hotspotbilling/phpnuxbill
1
1
Fork 0
mirror of https://github.com/hotspotbilling/phpnuxbill.git synced 2024-09-20 06:46:22 +08:00
Code Issues Packages Projects Releases Wiki Activity
phpnuxbill/radius.php

228 lines
8.6 KiB
PHP
Raw Normal View History

Radius Rest API
2024-07-06 23:49:02 +08:00
<?php
/**
* PHP Mikrotik Billing (https://github.com/hotspotbilling/phpnuxbill)
* by https://t.me/ibnux
*
* Authorize
* - Voucher activation
* Authenticate
* - is it allow to login
* Accounting
* - log
**/
header("Content-Type: application/json");
include "init.php";
$action = $_SERVER['HTTP_X_FREERADIUS_SECTION'];
if (empty($action)) {
$action = _get('action');
}
$code = 200;
try {
switch ($action) {
case 'authenticate':
$username = _req('username');
$password = _req('password');
if ($username == $password) {
$d = ORM::for_table('tbl_voucher')->where('code', $username)->find_one();
} else {
$d = ORM::for_table('tbl_customers')->where('username', $username)->find_one();
}
if ($d) {
header("HTTP/1.1 204 No Content");
die();
} else {
show_radius_result([
"control:Auth-Type" => "Reject",
"reply:Reply-Message" => 'Login invalid......'
], 401);
}
break;
case 'authorize':
$username = _req('username');
$password = _req('password');
$isVoucher = ($username == $password);
if (empty($username)) {
show_radius_result([
"control:Auth-Type" => "Reject",
"reply:Reply-Message" => 'Login invalid......'
], 401);
}
$tur = ORM::for_table('tbl_user_recharges')->where('username', $username)->find_one();
if ($tur) {
if (!$isVoucher) {
$d = ORM::for_table('tbl_customers')->select('password')->where('username', $username)->find_one();
if ($d['password'] != $password) {
show_radius_result(['Reply-Message' => 'Username or Password is wrong'], 401);
}
}
process_radiust_rest($tur, $code);
} else {
if ($isVoucher) {
$v = ORM::for_table('tbl_voucher')->where('code', $username)->where('routers', 'radius')->find_one();
if ($v) {
if ($v['status'] == 0) {
// voucher activation
if (Package::rechargeUser(0, $v['routers'], $v1['id_plan'], "Voucher", $username)) {
$v->status = "1";
$v->save();
$tur = ORM::for_table('tbl_user_recharges')->where('username', $username)->find_one();
if ($tur) {
process_radiust_rest($tur, $code);
} else {
show_radius_result(['Reply-Message' => 'Voucher activation failed'], 401);
}
} else {
show_radius_result(['Reply-Message' => 'Voucher activation failed.'], 401);
}
} else {
show_radius_result(['Reply-Message' => 'Voucher Expired...'], 401);
}
} else {
show_radius_result(['Reply-Message' => 'Voucher Expired..'], 401);
}
} else {
show_radius_result(['Reply-Message' => 'Internet Plan Expired..'], 401);
}
}
break;
case 'accounting':
$username = _req('username');
if (empty($username)) {
die();
}
header("HTTP/1.1 200 ok");
$d = ORM::for_table('rad_acct')
->where('username', $username)
->where('macaddr', _post('macAddr'))
->where('acctstatustype', _post('acctStatusType'))
->findOne();
if (!$d) {
$d = ORM::for_table('rad_acct')->create();
}
$d->acctsessionid = _post('acctSessionId');
$d->username = $username;
$d->nasipaddress = _post('nasip');
$d->nasid = _post('nasid');
$d->nasportid = _post('nasPortId');
$d->nasporttype = _post('nasPortType');
$d->framedipaddress = _post('framedIPAddress');
$d->acctstatustype = _post('acctStatusType');
$d->macaddr = _post('macAddr');
$d->dateAdded = date('Y-m-d H:i:s');
$d->save();
break;
}
die();
} catch (Throwable $e) {
Message::sendTelegram(
"Sistem Error.\n" .
$e->getMessage() . "\n" .
$e->getTraceAsString(),
$config['telegram_topik_error']
);
} catch (Exception $e) {
Message::sendTelegram(
"Sistem Error.\n" .
$e->getMessage() . "\n" .
$e->getTraceAsString(),
$config['telegram_topik_error']
);
}
show_radius_result(['Reply-Message' => 'Invalid Command'], 401);
function process_radiust_rest($tur, $code)
{
global $config;
$plan = ORM::for_table('tbl_plans')->where('id', $tur['plan_id'])->find_one();
$bw = ORM::for_table("tbl_bandwidth")->find_one($plan['id_bw']);
if ($bw['rate_down_unit'] == 'Kbps') {
$unitdown = 'K';
} else {
$unitdown = 'M';
}
if ($bw['rate_up_unit'] == 'Kbps') {
$unitup = 'K';
} else {
$unitup = 'M';
}
$rate = $bw['rate_up'] . $unitup . "/" . $bw['rate_down'] . $unitdown;
$rates = explode('/', $rate);
if (!empty(trim($bw['burst']))) {
$ratos = $rate . ' ' . $bw['burst'];
} else {
$ratos = $rates[0] . '/' . $rates[1];
}
$attrs = [];
$timeexp = strtotime($tur['expiration'] . ' ' . $tur['time']);
$attrs['reply:Reply-Message'] = 'success';
$attrs['Simultaneous-Use'] = $plan['shared_users'];
$attrs['reply:Mikrotik-Wireless-Comment'] = $plan['name_plan'] . ' | ' . $tur['expiration'] . ' ' . $tur['time'];
$attrs['reply:Ascend-Data-Rate'] = str_replace('M', '000000', str_replace('K', '000', $rates[1]));
$attrs['reply:Ascend-Xmit-Rate'] = str_replace('M', '000000', str_replace('K', '000', $rates[0]));
$attrs['reply:Mikrotik-Rate-Limit'] = $ratos;
$attrs['reply:WISPr-Bandwidth-Max-Up'] = str_replace('M', '000000', str_replace('K', '000', $rates[0]));
$attrs['reply:WISPr-Bandwidth-Max-Down'] = str_replace('M', '000000', str_replace('K', '000', $rates[1]));
$attrs['reply:expiration'] = date('d M Y H:i:s', $timeexp);
$attrs['reply:WISPr-Session-Terminate-Time'] = date('Y-m-d', $timeexp) . 'T' . date('H:i:sP', $timeexp);
if ($plan['typebp'] == "Limited") {
if ($plan['limit_type'] == "Time_Limit") {
if ($plan['time_unit'] == 'Hrs')
$timelimit = $plan['time_limit'] * 60 * 60;
else
$timelimit = $plan['time_limit'] * 60;
$attrs['reply:Max-All-Session'] = $timelimit;
$attrs['reply:Expire-After'] = $timelimit;
} else if ($plan['limit_type'] == "Data_Limit") {
if ($plan['data_unit'] == 'GB')
$datalimit = $plan['data_limit'] . "000000000";
else
$datalimit = $plan['data_limit'] . "000000";
$attrs['reply:Max-Data'] = $datalimit;
$attrs['reply:Mikrotik-Recv-Limit-Gigawords'] = $datalimit;
$attrs['reply:Mikrotik-Xmit-Limit-Gigawords'] = $datalimit;
} else if ($plan['limit_type'] == "Both_Limit") {
if ($plan['time_unit'] == 'Hrs')
$timelimit = $plan['time_limit'] * 60 * 60;
else
$timelimit = $plan['time_limit'] * 60;
if ($plan['data_unit'] == 'GB')
$datalimit = $plan['data_limit'] . "000000000";
else
$datalimit = $plan['data_limit'] . "000000";
$attrs['reply:Max-All-Session'] = $timelimit;
$attrs['reply:Max-Data'] = $datalimit;
$attrs['reply:Mikrotik-Recv-Limit-Gigawords'] = $datalimit;
$attrs['reply:Mikrotik-Xmit-Limit-Gigawords'] = $datalimit;
}
}
$result = array_merge([
"control:Auth-Type" => "Accept",
"reply" => ["Reply-Message" => ['value' => 'success']]
], $attrs);
show_radius_result($result, $code);
}
function show_radius_result($array, $code = 200)
{
if ($code == 401) {
header("HTTP/1.1 401 Unauthorized");
} else if ($code == 200) {
header("HTTP/1.1 200 OK");
} else if ($code == 204) {
header("HTTP/1.1 204 No Content");
die();
}
die(json_encode($array));
die();
}
Reference in a new issue Copy permalink