Hi,
I've created a module to manage user permissions.
This module deletes from dispatcher the nodes/subnodes.
In my case, I've 2 users (tech and user), then you can edit /etc/config/rcpd and /usr/lib/lua/luci/index.lua as you want. Download module
In this rar archive there is a tree folder. Put the files into the same directories in your OpenWrt.
/etc/config/nodes: All main nodes and subnodes /etc/config/users: User-not-allowed Nodes and subnodes /usr/lib/lua/luci/controller/admin/test.lua: ---DON'T CHANGE FILENAME--- search my post in this forum.
Login as root and you will find Manage users in System Menu.
If you find problems, contact me.
Hi, I've tried your instructions. I got these errors
/usr/lib/lua/luci/controller/admin/test.lua:99: attempt to call upvalue 'get_username_session' (a nil value)
stack traceback:
/usr/lib/lua/luci/controller/admin/test.lua:99: in function 'v'
/usr/lib/lua/luci/dispatcher.lua:614: in function 'createtree'
/usr/lib/lua/luci/dispatcher.lua:262: in function 'dispatch'
/usr/lib/lua/luci/dispatcher.lua:127: in function </usr/lib/lua/luci/dispatcher.lua:126>
Hi,
sorry, I'm reading your post now. Can you give me more details?
Did you add users in index.lua, rpcd?
Did you edit /etc/config/users with your relative users?
Hi Sir, thanks for the response. Our existing user is only the root user that can accessed both the cli and the gui of the router.
on rpcd: there is a default existing config of root. I'm trying to add 'tech' user to /etc/config/users and followed the configuration of the root.
config login
option username 'root'
option password '$p$root'
list read ''
list write ''
config login
option username 'tech'
option password '$p$root'
list read ''
list write ''
on /usr/lib/lua/luci/index.lua: followed your instruction on your first post and added the index.lua file and added the root and tech user to the configuration.
page.title = _("Administration")
page.order = 10
page.sysauth = {"root", "tech"}
page.sysauth_authenticator = "htmlauth"
page.ucidata = true
page.index = false
on /config/users: yep, I have added the relative users(root and tech)
-> followed your instructions
I'll try your instructions above again. and will update what will be the output again. Thanks!
/usr/lib/lua/luci/controller/admin/test.lua:99: attempt to call upvalue 'get_username_session' (a nil value)
stack traceback:
/usr/lib/lua/luci/controller/admin/test.lua:99: in function 'v'
/usr/lib/lua/luci/dispatcher.lua:614: in function 'createtree'
/usr/lib/lua/luci/dispatcher.lua:262: in function 'dispatch'
/usr/lib/lua/luci/dispatcher.lua:127: in function </usr/lib/lua/luci/dispatcher.lua:126>
It doesn't find get_username_session() function.
I've download last VM openwrt and re-run all steps and it works.
@dennyv90 : Good idea! Have you submitted it to the luci dev team? To get it included in the official repo would even simplify your own job during future udpates of openwrt.
On my side, I would like to see an anonymous mode, i.e. the ability to access informational data on the home page (status of the router, cpu, ram, bandwidth, and related info not too sensitive) without any login. Do you think that would be doable?
/usr/lib/lua/luci/controller/admin/index.lua:21: attempt to call global 'firstnode' (a nil value)
stack traceback:
/usr/lib/lua/luci/controller/admin/index.lua:21: in function 'v'
/usr/lib/lua/luci/dispatcher.lua:614: in function 'createtree'
/usr/lib/lua/luci/dispatcher.lua:262: in function 'dispatch'
/usr/lib/lua/luci/dispatcher.lua:127: in function </usr/lib/lua/luci/dispatcher.lua:126>
Right now I'm getting a different error.
module("luci.controller.admin.index", package.seeall)
function index()
local root = node()
if not root.target then
root.target = alias("admin")
root.index = true
end
local page = node("admin")
page.target = firstchild()
page.title = _("Administration")
page.order = 10
page.sysauth = {"root", "tech"}
page.sysauth_authenticator = "htmlauth"
page.ucidata = true
page.index = true
page.target = firstnode() ##--> This is the line where the error appears.
-- Empty services menu to be populated by addons
entry({"admin", "services"}, firstchild(), _("Services"), 40).index = true
entry({"admin", "logout"}, call("action_logout"), _("Logout"), 90)
end
function action_logout()
local dsp = require "luci.dispatcher"
local utl = require "luci.util"
local sid = dsp.context.authsession
if sid then
utl.ubus("session", "destroy", { ubus_rpc_session = sid })
luci.http.header("Set-Cookie", "sysauth=%s; expires=%s; path=%s/" %{
sid, 'Thu, 01 Jan 1970 01:00:00 GMT', dsp.build_url()
})
end
luci.http.redirect(dsp.build_url())
end
Probably you moved index.lua file in another directory.
You have to leave original files in their own folders and add my test.lua file in /usr/lib/lua/luci/controller/admin/ path.
Index.lua must be in admin directory.
Sorry,
I saw that many files (including index.lua, dispatcher.lua etc.) have been updated since I developed this module...In fact it's true, it doesn't work
My module certainly works on openwrt snapshot r9987-655fff1571 release
Now I'm starting from Openwrt 18.06.4 (stable release) and i'm editing my module to adapts it.
I hope to fix it as soon as possible.
The index procedure of a controller file is cached as bytecode and executed from cache on subsequent page invocations. This means you cannot access local functions.
Make your get_username_session function non-local and in your index() procedure do the following:
function index()
local ctrl = require 'luci.controller.admin.test' -- must correspond to the controller path
local foo = ctrl.get_username_session()
-- ...
end
Hi Kris,
I've found a simply way to add overview information to the home page (before that you insert credentials).
Just insert this line after form statement in /usr/lib/lua/luci/view/sysauth.htm file:
Hello dennyv90, I'm testing your module, Everything seems to work fine except that everytime I edit the user permissions from luci the file /etc/config/users gets corrupted by adding a DOS WINDOWS like Break line ^M
config user 'user'
option username 'user'
option password 'user'
option node '^M
network^M
^M
^M
I've looked in all the files inside the your module but I could not find where the ^M was coming from.
Hi,
Honestly I've developed these files on Windows but I've used just LF in all files.
I've checked that ^M characters aren't present and everything is ok.
but I've used just LF in all files.