Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions
are met:
1. Redistributions of source code must retain the above copyright
notice, this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright
notice, this list of conditions and the following disclaimer in the
documentation and/or other materials provided with the distribution.
THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS "AS IS" AND
ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
SUCH DAMAGE.
*/
//includes files
require_once dirname(__DIR__, 2) . "/resources/require.php";
require_once "resources/check_auth.php";
require_once "resources/paging.php";
//check permissions
if (permission_exists('device_log_view')) {
//access granted
}
else {
echo "access denied";
exit;
}
//add multi-lingual support
$language = new text;
$text = $language->get();
//connect to the database
$database = new database;
//set additional variables
$search = $_GET["search"] ?? '';
$show = $_GET["show"] ?? '';
//set from session variables
$list_row_edit_button = !empty($_SESSION['theme']['list_row_edit_button']['boolean']) ? $_SESSION['theme']['list_row_edit_button']['boolean'] : 'false';
//get the http post data
if (!empty($_POST['device_logs']) && is_array($_POST['device_logs'])) {
$action = $_POST['action'];
$search = $_POST['search'];
$device_logs = $_POST['device_logs'];
}
//process the http post data by action
if (!empty($action) && is_array($device_logs) && @sizeof($device_logs) != 0) {
switch ($action) {
case 'copy':
if (permission_exists('device_log_add')) {
$obj = new device_logs;
$obj->copy($device_logs);
}
break;
case 'toggle':
if (permission_exists('device_log_edit')) {
$obj = new device_logs;
$obj->toggle($device_logs);
}
break;
case 'delete':
if (permission_exists('device_log_delete')) {
$obj = new device_logs;
$obj->delete($device_logs);
}
break;
}
header('Location: device_logs.php'.($search != '' ? '?search='.urlencode($search) : null));
exit;
}
//get order and order by
$order_by = $_GET["order_by"] ?? '';
$order = $_GET["order"] ?? '';
//set the time zone
if (isset($_SESSION['domain']['time_zone']['name'])) {
$time_zone = $_SESSION['domain']['time_zone']['name'];
}
else {
$time_zone = date_default_timezone_get();
}
//add the search string
if (isset($_GET["search"]) && !empty($_GET["search"])) {
$search = strtolower($_GET["search"]);
}
//get the count
$sql = "select count(device_log_uuid) \n";
$sql .= "FROM v_device_logs AS l \n";
$sql .= "LEFT JOIN v_domains AS d ON l.domain_uuid = d.domain_uuid \n";
if ($show == "all" && permission_exists('device_log_all')) {
$sql .= "WHERE true \n";
}
else {
$sql .= "WHERE (l.domain_uuid = :domain_uuid) \n";
$parameters['domain_uuid'] = $domain_uuid;
}
if (!empty($search)) {
$sql .= "and (";
$sql .= " lower(device_address) like :search ";
$sql .= " or lower(request_scheme) like :search ";
$sql .= " or lower(http_host) like :search ";
$sql .= " or lower(server_port) like :search ";
$sql .= " or lower(server_protocol) like :search ";
$sql .= " or lower(query_string) like :search ";
$sql .= " or lower(remote_address) like :search ";
$sql .= " or lower(http_user_agent) like :search ";
$sql .= " or lower(http_status) like :search ";
$sql .= " or lower(http_status_code) like :search ";
$sql .= ") ";
$parameters['search'] = '%'.$search.'%';
}
$num_rows = $database->select($sql, $parameters, 'column');
//prepare to page the results
$rows_per_page = (!empty($_SESSION['domain']['paging']['numeric'])) ? $_SESSION['domain']['paging']['numeric'] : 50;
$param = $search ? "&search=".$search : null;
$param .= ($show == 'all' && permission_exists('device_log_all')) ? "&show=all" : null;
$page = isset($_GET['page']) ? $_GET['page'] : 0;
list($paging_controls, $rows_per_page) = paging($num_rows, $param, $rows_per_page);
list($paging_controls_mini, $rows_per_page) = paging($num_rows, $param, $rows_per_page, true);
$offset = $rows_per_page * $page;
//get the list
$sql = "SELECT \n";
$sql .= "d.domain_uuid, \n";
$sql .= "device_log_uuid, \n";
$sql .= "device_uuid, \n";
$sql .= "d.domain_name, \n";
$sql .= "timestamp, \n";
$sql .= "to_char(timezone(:time_zone, timestamp), 'DD Mon YYYY') as date_formatted, \n";
$sql .= "to_char(timezone(:time_zone, timestamp), 'HH12:MI:SS am') as time_formatted, \n";
$sql .= "device_address, \n";
$sql .= "request_scheme, \n";
$sql .= "http_host, \n";
$sql .= "server_port, \n";
$sql .= "server_protocol, \n";
$sql .= "query_string, \n";
$sql .= "remote_address, \n";
$sql .= "http_user_agent, \n";
$sql .= "http_status, \n";
$sql .= "http_status_code, \n";
$sql .= "http_content_body \n";
$sql .= "FROM v_device_logs AS l \n";
$sql .= "LEFT JOIN v_domains AS d ON l.domain_uuid = d.domain_uuid \n";
if ($show == "all" && permission_exists('device_log_all')) {
$sql .= "WHERE true \n";
}
else {
$sql .= "WHERE (l.domain_uuid = :domain_uuid) \n";
$parameters['domain_uuid'] = $domain_uuid;
}
if (!empty($search)) {
$sql .= "AND ( \n";
$sql .= " lower(device_address) like :search \n";
$sql .= " or lower(request_scheme) like :search \n";
$sql .= " or lower(http_host) like :search \n";
$sql .= " or lower(server_port) like :search \n";
$sql .= " or lower(server_protocol) like :search \n";
$sql .= " or lower(query_string) like :search \n";
$sql .= " or lower(remote_address) like :search \n";
$sql .= " or lower(http_user_agent) like :search \n";
$sql .= " or lower(http_status) like :search \n";
$sql .= " or lower(http_status_code) like :search \n";
$sql .= ") ";
$parameters['search'] = '%'.$search.'%';
}
$parameters['time_zone'] = $time_zone;
$sql .= order_by($order_by, $order, 'timestamp', 'desc');
$sql .= limit_offset($rows_per_page, $offset);
$device_logs = $database->select($sql, $parameters, 'all');
unset($sql, $parameters);
//create token
$object = new token;
$token = $object->create($_SERVER['PHP_SELF']);
//include the header
$document['title'] = $text['title-device_logs'];
require_once "resources/header.php";
//show the content
echo "
\n";
echo "
".$text['title-device_logs']."
".number_format($num_rows)."
\n";
echo "
\n";
if (permission_exists('device_log_add')) {
echo button::create(['type'=>'button','label'=>$text['button-add'],'icon'=>$_SESSION['theme']['button_icon_add'],'id'=>'btn_add','link'=>'device_log_edit.php']);
}
if (permission_exists('device_log_delete') && $device_logs) {
echo button::create(['type'=>'button','label'=>$text['button-delete'],'icon'=>$_SESSION['theme']['button_icon_delete'],'name'=>'btn_delete','onclick'=>"modal_open('modal-delete','btn_delete');"]);
}
echo "\n";
echo "