surftool_v0.01.patch - pfSense Packages - pfSense bugtracker

Feature #4928 » surftool_v0.01.patch

Heye Reimers, 08/10/2015 07:29 AM

     <?php
     /*
     	check_and_activate.php
     	Copyright (C) 2015 H-T Reimers <reimers@mail.de>
     	All rights reserved.
     	Redistribution and use in source and binary forms, with or without
     	modification, are permitted provided that the following conditions are met:
 . Redistributions of source code must retain the above copyright notice,
     	   this list of conditions and the following disclaimer.
 . Redistributions in binary form must reproduce the above copyright
     	   notice, this list of conditions and the following disclaimer in the
     	   documentation and/or other materials provided with the distribution.
     	THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
     	INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
     	AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
     	AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
     	OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
     	SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
     	INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
     	CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
     	ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
     	POSSIBILITY OF SUCH DAMAGE.
     */
     	//Read configuration
     	$config=parse_ini_file ("surftool.cfg");
     	$debug=0;
     	$max_execution_time=5;
     	$commandpath="/tmp/surftool";
     	$delay=2;
     	if(isset($argv[1])){
     		if($argv[1]>=0 AND $argv[1]<600){
     			$delay=$argv[1];
+    		}
+    	}
     	//check
     	set_time_limit($max_execution_time);
     	if (ini_get('max_execution_time') != $max_execution_time){
     		echo "Warning max_execution_time is ".ini_get('max_execution_time')."s should be ".$max_execution_time."s\n";
+    	}
     	include "surftool3.inc";
     	$sgcommands= new commandReader($commandpath);
     	//Are there any changes?
     	if($sgcommands->changes){
     		//read squidGuard.conf
     		$sgconf = new surftoolSquidGuardConf($config);
     		//activate domain changes
     		$sgconf->setDomains("onplus",$sgcommands->domainsOnplusAdd,$sgcommands->domainsOnplusRemove);
     		$sgconf->setDomains("only",$sgcommands->domainsOnlyAdd,$sgcommands->domainsOnlyRemove);
     		$sgconf->write_squidGuardDomains();
     		//activate acl mode changes
     		$sgconf->setAclMode($sgcommands->aclChangeMode);
     		$sgconf->write_squidGuardConf();
     		//Reload Squid Configuration
     		$sgconf->squidReload();
     		$sgcommands->deleteCommandFiles();
+    	}
     ?>

     <?php
     /*
     	index.php
     	Copyright (C) 2015 H-T Reimers <reimers@mail.de>
     	All rights reserved.
     	Redistribution and use in source and binary forms, with or without
     	modification, are permitted provided that the following conditions are met:
 . Redistributions of source code must retain the above copyright notice,
     	   this list of conditions and the following disclaimer.
 . Redistributions in binary form must reproduce the above copyright
     	   notice, this list of conditions and the following disclaimer in the
     	   documentation and/or other materials provided with the distribution.
     	THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
     	INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
     	AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
     	AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
     	OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
     	SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
     	INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
     	CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
     	ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
     	POSSIBILITY OF SUCH DAMAGE.
     */
     	session_start();
     	//Read configuration
     	$config=parse_ini_file ("surftool.cfg");
     	if(isset($_POST["logout"])){
     		session_unset();
     		$logout=true;
+    	}
     	if(isset($_SESSION["login"])) $login=$_SESSION["login"];
     	else $login=false;
     	if( isset($_GET["secret"])  ){
     		if($_GET["secret"]==$config["redirect_secret"] ){
     			$login=true;
     			$_SESSION["login"]=true;
+    		}
+    	}
     	if( isset($_POST["loginname"]) AND isset($_POST["passwd"]) ){
     		$user=$_POST["loginname"];
     		$passwd=$_POST["passwd"];
     		if($user==$config["user_name"] AND $passwd==$config["user_password"]){
     			$login=true;
     			$_SESSION["login"]=true;
+    		}
+    	}
     	if($logout){
     		header("Location: ".$config["logout_target"]);
     		$meta="<meta http-equiv='refresh' content='0; URL=".$config["logout_target"]."'>"; //When redirect with header is not supported
+    	}
     	else if($login){
     		header("Location: set.php");
     		$meta="<meta http-equiv='refresh' content='0; URL=set.php'>"; //When redirect with header is not supported
+    	}
     	else $meta="";
     	echo "<!DOCTYPE html><html><head>$meta<title>Surftool</title></head><body>";
     	if($login){
     		echo "<a href='set.php'> weiter </a>"; //When redirect with header and meta is not supported
     		echo "<form action='index.php' method='post'>
     			<input type='submit' name='logout' value='logout'>
     		</form> ";
+    	}
     	else if(!$login){
     		echo "
     		<form action='' method='post'>
     			Loginname:<input type='text' name='loginname'><br>
     			Password:<input type='password' name='passwd'><br>
     			<input type='submit' value='login'>
     		</form> ";
+    	}
     	echo "</body></html>";
     ?>

     <?php
     /*
     	set.php
     	Copyright (C) 2015 H-T Reimers <reimers@mail.de>
     	All rights reserved.
     	Redistribution and use in source and binary forms, with or without
     	modification, are permitted provided that the following conditions are met:
 . Redistributions of source code must retain the above copyright notice,
     	   this list of conditions and the following disclaimer.
 . Redistributions in binary form must reproduce the above copyright
     	   notice, this list of conditions and the following disclaimer in the
     	   documentation and/or other materials provided with the distribution.
     	THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
     	INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
     	AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
     	AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
     	OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
     	SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
     	INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
     	CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
     	ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
     	POSSIBILITY OF SUCH DAMAGE.
     */
     	session_start();
     	$encoding="ISO-8859-1";
     	mb_internal_encoding("$encoding");
     	//Read configuration
     	$config=parse_ini_file ("surftool.cfg");
     	function print_header($meta=""){
     		echo "
     		<!DOCTYPE html PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'
     		'http://www.w3.org/TR/html4/loose.dtd'>
     			<html>
     			<head>
     			$meta
     			<title>Internet freischalten </title>
     				<meta http-equiv='cache-control' content='max-age=0'>
     				<meta http-equiv='cache-control' content='no-cache'>
     				<meta http-equiv='expires' content='-1'>
     				<meta http-equiv='Pragma' CONTENT='no-cache'>
     				<style type='text/css'>
     					.Color_on {
     						background-color:darkgreen;
     						color:black;
+    					}
     					.Color_onplus {
     						background-color:springgreen;
     						color:black;
+    					}
     					.Color_only {
     						background-color:gold;
     						color:black;
+    					}
     					.Color_off {
     						background-color:red;
     						color:black;
+    					}
     					.Color_adminfree {
     						background-color:black;
     						color:white;
+    					}
     					.showMode{
     						width:100px;
     						valign:middle;
     						align:center;
     						padding:0.3em;
     						font-weight: bolder;
     						font-size: 12pt;
+    					}
     					.Button{
     						width:200px;
     						height:60px;
     						valign:middle;
     						align:center;
     						padding:1.5em;
     						font-weight: bolder;
     						font-size: 15pt;
+    					}
     				</style>
     				<script language='JavaScript'>
     				<!--
     				function switch_2_expert(){
     					document.getElementById('ModusSimpleHeader').style.display = 'none'; //Link - ModusSimple verbergen
     					document.getElementById('ModusSimpleLink').style.display = 'none'; //Link - ModusSimple verbergen
     					document.getElementById('ModusExpertLink').style.display = 'block'; //Link - ModusExpert anzeigen
     					document.getElementById('ModusExpertHeader').style.display = 'block'; //Link - ModusExpert anzeigen
     					document.getElementById('ModusExpertSettings').style.display = 'block'; //ModusExpert anzeigen
     					document.getElementById('ModusNormalRadio').checked = 'true';
+    				}
     				function switch_2_simple(){
     					document.getElementById('ModusSimpleHeader').style.display = 'block'; //ModusSimple anzeigen
     					document.getElementById('ModusSimpleLink').style.display = 'block'; //ModusSimple anzeigen
     					document.getElementById('ModusExpertHeader').style.display = 'none'; //ModusExpert verbergen
     					document.getElementById('ModusExpertLink').style.display = 'none'; //ModusExpert verbergen
     					document.getElementById('ModusExpertSettings').style.display = 'none'; //ModusExpert verbergen
+    				}
     				function switch_mode(newmode){
     					if(newmode=='on'){
     						document.getElementById('showmodus').firstChild.nodeValue = 'gew?hlter Modus: Normale Freigabe';
     						document.getElementById('whitelist').style.display = 'none'; //Whitelist verbergen
     						document.getElementById('onlylist').style.display = 'none'; //Onlylist verbergen
+    					}
     					else if(newmode=='off'){
     						document.getElementById('showmodus').firstChild.nodeValue = 'gew?hlter Modus: Internetzugang ausschalten';
     						document.getElementById('whitelist').style.display = 'none'; //Whitelist verbergen
     						document.getElementById('onlylist').style.display = 'none'; //Onlylist verbergen
+    					}
     					else if(newmode=='onplus'){
     						document.getElementById('showmodus').firstChild.nodeValue = 'gew?hlter Modus: Erweiterte Freigabe mit zus?tzlichen Seiten';
     						document.getElementById('whitelist').style.display = 'block'; //Whitelist anzeigen
     						document.getElementById('onlylist').style.display = 'none'; //Onlylist verbergen
+    					}
     					else if(newmode=='only'){
     						document.getElementById('showmodus').firstChild.nodeValue = 'gew?hlter Modus: Nur bestimmte Seiten freigeben';
     						document.getElementById('whitelist').style.display = 'none'; //Whitelist verbergen
     						document.getElementById('onlylist').style.display = 'block'; //Onlylist anzeigen
+    					}
     					else if(newmode=='adminfree'){
     						document.getElementById('showmodus').firstChild.nodeValue = 'gew?hlter Modus: Administrative Freigabe';
     						document.getElementById('whitelist').style.display = 'none'; //Whitelist verbergen
     						document.getElementById('onlylist').style.display = 'none'; //Onlylist verbergen
+    					}
+    				}
     				//-->
     				</script>
     			    <meta http-equiv='Content-Type' content='text/html; charset=<?php echo $encoding; ?>'>
     			    <link rel='stylesheet' title='Schulkonsole' href='surftoolstyle.css' type='text/css'>
     			    <meta name='copyright' content='Copyright 2012 H. Reimers, reimers@mail.de'>
     			    <meta name='description' content='Surftool'>
     			<script language='JavaScript'>
     			<!--
     			window.onload = function() {
     				//alert('I am an alert box!');
     				//location.replace('index.php');
+    			}
     			//-->
     			</script>
     			</head>
     			<body bgcolor= #fefae8>";
+    	}
     	$debug=1;
     	if(isset($config["debuglevel"])) $debug=$config["debuglevel"];
     	$switchtime=2;
     	if(isset($config["refresh_time"])) $switchtime=$config["refresh_time"]+1;
     	include "surftool3.inc";
      	if(!isset($_SESSION["login"])){
     		$meta="<meta http-equiv='refresh' content='0; URL=index.php'>";
     		print_header($meta);
     		echo "login first <a href='index.php'> weiter </a>";
     		exit(0);
+    	}
     	else if(isset($_POST["mode"])){
     		$meta="<meta http-equiv='refresh' content='".$switchtime."' />";
     		print_header($meta);
+    	}
     	else{
     		$meta="";
     		print_header($meta);
+    	}
     	//Print logout button
     	echo "<form action='index.php' method='post'>
     		<input type='submit' name='logout' value='logout'>
     	</form> ";
     	function write_domains_command($mode,$add,$remove){
     		write_command("'set_domains','$mode','$add','$remove'");
+    	}
     	function write_acl_command($aclname, $newmode){
     		write_command("'set_acl_mode','$aclname','$newmode'");
+    	}
     	function write_command($command){
     		$i=0;
     		$path="/tmp/surftool/";
     		$filename="/tmp/surftool/surftool-".date("Y-m-d-H-i")."-";
     		if(!file_exists($path)){
     			if (!mkdir($path, 0700, true)) {
     				die('Failed to create folders...');
+    			}
+    		}
     		//don't change existing files
     		while(  file_exists($filename.$i.".txt")  ){
     			$i++;
+    		}
     		$fp = fopen($filename.$i.".txt", "a");
     		fwrite($fp, "$command");
     		fclose($fp);
+    	}
     	function print_switch_mode($squidGuardOnlyDomains, $squidGuardWhiteDomains,$admin=true){
     		$html = "<h2 id='ModusSimpleHeader'>Modus: normal</h2>";
     		$html.= "<h2 id='ModusExpertHeader' style='display:none;'>Modus: erweitert</h2>";
     		$html.= "<a href='#' id='ModusSimpleLink' onclick='switch_2_expert();return false'>(Hier klicken f?r den erweiterten Modus)</a>";
     		$html.= "<a href='#' id='ModusExpertLink' onclick='switch_2_simple();return false' style='display:none;'>(Hier klicken f?r den normalen Modus)</a>";
     		//=== Print Expert Modus
     		$html.= "<table id='ModusExpertSettings' style='display:none;'>";
     		$html.= " <tr><td colspan='2'><h2>Erweiterter Modus</h2></td></tr>\n";
     		$html.= "	<tr><td colspan='2' id='showmodus'>gew?hlter Modus: on</td></tr>\n
     			<tr><td><input type='radio' name='mode' value='on' checked id='ModusNormalRadio' onclick='switch_mode(\"on\");' >Normale Freigabe</td>     <td class='Color_on showMode'> Raum </td></tr>\n
     			<tr><td><input type='radio' name='mode' value='onplus' onclick='switch_mode(\"onplus\");' >Erweiterte Freigabe mit zus?tzlichen Seiten</td><td class='Color_onplus showMode'> Raum </td></tr>\n
     			<tr><td><input type='radio' name='mode' value='only' onclick='switch_mode(\"only\");' >Nur bestimmte Seiten freigeben</td>                 <td class='Color_only showMode'> Raum </td></tr>\n
     			<tr><td><input type='radio' name='mode' value='off' onclick='switch_mode(\"off\");' >Internetzugang ausschalten</td>                       <td class='Color_off showMode'> Raum </td></tr>\n";
     		if($admin){
     			$html.= "<tr><td><input type='radio' name='mode' value='adminfree' onclick='switch_mode(\"adminfree\");' >Administrative Freigabe<br></td>    <td class='Color_adminfree showMode'> Raum </td></tr>\n";
+    		}
     	//
     		$html.= "</table>";
     		$html.= "<table border='0' id='whitelist' style='display:none;'>
     			<tr>
     				<td><h2>Liste der <u>zus?tzlich</u> freigegebenen Seiten</h2></td>
     			</tr>
     			<tr>
     				<td><textarea name='domains_onplus' cols='80' rows='15' >$squidGuardWhiteDomains</textarea></td>\n
     			</tr>
     			<tr>
     				<td>Hinweis: Diese Seiten/Domain erweitert die normale Freigabe.  ?nderungen dieser Liste werden durch einen Klick auf den gew?nschten Raum ?bernommen.
     				    Diese Liste gilt f?r alle R?ume in diesem Modus. Aus diesem Grund sollten ?nderungen nicht leichtfertig erfolgen.
     				 ?nderungen werden protokoliert.
     				    Erweiterungen der Freigaben sind nur f?r p?dagogisch unterrichtsrelevante Seiten zul?ssig. </td>\n
     			</tr>
     		      </table>";
     		$html.= "<table border='0' id='onlylist' style='display:none;'>
     			<tr>
     				<td><h2>Liste der <u>einzigen</u> freigegebenen Seiten</h2></td>
     			</tr>
     			<tr>
     				<td><textarea name='domains_only' cols='80' rows='15'>$squidGuardOnlyDomains</textarea></td>\n
     			</tr>
     			<tr>
     				<td>Hinweis: Nur diese Seiten/Domain werden freigegeben. ?nderungen dieser Liste werden durch einen Klick auf den gew?nschten Raum ?bernommen.
     				    Diese Liste gilt f?r alle R?ume in diesem Modus. Aus diesem Grund sollten ?nderungen nicht leichtfertig erfolgen.
     				 ?nderungen werden protokoliert.
     				    Freigaben sind nur f?r p?dagogisch unterrichtsrelevante Seiten zul?ssig. </td>\n
     			</tr>
     		      </table>";
     		$html.= "</td></tr></table>";
     		return $html;
+    	}
     	function preecho($data){
     		echo "<PRE>";
     		print_r($data);
     		echo "</PRE>";
+    	}
     	function create_room_button($aclname,$mode){
     		echo "	<td><input type='submit' name='group' value='$aclname' class='Color_$mode Button'></td>\n";
+    	}
     	function print_table($acls){
     		if(sizeof($acls)>0){
     			$spalten=4;
     			$i=0;
     			echo "<table border='0'>\n<tr>\n";
     			foreach($acls["acl"] AS $acl){
     				$i++;
     				echo create_room_button($acl["acl-name"],$acl[mode]);
     				if($i%$spalten==0){
     					echo "\n    </tr>\n    <tr>\n";
+    				}
+    			}
     			$rest=$spalten-$i%$spalten;
     			if($rest>0){
     				echo "  <td colspan=$rest>&nbsp;<td>\n</tr>\n";
+    			}
     			echo "</table>\n";
+    		}
     		else{
     			echo "keine<br>";
+    		}
+    	}
     	$sgconf = new surftoolSquidGuardConf($config);
     	$changes=false;
     	//preecho($_POST);
     	//Check Post-Data
     	if(isset($_POST["group"]) AND isset($_POST["mode"]) ){
     		$group=$_POST["group"];
     		$mode=$_POST["mode"];
     		if(isset($sgconf->squidGuardConf["acl"]["$group"])){
     			if($mode=="on" AND $sgconf->squidGuardConf["acl"]["$group"]["mode"]=="on") $mode="off";
     			write_acl_command($group, $mode);
     			echo "Switch $group to $mode<br>\n";
     			$changes=true;
+    		}
     		else{
     			echo "Error unknown group:'$group'<br>\n";
+    		}
+    	}
     	if(isset($_POST["mode"]) AND isset($_POST["domains_onplus"]) ){
     		if($_POST["mode"]=="onplus"){
     			//Any Changes?
     			if($_POST["domains_onplus"] != $sgconf->squidGuardOnplusDomains){
     				//What Changes?
     				$changes=$sgconf->compare_domains_onplus( $_POST["domains_onplus"] );
     				write_domains_command("onplus", $changes["add"],$changes["remove"] );
     				echo "<br>".$changes["msg"];
     				$changes=true;
+    			}
     			else{
     				if($debug>2) echo "OnplusDomains: no changees<br>\n";
+    			}
+    		}
+    	}
     	if(isset($_POST["mode"]) AND isset($_POST["domains_only"]) ){
     		if($_POST["mode"]=="only"){
     			//Any Changes?
     			if($_POST["domains_only"] != $sgconf->squidGuardOnlyDomains){
     				//What Changes?
     				$changes=$sgconf->compare_domains_only( $_POST["domains_only"] );
     				write_domains_command("only", $changes["add"],$changes["remove"] );
     				echo "<br>".$changes["msg"];
     				$changes=true;
+    			}
     			else{
     				if($debug>2) echo "OnlyDomains: no changees<br>\n";
+    			}
+    		}
+    	}
     	if($changes){
     		echo "<br>Please wait ".$switchtime."s<br>";
     		echo "<br><a href=''>Switch an other group</a><br>";
     		exit(0);
+    	}
     	//===
     	echo "\n<form action='' method='post'>\n";
     	echo "<form accept-charset='$encoding'> ";
     	echo print_switch_mode($sgconf->squidGuardOnlyDomains, $sgconf->squidGuardOnplusDomains);
     	//Get groups/acls
     	$groupsAll=$sgconf->squidGuardConf;
     	//=== Find Groups with similar ip.
     	// ip adresses ar in $groupsAll["src"]["NAME"] and acls are in => $groupsAll["acl"]["NAME"]
     	$ip = $_SERVER["REMOTE_ADDR"];
     	$lastpoint=strripos($ip,'.');
     	$firstpart=substr($ip,0,$lastpoint);
     	$groupsNear=array();
     	foreach($groupsAll["src"] AS $srcname => $src){
     		if(isset($src["ip"])){
     			foreach($src["ip"] AS $ip){
     				$pos = strpos($ip, $firstpart);
     				if( $pos !== false){
     					if(isset($groupsAll["acl"]["$srcname"])){
     						$groupsNear["acl"]["$srcname"]=$groupsAll["acl"]["$srcname"];
+    					}
     					else{
     						echo "Warning: no acl:'$srcname'<br>\n ";
+    					}
+    				}
+    			}
+    		}
     		else echo "no src<br>\n";
+    	}
     	echo "<pre>";
     	//print_r($sgconf);
     	echo "</pre>";
     	echo "<h2>Vorschl?ge</h2>";
     	print_table($groupsNear);
     	echo "<h2>Alle R?ume</h2>";
     	print_table($groupsAll);
     	echo "\n</form>\n";
     	//if($debug>1) preecho($data);
     	echo"
     	<form action='index.php' method='post'>
     		<input type='submit' name='logout' value='logout'>
     	</form> ";
     ?>

     ; Surftool configuration
     	language = "eng"
     	refresh_time = "1"
     	squid_binary_path = "/usr/local/sbin/squid"
     	squidGuard_binary_path = "/usr/local/bin/squidGuard"
     	squidGuard_configfile = "/usr/pbi/squidguard-amd64/etc/squidGuard/squidGuard.conf"
     	squidGuard_database = "/var/db/squidGuard/"
     	group_onplus = "surftool_onplus"
     	group_only = "surftool_only"
     	command_path = "/tmp/surftool"
     	user_name = "admin"
     	user_password = "pfsense"
     	logfile= "/var/log/surftool.log"
     	logout_target= "http://10.12.0.10/index.php"
     	redirect_secret = "geheim"

     <?php
     /*
     	surftool.inc
     	Copyright (C) 2015 H-T Reimers <reimers@mail.de>
     	All rights reserved.
     	Redistribution and use in source and binary forms, with or without
     	modification, are permitted provided that the following conditions are met:
 . Redistributions of source code must retain the above copyright notice,
     	   this list of conditions and the following disclaimer.
 . Redistributions in binary form must reproduce the above copyright
     	   notice, this list of conditions and the following disclaimer in the
     	   documentation and/or other materials provided with the distribution.
     	THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
     	INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
     	AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
     	AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
     	OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
     	SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
     	INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
     	CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
     	ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
     	POSSIBILITY OF SUCH DAMAGE.
     */
     require_once('globals.inc');
     require_once('config.inc');
     require_once('util.inc');
     require_once('pfsense-utils.inc');
     require_once('pkg-utils.inc');
     require_once('filter.inc');
     require_once('service-utils.inc');
     if (file_exists('surftool.inc')) {
       require_once('surftool.inc');
+    }
     else update_log("File 'surftool.inc' not found.");
     global $pfs_version;
     $pfs_version = substr(trim(file_get_contents("/etc/version")),0,3);
     switch ($pfs_version) {
     	case "2.1":
     		break;
     	case "2.2":
     		break;
     	default:
     		break;
+    }
     define ('CMD_PKGDELETE', 'pkg_delete surftool-0.01');
     // enable GUI debug
     define('SURFTOOL_GUI_DEBUG', 'on');
     define('SURFTOOL_LOG_FILE',  '/tmp/surftool_gui.log');
     // configuration settings !-- CHECK THIS --!
     define('SURFTOOL_WWWPATH',			'/usr/local/www/surftool/');
     define('SURFTOOL_WWWCONFIGFILE',		SURFTOOL_WWWPATH.'surftool.cfg');
     define('SURFTOOL_STARTUP_SCRIPT', '/usr/local/etc/rc.d/surftooldaemon.sh');
     // xml variables
     define('SURFTOOL_LANGUAGE',				'surftool_lang');
     define('SURFTOOL_REFRESH_TIME',				'surftool_refresh_time');
     define('SURFTOOL_SQUID_BINARY_PATH',			'surftool_squid_binary');
     define('SURFTOOL_SQUIDGUARD_BINARY_PATH',	'surftool_sg_binary');
     define('SURFTOOL_SQUIDGUARD_CONFIGFILE',	'surftool_sg_config_file');
     define('SURFTOOL_SQUIDGUARD_DATABASE',		'surftool_sg_db');
     define('SURFTOOL_GROUP_ONPLUS',			'surftool_group_onplus_name');
     define('SURFTOOL_GROUP_ONLY',				'surftool_group_only_name');
     define('SURFTOOL_DEBUGLEVEL',				'surftool_debuglevel');
     define('SURFTOOL_LOGFILE',					'surftool_logfile');
     define('SURFTOOL_CMD_PATH',					'surftool_command_path');
     define('SURFTOOL_LOGOUT_TARGET',					'surftool_logout_target');
     define('SURFTOOL_REDIRECT_SECRET',					'surftool_redirect_secret');
     define('SURFTOOL_USER_NAME',					'surftool_user_name');
     define('SURFTOOL_USER_PASSWORD',					'surftool_user_password');
     function surftool_install() {
     	global $pfs_version;
     	global $g, $config;
     	$SURFTOOL_STARTUP_SCRIPT=SURFTOOL_STARTUP_SCRIPT;
     	update_log("surftool_install: started" );
     	//Write rc.d script
     	surftool_write_rcfile();
     	//mwexec(SURFTOOL_STARTUP_SCRIPT."  start");
     	//mwexec("/usr/local/etc/rc.d/surftool.sh  start");
     	update_log("surftool_install: stopped");
+    }
     function surftool_deinstall() {
     	global $g, $config;
     	update_log("surftool_deinstall: started");
     	//exec(SURFTOOL_STARTUP_SCRIPT . " stop");
     	// delete cron task's
     	//ls_setup_cron("lightsquid_squid_rotate", "", "", false);
     	//ls_setup_cron("lightsquid_parser", "", "", false);
     	update_log("surftool_deinstall: stopped");
+    }
     function surftool_resync() {
     	global $config, $pfs_version;
     	surftool_wirte_config_file();
     	surftool_write_rcfile();
+    }
     function surftool_validate(&$post, &$input_errors){
     	global $config;
     	$cfg = $config['installedpackages']['surftool']['config'][0];
     	$surftool_refresh_time = trim($cfg[SURFTOOL_REFRESH_TIME]);
     	$surftool_squid_binary = $cfg[SURFTOOL_SQUID_BINARY_PATH];
     	$surftool_sg_binary = $cfg[SURFTOOL_SQUIDGUARD_BINARY_PATH];
     	$surftool_sg_config_file = $cfg[SURFTOOL_SQUIDGUARD_CONFIGFILE];
     	$surftool_sg_db = $cfg[SURFTOOL_SQUIDGUARD_DATABASE];
     	$surftool_group_onplus_name = $cfg[SURFTOOL_GROUP_ONPLUS];
     	$surftool_group_only_name = $cfg[SURFTOOL_GROUP_ONLY];
     	$surftool_debuglevel = $cfg[SURFTOOL_DEBUGLEVEL];
     	$surftool_logfile = $cfg[SURFTOOL_LOGFILE];
       $surftool_command_path = $cfg[SURFTOOL_CMD_PATH];
     //	if(!is_numeric($surftool_refresh_time)) $input_errors[] = "Refresh time: '$surftool_refresh_time' is not numeric";
     //	if(!file_exists($surftool_squid_binary)) $input_errors[] = "The file: '$surftool_squid_binary' do not exists";
+    }
     function surftool_wirte_config_file(){
     	global $config;
     	$cfg = $config['installedpackages']['surftool']['config'][0];
     	$surftool_lang = $cfg[SURFTOOL_LANGUAGE];
     	$surftool_refresh_time = $cfg[SURFTOOL_REFRESH_TIME];
     	$surftool_squid_binary = $cfg[SURFTOOL_SQUID_BINARY_PATH];
     	$surftool_sg_binary = $cfg[SURFTOOL_SQUIDGUARD_BINARY_PATH];
     	$surftool_sg_config_file = $cfg[SURFTOOL_SQUIDGUARD_CONFIGFILE];
     	$surftool_sg_db = $cfg[SURFTOOL_SQUIDGUARD_DATABASE];
     	$surftool_group_onplus_name = $cfg[SURFTOOL_GROUP_ONPLUS];
     	$surftool_group_only_name = $cfg[SURFTOOL_GROUP_ONLY];
     	$surftool_debuglevel = $cfg[SURFTOOL_DEBUGLEVEL];
     	$surftool_logfile = $cfg[SURFTOOL_LOGFILE];
       $surftool_command_path = $cfg[SURFTOOL_CMD_PATH];
     	$surftool_logout_target = $cfg[SURFTOOL_LOGOUT_TARGET];
       $surftool_redirect_secret = $cfg[SURFTOOL_REDIRECT_SECRET];
       $surftool_user_name = $cfg[SURFTOOL_USER_NAME];
       $surftool_user_password = $cfg[SURFTOOL_USER_PASSWORD];
     	$stc="; Surftool configuration
     	language = \"".$surftool_lang."\"
     	refresh_time = \"".$surftool_refresh_time."\"
     	squid_binary_path = \"".$surftool_squid_binary ."\"
     	squidGuard_binary_path = \"".$surftool_sg_binary."\"
     	squidGuard_configfile = \"".$surftool_sg_config_file."\"
     	squidGuard_database = \"".$surftool_sg_db."\"
     	group_onplus = \"".$surftool_group_onplus_name."\"
     	group_only = \"".$surftool_group_only_name."\"
     	command_path = \"".$surftool_command_path."\"
     	user_name = \"".$surftool_user_name."\"
     	user_password = \"".$surftool_user_password."\"
     	logfile= \"".$surftool_logfile."\"
     	logout_target= \"".$surftool_logout_target."\"
     	redirect_secret = \"".$surftool_redirect_secret."\"\n";
     	file_put_contents(SURFTOOL_WWWCONFIGFILE,$stc);
+    }
     // setup cron tasks
     // original source from '/etc/inc/pfsense-utils.inc' function 'tdr_install_cron'
     // this function safe for other tasks
     // *****************************************************************************
     // - $task_name: cron task name (for config identification) /for searching my cron tasks/
     // - $options:   array=[0:minute][1:hour][2:mday][3:month][4:wday][5:who][6:cmd]
     // - $task_key:  cron command key for searching
     // - $on_off:	true-'on task', false-'off' task
     // required: $task_nameand $on_off
     // *****************************************************************************
     /*
     define('FIELD_TASKNAME', 'task_name');
     function ls_setup_cron($task_name, $options, $task_key, $on_off) {
     	global $config;
     	update_log("ls_setup_cron: start task_name=$task_name, task_key=$task_key, on_off=$on_off");
     	// check input params
     	if(!$task_name) {
     		update_log("ls_setup_cron: exit - uncomplete input params.");
     		return;
+    	}
     	// delete old task(s)
     	if (is_array($config['cron']['item'])) {
     		foreach ($config['cron']['item'] as $key => $item) {
     		# unset crontask by name
     		if (!empty($task_name) && ($item[FIELD_TASKNAME] == $task_name)) {
     			unset($config['cron']['item'][$key]);
     		} else
     		# unset crontask by cmd
     		if ($options[6] && (strpos($item['command'], $options[6]) !== false)) {
     			unset($config['cron']['item'][$key]);
+    		}
+    		}
+    	}
     	# install cron task
     	if ($on_off) {
     		if ($task_key) {
     		if (is_array($options)) {
     			# add new
     			$cron_item = array();
     			$cron_item[FIELD_TASKNAME]	= $task_name;
     			$cron_item['minute']		= $options[0];
     			$cron_item['hour']		= $options[1];
     			$cron_item['mday']		= $options[2];
     			$cron_item['month']		= $options[3];
     			$cron_item['wday']		= $options[4];
     			$cron_item['who']		= $options[5];
     			$cron_item['command']		= $options[6];
     			# check options
     			if (!$cron_item['who']) $cron_item['who'] = "nobody";
     			$config['cron']['item'][] = $cron_item;
     			update_log("ls_setup_cron: add cron task '{$task_name}'='{$cron_item['command']}'");
+    		}
     		} else
     		// log
     		update_log("ls_setup_cron: input prm 'task_key' not defined");
+    	}
     	write_config("Installed cron task '$task_name' for 'lightsquid' package");
     	configure_cron();
     	update_log("ls_setup_cron: Apply new cron settings.");
+    }
     */
     function update_log($log) {
     	if (SURFTOOL_GUI_DEBUG === 'on') {
     		$t_st_log = '';
     		if (file_exists(SURFTOOL_LOG_FILE))
     			$t_st_log = file_get_contents(SURFTOOL_LOG_FILE);
     		$t_st_log .= "\n$log";
     		file_put_contents(SURFTOOL_LOG_FILE, $t_st_log);
+    	}
+    }
     function refresh_now() {
     //	$cmd = CRONTAB_LS_TEMPLATE . " today";
     	update_log("surftool refresh_now: execute command '$cmd'");
     	// create lightsquid report catalog
     /*	if (!file_exists(LS_REPORTPATH)) {
     		update_log("lightsquid_install: Create report dir " . LS_REPORTPATH);
     		mwexec("mkdir -p " . LS_REPORTPATH);
+    	}
     	mwexec_bg($cmd);
     */
+    }
     //check to see if the service is installed if it is return the id
     	function get_service_id ($service_array, $fieldname, $fieldvalue) {
     		$x = 0;
     		$id = '';
     		foreach($service_array as $rowhelper) {
     			if ($rowhelper[$fieldname] == $fieldvalue) {
     				$id = $x; //return the id
+    			}
     			$x++;
+    		}
     		if (strlen($id) > 0) {
     			return ($id);
+    		}
     		else {
     			return false;
+    		}
+    	}
     function surftool_write_rcfile() {
     	global $config;
     	$cfg = $config['installedpackages']['surftool']['config'][0];
     	$surftool_refresh_time = $cfg[SURFTOOL_REFRESH_TIME];
     	$surftool_logfile = $cfg[SURFTOOL_LOGFILE];
       $surftool_command_path = $cfg[SURFTOOL_CMD_PATH];
     	$rc = array();
     	$SURFTOOL_LOCALBASE = "/usr/local/share/surftool/" ; //SURFTOOL_LOCALBASE;
     	$rc['file'] = 'surftooldaemon.sh';
     	$rc['start'] = <<<EOD
     mkdir -p $surftool_command_path
     	{$SURFTOOL_LOCALBASE}surftooldaemon.sh $surftool_refresh_time $surftool_logfile $surftool_command_path &
     EOD;
     	$rc['stop'] = <<<EOD
     touch $surftool_command_path/stoppdaemon
     	sleep 2
     	ps ax | grep surftooldaemon.sh | grep -v grep | awk '{print $1}' | xargs kill
     	ps ax | grep surftool/check_and_activate.php | grep -v grep | awk '{print $1}' | xargs kill
     EOD;
     	$rc['restart'] = <<<EOD
     	rc_stop
     	rc_start
     EOD;
     	conf_mount_rw();
     	write_rcfile($rc);
     	conf_mount_ro();
+    }
     ?>

     <?xml version="1.0" encoding="utf-8" ?>
     <!DOCTYPE packagegui SYSTEM "../schema/packages.dtd">
     <?xml-stylesheet type="text/xsl" href="../xsl/package.xsl"?>
     <packagegui>
             <copyright>
             <![CDATA[
     /* $Id$ */
     /* ========================================================================== */
     /*
         surftool.xml
         part of pfSense (http://www.pfSense.com)
         Copyright (C) 2015 H. Reimers <reimers@mail.de>.
         All rights reserved.
                                                                                   */
     /* ========================================================================== */
     /*
         Redistribution and use in source and binary forms, with or without
         modification, are permitted provided that the following conditions are met:
 . Redistributions of source code must retain the above copyright notice,
             this list of conditions and the following disclaimer.
 . Redistributions in binary form must reproduce the above copyright
             notice, this list of conditions and the following disclaimer in the
             documentation and/or other materials provided with the distribution.
         THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
         INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
         AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
         AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
         OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
         SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
         INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
         CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
         ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
         POSSIBILITY OF SUCH DAMAGE.
                                                                                   */
     /* ========================================================================== */
             ]]>
             </copyright>
     	<description>Manage your squidguard groups. You can set every group very easily. The modes on/off/only/on plus and adminfree are available. This tool was made for schools.</description>
     	<requirements>This package needs squidguard</requirements>
     	<faq>Currently there are no FAQ items provided.</faq>
     	<name>surftool</name>
     	<version>0.01</version>
     	<title>Services: Surftool -> Settings</title>
     	<category>Services</category>
     	<include_file>/usr/local/pkg/surftool.inc</include_file>
     	<service>
     		<name>surftool</name>
     		<rcfile>surftooldaemon.sh</rcfile>
     		<executable>/bin/sh /usr/local/share/surftool/surftooldaemon.sh</executable>
     		<description>Surftool--Service</description>
     		<custom_php_service_status_command>$surftool_ret = exec('/bin/pgrep -anf surftooldaemon.sh'); if($surftool_ret>0) {return true;} else {return false;};</custom_php_service_status_command>
     	</service>
     	<menu>
     		<name>Surftool</name>
     		<tooltiptext>Manage your squidguard groups</tooltiptext>
     		<section>Services</section>
     		<url>/pkg_edit.php?xml=surftool.xml&amp;id=0</url>
     	</menu>
             <tabs>
                     <tab>
                             <text>Settings</text>
                             <url>/pkg_edit.php?xml=surftool.xml&amp;id=0</url>
                             <active/>
                     </tab>
                     <tab>
                             <text>Switch groups</text>
                             <url>/surftool/index.php</url>
                     </tab>
             </tabs>
             <additional_files_needed>
                    <prefix>/usr/local/pkg/</prefix>
                    <chmod>0755</chmod>
                    <item>http://10.12.0.3/packages/config/surftool/surftool.inc</item>
             </additional_files_needed>
             <additional_files_needed>
                    <prefix>/usr/local/www/surftool/</prefix>
                    <chmod>0644</chmod>
                    <item>http://10.12.0.3/packages/config/surftool/index.php</item>
             </additional_files_needed>
     	<additional_files_needed>
                    <prefix>/usr/local/www/surftool/</prefix>
                    <chmod>0644</chmod>
                    <item>http://10.12.0.3/packages/config/surftool/surftool3.inc</item>
             </additional_files_needed>
             <additional_files_needed>
                    <prefix>/usr/local/www/surftool/</prefix>
                    <chmod>0644</chmod>
                    <item>http://10.12.0.3/packages/config/surftool/check_and_activate.php</item>
             </additional_files_needed>
             <additional_files_needed>
                    <prefix>/usr/local/www/surftool/</prefix>
                    <chmod>0644</chmod>
                    <item>http://10.12.0.3/packages/config/surftool/set.php</item>
             </additional_files_needed>
             <additional_files_needed>
                    <prefix>/usr/local/share/surftool/</prefix>
                    <chmod>0755</chmod>
                    <item>http://10.12.0.3/packages/config/surftool/surftooldaemon.sh</item>
             </additional_files_needed>
             <fields>
                     <field>
                             <fielddescr>Language</fielddescr>
                             <fieldname>surftool_lang</fieldname>
                             <description>Select language</description>
                             <type>select</type>
                             <value>eng</value>
                             <options>
                                      <option><name>English</name><value>eng</value></option>
                                      <option><name>German</name><value>deu</value></option>
                             </options>
                     </field>
     		<field>
     			<fielddescr>Refresh time</fielddescr>
     			<fieldname>surftool_refresh_time</fieldname>
     			<value>2</value>
     			<type>input</type>
     			<description>
     				<![CDATA[Look every x seconds for changes <br>
     				Default:<b>1</b>]]>
     			</description>
     			<size>4</size>
     		</field>
     		<field>
     			<fielddescr>Path to the squid binary</fielddescr>
     			<fieldname>surftool_squid_binary</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter the path to the squid binary. <br>
     				Default for amd64:<b>/usr/pbi/squid-amd64/local/sbin/squid</b>]]>
     			</description>
     			<size>70</size>
     		</field>
     		<field>
     			<fielddescr>Path to the squidGuard binary</fielddescr>
     			<fieldname>surftool_sg_binary</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter the path to the squidGuard binary. <br>
     				Default:<b>/usr/local/bin/squidGuard</b>]]>
     			</description>
     			<size>70</size>
     		</field>
     		<field>
     			<fielddescr>Path to the squidGuard configuration file</fielddescr>
     			<fieldname>surftool_sg_config_file</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter the path to the squidGuard configuration file. <br>
     				Default for amd64:<b>/usr/pbi/squidguard-amd64/etc/squidGuard/squidGuard.conf</b>]]>
     			</description>
     			<size>70</size>
     		</field>
     		<field>
     			<fielddescr>Path to the squidGuard database</fielddescr>
     			<fieldname>surftool_sg_db</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter the path to the squidGuard database. <br>
     				Default:<b>/var/db/squidGuard/</b>]]>
     			</description>
     			<size>70</size>
     		</field>
     		<field>
     			<fielddescr>Name of the squidGuard group onplus</fielddescr>
     			<fieldname>surftool_group_onplus_name</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter the name of the squidguard group onplus. <br>
     				Default:<b>surftool_onplus</b>]]>
     			</description>
     		</field>
     		<field>
     			<fielddescr>Name of the squidGuard group only</fielddescr>
     			<fieldname>surftool_group_only_name</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter the name of the squidguard group only. <br>Default:<b>surftool_only</b>]]>
     			</description>
     		</field>
     		<field>
     			<fielddescr>command path</fielddescr>
     			<fieldname>surftool_command_path</fieldname>
     			<value>/tmp/surftool</value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter the path for the command files. <br>Default:<b>/tmp/surftool</b>]]>
     			</description>
     		</field>
     		<field>
     			<fielddescr>logfile</fielddescr>
     			<fieldname>surftool_logfile</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter the path and name of the logfile. <br>Default:<b>/var/log/surftool.log</b>]]>
     			</description>
     			<size>70</size>
     		</field>
     		<field>
     			<fielddescr>loglevel</fielddescr>
     			<fieldname>surftool_debuglevel</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter the loglevel. <br>0 less<br>9 much<br>Default:<b>0</b>]]>
     			</description>
     			<size>3</size>
     		</field>
     		<field>
     			<fielddescr>logout target</fielddescr>
     			<fieldname>surftool_logout_target</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Enter a link for auto redirection after logout<br>Maybe:<b>http://10.12.0.10/index.php</b>]]>
     			</description>
     			<size>70</size>
     		</field>
     		<field>
     			<fielddescr>Secret external link</fielddescr>
     			<fieldname>surftool_redirect_secret</fieldname>
     			<type>password</type>
     			<description>
     				<![CDATA[A secret for others system, which refer with a link to the surftool site<br>Default:<b>not set</b>]]>
     			</description>
     		</field>
     		<field>
     			<fielddescr>user name</fielddescr>
     			<fieldname>surftool_user_name</fieldname>
     			<value></value>
     			<type>input</type>
     			<description>
     				<![CDATA[Username for the local user<br>Default:<b>admin</b>]]>
     			</description>
     			<size>20</size>
     		</field>
     		<field>
     			<fielddescr>user password</fielddescr>
     			<fieldname>surftool_user_password</fieldname>
     			<type>password</type>
     			<description>
     				<![CDATA[Password for the local user<br>Default:<b>admin</b>]]>
     			</description>
     		</field>
     	</fields>
     	<custom_php_validation_command>
     		surftool_validate($_POST, $input_errors);
     	</custom_php_validation_command>
     	<custom_php_resync_config_command>
     		exec("/bin/rm -f /usr/local/etc/rc.d/surftool*");
     	  	surftool_resync();
     	</custom_php_resync_config_command>
     	<custom_php_install_command>
     		surftool_install();
     		surftool_resync();
     	</custom_php_install_command>
     	<custom_php_deinstall_command>
     		surftool_deinstall();
     		exec("/bin/rm -f /usr/local/etc/rc.d/surftool*");
     		exec("/bin/rm -f -r /usr/local/share/surftool/");
     	</custom_php_deinstall_command>
     </packagegui>

     <?php
     /*
     	surftool3.inc
     	Copyright (C) 2015 H-T Reimers <reimers@mail.de>
     	All rights reserved.
     	Redistribution and use in source and binary forms, with or without
     	modification, are permitted provided that the following conditions are met:
 . Redistributions of source code must retain the above copyright notice,
     	   this list of conditions and the following disclaimer.
 . Redistributions in binary form must reproduce the above copyright
     	   notice, this list of conditions and the following disclaimer in the
     	   documentation and/or other materials provided with the distribution.
     	THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
     	INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
     	AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
     	AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
     	OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
     	SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
     	INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
     	CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
     	ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
     	POSSIBILITY OF SUCH DAMAGE.
     */
     	class surftoolSquidGuardConf{
     		var $debug=8;
     		var $squidGuardConfPath="/usr/pbi/squidguard-amd64/etc/squidGuard/squidGuard.conf";
     		var $squidGuardOnlyName="surftool_only";
     		var $squidGuardOnlyPath="/var/db/squidGuard/surftool_only/domains";
     		var $squidGuardOnplusName="surftool_onplus";
     		var $squidGuardOnplusPath="/var/db/squidGuard/surftool_onplus/domains";
     		var $squidBinary = "/usr/local/bin/squid";
     		var $squidGuardBinary = "/usr/local/bin/squidGuard";
     		var $squidGuardConfText = ""; //Array: The hole Text of the config file - one line <=> one field
     		var $squidGuardConf = array(); //
     		//Onplus Domains
     		var $OnplusChangesActiv=false;
     		var $squidGuardOnplusDomains=""; //String, seperator: " "
     		//Only Domains
     		var $OnlyChangesActiv=false;
     		var $squidGuardOnlyDomains=""; //String, seperator: " "
     		//ACL-Modes changes
     		var $aclChangeModeActiv=false;
     		//Reload squid config
     		var $squidReloadActiv=false;
     		function __construct($config){
     		//$squidGuardConfPathNew, $squidGuardOnplusPathNew, $squidGuardOnlyPathNew) {
     			$this->aclChangeModeActiv=false; //No changes at beginning
     			$this->squidReloadActiv=false; //No changes at beginning
     			//Get Systemconfiguration
     			$this->squidGuardConfPath = $config["squidGuard_configfile"];
     			$this->squidGuardOnplusName = $config["group_onplus"];
     			$this->squidGuardOnplusPath = $config["squidGuard_database"].$config["group_onplus"]."/domains";
     			$this->squidGuardOnlyName = $config["group_only"];
     			$this->squidGuardOnlyPath = $config["squidGuard_database"].$config["group_only"]."/domains";
     			$this->squidBinary = $config["squid_binary_path"];
     			$this->squidGuardBinary = $config["squidGuard_binary_path"];
     			//Check data
     			$this->check();
     			//Get Data from squidGuard.conf
     			$this->parse_squidGuard();
     			//Get Group Mode (on,off,only,onplus,adminfree)
     			$this->getAclMode();
     			//Get Array with domains for onplus mode
     			$this->squidGuardOnplusDomains=$this->parse_squidGuardDomains($this->squidGuardOnplusPath);
     			//Get Array with domains for only mode
     			$this->squidGuardOnlyDomains=$this->parse_squidGuardDomains($this->squidGuardOnlyPath);
     			//print_r($this->squidGuardOnplusDomains );
+    		}
     		function check(){
     			$error_msg=array();
     			if( !file_exists($this->squidBinary)){
     				$error_msg[]="Warning: squid binary '$this->squidBinary' do not exists\n";
+    			}
     			if( !file_exists($this->squidGuardBinary)){
     				$error_msg[]="Warning: squidGuard binary '$this->squidGuardBinary' do not exists\n";
+    			}
     			if( !file_exists($this->squidGuardConfPath)){
     				$error_msg[]="Warning: squidGuard configuration file '$this->squidGuardConfPath' do not exists\n";
+    			}
     			if( !file_exists($this->squidGuardOnplusPath)){
     				$error_msg[]="Warning: onplus group - file '$this->squidGuardOnplusPath' do not exists\n";
+    			}
     			if( !file_exists($this->squidGuardOnlyPath)){
     				$error_msg[]="Warning: only group - file '$this->squidGuardOnlyPath' do not exists\n";
+    			}
     			if(sizeof($error_msg)>0) print_r($error_msg);
+    		}
     		function squidReload(){
     			if($this->squidReloadActiv){
     				$command=$this->squidBinary." -k reconfigure"; //#Squid/SquidGuard Config reload
     				$output=array();
     				$return_var="";
     				exec (  $command, $output , $return_var );
     				if($return_var!=0 AND $this->debug>=2) echo "Error: squidReload: Can't exec '$command'!\n";
     				else if($this->debug>=3) echo "Info - squidReload: exec '$command' returns: '$return_var'!\n";
     				else if($this->debug>=6) print_r($output);
+    			}
     			else{
     				if($this->debug>=3) echo "Info - squidReload: no reload\n";
+    			}
+    		}
     		function write_squidGuardConf(){
     			if($this->aclChangeModeActiv==true){
     				// Array-->String (with End Of Line)
     				$str = implode(PHP_EOL, $this->squidGuardConfText );
     				file_put_contents("$this->squidGuardConfPath", $str);
     				$this->squidReloadActiv=true;
+    			}
     			else{
     				if($this->debug>=2) echo "Info - write_squidGuardConf: no changes\n";
+    			}
+    		}
     		function parse_squidGuardDomains($file){
     			if(!file_exists($file)){
     				echo "parse_squidGuardDomains - Error: Can't access '$file'<br>\n";
+    			}
     			else{
     				$t = file_get_contents($file);
     				$t = str_replace("\r\n", "\n", $t);
     				$t = str_replace("\n", " ", $t);
     				$domains=explode(" ",$t);
     				$t="";
     				//Search wrong entries
     				foreach($domains AS $domain){
     					$t.=" ".$this->clean_domain($domain);
+    				}
     				return $t;
+    			}
+    		}
     		function endsWith( $haystack, $needle,$debug=0){
     			$length = strlen($needle);
     			if ($length == 0) {
     				return true;
+    			}
     			if($debug>=3) echo "endsWith".$length.substr($haystack, -$length)."\n";
     			return (substr($haystack, -$length) === $needle);
+    		}
     		function setDomains($group,$add,$remove){
     			if( sizeof($remove)>0 OR sizeof($add)>0 ){
     				if($group=="onplus" ){
     					$this->OnplusChangesActiv=true;
     					$target=&$this->squidGuardOnplusDomains;
+    				}
     				else if($group=="only" ){
     					$this->OnlyChangesActiv=true;
     					$target=&$this->squidGuardOnlyDomains;
+    				}
     				else {
     					echo "Error setDomains: unknown group: '$group'\n";
+    				}
+    			}
     			//Search wrong entries
     			$domains=explode(" ",$target);
     			$target="";
     			foreach($domains AS $domain){
     				$target.=" ".$this->clean_domain($domain);
+    			}
     			if(sizeof($remove)>0){
     				foreach($remove AS $domain){
     					if($this->debug>=2) echo "remove $domain from $group<br>\n";
     					$target=str_replace("$domain","",$target);
+    				}
+    			}
     			if(sizeof($add)>0){
     				foreach($add AS $domain){
     					if($this->debug>=2) echo "add $domain to $group<br>\n";
     					//First replace -> no double entries
     					$target=str_replace("$domain","",$target);
     					$target.=" ".$domain;
+    				}
+    			}
     			//Remove double blanks
     			$target = preg_replace ('#\s+#' , ' ' , $target );
     			$target = trim($target );
+    		}
     		function write_squidGuardDomains(){
     			if($this->OnplusChangesActiv){
     				//echo $this->squidGuardOnplusDomains; //String, seperator: " "
     				$str=trim($str);
     				$str =str_replace(" ","\n",$this->squidGuardOnplusDomains);
     				//file_put_contents("$this->squidGuardOnplusPath", $str);
     				$fp = fopen("$this->squidGuardOnplusPath","w");
     				fwrite($fp, $str);
     				fclose($fp);
     				//Activate new domainlist
     				$command=$this->squidGuardBinary." -C ".$this->squidGuardOnplusName."/domains -c ".$this->squidGuardConfPath;
     				$return_var="";
     				system($command, $return_var );
     				//Activation ok?
     				if($return_var!=0 AND $this->debug>=1) echo "error: write_squidGuardDomains: Can't exec '$command' returns retval:'$return_var'!\n";
     				if($this->debug>=3) echo "Info - write_squidGuardDomains: Exec '$command' with retval: $return_var !\n";
     				if($this->debug>=6) print_r($output);
     				//Set flag to reload squid configuration
     				$this->squidReloadActiv=true;
+    			}
     			else{
     				if($this->debug>=6) echo "Info - write_squidGuardDomains: OnplusChangesActiv not activ !\n";
+    			}
     			if($this->OnlyChangesActiv){
     				//echo $this->squidGuardOnlyDomains; //String, seperator: " "
     				$str=trim($str);
     				$str =str_replace(" ","\n",$this->squidGuardOnlyDomains);
     				//file_put_contents("$this->squidGuardOnlyPath", $str);
     				$fp = fopen("$this->squidGuardOnlyPath","w");
     				fwrite($fp, $str);
     				fclose($fp);
     				//Activate new domainlist
     				$command=$this->squidGuardBinary." -C ".$this->squidGuardOnlyName."/domains -c ".$this->squidGuardConfPath." > /dev/null 2>&1";
     				$return_var="";
     				system($command, $return_var );
     				//Activation ok?

... This diff was truncated because it exceeds the maximum size that can be displayed.

(1-1/1)

Project

General

Profile

pfSense » pfSense Packages

Feature #4928 » surftool_v0.01.patch