freedombone/src/freedombone-controlpanel

#!/bin/bash
#
# .---.                  .              .
# |                      |              |
# |--- .--. .-.  .-.  .-.|  .-. .--.--. |.-.  .-. .--.  .-.
# |    |   (.-' (.-' (   | (   )|  |  | |   )(   )|  | (.-'
# '    '     --'  --'  -' -  -' '  '   -' -'   -' '   -  --'
#
#                    Freedom in the Cloud
#
# Administrator control panel for the Freedombone system
#
# License
# =======
#
# Copyright (C) 2015 Bob Mottram <bob@robotics.uk.to>
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.

COMPLETION_FILE=$HOME/freedombone-completed.txt
SELECTED_USERNAME=
SIP_CONFIG_FILE=/etc/sipwitch.conf

function any_key {
    echo ' '
    read -n1 -r -p "Press any key to continue..." key
}

function add_user {
    data=$(tempfile 2>/dev/null)
    trap "rm -f $data" 0 1 2 5 15
    dialog --backtitle "Freedombone Control Panel" \
           --title "Add new user" \
           --form "\n" 8 40 3 \
              "Username:" 1 1 "" 1 11 16 15 \
              "ssh public key (optional):" 2 1 "" 3 1 40 10000 \
              2> $data
    sel=$?
    case $sel in
        1) return;;
        255) return;;
    esac
    new_user_username=$(cat $data | sed -n 1p)
    new_user_ssh_public_key=$(cat $data | sed -n 2p)
    if [ ${#new_user_username} -lt 2 ]; then
        dialog --title "New username" \
               --msgbox "No username was given" 6 40
        return
    fi
    if [[ "$new_user_username" == *" "* ]]; then
        dialog --title "Invalid username" \
               --msgbox "The username should not contain any spaces" 6 40
        return
    fi
    if [ ${#new_user_ssh_public_key} -lt 20 ]; then
        clear
        freedombone-adduser "$new_user_username"
        any_key
    else
        if [[ "$new_user_ssh_public_key" == "ssh-"* ]]; then
            clear
            freedombone-adduser "$new_user_username" "$new_user_ssh_public_key"
            any_key
        else
            dialog --title "ssh public key" \
                   --msgbox "This does not look like an ssh public key" 6 40
        fi
    fi
}

function show_sip_extensions {
    if [ ! -f $SIP_CONFIG_FILE ]; then
        return;
    fi
    clear
    echo "SIP phone extensions:"
    echo " "
    while read ext; do
        if [[ $ext == *"user id"* ]]; then
            echo -n "    "
            echo -n $(echo "$ext" | awk -F '"' '{print $2}' | awk -F '"' '{print $1}')
            echo -n " "
        fi
        if [[ $ext == *"extension"* ]]; then
            echo $(echo "$ext" | awk -F '>' '{print $2}' | awk -F '<' '{print $1}')
        fi
    done < $SIP_CONFIG_FILE
    any_key 
}

function select_user {
    SELECTED_USERNAME=
    data=$(tempfile 2>/dev/null)
    trap "rm -f $data" 0 1 2 5 15
    dialog --title "Select a user" \
           --backtitle "Freedombone Control Panel" \
           --dselect "/home/" 14 40 2> $data
    sel=$?
    case $sel in
        0) SELECTED_USERNAME=$(cat $data | awk -F '/' '{print $3}');;
        1) return;;
        255) return;;
    esac
    if [ ${#SELECTED_USERNAME} -lt 2 ]; then
        SELECTED_USERNAME=
    fi
    if [ ! -d /home/$SELECTED_USERNAME/Maildir ]; then
        dialog --title "User directory check" \
               --msgbox "This does not look like a user directory" 6 40
        SELECTED_USERNAME=
    fi
}

function delete_user {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi
    if grep -Fxq "Admin user: $SELECTED_USERNAME" $COMPLETION_FILE; then
        dialog --title "Administrator user" \
               --msgbox "You can't delete the administrator user" 6 40
        return
    fi
    clear
    freedombone-rmuser $SELECTED_USERNAME
    any_key
}

function change_password {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi
    clear
    echo "Change password for $SELECTED_USERNAME"
    echo ""
    su -c "passwd" - $SELECTED_USERNAME
    any_key
}

function change_ssh_public_key {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi

    if grep -Fxq "Admin user: $SELECTED_USERNAME" $COMPLETION_FILE; then
        dialog --title "Change ssh public key" \
               --backtitle "Freedombone Control Panel" \
               --defaultno \
               --yesno "\nThis is the administrator user.\n\nAre you sure you want to change the ssh public key for the administrator?" 10 60
        sel=$?
        case $sel in
            1) return;;
            255) return;;
        esac
    fi

    data=$(tempfile 2>/dev/null)
    trap "rm -f $data" 0 1 2 5 15
    dialog --title "Change ssh public key for $SELECTED_USERNAME" \
           --backtitle "Freedombone Control Panel" \
           --inputbox "Paste the ssh public key below" 8 60 2>$data
    sel=$?
    case $sel in
        0)
            SSH_PUBLIC_KEY=$(<$data)
            if [ "$SSH_PUBLIC_KEY" ]; then
                if [ ${#SSH_PUBLIC_KEY} -gt 5 ]; then
                    if [ -f "$SSH_PUBLIC_KEY" ]; then
                        if [ ! -d /home/$SELECTED_USERNAME/.ssh ]; then
                            mkdir /home/$SELECTED_USERNAME/.ssh
                        fi
                        cp $SSH_PUBLIC_KEY \
                           /home/$SELECTED_USERNAME/.ssh/authorized_keys
                        chown -R $SELECTED_USERNAME:$SELECTED_USERNAME \
                              /home/$SELECTED_USERNAME/.ssh
                        dialog --title "Change ssh public key" \
                               --msgbox "ssh public key was installed" 6 40
                    else
                        if [[ "$SSH_PUBLIC_KEY" == "ssh-"* ]]; then
                            if [ ! -d /home/$SELECTED_USERNAME/.ssh ]; then
                                mkdir /home/$SELECTED_USERNAME/.ssh
                            fi
                            echo "$SSH_PUBLIC_KEY" > \
                                 /home/$SELECTED_USERNAME/.ssh/authorized_keys
                            chown -R $SELECTED_USERNAME:$SELECTED_USERNAME \
                                  /home/$SELECTED_USERNAME/.ssh
                            dialog --title "Change ssh public key" \
                                   --msgbox "ssh public key was installed" 6 40
                        fi
                    fi
                fi
            fi
            ;;
    esac
}

function add_to_mailing_list {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi
    data=$(tempfile 2>/dev/null)
    trap "rm -f $data" 0 1 2 5 15
    dialog --backtitle "Freedombone Control Panel" \
           --title "Subscribe $SELECTED_USERNAME to a mailing list" \
           --form "\n" 8 68 4 \
              "List folder name:" 1 1 "" 1 35 26 25 \
              "Name between [] on subject line:" 2 1 "" 2 35 26 25 \
              "List email address:" 3 1 "" 3 35 26 25 \
              2> $data
    sel=$?
    case $sel in
        1) return;;
        255) return;;
    esac
    LIST_NAME=$(cat $data | sed -n 1p)
    LIST_SUBJECT=$(cat $data | sed -n 2p)
    LIST_EMAIL=$(cat $data | sed -n 3p)

    if [ ${#LIST_NAME} -lt 2 ]; then
        dialog --title "Add mailing list" \
               --msgbox "No mailing list name was given" 6 40
        return
    fi
    if [ ${#LIST_SUBJECT} -lt 2 ]; then
        dialog --title "Add mailing list" \
               --msgbox "No mailing list subject was given" 6 40
        return
    fi
    if [ ${#LIST_EMAIL} -lt 2 ]; then
        dialog --title "Add mailing list" \
               --msgbox "No mailing list email address was given" 6 40
        return
    fi
    if [[ "$LIST_EMAIL" != *"@"* || "$LIST_EMAIL" != *"."* ]]; then
        dialog --title "Add mailing list" \
               --msgbox "Unrecognised email address" 6 40
        return
    fi

    freedombone-addlist -u $SELECTED_USERNAME -l "$LIST_NAME" \
                        -s "$LIST_SUBJECT" -e "$LIST_EMAIL"
    dialog --title "Add mailing list" \
           --msgbox "$LIST_NAME list was added" 6 40
}

function email_rule {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi
    data=$(tempfile 2>/dev/null)
    trap "rm -f $data" 0 1 2 5 15
    dialog --backtitle "Freedombone Control Panel" \
           --title "Email rule for user $SELECTED_USERNAME" \
           --form "\n" 8 65 3 \
              "When email arrives from address:" 1 1 "" 1 35 24 28 \
              "Move to folder:" 2 1 "" 2 35 24 28 \
              2> $data
    sel=$?
    case $sel in
        1) return;;
        255) return;;
    esac
    RULE_EMAIL=$(cat $data | sed -n 1p)
    RULE_FOLDER=$(cat $data | sed -n 2p)

    if [ ${#RULE_EMAIL} -lt 2 ]; then
        dialog --title "Add email rule" \
               --msgbox "No email address was given" 6 40
        return
    fi
    if [ ${#RULE_FOLDER} -lt 2 ]; then
        dialog --title "Add email rule" \
               --msgbox "No folder name was given" 6 40
        return
    fi
    if [[ "$RULE_EMAIL" != *"@"* || "$RULE_EMAIL" != *"."* ]]; then
        dialog --title "Add email rule" \
               --msgbox "Unrecognised email address" 6 40
        return
    fi

    freedombone-addemail -u $SELECTED_USERNAME -e "$RULE_EMAIL" \
                         -g "$RULE_FOLDER"
    dialog --title "Add email rule" \
           --msgbox "Email rule for $RULE_EMAIL was added" 6 40
}

function block_unblock_email {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi
    data=$(tempfile 2>/dev/null)
    trap "rm -f $data" 0 1 2 5 15
    dialog --backtitle "Freedombone Control Panel" \
           --title "Block/Unblock email going to $SELECTED_USERNAME" \
           --form "\n" 8 65 3 \
              "When email arrives from address:" 1 1 "" 1 35 24 28 \
              "Block it:" 2 1 "yes" 2 35 4 4 \
              2> $data
    sel=$?
    case $sel in
        1) return;;
        255) return;;
    esac
    BLOCK_EMAIL=$(cat $data | sed -n 1p)
    BLOCK=$(cat $data | sed -n 2p)
    if [ ${#BLOCK_EMAIL} -lt 2 ]; then
        dialog --title "Block/Unblock an email" \
               --msgbox "No email address was given" 6 40
        return
    fi
    if [[ "$BLOCK_EMAIL" != *"@"* || "$BLOCK_EMAIL" != *"."* ]]; then
        dialog --title "Block/Unblock an email" \
               --msgbox "Unrecognised email address" 6 40
        return
    fi
    if [[ $BLOCK == "y"* || $BLOCK == "Y"* ]]; then
        freedombone-ignore -u $SELECTED_USERNAME -e "$BLOCK_EMAIL"
        dialog --title "Block an email" \
               --msgbox "Email from $BLOCK_EMAIL to $SELECTED_USERNAME blocked" 6 40
    else
        freedombone-unignore -u $SELECTED_USERNAME -e "$BLOCK_EMAIL"
        dialog --title "Unblock an email" \
               --msgbox "Email from $BLOCK_EMAIL to $SELECTED_USERNAME unblocked" 6 40
    fi
}

function block_unblock_subject {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi
    data=$(tempfile 2>/dev/null)
    trap "rm -f $data" 0 1 2 5 15
    dialog --backtitle "Freedombone Control Panel" \
           --title "Block/Unblock email going to $SELECTED_USERNAME" \
           --form "\n" 8 70 3 \
              "When email arrives with subject text:" 1 1 "" 1 40 24 28 \
              "Block it:" 2 1 "yes" 2 40 4 4 \
              2> $data
    sel=$?
    case $sel in
        1) return;;
        255) return;;
    esac
    BLOCK_SUBJECT=$(cat $data | sed -n 1p)
    BLOCK=$(cat $data | sed -n 2p)
    if [ ${#BLOCK_SUBJECT} -lt 2 ]; then
        dialog --title "Block/Unblock an email" \
               --msgbox "No subject was given" 6 40
        return
    fi
    if [[ $BLOCK == "y"* || $BLOCK == "Y"* ]]; then
        freedombone-ignore -u $SELECTED_USERNAME -t "$BLOCK_SUBJECT"
        dialog --title "Block an email" \
               --msgbox "Email with subject $BLOCK_SUBJECT to $SELECTED_USERNAME blocked" 6 40
    else
        freedombone-unignore -u $SELECTED_USERNAME -t "$BLOCK_SUBJECT"
        dialog --title "Unblock an email" \
               --msgbox "Email with subject $BLOCK_SUBJECT to $SELECTED_USERNAME unblocked" 6 40
    fi
}

function create_keydrive_master {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi
    dialog --title "USB Master Keydrive" \
           --msgbox "Plug in a LUKS encrypted USB drive" 6 40
    clear
    freedombone-keydrive -u $SELECTED_USERNAME --master 'yes'
    any_key
}

function create_keydrive_fragment {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi
    dialog --title "USB Fragment Keydrive" \
           --msgbox "Plug in a LUKS encrypted USB drive" 6 40
    clear
    freedombone-keydrive -u $SELECTED_USERNAME
    any_key
}

function backup_data {
    dialog --title "Backup data to USB" \
           --msgbox "Plug in a LUKS encrypted USB drive" 6 40
    clear
    backup
    any_key
}

function restore_data {
    dialog --title "Restore data from USB" \
           --msgbox "Plug in your backup USB drive" 6 40
    clear
    restore
    any_key
}

function restore_data_remote {
    any_key
}

function logging_on_off {
    dialog --title "Logging" \
           --backtitle "Freedombone Control Panel" \
           --yesno "\nDo you want to turn logging on?" 7 60
    sel=$?
    case $sel in
        0) freedombone-logging on;;
        1) freedombone-logging off;;
        255) return;;
    esac
}

function restore_gpg_key {
    select_user
    if [ ! $SELECTED_USERNAME ]; then
        return
    fi
    dialog --title "Restore GPG key for user $SELECTED_USERNAME" \
           --msgbox "Plug in your USB keydrive" 6 40
    clear
    freedombone-recoverkey -u $SELECTED_USERNAME
    any_key
}

function security_settings {
    freedombone-sec
    any_key
}

function reset_tripwire {
  clear
  echo 'Resetting the Tripwire...'
  echo ' '
  echo '

' | reset-tripwire
  any_key
}

function menu_backup_restore {
    while true
    do
        data=$(tempfile 2>/dev/null)
        trap "rm -f $data" 0 1 2 5 15
        dialog --backtitle "Freedombone Control Panel" \
               --title "Backup and Restore" \
               --radiolist "Choose an operation:" 14 70 7 \
               1 "Backup data to USB drive" off \
               2 "Restore GPG key from USB keydrive" off \
               3 "Restore data from USB drive" off \
               4 "Restore from remote backup" off \
               5 "Backup GPG key to USB (master keydrive)" off \
               6 "Backup GPG key to USB (fragment keydrive)" off \
               7 "Back to main menu" on 2> $data
        sel=$?
        case $sel in
            1) break;;
            255) break;;
        esac
        case $(cat $data) in
            1) backup_data;;
            2) restore_gpg_key;;
            3) restore_data;;
            4) restore_data_remote;;
            5) create_keydrive_master;;
            6) create_keydrive_fragment;;
            7) break;;
        esac
    done
}

function menu_email {
    while true
    do
        data=$(tempfile 2>/dev/null)
        trap "rm -f $data" 0 1 2 5 15
        dialog --backtitle "Freedombone Control Panel" \
               --title "Email Filtering Rules" \
               --radiolist "Choose an operation:" 12 70 5 \
               1 "Add a user to a mailing list" off \
               2 "Add an email rule" off \
               3 "Block/Unblock an email address" off \
               4 "Block/Unblock email with subject text" off \
               5 "Back to main menu" on 2> $data
        sel=$?
        case $sel in
            1) break;;
            255) break;;
        esac
        case $(cat $data) in
            1) add_to_mailing_list;;
            2) email_rule;;
            3) block_unblock_email;;
            4) block_unblock_subject;;
            5) break;;
        esac
    done
}

function menu_users {
    while true
    do
        data=$(tempfile 2>/dev/null)
        trap "rm -f $data" 0 1 2 5 15
        dialog --backtitle "Freedombone Control Panel" \
               --title "Manage Users" \
               --radiolist "Choose an operation:" 12 70 5 \
               1 "Add a user" off \
               2 "Delete a user" off \
               3 "Change user password" off \
               4 "Change user ssh public key" off \
               5 "Back to main menu" on 2> $data
        sel=$?
        case $sel in
            1) break;;
            255) break;;
        esac
        case $(cat $data) in
            1) add_user;;
            2) delete_user;;
            3) change_password;;
            4) change_ssh_public_key;;
            5) break;;
        esac
    done
}

function menu_top_level {
    while true
    do
        data=$(tempfile 2>/dev/null)
        trap "rm -f $data" 0 1 2 5 15
        dialog --backtitle "Freedombone Control Panel" \
               --title "Control Panel" \
               --radiolist "Choose an operation:" 15 70 8 \
               1 "Backup and Restore" off \
               2 "Show SIP Phone Extensions" off \
               3 "Logging on/off" off \
               4 "Manage Users" off \
               5 "Email Filtering Rules" off \
               6 "Security Settings" off \
               7 "Reset Tripwire" off \
               8 "Exit" on 2> $data
        sel=$?
        case $sel in
            1) exit 1;;
            255) exit 1;;
        esac
        case $(cat $data) in
            1) menu_backup_restore;;
            2) show_sip_extensions;;
            3) logging_on_off;;
            4) menu_users;;
            5) menu_email;;
            6) security_settings;;
            7) reset_tripwire;;
            8) break;;
        esac
    done
}

if [ ! -f $COMPLETION_FILE ]; then
    echo 'This command should only be run on an installed Freedombone system'
    exit 1
fi

menu_top_level
clear
cat /etc/motd
exit 0
control panel 2015-10-31 21:14:23 +01:00			`#!/bin/bash`
			`#`
			`# .---. . .`
			`# \| \| \|`
			`# \|--- .--. .-. .-. .-.\| .-. .--.--. \|.-. .-. .--. .-.`
			`# \| \| (.-' (.-' ( \| ( )\| \| \| \| )( )\| \| (.-'`
			`# ' ' --' --' -' - -' ' ' -' -' -' ' - --'`
			`#`
			`# Freedom in the Cloud`
			`#`
			`# Administrator control panel for the Freedombone system`
			`#`
			`# License`
			`# =======`
			`#`
			`# Copyright (C) 2015 Bob Mottram <bob@robotics.uk.to>`
			`#`
			`# This program is free software: you can redistribute it and/or modify`
			`# it under the terms of the GNU General Public License as published by`
			`# the Free Software Foundation, either version 3 of the License, or`
			`# (at your option) any later version.`
			`#`
			`# This program is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with this program. If not, see <http://www.gnu.org/licenses/>.`

			`COMPLETION_FILE=$HOME/freedombone-completed.txt`
			`SELECTED_USERNAME=`
Show SIP extensions on control panel 2015-11-02 17:28:18 +01:00			`SIP_CONFIG_FILE=/etc/sipwitch.conf`
control panel 2015-10-31 21:14:23 +01:00
			`function any_key {`
			`echo ' '`
			`read -n1 -r -p "Press any key to continue..." key`
			`}`

			`function add_user {`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --backtitle "Freedombone Control Panel" \`
			`--title "Add new user" \`
			`--form "\n" 8 40 3 \`
			`"Username:" 1 1 "" 1 11 16 15 \`
			`"ssh public key (optional):" 2 1 "" 3 1 40 10000 \`
			`2> $data`
			`sel=$?`
			`case $sel in`
			`1) return;;`
			`255) return;;`
			`esac`
			`new_user_username=$(cat $data \| sed -n 1p)`
			`new_user_ssh_public_key=$(cat $data \| sed -n 2p)`
			`if [ ${#new_user_username} -lt 2 ]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "New username" \`
			`--msgbox "No username was given" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [[ "$new_user_username" == " " ]]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Invalid username" \`
			`--msgbox "The username should not contain any spaces" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [ ${#new_user_ssh_public_key} -lt 20 ]; then`
			`clear`
			`freedombone-adduser "$new_user_username"`
			`any_key`
			`else`
			`if [[ "$new_user_ssh_public_key" == "ssh-"* ]]; then`
			`clear`
			`freedombone-adduser "$new_user_username" "$new_user_ssh_public_key"`
			`any_key`
			`else`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "ssh public key" \`
			`--msgbox "This does not look like an ssh public key" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`fi`
			`fi`
			`}`

Show SIP extensions on control panel 2015-11-02 17:28:18 +01:00			`function show_sip_extensions {`
			`if [ ! -f $SIP_CONFIG_FILE ]; then`
			`return;`
			`fi`
			`clear`
			`echo "SIP phone extensions:"`
			`echo " "`
			`while read ext; do`
			`if [[ $ext == "user id" ]]; then`
			`echo -n " "`
			`echo -n $(echo "$ext" \| awk -F '"' '{print $2}' \| awk -F '"' '{print $1}')`
			`echo -n " "`
			`fi`
			`if [[ $ext == "extension" ]]; then`
			`echo $(echo "$ext" \| awk -F '>' '{print $2}' \| awk -F '<' '{print $1}')`
			`fi`
			`done < $SIP_CONFIG_FILE`
			`any_key`
			`}`

control panel 2015-10-31 21:14:23 +01:00			`function select_user {`
			`SELECTED_USERNAME=`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --title "Select a user" \`
			`--backtitle "Freedombone Control Panel" \`
			`--dselect "/home/" 14 40 2> $data`
			`sel=$?`
			`case $sel in`
			`0) SELECTED_USERNAME=$(cat $data \| awk -F '/' '{print $3}');;`
Exiting from menus 2015-11-01 11:56:33 +01:00			`1) return;;`
			`255) return;;`
control panel 2015-10-31 21:14:23 +01:00			`esac`
			`if [ ${#SELECTED_USERNAME} -lt 2 ]; then`
			`SELECTED_USERNAME=`
			`fi`
			`if [ ! -d /home/$SELECTED_USERNAME/Maildir ]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "User directory check" \`
			`--msgbox "This does not look like a user directory" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`SELECTED_USERNAME=`
			`fi`
			`}`

			`function delete_user {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`
			`if grep -Fxq "Admin user: $SELECTED_USERNAME" $COMPLETION_FILE; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Administrator user" \`
			`--msgbox "You can't delete the administrator user" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`clear`
			`freedombone-rmuser $SELECTED_USERNAME`
			`any_key`
			`}`

			`function change_password {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`
			`clear`
Title 2015-11-01 10:51:10 +01:00			`echo "Change password for $SELECTED_USERNAME"`
			`echo ""`
control panel 2015-10-31 21:14:23 +01:00			`su -c "passwd" - $SELECTED_USERNAME`
			`any_key`
			`}`

Changing ssh public key 2015-11-01 11:51:54 +01:00			`function change_ssh_public_key {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`

			`if grep -Fxq "Admin user: $SELECTED_USERNAME" $COMPLETION_FILE; then`
			`dialog --title "Change ssh public key" \`
			`--backtitle "Freedombone Control Panel" \`
			`--defaultno \`
			`--yesno "\nThis is the administrator user.\n\nAre you sure you want to change the ssh public key for the administrator?" 10 60`
			`sel=$?`
			`case $sel in`
			`1) return;;`
			`255) return;;`
			`esac`
			`fi`

			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --title "Change ssh public key for $SELECTED_USERNAME" \`
			`--backtitle "Freedombone Control Panel" \`
			`--inputbox "Paste the ssh public key below" 8 60 2>$data`
			`sel=$?`
			`case $sel in`
			`0)`
			`SSH_PUBLIC_KEY=$(<$data)`
			`if [ "$SSH_PUBLIC_KEY" ]; then`
			`if [ ${#SSH_PUBLIC_KEY} -gt 5 ]; then`
			`if [ -f "$SSH_PUBLIC_KEY" ]; then`
			`if [ ! -d /home/$SELECTED_USERNAME/.ssh ]; then`
			`mkdir /home/$SELECTED_USERNAME/.ssh`
			`fi`
			`cp $SSH_PUBLIC_KEY \`
			`/home/$SELECTED_USERNAME/.ssh/authorized_keys`
			`chown -R $SELECTED_USERNAME:$SELECTED_USERNAME \`
			`/home/$SELECTED_USERNAME/.ssh`
			`dialog --title "Change ssh public key" \`
			`--msgbox "ssh public key was installed" 6 40`
			`else`
			`if [[ "$SSH_PUBLIC_KEY" == "ssh-"* ]]; then`
			`if [ ! -d /home/$SELECTED_USERNAME/.ssh ]; then`
			`mkdir /home/$SELECTED_USERNAME/.ssh`
			`fi`
			`echo "$SSH_PUBLIC_KEY" > \`
			`/home/$SELECTED_USERNAME/.ssh/authorized_keys`
			`chown -R $SELECTED_USERNAME:$SELECTED_USERNAME \`
			`/home/$SELECTED_USERNAME/.ssh`
			`dialog --title "Change ssh public key" \`
			`--msgbox "ssh public key was installed" 6 40`
			`fi`
			`fi`
			`fi`
			`fi`
			`;;`
			`esac`
			`}`

control panel 2015-10-31 21:14:23 +01:00			`function add_to_mailing_list {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --backtitle "Freedombone Control Panel" \`
			`--title "Subscribe $SELECTED_USERNAME to a mailing list" \`
			`--form "\n" 8 68 4 \`
			`"List folder name:" 1 1 "" 1 35 26 25 \`
			`"Name between [] on subject line:" 2 1 "" 2 35 26 25 \`
			`"List email address:" 3 1 "" 3 35 26 25 \`
			`2> $data`
			`sel=$?`
			`case $sel in`
			`1) return;;`
			`255) return;;`
			`esac`
			`LIST_NAME=$(cat $data \| sed -n 1p)`
			`LIST_SUBJECT=$(cat $data \| sed -n 2p)`
			`LIST_EMAIL=$(cat $data \| sed -n 3p)`

			`if [ ${#LIST_NAME} -lt 2 ]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Add mailing list" \`
			`--msgbox "No mailing list name was given" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [ ${#LIST_SUBJECT} -lt 2 ]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Add mailing list" \`
			`--msgbox "No mailing list subject was given" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [ ${#LIST_EMAIL} -lt 2 ]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Add mailing list" \`
			`--msgbox "No mailing list email address was given" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [[ "$LIST_EMAIL" != "@" \|\| "$LIST_EMAIL" != "." ]]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Add mailing list" \`
			`--msgbox "Unrecognised email address" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`

Tidying 2015-11-01 11:08:36 +01:00			`freedombone-addlist -u $SELECTED_USERNAME -l "$LIST_NAME" \`
			`-s "$LIST_SUBJECT" -e "$LIST_EMAIL"`
			`dialog --title "Add mailing list" \`
			`--msgbox "$LIST_NAME list was added" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`}`

			`function email_rule {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --backtitle "Freedombone Control Panel" \`
			`--title "Email rule for user $SELECTED_USERNAME" \`
			`--form "\n" 8 65 3 \`
			`"When email arrives from address:" 1 1 "" 1 35 24 28 \`
			`"Move to folder:" 2 1 "" 2 35 24 28 \`
			`2> $data`
			`sel=$?`
			`case $sel in`
			`1) return;;`
			`255) return;;`
			`esac`
			`RULE_EMAIL=$(cat $data \| sed -n 1p)`
			`RULE_FOLDER=$(cat $data \| sed -n 2p)`

			`if [ ${#RULE_EMAIL} -lt 2 ]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Add email rule" \`
			`--msgbox "No email address was given" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [ ${#RULE_FOLDER} -lt 2 ]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Add email rule" \`
			`--msgbox "No folder name was given" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [[ "$RULE_EMAIL" != "@" \|\| "$RULE_EMAIL" != "." ]]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Add email rule" \`
			`--msgbox "Unrecognised email address" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`

Tidying 2015-11-01 11:08:36 +01:00			`freedombone-addemail -u $SELECTED_USERNAME -e "$RULE_EMAIL" \`
			`-g "$RULE_FOLDER"`
			`dialog --title "Add email rule" \`
			`--msgbox "Email rule for $RULE_EMAIL was added" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`}`

			`function block_unblock_email {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --backtitle "Freedombone Control Panel" \`
			`--title "Block/Unblock email going to $SELECTED_USERNAME" \`
			`--form "\n" 8 65 3 \`
			`"When email arrives from address:" 1 1 "" 1 35 24 28 \`
			`"Block it:" 2 1 "yes" 2 35 4 4 \`
			`2> $data`
			`sel=$?`
			`case $sel in`
			`1) return;;`
			`255) return;;`
			`esac`
			`BLOCK_EMAIL=$(cat $data \| sed -n 1p)`
			`BLOCK=$(cat $data \| sed -n 2p)`
			`if [ ${#BLOCK_EMAIL} -lt 2 ]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Block/Unblock an email" \`
			`--msgbox "No email address was given" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [[ "$BLOCK_EMAIL" != "@" \|\| "$BLOCK_EMAIL" != "." ]]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Block/Unblock an email" \`
			`--msgbox "Unrecognised email address" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [[ $BLOCK == "y"* \|\| $BLOCK == "Y"* ]]; then`
			`freedombone-ignore -u $SELECTED_USERNAME -e "$BLOCK_EMAIL"`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Block an email" \`
			`--msgbox "Email from $BLOCK_EMAIL to $SELECTED_USERNAME blocked" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`else`
			`freedombone-unignore -u $SELECTED_USERNAME -e "$BLOCK_EMAIL"`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Unblock an email" \`
			`--msgbox "Email from $BLOCK_EMAIL to $SELECTED_USERNAME unblocked" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`fi`
			`}`

			`function block_unblock_subject {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --backtitle "Freedombone Control Panel" \`
			`--title "Block/Unblock email going to $SELECTED_USERNAME" \`
			`--form "\n" 8 70 3 \`
			`"When email arrives with subject text:" 1 1 "" 1 40 24 28 \`
			`"Block it:" 2 1 "yes" 2 40 4 4 \`
			`2> $data`
			`sel=$?`
			`case $sel in`
			`1) return;;`
			`255) return;;`
			`esac`
			`BLOCK_SUBJECT=$(cat $data \| sed -n 1p)`
			`BLOCK=$(cat $data \| sed -n 2p)`
			`if [ ${#BLOCK_SUBJECT} -lt 2 ]; then`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Block/Unblock an email" \`
			`--msgbox "No subject was given" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`return`
			`fi`
			`if [[ $BLOCK == "y"* \|\| $BLOCK == "Y"* ]]; then`
			`freedombone-ignore -u $SELECTED_USERNAME -t "$BLOCK_SUBJECT"`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Block an email" \`
			`--msgbox "Email with subject $BLOCK_SUBJECT to $SELECTED_USERNAME blocked" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`else`
			`freedombone-unignore -u $SELECTED_USERNAME -t "$BLOCK_SUBJECT"`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Unblock an email" \`
			`--msgbox "Email with subject $BLOCK_SUBJECT to $SELECTED_USERNAME unblocked" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`fi`
			`}`

			`function create_keydrive_master {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "USB Master Keydrive" \`
			`--msgbox "Plug in a LUKS encrypted USB drive" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`clear`
			`freedombone-keydrive -u $SELECTED_USERNAME --master 'yes'`
			`any_key`
			`}`

			`function create_keydrive_fragment {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "USB Fragment Keydrive" \`
			`--msgbox "Plug in a LUKS encrypted USB drive" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`clear`
			`freedombone-keydrive -u $SELECTED_USERNAME`
			`any_key`
			`}`

			`function backup_data {`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Backup data to USB" \`
			`--msgbox "Plug in a LUKS encrypted USB drive" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`clear`
			`backup`
			`any_key`
			`}`

			`function restore_data {`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Restore data from USB" \`
			`--msgbox "Plug in your backup USB drive" 6 40`
control panel 2015-10-31 21:14:23 +01:00			`clear`
			`restore`
			`any_key`
			`}`

Restoring gpg key 2015-10-31 22:01:24 +01:00			`function restore_data_remote {`
			`any_key`
			`}`

logging command 2015-10-31 23:55:09 +01:00			`function logging_on_off {`
Enable logging on the control panel 2015-11-01 00:09:32 +01:00			`dialog --title "Logging" \`
			`--backtitle "Freedombone Control Panel" \`
			`--yesno "\nDo you want to turn logging on?" 7 60`
			`sel=$?`
			`case $sel in`
			`0) freedombone-logging on;;`
			`1) freedombone-logging off;;`
			`255) return;;`
			`esac`
logging command 2015-10-31 23:55:09 +01:00			`}`

Restoring gpg key 2015-10-31 22:01:24 +01:00			`function restore_gpg_key {`
			`select_user`
			`if [ ! $SELECTED_USERNAME ]; then`
			`return`
			`fi`
Tidying 2015-11-01 11:08:36 +01:00			`dialog --title "Restore GPG key for user $SELECTED_USERNAME" \`
			`--msgbox "Plug in your USB keydrive" 6 40`
Restoring gpg key 2015-10-31 22:01:24 +01:00			`clear`
			`freedombone-recoverkey -u $SELECTED_USERNAME`
			`any_key`
			`}`

Pause after running security settings 2015-11-03 10:24:55 +01:00			`function security_settings {`
			`freedombone-sec`
			`any_key`
			`}`

Move resetting of the tripwire to the control panel Since it's a commonly used function 2015-11-03 10:34:28 +01:00			`function reset_tripwire {`
			`clear`
Title 2015-11-03 10:37:16 +01:00			`echo 'Resetting the Tripwire...'`
			`echo ' '`
Move resetting of the tripwire to the control panel Since it's a commonly used function 2015-11-03 10:34:28 +01:00			`echo '`

			`' \| reset-tripwire`
			`any_key`
			`}`

Simplification of control panel menus 2015-11-01 11:29:42 +01:00			`function menu_backup_restore {`
control panel 2015-10-31 21:14:23 +01:00			`while true`
			`do`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --backtitle "Freedombone Control Panel" \`
Simplification of control panel menus 2015-11-01 11:29:42 +01:00			`--title "Backup and Restore" \`
			`--radiolist "Choose an operation:" 14 70 7 \`
control panel 2015-10-31 21:14:23 +01:00			`1 "Backup data to USB drive" off \`
Simplification of control panel menus 2015-11-01 11:29:42 +01:00			`2 "Restore GPG key from USB keydrive" off \`
			`3 "Restore data from USB drive" off \`
			`4 "Restore from remote backup" off \`
			`5 "Backup GPG key to USB (master keydrive)" off \`
			`6 "Backup GPG key to USB (fragment keydrive)" off \`
			`7 "Back to main menu" on 2> $data`
control panel 2015-10-31 21:14:23 +01:00			`sel=$?`
			`case $sel in`
Exiting from menus 2015-11-01 11:56:33 +01:00			`1) break;;`
			`255) break;;`
control panel 2015-10-31 21:14:23 +01:00			`esac`
			`case $(cat $data) in`
			`1) backup_data;;`
Simplification of control panel menus 2015-11-01 11:29:42 +01:00			`2) restore_gpg_key;;`
			`3) restore_data;;`
			`4) restore_data_remote;;`
			`5) create_keydrive_master;;`
			`6) create_keydrive_fragment;;`
			`7) break;;`
			`esac`
			`done`
			`}`

			`function menu_email {`
			`while true`
			`do`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --backtitle "Freedombone Control Panel" \`
			`--title "Email Filtering Rules" \`
			`--radiolist "Choose an operation:" 12 70 5 \`
			`1 "Add a user to a mailing list" off \`
			`2 "Add an email rule" off \`
			`3 "Block/Unblock an email address" off \`
			`4 "Block/Unblock email with subject text" off \`
			`5 "Back to main menu" on 2> $data`
			`sel=$?`
			`case $sel in`
Exiting from menus 2015-11-01 11:56:33 +01:00			`1) break;;`
			`255) break;;`
Simplification of control panel menus 2015-11-01 11:29:42 +01:00			`esac`
			`case $(cat $data) in`
			`1) add_to_mailing_list;;`
			`2) email_rule;;`
			`3) block_unblock_email;;`
			`4) block_unblock_subject;;`
			`5) break;;`
			`esac`
			`done`
			`}`

			`function menu_users {`
			`while true`
			`do`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --backtitle "Freedombone Control Panel" \`
Tidying 2015-11-01 11:59:10 +01:00			`--title "Manage Users" \`
Simplification of control panel menus 2015-11-01 11:29:42 +01:00			`--radiolist "Choose an operation:" 12 70 5 \`
			`1 "Add a user" off \`
			`2 "Delete a user" off \`
			`3 "Change user password" off \`
			`4 "Change user ssh public key" off \`
			`5 "Back to main menu" on 2> $data`
			`sel=$?`
			`case $sel in`
Exiting from menus 2015-11-01 11:56:33 +01:00			`1) break;;`
			`255) break;;`
Simplification of control panel menus 2015-11-01 11:29:42 +01:00			`esac`
			`case $(cat $data) in`
			`1) add_user;;`
			`2) delete_user;;`
			`3) change_password;;`
			`4) change_ssh_public_key;;`
			`5) break;;`
			`esac`
			`done`
			`}`

			`function menu_top_level {`
			`while true`
			`do`
			`data=$(tempfile 2>/dev/null)`
			`trap "rm -f $data" 0 1 2 5 15`
			`dialog --backtitle "Freedombone Control Panel" \`
			`--title "Control Panel" \`
Move resetting of the tripwire to the control panel Since it's a commonly used function 2015-11-03 10:34:28 +01:00			`--radiolist "Choose an operation:" 15 70 8 \`
and 2015-11-01 11:30:15 +01:00			`1 "Backup and Restore" off \`
Show SIP extensions on control panel 2015-11-02 17:28:18 +01:00			`2 "Show SIP Phone Extensions" off \`
			`3 "Logging on/off" off \`
			`4 "Manage Users" off \`
			`5 "Email Filtering Rules" off \`
			`6 "Security Settings" off \`
Move resetting of the tripwire to the control panel Since it's a commonly used function 2015-11-03 10:34:28 +01:00			`7 "Reset Tripwire" off \`
			`8 "Exit" on 2> $data`
Simplification of control panel menus 2015-11-01 11:29:42 +01:00			`sel=$?`
			`case $sel in`
			`1) exit 1;;`
			`255) exit 1;;`
			`esac`
			`case $(cat $data) in`
			`1) menu_backup_restore;;`
Show SIP extensions on control panel 2015-11-02 17:28:18 +01:00			`2) show_sip_extensions;;`
			`3) logging_on_off;;`
			`4) menu_users;;`
			`5) menu_email;;`
Pause after running security settings 2015-11-03 10:24:55 +01:00			`6) security_settings;;`
Move resetting of the tripwire to the control panel Since it's a commonly used function 2015-11-03 10:34:28 +01:00			`7) reset_tripwire;;`
			`8) break;;`
control panel 2015-10-31 21:14:23 +01:00			`esac`
			`done`
			`}`

			`if [ ! -f $COMPLETION_FILE ]; then`
			`echo 'This command should only be run on an installed Freedombone system'`
			`exit 1`
			`fi`

			`menu_top_level`
Clear on exit 2015-10-31 21:18:34 +01:00			`clear`
			`cat /etc/motd`
control panel 2015-10-31 21:14:23 +01:00			`exit 0`