2015-05-18 13:15:03 +02:00
|
|
|
#!/usr/bin/perl
|
|
|
|
|
|
|
|
|
|
use Lemonldap::NG::Common::Conf;
|
|
|
|
|
use Lemonldap::NG::Common::Conf::Constants;
|
2016-03-16 07:21:10 +01:00
|
|
|
use Lemonldap::NG::Manager::Conf::Parser;
|
2019-06-27 17:08:21 +02:00
|
|
|
use Lemonldap::NG::Handler::Main::Jail;
|
2020-08-26 09:25:02 +02:00
|
|
|
use Lemonldap::NG::Manager::Cli::Lib;
|
2015-05-18 13:15:03 +02:00
|
|
|
use Data::Dumper;
|
|
|
|
|
use English qw(-no_match_vars);
|
|
|
|
|
use File::Temp;
|
|
|
|
|
use POSIX qw(setuid setgid);
|
2019-01-08 22:24:51 +01:00
|
|
|
use Safe;
|
2021-07-15 17:15:46 +02:00
|
|
|
use Getopt::Long;
|
2015-05-18 13:15:03 +02:00
|
|
|
use strict;
|
|
|
|
|
|
2020-08-26 09:25:02 +02:00
|
|
|
my $cli = Lemonldap::NG::Manager::Cli::Lib->new;
|
|
|
|
|
|
2021-07-16 12:35:29 +02:00
|
|
|
our $opt_user = '__APACHEUSER__';
|
2021-07-15 17:15:46 +02:00
|
|
|
our $opt_group = '__APACHEGROUP__';
|
|
|
|
|
|
2021-07-16 12:35:29 +02:00
|
|
|
GetOptions(
|
|
|
|
|
"user=s" => \$opt_user,
|
|
|
|
|
"group=s" => \$opt_group
|
|
|
|
|
) or die("Error in command line arguments\n");
|
2021-07-15 17:15:46 +02:00
|
|
|
|
2015-05-18 13:15:03 +02:00
|
|
|
eval {
|
2021-07-15 17:15:46 +02:00
|
|
|
setgid( ( getgrnam($opt_group) )[2] );
|
|
|
|
|
setuid( ( getpwnam($opt_user) )[2] );
|
2015-05-18 13:15:03 +02:00
|
|
|
print STDERR "Running as uid $EUID and gid $EGID\n";
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
my $conf = Lemonldap::NG::Common::Conf->new();
|
|
|
|
|
|
|
|
|
|
unless ($conf) {
|
|
|
|
|
print STDERR $Lemonldap::NG::Common::Conf::msg;
|
|
|
|
|
exit 1;
|
|
|
|
|
}
|
|
|
|
|
|
2016-03-16 07:21:10 +01:00
|
|
|
my $refConf = $conf->getConf( { raw => 1, noCache => 1 } );
|
|
|
|
|
delete $refConf->{reVHosts};
|
|
|
|
|
delete $refConf->{cipher};
|
|
|
|
|
delete $refConf->{cfgAuthor};
|
|
|
|
|
delete $refConf->{cfgAuthorIP};
|
|
|
|
|
delete $refConf->{cfgDate};
|
|
|
|
|
$refConf->{cfgLog} = '';
|
2016-02-23 11:45:48 +01:00
|
|
|
|
|
|
|
|
# Sort keys
|
|
|
|
|
$Data::Dumper::Sortkeys = 1;
|
2018-05-07 17:17:55 +02:00
|
|
|
$Data::Dumper::Useperl = 1;
|
|
|
|
|
my $tmp = Dumper($refConf);
|
2016-02-23 11:45:48 +01:00
|
|
|
|
2015-05-18 13:15:03 +02:00
|
|
|
my $refFile = File::Temp->new( UNLINK => 1 );
|
|
|
|
|
my $editFile = File::Temp->new( UNLINK => 1 );
|
|
|
|
|
print $refFile $tmp;
|
|
|
|
|
print $editFile $tmp;
|
|
|
|
|
close $refFile;
|
|
|
|
|
close $editFile;
|
|
|
|
|
|
2016-03-16 07:44:01 +01:00
|
|
|
my $editor = $ENV{EDITOR} || 'editor';
|
|
|
|
|
|
|
|
|
|
system "$editor $editFile";
|
2015-05-18 13:15:03 +02:00
|
|
|
|
|
|
|
|
if (`diff $refFile $editFile`) {
|
|
|
|
|
my $VAR1;
|
|
|
|
|
my $buf;
|
|
|
|
|
|
|
|
|
|
# Check if the new configuration hash is valid
|
|
|
|
|
open F1, $editFile->filename();
|
|
|
|
|
while (<F1>) {
|
|
|
|
|
$buf .= $_;
|
|
|
|
|
}
|
|
|
|
|
eval $buf;
|
|
|
|
|
die $EVAL_ERROR if $EVAL_ERROR;
|
|
|
|
|
|
|
|
|
|
# Update author and date
|
2016-02-23 11:36:14 +01:00
|
|
|
$VAR1->{cfgAuthor} = $ENV{SUDO_USER} || $ENV{LOGNAME} || "lmConfigEditor";
|
|
|
|
|
$VAR1->{cfgAuthorIP} = $ENV{SSH_CONNECTION} || "localhost";
|
2020-02-16 12:57:58 +01:00
|
|
|
$VAR1->{cfgDate} = time();
|
2016-02-08 09:55:46 +01:00
|
|
|
$VAR1->{cfgLog} ||= 'Edited by lmConfigEditor';
|
2015-05-18 13:15:03 +02:00
|
|
|
|
2016-03-16 07:21:10 +01:00
|
|
|
# Test new configuration
|
2020-02-16 12:57:58 +01:00
|
|
|
my $parser = Lemonldap::NG::Manager::Conf::Parser->new( {
|
2016-03-16 07:21:10 +01:00
|
|
|
refConf => $refConf,
|
|
|
|
|
newConf => $VAR1,
|
2018-05-07 17:17:55 +02:00
|
|
|
req => 1,
|
2016-03-16 07:21:10 +01:00
|
|
|
}
|
|
|
|
|
);
|
2020-08-26 09:25:02 +02:00
|
|
|
unless ( $parser->testNewConf( $cli->mgr ) ) {
|
2016-03-16 07:21:10 +01:00
|
|
|
print STDERR "Configuration seems to have some errors:\n ";
|
2018-05-07 17:17:55 +02:00
|
|
|
print STDERR Dumper(
|
|
|
|
|
{ errors => $parser->errors, warnings => $parser->warnings } );
|
2016-03-16 07:21:10 +01:00
|
|
|
print STDERR "Are you sure you want to write it ? (yes/no) ";
|
|
|
|
|
my $resp = <STDIN>;
|
|
|
|
|
die "Aborted" unless $resp =~ /^yes$/i;
|
|
|
|
|
}
|
|
|
|
|
undef $parser;
|
|
|
|
|
|
2015-05-18 13:15:03 +02:00
|
|
|
# Store new configuration
|
|
|
|
|
my $res = $conf->saveConf($VAR1);
|
|
|
|
|
if ( $res > 0 ) {
|
|
|
|
|
print STDERR "Configuration $res saved\n";
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
print STDERR "Configuration was not saved:\n ";
|
|
|
|
|
if ( $res == CONFIG_WAS_CHANGED ) {
|
|
|
|
|
print STDERR "Configuration has changed\n";
|
|
|
|
|
}
|
|
|
|
|
elsif ( $res == DATABASE_LOCKED ) {
|
2020-01-13 14:54:23 +01:00
|
|
|
print STDERR "Configuration database is or can not be locked\n";
|
2015-05-18 13:15:03 +02:00
|
|
|
}
|
|
|
|
|
elsif ( $res == UPLOAD_DENIED ) {
|
|
|
|
|
print STDERR "You're not authorized to save this configuration\n";
|
|
|
|
|
}
|
|
|
|
|
elsif ( $res == SYNTAX_ERROR ) {
|
|
|
|
|
print STDERR "Syntax error in your configuration\n";
|
|
|
|
|
}
|
|
|
|
|
elsif ( $res == UNKNOWN_ERROR ) {
|
|
|
|
|
print STDERR "Unknown error\n";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
print STDERR "Configuration not changed\n";
|
|
|
|
|
}
|
|
|
|
|
|
