<?php

// $Id: phpids.admin.inc,v 1.1.2.3 2009/06/12 16:58:40 gos77 Exp $

/**
 * @file
 * Provides the administration page for PHPIDS module.
 */

/*
 * Callback function to configure PHPIDS
 */
function phpids_admin_settings() {
  // general settings 
  $form['general'] = array(
    '#type' => 'fieldset',
    '#title' => t('General'),
  );
  $form['general']['phpids_path'] = array(
    '#type' => 'textfield',
    '#title' => t('PHP-IDS Path'),
    '#default_value' => variable_get('phpids_path',realpath(dirname(__FILE__))),
    '#description' => t('Defines path to the PHP-IDS. Example: /usr/share/php/phpids/lib'),
  );
  $form['general']['phpids_tmppath'] = array(
    '#type' => 'textfield',
    '#title' => t('PHP-IDS Temp Path'),
    '#default_value' => variable_get('phpids_tmppath',ini_get('upload_tmp_dir'). 'phpids'),
    '#description' => t('Defines temp path used by PHP-IDS. Example: /tmp/phpids'),
  );
  $form['general']['phpids_maillevel'] = array(
    '#type' => 'textfield',
    '#title' => t('Mail impact'),
    '#default_value' => variable_get('phpids_maillevel',9),
    '#description' => t('Sends out mail when this level of impact is reached.'),
  );
  $form['general']['phpids_mail'] = array(
    '#type' => 'textfield',
    '#title' => t('Email'),
    '#default_value' => variable_get('phpids_mail',''),
    '#description' => t("Leave empty if you don't want to send out email"),
  );
  $form['general']['phpids_warnlevel'] = array(
    '#type' => 'textfield',
    '#title' => t('Warning impact'),
    '#default_value' => variable_get('phpids_warnlevel',27),
    '#description' => t('Redirects to a warning page after this level of impact is reached.'),
  );
  // finetune filter settings
  $form['filters'] = array(
    '#type' => 'fieldset',
    '#title' => t('Filter settings'),
    '#description' => t("Finetune settings when PHPIDS shouldn't take action. Keep in mind that user 1 is always ignored and anonymous users are always monitored!"),
  );
  $options_anon = array(1 => t('Log anonymous users without actions'), 2 => t('Log anonymous users and take actions'));
  $form['filters']['phpids_anonymous'] = array(
    '#type' => 'select',
    '#title' => t('Anonymous users'),
    '#description' => t('Choose a setting for anonymous users.'),
    '#default_value' => variable_get('phpids_anonymous',1),
    '#options' => $options_anon,
  );
  $options_auth = array(1 => t('Do not log authenticated users'), 2 => t('Log authenticated users without actions'), 3 => t('Log authenticated users and take actions'));
  $form['filters']['phpids_authenticated'] = array(
    '#type' => 'select',
    '#title' => t('Authenticated users'),
    '#description' => t('Choose a setting for authenticated users.'),
    '#default_value' => variable_get('phpids_authenticated',2),
    '#options' => $options_auth,
  );
  $form['filters']['phpids_html_fields'] = array(
    '#type' => 'textfield',
    '#title' => t('HTML fields'),
    '#default_value' => variable_get('phpids_html_fields',''),
    '#description' => t('Specify comma seperated your fields which contains HTML code. This may reduce false positives.'),
  );
  $form['filters']['phpids_json_fields'] = array(
    '#type' => 'textfield',
    '#title' => t('JSON fields'),
    '#default_value' => variable_get('phpids_json_fields',''),
    '#description' => t('Specify comma seperated your fields which contains JSON code. This may reduce false positives.'),
  );
  $form['filters']['phpids_excl_fields'] = array(
    '#type' => 'textfield',
    '#title' => t('Excluded fields'),
    '#default_value' => variable_get('phpids_excl_fields',''),
    '#description' => t('Specify comma seperated your fields which you want to exclude from scanning by PHP-IDS. BE CAREFUL WITH THIS OPTION!'),
  );

  return system_settings_form($form);
}

?>