1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
|
<?php
/*
* diag_authentication.php
*
* part of pfSense (https://www.pfsense.org)
* Copyright (c) 2004-2016 Rubicon Communications, LLC (Netgate)
* All rights reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
##|+PRIV
##|*IDENT=page-diagnostics-authentication
##|*NAME=Diagnostics: Authentication
##|*DESCR=Allow access to the 'Diagnostics: Authentication' page.
##|*MATCH=diag_authentication.php*
##|-PRIV
require_once("guiconfig.inc");
require_once("radius.inc");
if ($_POST) {
$pconfig = $_POST;
unset($input_errors);
$authcfg = auth_get_authserver($_POST['authmode']);
if (!$authcfg) {
$input_errors[] = sprintf(gettext('%s is not a valid authentication server'), $_POST['authmode']);
}
if (empty($_POST['username']) || empty($_POST['password'])) {
$input_errors[] = gettext("A username and password must be specified.");
}
if (!$input_errors) {
$attributes = array();
if (authenticate_user($_POST['username'], $_POST['password'], $authcfg, $attributes)) {
$savemsg = sprintf(gettext('User %s authenticated successfully.'), $_POST['username']);
$groups = getUserGroups($_POST['username'], $authcfg, $attributes);
$savemsg .= " " . gettext("This user is a member of groups") . ": <br /><br />";
$savemsg .= "<ul>";
foreach ($groups as $group) {
$savemsg .= "<li>" . "{$group} " . "</li>";
}
$savemsg .= "</ul>";
} else {
$input_errors[] = gettext("Authentication failed.");
}
}
} else {
if (isset($config['system']['webgui']['authmode'])) {
$pconfig['authmode'] = $config['system']['webgui']['authmode'];
} else {
$pconfig['authmode'] = "Local Database";
}
}
$pgtitle = array(gettext("Diagnostics"), gettext("Authentication"));
$shortcut_section = "authentication";
include("head.inc");
if ($input_errors) {
print_input_errors($input_errors);
}
if ($savemsg) {
print_info_box($savemsg, 'success', false);
}
$form = new Form(false);
$section = new Form_Section('Authentication Test');
foreach (auth_get_authserver_list() as $auth_server) {
$serverlist[$auth_server['name']] = $auth_server['name'];
}
$section->addInput(new Form_Select(
'authmode',
'*Authentication Server',
$pconfig['authmode'],
$serverlist
))->setHelp('Select the authentication server to test against.');
$section->addInput(new Form_Input(
'username',
'*Username',
'text',
$pconfig['username'],
['placeholder' => 'Username']
));
$section->addInput(new Form_Input(
'password',
'*Password',
'password',
$pconfig['password'],
['placeholder' => 'Password']
));
$form->add($section);
$form->addGlobal(new Form_Button(
'Submit',
'Test',
null,
'fa-wrench'
))->addClass('btn-primary');
print $form;
include("foot.inc");
|