add enable/disable login, add vnstat

Author: geeks121

files/www/auth/auth_functions.php

@@ -0,0 +1,28 @@
+<?php
+session_start();
+
+// Function to check if the user is logged in
+function checkUserLogin() {
+    if (!isset($_SESSION['user_id'])) {
+        header('Location: /auth/login.php'); // Redirect to login page
+        exit;
+    }
+}
+
+// Function to check if login is enabled
+function isLoginEnabled() {
+    $config_file = '/data/adb/php7/files/www/auth/config.json';
+    if (file_exists($config_file)) {
+        $config = json_decode(file_get_contents($config_file), true);
+        return isset($config['LOGIN_ENABLED']) && $config['LOGIN_ENABLED'];
+    }
+    return false;
+}
+
+// Set a flag in session or query parameter if login is disabled
+if (!isLoginEnabled()) {
+    $_SESSION['login_disabled'] = true; // Set a session flag or
+    // header("Location: /?login_disabled=1"); // Or use a query parameter
+    // exit;
+}
+?>

files/www/auth/change_password.php

@@ -1,13 +1,26 @@
 <?php
 session_start();
 
-// Redirect to login if not authenticated
-if (!isset($_SESSION['user_id'])) {
-    $_SESSION['redirect_url'] = $_SERVER['REQUEST_URI'];
-    header('Location: login.php');
-    exit;
+require_once '/data/adb/php7/files/www/auth/auth_functions.php';
+
+// If login is disabled, set the current page but do not redirect to login
+if (isset($_SESSION['login_disabled']) && $_SESSION['login_disabled'] === true) {
+    // Login is disabled, handle accordingly
+    // You can show a message or just let the user stay on the page
+    //echo "<p>Login is currently disabled.</p>";
+} else {
+    // Proceed to check if the user is logged in
+    checkUserLogin();
 }
 
+
+// Redirect to login if not authenticated
+//if (!isset($_SESSION['user_id'])) {
+//    $_SESSION['redirect_url'] = $_SERVER['REQUEST_URI'];
+//    header('Location: login.php');
+//    exit;
+//}
+
 // Include credentials file
 $credentials = include 'credentials.php';
 $stored_username = $credentials['username'];

files/www/auth/config.json

@@ -0,0 +1,3 @@
+{
+    "LOGIN_ENABLED": false
+}

files/www/auth/config.php

@@ -0,0 +1,15 @@
+<?php
+// Define the path to the config file
+$config_file = '/data/adb/php7/files/www/auth/config.json';
+
+
+// Check if the config file exists
+if (!file_exists($config_file)) {
+    die('Error: Configuration file not found.');
+}
+
+// Load the configuration from the JSON file
+$config = json_decode(file_get_contents($config_file), true);
+
+// Define the LOGIN_ENABLED constant based on the JSON file
+define('LOGIN_ENABLED', $config['LOGIN_ENABLED']);

files/www/auth/login.php

@@ -6,6 +6,25 @@
 $stored_username = $credentials['username'];
 $stored_hashed_password = $credentials['hashed_password'];
 
+$config_file = '/data/adb/php7/files/www/auth/config.json';
+
+if (!file_exists($config_file)) {
+    die('Error: Configuration file not found.');
+}
+
+$config = json_decode(file_get_contents($config_file), true);
+
+// Define the LOGIN_ENABLED constant based on the JSON file
+define('LOGIN_ENABLED', $config['LOGIN_ENABLED']);
+
+// Check if login is disabled
+$login_disabled = !LOGIN_ENABLED;
+
+// If login is disabled, set a session flag or a message variable
+if ($login_disabled) {
+    $_SESSION['login_disabled'] = true;
+}
+
 // Check if the user is already logged in and redirect accordingly
 if (isset($_SESSION['user_id'])) {
     $redirect_to = isset($_SESSION['redirect_to']) ? $_SESSION['redirect_to'] : '/';
@@ -24,14 +43,15 @@
         $_SESSION['username'] = $username;
         $redirect_to = isset($_SESSION['redirect_to']) ? $_SESSION['redirect_to'] : '/';
         unset($_SESSION['redirect_to']);
-        header("Location: $redirect_to"); // Redirect to the last visited page or index.php
+        header("Location: $redirect_to");
         exit;
     } else {
         $error = 'Invalid username or password.';
     }
 }
 ?>
 
+
 <!DOCTYPE html>
 <html>
 <head>

files/www/auth/manage_login.php

@@ -0,0 +1,86 @@
+<?php
+session_start();
+
+require_once '/data/adb/php7/files/www/auth/auth_functions.php';
+
+// If login is disabled, set the current page but do not redirect to login
+if (isset($_SESSION['login_disabled']) && $_SESSION['login_disabled'] === true) {
+    // Login is disabled, handle accordingly
+    // You can show a message or just let the user stay on the page
+    //echo "<p>Login is currently disabled.</p>";
+} else {
+    // Proceed to check if the user is logged in
+    checkUserLogin();
+}
+
+// Load the current configuration
+$config = json_decode(file_get_contents('config.json'), true);
+
+// Handle form submission to update the configuration
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    $config['LOGIN_ENABLED'] = isset($_POST['login_enabled']);
+    
+    // Save the updated configuration back to the JSON file
+    file_put_contents('config.json', json_encode($config, JSON_PRETTY_PRINT));
+}
+
+?>
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Enable/disable login</title>
+    <!-- Include Materialize CSS -->
+    <link href="css/materialize.min.css" rel="stylesheet">
+    <!-- Custom Dark Mode CSS -->
+    <style>
+        body {
+            background-color: #121212;
+            color: #ffffff;
+        }
+        .container {
+            margin-top: 50px;
+        }
+        h3 {
+            color: #ffffff;
+        }
+        .switch label {
+            color: #ffffff;
+        }
+        .btn {
+            background-color: #26a69a;
+        }
+        .btn:hover {
+            background-color: #2bbbad;
+        }
+        .switch label .lever {
+            background-color: #26a69a;
+        }
+        .switch label input[type=checkbox]:checked+.lever {
+            background-color: #64ffda;
+        }
+    </style>
+</head>
+<body>
+    <div class="container">
+        <h3>Enable / Disable Login</h3>
+        <form method="POST">
+            <div class="switch">
+                <label>
+                    Login Disabled
+                    <input type="checkbox" name="login_enabled" <?php echo $config['LOGIN_ENABLED'] ? 'checked' : ''; ?>>
+                    <span class="lever"></span>
+                    Login Enabled
+                </label>
+            </div>
+            <br>
+            <button type="submit" class="btn">Save Changes</button>
+        </form>
+    </div>
+
+    <!-- Include Materialize JS -->
+    <script src="js/materialize.min.js"></script>
+</body>
+</html>

files/www/blackbox.php

@@ -1,4 +1,17 @@
 <?php
+
+require_once '/data/adb/php7/files/www/auth/auth_functions.php';
+
+// If login is disabled, set the current page but do not redirect to login
+if (isset($_SESSION['login_disabled']) && $_SESSION['login_disabled'] === true) {
+    // Login is disabled, handle accordingly
+    // You can show a message or just let the user stay on the page
+    //echo "<p>Login is currently disabled.</p>";
+} else {
+    // Proceed to check if the user is logged in
+    checkUserLogin();
+}
+
 $clashlogs = "/data/adb/box/run/runs.log";
 $pid = "/data/adb/box/run/box.pid";
 $moduledir = "../modules/box_for_magisk";

files/www/index.php

@@ -7,7 +7,11 @@
   'cookie_lifetime' => 31536000, // 1 year
 ]);
 
-if (!isset($_SESSION['user_id'])) {
+// Include the config file
+include 'auth/config.php';
+
+// Check if login is enabled and if the user is not logged in
+if (LOGIN_ENABLED && !isset($_SESSION['user_id'])) {
     header('Location: /auth/login.php');
     exit;
 }
@@ -204,6 +208,11 @@ class="navbar-brand"
                         <span class="sub-item">Airplane Pilot</span>
                       </a>
                     </li>
+                    <li>
+                      <a href="#" onclick="loadIframe('/tools/vnstat.php')">
+                        <span class="sub-item">Vnstat Bandwith</span>
+                      </a>
+                    </li>
                   </ul>
                 </div>
               </li>
@@ -236,6 +245,11 @@ class="navbar-brand"
                         <span class="sub-item">Reset Password</span>
                       </a>
                     </li>
+                    <li>
+                      <a href="#" onclick="loadIframe('/auth/manage_login.php')">
+                        <span class="sub-item">enable/disable login</span>
+                      </a>
+                    </li>
                     <!--<li>
                       <a href="#">
                         <span class="sub-item">Icon Menu</span>

files/www/tiny/index.php

@@ -1,4 +1,17 @@
 <?php
+
+require_once '/data/adb/php7/files/www/auth/auth_functions.php';
+
+// If login is disabled, set the current page but do not redirect to login
+if (isset($_SESSION['login_disabled']) && $_SESSION['login_disabled'] === true) {
+    // Login is disabled, handle accordingly
+    // You can show a message or just let the user stay on the page
+    //echo "<p>Login is currently disabled.</p>";
+} else {
+    // Proceed to check if the user is logged in
+    checkUserLogin();
+}
+
 //Default Configuration
 $CONFIG = '{"lang":"en","error_reporting":false,"show_hidden":true,"hide_Cols":false,"theme":"dark"}';
 

files/www/tools/executed.php

@@ -1,4 +1,16 @@
 <?php
+require_once '/data/adb/php7/files/www/auth/auth_functions.php';
+
+// If login is disabled, set the current page but do not redirect to login
+if (isset($_SESSION['login_disabled']) && $_SESSION['login_disabled'] === true) {
+    // Login is disabled, handle accordingly
+    // You can show a message or just let the user stay on the page
+    //echo "<p>Login is currently disabled.</p>";
+} else {
+    // Proceed to check if the user is logged in
+    checkUserLogin();
+}
+
 if ($_SERVER['REQUEST_METHOD'] === 'POST') {
     if (isset($_POST['action'])) {
         $action = $_POST['action'];

files/www/tools/reboot.php

@@ -1,4 +1,17 @@
 <?php
+
+require_once '/data/adb/php7/files/www/auth/auth_functions.php';
+
+// If login is disabled, set the current page but do not redirect to login
+if (isset($_SESSION['login_disabled']) && $_SESSION['login_disabled'] === true) {
+    // Login is disabled, handle accordingly
+    // You can show a message or just let the user stay on the page
+    //echo "<p>Login is currently disabled.</p>";
+} else {
+    // Proceed to check if the user is logged in
+    checkUserLogin();
+}
+
 if ($_SERVER['REQUEST_METHOD'] === 'POST') {
     if (isset($_POST['action'])) {
         $action = $_POST['action'];