GEANT /
CAT
@@ -12,52 +12,52 @@ |
||
| 12 | 12 | this is just an include file for Gui class definition |
| 13 | 13 | */ |
| 14 | 14 | $Faq = [ |
| 15 | - [ |
|
| 15 | + [ |
|
| 16 | 16 | 'id'=>'idp_not_listed', |
| 17 | 17 | 'title'=>sprintf(_("My %s is not listed. Can't I just use any of the other ones?"),$Gui->nomenclature_inst), |
| 18 | 18 | 'text'=>sprintf(_("No! The installers contain security settings which are specific to the %s. If you are not from that %s, your computer will detect that you are about to send your username and credential to an unauthorised server and will abort the login. Using a different %s installer is <i>guaranteed to not work</i>!"), $Gui->nomenclature_inst, $Gui->nomenclature_inst, $Gui->nomenclature_inst) |
| 19 | - ], |
|
| 20 | - [ |
|
| 19 | + ], |
|
| 20 | + [ |
|
| 21 | 21 | 'id'=>'idp_not_listed', |
| 22 | 22 | 'title'=>sprintf(_("What can I do to get my %s listed?"), $Gui->nomenclature_inst), |
| 23 | 23 | 'text'=>sprintf(_("Contact %s administrators at your %s and complain. It will take at most one hour of their time to get things done."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], $Gui->nomenclature_inst) |
| 24 | 24 | ], |
| 25 | - [ |
|
| 25 | + [ |
|
| 26 | 26 | 'id'=>'device_not_listed', |
| 27 | 27 | 'title'=>sprintf(_("My device is not listed! Does that mean I can't do %s?"),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
| 28 | 28 | 'text'=>sprintf(_("No. The CAT tool can only support Operating Systems which can be automatically configured in some way. Many other devices can still be used with %s, but must be configured manually. Please contact your %s Identity Provider to get help in setting up such a device."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']) |
| 29 | - ], |
|
| 29 | + ], |
|
| 30 | 30 | |
| 31 | - [ |
|
| 31 | + [ |
|
| 32 | 32 | 'title'=>sprintf(_("I can connect to %s simply by providing username and password, what is the point of using an installer?"),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
| 33 | 33 | 'text'=>sprintf(_("When you are connecting from an unconfigured device your security is at risk. The very point of preconfiguration is to set up security, when this is done, your device will first confirm that it talks to the correct authentication server and will never send your password to an untrusted one.")) |
| 34 | 34 | ], |
| 35 | - [ |
|
| 35 | + [ |
|
| 36 | 36 | 'title'=>sprintf(_("Is it safe to use %s installers?"),CONFIG['APPEARANCE']['productname']), |
| 37 | 37 | 'text'=>sprintf(_("%s installers configure security settings on your device, therefore you should be sure that you are using genuine ones."),CONFIG['APPEARANCE']['productname']).' '.( isset(CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']) && CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name'] != "" ? sprintf(_("This is why %s installers are digitally signed by %s. Watch out for a system message confirming this."),CONFIG['APPEARANCE']['productname'],CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']):""), |
| 38 | 38 | |
| 39 | 39 | ], |
| 40 | - [ |
|
| 40 | + [ |
|
| 41 | 41 | 'title'=>_("Windows 'SmartScreen' or 'Internet Explorer' tell me that the file is not commonly downloaded and possibly harmful. Should I be concerned?"), |
| 42 | 42 | 'text'=>_("Contrary to what the name suggests, 'SmartScreen' isn't actually very smart. The warning merely means that the file has not yet been downloaded by enough users to make Microsoft consider it popular (which would strangely enough make it be considered 'safe'). This message alone is not a security problem.")." ".(isset(CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']) && CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name'] != "" ? sprintf(_("So long as the file is carrying a valid signature from %s, the download is safe."),CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name'])." ":"").sprintf(_("Please see also Microsoft's FAQ regarding SmartScreen at %s."),"<a href='http://windows.microsoft.com/en-US/windows7/SmartScreen-Filter-frequently-asked-questions-IE9?SignedIn=1'>Microsoft FAQ</a>") |
| 43 | 43 | |
| 44 | 44 | ], |
| 45 | - [ |
|
| 45 | + [ |
|
| 46 | 46 | 'title'=>sprintf(_("I can see %s network and my device is configured but it does not connect, what can be the cause?"),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
| 47 | - 'text'=>sprintf(_("There can be a number of different reasons. The network you see may not be a genuine %s one and your device silently drops the connection attempt; there may be something wrong with the configuration of the network; your account may have expired; there may be a connection problem with your home authentication server; you may have broken the regulations of the network you are using and have been refused access as a consequence. You should contact your %s and report the problem, the administrators should be able to trace your connections."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], $Gui->nomenclature_inst) |
|
| 47 | + 'text'=>sprintf(_("There can be a number of different reasons. The network you see may not be a genuine %s one and your device silently drops the connection attempt; there may be something wrong with the configuration of the network; your account may have expired; there may be a connection problem with your home authentication server; you may have broken the regulations of the network you are using and have been refused access as a consequence. You should contact your %s and report the problem, the administrators should be able to trace your connections."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], $Gui->nomenclature_inst) |
|
| 48 | 48 | ], |
| 49 | - [ |
|
| 49 | + [ |
|
| 50 | 50 | 'id'=>'contact', |
| 51 | 51 | 'title'=>sprintf(_("I have a question about this web site. Whom should I contact?")), |
| 52 | 52 | 'text'=>sprintf(_("You should send a mail to %s."),CONFIG['APPEARANCE']['support-contact']['display']) |
| 53 | - ], |
|
| 53 | + ], |
|
| 54 | 54 | ]; |
| 55 | 55 | |
| 56 | 56 | if (CONFIG_CONFASSISTANT['CONSORTIUM']['name'] == "eduroam") { |
| 57 | - array_push($Faq, |
|
| 58 | - [ |
|
| 59 | - 'id'=>'what_is_'.CONFIG_CONFASSISTANT['CONSORTIUM']['name'], |
|
| 60 | - 'title'=>sprintf(_("What is this %s thing anyway?"), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
|
| 61 | - 'text'=>sprintf(_("%s is a global WiFi roaming consortium which gives members of education and research access to the internet <i>for free</i> on all %s hotspots on the planet. There are several million %s users already, enjoying free internet access on more than 6.000 hotspots! Visit <a href='http://www.eduroam.org'>the %s homepage</a> for more details."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']) |
|
| 62 | - ]); |
|
| 57 | + array_push($Faq, |
|
| 58 | + [ |
|
| 59 | + 'id'=>'what_is_'.CONFIG_CONFASSISTANT['CONSORTIUM']['name'], |
|
| 60 | + 'title'=>sprintf(_("What is this %s thing anyway?"), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
|
| 61 | + 'text'=>sprintf(_("%s is a global WiFi roaming consortium which gives members of education and research access to the internet <i>for free</i> on all %s hotspots on the planet. There are several million %s users already, enjoying free internet access on more than 6.000 hotspots! Visit <a href='http://www.eduroam.org'>the %s homepage</a> for more details."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']) |
|
| 62 | + ]); |
|
| 63 | 63 | } |
| 64 | 64 | \ No newline at end of file |
@@ -14,50 +14,50 @@ |
||
| 14 | 14 | $Faq = [ |
| 15 | 15 | [ |
| 16 | 16 | 'id'=>'idp_not_listed', |
| 17 | - 'title'=>sprintf(_("My %s is not listed. Can't I just use any of the other ones?"),$Gui->nomenclature_inst), |
|
| 17 | + 'title'=>sprintf(_("My %s is not listed. Can't I just use any of the other ones?"), $Gui->nomenclature_inst), |
|
| 18 | 18 | 'text'=>sprintf(_("No! The installers contain security settings which are specific to the %s. If you are not from that %s, your computer will detect that you are about to send your username and credential to an unauthorised server and will abort the login. Using a different %s installer is <i>guaranteed to not work</i>!"), $Gui->nomenclature_inst, $Gui->nomenclature_inst, $Gui->nomenclature_inst) |
| 19 | 19 | ], |
| 20 | 20 | [ |
| 21 | 21 | 'id'=>'idp_not_listed', |
| 22 | 22 | 'title'=>sprintf(_("What can I do to get my %s listed?"), $Gui->nomenclature_inst), |
| 23 | - 'text'=>sprintf(_("Contact %s administrators at your %s and complain. It will take at most one hour of their time to get things done."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], $Gui->nomenclature_inst) |
|
| 23 | + 'text'=>sprintf(_("Contact %s administrators at your %s and complain. It will take at most one hour of their time to get things done."), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], $Gui->nomenclature_inst) |
|
| 24 | 24 | ], |
| 25 | 25 | [ |
| 26 | 26 | 'id'=>'device_not_listed', |
| 27 | - 'title'=>sprintf(_("My device is not listed! Does that mean I can't do %s?"),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
|
| 28 | - 'text'=>sprintf(_("No. The CAT tool can only support Operating Systems which can be automatically configured in some way. Many other devices can still be used with %s, but must be configured manually. Please contact your %s Identity Provider to get help in setting up such a device."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']) |
|
| 27 | + 'title'=>sprintf(_("My device is not listed! Does that mean I can't do %s?"), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
|
| 28 | + 'text'=>sprintf(_("No. The CAT tool can only support Operating Systems which can be automatically configured in some way. Many other devices can still be used with %s, but must be configured manually. Please contact your %s Identity Provider to get help in setting up such a device."), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']) |
|
| 29 | 29 | ], |
| 30 | 30 | |
| 31 | 31 | [ |
| 32 | - 'title'=>sprintf(_("I can connect to %s simply by providing username and password, what is the point of using an installer?"),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
|
| 32 | + 'title'=>sprintf(_("I can connect to %s simply by providing username and password, what is the point of using an installer?"), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
|
| 33 | 33 | 'text'=>sprintf(_("When you are connecting from an unconfigured device your security is at risk. The very point of preconfiguration is to set up security, when this is done, your device will first confirm that it talks to the correct authentication server and will never send your password to an untrusted one.")) |
| 34 | 34 | ], |
| 35 | 35 | [ |
| 36 | - 'title'=>sprintf(_("Is it safe to use %s installers?"),CONFIG['APPEARANCE']['productname']), |
|
| 37 | - 'text'=>sprintf(_("%s installers configure security settings on your device, therefore you should be sure that you are using genuine ones."),CONFIG['APPEARANCE']['productname']).' '.( isset(CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']) && CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name'] != "" ? sprintf(_("This is why %s installers are digitally signed by %s. Watch out for a system message confirming this."),CONFIG['APPEARANCE']['productname'],CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']):""), |
|
| 36 | + 'title'=>sprintf(_("Is it safe to use %s installers?"), CONFIG['APPEARANCE']['productname']), |
|
| 37 | + 'text'=>sprintf(_("%s installers configure security settings on your device, therefore you should be sure that you are using genuine ones."), CONFIG['APPEARANCE']['productname']) . ' ' . (isset(CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']) && CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name'] != "" ? sprintf(_("This is why %s installers are digitally signed by %s. Watch out for a system message confirming this."), CONFIG['APPEARANCE']['productname'], CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']) : ""), |
|
| 38 | 38 | |
| 39 | 39 | ], |
| 40 | 40 | [ |
| 41 | 41 | 'title'=>_("Windows 'SmartScreen' or 'Internet Explorer' tell me that the file is not commonly downloaded and possibly harmful. Should I be concerned?"), |
| 42 | - 'text'=>_("Contrary to what the name suggests, 'SmartScreen' isn't actually very smart. The warning merely means that the file has not yet been downloaded by enough users to make Microsoft consider it popular (which would strangely enough make it be considered 'safe'). This message alone is not a security problem.")." ".(isset(CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']) && CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name'] != "" ? sprintf(_("So long as the file is carrying a valid signature from %s, the download is safe."),CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name'])." ":"").sprintf(_("Please see also Microsoft's FAQ regarding SmartScreen at %s."),"<a href='http://windows.microsoft.com/en-US/windows7/SmartScreen-Filter-frequently-asked-questions-IE9?SignedIn=1'>Microsoft FAQ</a>") |
|
| 42 | + 'text'=>_("Contrary to what the name suggests, 'SmartScreen' isn't actually very smart. The warning merely means that the file has not yet been downloaded by enough users to make Microsoft consider it popular (which would strangely enough make it be considered 'safe'). This message alone is not a security problem.") . " " . (isset(CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']) && CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name'] != "" ? sprintf(_("So long as the file is carrying a valid signature from %s, the download is safe."), CONFIG_CONFASSISTANT['CONSORTIUM']['signer_name']) . " " : "") . sprintf(_("Please see also Microsoft's FAQ regarding SmartScreen at %s."), "<a href='http://windows.microsoft.com/en-US/windows7/SmartScreen-Filter-frequently-asked-questions-IE9?SignedIn=1'>Microsoft FAQ</a>") |
|
| 43 | 43 | |
| 44 | 44 | ], |
| 45 | 45 | [ |
| 46 | - 'title'=>sprintf(_("I can see %s network and my device is configured but it does not connect, what can be the cause?"),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
|
| 47 | - 'text'=>sprintf(_("There can be a number of different reasons. The network you see may not be a genuine %s one and your device silently drops the connection attempt; there may be something wrong with the configuration of the network; your account may have expired; there may be a connection problem with your home authentication server; you may have broken the regulations of the network you are using and have been refused access as a consequence. You should contact your %s and report the problem, the administrators should be able to trace your connections."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], $Gui->nomenclature_inst) |
|
| 46 | + 'title'=>sprintf(_("I can see %s network and my device is configured but it does not connect, what can be the cause?"), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
|
| 47 | + 'text'=>sprintf(_("There can be a number of different reasons. The network you see may not be a genuine %s one and your device silently drops the connection attempt; there may be something wrong with the configuration of the network; your account may have expired; there may be a connection problem with your home authentication server; you may have broken the regulations of the network you are using and have been refused access as a consequence. You should contact your %s and report the problem, the administrators should be able to trace your connections."), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], $Gui->nomenclature_inst) |
|
| 48 | 48 | ], |
| 49 | 49 | [ |
| 50 | 50 | 'id'=>'contact', |
| 51 | 51 | 'title'=>sprintf(_("I have a question about this web site. Whom should I contact?")), |
| 52 | - 'text'=>sprintf(_("You should send a mail to %s."),CONFIG['APPEARANCE']['support-contact']['display']) |
|
| 52 | + 'text'=>sprintf(_("You should send a mail to %s."), CONFIG['APPEARANCE']['support-contact']['display']) |
|
| 53 | 53 | ], |
| 54 | 54 | ]; |
| 55 | 55 | |
| 56 | 56 | if (CONFIG_CONFASSISTANT['CONSORTIUM']['name'] == "eduroam") { |
| 57 | 57 | array_push($Faq, |
| 58 | 58 | [ |
| 59 | - 'id'=>'what_is_'.CONFIG_CONFASSISTANT['CONSORTIUM']['name'], |
|
| 59 | + 'id'=>'what_is_' . CONFIG_CONFASSISTANT['CONSORTIUM']['name'], |
|
| 60 | 60 | 'title'=>sprintf(_("What is this %s thing anyway?"), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']), |
| 61 | - 'text'=>sprintf(_("%s is a global WiFi roaming consortium which gives members of education and research access to the internet <i>for free</i> on all %s hotspots on the planet. There are several million %s users already, enjoying free internet access on more than 6.000 hotspots! Visit <a href='http://www.eduroam.org'>the %s homepage</a> for more details."),CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'],CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']) |
|
| 61 | + 'text'=>sprintf(_("%s is a global WiFi roaming consortium which gives members of education and research access to the internet <i>for free</i> on all %s hotspots on the planet. There are several million %s users already, enjoying free internet access on more than 6.000 hotspots! Visit <a href='http://www.eduroam.org'>the %s homepage</a> for more details."), CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], CONFIG_CONFASSISTANT['CONSORTIUM']['display_name']) |
|
| 62 | 62 | ]); |
| 63 | 63 | } |
| 64 | 64 | \ No newline at end of file |
@@ -137,7 +137,7 @@ |
||
| 137 | 137 | $dummy_inst2 = _("organisation"); |
| 138 | 138 | $dummy_inst3 = _("Identity Provider"); |
| 139 | 139 | // and do something useless with the strings so that there's no "unused" complaint |
| 140 | - if (strlen($dummy_NRO . $dummy_inst1 . $dummy_inst2 . $dummy_inst3) < 0 ) { |
|
| 140 | + if (strlen($dummy_NRO . $dummy_inst1 . $dummy_inst2 . $dummy_inst3) < 0) { |
|
| 141 | 141 | throw new Exception("Strings are usually not shorter than 0 characters. We've encountered a string blackhole."); |
| 142 | 142 | } |
| 143 | 143 | |
@@ -51,7 +51,7 @@ |
||
| 51 | 51 | throw new Exception("POSTed EAP type value is not an integer!"); |
| 52 | 52 | } |
| 53 | 53 | // conversion routine throws an exception if the EAP type id is not known |
| 54 | - $eaptype = new \core\common\EAP((int)$posted_eaptype); |
|
| 54 | + $eaptype = new \core\common\EAP((int) $posted_eaptype); |
|
| 55 | 55 | } |
| 56 | 56 | |
| 57 | 57 | // there is either one or the other. If both are set, something's fishy. |
@@ -43,7 +43,7 @@ |
||
| 43 | 43 | } |
| 44 | 44 | break; |
| 45 | 45 | case 'about': |
| 46 | - $out = sprintf(_("<span class='edu_cat'>%s</span> is built as a cooperation platform.<p>Local %s administrators enter their %s configuration details and based on them, <span class='edu_cat'>%s</span> builds customised installers for a number of popular platforms. An installer prepared for one %s will not work for users of another one, therefore if your %s is not on the list, you cannot use this system. Please contact your local administrators and try to influence them to add your %s configuration to <span class='edu_cat'>%s</span>."), CONFIG['APPEARANCE']['productname'], CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], CONFIG['APPEARANCE']['productname'],$skinObject->nomenclature_inst, $skinObject->nomenclature_inst, $skinObject->nomenclature_inst, CONFIG['APPEARANCE']['productname']); |
|
| 46 | + $out = sprintf(_("<span class='edu_cat'>%s</span> is built as a cooperation platform.<p>Local %s administrators enter their %s configuration details and based on them, <span class='edu_cat'>%s</span> builds customised installers for a number of popular platforms. An installer prepared for one %s will not work for users of another one, therefore if your %s is not on the list, you cannot use this system. Please contact your local administrators and try to influence them to add your %s configuration to <span class='edu_cat'>%s</span>."), CONFIG['APPEARANCE']['productname'], CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], CONFIG_CONFASSISTANT['CONSORTIUM']['display_name'], CONFIG['APPEARANCE']['productname'], $skinObject->nomenclature_inst, $skinObject->nomenclature_inst, $skinObject->nomenclature_inst, CONFIG['APPEARANCE']['productname']); |
|
| 47 | 47 | $out .= "<p>" . sprintf(_("<span class='edu_cat'>%s</span> currently supports the following devices and EAP type combinations:"), CONFIG['APPEARANCE']['productname']) . "</p>"; |
| 48 | 48 | $out .= "<table><tr><th>" . _("Device Group") . "</th><th>" . _("Device") . "</th>"; |
| 49 | 49 | foreach (\core\common\EAP::listKnownEAPTypes() as $oneeap) { |
@@ -96,6 +96,12 @@ discard block |
||
| 96 | 96 | */ |
| 97 | 97 | protected $frontendHandle; |
| 98 | 98 | |
| 99 | + /** |
|
| 100 | + * @param integer $idpIdentifier |
|
| 101 | + * @param string $deviceId |
|
| 102 | + * @param string $area |
|
| 103 | + * @param string $lang |
|
| 104 | + */ |
|
| 99 | 105 | protected function saveDownloadDetails($idpIdentifier, $profileId, $deviceId, $area, $lang, $eapType) { |
| 100 | 106 | if (CONFIG['PATHS']['logdir']) { |
| 101 | 107 | $f = fopen(CONFIG['PATHS']['logdir'] . "/download_details.log", "a"); |
@@ -285,6 +291,9 @@ discard block |
||
| 285 | 291 | * |
| 286 | 292 | * @param string device the device identifier string |
| 287 | 293 | * @param string path the path where the new installer can be found |
| 294 | + * @param string $device |
|
| 295 | + * @param string $path |
|
| 296 | + * @param integer $integerEapType |
|
| 288 | 297 | */ |
| 289 | 298 | abstract public function updateCache($device, $path, $mime, $integerEapType); |
| 290 | 299 | |
@@ -600,7 +609,7 @@ discard block |
||
| 600 | 609 | * it? Silverbullet will always return TRUE; RADIUS profiles need to do some |
| 601 | 610 | * heavy lifting here. |
| 602 | 611 | * |
| 603 | - * * @return boolean TRUE if enough info is set to enable installers |
|
| 612 | + * * @return integer TRUE if enough info is set to enable installers |
|
| 604 | 613 | */ |
| 605 | 614 | public function readinessLevel() { |
| 606 | 615 | $result = $this->databaseHandle->exec("SELECT sufficient_config, showtime FROM profile WHERE profile_id = ?", "i", $this->identifier); |
@@ -70,7 +70,7 @@ discard block |
||
| 70 | 70 | |
| 71 | 71 | $this->realm = $profileQuery->realm; |
| 72 | 72 | |
| 73 | - $localValueIfAny = (preg_match('/@/', $this->realm) ? substr($this->realm, 0, strpos($this->realm, '@')) : "anonymous" ); |
|
| 73 | + $localValueIfAny = (preg_match('/@/', $this->realm) ? substr($this->realm, 0, strpos($this->realm, '@')) : "anonymous"); |
|
| 74 | 74 | |
| 75 | 75 | $internalAttributes = [ |
| 76 | 76 | "internal:profile_count" => $this->idpNumberOfProfiles, |
@@ -167,7 +167,7 @@ discard block |
||
| 167 | 167 | "row" => $attributeQuery->row, |
| 168 | 168 | "flag" => $optinfo['flag'], |
| 169 | 169 | "device" => ($devicesOrEAPMethods == "DEVICES" ? $attributeQuery->deviceormethod : NULL), |
| 170 | - "eapmethod" => ($devicesOrEAPMethods == "DEVICES" ? 0 : (new \core\common\EAP($attributeQuery->deviceormethod))->getArrayRep() )]; |
|
| 170 | + "eapmethod" => ($devicesOrEAPMethods == "DEVICES" ? 0 : (new \core\common\EAP($attributeQuery->deviceormethod))->getArrayRep())]; |
|
| 171 | 171 | } |
| 172 | 172 | return $temparray; |
| 173 | 173 | } |
@@ -267,7 +267,7 @@ discard block |
||
| 267 | 267 | */ |
| 268 | 268 | public function setRealmCheckUser($shallwe, $localpart = NULL) { |
| 269 | 269 | $this->databaseHandle->exec("UPDATE profile SET checkuser_outer = " . ($shallwe === true ? "1" : "0") . |
| 270 | - ( $localpart !== NULL ? ", checkuser_value = '$localpart' " : "") . |
|
| 270 | + ($localpart !== NULL ? ", checkuser_value = '$localpart' " : "") . |
|
| 271 | 271 | " WHERE profile_id = $this->identifier"); |
| 272 | 272 | } |
| 273 | 273 | |
@@ -167,10 +167,10 @@ |
||
| 167 | 167 | $checks[] = ["realm" => $sanitised_realm, "instance" => new \core\diag\RADIUSTests($sanitised_realm, $profile->getRealmCheckOuterUsername(), $profile->getEapMethodsinOrderOfPreference(1), $profile->getCollapsedAttributes()['eap:server_name'], $profile->getCollapsedAttributes()['eap:ca_file']), "class" => "CAT", "profile" => $profile]; |
| 168 | 168 | echo "Debugging CAT Profile $profile_id for $sanitised_realm<br/>"; |
| 169 | 169 | } else if (!empty($cat->getExternalDBEntityDetails(0, $realm))) { |
| 170 | - $checks[] = ["realm" => $sanitised_realm, "instance" => new \core\diag\RADIUSTests($sanitised_realm, "@".$sanitised_realm), "class" => "EXT_DB"]; |
|
| 170 | + $checks[] = ["realm" => $sanitised_realm, "instance" => new \core\diag\RADIUSTests($sanitised_realm, "@" . $sanitised_realm), "class" => "EXT_DB"]; |
|
| 171 | 171 | echo "Debugging non-CAT but existing realm $sanitised_realm<br/>"; |
| 172 | 172 | } else { |
| 173 | - $checks[] = ["realm" => $sanitised_realm, "instance" => new \core\diag\RADIUSTests($sanitised_realm, "@".$sanitised_realm), "class" => "ALIEN"]; |
|
| 173 | + $checks[] = ["realm" => $sanitised_realm, "instance" => new \core\diag\RADIUSTests($sanitised_realm, "@" . $sanitised_realm), "class" => "ALIEN"]; |
|
| 174 | 174 | echo "Debugging non-existing realm $sanitised_realm<br/>"; |
| 175 | 175 | } |
| 176 | 176 | } |
@@ -134,8 +134,9 @@ discard block |
||
| 134 | 134 | array_multisort($name, SORT_ASC, SORT_LOCALE_STRING, $displaylist); |
| 135 | 135 | setlocale(LC_ALL, $current_locale); |
| 136 | 136 | |
| 137 | - foreach ($displaylist as $id => $oneinst) |
|
| 138 | - echo "<option id='" . $id . "' value='" . $oneinst['realmlist'] . "'>" . $oneinst['name'] . "</option>"; |
|
| 137 | + foreach ($displaylist as $id => $oneinst) { |
|
| 138 | + echo "<option id='" . $id . "' value='" . $oneinst['realmlist'] . "'>" . $oneinst['name'] . "</option>"; |
|
| 139 | + } |
|
| 139 | 140 | ?> |
| 140 | 141 | </select> |
| 141 | 142 | <button type='submit' class='submit'><?php echo _("Submit Information"); ?></button> |
@@ -198,10 +199,12 @@ discard block |
||
| 198 | 199 | $checkresult[$number] = $check['instance']->udpReachability($number, FALSE, FALSE); |
| 199 | 200 | if ($checkresult[$number] == \core\diag\RADIUSTests::RETVAL_CONVERSATION_REJECT) { // so now things work?! |
| 200 | 201 | // either a packet size or Operator-Name problem! |
| 201 | - if ($check['instance']->udpReachability($number, TRUE, FALSE) != \core\diag\RADIUSTests::RETVAL_CONVERSATION_REJECT) |
|
| 202 | - $realmproblems[] = ["REALM" => $check['realm'], "STATUS" => "OPERATOR-NAME", "FROM" => $probe['display_name'], "DETAIL" => ""]; |
|
| 203 | - if ($check['instance']->udpReachability($number, FALSE, TRUE) != \core\diag\RADIUSTests::RETVAL_CONVERSATION_REJECT) |
|
| 204 | - $realmproblems[] = ["REALM" => $check['realm'], "STATUS" => "PACKETSIZE", "FROM" => $probe['display_name'], "DETAIL" => ""]; |
|
| 202 | + if ($check['instance']->udpReachability($number, TRUE, FALSE) != \core\diag\RADIUSTests::RETVAL_CONVERSATION_REJECT) { |
|
| 203 | + $realmproblems[] = ["REALM" => $check['realm'], "STATUS" => "OPERATOR-NAME", "FROM" => $probe['display_name'], "DETAIL" => ""]; |
|
| 204 | + } |
|
| 205 | + if ($check['instance']->udpReachability($number, FALSE, TRUE) != \core\diag\RADIUSTests::RETVAL_CONVERSATION_REJECT) { |
|
| 206 | + $realmproblems[] = ["REALM" => $check['realm'], "STATUS" => "PACKETSIZE", "FROM" => $probe['display_name'], "DETAIL" => ""]; |
|
| 207 | + } |
|
| 205 | 208 | } else { // still no response or immediate reject |
| 206 | 209 | // if this is a CAT realm with anon ID set, we can't be seeing an NPS ignorance problem |
| 207 | 210 | // and consequently, the realm has actual issues |
@@ -235,12 +238,13 @@ discard block |
||
| 235 | 238 | // re-write check history with that extra knowledge |
| 236 | 239 | $copycat = $realmproblems; |
| 237 | 240 | |
| 238 | - foreach ($realmproblems as &$problem) |
|
| 239 | - if ($problem['STATUS'] == "REALM_POSSIBLY_NPS") |
|
| 241 | + foreach ($realmproblems as &$problem) { |
|
| 242 | + if ($problem['STATUS'] == "REALM_POSSIBLY_NPS") |
|
| 240 | 243 | foreach ($copycat as $otherproblem) |
| 241 | 244 | if ($problem['REALM'] == $otherproblem['REALM'] && $problem['FROM'] != $otherproblem['FROM'] && $otherproblem['STATUS'] != "REALM_POSSIBLY_NPS") |
| 242 | 245 | if ($otherproblem['STATUS'] == "REACHABLE") { // worked elsewhere, but not on this probe: |
| 243 | 246 | $problem['STATUS'] = "REALM_DOWN"; |
| 247 | + } |
|
| 244 | 248 | } else { // inherit other problem; in any case not an NPS problem |
| 245 | 249 | $problem['STATUS'] = $otherproblem['STATUS']; |
| 246 | 250 | } |
@@ -250,11 +254,12 @@ discard block |
||
| 250 | 254 | |
| 251 | 255 | $copycat = $realmproblems; |
| 252 | 256 | |
| 253 | - foreach ($realmproblems as &$problem) |
|
| 254 | - if ($problem['STATUS'] == "REALM_DOWN") |
|
| 257 | + foreach ($realmproblems as &$problem) { |
|
| 258 | + if ($problem['STATUS'] == "REALM_DOWN") |
|
| 255 | 259 | foreach ($copycat as $otherproblem) |
| 256 | 260 | if ($problem['REALM'] == $otherproblem['REALM'] && $problem['FROM'] != $otherproblem['FROM'] && $otherproblem['STATUS'] == "REACHABLE") |
| 257 | 261 | $problem['STATUS'] = "INFRASTRUCTURE"; |
| 262 | + } |
|
| 258 | 263 | unset($problem); |
| 259 | 264 | |
| 260 | 265 | // finally, extract all certprobs we got from the reachability checks; merge from all |
@@ -265,8 +270,9 @@ discard block |
||
| 265 | 270 | foreach ($checks as $check) { |
| 266 | 271 | $instance = $check['instance']; |
| 267 | 272 | $resultset = $instance->UDP_reachability_result; |
| 268 | - foreach ($resultset as $result) |
|
| 269 | - $all_certprobs = array_merge($all_certprobs, $result['cert_oddities']); |
|
| 273 | + foreach ($resultset as $result) { |
|
| 274 | + $all_certprobs = array_merge($all_certprobs, $result['cert_oddities']); |
|
| 275 | + } |
|
| 270 | 276 | } |
| 271 | 277 | |
| 272 | 278 | // now we have something to say... |
@@ -27,7 +27,7 @@ discard block |
||
| 27 | 27 | |
| 28 | 28 | function disp_name($eap) { |
| 29 | 29 | $displayName = EAP::eapDisplayName($eap); |
| 30 | - return $displayName['OUTER'] . ( $displayName['INNER'] != '' ? '-' . $displayName['INNER'] : ''); |
|
| 30 | + return $displayName['OUTER'] . ($displayName['INNER'] != '' ? '-' . $displayName['INNER'] : ''); |
|
| 31 | 31 | } |
| 32 | 32 | |
| 33 | 33 | if (!isset($_REQUEST['test_type']) || !$_REQUEST['test_type']) { |
@@ -50,7 +50,7 @@ discard block |
||
| 50 | 50 | $testsuite = new \core\diag\RADIUSTests($check_realm, $my_profile->getRealmCheckOuterUsername(), $my_profile->getEapMethodsinOrderOfPreference(1), $my_profile->getCollapsedAttributes()['eap:server_name'], $my_profile->getCollapsedAttributes()['eap:ca_file']); |
| 51 | 51 | } else { |
| 52 | 52 | $my_profile = NULL; |
| 53 | - $testsuite = new \core\diag\RADIUSTests($check_realm, "@".$check_realm); |
|
| 53 | + $testsuite = new \core\diag\RADIUSTests($check_realm, "@" . $check_realm); |
|
| 54 | 54 | } |
| 55 | 55 | |
| 56 | 56 | |
@@ -66,7 +66,7 @@ discard block |
||
| 66 | 66 | // contains port number; needs to be redacted for filter_var to work |
| 67 | 67 | // in any case, it's a printable string, so filter it initially |
| 68 | 68 | |
| 69 | - $filteredHost = filter_input(INPUT_GET,'src', FILTER_SANITIZE_STRING) ?? filter_input(INPUT_POST,'src', FILTER_SANITIZE_STRING); |
|
| 69 | + $filteredHost = filter_input(INPUT_GET, 'src', FILTER_SANITIZE_STRING) ?? filter_input(INPUT_POST, 'src', FILTER_SANITIZE_STRING); |
|
| 70 | 70 | $hostonly1 = preg_replace('/:[0-9]*$/', "", $filteredHost); |
| 71 | 71 | $hostonly2 = preg_replace('/^\[/', "", $hostonly1); |
| 72 | 72 | $hostonly3 = preg_replace('/\]$/', "", $hostonly2); |
@@ -295,12 +295,12 @@ discard block |
||
| 295 | 295 | $returnarray['time_millisec'] = sprintf("%d", $testsuite->UDP_reachability_result[$host]['time_millisec']); |
| 296 | 296 | |
| 297 | 297 | if (preg_match('/verify error:num=19/', implode($opensslbabble))) { |
| 298 | - $printedres .= "<tr><td>"._("<strong>ERROR</strong>: the server presented a certificate which is from an unknown authority!") . $measure ."</td></tr>"; |
|
| 298 | + $printedres .= "<tr><td>" . _("<strong>ERROR</strong>: the server presented a certificate which is from an unknown authority!") . $measure . "</td></tr>"; |
|
| 299 | 299 | $my_ip_addrs[$key]["status"] = "FAILED"; |
| 300 | 300 | $goterror = 1; |
| 301 | 301 | } |
| 302 | 302 | if (preg_match('/verify return:1/', implode($opensslbabble))) { |
| 303 | - $printedres .= "<tr><td>"._("Completed.") . $measure . "</td></tr>"; |
|
| 303 | + $printedres .= "<tr><td>" . _("Completed.") . $measure . "</td></tr>"; |
|
| 304 | 304 | $printedres .= "<tr><td></td><td><div class=\"more\">"; |
| 305 | 305 | $my_ip_addrs[$key]["status"] = "OK"; |
| 306 | 306 | $servercertRaw = implode("\n", $opensslbabble); |
@@ -40,8 +40,7 @@ discard block |
||
| 40 | 40 | $leftNum = (int) preg_replace($pat, $rep, $left); |
| 41 | 41 | $rightNum = (int) preg_replace($pat, $rep, $right); |
| 42 | 42 | return ($left != $leftNum && $right != $rightNum) ? |
| 43 | - $leftNum - $rightNum : |
|
| 44 | - strcmp($left, $right); |
|
| 43 | + $leftNum - $rightNum : strcmp($left, $right); |
|
| 45 | 44 | } |
| 46 | 45 | |
| 47 | 46 | |
@@ -118,8 +117,8 @@ discard block |
||
| 118 | 117 | $therealm = ""; |
| 119 | 118 | $theanonid = "anonymous"; |
| 120 | 119 | $useAnon = FALSE; |
| 121 | - $stringValuesFiltered = filter_input(INPUT_POST,'value', FILTER_SANITIZE_STRING, FILTER_REQUIRE_ARRAY); |
|
| 122 | - $intValuesFiltered = filter_input(INPUT_POST,'value', FILTER_SANITIZE_NUMBER_INT, FILTER_REQUIRE_ARRAY); |
|
| 120 | + $stringValuesFiltered = filter_input(INPUT_POST, 'value', FILTER_SANITIZE_STRING, FILTER_REQUIRE_ARRAY); |
|
| 121 | + $intValuesFiltered = filter_input(INPUT_POST, 'value', FILTER_SANITIZE_NUMBER_INT, FILTER_REQUIRE_ARRAY); |
|
| 123 | 122 | $pref = 0; |
| 124 | 123 | foreach ($_POST['option'] as $optindex => $optname) { |
| 125 | 124 | switch ($optname) { |
@@ -145,7 +144,7 @@ discard block |
||
| 145 | 144 | |
| 146 | 145 | if (isset($intValuesFiltered[$optindex . "-0"])) { |
| 147 | 146 | $filteredType = $intValuesFiltered[$optindex . "-0"]; |
| 148 | - if ($filteredType <0 || $filteredType >8) { |
|
| 147 | + if ($filteredType < 0 || $filteredType > 8) { |
|
| 149 | 148 | break; |
| 150 | 149 | } |
| 151 | 150 | $newprofile->addSupportedEapMethod(new \core\common\EAP($filteredType), $pref); |
