<?php
require('../conf/config.php3');
+require('../lib/attrshow.php3');
+require('../lib/sql/nas_list.php3');
+require_once('../lib/xlat.php3');
?>
<html>
<?php
else{
echo <<<EOM
<title>Failed logins</title>
+<meta http-equiv="Content-Type" content="text/html; charset=$config[general_charset]">
<link rel="stylesheet" href="style.css">
</head>
-<body bgcolor="#80a040" background="images/greenlines1.gif" link="black" alink="black">
+<body>
<center>
<b>Could not include SQL library functions. Aborting</b>
</body>
}
$now = time();
-if ($last == 0)
+if (!isset($last))
$last = ($config[general_most_recent_fl]) ? $config[general_most_recent_fl] : 5;
+if (!is_numeric($last))
+ $last = 5;
$start = $now - ($last*60);
$now_str = date($config[sql_full_date_format],$now);
$prev_str = date($config[sql_full_date_format],$start);
+
+$now_str = da_sql_escape_string($now_str);
+$prev_str = da_sql_escape_string($prev_str);
+
$pagesize = ($pagesize) ? $pagesize : 10;
-$limit = ($pagesize == 'all') ? '' : "LIMIT $pagesize";
+if (!is_numeric($pagesize) && $pagesize != 'all')
+ $pagesize = 10;
+$limit = ($pagesize == 'all') ? '' : "$pagesize";
$selected[$pagesize] = 'selected';
-$order = ($order) ? $order : $config[general_accounting_info_order];
+$order = ($order != '') ? $order : $config[general_accounting_info_order];
if ($order != 'desc' && $order != 'asc')
$order = 'desc';
$selected[$order] = 'selected';
-if ($callerid != '')
- $callerid_str = "AND CallingStationId = '$callerid'";
+if ($callerid != ''){
+ $callerid = da_sql_escape_string($callerid);
+ $callerid_str = "AND callingstationid = '$callerid'";
+}
+if ($server != '' && $server != 'all'){
+ $server = da_sql_escape_string($server);
+ $server_str = "AND nasipaddress = '$server'";
+}
+
+unset($da_name_cache);
+if (isset($_SESSION['da_name_cache']))
+ $da_name_cache = $_SESSION['da_name_cache'];
?>
<head>
<title>Failed Logins</title>
+<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $config[general_charset]?>">
<link rel="stylesheet" href="style.css">
</head>
-<body bgcolor="#80a040" background="images/greenlines1.gif" link="black" alink="black">
+<body>
<center>
<table border=0 width=550 cellpadding=0 cellspacing=0>
<tr valign=top>
<p>
<table border=1 bordercolordark=#ffffe0 bordercolorlight=#000000 width=100% cellpadding=2 cellspacing=0 bgcolor="#ffffe0" valign=top>
<tr bgcolor="#d0ddb0">
- <th>#</th><th>login</th><th>time</th><th>server</th><th>terminate cause</th><th>callerid</th>
+ <th>#</th><th>login</th>
+<?php
+if ($acct_attrs['fl'][2] != '') echo "<th>" . $acct_attrs['fl'][2] . "</th>\n";
+if ($acct_attrs['fl'][7] != '') echo "<th>" . $acct_attrs['fl'][7] . "</th>\n";
+if ($acct_attrs['fl'][8] != '') echo "<th>" . $acct_attrs['fl'][8] . "</th>\n";
+if ($acct_attrs['fl'][9] != '') echo "<th>" . $acct_attrs['fl'][9] . "</th>\n";
+unset($sql_extra_query);
+if ($config[sql_accounting_extra_query] != ''){
+ $sql_extra_query = xlat($config[sql_accounting_extra_query],$login,$config);
+ $sql_extra_query = da_sql_escape_string($sql_extra_query);
+}
+?>
</tr>
<?php
$link = @da_sql_pconnect($config);
if ($link){
$search = @da_sql_query($link,$config,
- "SELECT AcctStartTime,UserName,NASIPAddress,NASPortId,AcctTerminateCause,CallingStationId
+ "SELECT " . da_sql_limit($limit,0,$config) . " acctstoptime,username,nasipaddress,nasportid,acctterminatecause,callingstationid
FROM $config[sql_accounting_table]
- WHERE AcctStartTime <= '$now_str' AND AcctStartTime >= '$prev_str'
- AND AcctTerminateCause LIKE 'Login-Incorrect%' OR
- AcctTerminateCause LIKE 'Invalid-User%' OR
- AcctTerminateCause LIKE 'Multiple-Logins%' $callerid_str
- ORDER BY AcctStartTime $order $limit;");
+ WHERE acctstoptime <= '$now_str' AND acctstoptime >= '$prev_str'
+ AND (acctterminatecause LIKE 'Login-Incorrect%' OR
+ acctterminatecause LIKE 'Invalid-User%' OR
+ acctterminatecause LIKE 'Multiple-Logins%') $callerid_str $server_str $sql_extra_query " . da_sql_limit($limit,1,$config) .
+ " ORDER BY acctstoptime $order " . da_sql_limit($limit,2,$config) . " ;");
if ($search){
while( $row = @da_sql_fetch_array($search,$config) ){
$num++;
- $acct_login = $row[UserName];
+ $acct_login = $row[username];
if ($acct_login == '')
$acct_login = '-';
else
$acct_login = "<a href=\"user_admin.php3?login=$acct_login\" title=\"Edit user $acct_login\">$acct_login</a>";
- $acct_time = $row[AcctStartTime];
- $acct_server = $da_name_cache[$row[NASIPAddress]];
- if (!isset($acct_server)){
- $acct_server = gethostbyaddr($row[NASIPAddress]);
- if (!isset($da_name_cache) && $config[general_use_session] == 'yes'){
- $da_name_cache[$row[NASIPAddress]] = $acct_server;
- session_register('da_name_cache');
+ $acct_time = $row[acctstoptime];
+ $acct_server = $row[nasipaddress];
+ if ($acct_server != ''){
+ $acct_server = $da_name_cache[$acct_server];
+ if (!isset($acct_server)){
+ $acct_server = $row[nasipaddress];
+ $acct_server = @gethostbyaddr($acct_server);
+ if (!isset($da_name_cache) && $config[general_use_session] == 'yes'){
+ $da_name_cache[$row[nasipaddress]] = $acct_server;
+ session_register('da_name_cache');
+ }
+ else
+ $da_name_cache[$row[nasipaddress]] = $acct_server;
}
- else
- $da_name_cache[$row[NASIPAddress]] = $acct_server;
}
- $acct_server = "$acct_server:$row[NASPortId]";
- $acct_terminate_cause = "$row[AcctTerminateCause]";
+ else
+ $acct_server = '-';
+ $acct_server = "$acct_server:$row[nasportid]";
+ $acct_terminate_cause = "$row[acctterminatecause]";
if ($acct_terminate_cause == '')
$acct_terminate_cause = '-';
- $acct_callerid = "$row[CallingStationId]";
+ $acct_callerid = "$row[callingstationid]";
if ($acct_callerid == '')
$acct_callerid = '-';
echo <<<EOM
<tr align=center bgcolor="white">
<td>$num</td>
<td>$acct_login</td>
- <td>$acct_time</td>
- <td>$acct_server</td>
- <td>$acct_terminate_cause</td>
- <td>$acct_callerid</td>
- </tr>
EOM;
+ if ($acct_attrs['fl'][2] != '') echo "<td>$acct_time</td>\n";
+ if ($acct_attrs['fl'][2] != '') echo "<td>$acct_server</td>\n";
+ if ($acct_attrs['fl'][2] != '') echo "<td>$acct_terminate_cause</td>\n";
+ if ($acct_attrs['fl'][2] != '') echo "<td>$acct_callerid</td>\n";
+ echo "</tr>\n";
}
}
+ else
+ echo "<b>Database query failed: " . da_sql_error($link,$config) . "</b><br>\n";
}
+else
+ echo "<b>Could not connect to SQL database</b><br>\n";
echo <<<EOM
</table>
<tr><td>
?>
<td><input type="submit" class=button value="show"></td></tr>
+<tr><td>
+<b>On Access Server:</b>
+</td></tr><tr><td>
+<select name="server">
+<?php
+foreach ($nas_list as $nas){
+ $name = $nas[name];
+ if ($nas[ip] == '')
+ continue;
+ $servers[$name] = $nas[ip];
+}
+ksort($servers);
+foreach ($servers as $name => $ip){
+ if ($server == $ip)
+ echo "<option selected value=\"$ip\">$name\n";
+ else
+ echo "<option value=\"$ip\">$name\n";
+}
+if ($server == '' || $server == 'all')
+ echo "<option selected value=\"all\">all\n";
+else
+ echo "<option value=\"all\">all\n";
+?>
+</select>
+</td></tr>
</table></td></tr></form>
</table>
</tr>
projects / freeradius.git / blobdiff