<?php
/* $Id$ */
/*
/* ========================================================================== */
/*
    vhosts.inc
    Copyright (C) 2008 Mark J Crane
    All rights reserved.
                                                                              */
/* ========================================================================== */
/*
	Redistribution and use in source and binary forms, with or without
	modification, are permitted provided that the following conditions are met:

	1. Redistributions of source code must retain the above copyright notice,
	   this list of conditions and the following disclaimer.

	2. Redistributions in binary form must reproduce the above copyright
	   notice, this list of conditions and the following disclaimer in the
	   documentation and/or other materials provided with the distribution.

	THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
	INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
	AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
	AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
	OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
	SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
	INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
	CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
	ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
	POSSIBILITY OF SUCH DAMAGE.
*/

//show errors
	ini_set('display_errors', '1');
	//error_reporting (E_ALL); // Report everything
	//error_reporting (E_ALL ^ E_NOTICE); // Report everything
	error_reporting(E_ALL ^ E_NOTICE ^ E_WARNING ); //hide notices and warnings

if (!function_exists("pkg_is_service_running")) {
	function pkg_is_service_running($servicename) 
	{
		exec("/bin/ps ax | awk '{ print $5 }'", $psout);
		array_shift($psout);
		foreach($psout as $line) {
			$ps[] = trim(array_pop(explode(' ', array_pop(explode('/', $line)))));
		}
		if(is_service_running($servicename, $ps) or is_process_running($servicename) ) {
			return true;
		}
		else {
			return false;
		}
	}
}

if (!function_exists("byte_convert")) {
	function byte_convert( $bytes ) {
		if ($bytes<=0)
			return '0 Byte';

		$convention=1000; //[1000->10^x|1024->2^x]
		$s=array('B', 'kB', 'MB', 'GB', 'TB', 'PB', 'EB', 'ZB');
		$e=floor(log($bytes,$convention));
		return round($bytes/pow($convention,$e),2).' '.$s[$e];
	}
}

//sort array
	function sort_host($a, $b){
		return strcmp($a["host"], $b["host"]);
	}

	function sort_port($a, $b){
		return strcmp($a["port"], $b["port"]);
	}

	function sort_ip_address($a, $b){
		return natsort($a["ipaddress"], $b["ipaddress"]);
	}


//check to see if the service is installed if it is return the id
	function get_service_id ($service_array, $fieldname, $fieldvalue) {
		$x = 0;
		$id = '';
		foreach($service_array as $rowhelper) {
			if ($rowhelper[$fieldname] == $fieldvalue) {
				$id = $x; //return the id
			}
			$x++;
		}
		if (strlen($id) > 0) {
			return ($id);
		}
		else {
			return false;
		}
	}


function vhosts_sync_package_php()
{
	global $config;

	if($config['installedpackages']['vhosts']['config'] != "") {

		conf_mount_rw();
		config_unlock();

		//sort the vhosts array 
			$vhostarray = $config['installedpackages']['vhosts']['config'];
			if (count(vhostarray) > 1) {
				usort($vhostarray, 'sort_ipaddress');
				usort($vhostarray, 'sort_host');
				usort($vhostarray, 'sort_port');
			}
			$vhostarray_http = '';
			$vhostarray_https = '';
			$x = 0;
			foreach($vhostarray as $rowhelper) {
				if ($rowhelper['enabled'] != "false") {
					if (strlen($rowhelper['certificate']) > 0 && strlen($rowhelper['privatekey']) > 0) {
						$vhostarray_https[$x]['host'] = $rowhelper['host'];
						$vhostarray_https[$x]['ipaddress'] = $rowhelper['ipaddress'];
						$vhostarray_https[$x]['port'] = $rowhelper['port'];
						$vhostarray_https[$x]['directory'] = $rowhelper['directory'];
						$vhostarray_https[$x]['certificate'] = $rowhelper['certificate'];
						$vhostarray_https[$x]['privatekey'] = $rowhelper['privatekey'];
						$vhostarray_https[$x]['enabled'] = $rowhelper['enabled'];
						$vhostarray_https[$x]['description'] = $rowhelper['description'];
					}
					else {
						$vhostarray_http[$x]['host'] = $rowhelper['host'];
						$vhostarray_http[$x]['ipaddress'] = $rowhelper['ipaddress'];
						$vhostarray_http[$x]['port'] = $rowhelper['port'];
						$vhostarray_http[$x]['directory'] = $rowhelper['directory'];
						$vhostarray_http[$x]['certificate'] = '';
						$vhostarray_http[$x]['privatekey'] = '';
						$vhostarray_http[$x]['enabled'] = $rowhelper['enabled'];
						$vhostarray_http[$x]['description'] = $rowhelper['description'];
						$server_port = $rowhelper['port'];
					}
					$x++;
				}
			}
			unset($x);

		//HTTP configuration
		if (count($vhostarray_http) > 0) {

			$tmp = "#\n";
			$tmp .= "# lighttpd configuration file\n";
			$tmp .= "#\n";
			$tmp .= "# use a it as base for lighttpd 1.0.0 and above\n";
			$tmp .= "#\n";
			$tmp .= "############ Options you really have to take care of ####################\n";
			$tmp .= "\n";
			$tmp .= "## FreeBSD!\n";
			$tmp .= "server.event-handler		= \"freebsd-kqueue\"\n";
			$tmp .= "server.network-backend		= \"writev\"  ## Fixes 7.x upload issues\n";
			$tmp .= "\n";
			$tmp .= "## modules to load\n";
			$tmp .= "server.modules =   (\n";
			$tmp .= "				  \"mod_access\", \"mod_accesslog\",\n";
			$tmp .= "                  \"mod_fastcgi\", \"mod_cgi\",\"mod_rewrite\"\n";
			$tmp .= "				)\n";
			$tmp .= "\n";
			$tmp .= "## Unused modules\n";
			$tmp .= "#                               \"mod_setenv\",\n";
			$tmp .= "#                               \"mod_compress\"\n";
			$tmp .= "#                               \"mod_redirect\",\n";
			$tmp .= "#                               \"mod_rewrite\",\n";
			$tmp .= "#                               \"mod_ssi\",\n";
			$tmp .= "#                               \"mod_usertrack\",\n";
			$tmp .= "#                               \"mod_expire\",\n";
			$tmp .= "#                               \"mod_secdownload\",\n";
			$tmp .= "#                               \"mod_rrdtool\",\n";
			$tmp .= "#                               \"mod_auth\",\n";
			$tmp .= "#                               \"mod_status\",\n";
			$tmp .= "#                               \"mod_alias\",\n";
			$tmp .= "#                               \"mod_proxy\",\n";
			$tmp .= "#                               \"mod_simple_vhost\",\n";
			$tmp .= "#                               \"mod_evhost\",\n";
			$tmp .= "#                               \"mod_userdir\",\n";
			$tmp .= "#                               \"mod_cgi\",\n";
			$tmp .= "#                                \"mod_accesslog\"\n";
			$tmp .= "\n";
			$tmp .= "## a static document-root, for virtual-hosting take look at the\n";
			$tmp .= "## server.virtual-* options\n";
			$tmp .= "server.document-root        = \"/usr/local/vhosts/\"\n";
			$tmp .= "\n";
			$tmp .= "# Maximum idle time with nothing being written (php downloading)\n";
			$tmp .= "server.max-write-idle = 999\n";
			$tmp .= "\n";
			$tmp .= "## where to send error-messages to\n";
			$tmp .= "server.errorlog             = \"/var/log/lighttpd.error.log\"\n";
			$tmp .= "\n";
			$tmp .= "# files to check for if .../ is requested\n";
			$tmp .= "server.indexfiles           = ( \"index.php\", \"index.html\",\n";
			$tmp .= "                                \"index.htm\", \"default.htm\" )\n";
			$tmp .= "\n";
			$tmp .= "# mimetype mapping\n";
			$tmp .= "mimetype.assign             = (\n";
			$tmp .= "  \".pdf\"          =>      \"application/pdf\",\n";
			$tmp .= "  \".sig\"          =>      \"application/pgp-signature\",\n";
			$tmp .= "  \".spl\"          =>      \"application/futuresplash\",\n";
			$tmp .= "  \".class\"        =>      \"application/octet-stream\",\n";
			$tmp .= "  \".ps\"           =>      \"application/postscript\",\n";
			$tmp .= "  \".torrent\"      =>      \"application/x-bittorrent\",\n";
			$tmp .= "  \".dvi\"          =>      \"application/x-dvi\",\n";
			$tmp .= "  \".gz\"           =>      \"application/x-gzip\",\n";
			$tmp .= "  \".pac\"          =>      \"application/x-ns-proxy-autoconfig\",\n";
			$tmp .= "  \".swf\"          =>      \"application/x-shockwave-flash\",\n";
			$tmp .= "  \".tar.gz\"       =>      \"application/x-tgz\",\n";
			$tmp .= "  \".tgz\"          =>      \"application/x-tgz\",\n";
			$tmp .= "  \".tar\"          =>      \"application/x-tar\",\n";
			$tmp .= "  \".zip\"          =>      \"application/zip\",\n";
			$tmp .= "  \".mp3\"          =>      \"audio/mpeg\",\n";
			$tmp .= "  \".m3u\"          =>      \"audio/x-mpegurl\",\n";
			$tmp .= "  \".wma\"          =>      \"audio/x-ms-wma\",\n";
			$tmp .= "  \".wax\"          =>      \"audio/x-ms-wax\",\n";
			$tmp .= "  \".ogg\"          =>      \"audio/x-wav\",\n";
			$tmp .= "  \".wav\"          =>      \"audio/x-wav\",\n";
			$tmp .= "  \".gif\"          =>      \"image/gif\",\n";
			$tmp .= "  \".jpg\"          =>      \"image/jpeg\",\n";
			$tmp .= "  \".jpeg\"         =>      \"image/jpeg\",\n";
			$tmp .= "  \".png\"          =>      \"image/png\",\n";
			$tmp .= "  \".xbm\"          =>      \"image/x-xbitmap\",\n";
			$tmp .= "  \".xpm\"          =>      \"image/x-xpixmap\",\n";
			$tmp .= "  \".xwd\"          =>      \"image/x-xwindowdump\",\n";
			$tmp .= "  \".css\"          =>      \"text/css\",\n";
			$tmp .= "  \".html\"         =>      \"text/html\",\n";
			$tmp .= "  \".htm\"          =>      \"text/html\",\n";
			$tmp .= "  \".js\"           =>      \"text/javascript\",\n";
			$tmp .= "  \".asc\"          =>      \"text/plain\",\n";
			$tmp .= "  \".c\"            =>      \"text/plain\",\n";
			$tmp .= "  \".conf\"         =>      \"text/plain\",\n";
			$tmp .= "  \".text\"         =>      \"text/plain\",\n";
			$tmp .= "  \".txt\"          =>      \"text/plain\",\n";
			$tmp .= "  \".dtd\"          =>      \"text/xml\",\n";
			$tmp .= "  \".xml\"          =>      \"text/xml\",\n";
			$tmp .= "  \".mpeg\"         =>      \"video/mpeg\",\n";
			$tmp .= "  \".mpg\"          =>      \"video/mpeg\",\n";
			$tmp .= "  \".mov\"          =>      \"video/quicktime\",\n";
			$tmp .= "  \".qt\"           =>      \"video/quicktime\",\n";
			$tmp .= "  \".avi\"          =>      \"video/x-msvideo\",\n";
			$tmp .= "  \".asf\"          =>      \"video/x-ms-asf\",\n";
			$tmp .= "  \".asx\"          =>      \"video/x-ms-asf\",\n";
			$tmp .= "  \".wmv\"          =>      \"video/x-ms-wmv\",\n";
			$tmp .= "  \".bz2\"          =>      \"application/x-bzip\",\n";
			$tmp .= "  \".tbz\"          =>      \"application/x-bzip-compressed-tar\",\n";
			$tmp .= "  \".tar.bz2\"      =>      \"application/x-bzip-compressed-tar\"\n";
			$tmp .= " )\n";
			$tmp .= "\n";
			$tmp .= "# Use the \"Content-Type\" extended attribute to obtain mime type if possible\n";
			$tmp .= "#mimetypes.use-xattr        = \"enable\"\n";
			$tmp .= "\n";
			$tmp .= "#### accesslog module\n";
			$tmp .= "#accesslog.filename          = \"/dev/null\"\n";
			$tmp .= "\n";
			$tmp .= "## deny access the file-extensions\n";
			$tmp .= "#\n";
			$tmp .= "# ~    is for backupfiles from vi, emacs, joe, ...\n";
			$tmp .= "# .inc is often used for code includes which should in general not be part\n";
			$tmp .= "#      of the document-root\n";
			$tmp .= "url.access-deny             = ( \"~\", \".db\" )\n";
			$tmp .= "\n";
			$tmp .= "\n";
			$tmp .= "######### Options that are good to be but not neccesary to be changed #######\n";
			$tmp .= "\n";
			$tmp .= "## bind to port (default: 80)\n";
			$tmp .= "server.port                = $server_port\n";
			$tmp .= "\n";
			$tmp .= "#the regex method isn't working\n";
			$tmp .= "#\$HTTP[\"host\"] =~ \"(^|\\.)host01\\.com\$\" {\n";
			$tmp .= "#	server.document-root        = \"/usr/local/vhosts/host01\"\n";
			$tmp .= "#}\n";
			$tmp .= "\n";

			$ipaddress_previous_value = '';
			$host_previous_value = '';
			$port_previous_value = '';
			$ipaddress_and_port_previous_value = '';
			$x=1;
			foreach($vhostarray_http as $rowhelper) {
				if ($rowhelper['enabled'] != "false") {

					$host = $rowhelper['host'];
					$ipaddress = $rowhelper['ipaddress'];
					$port = $rowhelper['port'];
					$directory = $rowhelper['directory'];
					if (strlen($rowhelper['certificate']) > 0) {
						$certificate = base64_decode($rowhelper['certificate']);
					}
					if (strlen($rowhelper['privatekey']) > 0) {
						$privatekey = base64_decode($rowhelper['privatekey']);
					}

					//set directory default to the host
						if (strlen($directory) == 0) { $directory = $host; }

					//if the vhost directory doesn't exist then create it
						//echo '/usr/local/vhosts/'.$directory.'<br />';
						if (!is_dir('/usr/local/vhosts/'.$directory)) {
							exec("mkdir /usr/local/vhosts/".$directory);
						}
						if (!file_exists('/usr/local/vhosts/'.$directory.'/index.php')) {
							$index_file = '/usr/local/vhosts/'.$directory.'/index.php';
							$index_tmp = "<?php\n";
							$index_tmp .= "	echo phpinfo();\n";
							$index_tmp .= "?>\n";
							$fout = fopen($index_file,"w");
							fwrite($fout, $index_tmp);
							fclose($fout);
							unset($index_file);
						}

					//set the default port
						if (strlen($port) == 0) { $port = '8001'; }

					if ($ipaddress.':'.$port != $ipaddress_and_port_previous_value) {
						if ($x > 1) { $tmp .= "}\n\n"; }
						$tmp .= "\$SERVER[\"socket\"] == \"".$ipaddress.":".$port."\" {\n";
					}

					$tmp .= "	\$HTTP[\"host\"] == \"".$host."\" {\n";
					$tmp .= "		server.document-root        = \"/usr/local/vhosts/".$directory."\"\n";

					//enable ssl if the cert and key were both provided
					if (strlen($rowhelper['certificate']) > 0 && strlen($rowhelper['privatekey']) > 0) {
						$pem_file = "/var/etc/cert-vhosts-".$ipaddress."-".$port.".pem";
						$fout = fopen($pem_file,"w");
						fwrite($fout, $certificate.PHP_EOL.$privatekey);
						fclose($fout);
						$tmp .= "		ssl.pemfile = \"".$pem_file."\"\n";
						$tmp .= "		ssl.engine = \"enable\"\n";
						unset($pem_file);
					}
					if (count($vhostarray_http) > 0) {
						$tmp .= "	}\n";
					}

					$ipaddress_previous_value = $ipaddress;
					$host_previous_value = $host;
					$port_previous_value = $port;
					$ipaddress_and_port_previous_value = $ipaddress.':'.$port;
					$x++;
				}
			}
			$tmp .= "}\n";


			/*
			$tmp .= "\$SERVER[\"socket\"] == \"10.7.0.1:8001\" {\n";
			$tmp .= "	\$HTTP[\"host\"] == \"vhost01.com\" {\n";
			$tmp .= "		#ssl.pemfile = \"/var/www/certs/localhost.pem\"\n";
			$tmp .= "		#ssl.engine = \"enable\"\n";
			$tmp .= "		server.document-root        = \"/usr/local/vhosts/host01\"\n";
			$tmp .= "		#server.errorlog = \"/var/log/lighttpd/nixcraft/error.log\"\n";
			$tmp .= "		#accesslog.filename = \"/var/log/lighttpd/nixcraft/access.log\"\n";
			$tmp .= "		#server.error-handler-404 = \"/e404.php\"\n";
			$tmp .= "	}\n";
			$tmp .= "\n";
			$tmp .= "	\$HTTP[\"host\"] == \"vhost03.com\" {\n";
			$tmp .= "		#ssl.pemfile = \"/var/www/certs/localhost.pem\"\n";
			$tmp .= "		#ssl.engine = \"enable\"\n";
			$tmp .= "		server.document-root        = \"/usr/local/vhosts/host03\"\n";
			$tmp .= "		#server.errorlog = \"/var/log/lighttpd/nixcraft/error.log\"\n";
			$tmp .= "		#accesslog.filename = \"/var/log/lighttpd/nixcraft/access.log\"\n";
			$tmp .= "		#server.error-handler-404 = \"/e404.php\"\n";
			$tmp .= "	}\n";
			$tmp .= "}\n";
			$tmp .= "\n";
			$tmp .= "\$SERVER[\"socket\"] == \"10.7.0.1:8002\" {\n";
			$tmp .= "	\$HTTP[\"host\"] == \"vhost02.com\" {\n";
			$tmp .= "		#ssl.pemfile = \"/var/www/certs/localhost.pem\"\n";
			$tmp .= "		#ssl.engine = \"enable\"\n";
			$tmp .= "		server.document-root = \"/usr/local/vhosts/host02\"\n";
			$tmp .= "		#server.errorlog = \"/var/log/lighttpd/nixcraft/error.log\"\n";
			$tmp .= "		#accesslog.filename = \"/var/log/lighttpd/nixcraft/access.log\"\n";
			$tmp .= "		#server.error-handler-404 = \"/e404.php\"\n";
			$tmp .= "	}\n";
			$tmp .= "}\n";
			*/
			$tmp .= "\n";
			$tmp .= "## error-handler for status 404\n";
			$tmp .= "#server.error-handler-404   = \"/error-handler.html\"\n";
			$tmp .= "#server.error-handler-404   = \"/error-handler.php\"\n";
			$tmp .= "\n";
			$tmp .= "## to help the rc.scripts\n";
			$tmp .= "server.pid-file            = \"/var/run/vhosts-http.pid\"\n";
			$tmp .= "\n";
			$tmp .= "## virtual directory listings\n";
			$tmp .= "server.dir-listing         = \"disable\"\n";
			$tmp .= "\n";
			$tmp .= "## enable debugging\n";
			$tmp .= "debug.log-request-header   = \"disable\"\n";
			$tmp .= "debug.log-response-header  = \"disable\"\n";
			$tmp .= "debug.log-request-handling = \"disable\"\n";
			$tmp .= "debug.log-file-not-found   = \"disable\"\n";
			$tmp .= "\n";
			$tmp .= "#### compress module\n";
			$tmp .= "#compress.cache-dir         = \"/tmp/lighttpd/cache/compress/\"\n";
			$tmp .= "#compress.filetype          = (\"text/plain\", \"text/html\")\n";
			$tmp .= "\n";
			$tmp .= "#server.network-backend = \"writev\"\n";
			$tmp .= "server.upload-dirs = ( \"/root/\", \"/tmp/\", \"/var/\" )\n";
			$tmp .= "server.max-request-size    = 2097152\n";
			$tmp .= "\n";
			$tmp .= "#### fastcgi module\n";
			$tmp .= "## read fastcgi.txt for more info\n";
			$tmp .= "fastcgi.server = ( \".php\" =>\n";
			$tmp .= "	( \"localhost\" =>\n";
			$tmp .= "		(\n";
			$tmp .= "			\"socket\" => \"/tmp/php5-fastcgi.socket\",\n";
			$tmp .= "			\"min-procs\" => 1,\n";
			$tmp .= "			\"max-procs\" => 1,\n";
			$tmp .= "			\"idle-timeout\" => 0,\n";
			$tmp .= "			\"bin-environment\" => (\n";
			$tmp .= "				\"PHP_FCGI_MAX_REQUESTS\" => \"500\",\n";
			$tmp .= "				\"PHP_FCGI_CHILDREN\" => \"1\"\n";
			$tmp .= "			),\n";
			$tmp .= "			\"bin-path\" => \"/usr/local/bin/php\"\n";
			$tmp .= "		)\n";
			$tmp .= "	)\n";
			$tmp .= ")\n";
			$tmp .= "\n";
			$tmp .= "#### CGI module\n";
			$tmp .= "cgi.assign                 = ( \".cgi\" => \"\" )\n";

			$fout = fopen("/var/etc/vhosts-http.conf","w");
			fwrite($fout, $tmp);
			unset($tmp);
			fclose($fout);
		} //end (if count(vhostarray_http) > 0)

		//HTTPS configuration
		$ipaddress_previous_value = '';
		$host_previous_value = '';
		$port_previous_value = '';
		$ipaddress_and_port_previous_value = '';
		$x=1;
		if (count($vhostarray_https) > 0) {
			foreach($vhostarray_https as $rowhelper) {
				if ($rowhelper['enabled'] != "false") {
					$host = $rowhelper['host'];
					$ipaddress = $rowhelper['ipaddress'];
					$port = $rowhelper['port'];
					$directory = $rowhelper['directory'];
					$description = $rowhelper['description'];
					if (strlen($rowhelper['certificate']) > 0) {
						$certificate = base64_decode($rowhelper['certificate']);
					}
					if (strlen($rowhelper['privatekey']) > 0) {
						$privatekey = base64_decode($rowhelper['privatekey']);
					}

					//set directory default to the host
						if (strlen($directory) == 0) { $directory = $host; }

					//if the vhost directory doesn't exist then create it
						//echo '/usr/local/vhosts/'.$directory.'<br />';
						if (!is_dir('/usr/local/vhosts/'.$directory)) {
							exec("mkdir /usr/local/vhosts/".$directory);
						}
						if (!file_exists('/usr/local/vhosts/'.$directory.'/index.php')) {
							$index_file = '/usr/local/vhosts/'.$directory.'/index.php';
							$index_tmp = "<?php\n";
							$index_tmp .= "	echo phpinfo();\n";
							$index_tmp .= "?>\n";
							$fout = fopen($index_file,"w");
							fwrite($fout, $index_tmp);
							fclose($fout);
							unset($index_file);
						}

					//set the default port
						if (strlen($port) == 0) { $port = '443'; }

					$tmp = "#\n";
					$tmp .= "# lighttpd configuration file\n";
					$tmp .= "#\n";
					$tmp .= "# use a it as base for lighttpd 1.0.0 and above\n";
					$tmp .= "#\n";
					$tmp .= "############ Options you really have to take care of ####################\n";
					$tmp .= "\n";
					$tmp .= "## FreeBSD!\n";
					$tmp .= "server.event-handler		= \"freebsd-kqueue\"\n";
					$tmp .= "server.network-backend		= \"writev\"  ## Fixes 7.x upload issues\n";
					$tmp .= "\n";
					$tmp .= "## modules to load\n";
					$tmp .= "server.modules =   (\n";
					$tmp .= "				  \"mod_access\", \"mod_accesslog\",\n";
					$tmp .= "                  \"mod_fastcgi\", \"mod_cgi\",\"mod_rewrite\"\n";
					$tmp .= "				)\n";
					$tmp .= "\n";
					$tmp .= "## Unused modules\n";
					$tmp .= "#                               \"mod_setenv\",\n";
					$tmp .= "#                               \"mod_compress\"\n";
					$tmp .= "#                               \"mod_redirect\",\n";
					$tmp .= "#                               \"mod_rewrite\",\n";
					$tmp .= "#                               \"mod_ssi\",\n";
					$tmp .= "#                               \"mod_usertrack\",\n";
					$tmp .= "#                               \"mod_expire\",\n";
					$tmp .= "#                               \"mod_secdownload\",\n";
					$tmp .= "#                               \"mod_rrdtool\",\n";
					$tmp .= "#                               \"mod_auth\",\n";
					$tmp .= "#                               \"mod_status\",\n";
					$tmp .= "#                               \"mod_alias\",\n";
					$tmp .= "#                               \"mod_proxy\",\n";
					$tmp .= "#                               \"mod_simple_vhost\",\n";
					$tmp .= "#                               \"mod_evhost\",\n";
					$tmp .= "#                               \"mod_userdir\",\n";
					$tmp .= "#                               \"mod_cgi\",\n";
					$tmp .= "#                               \"mod_accesslog\"\n";
					$tmp .= "\n";
					$tmp .= "## a static document-root, for virtual-hosting take look at the\n";
					$tmp .= "## server.virtual-* options\n";
					$tmp .= "\n";
					$tmp .= "## ".$description." \n\n";
					$tmp .= "server.document-root        = \"/usr/local/vhosts/".$directory."\"\n";

					$tmp .= "\n";
					$tmp .= "# Maximum idle time with nothing being written (php downloading)\n";
					$tmp .= "server.max-write-idle = 999\n";
					$tmp .= "\n";
					$tmp .= "## where to send error-messages to\n";
					$tmp .= "server.errorlog             = \"/var/log/lighttpd.error.log\"\n";
					$tmp .= "\n";
					$tmp .= "# files to check for if .../ is requested\n";
					$tmp .= "server.indexfiles           = ( \"index.php\", \"index.html\",\n";
					$tmp .= "                                \"index.htm\", \"default.htm\" )\n";
					$tmp .= "\n";
					$tmp .= "# mimetype mapping\n";
					$tmp .= "mimetype.assign             = (\n";
					$tmp .= "  \".pdf\"          =>      \"application/pdf\",\n";
					$tmp .= "  \".sig\"          =>      \"application/pgp-signature\",\n";
					$tmp .= "  \".spl\"          =>      \"application/futuresplash\",\n";
					$tmp .= "  \".class\"        =>      \"application/octet-stream\",\n";
					$tmp .= "  \".ps\"           =>      \"application/postscript\",\n";
					$tmp .= "  \".torrent\"      =>      \"application/x-bittorrent\",\n";
					$tmp .= "  \".dvi\"          =>      \"application/x-dvi\",\n";
					$tmp .= "  \".gz\"           =>      \"application/x-gzip\",\n";
					$tmp .= "  \".pac\"          =>      \"application/x-ns-proxy-autoconfig\",\n";
					$tmp .= "  \".swf\"          =>      \"application/x-shockwave-flash\",\n";
					$tmp .= "  \".tar.gz\"       =>      \"application/x-tgz\",\n";
					$tmp .= "  \".tgz\"          =>      \"application/x-tgz\",\n";
					$tmp .= "  \".tar\"          =>      \"application/x-tar\",\n";
					$tmp .= "  \".zip\"          =>      \"application/zip\",\n";
					$tmp .= "  \".mp3\"          =>      \"audio/mpeg\",\n";
					$tmp .= "  \".m3u\"          =>      \"audio/x-mpegurl\",\n";
					$tmp .= "  \".wma\"          =>      \"audio/x-ms-wma\",\n";
					$tmp .= "  \".wax\"          =>      \"audio/x-ms-wax\",\n";
					$tmp .= "  \".ogg\"          =>      \"audio/x-wav\",\n";
					$tmp .= "  \".wav\"          =>      \"audio/x-wav\",\n";
					$tmp .= "  \".gif\"          =>      \"image/gif\",\n";
					$tmp .= "  \".jpg\"          =>      \"image/jpeg\",\n";
					$tmp .= "  \".jpeg\"         =>      \"image/jpeg\",\n";
					$tmp .= "  \".png\"          =>      \"image/png\",\n";
					$tmp .= "  \".xbm\"          =>      \"image/x-xbitmap\",\n";
					$tmp .= "  \".xpm\"          =>      \"image/x-xpixmap\",\n";
					$tmp .= "  \".xwd\"          =>      \"image/x-xwindowdump\",\n";
					$tmp .= "  \".css\"          =>      \"text/css\",\n";
					$tmp .= "  \".html\"         =>      \"text/html\",\n";
					$tmp .= "  \".htm\"          =>      \"text/html\",\n";
					$tmp .= "  \".js\"           =>      \"text/javascript\",\n";
					$tmp .= "  \".asc\"          =>      \"text/plain\",\n";
					$tmp .= "  \".c\"            =>      \"text/plain\",\n";
					$tmp .= "  \".conf\"         =>      \"text/plain\",\n";
					$tmp .= "  \".text\"         =>      \"text/plain\",\n";
					$tmp .= "  \".txt\"          =>      \"text/plain\",\n";
					$tmp .= "  \".dtd\"          =>      \"text/xml\",\n";
					$tmp .= "  \".xml\"          =>      \"text/xml\",\n";
					$tmp .= "  \".mpeg\"         =>      \"video/mpeg\",\n";
					$tmp .= "  \".mpg\"          =>      \"video/mpeg\",\n";
					$tmp .= "  \".mov\"          =>      \"video/quicktime\",\n";
					$tmp .= "  \".qt\"           =>      \"video/quicktime\",\n";
					$tmp .= "  \".avi\"          =>      \"video/x-msvideo\",\n";
					$tmp .= "  \".asf\"          =>      \"video/x-ms-asf\",\n";
					$tmp .= "  \".asx\"          =>      \"video/x-ms-asf\",\n";
					$tmp .= "  \".wmv\"          =>      \"video/x-ms-wmv\",\n";
					$tmp .= "  \".bz2\"          =>      \"application/x-bzip\",\n";
					$tmp .= "  \".tbz\"          =>      \"application/x-bzip-compressed-tar\",\n";
					$tmp .= "  \".tar.bz2\"      =>      \"application/x-bzip-compressed-tar\"\n";
					$tmp .= " )\n";
					$tmp .= "\n";
					$tmp .= "# Use the \"Content-Type\" extended attribute to obtain mime type if possible\n";
					$tmp .= "#mimetypes.use-xattr        = \"enable\"\n";
					$tmp .= "\n";
					$tmp .= "#### accesslog module\n";
					$tmp .= "#accesslog.filename          = \"/dev/null\"\n";
					$tmp .= "\n";
					$tmp .= "## deny access the file-extensions\n";
					$tmp .= "#\n";
					$tmp .= "# ~    is for backupfiles from vi, emacs, joe, ...\n";
					$tmp .= "# .inc is often used for code includes which should in general not be part\n";
					$tmp .= "#      of the document-root\n";
					$tmp .= "url.access-deny             = ( \"~\", \".db\" )\n";
					$tmp .= "\n";
					$tmp .= "\n";
					$tmp .= "######### Options that are good to be but not neccesary to be changed #######\n";
					$tmp .= "\n";
					$tmp .= "## bind to port (default: 80)\n";
					$tmp .= "server.port                = ".$port."\n";
					$tmp .= "\n";
					$tmp .= "#the regex method isn't working\n";
					$tmp .= "#\$HTTP[\"host\"] =~ \"(^|\\.)host01\\.com\$\" {\n";
					$tmp .= "#	server.document-root        = \"/usr/local/vhosts/host01\"\n";
					$tmp .= "#}\n";
					$tmp .= "\n";

					//enable ssl if the cert and key were both provided
						$pem_file = "/var/etc/cert-vhosts-".$ipaddress."-".$port.".pem";
						$fout = fopen($pem_file,"w");
						//echo $certificate; //exit;
						fwrite($fout, $certificate.PHP_EOL.$privatekey);
						fclose($fout);
						$tmp .= "## ssl configuration\n";
						$tmp .= "ssl.pemfile = \"".$pem_file."\"\n";
						$tmp .= "ssl.engine = \"enable\"\n";
						unset($pem_file);

					$tmp .= "\n";
					$tmp .= "## error-handler for status 404\n";
					$tmp .= "#server.error-handler-404   = \"/error-handler.html\"\n";
					$tmp .= "#server.error-handler-404   = \"/error-handler.php\"\n";
					$tmp .= "\n";
					$tmp .= "## to help the rc.scripts\n";
					$tmp .= "server.pid-file            = \"/var/run/vhosts-".$ipaddress."-".$port."-ssl.pid\"\n";
					$tmp .= "\n";
					$tmp .= "## virtual directory listings\n";
					$tmp .= "server.dir-listing         = \"disable\"\n";
					$tmp .= "\n";
					$tmp .= "## enable debugging\n";
					$tmp .= "debug.log-request-header   = \"disable\"\n";
					$tmp .= "debug.log-response-header  = \"disable\"\n";
					$tmp .= "debug.log-request-handling = \"disable\"\n";
					$tmp .= "debug.log-file-not-found   = \"disable\"\n";
					$tmp .= "\n";
					$tmp .= "#### compress module\n";
					$tmp .= "#compress.cache-dir         = \"/tmp/lighttpd/cache/compress/\"\n";
					$tmp .= "#compress.filetype          = (\"text/plain\", \"text/html\")\n";
					$tmp .= "\n";
					$tmp .= "#server.network-backend = \"writev\"\n";
					$tmp .= "server.upload-dirs = ( \"/root/\", \"/tmp/\", \"/var/\" )\n";
					$tmp .= "server.max-request-size    = 2097152\n";
					$tmp .= "\n";
					$tmp .= "#### fastcgi module\n";
					$tmp .= "## read fastcgi.txt for more info\n";
					$tmp .= "fastcgi.server = ( \".php\" =>\n";
					$tmp .= "	( \"localhost\" =>\n";
					$tmp .= "		(\n";
					$tmp .= "			\"socket\" => \"/tmp/php5-fastcgi.socket\",\n";
					$tmp .= "			\"min-procs\" => 1,\n";
					$tmp .= "			\"max-procs\" => 1,\n";
					$tmp .= "			\"idle-timeout\" => 0,\n";
					$tmp .= "			\"bin-environment\" => (\n";
					$tmp .= "				\"PHP_FCGI_MAX_REQUESTS\" => \"500\",\n";
					$tmp .= "				\"PHP_FCGI_CHILDREN\" => \"1\"\n";
					$tmp .= "			),\n";
					$tmp .= "			\"bin-path\" => \"/usr/local/bin/php\"\n";
					$tmp .= "		)\n";
					$tmp .= "	)\n";
					$tmp .= ")\n";
					$tmp .= "\n";
					$tmp .= "#### CGI module\n";
					$tmp .= "cgi.assign                 = ( \".cgi\" => \"\" )\n";

					$fout = fopen("/var/etc/vhosts-".$ipaddress."-".$port."-ssl.conf","w");
					fwrite($fout, $tmp);
					unset($tmp);
					fclose($fout);

					if (!function_exists('write_rcfile')) { require("/etc/inc/service-utils.inc"); }
					write_rcfile(array(
						"file" => "vhosts-".$ipaddress."-".$port."-ssl.sh",
						"start" => "/usr/local/sbin/lighttpd -f /var/etc/vhosts-".$ipaddress."-".$port."-ssl.conf",
						"stop" => "kill `cat /var/run/vhosts-".$ipaddress."-".$port."-ssl.pid`"
						)
					);

					//add or update a service
						$ent['name'] = "vhosts-ssl-$x";
						$ent['rcfile'] = "vhosts-".$ipaddress."-".$port."-ssl.sh";
						$ent['executable'] = "vhosts-".$ipaddress."-".$port."-ssl";
						$ent['description'] = "vHosts SSL, Host: $host, IP Address: ".$ipaddress.", port: ".$port." desc: ".$description;
						$ent['custom_php_service_status_command'] = "\$vhost_output=''; exec('/bin/pgrep -anf '.".escapeshellarg($ent['executable']).", \$vhost_output, \$retval); \$rc=(intval(\$retval) == 0);";
						$a_service   = $config['installedpackages']['service'];
						$service_id = get_service_id ($a_service, 'name', "vhosts-ssl-$x");
						if (is_int($service_id)) {
							//update
							$a_service[$service_id] = $ent;
						}
						else {
							//add
							$a_service[] = $ent;
						}

				} //if enabled
				$x++;
			} //end for each
		} //end if array count
		write_config();
		conf_mount_ro();

	}
}


function vhosts_sync_package() {
	global $config;   
	vhosts_sync_package_php();
}


function vhosts_install_command() {

	global $config;
	conf_mount_rw();
	config_lock();

	if (!is_dir('/usr/local/www/packages/')) {
		exec("mkdir /usr/local/www/packages/");
	}

	if (!is_dir('/usr/local/www/packages/vhosts/')) {
		exec("mkdir /usr/local/www/packages/vhosts/");
	}

	if (!is_dir('/usr/local/vhosts/')) {
		exec("mkdir /usr/local/vhosts/");
	}

	if(stristr(php_uname('r'), '7.2') == TRUE) {
		if (!file_exists('/usr/local/php5')) {
			chdir('/usr/local/');
			exec ("fetch https://files.pfsense.org/packages/7/vhosts/php5.tar.gz");
			exec("tar zxvf /usr/local/php5.tar.gz -C /usr/local/");
			exec("rm /usr/local/php5.tar.gz");
		}
		if (!file_exists('/usr/local/lib/libxml2.so.5')) {
			chdir('/usr/local/lib/');
			exec ("fetch https://files.pfsense.org/packages/7/vhosts/usr.local.lib/libxml2.so.5");
		}
		if (!file_exists('/usr/local/lib/libxml2.so')) {
			chdir('/usr/local/lib/');
			exec ("fetch https://files.pfsense.org/packages/7/vhosts/usr.local.lib/libxml2.so");
		}
		if (!file_exists('/usr/local/lib/libxml2.la')) {
			chdir('/usr/local/lib/');
			exec ("fetch https://files.pfsense.org/packages/7/vhosts/usr.local.lib/libxml2.la");
		}
		if (!file_exists('/usr/local/lib/libxml2.a')) {
			chdir('/usr/local/lib/');
			exec ("fetch https://files.pfsense.org/packages/7/vhosts/usr.local.lib/lib/libxml2.a");
		}
	}
	if(stristr(php_uname('r'), '8.1') == TRUE) {
		if (!file_exists('/usr/local/php5')) {
			chdir('/usr/local/');
			exec ("fetch https://files.pfsense.org/packages/8/vhosts/php5.tar.gz");
			exec("tar zxvf /usr/local/php5.tar.gz -C /usr/local/");
			exec("rm /usr/local/php5.tar.gz");
		}
	}

	//rename PHP files from .tmp to .php
	exec("cp /tmp/vhosts_php.tmp /usr/local/www/packages/vhosts/vhosts_php.php");
	unlink_if_exists("/tmp/vhosts_php.tmp");

	exec("cp /tmp/vhosts_php_edit.tmp /usr/local/www/packages/vhosts/vhosts_php_edit.php");
	unlink_if_exists("/tmp/vhosts_php_edit.tmp");

	chdir('/tmp/');
	exec ("fetch https://packages.pfsense.org/packages/config/vhosts/system_advanced_create_certs.tmp");
	exec("cp /tmp/system_advanced_create_certs.tmp /usr/local/www/packages/vhosts/system_advanced_create_certs.php");
	unlink_if_exists("/tmp/system_advanced_create_certs.tmp");

	//write_config();

	if (!function_exists('write_rcfile')) { require("/etc/inc/service-utils.inc"); }
	write_rcfile(array(
		"file" => "vhosts-http.sh",
		"start" => "/usr/local/sbin/lighttpd -f /var/etc/vhosts-http.conf",
		"stop" => "kill `cat /var/run/vhosts-http.pid`"
		)
	);

	vhosts_sync_package();

	//if (pkg_is_service_running('vhosts')) {  
		//documentation purposes
	//}

	conf_mount_ro();
	config_unlock();
  
}


function vhosts_deinstall_command()
{
	conf_mount_rw();
	config_lock();
	$handle = popen("/usr/local/etc/rc.d/vhosts.sh stop", "r");
	unlink_if_exists("/usr/local/pkg/vhosts.xml");
	unlink_if_exists("/usr/local/pkg/vhosts.inc");
	unlink_if_exists("/usr/local/www/vhosts.inc");
	unlink_if_exists("/usr/local/etc/rc.d/vhosts-http.sh");
	exec ("rm /usr/local/etc/rc.d/vhosts*");
	exec ("rm /var/etc/vhosts*");
	exec("rm -R /usr/local/www/packages/vhosts");
	exec("rm -R /usr/local/php5");
	conf_mount_ro();
	config_unlock();
}

?>