luci2/htdocs/luci2/view/system.users.js

   1 L.ui.view.extend({
   2     aclTable: L.cbi.AbstractValue.extend({
   3         strGlob: function(pattern, match) {
   4             var re = new RegExp('^' + (pattern
   5                 .replace(/([.?*+^$[\]\\(){}|-])/g, '\\$1')
   6                 .replace(/\\\*/g, '.*?')) + '$');
   7
   8             return re.test(match);
   9         },
  10
  11         aclMatch: function(list, group) {
  12             for (var i = 0; i < list.length; i++)
  13             {
  14                 var x = list[i].replace(/^\s*!\s*/, '');
  15                 if (x == list[i])
  16                     continue;
  17
  18                 if (this.strGlob(x, group))
  19                     return false;
  20             }
  21
  22             for (var i = 0; i < list.length; i++)
  23             {
  24                 var x = list[i].replace(/^\s*!\s*/, '');
  25                 if (x != list[i])
  26                     continue;
  27
  28                 if (this.strGlob(x, group))
  29                     return true;
  30             }
  31
  32             return false;
  33         },
  34
  35         aclTest: function(list, group) {
  36             for (var i = 0; i < list.length; i++)
  37                 if (list[i] == group)
  38                     return true;
  39
  40             return false;
  41         },
  42
  43         aclEqual: function(list1, list2) {
  44             if (list1.length != list2.length)
  45                 return false;
  46
  47             for (var i = 0; i < list1.length; i++)
  48                 if (list1[i] != list2[i])
  49                     return false;
  50
  51             return true;
  52         },
  53
  54         aclFromUCI: function(value) {
  55             var list;
  56             if (typeof(value) == 'string')
  57                 list = value.split(/\s+/);
  58             else if ($.isArray(value))
  59                 list = value;
  60             else
  61                 list = [ ];
  62
  63             var rv = [ ];
  64             if (this.choices)
  65                 for (var i = 0; i < this.choices.length; i++)
  66                     if (this.aclMatch(list, this.choices[i][0]))
  67                         rv.push(this.choices[i][0]);
  68
  69             return rv;
  70         },
  71
  72         aclToUCI: function(list) {
  73             if (list.length < (this.choices.length / 2))
  74                 return list;
  75
  76             var set = { };
  77             for (var i = 0; i < list.length; i++)
  78                 set[list[i]] = true;
  79
  80             var rv = [ '*' ];
  81             for (var i = 0; i < this.choices.length; i++)
  82                 if (!set[this.choices[i][0]])
  83                     rv.push('!' + this.choices[i][0]);
  84
  85             return rv;
  86         },
  87
  88         setAll: function(ev) {
  89             $(this).parents('table')
  90                 .find('input[value=%d]'.format(ev.data.level))
  91                 .prop('checked', true);
  92         },
  93
  94                 widget: function(sid)
  95                 {
  96             var t = $('<table />')
  97                 .addClass('table table-condensed table-hover')
  98                 .attr('id', this.id(sid))
  99                 .append($('<tr />')
 100                     .append($('<th />')
 101                         .text(L.tr('ACL Group')))
 102                     .append($('<th />')
 103                         .text(L.trc('No access', 'N'))
 104                         .attr('title', L.tr('Set all to no access'))
 105                         .css('cursor', 'pointer')
 106                         .click({ level: 0 }, this.setAll))
 107                     .append($('<th />')
 108                         .text(L.trc('Read only access', 'R'))
 109                         .attr('title', L.tr('Set all to read only access'))
 110                         .css('cursor', 'pointer')
 111                         .click({ level: 1 }, this.setAll))
 112                     .append($('<th />')
 113                         .text(L.trc('Full access', 'F'))
 114                         .attr('title', L.tr('Set all to full access'))
 115                         .css('cursor', 'pointer')
 116                         .click({ level: 2 }, this.setAll)));
 117
 118             var acl_r = this.aclFromUCI(this.map.get('rpcd', sid, 'read'));
 119             var acl_w = this.aclFromUCI(this.map.get('rpcd', sid, 'write'));
 120
 121             if (this.choices)
 122                 for (var i = 0; i < this.choices.length; i++)
 123                 {
 124                     var r = t.get(0).insertRow(-1);
 125                     var is_r = this.aclTest(acl_r, this.choices[i][0]);
 126                     var is_w = this.aclTest(acl_w, this.choices[i][0]);
 127
 128                     $(r.insertCell(-1))
 129                         .text(this.choices[i][1]);
 130
 131                     for (var j = 0; j < 3; j++)
 132                     {
 133                         $(r.insertCell(-1))
 134                             .append($('<input />')
 135                                 .addClass('form-control')
 136                                 .attr('type', 'radio')
 137                                 .attr('name', '%s_%s'.format(this.id(sid), this.choices[i][0]))
 138                                 .attr('value', j)
 139                                 .prop('checked', (j == 0 && !is_r && !is_w) ||
 140                                                  (j == 1 &&  is_r && !is_w) ||
 141                                                  (j == 2 &&           is_w)));
 142                     }
 143                 }
 144
 145             return t;
 146                 },
 147
 148         textvalue: function(sid)
 149         {
 150             var acl_r = this.aclFromUCI(this.map.get('rpcd', sid, 'read'));
 151             var acl_w = this.aclFromUCI(this.map.get('rpcd', sid, 'write'));
 152
 153             var htmlid = this.id(sid);
 154             var radios = $('#' + htmlid + ' input');
 155
 156             var acls = [  ];
 157
 158             for (var i = 0; i < this.choices.length; i++)
 159             {
 160                 switch (radios.filter('[name=%s_%s]:checked'.format(htmlid, this.choices[i][0])).val())
 161                 {
 162                 case '2':
 163                     acls.push('%s: %s'.format(this.choices[i][0], L.trc('Full access', 'F')));
 164                     break;
 165
 166                 case '1':
 167                     acls.push('%s: %s'.format(this.choices[i][0], L.trc('Read only access', 'R')));
 168                     break;
 169
 170                 case '0':
 171                     acls.push('%s: %s'.format(this.choices[i][0], L.trc('No access', 'N')));
 172                     break;
 173                 }
 174             }
 175
 176             return acls.join(', ');
 177         },
 178
 179                 value: function(k, v)
 180                 {
 181                         if (!this.choices)
 182                                 this.choices = [ ];
 183
 184                         this.choices.push([k, v || k]);
 185                         return this;
 186                 },
 187
 188         save: function(sid)
 189         {
 190             var acl_r = this.aclFromUCI(this.map.get('rpcd', sid, 'read'));
 191             var acl_w = this.aclFromUCI(this.map.get('rpcd', sid, 'write'));
 192
 193             var acl_r_new = [ ];
 194             var acl_w_new = [ ];
 195
 196             var htmlid = this.id(sid);
 197             var radios = $('#' + htmlid + ' input');
 198
 199             for (var i = 0; i < this.choices.length; i++)
 200             {
 201                 switch (radios.filter('[name=%s_%s]:checked'.format(htmlid, this.choices[i][0])).val())
 202                 {
 203                 case '2':
 204                     acl_r_new.push(this.choices[i][0]);
 205                     acl_w_new.push(this.choices[i][0]);
 206                     break;
 207
 208                 case '1':
 209                     acl_r_new.push(this.choices[i][0]);
 210                     break;
 211                 }
 212             }
 213
 214             if (!this.aclEqual(acl_r, acl_r_new))
 215                 this.map.set('rpcd', sid, 'read', this.aclToUCI(acl_r_new));
 216
 217             if (!this.aclEqual(acl_w, acl_w_new))
 218                 this.map.set('rpcd', sid, 'write', this.aclToUCI(acl_w_new));
 219         }
 220         }),
 221
 222     execute: function() {
 223         var self = this;
 224         return L.ui.listAvailableACLs().then(function(acls) {
 225             var m = new L.cbi.Map('rpcd', {
 226                 caption:     L.tr('Guest Logins'),
 227                 description: L.tr('Manage user accounts and permissions for accessing the LuCI ui.'),
 228                 readonly:    !self.options.acls.users
 229             });
 230
 231             var s = m.section(L.cbi.TypedSection, 'login', {
 232                 caption:      L.tr('Accounts'),
 233                 collabsible:  true,
 234                 addremove:    true,
 235                 add_caption:  L.tr('Add account …'),
 236                 teasers:      [ 'username', '__shadow', '__acls' ]
 237             });
 238
 239             s.option(L.cbi.InputValue, 'username', {
 240                 caption:     L.tr('Username'),
 241                 description: L.tr('Specifies the login name for the guest account'),
 242                 optional:    false
 243             });
 244
 245
 246             var shadow = s.option(L.cbi.CheckboxValue, '__shadow', {
 247                 caption:     L.tr('Use system account'),
 248                 description: L.tr('Use password from the Linux user database')
 249             });
 250
 251             shadow.ucivalue = function(sid) {
 252                 var pw = this.map.get('rpcd', sid, 'password');
 253                 return (pw && pw.indexOf('$p$') == 0);
 254             };
 255
 256
 257             var password = s.option(L.cbi.PasswordValue, 'password', {
 258                 caption:     L.tr('Password'),
 259                 description: L.tr('Specifies the password for the guest account. If you enter a plaintext password here, it will get replaced with a crypted password hash on save.'),
 260                 optional:    false
 261             });
 262
 263             password.depends('__shadow', false);
 264
 265             password.toggle = function(sid) {
 266                 var id = '#' + this.id(sid);
 267                 var pw = this.map.get('rpcd', sid, 'password');
 268                 var sh = this.section.fields.__shadow.formvalue(sid);
 269
 270                 if (!sh && pw && pw.indexOf('$p$') == 0)
 271                     $(id).val('');
 272
 273                 this.callSuper('toggle', sid);
 274             };
 275
 276             shadow.save = password.save = function(sid) {
 277                 var sh = this.section.fields.__shadow.formvalue(sid);
 278                 var pw = this.section.fields.password.formvalue(sid);
 279
 280                 if (!sh && !pw)
 281                     return;
 282
 283                 if (sh)
 284                     pw = '$p$' + this.section.fields.username.formvalue(sid);
 285
 286                 if (pw.match(/^\$[0-9p][a-z]?\$/))
 287                 {
 288                     if (pw != this.map.get('rpcd', sid, 'password'))
 289                         this.map.set('rpcd', sid, 'password', pw);
 290                 }
 291                 else
 292                 {
 293                     var map = this.map;
 294                     return L.ui.cryptPassword(pw).then(function(crypt) {
 295                         map.set('rpcd', sid, 'password', crypt);
 296                     });
 297                 }
 298             };
 299
 300             var o = s.option(self.aclTable, '__acls', {
 301                 caption:     L.tr('User ACLs'),
 302                 description: L.tr('Specifies the access levels of this account. The "N" column means no access, "R" stands for read only access and "F" for full access.')
 303             });
 304
 305             var groups = [ ];
 306             for (var group_name in acls)
 307                 groups.push(group_name);
 308
 309             groups.sort();
 310
 311             for (var i = 0; i < groups.length; i++)
 312                 o.value(groups[i], acls[groups[i]].description);
 313
 314             return m.insertInto('#map');
 315         });
 316     }
 317 });