server/index.php

<?php
/*
  Copyright (C) 2013 Grégory Soutadé
  
  This file is part of gPass.
  
  gPass is free software: you can redistribute it and/or modify
  it under the terms of the GNU General Public License as published by
  the Free Software Foundation, either version 3 of the License, or
  (at your option) any later version.
  
  gPass is distributed in the hope that it will be useful,
  but WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  GNU General Public License for more details.
  
  You should have received a copy of the GNU General Public License
  along with gPass.  If not, see <http://www.gnu.org/licenses/>.
*/

include('functions.php');

session_start();

$VIEW_CIPHERED_PASSWORDS=true;
$ADMIN_MODE=true;
$user = "";

if ($ADMIN_MODE && isset($_POST['create_user']))
{
    if (create_user($_POST['user']))
        $user = $_POST['user'];
}
else
{
    if (isset($_POST['get_passwords']) && isset($_POST['user']))
        return list_entries($_POST['user']);

    if (isset($_POST['add_entry']) && isset($_POST['user']) && 
        isset($_POST['login']) && isset($_POST['password']))
        return add_entry($_POST['user'], $_POST['login'], $_POST['password']);

    if (isset($_POST['delete_entry']) && isset($_POST['user']) && 
        isset($_POST['login']))
        return delete_entry($_POST['user'], $_POST['login']);
}

?>
<!DOCTYPE html> 
<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html;charset=utf-8" >
    <link rel="stylesheet" type="text/css" href="ressources/gpass.css" />
    <script src="ressources/jsaes.js"></script>
    <script src="ressources/jssha256.js"></script>
    <script src="ressources/hmac.js"></script>
    <script src="ressources/pkdbf2.js"></script>
    <script src="ressources/gpass.js"></script>
    <title>gPass : global Password</title>
  </head>
  <body onload="start();">
    <div id="logo">
      <a href="http://indefero.soutade.fr/p/gpass"><img src="ressources/gpass.png" alt="logo"/></a>
    </div>

    <div id="admin" <?php if (!$ADMIN_MODE) echo "style=\"display:none\"";?> >
      <form method="post">
	<input type="text" name="user"/> <input type="submit" name="create_user" value="Create user" onclick="return confirm('Are you sure want to create this user ?');"/>
      </form>
    </div>
<div id="user">
<?php
    global $user;
$users = scandir("./users/");
$count = 0;
    foreach($users as $u)
    {
        if (is_dir("./users/" . $u) && $u[0] != '_' && $u[0] != '.')
            $count++;
    }

if ($count == 0)
    echo "<b>No user found</b><br/>\n";
else
{
    echo "<b>User</b> <select id=\"selected_user\" name=\"user\" onchange=\"document.getElementById('master_key').value = ''\">" . "\n";
    foreach($users as $u)
    {
        if (is_dir("./users/" . $u) && $u[0] != '_' && $u[0] != '.')
        {
            if ($user == "") $user = $u;
            if ($user == $u)
                echo "<option value=\"$u\" selected=\"1\"/>$u</option>";
            else
                echo "<option value=\"$u\"/>$u</option>";
        }
    }
        echo "</select>\n";
        echo '  <b>Master key </b> <input id="master_key" type="password" onkeypress="if (event.keyCode == 13) update_master_key();"/>';
        echo "<input type=\"button\" value=\"See\" onclick=\"update_master_key();\" />" . "\n";

        if (!isset($_SERVER['HTTPS']))
   echo "<div id=\"addon_address\">Current addon address is : http://" . $_SERVER['SERVER_NAME'] . "/" . $user . "</div>\n";
   else
   echo "<div id=\"addon_address\">Current addon address is : https://" . $_SERVER['SERVER_NAME'] . "/" . $user . "</div>\n";
}
?>
<div id="passwords">
</div>
<div id="add_new_password">
<?php
    global $user;

if ($user != "")
{
    echo "<b>Add a new password</b><br/>\n";

    echo 'URL <input type="text" name="url"/>';
    echo 'login <input type="text" name="login" />';
    echo 'password <input id="new_password" type="text" name="password"/>';
    echo 'master key <input type="password" name="mkey" onkeypress="if (event.keyCode == 13) add_password();"/>';
    echo '<input type="button" value="Generate password" onClick="generate_password();"/>';
    echo "<input type=\"button\" name=\"add\" value=\"Add\" onclick=\"add_password();\"/>";
}
?>
</div>
</div>
</body>
</html>
Initial commit 2013-10-09 20:47:43 +02:00			`<?php`
			`/*`
			`Copyright (C) 2013 Grégory Soutadé`

			`This file is part of gPass.`

			`gPass is free software: you can redistribute it and/or modify`
			`it under the terms of the GNU General Public License as published by`
			`the Free Software Foundation, either version 3 of the License, or`
			`(at your option) any later version.`

			`gPass is distributed in the hope that it will be useful,`
			`but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`GNU General Public License for more details.`

			`You should have received a copy of the GNU General Public License`
			`along with gPass. If not, see <http://www.gnu.org/licenses/>.`
			`*/`

			`include('functions.php');`

			`session_start();`

			`$VIEW_CIPHERED_PASSWORDS=true;`
Server side : 2013-10-16 18:40:06 +02:00			`$ADMIN_MODE=true;`
Add update + fix a lot of bugs 2013-10-23 19:39:47 +02:00			`$user = "";`
Initial commit 2013-10-09 20:47:43 +02:00
Add update + fix a lot of bugs 2013-10-23 19:39:47 +02:00			`if ($ADMIN_MODE && isset($_POST['create_user']))`
			`{`
			`if (create_user($_POST['user']))`
			`$user = $_POST['user'];`
			`}`
			`else`
			`{`
			`if (isset($_POST['get_passwords']) && isset($_POST['user']))`
			`return list_entries($_POST['user']);`
Add add_entry and delete_entry 2013-10-22 18:33:44 +02:00
Add update + fix a lot of bugs 2013-10-23 19:39:47 +02:00			`if (isset($_POST['add_entry']) && isset($_POST['user']) &&`
			`isset($_POST['login']) && isset($_POST['password']))`
			`return add_entry($_POST['user'], $_POST['login'], $_POST['password']);`
Add add_entry and delete_entry 2013-10-22 18:33:44 +02:00
Add update + fix a lot of bugs 2013-10-23 19:39:47 +02:00			`if (isset($_POST['delete_entry']) && isset($_POST['user']) &&`
			`isset($_POST['login']))`
			`return delete_entry($_POST['user'], $_POST['login']);`
			`}`
Full JS : first pass, all seems to work execpt add/delete/update 2013-10-19 16:34:12 +02:00
Initial commit 2013-10-09 20:47:43 +02:00			`?>`
			`<!DOCTYPE html>`
			`<html>`
Full JS : first pass, all seems to work execpt add/delete/update 2013-10-19 16:34:12 +02:00			`<head>`
			`<meta http-equiv="Content-Type" content="text/html;charset=utf-8" >`
			`<link rel="stylesheet" type="text/css" href="ressources/gpass.css" />`
			`<script src="ressources/jsaes.js"></script>`
			`<script src="ressources/jssha256.js"></script>`
			`<script src="ressources/hmac.js"></script>`
			`<script src="ressources/pkdbf2.js"></script>`
			`<script src="ressources/gpass.js"></script>`
			`<title>gPass : global Password</title>`
			`</head>`
			`<body onload="start();">`
			`<div id="logo">`
			`<a href="http://indefero.soutade.fr/p/gpass"><img src="ressources/gpass.png" alt="logo"/></a>`
			`</div>`
Initial commit 2013-10-09 20:47:43 +02:00
Server side : 2013-10-16 18:40:06 +02:00			`<div id="admin" <?php if (!$ADMIN_MODE) echo "style=\"display:none\"";?> >`
Full JS : first pass, all seems to work execpt add/delete/update 2013-10-19 16:34:12 +02:00			`<form method="post">`
			`<input type="text" name="user"/> <input type="submit" name="create_user" value="Create user" onclick="return confirm('Are you sure want to create this user ?');"/>`
			`</form>`
			`</div>`
Initial commit 2013-10-09 20:47:43 +02:00			`<div id="user">`
			`<?php`
Add update + fix a lot of bugs 2013-10-23 19:39:47 +02:00			`global $user;`
Initial commit 2013-10-09 20:47:43 +02:00			`$users = scandir("./users/");`
			`$count = 0;`
			`foreach($users as $u)`
			`{`
			`if (is_dir("./users/" . $u) && $u[0] != '_' && $u[0] != '.')`
			`$count++;`
			`}`

			`if ($count == 0)`
Add line returns to generated HTML code 2013-10-12 11:20:54 +02:00			`echo "<b>No user found</b><br/>\n";`
Initial commit 2013-10-09 20:47:43 +02:00			`else`
			`{`
Full JS : first pass, all seems to work execpt add/delete/update 2013-10-19 16:34:12 +02:00			`echo "<b>User</b> <select id=\"selected_user\" name=\"user\" onchange=\"document.getElementById('master_key').value = ''\">" . "\n";`
Initial commit 2013-10-09 20:47:43 +02:00			`foreach($users as $u)`
			`{`
			`if (is_dir("./users/" . $u) && $u[0] != '_' && $u[0] != '.')`
			`{`
			`if ($user == "") $user = $u;`
			`if ($user == $u)`
			`echo "<option value=\"$u\" selected=\"1\"/>$u</option>";`
			`else`
			`echo "<option value=\"$u\"/>$u</option>";`
			`}`
			`}`
Add line returns to generated HTML code 2013-10-12 11:20:54 +02:00			`echo "</select>\n";`
Full JS : first pass, all seems to work execpt add/delete/update 2013-10-19 16:34:12 +02:00			`echo ' <b>Master key </b> <input id="master_key" type="password" onkeypress="if (event.keyCode == 13) update_master_key();"/>';`
			`echo "<input type=\"button\" value=\"See\" onclick=\"update_master_key();\" />" . "\n";`
Initial commit 2013-10-09 20:47:43 +02:00
Add update + fix a lot of bugs 2013-10-23 19:39:47 +02:00			`if (!isset($_SERVER['HTTPS']))`
Full JS : first pass, all seems to work execpt add/delete/update 2013-10-19 16:34:12 +02:00			`echo "<div id=\"addon_address\">Current addon address is : http://" . $_SERVER['SERVER_NAME'] . "/" . $user . "</div>\n";`
			`else`
			`echo "<div id=\"addon_address\">Current addon address is : https://" . $_SERVER['SERVER_NAME'] . "/" . $user . "</div>\n";`
Initial commit 2013-10-09 20:47:43 +02:00			`}`
			`?>`
Full JS : first pass, all seems to work execpt add/delete/update 2013-10-19 16:34:12 +02:00			`<div id="passwords">`
Initial commit 2013-10-09 20:47:43 +02:00			`</div>`
			`<div id="add_new_password">`
			`<?php`
			`global $user;`

			`if ($user != "")`
			`{`
Add line returns to generated HTML code 2013-10-12 11:20:54 +02:00			`echo "<b>Add a new password</b><br/>\n";`
Initial commit 2013-10-09 20:47:43 +02:00
Add add_entry and delete_entry 2013-10-22 18:33:44 +02:00			`echo 'URL <input type="text" name="url"/>';`
Initial commit 2013-10-09 20:47:43 +02:00			`echo 'login <input type="text" name="login" />';`
Add add_entry and delete_entry 2013-10-22 18:33:44 +02:00			`echo 'password <input id="new_password" type="text" name="password"/>';`
Add update + fix a lot of bugs 2013-10-23 19:39:47 +02:00			`echo 'master key <input type="password" name="mkey" onkeypress="if (event.keyCode == 13) add_password();"/>';`
Initial commit 2013-10-09 20:47:43 +02:00			`echo '<input type="button" value="Generate password" onClick="generate_password();"/>';`
Add add_entry and delete_entry 2013-10-22 18:33:44 +02:00			`echo "<input type=\"button\" name=\"add\" value=\"Add\" onclick=\"add_password();\"/>";`
Initial commit 2013-10-09 20:47:43 +02:00			`}`
			`?>`
			`</div>`
			`</div>`
			`</body>`
Full JS : first pass, all seems to work execpt add/delete/update 2013-10-19 16:34:12 +02:00			`</html>`