summaryrefslogtreecommitdiffstats
path: root/usr/local/www/system_crlmanager.php
diff options
context:
space:
mode:
authorRenato Botelho <renato@netgate.com>2015-08-25 08:08:24 -0300
committerRenato Botelho <renato@netgate.com>2015-08-25 14:49:54 -0300
commit46bc6e545a17e77202aaf01ec0cd8d5a46567525 (patch)
tree32d18dda436ec739c67c489ceb771e8629cd926f /usr/local/www/system_crlmanager.php
parent4d9801c2dbd2b3e54a39578ee62b93af66607227 (diff)
downloadpfsense-46bc6e545a17e77202aaf01ec0cd8d5a46567525.zip
pfsense-46bc6e545a17e77202aaf01ec0cd8d5a46567525.tar.gz
Move main pfSense content to src/
Diffstat (limited to 'usr/local/www/system_crlmanager.php')
-rw-r--r--usr/local/www/system_crlmanager.php722
1 files changed, 0 insertions, 722 deletions
diff --git a/usr/local/www/system_crlmanager.php b/usr/local/www/system_crlmanager.php
deleted file mode 100644
index ff70e9b..0000000
--- a/usr/local/www/system_crlmanager.php
+++ /dev/null
@@ -1,722 +0,0 @@
-<?php
-/*
- system_crlmanager.php
-
- Copyright (C) 2010 Jim Pingle
- Copyright (C) 2013-2015 Electric Sheep Fencing, LP
- All rights reserved.
-
- Redistribution and use in source and binary forms, with or without
- modification, are permitted provided that the following conditions are met:
-
- 1. Redistributions of source code must retain the above copyright notice,
- this list of conditions and the following disclaimer.
-
- 2. Redistributions in binary form must reproduce the above copyright
- notice, this list of conditions and the following disclaimer in the
- documentation and/or other materials provided with the distribution.
-
- THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
- INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
- AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
- AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
- OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
- SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
- INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
- CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
- ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
- POSSIBILITY OF SUCH DAMAGE.
-*/
-/*
- pfSense_MODULE: certificate_manager
-*/
-
-##|+PRIV
-##|*IDENT=page-system-crlmanager
-##|*NAME=System: CRL Manager
-##|*DESCR=Allow access to the 'System: CRL Manager' page.
-##|*MATCH=system_crlmanager.php*
-##|-PRIV
-
-require("guiconfig.inc");
-require_once("certs.inc");
-require_once("openvpn.inc");
-require_once("vpn.inc");
-
-global $openssl_crl_status;
-
-$pgtitle = array(gettext("System"), gettext("Certificate Revocation List Manager"));
-
-$crl_methods = array(
- "internal" => gettext("Create an internal Certificate Revocation List"),
- "existing" => gettext("Import an existing Certificate Revocation List"));
-
-if (ctype_alnum($_GET['id'])) {
- $id = $_GET['id'];
-}
-if (isset($_POST['id']) && ctype_alnum($_POST['id'])) {
- $id = $_POST['id'];
-}
-
-if (!is_array($config['ca'])) {
- $config['ca'] = array();
-}
-
-$a_ca =& $config['ca'];
-
-if (!is_array($config['cert'])) {
- $config['cert'] = array();
-}
-
-$a_cert =& $config['cert'];
-
-if (!is_array($config['crl'])) {
- $config['crl'] = array();
-}
-
-$a_crl =& $config['crl'];
-
-foreach ($a_crl as $cid => $acrl) {
- if (!isset($acrl['refid'])) {
- unset ($a_crl[$cid]);
- }
-}
-
-$act = $_GET['act'];
-if ($_POST['act']) {
- $act = $_POST['act'];
-}
-
-if (!empty($id)) {
- $thiscrl =& lookup_crl($id);
-}
-
-// If we were given an invalid crlref in the id, no sense in continuing as it would only cause errors.
-if (!$thiscrl && (($act != "") && ($act != "new"))) {
- pfSenseHeader("system_crlmanager.php");
- $act="";
- $savemsg = gettext("Invalid CRL reference.");
-}
-
-if ($act == "del") {
- $name = htmlspecialchars($thiscrl['descr']);
- if (crl_in_use($id)) {
- $savemsg = sprintf(gettext("Certificate Revocation List %s is in use and cannot be deleted"), $name) . "<br />";
- } else {
- foreach ($a_crl as $cid => $acrl) {
- if ($acrl['refid'] == $thiscrl['refid']) {
- unset($a_crl[$cid]);
- }
- }
- write_config("Deleted CRL {$name}.");
- $savemsg = sprintf(gettext("Certificate Revocation List %s successfully deleted"), $name) . "<br />";
- }
-}
-
-if ($act == "new") {
- $pconfig['method'] = $_GET['method'];
- $pconfig['caref'] = $_GET['caref'];
- $pconfig['lifetime'] = "9999";
- $pconfig['serial'] = "0";
-}
-
-if ($act == "exp") {
- crl_update($thiscrl);
- $exp_name = urlencode("{$thiscrl['descr']}.crl");
- $exp_data = base64_decode($thiscrl['text']);
- $exp_size = strlen($exp_data);
-
- header("Content-Type: application/octet-stream");
- header("Content-Disposition: attachment; filename={$exp_name}");
- header("Content-Length: $exp_size");
- echo $exp_data;
- exit;
-}
-
-if ($act == "addcert") {
- if ($_POST) {
- unset($input_errors);
- $pconfig = $_POST;
-
- if (!$pconfig['crlref'] || !$pconfig['certref']) {
- pfSenseHeader("system_crlmanager.php");
- exit;
- }
-
- // certref, crlref
- $crl =& lookup_crl($pconfig['crlref']);
- $cert = lookup_cert($pconfig['certref']);
-
- if (!$crl['caref'] || !$cert['caref']) {
- $input_errors[] = gettext("Both the Certificate and CRL must be specified.");
- }
-
- if ($crl['caref'] != $cert['caref']) {
- $input_errors[] = gettext("CA mismatch between the Certificate and CRL. Unable to Revoke.");
- }
- if (!is_crl_internal($crl)) {
- $input_errors[] = gettext("Cannot revoke certificates for an imported/external CRL.");
- }
-
- if (!$input_errors) {
- $reason = (empty($pconfig['crlreason'])) ? OCSP_REVOKED_STATUS_UNSPECIFIED : $pconfig['crlreason'];
- cert_revoke($cert, $crl, $reason);
- // refresh IPsec and OpenVPN CRLs
- openvpn_refresh_crls();
- vpn_ipsec_configure();
- write_config("Revoked cert {$cert['descr']} in CRL {$crl['descr']}.");
- pfSenseHeader("system_crlmanager.php");
- exit;
- }
- }
-}
-
-if ($act == "delcert") {
- if (!is_array($thiscrl['cert'])) {
- pfSenseHeader("system_crlmanager.php");
- exit;
- }
- $found = false;
- foreach ($thiscrl['cert'] as $acert) {
- if ($acert['refid'] == $_GET['certref']) {
- $found = true;
- $thiscert = $acert;
- }
- }
- if (!$found) {
- pfSenseHeader("system_crlmanager.php");
- exit;
- }
- $certname = htmlspecialchars($thiscert['descr']);
- $crlname = htmlspecialchars($thiscrl['descr']);
- if (cert_unrevoke($thiscert, $thiscrl)) {
- $savemsg = sprintf(gettext("Deleted Certificate %s from CRL %s"), $certname, $crlname) . "<br />";
- // refresh IPsec and OpenVPN CRLs
- openvpn_refresh_crls();
- vpn_ipsec_configure();
- write_config(sprintf(gettext("Deleted Certificate %s from CRL %s"), $certname, $crlname));
- } else {
- $savemsg = sprintf(gettext("Failed to delete Certificate %s from CRL %s"), $certname, $crlname) . "<br />";
- }
- $act="edit";
-}
-
-if ($_POST) {
- $input_errors = array();
- $pconfig = $_POST;
-
- /* input validation */
- if (($pconfig['method'] == "existing") || ($act == "editimported")) {
- $reqdfields = explode(" ", "descr crltext");
- $reqdfieldsn = array(
- gettext("Descriptive name"),
- gettext("Certificate Revocation List data"));
- }
- if ($pconfig['method'] == "internal") {
- $reqdfields = explode(" ", "descr caref");
- $reqdfieldsn = array(
- gettext("Descriptive name"),
- gettext("Certificate Authority"));
- }
-
- do_input_validation($_POST, $reqdfields, $reqdfieldsn, $input_errors);
-
- if (preg_match("/[\?\>\<\&\/\\\"\']/", $pconfig['descr'])) {
- array_push($input_errors, "The field 'Descriptive Name' contains invalid characters.");
- }
-
- /* if this is an AJAX caller then handle via JSON */
- if (isAjax() && is_array($input_errors)) {
- input_errors2Ajax($input_errors);
- exit;
- }
-
- /* save modifications */
- if (!$input_errors) {
- $result = false;
-
- if ($thiscrl) {
- $crl =& $thiscrl;
- } else {
- $crl = array();
- $crl['refid'] = uniqid();
- }
-
- $crl['descr'] = $pconfig['descr'];
- if ($act != "editimported") {
- $crl['caref'] = $pconfig['caref'];
- $crl['method'] = $pconfig['method'];
- }
-
- if (($pconfig['method'] == "existing") || ($act == "editimported")) {
- $crl['text'] = base64_encode($pconfig['crltext']);
- }
-
- if ($pconfig['method'] == "internal") {
- $crl['serial'] = empty($pconfig['serial']) ? 9999 : $pconfig['serial'];
- $crl['lifetime'] = empty($pconfig['lifetime']) ? 9999 : $pconfig['lifetime'];
- $crl['cert'] = array();
- }
-
- if (!$thiscrl) {
- $a_crl[] = $crl;
- }
-
- write_config("Saved CRL {$crl['descr']}");
- // refresh IPsec and OpenVPN CRLs
- openvpn_refresh_crls();
- vpn_ipsec_configure();
- pfSenseHeader("system_crlmanager.php");
- }
-}
-
-include("head.inc");
-?>
-
-<body link="#0000CC" vlink="#0000CC" alink="#0000CC" onload="<?= $jsevents["body"]["onload"] ?>">
-<?php include("fbegin.inc"); ?>
-<script type="text/javascript">
-//<![CDATA[
-
-function method_change() {
-
- method = document.iform.method.value;
-
- switch (method) {
- case "internal":
- document.getElementById("existing").style.display="none";
- document.getElementById("internal").style.display="";
- break;
- case "existing":
- document.getElementById("existing").style.display="";
- document.getElementById("internal").style.display="none";
- break;
- }
-}
-
-//]]>
-</script>
-<?php
- if ($input_errors) {
- print_input_errors($input_errors);
- }
- if ($savemsg) {
- print_info_box($savemsg);
- }
-?>
-<table width="100%" border="0" cellpadding="0" cellspacing="0" summary="CRL manager">
- <tr>
- <td>
- <?php
- $tab_array = array();
- $tab_array[] = array(gettext("CAs"), false, "system_camanager.php");
- $tab_array[] = array(gettext("Certificates"), false, "system_certmanager.php");
- $tab_array[] = array(gettext("Certificate Revocation"), true, "system_crlmanager.php");
- display_top_tabs($tab_array);
- ?>
- </td>
- </tr>
- <tr>
- <td id="mainarea">
- <div class="tabcont">
-
-<?php
- if ($act == "new" || $act == gettext("Save") || $input_errors):
-?>
-
- <form action="system_crlmanager.php" method="post" name="iform" id="iform">
- <table width="100%" border="0" cellpadding="6" cellspacing="0" summary="main area">
- <?php if (!isset($id)): ?>
- <tr>
- <td width="22%" valign="top" class="vncellreq"><?=gettext("Method");?></td>
- <td width="78%" class="vtable">
- <select name='method' id='method' class="formselect" onchange='method_change()'>
- <?php
- $rowIndex = 0;
- foreach ($crl_methods as $method => $desc):
- if (($_GET['importonly'] == "yes") && ($method != "existing")) {
- continue;
- }
- $selected = "";
- if ($pconfig['method'] == $method) {
- $selected = "selected=\"selected\"";
- }
- $rowIndex++;
- ?>
- <option value="<?=$method;?>" <?=$selected;?>><?=$desc;?></option>
- <?php
- endforeach;
- if ($rowIndex == 0) {
- echo "<option></option>";
- }
- ?>
- </select>
- </td>
- </tr>
- <?php endif; ?>
- <tr>
- <td width="22%" valign="top" class="vncellreq"><?=gettext("Descriptive name");?></td>
- <td width="78%" class="vtable">
- <input name="descr" type="text" class="formfld unknown" id="descr" size="20" value="<?=htmlspecialchars($pconfig['descr']);?>"/>
- </td>
- </tr>
- <tr>
- <td width="22%" valign="top" class="vncellreq"><?=gettext("Certificate Authority");?></td>
- <td width="78%" class="vtable">
- <select name='caref' id='caref' class="formselect">
- <?php
- $rowIndex = 0;
- foreach ($a_ca as $ca):
- $selected = "";
- if ($pconfig['caref'] == $ca['refid']) {
- $selected = "selected=\"selected\"";
- }
- $rowIndex++;
- ?>
- <option value="<?=$ca['refid'];?>" <?=$selected;?>><?=htmlspecialchars($ca['descr']);?></option>
- <?php
- endforeach;
- if ($rowIndex == 0) {
- echo "<option></option>";
- }
- ?>
- </select>
- </td>
- </tr>
- </table>
-
- <table width="100%" border="0" cellpadding="6" cellspacing="0" id="existing" summary="existing">
- <tr>
- <td colspan="2" class="list" height="12"></td>
- </tr>
- <tr>
- <td colspan="2" valign="top" class="listtopic"><?=gettext("Existing Certificate Revocation List");?></td>
- </tr>
-
- <tr>
- <td width="22%" valign="top" class="vncellreq"><?=gettext("CRL data");?></td>
- <td width="78%" class="vtable">
- <textarea name="crltext" id="crltext" cols="65" rows="7" class="formfld_crl"><?=$pconfig['crltext'];?></textarea>
- <br />
- <?=gettext("Paste a Certificate Revocation List in X.509 CRL format here.");?>
- </td>
- </tr>
- </table>
-
- <table width="100%" border="0" cellpadding="6" cellspacing="0" id="internal" summary="internal">
- <tr>
- <td colspan="2" class="list" height="12"></td>
- </tr>
- <tr>
- <td colspan="2" valign="top" class="listtopic"><?=gettext("Internal Certificate Revocation List");?></td>
- </tr>
- <tr>
- <td width="22%" valign="top" class="vncellreq"><?=gettext("Lifetime");?></td>
- <td width="78%" class="vtable">
- <input name="lifetime" type="text" class="formfld unknown" id="lifetime" size="5" value="<?=htmlspecialchars($pconfig['lifetime']);?>"/>
- <?=gettext("days");?><br />
- <?=gettext("Default: 9999");?>
- </td>
- </tr>
- <tr>
- <td width="22%" valign="top" class="vncellreq"><?=gettext("Serial");?></td>
- <td width="78%" class="vtable">
- <input name="serial" type="text" class="formfld unknown" id="serial" size="5" value="<?=htmlspecialchars($pconfig['serial']);?>"/>
- <br />
- <?=gettext("Default: 0");?>
- </td>
- </tr>
- </table>
-
- <table width="100%" border="0" cellpadding="6" cellspacing="0" summary="save">
- <tr>
- <td width="22%" valign="top">&nbsp;</td>
- <td width="78%">
- <input id="submit" name="save" type="submit" class="formbtn" value="<?=gettext("Save"); ?>" />
- <?php if (isset($id) && $thiscrl): ?>
- <input name="id" type="hidden" value="<?=htmlspecialchars($id);?>" />
- <?php endif;?>
- </td>
- </tr>
- </table>
- </form>
-<?php
- elseif ($act == "editimported"):
- $crl = $thiscrl;
-?>
- <form action="system_crlmanager.php" method="post" name="iform" id="iform">
- <table width="100%" border="0" cellpadding="6" cellspacing="0" id="editimported" summary="import">
- <tr>
- <td colspan="2" valign="top" class="listtopic"><?=gettext("Edit Imported Certificate Revocation List");?></td>
- </tr>
- <tr>
- <td width="22%" valign="top" class="vncellreq"><?=gettext("Descriptive name");?></td>
- <td width="78%" class="vtable">
- <input name="descr" type="text" class="formfld unknown" id="descr" size="20" value="<?=htmlspecialchars($crl['descr']);?>"/>
- </td>
- </tr>
- <tr>
- <td width="22%" valign="top" class="vncellreq"><?=gettext("CRL data");?></td>
- <td width="78%" class="vtable">
- <textarea name="crltext" id="crltext" cols="65" rows="7" class="formfld_crl"><?=base64_decode($crl['text']);?></textarea>
- <br />
- <?=gettext("Paste a Certificate Revocation List in X.509 CRL format here.");?></td>
- </td>
- </tr>
- <tr>
- <td width="22%" valign="top">&nbsp;</td>
- <td width="78%">
- <input id="submit" name="save" type="submit" class="formbtn" value="<?=gettext("Save"); ?>" />
- <input name="id" type="hidden" value="<?=htmlspecialchars($id);?>" />
- <input name="act" type="hidden" value="editimported" />
- </td>
- </tr>
- </table>
- </form>
-
-<?php
- elseif ($act == "edit"):
- $crl = $thiscrl;
-?>
- <form action="system_crlmanager.php" method="post" name="iform" id="iform">
- <table width="100%" border="0" cellpadding="0" cellspacing="0" summary="revoke">
- <thead>
- <tr>
- <th width="90%" class="listhdrr" colspan="3"><b><?php echo gettext("Currently Revoked Certificates for CRL") . ': ' . htmlspecialchars($crl['descr']); ?></b></th>
- <th width="10%" class="list"></th>
- </tr>
- <tr>
- <th width="30%" class="listhdrr"><b><?php echo gettext("Certificate Name")?></b></th>
- <th width="30%" class="listhdrr"><b><?php echo gettext("Revocation Reason")?></b></th>
- <th width="30%" class="listhdrr"><b><?php echo gettext("Revoked At")?></b></th>
- <th width="10%" class="list"></th>
- </tr>
- </thead>
- <tbody>
- <?php /* List Certs on CRL */
- if (!is_array($crl['cert']) || (count($crl['cert']) == 0)):
- ?>
- <tr>
- <td class="listlr" colspan="3">
- &nbsp;&nbsp;&nbsp;&nbsp;<?php echo gettext("No Certificates Found for this CRL."); ?>
- </td>
- <td class="list">&nbsp;</td>
- </tr>
- <?php
- else:
- foreach ($crl['cert'] as $i => $cert):
- $name = htmlspecialchars($cert['descr']);
- ?>
- <tr>
- <td class="listlr">
- <?php echo $name; ?>
- </td>
- <td class="listlr">
- <?php echo $openssl_crl_status[$cert["reason"]]; ?>
- </td>
- <td class="listlr">
- <?php echo date("D M j G:i:s T Y", $cert["revoke_time"]); ?>
- </td>
- <td class="list">
- <a href="system_crlmanager.php?act=delcert&amp;id=<?php echo $crl['refid']; ?>&amp;certref=<?php echo $cert['refid']; ?>" onclick="return confirm('<?=gettext("Do you really want to delete this Certificate from the CRL?");?>')">
- <img src="/themes/<?= $g['theme'];?>/images/icons/icon_x.gif" title="<?=gettext("Delete this certificate from the CRL ");?>" alt="<?=gettext("Delete this certificate from the CRL ");?>" width="17" height="17" border="0" />
- </a>
- </td>
- </tr>
- <?php
- endforeach;
- endif;
- ?>
- <?php /* Drop-down with other certs from this CA. */
- // Map Certs to CAs in one pass
- $ca_certs = array();
- foreach ($a_cert as $cert) {
- if ($cert['caref'] == $crl['caref']) {
- $ca_certs[] = $cert;
- }
- }
- if (count($ca_certs) == 0): ?>
- <tr>
- <td class="listlr" colspan="3">
- &nbsp;&nbsp;&nbsp;&nbsp;<?php echo gettext("No Certificates Found for this CA."); ?>
- </td>
- <td class="list">&nbsp;</td>
- </tr>
- <?php
- else:
- ?>
- <tr>
- <td class="listlr" colspan="3" align="center">
- <b><?php echo gettext("Choose a Certificate to Revoke"); ?></b>:
- <select name='certref' id='certref' class="formselect">
- <?php $rowIndex = 0;
- foreach ($ca_certs as $cert):
- $rowIndex++;
- ?>
- <option value="<?=$cert['refid'];?>"><?=htmlspecialchars($cert['descr'])?></option>
- <?php
- endforeach;
- if ($rowIndex == 0) {
- echo "<option></option>";
- }
- ?>
- </select>
- <b><?php echo gettext("Reason");?></b>:
- <select name='crlreason' id='crlreason' class="formselect">
- <?php $rowIndex = 0;
- foreach ($openssl_crl_status as $code => $reason):
- $rowIndex++;
- ?>
- <option value="<?= $code ?>"><?= htmlspecialchars($reason) ?></option>
- <?php
- endforeach;
- if ($rowIndex == 0) {
- echo "<option></option>";
- }
- ?>
- </select>
- <input name="act" type="hidden" value="addcert" />
- <input name="crlref" type="hidden" value="<?=$crl['refid'];?>" />
- <input name="id" type="hidden" value="<?=$crl['refid'];?>" />
- <input id="submit" name="add" type="submit" class="formbtn" value="<?=gettext("Add"); ?>" />
- </td>
- <td class="list">&nbsp;</td>
- </tr>
- <?php
- endif;
- ?>
- </tbody>
- </table>
- </form>
-<?php
- else:
-?>
- <table width="100%" border="0" cellpadding="0" cellspacing="0" summary="ocpms">
- <thead>
- <tr>
- <td width="35%" class="listhdrr"><?=gettext("Name");?></td>
- <td width="10%" class="listhdrr"><?=gettext("Internal");?></td>
- <td width="35%" class="listhdrr"><?=gettext("Certificates");?></td>
- <td width="10%" class="listhdrr"><?=gettext("In Use");?></td>
- <td width="10%" class="list"></td>
- </tr>
- </thead>
- <tfoot>
- <tr>
- <td colspan="5">
- <p>
- <?=gettext("Additional Certificate Revocation Lists can be added here.");?>
- </p>
- </td>
- </tr>
- </tfoot>
- <tbody>
- <?php
- $caimg = "/themes/{$g['theme']}/images/icons/icon_frmfld_cert.png";
- // Map CRLs to CAs in one pass
- $ca_crl_map = array();
- foreach ($a_crl as $crl) {
- $ca_crl_map[$crl['caref']][] = $crl['refid'];
- }
-
- $i = 0;
- foreach ($a_ca as $ca):
- $name = htmlspecialchars($ca['descr']);
-
- if ($ca['prv']) {
- $cainternal = "YES";
- } else {
- $cainternal = "NO";
- }
- ?>
- <tr>
- <td class="listlr" colspan="4">
- <table border="0" cellpadding="0" cellspacing="0" summary="icon">
- <tr>
- <td align="left" valign="middle">
- <img src="<?=$caimg;?>" alt="CA" title="CA" border="0" height="16" width="16" />
- </td>
- <td align="left" valign="middle">
- <?=$name;?>
- </td>
- </tr>
- </table>
- </td>
- <td class="list">
- <?php if ($cainternal == "YES"): ?>
- <a href="system_crlmanager.php?act=new&amp;caref=<?php echo $ca['refid']; ?>">
- <img src="/themes/<?= $g['theme'];?>/images/icons/icon_plus.gif" title="<?php printf(gettext("Add or Import CRL for %s"), htmlspecialchars($ca['descr']));?>" alt="<?=gettext("add crl");?>" width="17" height="17" border="0" />
- </a>
- <?php else: ?>
- <a href="system_crlmanager.php?act=new&amp;caref=<?php echo $ca['refid']; ?>&amp;importonly=yes">
- <img src="/themes/<?= $g['theme'];?>/images/icons/icon_plus.gif" title="<?php printf(gettext("Import CRL for %s"), htmlspecialchars($ca['descr']));?>" alt="<?=gettext("add crl");?>" width="17" height="17" border="0" />
- </a>
- <?php endif; ?>
- </td>
- </tr>
- <?php
- if (is_array($ca_crl_map[$ca['refid']])):
- foreach ($ca_crl_map[$ca['refid']] as $crl):
- $tmpcrl = lookup_crl($crl);
- $internal = is_crl_internal($tmpcrl);
- $inuse = crl_in_use($tmpcrl['refid']);
- ?>
- <tr>
- <td class="listlr"><?php echo htmlspecialchars($tmpcrl['descr']); ?></td>
- <td class="listr"><?php echo ($internal) ? "YES" : "NO"; ?></td>
- <td class="listr"><?php echo ($internal) ? count($tmpcrl['cert']) : "Unknown (imported)"; ?></td>
- <td class="listr"><?php echo ($inuse) ? "YES" : "NO"; ?></td>
- <td valign="middle" class="list nowrap">
- <a href="system_crlmanager.php?act=exp&amp;id=<?=$tmpcrl['refid'];?>">
- <img src="/themes/<?= $g['theme'];?>/images/icons/icon_down.gif" title="<?=gettext("Export CRL") . " " . htmlspecialchars($tmpcrl['descr']);?>" alt="<?=gettext("Export CRL") . " " . htmlspecialchars($tmpcrl['descr']);?>" width="17" height="17" border="0" />
- </a>
- <?php if ($internal): ?>
- <a href="system_crlmanager.php?act=edit&amp;id=<?=$tmpcrl['refid'];?>">
- <img src="/themes/<?= $g['theme'];?>/images/icons/icon_e.gif" title="<?=gettext("Edit CRL") . " " . htmlspecialchars($tmpcrl['descr']);?>" alt="<?=gettext("Edit CRL") . " " . htmlspecialchars($tmpcrl['descr']);?>" width="17" height="17" border="0" />
- </a>
- <?php else: ?>
- <a href="system_crlmanager.php?act=editimported&amp;id=<?=$tmpcrl['refid'];?>">
- <img src="/themes/<?= $g['theme'];?>/images/icons/icon_e.gif" title="<?=gettext("Edit CRL") . " " . htmlspecialchars($tmpcrl['descr']);?>" alt="<?=gettext("Edit CRL") . " " . htmlspecialchars($tmpcrl['descr']);?>" width="17" height="17" border="0" />
- </a>
- <?php endif; ?>
- <?php if (!$inuse): ?>
- <a href="system_crlmanager.php?act=del&amp;id=<?=$tmpcrl['refid'];?>" onclick="return confirm('<?=gettext("Do you really want to delete this Certificate Revocation List?") . ' (' . htmlspecialchars($tmpcrl['descr']) . ')';?>')">
- <img src="/themes/<?= $g['theme'];?>/images/icons/icon_x.gif" title="<?=gettext("Delete CRL") . " " . htmlspecialchars($tmpcrl['descr']);?>" alt="<?=gettext("Delete CRL") . " " . htmlspecialchars($tmpcrl['descr']); ?>" width="17" height="17" border="0" />
- </a>
- <?php endif; ?>
- </td>
- </tr>
- <?php
- $i++;
- endforeach;
- endif;
- ?>
- <tr>
- <td colspan="5">&nbsp;</td>
- </tr>
- <?php
- $i++;
- endforeach;
- ?>
- </tbody>
- </table>
-
-<?php
- endif;
-?>
-
- </div>
- </td>
- </tr>
-</table>
-<?php include("fend.inc");?>
-<script type="text/javascript">
-//<![CDATA[
-
-method_change();
-
-//]]>
-</script>
-
-</body>
-</html>
OpenPOWER on IntegriCloud