Home Explore Help
Sign In
yosoyhendrix
/
hestiacp
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: fix/update-firewall-crowdsec
Branches Tags
hestiacp
/
web
/
bulk
/
firewall
/
banlist
/
index.php

index.php 925 B
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546 
  1. <?php
    2. 

  2. use function Hestiacp\quoteshellarg\quoteshellarg;
    3. 

  3. 

  4. ob_start();
    5. 

  5. 

  6. // Main include
    7. 

  7. include $_SERVER["DOCUMENT_ROOT"] . "/inc/main.php";
    8. 

  8. 

  9. // Check token
    10. 

  10. verify_csrf($_POST);
    11. 

  11. 

  12. // Check user
    13. 

  13. if ($_SESSION["userContext"] != "admin") {
    14. 

  14. 	header("Location: /list/user");
    15. 

  15. 	exit();
    16. 

  16. }
    17. 

  17. 

  18. if (empty($_POST["ipchain"])) {
    19. 

  19. 	header("Location: /list/firewall/banlist/");
    20. 

  20. 	exit();
    21. 

  21. }
    22. 

  22. if (empty($_POST["action"])) {
    23. 

  23. 	header("Location: /list/firewall/banlist/");
    24. 

  24. 	exit();
    25. 

  25. }
    26. 

  26. 

  27. $ipchain = $_POST["ipchain"];
    28. 

  28. $action = $_POST["action"];
    29. 

  29. 

  30. switch ($action) {
    31. 

  31. 	case "delete":
    32. 

  32. 		$cmd = "v-delete-firewall-ban";
    33. 

  33. 		break;
    34. 

  34. 	default:
    35. 

  35. 		header("Location: /list/firewall/banlist/");
    36. 

  36. 		exit();
    37. 

  37. }
    38. 

  38. 

  39. foreach ($ipchain as $value) {
    40. 

  40. 	[$ip, $chain] = explode(":", $value);
    41. 

  41. 	$v_ip = quoteshellarg($ip);
    42. 

  42. 	$v_chain = quoteshellarg($chain);
    43. 

  43. 	exec(HESTIA_CMD . $cmd . " " . $v_ip . " " . $v_chain, $output, $return_var);
    44. 

  44. }
    45. 

  45. 

  46. header("Location: /list/firewall/banlist");
    47.