<%-- - - Copyright (C) 2004-2008 Jive Software, 2016-2025 Ignite Realtime Foundation. All rights reserved. - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. --%> <%@ page contentType="text/html; charset=UTF-8" %> <%-- --%> <%@ page import="java.net.URLDecoder, java.util.*, java.util.stream.Collectors, javax.servlet.http.HttpSession, org.jivesoftware.openfire.XMPPServer, org.jivesoftware.openfire.XMPPServerInfo, org.jivesoftware.openfire.admin.GroupBasedAdminProvider, org.jivesoftware.openfire.auth.AuthFactory, org.jivesoftware.openfire.auth.UnauthorizedException, org.jivesoftware.openfire.ldap.LdapGroupProvider, org.jivesoftware.openfire.ldap.LdapManager, org.jivesoftware.openfire.user.User, org.jivesoftware.openfire.user.UserManager, org.jivesoftware.util.CookieUtils, org.jivesoftware.util.JiveGlobals, org.jivesoftware.util.ParamUtils, org.jivesoftware.util.StringUtils, org.xmpp.packet.JID" %> <%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c" %> <%@ taglib uri="http://java.sun.com/jsp/jstl/functions" prefix="fn" %> <%@ taglib uri="http://java.sun.com/jsp/jstl/fmt" prefix="fmt" %> <%@ taglib uri="admin" prefix="admin" %> <% // Redirect if we've already run setup: if (!XMPPServer.getInstance().isSetupMode()) { response.sendRedirect("setup-completed.jsp"); return; } %> <%! // Global vars, methods, etc void setSetupFinished(HttpSession session) { JiveGlobals.setXMLProperty("setup","true"); } %> <% // Get parameters String username = ParamUtils.getParameter(request, "username"); String password = ParamUtils.getParameter(request, "password"); String email = ParamUtils.getParameter(request, "email"); String newPassword = ParamUtils.getParameter(request, "newPassword"); String newPasswordConfirm = ParamUtils.getParameter(request, "newPasswordConfirm"); boolean doContinue = request.getParameter("continue") != null; boolean doSkip = request.getParameter("doSkip") != null; boolean doTest = request.getParameter("test") != null; boolean ldap = ParamUtils.getBooleanParameter(request, "ldap"); boolean addAdmin = request.getParameter("addAdministrator") != null; boolean deleteAdmins = request.getParameter("deleteAdmins") != null; boolean ldapFinished = request.getParameter("ldapFinished") != null; @SuppressWarnings("unchecked") Map xmppSettings = (Map)session.getAttribute("xmppSettings"); String domain = xmppSettings.get(XMPPServerInfo.XMPP_DOMAIN.getKey()); // Handle a skip request if (doSkip) { // assume the admin account is setup, so we're done: setSetupFinished(session); // redirect response.sendRedirect("setup-finished.jsp"); return; } // Error checks Map errors = new HashMap<>(); if (doContinue) { if (password == null) { errors.put("password", "password"); } try { AuthFactory.authenticate("admin", password); } catch (UnauthorizedException e) { errors.put("password", "password"); } catch (Exception e) { e.printStackTrace(); errors.put("general", "There was an unexpected error encountered when " + "setting the new admin information. Please check your error " + "logs and try to remedy the problem."); } if (email == null) { errors.put("email", "email"); } if (newPassword == null) { errors.put("newPassword", "newPassword"); } if (newPasswordConfirm == null) { errors.put("newPasswordConfirm", "newPasswordConfirm"); } if (newPassword != null && newPasswordConfirm != null && !newPassword.equals(newPasswordConfirm)) { errors.put("match", "match"); } // if no errors, continue: if (errors.isEmpty()) { try { User adminUser = UserManager.getInstance().getUser("admin"); adminUser.setPassword(newPassword); if (email != null) { adminUser.setEmail(email); } Date now = new Date(); adminUser.setCreationDate(now); adminUser.setModificationDate(now); // setup is finished, indicate so: setSetupFinished(session); // All good so redirect response.sendRedirect("setup-finished.jsp"); return; } catch (Exception e) { //System.err.println("Could not find UserManager"); e.printStackTrace(); errors.put("general", "There was an unexpected error encountered when " + "setting the new admin information. Please check your error " + "logs and try to remedy the problem."); } } } if (ldapFinished) { setSetupFinished(session); // All good so redirect response.sendRedirect("setup-finished.jsp"); return; } Cookie csrfCookie = CookieUtils.getCookie( request, "csrf"); String csrfParam = ParamUtils.getParameter(request, "csrf"); if (!doTest && (addAdmin || deleteAdmins)) { if (csrfCookie == null || csrfParam == null || !csrfCookie.getValue().equals(csrfParam)) { errors.put( "csrf", "CSRF failure!"); addAdmin = false; deleteAdmins = false; } } csrfParam = StringUtils.randomString(15); CookieUtils.setCookie(request, response, "csrf", csrfParam, -1); pageContext.setAttribute("csrf", csrfParam); if (addAdmin && !doTest) { String admin = request.getParameter("administrator"); boolean isGroup = ParamUtils.getBooleanParameter(request, "isGroup", false); if (admin != null) { admin = JID.escapeNode( admin ); if (ldap) { // Try to verify that the username exists in LDAP Map settings = (Map) session.getAttribute("ldapSettings"); Map userSettings = (Map) session.getAttribute("ldapUserSettings"); Map groupSettings = (Map) session.getAttribute("ldapGroupSettings"); if (settings != null) { LdapManager manager = new LdapManager(settings); if ( isGroup ) { manager.setGroupNameField(groupSettings.get("ldap.groupNameField")); manager.setGroupSearchFilter(groupSettings.get("ldap.groupSearchFilter")); try { manager.findGroupRDN(JID.unescapeNode(admin)); final Collection groupMembers = new LdapGroupProvider().getGroup(admin).getMembers(); if ( groupMembers.isEmpty() ) { errors.put("group", "empty"); } else { // Remove non-group (individual) admins xmppSettings.remove("admin.authorizedJIDs"); // Set admin group provider. xmppSettings.put("provider.admin.className", GroupBasedAdminProvider.class.getName()); xmppSettings.put("provider.group.groupBasedAdminProvider.groupName", admin); } } catch ( Exception e ) { e.printStackTrace(); errors.put("administrator", ""); } } else { manager.setUsernameField(userSettings.get("ldap.usernameField")); manager.setSearchFilter(userSettings.get("ldap.searchFilter")); try { manager.findUserRDN(JID.unescapeNode(admin)); // Add individual admin String currentList = xmppSettings.get("admin.authorizedJIDs"); final List users = new ArrayList<>(StringUtils.stringToCollection(currentList)); users.add(new JID(admin.toLowerCase(), domain, null).toBareJID()); String userList = StringUtils.collectionToString(users); xmppSettings.put("admin.authorizedJIDs", userList); // Remove admin group provider. xmppSettings.remove( "provider.admin.className" ); xmppSettings.remove( "provider.group.groupBasedAdminProvider.groupName" ); } catch ( Exception e ) { e.printStackTrace(); errors.put("administrator", ""); } } } } } else { errors.put("administrator", ""); } } if (deleteAdmins) { String[] params = request.getParameterValues("remove"); String currentAdminList = xmppSettings.get("admin.authorizedJIDs"); Collection adminCollection = StringUtils.stringToCollection(currentAdminList); List temporaryUserList = new ArrayList<>(adminCollection); final int no = params != null ? params.length : 0; for (int i = 0; i < no; i++) { temporaryUserList.remove( URLDecoder.decode( params[i] )); } String newUserList = StringUtils.collectionToString(temporaryUserList); if (temporaryUserList.isEmpty()) { xmppSettings.put("admin.authorizedJIDs", ""); } else { xmppSettings.put("admin.authorizedJIDs", newUserList); } } // This handles the case of reverting back to default settings from LDAP. Will // add admin to the authorizedJIDs list if the authorizedJIDs list contains // entries. if (!ldap && !doTest) { String currentAdminList = xmppSettings.get("admin.authorizedJIDs"); List adminCollection = new ArrayList<>(StringUtils.stringToCollection(currentAdminList)); if ((!adminCollection.isEmpty() && !adminCollection.contains("admin")) || xmppSettings.get("admin.authorizedJIDs") != null) { adminCollection.add(new JID("admin", domain, null).toBareJID()); xmppSettings.put("admin.authorizedJIDs", StringUtils.collectionToString(adminCollection)); } } // Save the updated settings session.setAttribute("xmppSettings", xmppSettings); pageContext.setAttribute( "ldap", ldap ); pageContext.setAttribute( "errors", errors ); pageContext.setAttribute( "username", username ); pageContext.setAttribute( "password", password ); pageContext.setAttribute( "newPassword", newPassword ); pageContext.setAttribute( "newPasswordConfirm", newPasswordConfirm ); pageContext.setAttribute( "doTest", doTest ); // Populate authorized JIDs to be displayed on this page. final String groupName = xmppSettings.get("provider.group.groupBasedAdminProvider.groupName"); if ( groupName != null ) { pageContext.setAttribute( "authorizedJIDs", new LdapGroupProvider().getGroup(groupName).getMembers() ); } else { String currentList = xmppSettings.get("admin.authorizedJIDs"); final List users = new ArrayList<>(StringUtils.stringToCollection(currentList)); pageContext.setAttribute( "authorizedJIDs", users.stream().map(JID::new).collect(Collectors.toSet()) ); } %> <fmt:message key="setup.admin.settings.account" />

<% // If the current password is "admin", don't show the text box for them to type // the current password. This makes setup simpler for first-time users. boolean defaultPassword = false; try { AuthFactory.authenticate("admin", "admin"); defaultPassword = true; } catch (UnauthorizedException e) { // Ignore. } catch (Exception e) { e.printStackTrace(); errors.put("general", "There was an unexpected error encountered when " + "setting the new admin information. Please check your error " + "logs and try to remedy the problem."); } pageContext.setAttribute( "defaultPassword", defaultPassword ); %> <% // Get the current email address, if there is one. String currentEmail = ""; try { User adminUser = UserManager.getInstance().getUser("admin"); if (adminUser.getEmail() != null) { currentEmail = adminUser.getEmail(); } } catch (Exception e) { // Ignore. } pageContext.setAttribute( "email", email ); pageContext.setAttribute( "currentEmail", currentEmail ); %>





" id="jive-setup-save"> " id="jive-setup-skip">

"/>
 
  " ><fmt:message key=">
 

" id="jive-setup-save" style="display:none;">