git-svn-id: svn://presbrey.mit.edu/sql/mitsql@6 a142d4bd-2cfb-0310-9673-cb33a7e74f58

[sql-web.git] / index.php

<?php
/*
        (c) 2005 Joe Presbrey
        written for SIPB/MIT

        add switching of what owner to manage
        - to support group sql "lockers"
*/

if (file_exists('/mit/presbrey/web_tmp'))
        ini_set('session.save_path','/mit/presbrey/web_tmp');
ini_set('display_errors', 1);
ignore_user_abort(1);
error_reporting(E_ALL);
set_time_limit(0);
session_start();
if (isset($_GET['reset'])) { session_destroy(); session_start(); }
require_once('mitsql.lib.php');

if (!isset($_SESSION['owner'])) {
        if (isset($_GET['owner'])) {
                $_SESSION['owner'] = $_GET['owner'];
                redirectLocal('/');
        }
        if (isset($_POST['owner'])) {
                $_SESSION['owner'] = $_POST['owner'];
                redirectLocal('/');
        }
        if (is_null(getSSLIdent())) {
                redirect('https://'.$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']);
                echo '<p class="err">Your SSL certificate could not be verified, please authenticate manually below.</p>';
//              echo '<form method="',FORM_METHOD,'"><input type="text" name="owner" value="',$_SESSION['owner'],'"><input type=submit value="owner"></form>';
                echo '<p>(This will be fixed when I do group locker SQL support)</p>';
        } else {
                $_SESSION['owner'] = getSSLIdent();
        }
}
if (isset($_SESSION['realuser'])) {
        $realuser = $_SESSION['realuser'];
} else $realuser = null;

ob_start();
include('style.inc');

if (isset($_SESSION['owner'])) {
        $owner = $_SESSION['owner'];
        $dbm = new DBManage($owner);
} else exit;

?><p><h2>SQL Databases: <?php echo $owner; ?></h2><?php
if (isset($realuser)) {
?><h4> [ <a href="?op=admin"><?php echo $realuser; ?></a> ]</h4><?php
}
?></p><?php

$inputvars = array('initpw', 'op', 'name', 'owner');
foreach($inputvars as $i) {
        $newvar = 'i_'.$i;
        $$newvar = isset($_GET[$i]) ? $_GET[$i] : null;
}

if (isset($i_op)) {
        switch($i_op) {
                case 'admin':
                        if (isset($i_owner)) {
                                $_SESSION['owner'] = $i_owner;
                                $_SESSION['realuser'] = $_SESSION['owner'];
                                redirectLocal('/');
                        } else {
                                redirectLocal('/admin/');
                        }
                case 'init':
                        if (strlen($i_initpw)<PASS_MIN_LEN) {
                                echo '<p class="err">',TEXT_REGPASSTOOSHORT,'</p>';
                        } else {
                                if (!$dbm->isInit()) {
                                        $dbm->init($i_initpw);
                                        redirectLocal('/');
                                } else {
                                        echo '<p class="err">Your account is already initialized.</p>';
                                }
                        }
                        break;
                case 'uninit':
                        echo '<p>This operation will remove all the databases and accounts for: ',$owner,'.  Are you sure?</p>';
                        echo '<form method="',FORM_METHOD,'"><tr><td><div align="left"><input type=hidden name="op" value="uninit2"><input type="submit" value="Remove My Account"></div></td></form>';
                        exit();
                        break;
                case 'uninit2':
                        $dbm->uninit();
                        redirectLocal('/');
                        break;
                case 'adddb':
                        if ($dbm->getNumDBs() < $dbm->getNumMaxDBs()) {
                                $dbm->addDB($owner.DELIMETER.$i_name);
                                redirectLocal('/');
                        } else {
                                echo '<p class="err">',TEXT_DBLIMIT,'</p>';
                        }
                        break;
                case 'deldb':
                        if ($dbm->isRegistered($i_name)) {
                                $dbm->delDB($i_name);
                                redirectLocal('/');
                        } else {
                                echo '<p class="err">',TEXT_NOTREG,'</p>';
                        }
                        break;
                case 'createdb':
                        if ($dbm->isRegistered($i_name)) {
                                $dbm->createDB($i_name);
                                redirectLocal('/');
                        } else {
                                echo '<p class="err">',TEXT_NOTREG,'</p>';
                        }
                        break;
                case 'dropdb':
                        if ($dbm->isRegistered($i_name)) {
                                $dbm->dropDB($i_name);
                                redirectLocal('/');
                        } else {
                                echo '<p class="err">',TEXT_NOTREG,'</p>';
                        }
                        break;
                case 'grantdb':
                        if ($dbm->isRegistered($i_name)) {
                                $dbm->grantDB($i_name);
                                redirectLocal('/');
                        } else {
                                echo '<p class="err">',TEXT_NOTREG,'</p>';
                        }
                        break;
                case 'revokedb':
                        if ($dbm->isRegistered($i_name)) {
                                $dbm->revokeDB($i_name);
                                redirectLocal('/');
                        } else {
                                echo '<p class="err">',TEXT_NOTREG,'</p>';
                        }
                        break;
        }
        $dbm = null;
        $dbm = new DBManage($owner);
}
?>



<?php
        if ($dbm->getNumDBs()) {
                echo '<table>';
                $dbm->printOwnerDBs();
                echo '</table>';
        }
        if ($dbm->isInit()) {
                echo '<form method="',FORM_METHOD,'"><input type=text readonly value="',$owner.DELIMETER,'" style="text-align:right"><input type=text name="name"><input type=hidden name="op" value="adddb"><input type=submit value="Add Database"></form>';

                $dbm->printOwner();
                echo '<table width="100%" style="margin-top:20px;">';
                echo '<form method="',FORM_METHOD,'"><tr><td><div align="left"><input type=hidden name="op" value="uninit"><input type="submit" value="Remove My Account"></div></td></form>';
        } else {
                echo '<h3>',TEXT_NOREG,'</h3>';
                echo '<form method="',FORM_METHOD,'">';
                echo '<table>';
                echo '<tr><td>your SQL server:</td><td>',HOST,'</td></tr>';
                echo '<tr><td>your SQL username:</td><td>',$owner,'</td></tr>';
                echo '<tr><td>choose a SQL password:</td><td><input type=hidden name="op" value="init"><input type="password" name="initpw" value=""></td></tr></table>';
                echo '<table width="100%" style="margin-top:20px;">';
                echo '<tr><td></td><td><input type="submit" value="Activate My Account"></td></form>';
        }
        echo '<form method=get><td><div align="right"><input type=hidden name="reset" value=""><input type="submit" value="Restart"></div></td></form></tr></table>';

        @mysql_close($cxn);

        if (DEBUG) {
                echo '<!--';
                print_r($dbm);
                echo '-->';
        }
?>
<hr><div align="right">

<address>MIT SQL Service Management v<?php echo VERSION; ?><br />
Direct comments and bugs to: <a href="mailto:presbrey@mit.edu">presbrey@mit.edu</a></address></div>
<?php
        //ob_flush();
?>