Ejemplo n.º 1
0
    case "user_ban":
        $uid = user_username2uid($_REQUEST['uname']);
        if ($uid && ($uid == 1 || $uid == $user_config['uid'])) {
            $_SESSION['dialog']['info'][] = _('Account admin or currently logged in administrator cannot be banned');
        } else {
            if (user_banned_get($uid)) {
                $_SESSION['dialog']['info'][] = _('User is already on banned users list') . ' (' . _('username') . ': ' . $_REQUEST['uname'] . ')';
            } else {
                if (user_banned_add($uid)) {
                    $_SESSION['dialog']['info'][] = _('Account has been banned') . ' (' . _('username') . ': ' . $_REQUEST['uname'] . ')';
                } else {
                    $_SESSION['dialog']['info'][] = _('Unable to ban account') . ' (' . _('username') . ': ' . $_REQUEST['uname'] . ')';
                }
            }
        }
        header("Location: " . _u('index.php?app=main&inc=core_user&route=user_mgmnt&op=user_list&view=' . $view));
        exit;
        break;
    case "login_as":
        user_session_remove($_SESSION['uid'], $_SESSION['sid']);
        $uid = user_username2uid($_REQUEST['uname']);
        auth_login_as($uid);
        if (auth_isvalid()) {
            logger_print("login as u:" . $_SESSION['username'] . " uid:" . $uid . " status:" . $_SESSION['status'] . " sid:" . $_SESSION['sid'] . " ip:" . $_SERVER['REMOTE_ADDR'], 2, "user_mgmnt");
        } else {
            logger_print("fail to login as u:" . $_SESSION['username'] . " uid:" . $uid . " status:" . $_SESSION['status'] . " sid:" . $_SESSION['sid'] . " ip:" . $_SERVER['REMOTE_ADDR'], 2, "user_mgmnt");
        }
        header('Location: ' . _u(_HTTP_PATH_BASE_));
        exit;
        break;
}
Ejemplo n.º 2
0
/**
 * Add account to banned account list
 *
 * @param integer $uid
 *        User ID
 * @return boolean TRUE if user successfully added to banned user list
 */
function user_banned_add($uid)
{
    global $user_config;
    // account admin and currently logged in user/admin cannot be ban
    if ($uid && ($uid == 1 || $uid == $user_config['uid'])) {
        _log('unable to ban uid:' . $uid, 2, 'user_banned_add');
        return FALSE;
    }
    $bantime = core_get_datetime();
    if (user_session_get($uid)) {
        if (!user_session_remove($uid)) {
            return FALSE;
        }
    }
    $item = array($uid => $bantime);
    if (registry_update(1, 'auth', 'banned_users', $item)) {
        _log('banned uid:' . $uid . ' bantime:' . $bantime, 2, 'user_banned_add');
        return TRUE;
    } else {
        return FALSE;
    }
}
Ejemplo n.º 3
0
 * playSMS is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with playSMS.  If not, see <http://www.gnu.org/licenses/>.
 */
defined('_SECURE_') or die('Forbidden');
if (!auth_isadmin()) {
    auth_block();
}
// if kick action
if (_OP_ == 'kick') {
    if ($hash = $_GET['hash']) {
        user_session_remove('', '', $hash);
        header('Location: ' . _u('index.php?app=main&inc=feature_report&route=online'));
        exit;
    }
}
// display whose online
$tpl = array('name' => 'report_online', 'vars' => array('Report' => _('Report'), 'Whose online' => _('Whose online'), 'User' => _('User'), 'Last update' => _('Last update'), 'Current IP address' => _('Current IP address'), 'User agent' => _('User agent'), 'Action' => 'Action'));
// display admin users
$users = report_whoseonline_admin();
foreach ($users as $user) {
    foreach ($user as $hash) {
        $tpl['loops']['data'][] = array('tr_class' => $tr_class, 'c_username' => $hash['username'], 'c_isadmin' => $hash['icon_isadmin'], 'last_update' => $hash['last_update'], 'current_ip' => $hash['ip'], 'user_agent' => $hash['http_user_agent'], 'login_status' => $hash['login_status'], 'action' => $hash['action_link']);
    }
}
// display users
$users = report_whoseonline_user();
Ejemplo n.º 4
0
/**
 * Remove login sessions older than 1 hour idle
 */
function report_hook_playsmsd()
{
    global $plugin_config;
    $plugin_config['report']['current_tick'] = (int) strtotime(core_get_datetime());
    $period = $plugin_config['report']['current_tick'] - $plugin_config['report']['last_tick'];
    // login session older than 1 hour will be removed
    if ($period >= 60 * 60) {
        $users = report_whoseonline(0, FALSE, TRUE);
        foreach ($users as $user) {
            foreach ($user as $hash) {
                user_session_remove('', '', $hash['hash']);
                _log('login session removed uid:' . $hash['uid'] . ' hash:' . $hash['hash'], 3, 'report_hook_playsmsd');
            }
        }
        $plugin_config['report']['last_tick'] = $plugin_config['report']['current_tick'];
    }
}
Ejemplo n.º 5
0
/**
 * Remove login sessions older than 1 hour idle
 */
function report_hook_playsmsd()
{
    global $plugin_config;
    // fetch hourly
    if (!core_playsmsd_timer(3600)) {
        return;
    }
    // login session older than 1 hour will be removed
    $users = report_whoseonline(0, FALSE, TRUE);
    foreach ($users as $user) {
        foreach ($user as $hash) {
            user_session_remove('', '', $hash['hash']);
            _log('login session removed uid:' . $hash['uid'] . ' hash:' . $hash['hash'], 3, 'report_hook_playsmsd');
        }
    }
    $plugin_config['report']['last_tick'] = $plugin_config['report']['current_tick'];
}