$error
"; }elseif(isset($_POST['pass'])){ echo "Wrong password!
"; } echo 'If you disabled cookies, please re-enable them. You can\'t log in without!
'; }else{ echo ''; if(REQUIRE_APPROVAL){ $stmt=$db->query('SELECT COUNT(*) FROM new_account WHERE approved=0;'); $cnt=$stmt->fetch(PDO::FETCH_NUM)[0]; echo 'Approve pending sites ($cnt) | "; } echo 'List of accounts | Delete accounts | Suspend hidden services | Edit hidden services | Logout
'; if(empty($_REQUEST['action']) || $_REQUEST['action']==='login'){ echo 'Welcome to the admin panel!
'; }elseif($_REQUEST['action'] === 'logout'){ session_destroy(); header('Location: ' . $_SERVER['SCRIPT_NAME']); exit; }elseif($_REQUEST['action'] === 'list'){ echo ''; }elseif(substr($_REQUEST['action'], 0, 7) === 'approve'){ $onion = substr($_REQUEST['action'], 8); if(!empty($onion)){ if($error=check_csrf_error()){ echo ''.$error.'
'; }else{ $stmt=$db->prepare('UPDATE new_account INNER JOIN onions ON (onions.user_id=new_account.user_id) SET new_account.approved=1 WHERE onions.onion=?;'); $stmt->execute([$onion]); echo 'Successfully approved
'; } } echo ''; }elseif(substr($_REQUEST['action'], 0, 6) === 'delete'){ $onion = ''; if(isset($_POST['onion'])){ $onion = $_POST['onion']; }else{ $onion = substr($_REQUEST['action'], 7); } echo 'Delete accouts:
'; echo ''.$error.'
'; }elseif(preg_match('~^([a-z2-7]{16}|[a-z2-7]{56})(\.onion)?$~', $onion, $match)){ $stmt=$db->prepare('SELECT user_id FROM onions WHERE onion=?;'); $stmt->execute([$match[1]]); if($user_id=$stmt->fetch(PDO::FETCH_NUM)){ $stmt=$db->prepare('UPDATE users SET todelete=1 WHERE id=?;'); $stmt->execute($user_id); echo "Successfully queued for deletion!
"; }else{ echo "Onion address not hosted by us!
"; } }else{ echo "Invalid onion address!
"; } } }elseif(substr($_REQUEST['action'], 0, 7) === 'suspend'){ $onion = ''; if(isset($_POST['onion'])){ $onion = $_POST['onion']; }else{ $onion = substr($_REQUEST['action'], 8); } echo 'Suspend hidden service:
'; echo ''.$error.'
'; }elseif(preg_match('~^([a-z2-7]{16}|[a-z2-7]{56})(\.onion)?$~', $onion, $match)){ $stmt=$db->prepare('SELECT null FROM onions WHERE onion=?;'); $stmt->execute([$match[1]]); if($stmt->fetch(PDO::FETCH_NUM)){ $stmt=$db->prepare('UPDATE onions SET enabled=-2 WHERE onion=?;'); $stmt->execute([$match[1]]); echo "Successfully queued for suspension!
"; enqueue_instance_reload($db, substr($match[1], 0, 1)); }else{ echo "Onion address not hosted by us!
"; } }else{ echo "Invalid onion address!
"; } } }elseif(substr($_REQUEST['action'], 0, 4) === 'edit'){ $onion = ''; if(isset($_POST['onion'])){ $onion = $_POST['onion']; }else{ $onion = substr($_REQUEST['action'], 5); } echo 'Edit hidden service:
'; echo ''.$error.'
'; }elseif(preg_match('~^([a-z2-7]{16}|[a-z2-7]{56})(\.onion)?$~', $onion, $match)){ if(isset($_POST['num_intros'])){ $stmt=$db->prepare('SELECT version FROM onions WHERE onion=?;'); $stmt->execute([$match[1]]); if($onion=$stmt->fetch(PDO::FETCH_NUM)){ $stmt=$db->prepare('UPDATE onions SET enabled = ?, enable_smtp = ?, num_intros = ?, max_streams = ? WHERE onion=?;'); $enabled = isset($_POST['enabled']) ? 1 : 0; $enable_smtp = isset($_POST['enable_smtp']) ? 1 : 0; $num_intros = intval($_POST['num_intros']); if($num_intros<3){ $num_intros = 3; }elseif($onion[0]==2 && $num_intros>10){ $num_intros = 10; }elseif($num_intros>20){ $num_intros = 20; } $max_streams = intval($_POST['max_streams']); if($max_streams<0){ $max_streams = 0; }elseif($max_streams>65535){ $max_streams = 65535; } $stmt->execute([$enabled, $enable_smtp, $num_intros, $max_streams, $match[1]]); enqueue_instance_reload($db, substr($match[1], 0, 1)); echo "Changes successfully saved!
"; } } $stmt=$db->prepare('SELECT onion, enabled, enable_smtp, num_intros, max_streams, version FROM onions WHERE onion=?;'); $stmt->execute([$match[1]]); if($onion=$stmt->fetch(PDO::FETCH_NUM)){ echo '