From 2c526e6f51e950a158d37ed6597b823b4cff7b30 Mon Sep 17 00:00:00 2001
From: arjen <arjen>
Date: Fri, 6 Dec 2002 22:38:15 +0000
Subject: [PATCH] A slightly functional web interface (initial revision)

---
 src/web/functions.php         |   5 +-
 src/web/log.php               |  96 ++++++++++++++++++++++++++++
 src/web/login.php             |  94 ++++++++++++++++-----------
 src/web/logo.png              | Bin 0 -> 4772 bytes
 src/web/logout.php            |  12 ++++
 src/web/menu.html             |   7 +--
 src/web/objects.php           | 127 +++++++++++++++++++++++++++++++++++++
 src/web/parameter.php         | 132 ++++++++++++++++++++++++++++++++++++++
 src/web/parameter_compare.php | 109 ++++++++++++++++++++++++++++++++
 src/web/users.php             | 143 ++++++++++++++++++++++++++++++++++++++++++
 10 files changed, 684 insertions(+), 41 deletions(-)
 create mode 100644 src/web/log.php
 create mode 100644 src/web/logo.png
 create mode 100644 src/web/logout.php
 create mode 100644 src/web/objects.php
 create mode 100644 src/web/parameter.php
 create mode 100644 src/web/parameter_compare.php
 create mode 100644 src/web/users.php

diff --git a/src/web/functions.php b/src/web/functions.php
index 9dfa47e..2151df2 100755
--- a/src/web/functions.php
+++ b/src/web/functions.php
@@ -1,4 +1,4 @@
-<? 
+<?php 
 /**************************************************************************
 ** This is free software; you can redistribute it and/or modify it under the
 ** terms of the GNU General Public License, see the file COPYING.
@@ -19,9 +19,10 @@ function login_form() {
 
 	$login  = "<div class='login'>";
 	$login .= "<h1 align=\"center\">GNU Computer Monitoring</h1>";
+	$login .= "<h4 align=\"center\"><i>Version 0.0.3, December 6, 2003</i></h4>";
 	$login .= "<center><table>";
 	$login .= "<tr>";
-	$login .= "<td width='50%'><img src='../doc/logo.png' alt='GnuCoMo logo'></td>";
+	$login .= "<td width='50%'><img src='logo.png' alt='GnuCoMo logo'></td>";
 	$login .= "<td><form name=\"login\" method=\"POST\" action=\"login.php\">";
 	$login .= "    <table>";
 	$login .= "    <tr>";
diff --git a/src/web/log.php b/src/web/log.php
new file mode 100644
index 0000000..96ac2cd
--- /dev/null
+++ b/src/web/log.php
@@ -0,0 +1,96 @@
+<?php 
+
+/**************************************************************************
+** This is free software; you can redistribute it and/or modify it under the
+** terms of the GNU General Public License, see the file COPYING.
+***************************************************************************/
+
+/*
+ *
+ * Objects Administration page.
+ * Input parameters: action (POST) : empty, 'Create'
+ *                   objname (POST) : name of the object to create or remove
+ */
+
+session_start();
+require_once('classes/gnucomo_config.php');
+?>
+
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
+<link rel='stylesheet' href='gnucomo.css' type='text/css'>
+<title>GNUCoMo login</title>
+
+<script language='JavaScript'>
+function CheckCreate(f)
+{
+   if (f.objectname.value == "")
+   {
+      alert("You must supply a name");
+      return false;
+   }
+   return true;
+}
+
+function CheckRemove(f)
+{
+   var message = "Are you sure you want to remove object ";
+   message += f.objectname.value;
+   message += " ?";
+
+   return confirm(message);
+}
+
+</script>
+
+</head>
+<body>
+<?php
+if (empty($_SESSION['username']))
+{
+   echo "Please log in first.";
+}
+else
+{
+
+   $config = new gnucomo_config;
+
+   $config->read("gnucomo");
+
+   //  Connect to the database
+   $conn = pg_connect($config->Database($_SESSION['username'], $_SESSION['password']));
+
+   if (!empty($_GET['oid']))
+   {
+      $res = pg_exec("SELECT objectname FROM object WHERE objectid=" . $_GET['oid']);
+      $obj = pg_fetch_object($res, 0);
+      echo "<h1>Log for " . $obj->objectname . "</h1><hr>";
+
+      $res = pg_exec("SELECT object_timestamp, servicecode, rawdata FROM log "
+                     ."WHERE objectid=" . $_GET['oid']);
+      
+      echo "<table>";
+      $row = 0;
+      while ($row < pg_numrows($res))
+      {
+         $log = pg_fetch_object($res, $row);
+         ?>
+         <tr><td align='center'>
+            <?php echo $log->object_timestamp?>
+         </td><td>
+            <?php echo $log->servicecode?>
+         </td><td>
+            <?php echo $log->rawdata?>
+         </td></tr>
+         <?php
+         $row++;
+      }
+      echo "</table>";
+   }
+}
+?>
+
+</body>
+</html>
diff --git a/src/web/login.php b/src/web/login.php
index 871bd10..a204320 100755
--- a/src/web/login.php
+++ b/src/web/login.php
@@ -1,6 +1,6 @@
 <?php
 session_start();
-require_once('gnucomo_config.php');
+require_once('classes/gnucomo_config.php');
 include "functions.php";
 ?>
 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
@@ -12,47 +12,71 @@ include "functions.php";
 </head>
 <body>
 <?php
-if( isset($_POST["username"]) and isset($_POST["password"]) and isset($_SESSION['login']) ) {
-	$name   = $_POST["username"];	// PostgreSQL username
-	$passw  = $_POST["password"];	// PostgreSQL user password
+
+if (empty($_SESSION["username"]))
+{
+
+if( isset($_POST["username"]) and isset($_POST["password"]) and isset($_SESSION['login']) )
+{
+   $name   = $_POST["username"];   // PostgreSQL username
+   $passw  = $_POST["password"];   // PostgreSQL user password
 
    $config = new gnucomo_config;
 
    $config->read("gnucomo");
-   //echo "Database Access string = " . $config->Database();
-
-   $conn = pg_connect($config->Database());
 
-	// connect to the database
-	//$conn = pg_Connect( "host=$pgsqlhost port=$pgsqlport dbname=$dbname user=$name password=$passw" );
-	if( !$conn ) {
-		echo "Error connecting, try again.";
-		echo login_form();
-		$_SESSION["login"] = true;
-	} else {
-		$sql = "SELECT * FROM user_gnucomo WHERE username='$name' and password='$passw'";
-		$res = query( $conn, $sql );
+   // connect to the database
+   //echo "Database connection = " . $config->Database($name, $passw) . "<br>";
+   $conn = pg_connect($config->Database($name, $passw));
 
-		if( $res[0] ) {
-                   if ($res[2] == 1)
-                   {
-			$arr = pg_fetch_array( $res[1], 0 );
-			$_SESSION["login.ini"] = $arr;
-                   }
-                   else
-                   {
-                       echo "Login incorrect.<br>";
-                   }
+   if ( !$conn )
+   {
+      echo "Error connecting, try again.";
+      echo login_form();
+   }
+   else
+   {
+      $sql = "SELECT * FROM usr WHERE username='$name'";
+      $res = pg_exec( $conn, $sql );
+      if ($res && pg_numrows($res) == 1)
+      {
+         echo "<br> Database login OK.<br>";
+         session_register('username');
+         $_SESSION["username"] = $name;
+         session_register('password');
+         $_SESSION["password"] = $passw;
+      }
+      else
+      {
+         //  User not found in database. Check if we have any users at all.
 
-			// user is authorised, step to next page.
-			echo "Ok!";
-		} else {
-			pgsql_error( "SQL: error.<br>" . $res[3] );
-		}
-	}
-} else {
-	echo login_form();
-	$_SESSION["login"] = true;
+         $res = pg_exec($conn, "SELECT count(username) FROM usr");
+         $nusers = pg_fetch_object($res, 0);
+         $nusers = $nusers->count;
+         if ($nusers == 0)
+         {
+            echo "<br>No users in database. Authentication granted.<br>";
+            session_register('username');
+            $_SESSION["username"] = $name;
+            session_register('password');
+            $_SESSION["password"] = $passw;
+         }
+         else
+         {
+            echo "<br>User $name not found in database.<br>";
+         }
+      }
+   }
+}
+else
+{
+   echo login_form();
+   $_SESSION["login"] = true;
+}
+}
+else
+{
+  echo "Logged in as " . $_SESSION['username'] . "<br>";
 }
 ?>
 </body>
diff --git a/src/web/logo.png b/src/web/logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..da250eee540a6ec0bce3f6de2edb767bd4e81ef1
GIT binary patch
literal 4772
zcmV;V5?k$wP)<h;3K|Lk000e1NJLTq007(o008<31^@s6%C9M^00006VoOIv0RI60
z0RN!9r;`8x010qNS#tmY3lRVS3lRZ-WM7d0000McNliru(g_I+Dk4xTPS*ec5-~|c
zK~#90?VY`D<H{Yyk8d^z5Cp+(wg|AkY~86zVYzmjVhfqCA<GZ2*ax_>`#gcHVqZW&
zkY=?=5r9PiwYqYuO)hTI+#*Pvf<v34$eAHIL(a$f0fzTOB1fY+bN=(64+4Y`LWqj_
zX7@bb?4HLiM;p$@E&w4_bVc-Vec@gE^{&7q3<^<IMN=oX@@wXs-LsEEEAY19#9u;o
zFcralAmT1<##<qZ4WQu2Ky*oNgebb;J`iz_KAFVOMEA|u1t4MLTiV_>6dbVz#dZn>
zN63H#6(19KFyU^Yjo$#^&DaGXVZks`4ns=fBq6#RK*13Q2~}(W$8f|j21Clf0{DID
z@6P~!2jE)(|3Kb${|Vr~0Dc4D*8u(l;3oiQ57!s}6XiJ*?|lQ{4*-68xW4$4p)$6H
zf+I#TCAd&sjv*!KM4hlqCQL$2z69Be5PJ+Mgb-bh(*mTCP+ewBC^&Kgg=P<q;fRxj
z7)}Bl!;uOuxLc@V1L$z1LdcEX1t>T|282ly;tVmkD+NaeBL+dKh`s{IF}9K>6k84}
zfmqK>Qf#lVA|hspDFBM?7*<B4(ACC)(*lGH2n9#1;KGU(7a3(*Aj#5q0H&pXI_xK_
zFJqJ?Mkt2yuoh>RL^T6Y6_^fd@p}v43BYzgSv{F6VVsO1Hjd|BG460lmR<r_qP@VX
z%qqW;Wa)Z8S>5!!F0nu%D!Qi}V}cWownRxFBy4mZrbv!4A~+$o&j8L%T#uN?v=}J1
zZuAzM2qCvE-clW#mB)8o#(HD`WaBW3O`l$Z6VCRi@zO1T`~76KZutNE%5^W1yX6c(
z@n<p;ZN>I*eQ`z+*3;MF9w8UQ0l=L^Xtjtbf-ewmC<Hh~?tsJ*s-h|jlbOkSItwnz
z(p$*GzXO0P6RG@?0Lj4U2#4a*r*lOmS^5Ly?l$FQwj1;f?<gp9bgD?<ZcE8amix)-
zu3M41QL}ob%*jd?@%kBFC+C6OmA?R3>x98=?^*MH+4$7RL_d!ncZ;qerE0G2Uh)4n
zn4&p>vj*@oVV-2^_W%|(uR9k%vm{Hm0B#hGUi+R6EYMt+H+aqHj?R3ud#336(|Yl;
zqE`oUcW`nER+6RfL?~P*wklKPbBkVMQY6eg_NU8k0o6R2Gre+|j+67}B77#q2wemx
z4JX@90SrW+l`veYR)Q|qk62Fas&nPF_<0B57R_Sh$`@jcE`pQw_%6Czl{J7xd7LQ{
zB#q0{k}RD$>fFRLV%zb(-cMF1nMaYnKa5l+5)m;8PPLbglk^&JYM>vZjo~z=7wYJG
z6vLJqSNlV;^=HhaiEPri37yI0I-HyrB=KQ7q~vOT2ca{$Ll?oxvUN<M6C%NQ(nO5S
z2q86?b~r$PWyTiyc&z#(+l4?n(l@MRSZanYNfXuiB{OL377%k`C*n=Av_p}I3NFcV
zgVqiwgd!8&RP6I2fk1aNN7pf&Dy(E!sK;RAU5dsHItgw+S=~dv6l$7eY1=urs1Wrt
zSXP%Ir5p6gQmV#jv&co)7*>mV;kKU$=`1)6mjiOqeU5ZYcb;VFiKu)O8{N?yeV2A!
zLA|ka3ScX?z^vi$5e#kFPgZM1R`oH-(k1eR(U-`D#zSo*rkCLMlhsp_rFYO<6FC(>
z%TgmPCtrL$Vfg@gxtq>UIUrx->HO*(CS1(Xd!>okm^nqa{baM!kB?#lx}8vVKpq`9
z?eq`V7iSckS&S_05?f}j;Kz<{qiBw0%NRS6+9nj59gMA|+)q|dV$azWc7!KA24Q5b
zpjWo#ezN+GVv85!`{9J!-2nMnAgFngsRrxPZ{1C&#oEj|bR1}j=8i%tCLy4!(&sIY
zN7v&0b;+Vd*L&K6VzbL=m0M1k^MIaV&`Ix8aCRAO$2UbrVuZa}M6{W}rqkIWrc=8}
z3%I((4(!DufX|0>2Ra-f1HzswaQHw*x1hrX498*aLBSC+APf@%#fG~vtn3dRE<hMc
zx(fvt7!;e^P;dc3vAGWgN63IsaD)s91xLt$P;f*GP6?QSl^6&%6DAa!Ip}bN3<w1m
z0Gtl+2MUfzVK`|PR;K50?B*AAI8qD6W(Nw6kO5&Y<}tRDC3HFSutGg!sEj1VW(S6p
z73P~A=9}Hv#i)hpfB#`GR-r1khwF=xN^;DQVxzm+gAP}M&PK7>hJq8+iOm&v8w!fe
zKBGO%gSZ2QHXPmxu5ct1F68RCjf97HJzI>SAD3^1gI8m?rlf|e$qv_{*oMa&!Kp+Q
zvgjy`aPUHKI${bvth50q(uc=+!Rb0z$PNe4<wC)E!4VP?P75w{*CO%ZWSG)LXrYhc
zI5iLkqgQl!0=uiDQEc6z*oLLkN)sEQ9>q316x;B$9>cjbuA<ob!D)fvQ97JU0xLtY
z^@k2OJdJ{LRcHXkM*O9=hjUeIu?mfc1%<=O7>;6#502%A<4AC>ij9y^I1-$zF5+sr
zLV_+g4Br&T!kOGbZ4%eYLr5Q5PkeV3K-+MYLL(vaA~>A}-bVy=@11XUFaKWtGdbqr
z`r?csUl_cM;ZzP}Lk#6>Qfwp!w3c>J4CBMOvM^8zj$$Lk9JTXsg~%v2Ld?>*(u86o
z#5^Yx-xONBFcWGYr_VGYuXGUu6D{uX24MIYA{3jOd_%E?2gT+t3@JTe$gvg2adx5L
z$O#mkJ-mHBT<COd^yP4p!f_8eoP(GU+gN2FawxcwnQwN_<;HEYp)+~n9{fT^WC(G&
z;FjbSj^PG|p<3Lq7aI^8VpBO$pL^2f%)<&Dh%v-w;@%XUS(r2#fHB2J+=5@4Wn2*(
zUCs^Ya29bzY<*#(#~jR3dIDW03@A8@m|A8<v4sOe$_@+}Vo_{iL5FKeA-1aM>JDpl
zMJybHxq}l8!WV{axTXYaqTH@@9=^knQWLraF#!eVAP?6UXC@tm?&J;>oCYBzNhmru
zpx_jQ6iQNb<HIjNg0D#u9ol|2iq#C97N}tiS7U>Y0}8H0NZ})K6ZWctF~v5PyD_XB
z9wto?r`X6iL@zjsO&^Bb{qgDxH_2Fy$0d>RM6cnA(&5-s=X4bg>#sY}^;Bc58kui)
z&#t-x_vsBwR261ZY(6(WhL*z-MTOZCS||;UE;k&(Pke`RkPiuiD3d0A2vKYyekNB5
z-r-EaMoCOShtq&!Bc`CkH4vM~>JC97=ApyY5S!S@a8Pg+C^lk~;04!4K(UK0_Rl{A
z!3&NMm!RMX8IULh$54s5LKK1{`ml4d3k6q#^H9V#6dXCBjmxo<YDYAJW2i)2AR58x
z!X7(^9h4m?xC(4&udpu6L%~&`!?kC=**zCO<$oKqOs>M+0>mg3njAVDk<urur1(yu
z;D{2A<;+3B)xe(l6pGFa6dbWiHJK7S6dcipF4rFlt_C(N^U&pTD7YHfIGTC5zBprt
z)Ex?rbb_MmMpS}hBQXozu02r+j*zj5vUgIA(b#LZM|a#SJ8(9JdJp~sHX&;uF?{hh
zFqLcyx&9ea*1#;~xP)B)!S*CN(B<qvr)wr^hYRrwbpccL8luxhEjWOpvjyw5p6CS!
zuyNSJM7@UQa%^aV>K989+M%m}Lis*|_z-=Gd0uEtx`@yB@5JlEn}UKHpElz2`Fr6Q
zjyOS^b(ubo>nJ$l6rqdGTWdB2*HyYns39gDjyOrETYsV!oUdU?OoS%7s0ByJ&`@y1
zc~mavQ=}4<UAIB!OL8HcNwV}EfT{TFVLw@Y8M8cN5<-H@`2yO&#SB=IrI!F^0M5m4
zUDo3F7QoYfvRcbtJO)XY>U<t$XHxgQ{rKj9pMUZ1m%snzw~sf~*SJ(CQ3=kqb$r6T
zZUHO|UwXZttWFx<SR`4hQ}5gTWOb!_QT03g^S6J*kH379zGpvKIn&Ogd0drCVzVeT
zpP8y(a?H=){7We|*N7r%;?kg6gpQv<v7Mk9dcNSB*nq$t&LyD%FAeIk#aoWXX8_6x
zluP8}y^xsU^)oB^`>+0Hu_$&3R&XZ7W-^=<&ZZ-_Er5k2fpA~CW+A{C!Vuu4>IKDj
zGT-c;DL6-P(AnNWEw%%In>K0x{bcoo+!5B|K1HU}SI(0xz0|3LPj5d=k#|mB5tQH@
zJ}v4Na`!m^xDo>DjA*F7&(lqz_ZhtGSb|BKxaMjF!rfE}lHOtq2;FRD>#U{=1mSQd
z#b(LfWGu!Oo9Gl~cx}XG_b8GWYr_-BThxn2>0Fi7H`WkIuA)5UF>;Z_+9IzP?e8xL
z!I{F+1h=dK9rlyez2yI`BF216$Qy4_{#lZx5U;;C&`CTY52a5+?IcTQ3USw!cMSt!
zrsf=Jxno);S*l8Oz2JRF+1A~f_E}k);8tZ0M_Y1~Wa%TCT}H+Nz~{DeW(_noP*t|F
zdT%53C_d8x?dM3R0Jce%ey@6=*Me)iCbBH5;?I^hI;tA;;0cZ-OW!3~`UCp8!8w3O
z1EOmZit4(?1t&V7HglwPEW~vh@mg@YGzn^eg~?LEjkKut5pvhvBJbgEkT>Lm>{@+9
zC;9y6BD6c9;eNfQ2a+tkg(CDv9!lSc-?ID7WTNwS4Cl%An%YJ)79!-4bpkgP5v)bS
zU!u7|J|<au-eXKBOP<t?Z>!<vc0XA?iSeb9`DTZQ>x-Aam&UP8R2PC5bDp=7_sx<l
zy{#Lcd*^WT&F<L~u>tbNJ*c~BOiwK89A`gSJ&6V<b-Er!YpRE)x-%V4%EY#9+I1ns
zBzy0&&ZWH)oU3zfo*<i^(8-p{w);$lQ*@yzJUekz(SWPraOZGRlv&m(N|Pu1$?6XB
zj_9P$y%L-bp`P|+0NEHtIW-|t-qNv4>k_?Qx3<yNh`4%>);r+K;bhJA%4{{SEvvhe
z>w6<Ox?6V)PEW{Q*C%7y)Ud19th!O(a8g!g6LoT4?KHd)T$=~B+b)ZzNOuvmNO;Iz
z*Jr1K?l`V0kWSMo^UV(P%?^;4S*uPo>h9<s&I?XALE@p<hRk4^=*gAS7+t3bB-fo5
ziHEvtcbQfZLc^!GAEae%d2MaycV2Lw({_1M%ruP;%NuUXbQar~I4QUy_3u&ozY|T9
zyOE;GR`#9_s3c5A!8ySNmK;%~tm$&EG%oWpJsmJ6&Izs!9=MyTQK+`=41x=xmLdgT
zonYRMy``xuUJK53H<ZmW38n*ul}6I}s-%d4wV}F;nLFR72rJ)z{b(`)q@9%VT5ujX
z9H4F-vgJXhkcl3j-hR*(z3g?;duXC7q|V`F#m!}9)~XYY4)f?9UJK3>RI4~<hW3^<
zqT#f<_ct=VAVEh+CZDfh!ueGjjE~Cdt>8Ryw_;*c<zgoGmc7u>>&hCJaxAH_?y$Gu
zL|v&wXL8ZEblOI9eW<MNPOk5i-~wJzau0RL^_XPoW1lfylBKgGOFyGt;4-H@7u!vw
z<&*rM?z%%ARDv_MY4`otkE->d(vDJWcap7E@qc@chhi&wZk>l~%m5sO@MbFUC0Tlz
zWa+JV{WEe=)Vh#{(=O{=R_qX0ZCdSoY<scHsx-EeI+%q`yVA2unl_V)4oddkWnCuK
znZ_HiyS>oisPi&KL(@57x$)^a!U1KW;a1%133?|wFH~E58lIlBe*g93Q5heuFEHQi
z@agS`rnVsaT#slNPgS3uQ=JC+^!9^nGbxZqCu`*HT7=fpI&69pkP{B4`=C9a#Rk0e
z&Qo;D=oLq{^*zp9wV8B^yzvzcSa!dqsZ+-)t3aAu%*tf<`>!AGCHDmKI#?jDlLgcr
zR%0~d%@GT}i>+WkS$#>e^a>+Au1bVC-^m<7lj?B{#;7`9nFp+TU%wD{+3DVY{dgl5
zH22!Qu6i!t=nm)l<h2dNu?2U?drp({aK!;YN+FAe(dB&pC4loW4nQ)!7P5LhF&W<F
zJJ|x5>O2I~X@?8N)tV4)a|hr~jPHu^lCJZtOTSw$cM_S!t5V8;isMIO9q^hJ>~r#R
zT|+zyYpaL*bYKYsQwHz9etZIO_v!72d%QlG2sr*u%8wCib@KA)4Z6<ZLKj*a%Dc5)
zdRBE8RBJYiq>1eRO{24p)Z~4gb2y6am_VM0<HQ2#E|?bi=wrAt6kE8|HQeIg9<DEx
y?gk7mS{sha22NgRYS2S%+|&s<hq|Y&&-{NHG<})Yo_6>E0000<MNUMnLSTZ4Rp^8O

literal 0
HcmV?d00001

diff --git a/src/web/logout.php b/src/web/logout.php
new file mode 100644
index 0000000..887d79f
--- /dev/null
+++ b/src/web/logout.php
@@ -0,0 +1,12 @@
+<?php 
+
+/**************************************************************************
+** This is free software; you can redistribute it and/or modify it under the
+** terms of the GNU General Public License, see the file COPYING.
+***************************************************************************/
+
+session_start();
+require_once('classes/gnucomo_config.php');
+$_SESSION['username'] = '';
+
+include('login.php');
diff --git a/src/web/menu.html b/src/web/menu.html
index 64a9019..13b9cac 100644
--- a/src/web/menu.html
+++ b/src/web/menu.html
@@ -6,11 +6,10 @@
 <title>GnuCoMo Web Interface</title>
 </head>
 <body>
-   <img src='server.png' alt='Objects'>
-   <img src='user.png' alt='Users'>
-   <img src='closed_package.png' alt='Packages'>
+   <a href='objects.php' target='main'><img src='server.png' alt='Objects'></a>
+   <a href='users.php' target='main'><img src='user.png' alt='Users'></a>
    <img src='password.png' alt='Change Password'>
-   <img src='exit.png' alt='Logout'>
+   <a href='logout.php' target='main'><img src='exit.png' alt='Logout'></a>
    <hr>
 
 </body>
diff --git a/src/web/objects.php b/src/web/objects.php
new file mode 100644
index 0000000..27cd03c
--- /dev/null
+++ b/src/web/objects.php
@@ -0,0 +1,127 @@
+<?php 
+
+/**************************************************************************
+** This is free software; you can redistribute it and/or modify it under the
+** terms of the GNU General Public License, see the file COPYING.
+***************************************************************************/
+
+/*
+ *
+ * Objects Administration page.
+ * Input parameters: action (POST) : empty, 'Create'
+ *                   objname (POST) : name of the object to create or remove
+ */
+
+session_start();
+require_once('classes/gnucomo_config.php');
+?>
+
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
+<link rel='stylesheet' href='gnucomo.css' type='text/css'>
+<title>GNUCoMo login</title>
+
+<script language='JavaScript'>
+function CheckCreate(f)
+{
+   if (f.objectname.value == "")
+   {
+      alert("You must supply a name");
+      return false;
+   }
+   return true;
+}
+
+function CheckRemove(f)
+{
+   var message = "Are you sure you want to remove object ";
+   message += f.objectname.value;
+   message += " ?";
+
+   return confirm(message);
+}
+
+</script>
+
+</head>
+<body>
+<?php
+if (empty($_SESSION['username']))
+{
+   echo "Please log in first.";
+}
+else
+{
+   echo "<h1>Objects Administration</h1><hr>";
+
+   $config = new gnucomo_config;
+
+   $config->read("gnucomo");
+
+   //  Connect to the database
+   $conn = pg_connect($config->Database($_SESSION['username'], $_SESSION['password']));
+
+
+   if (isset($_POST['action']) && $_POST['action'] == 'Create' && !empty($_POST['objectname']))
+   {
+      pg_exec($conn, "INSERT INTO object (objectname) VALUES ('"
+                     . $_POST['objectname'] . "')");
+   }
+
+   if (isset($_POST['action']) && $_POST['action'] == 'Remove' && !empty($_POST['objectname']))
+   {
+      pg_exec($conn, "DELETE FROM object WHERE objectname='" . $_POST['objectname'] . "'");
+   }
+
+   $res = pg_exec($conn, "SELECT objectid,objectname FROM object");
+
+   echo "<table>";
+   $obj = 0;
+   while ($obj < pg_numrows($res))
+   {
+      $u = pg_fetch_object($res, $obj);
+      $r = pg_exec($conn, "SELECT count(logid) FROM log WHERE objectid='"
+                           . $u->objectid . "'");
+      $r = pg_fetch_object($r, 0);
+
+      $nr_logs = $r->count;
+
+      $r = pg_exec ($conn, "SELECT count(paramid) FROM parameter WHERE objectid='"
+                           . $u->objectid . "'");
+      $r = pg_fetch_object($r, 0);
+
+      $nr_params = $r->count;
+      ?>
+      <tr><td align='center'><img src='server.png'><br>
+             <b><?php echo $u->objectname ?></b>
+      </td><td>
+          <?php echo $nr_logs?> <a href='log.php?oid=<?php echo $u->objectid?>'>Log entries</a>
+      </td><td>
+          <?php echo $nr_params?> <a href='parameter.php?oid=<?php echo $u->objectid?>'>Parameters</a>
+      </td><td>
+          <form action='objects.php' method='post' onSubmit='return CheckRemove(this)'>
+              <input type='hidden' name='objectname' value='<?php echo $u->objectname ?>'>
+              <input type='submit' name='action' value='Remove'>
+          </form>
+      </td></tr>
+      <?php
+      $obj++;
+   }
+   echo "</table>";
+
+}
+?>
+
+<h2>Create new object:</h2>
+<p>
+
+<form action='objects.php' method='post' onSubmit='return CheckCreate(this)'>
+Objects name (FQDN): <input name='objectname' type='text'>
+<br>
+<input type='submit' name='action' value='Create'>
+</form>
+</p>
+</body>
+</html>
diff --git a/src/web/parameter.php b/src/web/parameter.php
new file mode 100644
index 0000000..f7d4c02
--- /dev/null
+++ b/src/web/parameter.php
@@ -0,0 +1,132 @@
+<?php 
+
+/**************************************************************************
+** This is free software; you can redistribute it and/or modify it under the
+** terms of the GNU General Public License, see the file COPYING.
+***************************************************************************/
+
+/*
+ *
+ * Objects Administration page.
+ * Input parameters: action (POST) : empty, 'Create'
+ *                   objname (POST) : name of the object to create or remove
+ */
+
+session_start();
+require_once('classes/gnucomo_config.php');
+
+/*  Local functions */
+
+function object_selection($db, $skip_oid)
+{
+   /*  Create and print an HTML option list of objects */
+
+   $res = pg_exec("SELECT objectid, objectname FROM object WHERE objectid != " . $skip_oid);
+   for ($row = 0; $row < pg_numrows($res); $row++)
+   {
+      $obj = pg_fetch_object($res, $row);
+      echo "<option value='" . $obj->objectid . "'>";
+      echo $obj->objectname;
+      echo "</option>";
+   }
+}
+?>
+
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
+<link rel='stylesheet' href='gnucomo.css' type='text/css'>
+<title>GNUCoMo login</title>
+
+<script language='JavaScript'>
+function CheckCreate(f)
+{
+   if (f.objectname.value == "")
+   {
+      alert("You must supply a name");
+      return false;
+   }
+   return true;
+}
+
+function CheckRemove(f)
+{
+   var message = "Are you sure you want to remove object ";
+   message += f.objectname.value;
+   message += " ?";
+
+   return confirm(message);
+}
+
+</script>
+
+</head>
+<body>
+<?php
+if (empty($_SESSION['username']))
+{
+   echo "Please log in first.";
+}
+else
+{
+
+   $config = new gnucomo_config;
+
+   $config->read("gnucomo");
+
+   //  Connect to the database
+   $conn = pg_connect($config->Database($_SESSION['username'], $_SESSION['password']));
+
+   if (!empty($_GET['oid']))
+   {
+      $res = pg_exec($conn, "SELECT objectname FROM object WHERE objectid=" . $_GET['oid']);
+      $obj = pg_fetch_object($res, 0);
+      echo "<h1>Parameters for " . $obj->objectname . "</h1>";
+
+      $res = pg_exec("SELECT paramid, class, name, description FROM parameter "
+                     ."WHERE objectid=" . $_GET['oid']);
+      
+     ?>
+     <form action='parameter_compare.php' method='post'>
+       <input type='hidden' name='oid' value='<?php echo $_GET['oid'] ?>'>
+       Compare to object:
+       <select>
+         <?php object_selection($conn, $_GET['oid']); ?>
+       </select>
+       <input type='submit' value=' Show Difference'>
+     </form>
+     <?php
+      echo "<hr>";
+      echo "<table>";
+      $row = 0;
+      while ($row < pg_numrows($res))
+      {
+         $par = pg_fetch_object($res, $row);
+         ?>
+         <tr><td align='center'>
+            <?php echo $par->class?>
+         </td><td>
+            <?php echo $par->name?>
+         </td><td>
+            <?php echo $par->description?>
+         </td><td>
+            <?php
+               $r = pg_exec($conn, "SELECT name, value FROM property WHERE paramid='" . $par->paramid . "'");
+               for ($p = 0; $p < pg_numrows($r); $p++)
+               {
+                  $prop = pg_fetch_object($r, $p);
+                  echo $prop->name . "=" . $prop->value . " ";
+               }
+            ?>
+         </td></tr>
+         <?php
+         $row++;
+      }
+      echo "</table>";
+   }
+}
+?>
+
+</body>
+</html>
diff --git a/src/web/parameter_compare.php b/src/web/parameter_compare.php
new file mode 100644
index 0000000..dfae1f5
--- /dev/null
+++ b/src/web/parameter_compare.php
@@ -0,0 +1,109 @@
+<?php 
+
+/**************************************************************************
+** This is free software; you can redistribute it and/or modify it under the
+** terms of the GNU General Public License, see the file COPYING.
+***************************************************************************/
+
+/*
+ *
+ * Objects Administration page.
+ * Input parameters: action (POST) : empty, 'Create'
+ *                   objname (POST) : name of the object to create or remove
+ */
+
+session_start();
+require_once('classes/gnucomo_config.php');
+?>
+
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
+<link rel='stylesheet' href='gnucomo.css' type='text/css'>
+<title>GNUCoMo login</title>
+
+<script language='JavaScript'>
+function CheckCreate(f)
+{
+   if (f.objectname.value == "")
+   {
+      alert("You must supply a name");
+      return false;
+   }
+   return true;
+}
+
+function CheckRemove(f)
+{
+   var message = "Are you sure you want to remove object ";
+   message += f.objectname.value;
+   message += " ?";
+
+   return confirm(message);
+}
+
+</script>
+
+</head>
+<body>
+<?php
+if (empty($_SESSION['username']))
+{
+   echo "Please log in first.";
+}
+else
+{
+
+   $config = new gnucomo_config;
+
+   $config->read("gnucomo");
+
+   //  Connect to the database
+   $conn = pg_connect($config->Database($_SESSION['username'], $_SESSION['password']));
+
+   if (!empty($_GET['oid']))
+   {
+      $res = pg_exec("SELECT objectname FROM object WHERE objectid=" . $_GET['oid']);
+      $obj = pg_fetch_object($res, 0);
+      echo "<h1>Parameters for " . $obj->objectname . "</h1><hr>";
+
+      $res = pg_exec("SELECT paramid, class, name, description FROM parameter "
+                     ."WHERE objectid=" . $_GET['oid']);
+      
+     ?>
+     <form action='parameter_compare.php' method='post'>
+     </form>
+     <?php
+      echo "<table>";
+      $row = 0;
+      while ($row < pg_numrows($res))
+      {
+         $par = pg_fetch_object($res, $row);
+         ?>
+         <tr><td align='center'>
+            <?php echo $par->class?>
+         </td><td>
+            <?php echo $par->name?>
+         </td><td>
+            <?php echo $par->description?>
+         </td><td>
+            <?php
+               $r = pg_exec($conn, "SELECT name, value FROM property WHERE paramid='" . $par->paramid . "'");
+               for ($p = 0; $p < pg_numrows($r); $p++)
+               {
+                  $prop = pg_fetch_object($r, $p);
+                  echo $prop->name . "=" . $prop->value . " ";
+               }
+            ?>
+         </td></tr>
+         <?php
+         $row++;
+      }
+      echo "</table>";
+   }
+}
+?>
+
+</body>
+</html>
diff --git a/src/web/users.php b/src/web/users.php
new file mode 100644
index 0000000..8263151
--- /dev/null
+++ b/src/web/users.php
@@ -0,0 +1,143 @@
+<?php 
+
+/**************************************************************************
+** This is free software; you can redistribute it and/or modify it under the
+** terms of the GNU General Public License, see the file COPYING.
+***************************************************************************/
+
+/*
+ *
+ * User Administration page.
+ * Input parameters: action (POST) : empty, 'Create'
+ *                   username (POST) : name of the user to create or remove
+ */
+
+session_start();
+require_once('classes/gnucomo_config.php');
+?>
+
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
+<link rel='stylesheet' href='gnucomo.css' type='text/css'>
+<title>GNUCoMo login</title>
+
+<script language='JavaScript'>
+function CheckCreate(f)
+{
+   if (f.username.value == "")
+   {
+      alert("You must supply a username");
+      return false;
+   }
+   if (f.passwd.value == "")
+   {
+      alert("You must supply a password");
+      return false;
+   }
+   if (f.passwd.value != f.pwverify.value)
+   {
+      alert("Passwords don't match");
+      return false;
+   }
+   return true;
+}
+
+function CheckRemove(f)
+{
+   var message = "Are you sure you want to remove user ";
+   message += f.username.value;
+   message += " ?";
+
+   return confirm(message);
+}
+
+</script>
+
+</head>
+<body>
+<?php
+if (empty($_SESSION['username']))
+{
+   echo "Please log in first.";
+}
+else
+{
+   echo "<h1>User Administration</h1><hr>";
+
+   $config = new gnucomo_config;
+
+   $config->read("gnucomo");
+
+   //  Connect to the database
+   $conn = pg_connect($config->Database($_SESSION['username'], $_SESSION['password']));
+
+
+   if (isset($_POST['action']) && $_POST['action'] == 'Create' && !empty($_POST['username']))
+   {
+      pg_exec($conn, "CREATE USER " . $_POST['username'] . " PASSWORD '"
+                      . $_POST['passwd'] . "'");
+      pg_exec($conn, "INSERT INTO usr (username, security_level) VALUES ('"
+                     . $_POST['username'] . "','" . $_POST['seclevel'] . "')");
+   }
+
+   if (isset($_POST['action']) && $_POST['action'] == 'Remove' && !empty($_POST['username']))
+   {
+      pg_exec($conn, "DELETE FROM usr WHERE username='" . $_POST['username'] . "'");
+      pg_exec($conn, "DROP USER " . $_POST['username']);
+   }
+
+   $res = pg_exec($conn, "SELECT username, security_level FROM usr");
+
+   echo "<table>";
+   $usr = 0;
+   while ($usr < pg_numrows($res))
+   {
+      $u = pg_fetch_object($res, $usr);
+      ?>
+      <tr><td align='center'><img src='user.png'><br>
+             <b><?php echo $u->username ?></b>
+      </td><td>
+         Sec. Level <?php echo $u->security_level ?>
+      </td><td>
+          <?php if ($_SESSION['username'] != $u->username)
+          {
+          ?>
+          <form action='users.php' method='post' onSubmit='return CheckRemove(this)'>
+              <input type='hidden' name='username' value='<?php echo $u->username ?>'>
+              <input type='submit' name='action' value='Remove'>
+          </form>
+          <?php
+          }
+          ?>
+      </td></tr>
+      <?php
+      $usr++;
+   }
+   echo "</table>";
+
+}
+?>
+
+<h2>Create new user:</h2>
+<p>
+
+<form action='users.php' method='post' onSubmit='return CheckCreate(this)'>
+User name: <input name='username' type='text'>
+Security level: <select name='seclevel'>
+<option value='1'>1</option>
+<option value='2'>2</option>
+<option value='3'>3</option>
+<option value='4'>4</option>
+<option value='5'>5</option>
+</select>
+<br>
+Password: <input type='password' name='passwd'>
+Verify password: <input type='password' name='pwverify'>
+<br>
+<input type='submit' name='action' value='Create'>
+</form>
+</p>
+</body>
+</html>
-- 
2.11.0