$ipv4 = trim($cols[$name2fno['ipv4']]); $dnsname = trim($cols[$name2fno['dnsname']]); $comments = $cols[$name2fno['comments']]; $manufacturerid = getagentidbyname($cols[$name2fno['manufacturer']]); $model = trim($cols[$name2fno['model']]); $sn = trim($cols[$name2fno['sn']]); $ispart = 0; $rackmountable = 0; $itemtypeid = getitemtypeidbyname($cols[$name2fno['itemtype']]); $status = getstatustypeidbyname($cols[$name2fno['status']]); $label = trim($cols[$name2fno['label']]); $function = $cols[$name2fno['function']]; $cpu = $cols[$name2fno['cpu']]; $ram = $cols[$name2fno['ram']]; $sql = "INSERT into items " . "(userid,ipv4,dnsname,comments,manufacturerid,model,sn,ispart,rackmountable,itemtypeid,status,locationid,locareaid,label,function) " . " VALUES " . "(:userid,:ipv4,:dnsname,:comments,:manufacturerid,:model,:sn,:ispart,:rackmountable,:itemtypeid,:status,:locationid,:locareaid,:label,:function)"; $stmt = db_execute2($dbh, $sql, array('userid' => $userid, 'ipv4' => $ipv4, 'dnsname' => $dnsname, 'comments' => $comments, 'manufacturerid' => $manufacturerid, 'model' => $model, 'sn' => $sn, 'ispart' => $ispart, 'rackmountable' => $rackmountable, 'itemtypeid' => $itemtypeid, 'status' => $status, 'locationid' => $locationid, 'locareaid' => $locareaid, 'label' => $label, 'function' => $function)); //echo "<br>Isql=$sql<br>"; } echo "\n<br><h2>Finished.</h2>\n"; } function lineok($line, $delim) { global $fno2name, $name2fno; $cols = explode($delim, $line); if (!strlen($cols[$name2fno['ip']]) && !strlen($cols[$name2fno['manufacturer']]) && !strlen($cols[$name2fno['model']])) { //model echo "\n"; echo "Skipping semi-empty line ({$line})<br>"; echo "Manuf: {$cols[$name2fno['manufacturer']]} <br>"; echo "Model: {$cols[$name2fno['model']]} <br>"; echo "Delim:{$delim}<br>\n";
function getuserbyname($name) { global $dbh; $name = trim(strtolower($name)); $sql = "SELECT * from users where lower(username) = :name "; $sth = db_execute2($dbh, $sql, array('name' => $name)); $r = $sth->fetchAll(PDO::FETCH_ASSOC); $sth->closeCursor(); if (!count($r[0]['id'])) { return -1; } else { return $r; } }
//logging in $username = $_POST['authusername']; $password = $_POST['authpassword']; if ($settings['useldap'] && $username != 'admin') { $r = connect_to_ldap_server($settings['ldap_server'], $username, $password, $settings['ldap_dn']); //echo "HERE. r=".var_dump($r)."\n"; if ($r == false) { $authstatus = 0; $authmsg = "Wrong Password"; } else { $rnd = mt_rand(); //create a random $u = getuserbyname($username); if ($u == -1) { //user not found, it's an LDAP user, add him db_execute2($dbh, "INSERT into users (username,cookie1,usertype) values (:username,:cookie1,:usertype)", array('username' => $username, 'cookie1' => $rnd, 'usertype' => 2)); } db_exec($dbh, "UPDATE users set cookie1='{$rnd}' where username='******'", 1, 1); setcookie("itdbcookie1", $rnd, time() + 3600 * 24 * 2, $wscriptdir); //random number set for two days setcookie("itdbuser", $username, time() + 3600 * 24 * 60, $wscriptdir); //username $authstatus = 1; $authmsg = "User Authenticated"; } } if (!$authstatus) { //try local users $username = str_replace(";", "", $username); $username = str_replace("%", "", $username); $username = str_replace("'", "", $username);