| | |
|---|
| | | $this->ssl_certificate_changed = true; |
|---|
| | | |
|---|
| | | //* Rename files if they exist |
|---|
| | | if(file_exists($key_file)) $app->system->rename($key_file,$key_file.'.bak'); |
|---|
| | | if(file_exists($key_file2)) $app->system->rename($key_file2,$key_file2.'.bak'); |
|---|
| | | if(file_exists($key_file)){ |
|---|
| | | $app->system->rename($key_file,$key_file.'.bak'); |
|---|
| | | $app->system->chmod($key_file.'.bak',0400); |
|---|
| | | } |
|---|
| | | if(file_exists($key_file2)){ |
|---|
| | | $app->system->rename($key_file2,$key_file2.'.bak'); |
|---|
| | | $app->system->chmod($key_file2.'.bak',0400); |
|---|
| | | } |
|---|
| | | if(file_exists($csr_file)) $app->system->rename($csr_file,$csr_file.'.bak'); |
|---|
| | | if(file_exists($crt_file)) $app->system->rename($crt_file,$crt_file.'.bak'); |
|---|
| | | |
|---|
| | |
|---|
| | | |
|---|
| | | $rand_file = escapeshellcmd($rand_file); |
|---|
| | | $key_file = escapeshellcmd($key_file); |
|---|
| | | if(substr($domain, 0, 2) == '*.' && strpos($key_file, '/ssl/\*.') != false) $key_file = str_replace('/ssl/\*.', '/ssl/*.', $key_file); // wildcard certificate |
|---|
| | | $key_file2 = escapeshellcmd($key_file2); |
|---|
| | | if(substr($domain, 0, 2) == '*.' && strpos($key_file2, '/ssl/\*.') != false) $key_file2 = str_replace('/ssl/\*.', '/ssl/*.', $key_file2); // wildcard certificate |
|---|
| | | $ssl_days = 3650; |
|---|
| | | $csr_file = escapeshellcmd($csr_file); |
|---|
| | | if(substr($domain, 0, 2) == '*.' && strpos($csr_file, '/ssl/\*.') != false) $csr_file = str_replace('/ssl/\*.', '/ssl/*.', $csr_file); // wildcard certificate |
|---|
| | | $config_file = escapeshellcmd($ssl_cnf_file); |
|---|
| | | $crt_file = escapeshellcmd($crt_file); |
|---|
| | | if(substr($domain, 0, 2) == '*.' && strpos($crt_file, '/ssl/\*.') != false) $crt_file = str_replace('/ssl/\*.', '/ssl/*.', $crt_file); // wildcard certificate |
|---|
| | | |
|---|
| | | if(is_file($ssl_cnf_file) && !is_link($ssl_cnf_file)) { |
|---|
| | | |
|---|
| | |
|---|
| | | |
|---|
| | | } |
|---|
| | | |
|---|
| | | $app->system->chmod($key_file,0400); |
|---|
| | | $app->system->chmod($key_file2,0400); |
|---|
| | | @$app->system->unlink($config_file); |
|---|
| | | @$app->system->unlink($rand_file); |
|---|
| | |
|---|
| | | $bundle_file = $ssl_dir.'/'.$domain.".bundle"; |
|---|
| | | |
|---|
| | | //* Backup files |
|---|
| | | if(file_exists($key_file)) $app->system->copy($key_file,$key_file.'~'); |
|---|
| | | if(file_exists($key_file2)) $app->system->copy($key_file2,$key_file2.'~'); |
|---|
| | | if(file_exists($key_file)){ |
|---|
| | | $app->system->copy($key_file,$key_file.'~'); |
|---|
| | | $app->system->chmod($key_file.'~',0400); |
|---|
| | | } |
|---|
| | | if(file_exists($key_file2)){ |
|---|
| | | $app->system->copy($key_file2,$key_file2.'~'); |
|---|
| | | $app->system->chmod($key_file2.'~',0400); |
|---|
| | | } |
|---|
| | | if(file_exists($csr_file)) $app->system->copy($csr_file,$csr_file.'~'); |
|---|
| | | if(file_exists($crt_file)) $app->system->copy($crt_file,$crt_file.'~'); |
|---|
| | | if(file_exists($bundle_file)) $app->system->copy($bundle_file,$bundle_file.'~'); |
|---|
| | |
|---|
| | | |
|---|
| | | //* Create new base directory, if it does not exist yet |
|---|
| | | if(!is_dir($new_dir)) $app->system->mkdirpath($new_dir); |
|---|
| | | //exec('mv '.$data['old']['document_root'].' '.$new_dir); |
|---|
| | | $app->system->rename($data['old']['document_root'],$new_dir); |
|---|
| | | exec('mv '.escapeshellarg($data['old']['document_root']).' '.escapeshellarg($new_dir)); |
|---|
| | | //$app->system->rename($data['old']['document_root'],$new_dir); |
|---|
| | | $app->log('Moving site to new document root: mv '.$data['old']['document_root'].' '.$new_dir,LOGLEVEL_DEBUG); |
|---|
| | | |
|---|
| | | // Handle the change in php_open_basedir |
|---|
| | |
|---|
| | | exec($command); |
|---|
| | | |
|---|
| | | if($apache_chrooted) $this->_exec('chroot '.escapeshellcmd($web_config['website_basedir']).' '.$command); |
|---|
| | | |
|---|
| | | |
|---|
| | | //* Change the log mount |
|---|
| | | $fstab_line = '/var/log/ispconfig/httpd/'.$data['old']['domain'].' '.$data['old']['document_root'].'/'.$log_folder.' none bind'; |
|---|
| | | $app->system->removeLine('/etc/fstab',$fstab_line); |
|---|
| | | $fstab_line = '/var/log/ispconfig/httpd/'.$data['new']['domain'].' '.$data['new']['document_root'].'/'.$log_folder.' none bind,nobootwait 0 0'; |
|---|
| | | $app->system->replaceLine('/etc/fstab',$fstab_line,$fstab_line,1,1); |
|---|
| | | |
|---|
| | | } |
|---|
| | | |
|---|
| | |
|---|
| | | if($this->action == 'update' && $data['old']['domain'] != '' && $data['new']['domain'] != $data['old']['domain']) { |
|---|
| | | if(is_dir('/var/log/ispconfig/httpd/'.$data['old']['domain'])) exec('rm -rf /var/log/ispconfig/httpd/'.$data['old']['domain']); |
|---|
| | | if(is_link($data['old']['document_root'].'/'.$log_folder)) $app->system->unlink($data['old']['document_root'].'/'.$log_folder); |
|---|
| | | |
|---|
| | | //* remove old log mount |
|---|
| | | $fstab_line = '/var/log/ispconfig/httpd/'.$data['old']['domain'].' '.$data['old']['document_root'].'/'.$log_folder.' none bind'; |
|---|
| | | $app->system->removeLine('/etc/fstab',$fstab_line); |
|---|
| | | |
|---|
| | | //* Unmount log directory |
|---|
| | | exec('umount '.escapeshellarg($data['old']['document_root'].'/'.$log_folder)); |
|---|
| | | } |
|---|
| | | |
|---|
| | | //* Create the log dir if nescessary and mount it |
|---|
| | | if(!is_dir('/var/log/ispconfig/httpd/'.$data['new']['domain'])) exec('mkdir -p /var/log/ispconfig/httpd/'.$data['new']['domain']); |
|---|
| | | if(!is_dir($data['new']['document_root'].'/'.$log_folder) || is_link($data['new']['document_root'].'/'.$log_folder)) { |
|---|
| | | if(!is_dir($data['new']['document_root'].'/'.$log_folder) || !is_dir('/var/log/ispconfig/httpd/'.$data['new']['domain']) || is_link($data['new']['document_root'].'/'.$log_folder)) { |
|---|
| | | if(is_link($data['new']['document_root'].'/'.$log_folder)) unlink($data['new']['document_root'].'/'.$log_folder); |
|---|
| | | if(!is_dir('/var/log/ispconfig/httpd/'.$data['new']['domain'])) exec('mkdir -p /var/log/ispconfig/httpd/'.$data['new']['domain']); |
|---|
| | | $app->system->mkdirpath($data['new']['document_root'].'/'.$log_folder); |
|---|
| | | $app->system->chown($data['new']['document_root'].'/'.$log_folder,'root'); |
|---|
| | | $app->system->chgrp($data['new']['document_root'].'/'.$log_folder,'root'); |
|---|
| | | $app->system->chmod($data['new']['document_root'].'/'.$log_folder,0755); |
|---|
| | | exec('mount --bind '.escapeshellarg('/var/log/ispconfig/httpd/'.$data['new']['domain']).' '.escapeshellarg($data['new']['document_root'].'/'.$log_folder)); |
|---|
| | | //* add mountpoint to fstab |
|---|
| | | $fstab_line = '/var/log/ispconfig/httpd/'.$data['new']['domain'].' '.$data['new']['document_root'].'/'.$log_folder.' none bind 0 0'; |
|---|
| | | $fstab_line = '/var/log/ispconfig/httpd/'.$data['new']['domain'].' '.$data['new']['document_root'].'/'.$log_folder.' none bind,nobootwait 0 0'; |
|---|
| | | $app->system->replaceLine('/etc/fstab',$fstab_line,$fstab_line,1,1); |
|---|
| | | } |
|---|
| | | |
|---|
| | |
|---|
| | | 'rewrite_type' => ($data['new']['redirect_type'] == 'no')?'':'['.$data['new']['redirect_type'].']', |
|---|
| | | 'rewrite_target' => $rewrite_target, |
|---|
| | | 'rewrite_target_ssl' => $rewrite_target_ssl, |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n')); |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n'), |
|---|
| | | 'rewrite_add_path' => (substr($rewrite_target, -1) == '/' ? 'y' : 'n')); |
|---|
| | | $rewrite_rules[] = array( 'rewrite_domain' => '^' . $this->_rewrite_quote('www.'.$data['new']['domain']), |
|---|
| | | 'rewrite_type' => ($data['new']['redirect_type'] == 'no')?'':'['.$data['new']['redirect_type'].']', |
|---|
| | | 'rewrite_target' => $rewrite_target, |
|---|
| | | 'rewrite_target_ssl' => $rewrite_target_ssl, |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n')); |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n'), |
|---|
| | | 'rewrite_add_path' => (substr($rewrite_target, -1) == '/' ? 'y' : 'n')); |
|---|
| | | break; |
|---|
| | | case '*': |
|---|
| | | $rewrite_rules[] = array( 'rewrite_domain' => '(^|\.)'.$this->_rewrite_quote($data['new']['domain']), |
|---|
| | | 'rewrite_type' => ($data['new']['redirect_type'] == 'no')?'':'['.$data['new']['redirect_type'].']', |
|---|
| | | 'rewrite_target' => $rewrite_target, |
|---|
| | | 'rewrite_target_ssl' => $rewrite_target_ssl, |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n')); |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n'), |
|---|
| | | 'rewrite_add_path' => (substr($rewrite_target, -1) == '/' ? 'y' : 'n')); |
|---|
| | | break; |
|---|
| | | default: |
|---|
| | | $rewrite_rules[] = array( 'rewrite_domain' => '^'.$this->_rewrite_quote($data['new']['domain']), |
|---|
| | | 'rewrite_type' => ($data['new']['redirect_type'] == 'no')?'':'['.$data['new']['redirect_type'].']', |
|---|
| | | 'rewrite_target' => $rewrite_target, |
|---|
| | | 'rewrite_target_ssl' => $rewrite_target_ssl, |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n')); |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n'), |
|---|
| | | 'rewrite_add_path' => (substr($rewrite_target, -1) == '/' ? 'y' : 'n')); |
|---|
| | | } |
|---|
| | | } |
|---|
| | | |
|---|
| | |
|---|
| | | 'rewrite_type' => ($alias['redirect_type'] == 'no')?'':'['.$alias['redirect_type'].']', |
|---|
| | | 'rewrite_target' => $rewrite_target, |
|---|
| | | 'rewrite_target_ssl' => $rewrite_target_ssl, |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n')); |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n'), |
|---|
| | | 'rewrite_add_path' => (substr($rewrite_target, -1) == '/' ? 'y' : 'n')); |
|---|
| | | $rewrite_rules[] = array( 'rewrite_domain' => '^' . $this->_rewrite_quote('www.'.$alias['domain']), |
|---|
| | | 'rewrite_type' => ($alias['redirect_type'] == 'no')?'':'['.$alias['redirect_type'].']', |
|---|
| | | 'rewrite_target' => $rewrite_target, |
|---|
| | | 'rewrite_target_ssl' => $rewrite_target_ssl, |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n')); |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n'), |
|---|
| | | 'rewrite_add_path' => (substr($rewrite_target, -1) == '/' ? 'y' : 'n')); |
|---|
| | | break; |
|---|
| | | case '*': |
|---|
| | | $rewrite_rules[] = array( 'rewrite_domain' => '(^|\.)'.$this->_rewrite_quote($alias['domain']), |
|---|
| | | 'rewrite_type' => ($alias['redirect_type'] == 'no')?'':'['.$alias['redirect_type'].']', |
|---|
| | | 'rewrite_target' => $rewrite_target, |
|---|
| | | 'rewrite_target_ssl' => $rewrite_target_ssl, |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n')); |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n'), |
|---|
| | | 'rewrite_add_path' => (substr($rewrite_target, -1) == '/' ? 'y' : 'n')); |
|---|
| | | break; |
|---|
| | | default: |
|---|
| | | if(substr($alias['domain'], 0, 2) === '*.') $domain_rule = '(^|\.)'.$this->_rewrite_quote(substr($alias['domain'], 2)); |
|---|
| | |
|---|
| | | 'rewrite_type' => ($alias['redirect_type'] == 'no')?'':'['.$alias['redirect_type'].']', |
|---|
| | | 'rewrite_target' => $rewrite_target, |
|---|
| | | 'rewrite_target_ssl' => $rewrite_target_ssl, |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n')); |
|---|
| | | 'rewrite_is_url' => ($this->_is_url($rewrite_target) ? 'y' : 'n'), |
|---|
| | | 'rewrite_add_path' => (substr($rewrite_target, -1) == '/' ? 'y' : 'n')); |
|---|
| | | } |
|---|
| | | } |
|---|
| | | } |
|---|
| | |
|---|
| | | } else { |
|---|
| | | $vhosts[] = array('ip_address' => $data['new']['ip_address'], 'ssl_enabled' => 1, 'port' => '443'); |
|---|
| | | } |
|---|
| | | $app->log('Enable SSL for: '.$domain,LOGLEVEL_DEBUG); |
|---|
| | | } |
|---|
| | | |
|---|
| | | //* Add vhost for IPv6 IP |
|---|
| | | if($data['new']['ipv6_address'] != '') { |
|---|
| | | if(count($rewrite_rules) > 0){ |
|---|
| | | $vhosts[] = array('ip_address' => '['.$data['new']['ipv6_address'].']', 'ssl_enabled' => 0, 'port' => 80, 'redirects' => $rewrite_rules); |
|---|
| | | } else { |
|---|
| | | $app->log('Enable SSL for: '.$domain,LOGLEVEL_DEBUG);
|
|---|
| | | }
|
|---|
| | | |
|---|
| | | //* Add vhost for IPv6 IP
|
|---|
| | | if($data['new']['ipv6_address'] != '') {
|
|---|
| | | if ($conf['serverconfig']['web']['vhost_rewrite_v6'] == 'y') {
|
|---|
| | | if (isset($conf['serverconfig']['server']['v6_prefix']) && $conf['serverconfig']['server']['v6_prefix'] <> '') {
|
|---|
| | | $explode_v6prefix=explode(':',$conf['serverconfig']['server']['v6_prefix']);
|
|---|
| | | $explode_v6=explode(':',$data['new']['ipv6_address']);
|
|---|
| | |
|
|---|
| | | for ( $i = 0; $i <= count($explode_v6prefix)-3; $i++ ) {
|
|---|
| | | $explode_v6[$i] = $explode_v6prefix[$i];
|
|---|
| | | }
|
|---|
| | | $data['new']['ipv6_address'] = implode(':',$explode_v6);
|
|---|
| | | }
|
|---|
| | | }
|
|---|
| | | if(count($rewrite_rules) > 0){
|
|---|
| | | $vhosts[] = array('ip_address' => '['.$data['new']['ipv6_address'].']', 'ssl_enabled' => 0, 'port' => 80, 'redirects' => $rewrite_rules);
|
|---|
| | | } else {
|
|---|
| | | $vhosts[] = array('ip_address' => '['.$data['new']['ipv6_address'].']', 'ssl_enabled' => 0, 'port' => 80); |
|---|
| | | } |
|---|
| | | |
|---|
| | |
|---|
| | | $bundle_file = $ssl_dir.'/'.$domain.'.bundle'; |
|---|
| | | |
|---|
| | | //* Backup the files that might have caused the error |
|---|
| | | if(is_file($key_file)) $app->system->copy($key_file,$key_file.'.err'); |
|---|
| | | if(is_file($key_file2)) $app->system->copy($key_file2,$key_file2.'.err'); |
|---|
| | | if(is_file($key_file)){ |
|---|
| | | $app->system->copy($key_file,$key_file.'.err'); |
|---|
| | | $app->system->chmod($key_file.'.err',0400); |
|---|
| | | } |
|---|
| | | if(is_file($key_file2)){ |
|---|
| | | $app->system->copy($key_file2,$key_file2.'.err'); |
|---|
| | | $app->system->chmod($key_file2.'.err',0400); |
|---|
| | | } |
|---|
| | | if(is_file($csr_file)) $app->system->copy($csr_file,$csr_file.'.err'); |
|---|
| | | if(is_file($crt_file)) $app->system->copy($crt_file,$crt_file.'.err'); |
|---|
| | | if(is_file($bundle_file)) $app->system->copy($bundle_file,$bundle_file.'.err'); |
|---|
| | |
|---|
| | | exec('umount '.escapeshellarg($data['old']['document_root'].'/'.$log_folder)); |
|---|
| | | |
|---|
| | | //* remove mountpoint from fstab |
|---|
| | | $fstab_line = '/var/log/ispconfig/httpd/'.$data['old']['domain'].' '.$data['old']['document_root'].'/'.$log_folder.' none bind 0 0'; |
|---|
| | | $fstab_line = '/var/log/ispconfig/httpd/'.$data['old']['domain'].' '.$data['old']['document_root'].'/'.$log_folder.' none bind'; |
|---|
| | | $app->system->removeLine('/etc/fstab',$fstab_line); |
|---|
| | | |
|---|
| | | if($data['old']['type'] != 'vhost' && $data['old']['type'] != 'vhostsubdomain' && $data['old']['parent_domain_id'] > 0) { |
|---|
