#!/bin/sh

export DATE="14.9.2008";SCRIPT=${0#/rom}
export TITLE="Admin: Administration Web
Sécurisée"
. ${SCRIPT%/*}/cgi-bin-pre.sh

cat<<EOF
<H1>Admin: Administration Web
S&eacute;curis&eacute;e</H1>
EOF

. /www/cgi-bin/secureadmin/functions.sh
## some html helper functions
# ARGS: name value default_value
html_radio() {
cat<<EOF
<INPUT TYPE="radio" NAME="$1" value="$2"$(test "$2" = "$3" && echo ' checked="checked"')>&nbsp;
EOF
}
# ARGS: name value default_value
html_checkbox() {
cat<<EOF
<INPUT TYPE="checkbox" NAME="$1" value="$2"$(test "$2" = "$3" && echo ' checked="checked"')>&nbsp;
EOF
}
# ARGS: name textfile rows cols
html_textarea() {
echo "<TEXTAREA NAME=\"${1:-noname}\" ROWS=\"${3:-10}\" COLS=\"${4:-60}\">"
cat /var/etc/secureadmin/$2 2>/dev/null
echo "</TEXTAREA>"
}
if [ "$REQUEST_METHOD" = "POST" ]; then
read QUERY_STRING
fi
if [ -z "$QUERY_STRING" ]; then
ff_secureadmin=$(nvram get ff_secureadmin)
ff_secureadmin=${ff_secureadmin:-on}

cat<<EOF
<FORM ACTION="secureadmin.html" METHOD="POST">
<TABLE CLASS="shadow0" CELLPADDING="0" CELLSPACING="0"><TR><TD><TABLE CLASS="shadow1" CELLPADDING="0" CELLSPACING="0"><TR><TD><TABLE CLASS="shadow2" CELLPADDING="0" CELLSPACING="0"><TR><TD><TABLE BORDER="0" CLASS="formfixwidth">
<TR>
<TD COLSPAN="2">$(html_radio ff_secureadmin off $ff_secureadmin)Off<BR>
$(html_radio ff_secureadmin on $ff_secureadmin)On<BR>
</TD>
</TR>
<TR>
<TD COLSPAN="2"><INPUT NAME="post_secureadmin" TITLE="Appliquer ces changements. Les param&egrave;tres seront utilis&eacute;s au prochain red&eacute;marrage." TYPE="SUBMIT" VALUE="Appliquer">&nbsp;&nbsp;&nbsp;<INPUT NAME="post_abort" TITLE="Annuler l'&eacute;dition de la page." TYPE="SUBMIT" VALUE="Annuler">
</TD>
</TR>
<TR><TD COLSPAN="2">&nbsp;</TD></TR>
<TR><TD COLSPAN="2">
<H4>Cl&eacute; Priv&eacute;e</H4>
</TD></TR>
<TR>
<TD COLSPAN="2">$(html_textarea secureadmin_key privkey.pem)</TD>
</TR>
<TR><TD COLSPAN="2">
<H4>Certificat SSL</H4>
</TD></TR>
<TR>
<TD COLSPAN="2">$(html_textarea secureadmin_crt cert.pem)</TD>
</TR>
<TR>
<TD COLSPAN="2"><INPUT NAME="post_secureadmin_genstuff" TITLE="G&eacute;nerer une nouvelle cl&eacute; et un certificat" TYPE="SUBMIT" VALUE="G&eacute;nerer une nouvelle cl&eacute; et un certificat">&nbsp;&nbsp;&nbsp;<INPUT NAME="post_secureadmin_savestuff" TITLE="Appliquer cette nouvelle cl&eacute; et ce certificat" TYPE="SUBMIT" VALUE="Appliquer">
</TD>
</TR>
</TABLE></TD></TR></TABLE></TD></TR></TABLE></TD></TR></TABLE></FORM>
EOF

pidfile=/var/run/secureadmin.pid
if kill -0 $(cat "$pidfile" 2>/dev/null) 2>/dev/null; then

cat<<EOF
<TABLE BORDER="0" CLASS="note"><TR><TD>
<B>Status:</B> le service HTTPS est disponible.
</TD></TR></TABLE>
EOF

else

cat<<EOF
<TABLE BORDER="0" CLASS="note"><TR><TD>
<B>Status:</B> le service HTTPS  <B>n'est pas</B> disponible.
</TD></TR></TABLE>
EOF

fi
else
IFS=\&;set $QUERY_STRING;unset IFS;eval $*
DIRTY=
if [ -n "$post_secureadmin_genstuff" ]; then
DIRTY=1
secureadmin_genstuff
secureadmin_setnvram
elif [ -n "$post_secureadmin_savestuff" ]; then
DIRTY=1
httpd -d $secureadmin_key | sed "s,[^0-9a-zA-Z: /+=-],,g" > "$keyfile"
httpd -d $secureadmin_crt | sed "s,[^0-9a-zA-Z: /+=-],,g" > "$crtfile"
secureadmin_setnvram
elif [ -n "$post_secureadmin" ]; then
## update variables
for V in ff_secureadmin; do
eval "C=\$$V"
C=$(httpd -d $C)
if [ "$C" != "$(nvram get $V)" ]; then
DIRTY=1
nvram set $V="$C"
fi
done
fi
## commit and restart if required
if [ -n "$DIRTY" ]; then
nvram commit>/dev/null 2>&1
/etc/init.d/S70secureadmin restart 2>/dev/null
fi

cat<<EOF
<TABLE BORDER="0" CLASS="note">
<TR>
<TD>
Les param&egrave;tres sont appliqu&eacute;s.</TD>
</TD>
</TR>
</TABLE>
EOF

fi

. ${SCRIPT%/*}/cgi-bin-post.sh