Gecko [ 167.86.127.34 ]

Name	Size	Permission
help	[ DIR ]	drwxr-xr-x
images	[ DIR ]	drwxr-xr-x
lang	[ DIR ]	drwxr-xr-x
subdir	[ DIR ]	drwxr-xr-x
CHANGELOG	12.02 KB	-rw-r--r--
acme_tiny.py	11.24 KB	-rwxr-xr-x
adminupgrade	299 B	-rw-r--r--
backup_config.pl	1.97 KB	-rwxr-xr-x
bootup.cgi	1.04 KB	-rwxr-xr-x
cache.cgi	1.47 KB	-rwxr-xr-x
cgi_args.pl	159 B	-rwxr-xr-x
change_access.cgi	1.34 KB	-rwxr-xr-x
change_advanced.cgi	3 KB	-rwxr-xr-x
change_anon.cgi	712 B	-rwxr-xr-x
change_bind.cgi	4.8 KB	-rwxr-xr-x
change_ca.cgi	674 B	-rwxr-xr-x
change_debug.cgi	1.38 KB	-rwxr-xr-x
change_lang.cgi	558 B	-rwxr-xr-x
change_lock.cgi	554 B	-rwxr-xr-x
change_log.cgi	2.38 KB	-rwxr-xr-x
change_mobile.cgi	940 B	-rwxr-xr-x
change_os.cgi	1.85 KB	-rwxr-xr-x
change_osdn.cgi	1.54 KB	-rwxr-xr-x
change_overlay.cgi	1.16 KB	-rwxr-xr-x
change_proxy.cgi	1.09 KB	-rwxr-xr-x
change_referers.cgi	633 B	-rwxr-xr-x
change_session.cgi	4.77 KB	-rwxr-xr-x
change_ssl.cgi	3.03 KB	-rwxr-xr-x
change_startpage.cgi	773 B	-rwxr-xr-x
change_status.cgi	1.02 KB	-rwxr-xr-x
change_theme.cgi	1.16 KB	-rwxr-xr-x
change_twofactor.cgi	1.43 KB	-rwxr-xr-x
change_ui.cgi	1.61 KB	-rwxr-xr-x
change_web.cgi	2.47 KB	-rwxr-xr-x
clear_blocked.cgi	154 B	-rwxr-xr-x
clear_cache.cgi	205 B	-rwxr-xr-x
clone_mod.cgi	2.06 KB	-rwxr-xr-x
config	114 B	-rw-r--r--
config.info	696 B	-rw-r--r--
config.info.ar	414 B	-rw-r--r--
config.info.ca	408 B	-rw-r--r--
config.info.cs	233 B	-rw-r--r--
config.info.de	368 B	-rw-r--r--
config.info.es	229 B	-rw-r--r--
config.info.fa	301 B	-rw-r--r--
config.info.fr	577 B	-rw-r--r--
config.info.hr	0 B	-rw-r--r--
config.info.hu	0 B	-rw-r--r--
config.info.it	245 B	-rw-r--r--
config.info.ja	531 B	-rw-r--r--
config.info.ko	206 B	-rw-r--r--
config.info.ms	286 B	-rw-r--r--
config.info.nl	299 B	-rw-r--r--
config.info.no	283 B	-rw-r--r--
config.info.pl	284 B	-rw-r--r--
config.info.pt_BR	299 B	-rw-r--r--
config.info.ru	491 B	-rw-r--r--
config.info.sk	132 B	-rw-r--r--
config.info.sv	202 B	-rw-r--r--
config.info.tr	155 B	-rw-r--r--
cpan_modules.pl	229 B	-rwxr-xr-x
defaultacl	17 B	-rw-r--r--
delete_cache.cgi	471 B	-rwxr-xr-x
delete_mod.cgi	2.24 KB	-rwxr-xr-x
delete_webmincron.cgi	1.51 KB	-rwxr-xr-x
download_cert.cgi	532 B	-rwxr-xr-x
edit_access.cgi	1.38 KB	-rwxr-xr-x
edit_advanced.cgi	3.87 KB	-rwxr-xr-x
edit_anon.cgi	812 B	-rwxr-xr-x
edit_assignment.cgi	1.12 KB	-rwxr-xr-x
edit_bind.cgi	2.95 KB	-rwxr-xr-x
edit_blocked.cgi	944 B	-rwxr-xr-x
edit_ca.cgi	2.82 KB	-rwxr-xr-x
edit_categories.cgi	1.69 KB	-rwxr-xr-x
edit_debug.cgi	2.04 KB	-rwxr-xr-x
edit_descs.cgi	1.49 KB	-rwxr-xr-x
edit_ipkey.cgi	1.7 KB	-rwxr-xr-x
edit_lang.cgi	1.82 KB	-rwxr-xr-x
edit_lock.cgi	763 B	-rwxr-xr-x
edit_log.cgi	3.04 KB	-rwxr-xr-x
edit_mobile.cgi	1.26 KB	-rwxr-xr-x
edit_mods.cgi	4.45 KB	-rwxr-xr-x
edit_os.cgi	2.72 KB	-rwxr-xr-x
edit_proxy.cgi	3.7 KB	-rwxr-xr-x
edit_referers.cgi	899 B	-rwxr-xr-x
edit_sendmail.cgi	3.48 KB	-rwxr-xr-x
edit_session.cgi	5.18 KB	-rwxr-xr-x
edit_ssl.cgi	10.55 KB	-rwxr-xr-x
edit_startpage.cgi	1.68 KB	-rwxr-xr-x
edit_status.cgi	1.13 KB	-rwxr-xr-x
edit_themes.cgi	3.72 KB	-rwxr-xr-x
edit_twofactor.cgi	1.5 KB	-rwxr-xr-x
edit_ui.cgi	2.51 KB	-rwxr-xr-x
edit_upgrade.cgi	4.26 KB	-rwxr-xr-x
edit_web.cgi	2.88 KB	-rwxr-xr-x
edit_webmincron.cgi	1.35 KB	-rwxr-xr-x
export_mod.cgi	1.23 KB	-rwxr-xr-x
feedback_files.pl	126 B	-rwxr-xr-x
fix_os.cgi	228 B	-rwxr-xr-x
gnupg-lib.pl	13.38 KB	-rwxr-xr-x
hide.cgi	326 B	-rwxr-xr-x
index.cgi	4.16 KB	-rwxr-xr-x
install_mod.cgi	3.11 KB	-rwxr-xr-x
install_theme.cgi	2.29 KB	-rwxr-xr-x
jcameron-key.asc	1.29 KB	-rw-r--r--
letsencrypt-cleanup.pl	2.02 KB	-rwxr-xr-x
letsencrypt-dns.pl	2.57 KB	-rwxr-xr-x
letsencrypt-lib.pl	14.03 KB	-rwxr-xr-x
letsencrypt.cgi	4.64 KB	-rwxr-xr-x
log_parser.pl	1.23 KB	-rwxr-xr-x
module.info	195 B	-rw-r--r--
module.info.af	0 B	-rw-r--r--
module.info.af.auto	142 B	-rw-r--r--
module.info.ar	185 B	-rw-r--r--
module.info.ar.auto	22 B	-rw-r--r--
module.info.be	0 B	-rw-r--r--
module.info.be.auto	208 B	-rw-r--r--
module.info.bg	0 B	-rw-r--r--
module.info.bg.auto	218 B	-rw-r--r--
module.info.ca	134 B	-rw-r--r--
module.info.ca.auto	15 B	-rw-r--r--
module.info.cs	28 B	-rw-r--r--
module.info.cs.auto	128 B	-rw-r--r--
module.info.da	0 B	-rw-r--r--
module.info.da.auto	142 B	-rw-r--r--
module.info.de	126 B	-rw-r--r--
module.info.de.auto	15 B	-rw-r--r--
module.info.el	0 B	-rw-r--r--
module.info.el.auto	262 B	-rw-r--r--
module.info.es	33 B	-rw-r--r--
module.info.es.auto	109 B	-rw-r--r--
module.info.eu	0 B	-rw-r--r--
module.info.eu.auto	158 B	-rw-r--r--
module.info.fa	0 B	-rw-r--r--
module.info.fa.auto	202 B	-rw-r--r--
module.info.fi	0 B	-rw-r--r--
module.info.fi.auto	141 B	-rw-r--r--
module.info.fr	32 B	-rw-r--r--
module.info.fr.auto	129 B	-rw-r--r--
module.info.he	0 B	-rw-r--r--
module.info.he.auto	195 B	-rw-r--r--
module.info.hr	0 B	-rw-r--r--
module.info.hr.auto	149 B	-rw-r--r--
module.info.hu	30 B	-rw-r--r--
module.info.hu.auto	148 B	-rw-r--r--
module.info.it	33 B	-rw-r--r--
module.info.it.auto	107 B	-rw-r--r--
module.info.ja	180 B	-rw-r--r--
module.info.ko	22 B	-rw-r--r--
module.info.ko.auto	129 B	-rw-r--r--
module.info.lt	0 B	-rw-r--r--
module.info.lt.auto	180 B	-rw-r--r--
module.info.lv	0 B	-rw-r--r--
module.info.lv.auto	157 B	-rw-r--r--
module.info.ms	119 B	-rw-r--r--
module.info.ms.auto	15 B	-rw-r--r--
module.info.mt	0 B	-rw-r--r--
module.info.mt.auto	144 B	-rw-r--r--
module.info.nl	28 B	-rw-r--r--
module.info.nl.auto	117 B	-rw-r--r--
module.info.no	29 B	-rw-r--r--
module.info.no.auto	117 B	-rw-r--r--
module.info.pl	155 B	-rw-r--r--
module.info.pl.auto	15 B	-rw-r--r--
module.info.pt	33 B	-rw-r--r--
module.info.pt.auto	113 B	-rw-r--r--
module.info.pt_BR	36 B	-rw-r--r--
module.info.pt_BR.auto	119 B	-rw-r--r--
module.info.ro	0 B	-rw-r--r--
module.info.ro.auto	147 B	-rw-r--r--
module.info.ru	34 B	-rw-r--r--
module.info.ru.auto	172 B	-rw-r--r--
module.info.sk	30 B	-rw-r--r--
module.info.sk.auto	132 B	-rw-r--r--
module.info.sl	0 B	-rw-r--r--
module.info.sl.auto	147 B	-rw-r--r--
module.info.sv	30 B	-rw-r--r--
module.info.sv.auto	114 B	-rw-r--r--
module.info.th	0 B	-rw-r--r--
module.info.th.auto	258 B	-rw-r--r--
module.info.tr	33 B	-rw-r--r--
module.info.tr.auto	128 B	-rw-r--r--
module.info.uk	0 B	-rw-r--r--
module.info.uk.auto	215 B	-rw-r--r--
module.info.ur	0 B	-rw-r--r--
module.info.ur.auto	209 B	-rw-r--r--
module.info.vi	0 B	-rw-r--r--
module.info.vi.auto	177 B	-rw-r--r--
module.info.zh	22 B	-rw-r--r--
module.info.zh_TW	25 B	-rw-r--r--
module.info.zh_TW.auto	115 B	-rw-r--r--
newcsr.cgi	800 B	-rwxr-xr-x
newkey.cgi	879 B	-rwxr-xr-x
postinstall.pl	2.01 KB	-rwxr-xr-x
refresh_modules.cgi	664 B	-rwxr-xr-x
restart.cgi	87 B	-rwxr-xr-x
save_assignment.cgi	485 B	-rwxr-xr-x
save_categories.cgi	946 B	-rwxr-xr-x
save_descs.cgi	1006 B	-rwxr-xr-x
save_ipkey.cgi	1.31 KB	-rwxr-xr-x
save_newmod.cgi	278 B	-rwxr-xr-x
save_sendmail.cgi	2.08 KB	-rwxr-xr-x
save_webmincron.cgi	1016 B	-rwxr-xr-x
savekey.cgi	2.8 KB	-rwxr-xr-x
setup_ca.cgi	1.52 KB	-rwxr-xr-x
standard_chooser.cgi	1.68 KB	-rwxr-xr-x
stop_ca.cgi	1.03 KB	-rwxr-xr-x
syslog_logs.pl	633 B	-rwxr-xr-x
system_info.pl	5.02 KB	-rw-r--r--
test_sendmail.cgi	784 B	-rwxr-xr-x
third_chooser.cgi	1.55 KB	-rwxr-xr-x
twofactor-funcs-lib.pl	8.81 KB	-rw-r--r--
uninstall.pl	236 B	-rwxr-xr-x
update.cgi	2.86 KB	-rwxr-xr-x
upgrade.cgi	16.6 KB	-rwxr-xr-x
view_webmincron.cgi	1.66 KB	-rwxr-xr-x
webmin-lib.pl	68.77 KB	-rwxr-xr-x

Code Editor : twofactor-funcs-lib.pl

# Functions for two-factor enrollment and verification

# list_twofactor_providers()
# Returns a list of all supported providers, each of which is an array ref
# containing an ID, name and URL for more info
sub list_twofactor_providers
{
return ( [ 'totp', 'Google Authenticator',
	   'http://en.wikipedia.org/wiki/Google_Authenticator' ],
	 [ 'authy', 'Authy',
	   'http://www.authy.com/' ] );
}

# show_twofactor_apikey_authy(&miniserv)
# Returns HTML for the form for authy-specific provider inputs
sub show_twofactor_apikey_authy
{
my ($miniserv) = @_;
my $rv;
$rv .= ui_table_row($text{'twofactor_apikey'},
	ui_textbox("authy_apikey", $miniserv->{'twofactor_apikey'}, 40));
return $rv;
}

# validate_twofactor_apikey_authy(&in, &miniserv)
# Validates inputs from show_twofactor_apikey_authy, and stores them. Returns
# undef if OK, or an error message on failure
sub validate_twofactor_apikey_authy
{
my ($in, $miniserv) = @_;
my $key = $in->{'authy_apikey'};
my $test = $miniserv->{'twofactor_test'};
$key =~ /^\S+$/ || return $text{'twofactor_eapikey'};
my $host = $test ? "sandbox-api.authy.com" : "api.authy.com";
my $port = $test ? 80 : 443;
my $page = "/protected/xml/app/details?api_key=".&urlize($key);
my $ssl = $test ? 0 : 1;
my ($out, $err);
&http_download($host, $port, $page, \$out, \$err, undef, $ssl, undef, undef,
	       60, 0, 1);
if ($err =~ /401/) {
	return $text{'twofactor_eauthykey'};
	}
elsif ($err) {
	return &text('twofactor_eauthy', $err);
	}
$miniserv->{'twofactor_apikey'} = $key;
return undef;
}

# show_twofactor_form_authy(&webmin-user)
# Returns HTML for a form for enrolling for Authy two-factor
sub show_twofactor_form_authy
{
my ($user) = @_;
my $rv;
$rv .= &ui_table_row($text{'twofactor_email'},
	&ui_textbox("email", undef, 40));
$rv .= &ui_table_row($text{'twofactor_country'},
	&ui_textbox("country", undef, 3));
$rv .= &ui_table_row($text{'twofactor_phone'},
	&ui_textbox("phone", undef, 20));
return $rv;
}

# parse_twofactor_form_authy(&in, &user)
# Parses inputs from show_twofactor_form_authy, and returns a hash ref with
# enrollment details on success, or an error message on failure.
sub parse_twofactor_form_authy
{
my ($in, $user) = @_;
$in->{'email'} =~ /^\S+\@\S+$/ || return $text{'twofactor_eemail'};
$in->{'country'} =~ s/^\+//;
$in->{'country'} =~ /^\d{1,3}$/ || return $text{'twofactor_ecountry'};
$in->{'phone'} =~ /^[0-9\- ]+$/ || return $text{'twofactor_ephone'};
return { 'email' => $in->{'email'},
	 'country' => $in->{'country'},
	 'phone' => $in->{'phone'} };
}

# enroll_twofactor_authy(&details, &user)
# Attempts to enroll a user for Authy two-factor. Returns undef on success and
# sets twofactor_id in &user, or an error message on failure.
sub enroll_twofactor_authy
{
my ($details, $user) = @_;
my %miniserv;
&get_miniserv_config(\%miniserv);
my $host = $miniserv{'twofactor_test'} ? "sandbox-api.authy.com"
				       : "api.authy.com";
my $port = $miniserv{'twofactor_test'} ? 80 : 443;
my $page = "/protected/xml/users/new?api_key=".
	   &urlize($miniserv{'twofactor_apikey'});
my $ssl = $miniserv{'twofactor_test'} ? 0 : 1;
my $content = "user[email]=".&urlize($details->{'email'})."&".
	      "user[country_code]=".&urlize($details->{'country'})."&".
	      "user[cellphone]=".&urlize($details->{'phone'});
my ($out, $err);
&http_post($host, $port, $page, $content, \$out, \$err, undef, $ssl, undef,
	   undef, 60, 0, 1);
return $err if ($err);
if ($out =~ /<id[^>]*>([^<]+)<\/id>/i) {
	$user->{'twofactor_id'} = $1;
	$user->{'twofactor_apikey'} = $miniserv{'twofactor_apikey'};
	return undef;
	}
else {
	return &text('twofactor_eauthyenroll',
		     "<pre>".&html_escape($out)."</pre>");
	}
}

# validate_twofactor_authy(id, token, apikey)
# Checks the validity of some token for a user ID
sub validate_twofactor_authy
{
my ($id, $token, $apikey) = @_;
$id =~ /^\d+$/ || return $text{'twofactor_eauthyid'};
$token =~ /^\d+$/ || return $text{'twofactor_eauthytoken'};
my %miniserv;
&get_miniserv_config(\%miniserv);
my $host = $miniserv{'twofactor_test'} ? "sandbox-api.authy.com"
				       : "api.authy.com";
my $port = $miniserv{'twofactor_test'} ? 80 : 443;
my $page = "/protected/xml/verify/$token/$id?api_key=".&urlize($apikey).
	   "&force=true";
my $ssl = $miniserv{'twofactor_test'} ? 0 : 1;
my ($out, $err);
&http_download($host, $port, $page, \$out, \$err, undef, $ssl, undef, undef,
	       60, 0, 1);
if ($err && $err =~ /401/) {
	# Token rejected
	return $text{'twofactor_eauthyotp'};
	}
elsif ($err) {
	# Some other error
	return $err;
	}
elsif ($out && $out =~ /<success[^>]*>([^<]+)<\/success>/i) {
	if (lc($1) eq "true") {
		# Worked!
		return undef;
		}
	elsif ($out =~ /<message[^>]*>([^<]+)<\/message>/i) {
		# Failed, but with a message
		return $1;
		}
	else {
		# Failed, not sure why
		return $out;
		}
	}
else {
	# Unknown output
	return $out;
	}
}

# validate_twofactor_apikey_totp()
# Checks that the needed Perl module for TOTP is installed.
sub validate_twofactor_apikey_totp
{
my ($miniserv, $in) = @_;
eval "use Authen::OATH";
if ($@) {
	return &text('twofactor_etotpmodule', 'Authen::OATH',
	    "../cpan/download.cgi?source=3&cpan=Authen::OATH&mode=2&".
	    "return=/$module_name/&returndesc=".&urlize($text{'index_return'}))
	}
return undef;
}

# show_twofactor_form_totp(&user)
# Show form allowing the user to choose a twofactor secret
sub show_twofactor_form_totp
{
my ($user) = @_;
my $secret = $user->{'twofactor_id'};
$secret = undef if ($secret !~ /^[A-Z0-9=]+$/i ||
		    (length($secret) != 16 && length($secret) != 26 && length($secret) != 32));
my $rv;
$rv .= &ui_table_row($text{'twofactor_secret'},
	&ui_opt_textbox("totp_secret", $secret, 20, $text{'twofactor_secret1'},
			$text{'twofactor_secret0'}));
return $rv;
}

# parse_twofactor_form_totp(&in, &user)
# Generate or use a secret key for this user
sub parse_twofactor_form_totp
{
my ($in, $user) = @_;
if ($in->{'totp_secret_def'}) {
	$user->{'twofactor_id'} = &encode_base32(&generate_base32_secret());
	}
else {
	$in{'totp_secret'} =~ /^[A-Z0-9=]{16}$/i ||
		return $text{'twofactor_esecret'};
	$user->{'twofactor_id'} = $in{'totp_secret'};
	}
return { };
}

# generate_base32_secret([length])
# Returns a base-32 encoded secret of by default 10 bytes
sub generate_base32_secret
{
my ($length) = @_;
$length ||= 10;
&seed_random();
my $secret = "";
while(length($secret) < $length) {
	$secret .= chr(rand()*256);
	}
return $secret;
}

# enroll_twofactor_totp(&in, &user)
# Generate a secret for this user, based-32 encoded
sub enroll_twofactor_totp
{
my ($in, $user) = @_;
$user->{'twofactor_id'} ||= &encode_base32(&generate_base32_secret());
return undef;
}

# message_twofactor_totp(&user)
# Returns HTML to display after a user enrolls
sub message_twofactor_totp
{
my ($user) = @_;
my $name = &urlize(&get_display_hostname() . " (" . $user->{'name'} . ")");
my $url = "https://chart.googleapis.com/chart".
	  "?chs=200x200&chld=M|0&cht=qr&chl=otpauth://totp/".
	  $name."%3Fsecret%3D".$user->{'twofactor_id'};
my $rv;
$rv .= &text('twofactor_qrcode', "<tt>$user->{'twofactor_id'}</tt>")."<p>\n";
$rv .= "<img src='$url' border=0><p>\n";
return $rv;
}

# validate_twofactor_totp(id, token, apikey)
# Checks the validity of some token with google authenticator
sub validate_twofactor_totp
{
my ($id, $token, $apikey) = @_;
$id =~ /^[A-Z0-9=]+$/i || return $text{'twofactor_etotpid'};
$token =~ /^\d+$/ || return $text{'twofactor_etotptoken'};
eval "use Authen::OATH";
if ($@) {
	return &text('twofactor_etotpmodule2', 'Authen::OATH');
	}
my $secret = &decode_base32($id);
my $oauth = Authen::OATH->new();
my $now = time();
foreach my $t ($now - 30, $now, $now + 30) {
	my $expected = $oauth->totp($secret, $t);
	return undef if ($expected eq $token);
	}
return $text{'twofactor_etotpmatch'};
}

# get_user_twofactor(username, &miniserv)
# Returns the twofactor provider, ID and API key for a user
sub get_user_twofactor
{
my ($user, $miniserv) = @_;
return () if (!$miniserv->{'twofactorfile'});
my $lref = &read_file_lines($miniserv->{'twofactorfile'}, 1);
foreach my $l (@$lref) {
	my @two = split(/:/, $l, -1);
	if ($two[0] eq $user) {
		return ($two[1], $two[2], $two[3]);
		}
	}
return ();
}

# save_user_twofactor(username, &miniserv, [provider, id, api-key])
# Updates or removes the twofactor provider for a user
sub save_user_twofactor
{
my ($user, $miniserv, $prov, $id, $key) = @_;
return 0 if (!$miniserv->{'twofactorfile'});
&lock_file($miniserv->{'twofactorfile'});
my $lref = &read_file_lines($miniserv->{'twofactorfile'});
my $found = 0;
my $i = 0;
foreach my $l (@$lref) {
	my @two = split(/:/, $l, -1);
	if ($two[0] eq $user) {
		# Found the line to update or remove
		if ($prov) {
			$lref->[$i] = join(":", $user, $prov, $id, $key);
			}
		else {
			splice(@$lref, $i, 1);
			}
		$found++;
		last;
		}
	$i++;
	}
if (!$found && $prov) {
	# Need to add the user
	push(@$lref, join(":", $user, $prov, $id, $key));
	}
&flush_file_lines($miniserv->{'twofactorfile'});
&unlock_file($miniserv->{'twofactorfile'});
}

${this.title}

Code Editor : twofactor-funcs-lib.pl