PageRenderTime 45ms CodeModel.GetById 15ms RepoModel.GetById 0ms app.codeStats 0ms

/package/webif-iw-lua-pepperspot/files/www/cgi-bin/login/login2

http://lua-wrt.googlecode.com/
Lua | 173 lines | 122 code | 14 blank | 37 comment | 14 complexity | 5dffc2818532f72e86d4ec504f0a89ea MD5 | raw file
    

  1. #!/usr/bin/lua
    2. 

  2. require("set_path")
    3. 

  3. require("init")
    4. 

  4. require("uci_iwaddon")
    5. 

  5. require("htmlClass")
    6. 

  6. require("md5")
    7. 

  7. 

  8. user_label  = uci.get("chillipages","login","user_label")
    9. 

  9. pass_enable = tonumber(uci.get("chillipages","login","pass_enable") or 0)
    10. 

  10. pass_label  = uci.get("chillipages","login","pass_label")
    11. 

  11. pass_value	= uci.get("chillipages","login","pass_value")
    12. 

  12. msg_label		= uci.get("chillipages","login","msg_label")
    13. 

  13. msg_enable	= tonumber(uci.get("chillipages","login","msg_enable") or 0)
    14. 

  14. 

  15. function notyet()
    16. 

  16. 	local strpage = [[ 
    17. 

  17. 	<form METHOD="get" name="logon" >
    18. 

  18. 		<INPUT TYPE="HIDDEN" NAME="nasid"   VALUE="]]..__FORM['nasid']..[[" />
    19. 

  19. 		<INPUT TYPE="HIDDEN" NAME="challenge"    VALUE="]]..__FORM['challenge']..[[" />
    20. 

  20. 		<INPUT TYPE="HIDDEN" NAME="uamip"   VALUE="]]..__FORM['uamip']..[[" />
    21. 

  21. 		<INPUT TYPE="HIDDEN" NAME="uamport" VALUE="]]..__FORM['uamport']..[[" />
    22. 

  22. 		<INPUT TYPE="HIDDEN" NAME="userurl" VALUE="]]..__FORM['userurl']..[[" />
    23. 

  23. 

  24.     <table id="logonTable" border="0" >
    25. 

  25.       <tr>
    26. 

  26.         <td colspan="2" style="font-size:120%;">
    27. 

  27.           <div id="logonMessage" style="font-size:70%;padding-top:4px; ]]
    28. 

  28. 						if msg_enable == 0 then
    29. 

  29. 							strpage=strpage..[[ display:none; ]]
    30. 

  30. 						end
    31. 

  31. 						strpage=strpage..[[">]]..msg_label..[[</div>
    32. 

  32.         </td>
    33. 

  33.       </tr>
    34. 

  34.       <tr id="usernameRow">
    35. 

  35.         <td id="usernameLabel"><b>]]..user_label..[[ </b></td>
    36. 

  36.         <td><input name="username" type="text" id="username" size="20"/></td>
    37. 

  37.       </tr>
    38. 

  38. ]]
    39. 

  39. 

  40. 	if pass_enable == 0 then
    41. 

  41. 		strpage=strpage..[[			<tr id="passwordRow" style="display:none">]]
    42. 

  42. 	else 
    43. 

  43. 		strpage=strpage..[[			<tr id="passwordRow" > ]]
    44. 

  44. 	end
    45. 

  45. 	strpage=strpage..[[
    46. 

  46. 				<td id="passwordLabel" ><b> ]]..pass_label..[[ </b></td>
    47. 

  47. 				<td><input name="password" type="password" id="password"]]
    48. 

  48. 	if pass_enable == 0 then
    49. 

  49. 		strpage=strpage..[[  value="]]..pass_value..[["]]
    50. 

  50. 	end
    51. 

  51. 	strpage=strpage..[[ size="20"/></td>
    52. 

  52. 			</tr>
    53. 

  53. 			<tr>
    54. 

  54. 				<!--td colspan="2"><input type="submit" value="Connect" onClick="connect();"/></td-->
    55. 

  55. 				<td colspan="2"><input type="submit" name="login" value="Identificarse" /></td>
    56. 

  56. 			</tr>	
    57. 

  57. 		</table>		
    58. 

  58. 	</form>
    59. 

  59. ]]
    60. 

  60. return strpage;
    61. 

  61. end
    62. 

  62. 

  63. function sumhexa (k)
    64. 

  64. --  k = core.sum(k)
    65. 

  65.   return (string.gsub(k, ".", function (c)
    66. 

  66.            return string.format("%02x", string.byte(c))
    67. 

  67.          end))
    68. 

  68. end
    69. 

  69. 

  70. function encriptpass()
    71. 

  71. --	$hexchal = pack ("H32", $_GET['chal']);
    72. 

  72. --	if (isset ($this->uamsecret)) {
    73. 

  73. --		$newchal = pack ("H*", md5($hexchal . $this->uamsecret));
    74. 

  74. --	} else {
    75. 

  75. --		$newchal = $hexchal;
    76. 

  76. --	}
    77. 

  77. --	$response = md5("\0" . $_GET['Password'] . $newchal);
    78. 

  78. --	$newpwd = pack("a32", $_GET['Password']);
    79. 

  79. --	$pappassword = implode ("", unpack("H32", ($newpwd ^ $newchal)));
    80. 

  80. --	$this->title = 'Logging in to HotSpot'; 
    81. 

  81. --	$this->headline = 'Logging in to HotSpot';
    82. 

  82. --	$this->bodytext = ''; 
    83. 

  83. --	$this->strForm .="<html><head><META NAME=\"author\" CONTENT=\"Fabian Omar Franzotti\">";
    84. 

  84. --	$this->strForm .="<meta http-equiv=\"Cache-control\" content=\"no-cache\">";
    85. 

  85. --	$this->strForm .="<meta http-equiv=\"Pragma\" content=\"no-cache\">";
    86. 

  86. page.head.metas:add({
    87. 

  87. 	{ ["http-equiv"] = "Cache-control", content="no-cache" },
    88. 

  88. 	{ ["http-equiv"] = "Pragma", content="no-cache" }
    89. 

  89. 	})
    90. 

  90. 	response=sumhexa(md5.sum(__FORM["password"]..__FORM["challenge"]))
    91. 

  91. --	if ((isset ($uamsecret)) && isset($userpassword)) {
    92. 

  92. --		$this->strForm .= '<meta http-equiv="refresh" content="30;url=http://' . $_GET['uamip'] . ':' . $_GET['uamport'] . '/logon?username=' . $_GET['UserName'] . '&password=' . $pappassword . '">';
    93. 

  93. 

  94. --		page.head.metas:add(
    95. 

  95. --			{ ["http-equiv"] = "refresh", content=[[10;url=http://]]..__FORM["uamip"]..":"..__FORM["uamport"].."/logon?username="..__FORM["username"].."&password="..__FORM["password"].."&userurl="..__FORM["userurl"] }
    96. 

  96. --		)
    97. 

  97. 

  98. 		
    99. 

  99. --	} else {
    100. 

  100. --		$this->strForm .= '<meta http-equiv="refresh" content="30;url=http://' . $_GET['uamip'] . ':' . $_GET['uamport'] . '/logon?username=' . $_GET['UserName'] . '&response=' . $response . '&userurl=' . $_GET['userurl'] . '">';
    101. 

  101. page.head.metas:add(
    102. 

  102. 	{ ["http-equiv"] = "refresh", content=[[10;url=http://]]..__FORM["uamip"]..":"..__FORM["uamport"].."/logon?username="..__FORM["username"].."&response="..response.."&userurl="..__FORM["userurl"] }
    103. 

  103. 	)
    104. 

  104. --	}
    105. 

  105. --	$this->strForm .="<link rel=\"icon\" href=\"/favicon.ico\" type=\"image/x-icon\"><link rel=\"shortcut icon\" href=\"/favicon.ico\" type=\"image/x-icon\"><link rel=\"stylesheet\" type=\"text/css\" href=\"css/NiftyLayout.css\" media=\"screen\">";
    106. 

  106. --	$this->strForm .="<script src=\"niftycube.js\" type=\"text/javascript\" language=\"javascript\"></script><script src=\"libraries/niftyLayout.js\" type=\"text/javascript\" language=\"javascript\"></script>";
    107. 

  107. --	$this->strForm .= "</head>";
    108. 

  108. --	$this->strForm .= "<body>";
    109. 

  109. --	$this->big_body();
    110. 

  110. end
    111. 

  111. 

  112. 

  113. page = htmlpageClass.new(tr("Login Page").." - "..__SYSTEM.general.firmware_name.." "..tr("Administrative Console"))
    114. 

  114. page.head.links:add(
    115. 

  115. 	{rel = "stylesheet", type = "text/css", href = "/themes/active/webif.css"}
    116. 

  116. 	)
    117. 

  117. 

  118. page.head.metas:add({
    119. 

  119. 	{ ["http_equiv"] = "Content-Type", content = [[text/html; charset=UTF-8]]},
    120. 

  120. 	{ ["http-equiv"] = "expires", content = "-1" }
    121. 

  121. 	})
    122. 

  122. -- Can add code with this way, then the script open and close the div an set the id 
    123. 

  123. page.container:add(htmlsectionClass.new("div","header"))
    124. 

  124. page.container.header:add([[
    125. 

  125. 	<h1>X-Wrt</h1>
    126. 

  126. 	<em>OpenWrt for end users</em>
    127. 

  127. ]])
    128. 

  128. -- or can add code directly to page.container like you write on standart html file
    129. 

  129. page.container:add([[<div id="mainmenu"></div>]])
    130. 

  130. page.container:add()
    131. 

  131. page.container:add(htmlsectionClass.new("div","content"))
    132. 

  132. local strpage=""
    133. 

  133. if __FORM.login ~= nil then encriptpass()
    134. 

  134. else
    135. 

  135. 	if __FORM['res'] ~= nil and __FORM['res'] ~= ""  then
    136. 

  136. 		if __FORM['res'] == "notyet" then strpage=notyet() end
    137. 

  137. --	else
    138. 

  138. 	end
    139. 

  139. end
    140. 

  140. 

  141. local str ="<br /><br />"
    142. 

  142. for i,v in pairs(__FORM) do
    143. 

  143.   str=str..i.."="..v.."<br>"
    144. 

  144. end
    145. 

  145. str=str.."<br /><br />"
    146. 

  146. pepe=md5.sum("pepe")
    147. 

  147. str=str..pepe
    148. 

  148. str=str.."<br />"
    149. 

  149. str=str..sumhexa(__FORM["challenge"])
    150. 

  150. str=str.."<br />"
    151. 

  151. str=str..md5.crypt("pepe","pepe")
    152. 

  152. --[[
    153. 

  153. for i,v in pairs(__SERVER) do
    154. 

  154.   str=str..i.."="..v.."<br>"
    155. 

  155. end
    156. 

  156. ]]
    157. 

  157. strpage=strpage..str
    158. 

  158. page.container.content:add(strpage)
    159. 

  159. page.container:add([[
    160. 

  160. <fieldset id="save">
    161. 

  161. 	<legend><strong>Proceed Changes</strong></legend>
    162. 

  162. <div class="page-save"></div>	
    163. 

  163. 	<ul class="apply">
    164. 

  164. 	</ul>
    165. 

  165. </fieldset>
    166. 

  166. <hr />
    167. 

  167. <div id="footer">
    168. 

  168. 	<h3>X-Wrt</h3>
    169. 

  169. 	<em>End user extensions for OpenWrt</em>
    170. 

  170. </div>
    171. 

  171. ]])
    172. 

  172. 

  173. page:print()
    174. 

  174.