include("../../lib/settings.php");

if ($demoMode || !$_SESSION['loggedIn']) {

die("You must be logged in to access Terminal");

}

error_reporting(E_ALL);

@session_start();

if (isset($_SERVER['PHP_AUTH_USER'])) {

$_SESSION['user'] = $_SERVER['PHP_AUTH_USER'];

$_SESSION['pass'] = $_SERVER['PHP_AUTH_PW'];

}

$passwd = array($_SESSION['user'] => $_SESSION['pass']);

$aliases = array('la' => 'ls -la',

'll' => 'ls -lvhF',

'dir' => 'ls' );

class phpTerm {

function phpTerm() {} // constructor

function formatPrompt() {

$user=shell_exec("whoami");

$host=explode(".", shell_exec("uname -n"));

$_SESSION['prompt'] = "".rtrim($user).""."@"."".rtrim($host[0])."";

}

function checkPassword($passwd) {

if( !isset($_SERVER['PHP_AUTH_USER'])||

!isset($_SERVER['PHP_AUTH_PW']) ||

!isset($passwd[$_SERVER['PHP_AUTH_USER']]) ||

$passwd[$_SERVER['PHP_AUTH_USER']] != $_SERVER['PHP_AUTH_PW']) {

return false;

} else {

return true;

}

}

function logout() {

header('WWW-Authenticate: Basic realm="Terminal"');

header('HTTP/1.0 401 Unauthorized');

exit();

}

function initVars() {

if (empty($_SESSION['cwd']) || @!empty($_GET['reset'])) {

$_SESSION['cwd'] = getcwd();

$_SESSION['history'] = array();

$_SESSION['output'] = '';

$_REQUEST['command'] ='';

}

}

function buildCommandHistory() {

if(!empty($_REQUEST['command'])) {

if(get_magic_quotes_gpc()) {

$_REQUEST['command'] = stripslashes($_REQUEST['command']);

}

// drop old commands from list if exists

if (($i = array_search($_REQUEST['command'], $_SESSION['history'])) !== false) {

unset($_SESSION['history'][$i]);

}

array_unshift($_SESSION['history'], $_REQUEST['command']);

// append commmand */

$_SESSION['output'] .= "{$_SESSION['prompt']}".":>"."{$_REQUEST['command']}"."\n";

}

}

function buildJavaHistory() {

// build command history for use in the JavaScript

if (empty($_SESSION['history'])) {

$_SESSION['js_command_hist'] = '""';

} else {

$escaped = array_map('addslashes', $_SESSION['history']);

$_SESSION['js_command_hist'] = '"", "' . implode('", "', $escaped) . '"';

}

}

function outputHandle($aliases) {

if (preg_match('/^[[:blank:]]*cd[[:blank:]]*$/', @$_REQUEST['command']))

{

$_SESSION['cwd'] = getcwd(); //dirname(__FILE__);

}

elseif(preg_match('/^[[:blank:]]*cd[[:blank:]]+([^;]+)$/', @$_REQUEST['command'], $regs)) {

// The current command is 'cd', which we have to handle as an internal shell command.

// absolute/relative path ?"

($regs[1][0] == '/') ? $new_dir = $regs[1] : $new_dir = $_SESSION['cwd'] . '/' . $regs[1];

// cosmetics

while (strpos($new_dir, '/./') !== false) {

$new_dir = str_replace('/./', '/', $new_dir);

}

while (strpos($new_dir, '//') !== false) {

$new_dir = str_replace('//', '/', $new_dir);

}

while (preg_match('|/\.\.(?!\.)|', $new_dir)) {

$new_dir = preg_replace('|/?[^/]+/\.\.(?!\.)|', '', $new_dir);

}

if(empty($new_dir)): $new_dir = "/"; endif;

(@chdir($new_dir)) ? $_SESSION['cwd'] = $new_dir : $_SESSION['output'] .= "could not change to: $new_dir\n";

} else {

/* The command is not a 'cd' command, so we execute it after

chdir($_SESSION['cwd']);

/* Alias expansion. */

$length = strcspn(@$_REQUEST['command'], " \t");

$token = substr(@$_REQUEST['command'], 0, $length);

if (isset($aliases[$token]))

$_REQUEST['command'] = $aliases[$token] . substr($_REQUEST['command'], $length);

$p = proc_open(@$_REQUEST['command'],

array(1 => array('pipe', 'w'),

2 => array('pipe', 'w')), $io);

/* Read output sent to stdout. */

while (!feof($io[1])) {

$_SESSION['output'] .= htmlspecialchars(fgets($io[1]),ENT_COMPAT, 'UTF-8');

}

/* Read output sent to stderr. */

while (!feof($io[2])) {

$_SESSION['output'] .= htmlspecialchars(fgets($io[2]),ENT_COMPAT, 'UTF-8');

}

fclose($io[1]);

fclose($io[2]);

proc_close($p);

}

}

}

$terminal = new phpTerm;

if ($_REQUEST['command']=="logout") {

$terminal->logout();

}

if(!$terminal->checkPassword($passwd)) {

header('WWW-Authenticate: Basic realm="Terminal"');

header('HTTP/1.0 401 Unauthorized');

} else {

$terminal->initVars();

$terminal->buildCommandHistory();

$terminal->buildJavaHistory();

if(!isset($_SESSION['prompt'])):$terminal->formatPrompt(); endif;

$terminal->outputHandle($aliases);

<!DOCTYPE html>

<html lang="en">

<head>

<title>PHP Terminal</title>

<link rel="stylesheet" type="text/css" href="terminal.css" />

<script type="text/javascript" language="JavaScript">

var current_line = 0;

var command_hist = new Array(<?php echo $_SESSION['js_command_hist']; ?>);

var last = 0;

function key(e) {

if (!e) var e = window.event;

if (e.keyCode == 38 && current_line < command_hist.length-1) {

command_hist[current_line] = document.shell.command.value;

current_line++;

document.shell.command.value = command_hist[current_line];

}

if (e.keyCode == 40 && current_line > 0) {

command_hist[current_line] = document.shell.command.value;

current_line--;

document.shell.command.value = command_hist[current_line];

}

}

function init() {

document.shell.setAttribute("autocomplete", "off");

document.shell.output.scrollTop = document.shell.output.scrollHeight;

document.shell.command.focus();

}

</script>

</head>

<body onload="init()">

<div class="head"><?php echo $_SESSION['prompt'].":"."$_SESSION[cwd]"; ?></div>

<form name="shell" action="<?php echo $_SERVER['PHP_SELF'];?>" method="post">

<textarea name="output" readonly="readonly" rows="24"><?php

$lines = substr_count($_SESSION['output'], "\n");

$padding = str_repeat("\n", max(0, 25 - $lines));

echo "\n\n".trim($padding . $_SESSION['output'])."\n";

?>

</textarea>

<p class="commandLine">$&gt; <input class="command" name="command" type="text" size='50' onkeyup="key(event)" tabindex="1"></p>

</form>

</body>

</html>

<?php } ?>

html, body, div, span, applet, object, iframe,

h1, h2, h3, h4, h5, h6, p, blockquote, pre,

a, abbr, acronym, address, big, cite, code,

del, dfn, em, font, img, ins, kbd, q, s, samp,

small, strike, strong, sub, sup, tt, var,

b, u, i, center,

dl, dt, dd, ol, ul, li,

fieldset, form, input, label, legend,

table, caption, tbody, tfoot, thead, tr, th, td {

font-family: verdana, arial, monospace, sans-serif;

border: 0;

margin: 0;

padding: 0;

outline: 0;

font-size: 12px;

vertical-align: top;

}

html, body {width: 100%; height: 100%; background: #000}

.head {position: fixed; top: 0; padding: 2px; background: rgba(124,124,124,0.8); color: #fff; font-weight: bold; z-index: 1}

textarea {position: absolute; display: block; top: 0; padding: 0; width: 100%; height: 100%; min-height: 100%; border: 0; background: #000; color: #0c0}

textarea:focus {outline: none}

p {color: #0c0}

.commandLine {position: fixed; width: 100%; bottom: 0; padding: 2px; background: rgba(32,32,32,0.9); z-index: 1}

.command {width: 95%; font-family: verdana, arial, monospace, sans-serif; border: none; background: transparent; color: #0c0}

.command:focus {outline: none}