cacert-webdb/pages/account/5.php

<? /*
    LibreSSL - CAcert web application
    Copyright (C) 2004-2008  CAcert Inc.

    This program is free software; you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
    the Free Software Foundation; version 2 of the License.

    This program is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    GNU General Public License for more details.

    You should have received a copy of the GNU General Public License
    along with this program; if not, write to the Free Software
    Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
*/ ?>
<? $viewall=0; if(array_key_exists('viewall',$_REQUEST)) $viewall=intval($_REQUEST['viewall']); ?>
<form method="post" action="account.php">
<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper">
  <tr>
    <td colspan="7" class="title"><?=_("Client Certificates")?> - <a href="account.php?id=5&amp;viewall=<?=!$viewall?>"><?=_("View all certificates")?></a></td>
  </tr>
  <tr>
    <td class="DataTD"><?=_("Renew/Revoke/Delete")?></td>
    <td class="DataTD"><?=_("Status")?></td>
    <td class="DataTD"><?=_("Email Address")?></td>
	<td class="DataTD"><?=_("SerialNumber")?></td>
    <td class="DataTD"><?=_("Revoked")?></td>
    <td class="DataTD"><?=_("Expires")?></td>
    <td class="DataTD"><?=_("Login")?></td>

<?
	$query = "select UNIX_TIMESTAMP(`emailcerts`.`created`) as `created`,
			UNIX_TIMESTAMP(`emailcerts`.`expire`) - UNIX_TIMESTAMP() as `timeleft`,
			UNIX_TIMESTAMP(`emailcerts`.`expire`) as `expired`,
			`emailcerts`.`expire` as `expires`, 
			`emailcerts`.`revoked` as `revoke`,
			UNIX_TIMESTAMP(`emailcerts`.`revoked`) as `revoked`, 
			`emailcerts`.`id`,
			`emailcerts`.`CN`,
			`emailcerts`.`serial`,
			emailcerts.disablelogin as `disablelogin`
			from `emailcerts`
			where `emailcerts`.`memid`='".$_SESSION['profile']['id']."'
			";
	if($viewall != 1)
		$query .= " AND `revoked`=0 AND `renewed`=0 ";
	$query .= " GROUP BY `emailcerts`.`id` ";
	if($viewall != 1)
                $query .= " HAVING `timeleft` > 0 ";
	$query .= " ORDER BY `emailcerts`.`modified` desc";
// echo $query."<br>\n";
	$res = mysql_query($query);
	if(mysql_num_rows($res) <= 0)
	{
?>
  <tr>
    <td colspan="7" class="DataTD"><?=_("No client certificates are currently listed.")?></td>
  </tr>
<? } else {
	while($row = mysql_fetch_assoc($res))
	{
		if($row['timeleft'] > 0)
			$verified = _("Valid");
		if($row['timeleft'] < 0)
			$verified = _("Expired");
		if($row['expired'] == 0)
			$verified = _("Pending");
		if($row['revoked'] > 0)
			$verified = _("Revoked");
		if($row['revoked'] == 0)
			$row['revoke'] = _("Not Revoked");
?>
  <tr>
<? if($verified != _("Pending") && $verified != _("Revoked")) { ?>
    <td class="DataTD"><input type="checkbox" name="revokeid[]" value="<?=$row['id']?>"></td>
    <td class="DataTD"><?=$verified?></td>
    <td class="DataTD"><a href="account.php?id=6&amp;cert=<?=$row['id']?>"><?=(trim($row['CN'])=="" ? _("empty") : $row['CN'])?></a></td>
<? } else if($verified != _("Revoked")) { ?>
    <td class="DataTD"><input type="checkbox" name="delid[]" value="<?=$row['id']?>"></td>
    <td class="DataTD"><?=$verified?></td>
    <td class="DataTD"><?=(trim($row['CN'])=="" ? _("empty") : $row['CN'])?></td>
<? } else { ?>
    <td class="DataTD">&nbsp;</td>
    <td class="DataTD"><?=$verified?></td>
    <td class="DataTD"><?=(trim($row['CN'])=="" ? _("empty") : $row['CN'])?></td>
<? } ?>
	<td class="DataTD"><?=$row['serial']?></td>
    <td class="DataTD"><?=$row['revoke']?></td>
    <td class="DataTD"><?=$row['expires']?></td>
    <td class="DataTD">
      <input type="checkbox" name="disablelogin_<?=$row['id']?>" value="1" <?=$row['disablelogin']?"":"checked='checked'"?>/>
      <input type="hidden" name="cert_<?=$row['id']?>" value="1"/>
    </td>
  </tr>
<? } ?>
  <tr>
    <td class="DataTD" colspan="8">
      <a href="account.php?id=5&amp;viewall=<?=!$viewall?>"><b><?=$viewall?_("Hide old certificates"):_("View all certificates")?></b></a>
    </td>
  </tr>

  <tr>
    <td class="DataTD" colspan="5"><input type="submit" name="renew" value="<?=_("Renew")?>">&#160;&#160;&#160;&#160;
    			<input type="submit" name="revoke" value="<?=_("Revoke/Delete")?>"></td>

    <td class="DataTD" colspan="3"><input type="submit" name="change" value="<?=_("Change settings")?>"> </td>

  </tr>
<? } ?>
</table>
<input type="hidden" name="oldid" value="<?=$id?>">
<input type="hidden" name="csrf" value="<?=make_csrf('clicerchange')?>" />
</form>
<p><?=_("From here you can delete pending requests, or revoke valid certificates.")?></p>
<p><?=_("Login").": "._("By allowing certificate login, this certificate can be used to login into your account at https://secure.cacert.org/ .")?></p>
* empty log message * 2004-10-16 00:28:17 +00:00			`<? /*`
Changed license to GPLv2 2008-04-06 19:45:09 +00:00			`LibreSSL - CAcert web application`
			`Copyright (C) 2004-2008 CAcert Inc.`
* empty log message * 2004-10-16 00:28:17 +00:00
Changed license to GPLv2 2008-04-06 19:45:09 +00:00			`This program is free software; you can redistribute it and/or modify`
			`it under the terms of the GNU General Public License as published by`
			`the Free Software Foundation; version 2 of the License.`
* empty log message * 2004-10-16 00:28:17 +00:00
Changed license to GPLv2 2008-04-06 19:45:09 +00:00			`This program is distributed in the hope that it will be useful,`
			`but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`GNU General Public License for more details.`
* empty log message * 2004-10-16 00:28:17 +00:00
Changed license to GPLv2 2008-04-06 19:45:09 +00:00			`You should have received a copy of the GNU General Public License`
			`along with this program; if not, write to the Free Software`
			`Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA`
* empty log message * 2004-10-16 00:28:17 +00:00			`*/ ?>`
Improved register_globals handling 2008-08-31 22:45:14 +00:00			`<? $viewall=0; if(array_key_exists('viewall',$_REQUEST)) $viewall=intval($_REQUEST['viewall']); ?>`
* empty log message * 2004-10-16 00:28:17 +00:00			`<form method="post" action="account.php">`
			`<table align="center" valign="middle" border="0" cellspacing="0" cellpadding="0" class="wrapper">`
			`<tr>`
Fix for https://bugs.cacert.org/view.php?id=596 : Add column serial# in certs overviews (client, server, orgclient, orgserver) 2011-10-12 15:15:35 +00:00			`<td colspan="7" class="title"><?=_("Client Certificates")?> - <a href="account.php?id=5&viewall=<?=!$viewall?>"><?=_("View all certificates")?></a></td>`
* empty log message * 2004-10-16 00:28:17 +00:00			`</tr>`
			`<tr>`
			`<td class="DataTD"><?=_("Renew/Revoke/Delete")?></td>`
			`<td class="DataTD"><?=_("Status")?></td>`
			`<td class="DataTD"><?=_("Email Address")?></td>`
Fix for https://bugs.cacert.org/view.php?id=596 : Add column serial# in certs overviews (client, server, orgclient, orgserver) 2011-10-12 15:15:35 +00:00			`<td class="DataTD"><?=_("SerialNumber")?></td>`
* empty log message * 2004-10-16 00:28:17 +00:00			`<td class="DataTD"><?=_("Revoked")?></td>`
			`<td class="DataTD"><?=_("Expires")?></td>`
Show status of disablelogin for all client certificates 2008-06-07 23:40:52 +00:00			`<td class="DataTD"><?=_("Login")?></td>`
* empty log message * 2004-10-16 00:28:17 +00:00
			`<?`
			$query = "select UNIX_TIMESTAMP(`emailcerts`.`created`) as `created`,
			UNIX_TIMESTAMP(`emailcerts`.`expire`) - UNIX_TIMESTAMP() as `timeleft`,
			UNIX_TIMESTAMP(`emailcerts`.`expire`) as `expired`,
Fixed http://bugs.cacert.org/view.php?id=557 2008-08-10 00:31:04 +00:00			`emailcerts`.`expire` as `expires`,
			`emailcerts`.`revoked` as `revoke`,
			UNIX_TIMESTAMP(`emailcerts`.`revoked`) as `revoked`,
			`emailcerts`.`id`,
			`emailcerts`.`CN`,
Fix for https://bugs.cacert.org/view.php?id=596 : Add column serial# in certs overviews (client, server, orgclient, orgserver) 2011-10-12 15:15:35 +00:00			`emailcerts`.`serial`,
Fixed http://bugs.cacert.org/view.php?id=557 2008-08-10 00:31:04 +00:00			emailcerts.disablelogin as `disablelogin`
			from `emailcerts`
more features + updates 2005-01-03 01:03:03 +00:00			where `emailcerts`.`memid`='".$_SESSION['profile']['id']."'
Fixed http://bugs.cacert.org/view.php?id=557 2008-08-10 00:31:04 +00:00			`";`
Improved register_globals handling 2008-08-31 22:45:14 +00:00			`if($viewall != 1)`
Fixed http://bugs.cacert.org/view.php?id=557 2008-08-10 00:31:04 +00:00			$query .= " AND `revoked`=0 AND `renewed`=0 ";
			$query .= " GROUP BY `emailcerts`.`id` ";
Improved register_globals handling 2008-08-31 22:45:14 +00:00			`if($viewall != 1)`
Fixed http://bugs.cacert.org/view.php?id=557 2008-08-10 00:31:04 +00:00			$query .= " HAVING `timeleft` > 0 ";
			$query .= " ORDER BY `emailcerts`.`modified` desc";
* empty log message * 2004-10-16 00:28:17 +00:00			`// echo $query."<br>\n";`
			`$res = mysql_query($query);`
			`if(mysql_num_rows($res) <= 0)`
			`{`
			`?>`
			`<tr>`
Fix for https://bugs.cacert.org/view.php?id=596 : Add column serial# in certs overviews (client, server, orgclient, orgserver) 2011-10-12 15:15:35 +00:00			`<td colspan="7" class="DataTD"><?=_("No client certificates are currently listed.")?></td>`
* empty log message * 2004-10-16 00:28:17 +00:00			`</tr>`
			`<? } else {`
			`while($row = mysql_fetch_assoc($res))`
			`{`
more features + updates 2005-01-03 01:03:03 +00:00			`if($row['timeleft'] > 0)`
* empty log message * 2004-10-16 00:28:17 +00:00			`$verified = _("Valid");`
more features + updates 2005-01-03 01:03:03 +00:00			`if($row['timeleft'] < 0)`
* empty log message * 2004-10-16 00:28:17 +00:00			`$verified = _("Expired");`
more features + updates 2005-01-03 01:03:03 +00:00			`if($row['expired'] == 0)`
* empty log message * 2004-10-16 00:28:17 +00:00			`$verified = _("Pending");`
more features + updates 2005-01-03 01:03:03 +00:00			`if($row['revoked'] > 0)`
* empty log message * 2004-10-16 00:28:17 +00:00			`$verified = _("Revoked");`
more features + updates 2005-01-03 01:03:03 +00:00			`if($row['revoked'] == 0)`
			`$row['revoke'] = _("Not Revoked");`
* empty log message * 2004-10-16 00:28:17 +00:00			`?>`
			`<tr>`
updates 2006-11-23 22:22:31 +00:00			`<? if($verified != _("Pending") && $verified != _("Revoked")) { ?>`
* empty log message * 2004-10-16 00:28:17 +00:00			`<td class="DataTD"><input type="checkbox" name="revokeid[]" value="<?=$row['id']?>"></td>`
			`<td class="DataTD"><?=$verified?></td>`
Improved register_globals 2008-09-03 17:43:31 +00:00			`<td class="DataTD"><a href="account.php?id=6&cert=<?=$row['id']?>"><?=(trim($row['CN'])=="" ? _("empty") : $row['CN'])?></a></td>`
updates 2006-11-23 22:22:31 +00:00			`<? } else if($verified != _("Revoked")) { ?>`
* empty log message * 2004-10-16 00:28:17 +00:00			`<td class="DataTD"><input type="checkbox" name="delid[]" value="<?=$row['id']?>"></td>`
			`<td class="DataTD"><?=$verified?></td>`
Improved empty-name detection and resolution 2008-08-01 14:16:08 +00:00			`<td class="DataTD"><?=(trim($row['CN'])=="" ? _("empty") : $row['CN'])?></td>`
updates 2006-11-23 22:22:31 +00:00			`<? } else { ?>`
			`<td class="DataTD"> </td>`
			`<td class="DataTD"><?=$verified?></td>`
Improved empty-name detection and resolution 2008-08-01 14:16:08 +00:00			`<td class="DataTD"><?=(trim($row['CN'])=="" ? _("empty") : $row['CN'])?></td>`
* empty log message * 2004-10-16 00:28:17 +00:00			`<? } ?>`
Fix for https://bugs.cacert.org/view.php?id=596 : Add column serial# in certs overviews (client, server, orgclient, orgserver) 2011-10-12 15:15:35 +00:00			`<td class="DataTD"><?=$row['serial']?></td>`
more features + updates 2005-01-03 01:03:03 +00:00			`<td class="DataTD"><?=$row['revoke']?></td>`
			`<td class="DataTD"><?=$row['expires']?></td>`
Added disablelogin changing to the GUI 2008-06-08 14:43:55 +00:00			`<td class="DataTD">`
			`<input type="checkbox" name="disablelogin_<?=$row['id']?>" value="1" <?=$row['disablelogin']?"":"checked='checked'"?>/>`
			`<input type="hidden" name="cert_<?=$row['id']?>" value="1"/>`
			`</td>`
* empty log message * 2004-10-16 00:28:17 +00:00			`</tr>`
			`<? } ?>`
Added a second View-All button for usability 2008-06-07 23:33:20 +00:00			`<tr>`
			`<td class="DataTD" colspan="8">`
Improved register_globals 2008-09-03 17:43:31 +00:00			`<a href="account.php?id=5&viewall=<?=!$viewall?>"><b><?=$viewall?_("Hide old certificates"):_("View all certificates")?></b></a>`
Added a second View-All button for usability 2008-06-07 23:33:20 +00:00			`</td>`
			`</tr>`

* empty log message * 2004-10-16 00:28:17 +00:00			`<tr>`
Added more space between the buttons to avoid accidental clicking the wrong button 2008-09-07 23:31:42 +00:00			`<td class="DataTD" colspan="5"><input type="submit" name="renew" value="<?=_("Renew")?>">    `
update 2004-11-18 23:21:15 +00:00			`<input type="submit" name="revoke" value="<?=_("Revoke/Delete")?>"></td>`
Added disablelogin changing to the GUI 2008-06-08 14:43:55 +00:00
			`<td class="DataTD" colspan="3"><input type="submit" name="change" value="<?=_("Change settings")?>"> </td>`

* empty log message * 2004-10-16 00:28:17 +00:00			`</tr>`
			`<? } ?>`
			`</table>`
			`<input type="hidden" name="oldid" value="<?=$id?>">`
http://bugs.cacert.org/view.php?id=608 2008-09-07 02:45:49 +00:00			`<input type="hidden" name="csrf" value="<?=make_csrf('clicerchange')?>" />`
* empty log message * 2004-10-16 00:28:17 +00:00			`</form>`
			`<p><?=_("From here you can delete pending requests, or revoke valid certificates.")?></p>`
Added a description for disablelogin mechanism 2008-06-08 15:15:06 +00:00			`<p><?=_("Login").": "._("By allowing certificate login, this certificate can be used to login into your account at https://secure.cacert.org/ .")?></p>`