Your IP : 216.73.216.247
<?php
/**
* @package AdminTools
* @copyright Copyright (c)2010-2015 Nicholas K. Dionysopoulos
* @license GNU General Public License version 3, or later
* @version $Id$
*/
// Protect from unauthorized access
defined('_JEXEC') or die;
class AdmintoolsControllerCpanel extends F0FController
{
/**
* Overridden task dispatcher to whitelist specific tasks
*
* @param string $task The task to execute
*
* @return bool|null|void
*/
public function execute($task)
{
// Preload the model class of this view (we have a problem with the name, you know)
$cpanelModel = $this->getModel('Cpanel', 'AdmintoolsModel');
// We only allow specific tasks. If none matches, assume the user meant the "browse" task
if (!in_array($task, array('login', 'updategeoip', 'updateinfo', 'fastcheck', 'selfblocked', 'unblockme', 'applydlid')))
{
$task = 'browse';
}
$this->task = $task;
parent::execute($task);
}
public function onBeforeBrowse()
{
$result = parent::onBeforeBrowse();
if ($result)
{
$view = $this->getThisView();
$view->setModel($this->getThisModel(), true);
// Upgrade the database schema if necessary
$this->getThisModel()->checkAndFixDatabase();
// Refresh the update site definitions if required. Also takes into account any change of the Download ID
// in the Options.
/** @var AdmintoolsModelUpdates $updateModel */
$updateModel = F0FModel::getTmpInstance('Updates', 'AdmintoolsModel');
$updateModel->refreshUpdateSite();
// Is a Download ID needed but missing?
$needDLID = $this->getThisModel()->needsDownloadID();
$view->needsdlid = $needDLID;
}
return $result;
}
public function login()
{
$model = $this->getModel('Masterpw');
$password = $this->input->getVar('userpw', '');
$model->setUserPassword($password);
$url = 'index.php?option=com_admintools';
$this->setRedirect($url);
}
public function updategeoip()
{
if ($this->csrfProtection)
{
$this->_csrfProtection();
}
// Load the GeoIP library if it's not already loaded
if (!class_exists('AkeebaGeoipProvider'))
{
if (@file_exists(JPATH_PLUGINS . '/system/akgeoip/lib/akgeoip.php'))
{
if (@include_once JPATH_PLUGINS . '/system/akgeoip/lib/vendor/autoload.php')
{
@include_once JPATH_PLUGINS . '/system/akgeoip/lib/akgeoip.php';
}
}
}
$geoip = new AkeebaGeoipProvider();
$result = $geoip->updateDatabase();
$url = 'index.php?option=com_admintools';
if ($result === true)
{
$msg = JText::_('ATOOLS_GEOBLOCK_MSG_DOWNLOADEDGEOIPDATABASE');
$this->setRedirect($url, $msg);
}
else
{
$this->setRedirect($url, $result, 'error');
}
}
public function updateinfo()
{
/** @var AdmintoolsModelUpdates $updateModel */
$updateModel = F0FModel::getTmpInstance('Updates', 'AdmintoolsModel');
$updateInfo = (object)$updateModel->getUpdates();
$result = '';
if ($updateInfo->hasUpdate)
{
$strings = array(
'header' => JText::sprintf('COM_ADMINTOOLS_CPANEL_MSG_UPDATEFOUND', $updateInfo->version),
'button' => JText::sprintf('COM_ADMINTOOLS_CPANEL_MSG_UPDATENOW', $updateInfo->version),
'infourl' => $updateInfo->infoURL,
'infolbl' => JText::_('COM_ADMINTOOLS_CPANEL_MSG_MOREINFO'),
);
$result = <<<ENDRESULT
<div class="alert alert-warning">
<h3>
<span class="icon icon-exclamation-sign glyphicon glyphicon-exclamation-sign"></span>
{$strings['header']}
</h3>
<p>
<a href="index.php?option=com_installer&view=update" class="btn btn-primary">
{$strings['button']}
</a>
<a href="{$strings['infourl']}" target="_blank" class="btn btn-small btn-info">
{$strings['infolbl']}
</a>
</p>
</div>
ENDRESULT;
}
echo '###' . $result . '###';
// Cut the execution short
JFactory::getApplication()->close();
}
public function fastcheck()
{
/** @var AdmintoolsModelCpanels $model */
$model = $this->getThisModel();
$result = $model->fastCheckFiles();
// Always return a positive result for server IP 127.0.0.1 and ::1
if (isset($_SERVER['SERVER_ADDR']) && in_array($_SERVER['SERVER_ADDR'], array('127.0.0.1', '::1')))
{
$result = true;
}
echo '###' . ($result ? 'true' : 'false') . '###';
// Cut the execution short
JFactory::getApplication()->close();
}
public function selfblocked()
{
$externalIP = $this->input->getString('ip', '');
/** @var AdmintoolsModelCpanels $model */
$model = $this->getThisModel();
$result = (int)$model->selfBlocked($externalIP);
echo '###'.$result.'###';
JFactory::getApplication()->close();
}
public function unblockme()
{
$externalIP = $this->input->getString('ip', '');
/** @var AdmintoolsModelCpanels $model */
$model = $this->getThisModel();
$model->unblockme($externalIP);
$this->setRedirect('index.php?option=com_admintools', JText::_('COM_ADMINTOOLS_CPANEL_IP_UNBLOCKED'));
}
/**
* Applies the Download ID when the user is prompted about it in the Control Panel
*/
public function applydlid()
{
// CSRF prevention
if ($this->csrfProtection)
{
$this->_csrfProtection();
}
$msg = JText::_('COM_AKEEBA_CPANEL_ERR_INVALIDDOWNLOADID');
$msgType = 'error';
$dlid = $this->input->getString('dlid', '');
// If the Download ID seems legit let's apply it
if (preg_match('/^([0-9]{1,}:)?[0-9a-f]{32}$/i', $dlid))
{
$msg = null;
$msgType = null;
JLoader::import('joomla.application.component.helper');
$params = JComponentHelper::getParams('com_admintools');
$params->set('downloadid', $dlid);
$db = JFactory::getDbo();
$sql = $db->getQuery(true)
->update($db->qn('#__extensions'))
->set($db->qn('params') . ' = ' . $db->q($params->toString('JSON')))
->where($db->qn('element') . " = " . $db->q('com_admintools'));
$db->setQuery($sql)->execute();
}
// Redirect back to the control panel
$url = '';
$returnurl = $this->input->get('returnurl', '', 'base64');
if (!empty($returnurl))
{
$url = base64_decode($returnurl);
}
if (empty($url))
{
$url = JUri::base() . 'index.php?option=com_admintools';
}
$this->setRedirect($url, $msg, $msgType);
}
}