servnest/public/ht/http-onion.php

<?php require "../../common/top.php"; ?>
<p>
	Ajouter un accès en .onion sur un dossier
</p>

<form method="post">
	<label for="dir">Dossier ciblé</label><br>
	<select required="" name="dir" id="dir">
		<option value="" disabled="" selected="">---</option>

		<?php

		if (isset($_SESSION['username'])) {

			$fsDirs = listFsDirs($_SESSION['username']);
			$dbUsedDirs = listDbDirs($_SESSION['username'], "onion", "http");
			$i = 0;
			$j = 0;
			$alreadyEnabledDirs = NULL;
			$notYetEnabledDirs = NULL;
			if ($fsDirs) {
				foreach ($fsDirs as $fsDir) {
					if ($dbUsedDirs AND in_array($fsDir, $dbUsedDirs)) {
						$alreadyEnabledDirs[$i] = $fsDir;
						$i++;
					} else {
						$notYetEnabledDirs[$j] = $fsDir;
						$j++;
					}
				}

				if (!is_null($notYetEnabledDirs)) {
					foreach ($notYetEnabledDirs as $dir) {
						echo "<option value='" . $dir . "'>" . $dir . "</option>";
					}
				}

				if (!is_null($alreadyEnabledDirs)) {
					foreach ($alreadyEnabledDirs as $dir) {
						echo "<option disabled='' value='" . $dir . "'>" . $dir . "</option>";
					}
				}
			}
		}
		?>
	</select>
	<br>
	<input value="Valider" type="submit">
</form>

<?php

if (isset($_POST['dir']) AND isset($_SESSION['username'])) {

	antiCSRF();

	if (!in_array($_POST['dir'], $notYetEnabledDirs))
		userError("Wrong value for <code>dir</code>.");

	// Generate a .onion address
	$torConf = file_get_contents(CONF['ht']['tor_config_path']);
	$torConf = $torConf . "HiddenServiceDir " . CONF['ht']['tor_keys_path'] . "/" . $_POST['dir'] . "/
HiddenServicePort 80 [::1]:" . CONF['ht']['internal_onion_http_port'] . "
";
	file_put_contents(CONF['ht']['tor_config_path'], $torConf);

	exec(CONF['ht']['sudo_path'] . " " . CONF['ht']['systemctl_path'] . " reload tor", $output);
	addNiverLog("Tor reloaded by " . $_SESSION['username'], $output);

	// Copy generated address to a location readable by PHP
	exec(CONF['ht']['sudo_path'] . " " . MANIVER_PATH . " export-tor " . $_SESSION['username'] . " " . $_POST['dir'], $output);
	addNiverLog("Tor data exported by " . $_SESSION['username'], $output);

	// Wait
	sleep(1);

	// Get the address generated by Tor
	$onion = file_get_contents(CONF['ht']['ht_path'] . "/" . $_SESSION['username'] . "/" . $_POST['dir'] . "/hostname");
	$onion = str_replace(array("\r", "\n"), "", $onion);
	if (preg_match("/[0-9a-z]{56}\.onion/", $onion) !== 1)
		serverError("No onion address found.");

	// Store it in the database
	addSite($_SESSION['username'], $_POST['dir'], $onion, "onion", "http");

	// Add it to Nginx
	$nginxConf = file_get_contents(NIVER_TEMPLATE_PATH . "/nginx/onion.template");
	$nginxConf = str_replace("{{CONF['ht']['internal_onion_http_port']}}", CONF['ht']['internal_onion_http_port'], $nginxConf);
	$nginxConf = str_replace("{{DOMAIN}}", $onion, $nginxConf);
	$nginxConf = str_replace("{{CONF['ht']['ht_path']}}", CONF['ht']['ht_path'], $nginxConf);
	$nginxConf = str_replace("{{USERNAME}}", $_SESSION['username'], $nginxConf);
	$nginxConf = str_replace("{{DIR}}", $_POST['dir'], $nginxConf);
	file_put_contents(CONF['ht']['nginx_config_path'] . "/" . $_POST['dir'] . ".conf", $nginxConf);

	// Reload Nginx
	exec(CONF['ht']['sudo_path'] . " " . CONF['ht']['systemctl_path'] . " reload nginx", $output);
	addNiverLog("Nginx reloaded by " . $_SESSION['username'], $output);

	// Tell the user their site address
	echo "<p>L'adresse de votre site Onion HTTP est :<br><a href='http://" . $onion . "'<code>http://" . $onion . "</code></a></p>";

}

?>

<?php require "../../common/bottom.php"; ?>
Better segmentation between services 2022-04-23 01:57:43 +02:00			`<?php require "../../common/top.php"; ?>`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00			`<p>`
2 spaces > tab 2022-04-18 16:05:00 +02:00			`Ajouter un accès en .onion sur un dossier`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00			`</p>`

			`<form method="post">`
2 spaces > tab 2022-04-18 16:05:00 +02:00			`<label for="dir">Dossier ciblé</label><br>`
			`<select required="" name="dir" id="dir">`
			`<option value="" disabled="" selected="">---</option>`

			`<?php`

ht/ rework for onions step 1 2022-05-04 17:41:17 +02:00			`if (isset($_SESSION['username'])) {`

			`$fsDirs = listFsDirs($_SESSION['username']);`
			`$dbUsedDirs = listDbDirs($_SESSION['username'], "onion", "http");`
			`$i = 0;`
			`$j = 0;`
			`$alreadyEnabledDirs = NULL;`
			`$notYetEnabledDirs = NULL;`
			`if ($fsDirs) {`
			`foreach ($fsDirs as $fsDir) {`
			`if ($dbUsedDirs AND in_array($fsDir, $dbUsedDirs)) {`
			`$alreadyEnabledDirs[$i] = $fsDir;`
			`$i++;`
			`} else {`
			`$notYetEnabledDirs[$j] = $fsDir;`
			`$j++;`
			`}`
2 spaces > tab 2022-04-18 16:05:00 +02:00			`}`

ht/ rework for onions step 1 2022-05-04 17:41:17 +02:00			`if (!is_null($notYetEnabledDirs)) {`
			`foreach ($notYetEnabledDirs as $dir) {`
			`echo "<option value='" . $dir . "'>" . $dir . "</option>";`
			`}`
2 spaces > tab 2022-04-18 16:05:00 +02:00			`}`

ht/ rework for onions step 1 2022-05-04 17:41:17 +02:00			`if (!is_null($alreadyEnabledDirs)) {`
			`foreach ($alreadyEnabledDirs as $dir) {`
			`echo "<option disabled='' value='" . $dir . "'>" . $dir . "</option>";`
			`}`
2 spaces > tab 2022-04-18 16:05:00 +02:00			`}`
			`}`
			`}`
			`?>`
			`</select>`
			`<br>`
			`<input value="Valider" type="submit">`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00			`</form>`

			`<?php`

			`if (isset($_POST['dir']) AND isset($_SESSION['username'])) {`

2 spaces > tab 2022-04-18 16:05:00 +02:00			`antiCSRF();`
Add antiCSRF() in every form 2021-08-05 14:04:33 +02:00
2 spaces > tab 2022-04-18 16:05:00 +02:00			`if (!in_array($_POST['dir'], $notYetEnabledDirs))`
Use HTTP error codes, better error handling 2022-05-20 02:19:45 +02:00			`userError("Wrong value for <code>dir</code>.");`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00
2 spaces > tab 2022-04-18 16:05:00 +02:00			`// Generate a .onion address`
Use ini file for config + remove old SFTP page 2022-05-20 00:15:13 +02:00			`$torConf = file_get_contents(CONF['ht']['tor_config_path']);`
			`$torConf = $torConf . "HiddenServiceDir " . CONF['ht']['tor_keys_path'] . "/" . $_POST['dir'] . "/`
			`HiddenServicePort 80 [::1]:" . CONF['ht']['internal_onion_http_port'] . "`
ht/ rework for onions step 1 2022-05-04 17:41:17 +02:00			`";`
Use ini file for config + remove old SFTP page 2022-05-20 00:15:13 +02:00			`file_put_contents(CONF['ht']['tor_config_path'], $torConf);`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00
Use ini file for config + remove old SFTP page 2022-05-20 00:15:13 +02:00			`exec(CONF['ht']['sudo_path'] . " " . CONF['ht']['systemctl_path'] . " reload tor", $output);`
2 spaces > tab 2022-04-18 16:05:00 +02:00			`addNiverLog("Tor reloaded by " . $_SESSION['username'], $output);`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00
2 spaces > tab 2022-04-18 16:05:00 +02:00			`// Copy generated address to a location readable by PHP`
Use ini file for config + remove old SFTP page 2022-05-20 00:15:13 +02:00			`exec(CONF['ht']['sudo_path'] . " " . MANIVER_PATH . " export-tor " . $_SESSION['username'] . " " . $_POST['dir'], $output);`
2 spaces > tab 2022-04-18 16:05:00 +02:00			`addNiverLog("Tor data exported by " . $_SESSION['username'], $output);`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00
2 spaces > tab 2022-04-18 16:05:00 +02:00			`// Wait`
			`sleep(1);`
Reinstall on Debian 11 (and lots of small changes) 2021-07-15 15:36:34 +02:00
2 spaces > tab 2022-04-18 16:05:00 +02:00			`// Get the address generated by Tor`
Use ini file for config + remove old SFTP page 2022-05-20 00:15:13 +02:00			`$onion = file_get_contents(CONF['ht']['ht_path'] . "/" . $_SESSION['username'] . "/" . $_POST['dir'] . "/hostname");`
2 spaces > tab 2022-04-18 16:05:00 +02:00			`$onion = str_replace(array("\r", "\n"), "", $onion);`
ht/ rework for onions step 2 2022-05-04 21:18:43 +02:00			`if (preg_match("/[0-9a-z]{56}\.onion/", $onion) !== 1)`
Use HTTP error codes, better error handling 2022-05-20 02:19:45 +02:00			`serverError("No onion address found.");`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00
2 spaces > tab 2022-04-18 16:05:00 +02:00			`// Store it in the database`
			`addSite($_SESSION['username'], $_POST['dir'], $onion, "onion", "http");`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00
2 spaces > tab 2022-04-18 16:05:00 +02:00			`// Add it to Nginx`
			`$nginxConf = file_get_contents(NIVER_TEMPLATE_PATH . "/nginx/onion.template");`
Use ini file for config + remove old SFTP page 2022-05-20 00:15:13 +02:00			`$nginxConf = str_replace("{{CONF['ht']['internal_onion_http_port']}}", CONF['ht']['internal_onion_http_port'], $nginxConf);`
Remove Gemini references 2022-04-18 19:44:58 +02:00			`$nginxConf = str_replace("{{DOMAIN}}", $onion, $nginxConf);`
Use ini file for config + remove old SFTP page 2022-05-20 00:15:13 +02:00			`$nginxConf = str_replace("{{CONF['ht']['ht_path']}}", CONF['ht']['ht_path'], $nginxConf);`
Remove Gemini references 2022-04-18 19:44:58 +02:00			`$nginxConf = str_replace("{{USERNAME}}", $_SESSION['username'], $nginxConf);`
			`$nginxConf = str_replace("{{DIR}}", $_POST['dir'], $nginxConf);`
Use ini file for config + remove old SFTP page 2022-05-20 00:15:13 +02:00			`file_put_contents(CONF['ht']['nginx_config_path'] . "/" . $_POST['dir'] . ".conf", $nginxConf);`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00
2 spaces > tab 2022-04-18 16:05:00 +02:00			`// Reload Nginx`
Use ini file for config + remove old SFTP page 2022-05-20 00:15:13 +02:00			`exec(CONF['ht']['sudo_path'] . " " . CONF['ht']['systemctl_path'] . " reload nginx", $output);`
2 spaces > tab 2022-04-18 16:05:00 +02:00			`addNiverLog("Nginx reloaded by " . $_SESSION['username'], $output);`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00
2 spaces > tab 2022-04-18 16:05:00 +02:00			`// Tell the user their site address`
			`echo "<p>L'adresse de votre site Onion HTTP est :<br><a href='http://" . $onion . "'<code>http://" . $onion . "</code></a></p>";`
?, more checks on ht/ 2021-02-16 19:20:19 +01:00
			`}`

			`?>`

Better segmentation between services 2022-04-23 01:57:43 +02:00			`<?php require "../../common/bottom.php"; ?>`