->value eq 'yes') || '0';    | 
					
						
							| 
									
										
										
										
											2024-03-22 14:54:28 +11:00
										 |  |  |     return $unsafe; | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | sub check_credentials { | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     my ($c, $username, $password) = @_; | 
					
						
							|  |  |  |     return unless $username || $password; | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-06-09 23:49:25 -04:00
										 |  |  |     $cdb = esmith::ConfigDB::UTF8->open_ro() or die("can't open Configuration DB"); | 
					
						
							| 
									
										
										
										
											2024-03-22 14:54:28 +11:00
										 |  |  |     my $l = $cdb->get('ldap'); | 
					
						
							|  |  |  |     my $status = $l->prop('status') || "disabled"; | 
					
						
							|  |  |  |     unless ($status eq "enabled" ) { | 
					
						
							|  |  |  | 	warn "Couldn't connect. LDAP service not enabled!\n"; | 
					
						
							|  |  |  |         return; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     my $domain = $cdb->get('DomainName')->value; | 
					
						
							|  |  |  |     my $base = esmith::util::ldapBase ($domain); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     #  secure & localhost !? | 
					
						
							|  |  |  |     my $LDAP_server = 'ldaps://localhost'; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     my $ldap = Net::LDAP->new( $LDAP_server ) | 
					
						
							|  |  |  |         or warn("Couldn't connect to LDAP server $LDAP_server: $@"), return; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # this is where we check the password | 
					
						
							|  |  |  |     my $DN = "uid=$username,ou=Users,$base"; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     my $login = $ldap->bind( $DN, password => $password ); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # return 1 on success, 0 on failure with the ternary operator | 
					
						
							|  |  |  |     return $login->code == LDAP_INVALID_CREDENTIALS ? 0 : 1; | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | sub check_adminalias { | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # is an alias required for admin ? return it or undef | 
					
						
							|  |  |  |     my $c = shift; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     my $alias; | 
					
						
							| 
									
										
										
										
											2025-06-09 23:49:25 -04:00
										 |  |  |     $cdb = esmith::ConfigDB::UTF8->open_ro() or die("can't open Configuration DB"); | 
					
						
							| 
									
										
										
										
											2024-03-22 14:54:28 +11:00
										 |  |  |     if (defined $cdb->get('AdminAlias')) { | 
					
						
							|  |  |  | 	$alias = $cdb->get('AdminAlias')->value; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  |     return undef unless $alias; | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-06-09 23:49:25 -04:00
										 |  |  |     $adb = esmith::AccountsDB::UTF8->open_ro() or die("can't open Accounts DB"); | 
					
						
							| 
									
										
										
										
											2024-03-22 14:54:28 +11:00
										 |  |  |     my $arec = $adb->get( $alias ); | 
					
						
							|  |  |  |     return undef unless $arec; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # $alias pseudo exists AND points to admin AND is removable (not known pseudos) => OK | 
					
						
							|  |  |  |     return ( $arec && $arec->prop('type') eq 'pseudonym' && $arec->prop('Account') eq 'admin' | 
					
						
							|  |  |  | 	&& ($arec->prop('Removable') || 'yes') ne 'no' ) ? $alias : undef; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-06-09 23:49:25 -04:00
										 |  |  | 1; |