ホーム エクスプローラ ヘルプ
サインイン
fusionpbx
/
fusionpbx-app-device_logs
同期ミラー https://github.com/fusionpbx/fusionpbx-app-device_logs.git
2
0
フォーク 0
ファイル 課題 0 Wiki
ツリー: a11bbca297
ブランチ タグ
fusionpbx-app-d...
/
device_logs.php

device_logs.php 14 KB
履歴 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326 
  1. <?php
    2. 

  2. /*
    3. 

  3. 	Copyright (c) 2019-2023 Mark J Crane <[email protected]>
    4. 

  4. 

  5. 	Redistribution and use in source and binary forms, with or without
    6. 

  6. 	modification, are permitted provided that the following conditions
    7. 

  7. 	are met:
    8. 

  8. 

  9. 		1. Redistributions of source code must retain the above copyright
    10. 

  10. 		notice, this list of conditions and the following disclaimer.
    11. 

  11. 

  12. 		2. Redistributions in binary form must reproduce the above copyright
    13. 

  13. 		notice, this list of conditions and the following disclaimer in the
    14. 

  14. 		documentation and/or other materials provided with the distribution.
    15. 

  15. 

  16. 	THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS "AS IS" AND
    17. 

  17. 	ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
    18. 

  18. 	IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
    19. 

  19. 	ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
    20. 

  20. 	FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
    21. 

  21. 	DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
    22. 

  22. 	OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
    23. 

  23. 	HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
    24. 

  24. 	LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
    25. 

  25. 	OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
    26. 

  26. 	SUCH DAMAGE.
    27. 

  27. */
    28. 

  28. 

  29. //includes files
    30. 

  30. 	require_once dirname(__DIR__, 2) . "/resources/require.php";
    31. 

  31. 	require_once "resources/check_auth.php";
    32. 

  32. 	require_once "resources/paging.php";
    33. 

  33. 

  34. //check permissions
    35. 

  35. 	if (permission_exists('device_log_view')) {
    36. 

  36. 		//access granted
    37. 

  37. 	}
    38. 

  38. 	else {
    39. 

  39. 		echo "access denied";
    40. 

  40. 		exit;
    41. 

  41. 	}
    42. 

  42. 

  43. //add multi-lingual support
    44. 

  44. 	$language = new text;
    45. 

  45. 	$text = $language->get();
    46. 

  46. 

  47. //connect to the database
    48. 

  48. 	$database = new database;
    49. 

  49. 

  50. //set additional variables
    51. 

  51. 	$search = $_GET["search"] ?? '';
    52. 

  52. 	$show = $_GET["show"] ?? '';
    53. 

  53. 

  54. //set from session variables
    55. 

  55. 	$list_row_edit_button = !empty($_SESSION['theme']['list_row_edit_button']['boolean']) ? $_SESSION['theme']['list_row_edit_button']['boolean'] : 'false';
    56. 

  56. 

  57. //get the http post data
    58. 

  58. 	if (!empty($_POST['device_logs']) && is_array($_POST['device_logs'])) {
    59. 

  59. 		$action = $_POST['action'];
    60. 

  60. 		$search = $_POST['search'];
    61. 

  61. 		$device_logs = $_POST['device_logs'];
    62. 

  62. 	}
    63. 

  63. 

  64. //process the http post data by action
    65. 

  65. 	if (!empty($action) && is_array($device_logs) && @sizeof($device_logs) != 0) {
    66. 

  66. 		switch ($action) {
    67. 

  67. 			case 'copy':
    68. 

  68. 				if (permission_exists('device_log_add')) {
    69. 

  69. 					$obj = new device_logs;
    70. 

  70. 					$obj->copy($device_logs);
    71. 

  71. 				}
    72. 

  72. 				break;
    73. 

  73. 			case 'toggle':
    74. 

  74. 				if (permission_exists('device_log_edit')) {
    75. 

  75. 					$obj = new device_logs;
    76. 

  76. 					$obj->toggle($device_logs);
    77. 

  77. 				}
    78. 

  78. 				break;
    79. 

  79. 			case 'delete':
    80. 

  80. 				if (permission_exists('device_log_delete')) {
    81. 

  81. 					$obj = new device_logs;
    82. 

  82. 					$obj->delete($device_logs);
    83. 

  83. 				}
    84. 

  84. 				break;
    85. 

  85. 		}
    86. 

  86. 

  87. 		header('Location: device_logs.php'.($search != '' ? '?search='.urlencode($search) : null));
    88. 

  88. 		exit;
    89. 

  89. 	}
    90. 

  90. 

  91. //get order and order by
    92. 

  92. 	$order_by = $_GET["order_by"] ?? '';
    93. 

  93. 	$order = $_GET["order"] ?? '';
    94. 

  94. 

  95. //set the time zone
    96. 

  96. 	if (isset($_SESSION['domain']['time_zone']['name'])) {
    97. 

  97. 		$time_zone = $_SESSION['domain']['time_zone']['name'];
    98. 

  98. 	}
    99. 

  99. 	else {
    100. 

  100. 		$time_zone = date_default_timezone_get();
    101. 

  101. 	}
    102. 

  102. 

  103. //add the search string
    104. 

  104. 	if (isset($_GET["search"]) && !empty($_GET["search"])) {
    105. 

  105. 		$search =  strtolower($_GET["search"]);
    106. 

  106. 	}
    107. 

  107. 

  108. //get the count
    109. 

  109. 	$sql = "select count(device_log_uuid) \n";
    110. 

  110. 	$sql .= "FROM v_device_logs AS l \n";
    111. 

  111. 	$sql .= "LEFT JOIN v_domains AS d ON l.domain_uuid = d.domain_uuid \n";
    112. 

  112. 	if ($show == "all" && permission_exists('device_log_all')) {
    113. 

  113. 		$sql .= "WHERE true \n";
    114. 

  114. 	}
    115. 

  115. 	else {
    116. 

  116. 		$sql .= "WHERE (l.domain_uuid = :domain_uuid) \n";
    117. 

  117. 		$parameters['domain_uuid'] = $domain_uuid;
    118. 

  118. 	}
    119. 

  119. 	if (!empty($search)) {
    120. 

  120. 		$sql .= "and (";
    121. 

  121. 		$sql .= "	lower(device_address) like :search ";
    122. 

  122. 		$sql .= "	or lower(request_scheme) like :search ";
    123. 

  123. 		$sql .= "	or lower(http_host) like :search ";
    124. 

  124. 		$sql .= "	or lower(server_port) like :search ";
    125. 

  125. 		$sql .= "	or lower(server_protocol) like :search ";
    126. 

  126. 		$sql .= "	or lower(query_string) like :search ";
    127. 

  127. 		$sql .= "	or lower(remote_address) like :search ";
    128. 

  128. 		$sql .= "	or lower(http_user_agent) like :search ";
    129. 

  129. 		$sql .= "	or lower(http_status) like :search ";
    130. 

  130. 		$sql .= "	or lower(http_status_code) like :search ";
    131. 

  131. 		$sql .= ") ";
    132. 

  132. 		$parameters['search'] = '%'.$search.'%';
    133. 

  133. 	}
    134. 

  134. 	$num_rows = $database->select($sql, $parameters, 'column');
    135. 

  135. 

  136. //prepare to page the results
    137. 

  137. 	$rows_per_page = (!empty($_SESSION['domain']['paging']['numeric'])) ? $_SESSION['domain']['paging']['numeric'] : 50;
    138. 

  138. 	$param = $search ? "&search=".$search : null;
    139. 

  139. 	$param .= ($show == 'all' && permission_exists('device_log_all')) ? "&show=all" : null;
    140. 

  140. 	$page = isset($_GET['page']) ? $_GET['page'] : 0;
    141. 

  141. 	list($paging_controls, $rows_per_page) = paging($num_rows, $param, $rows_per_page);
    142. 

  142. 	list($paging_controls_mini, $rows_per_page) = paging($num_rows, $param, $rows_per_page, true);
    143. 

  143. 	$offset = $rows_per_page * $page;
    144. 

  144. 

  145. //get the list
    146. 

  146. 	$sql = "SELECT \n";
    147. 

  147. 	$sql .= "d.domain_uuid, \n";
    148. 

  148. 	$sql .= "device_log_uuid, \n";
    149. 

  149. 	$sql .= "device_uuid, \n";
    150. 

  150. 	$sql .= "d.domain_name, \n";
    151. 

  151. 	$sql .= "timestamp, \n";
    152. 

  152. 	$sql .= "to_char(timezone(:time_zone, timestamp), 'DD Mon YYYY') as date_formatted, \n";
    153. 

  153. 	$sql .= "to_char(timezone(:time_zone, timestamp), 'HH12:MI:SS am') as time_formatted, \n";
    154. 

  154. 	$sql .= "device_address, \n";
    155. 

  155. 	$sql .= "request_scheme, \n";
    156. 

  156. 	$sql .= "http_host, \n";
    157. 

  157. 	$sql .= "server_port, \n";
    158. 

  158. 	$sql .= "server_protocol, \n";
    159. 

  159. 	$sql .= "query_string, \n";
    160. 

  160. 	$sql .= "remote_address, \n";
    161. 

  161. 	$sql .= "http_user_agent, \n";
    162. 

  162. 	$sql .= "http_status, \n";
    163. 

  163. 	$sql .= "http_status_code, \n";
    164. 

  164. 	$sql .= "http_content_body \n";
    165. 

  165. 	$sql .= "FROM v_device_logs AS l \n";
    166. 

  166. 	$sql .= "LEFT JOIN v_domains AS d ON l.domain_uuid = d.domain_uuid \n";
    167. 

  167. 	if ($show == "all" && permission_exists('device_log_all')) {
    168. 

  168. 		$sql .= "WHERE true \n";
    169. 

  169. 	}
    170. 

  170. 	else {
    171. 

  171. 		$sql .= "WHERE (l.domain_uuid = :domain_uuid) \n";
    172. 

  172. 		$parameters['domain_uuid'] = $domain_uuid;
    173. 

  173. 	}
    174. 

  174. 	if (!empty($search)) {
    175. 

  175. 		$sql .= "AND ( \n";
    176. 

  176. 		$sql .= "	lower(device_address) like :search \n";
    177. 

  177. 		$sql .= "	or lower(request_scheme) like :search \n";
    178. 

  178. 		$sql .= "	or lower(http_host) like :search \n";
    179. 

  179. 		$sql .= "	or lower(server_port) like :search \n";
    180. 

  180. 		$sql .= "	or lower(server_protocol) like :search \n";
    181. 

  181. 		$sql .= "	or lower(query_string) like :search \n";
    182. 

  182. 		$sql .= "	or lower(remote_address) like :search \n";
    183. 

  183. 		$sql .= "	or lower(http_user_agent) like :search \n";
    184. 

  184. 		$sql .= "	or lower(http_status) like :search \n";
    185. 

  185. 		$sql .= "	or lower(http_status_code) like :search \n";
    186. 

  186. 		$sql .= ") ";
    187. 

  187. 		$parameters['search'] = '%'.$search.'%';
    188. 

  188. 	}
    189. 

  189. 	$parameters['time_zone'] = $time_zone;
    190. 

  190. 	$sql .= order_by($order_by, $order, 'timestamp', 'desc');
    191. 

  191. 	$sql .= limit_offset($rows_per_page, $offset);
    192. 

  192. 	$device_logs = $database->select($sql, $parameters, 'all');
    193. 

  193. 	unset($sql, $parameters);
    194. 

  194. 

  195. //create token
    196. 

  196. 	$object = new token;
    197. 

  197. 	$token = $object->create($_SERVER['PHP_SELF']);
    198. 

  198. 

  199. //include the header
    200. 

  200. 	$document['title'] = $text['title-device_logs'];
    201. 

  201. 	require_once "resources/header.php";
    202. 

  202. 

  203. //show the content
    204. 

  204. 	echo "<div class='action_bar' id='action_bar'>\n";
    205. 

  205. 	echo "	<div class='heading'><b>".$text['title-device_logs']."</b><div class='count'>".number_format($num_rows)."</div></div>\n";
    206. 

  206. 	echo "	<div class='actions'>\n";
    207. 

  207. 	if (permission_exists('device_log_add')) {
    208. 

  208. 		echo button::create(['type'=>'button','label'=>$text['button-add'],'icon'=>$_SESSION['theme']['button_icon_add'],'id'=>'btn_add','link'=>'device_log_edit.php']);
    209. 

  209. 	}
    210. 

  210. 	if (permission_exists('device_log_delete') && $device_logs) {
    211. 

  211. 		echo button::create(['type'=>'button','label'=>$text['button-delete'],'icon'=>$_SESSION['theme']['button_icon_delete'],'name'=>'btn_delete','onclick'=>"modal_open('modal-delete','btn_delete');"]);
    212. 

  212. 	}
    213. 

  213. 	echo 		"<form id='form_search' class='inline' method='get'>\n";
    214. 

  214. 	if (permission_exists('device_log_all')) {
    215. 

  215. 		if ($show == 'all') {
    216. 

  216. 			echo "		<input type='hidden' name='show' value='all'>\n";
    217. 

  217. 		}
    218. 

  218. 		else {
    219. 

  219. 			echo button::create(['type'=>'button','label'=>$text['button-show_all'],'icon'=>$_SESSION['theme']['button_icon_all'],'link'=>'?show=all']);
    220. 

  220. 		}
    221. 

  221. 	}
    222. 

  222. 	echo 		"<input type='text' class='txt list-search' name='search' id='search' value=\"".escape($search)."\" placeholder=\"".$text['label-search']."\" onkeydown='list_search_reset();'>";
    223. 

  223. 	echo button::create(['label'=>$text['button-search'],'icon'=>$_SESSION['theme']['button_icon_search'],'type'=>'submit','id'=>'btn_search','style'=>($search != '' ? 'display: none;' : null)]);
    224. 

  224. 	echo button::create(['label'=>$text['button-reset'],'icon'=>$_SESSION['theme']['button_icon_reset'],'type'=>'button','id'=>'btn_reset','link'=>'device_logs.php','style'=>($search == '' ? 'display: none;' : null)]);
    225. 

  225. 	if (!empty($paging_controls_mini)) {
    226. 

  226. 		echo 	"<span style='margin-left: 15px;'>".$paging_controls_mini."</span>\n";
    227. 

  227. 	}
    228. 

  228. 	echo "		</form>\n";
    229. 

  229. 	echo "	</div>\n";
    230. 

  230. 	echo "	<div style='clear: both;'></div>\n";
    231. 

  231. 	echo "</div>\n";
    232. 

  232. 

  233. 	if (permission_exists('device_log_add') && $device_logs) {
    234. 

  234. 		echo modal::create(['id'=>'modal-copy','type'=>'copy','actions'=>button::create(['type'=>'button','label'=>$text['button-continue'],'icon'=>'check','id'=>'btn_copy','style'=>'float: right; margin-left: 15px;','collapse'=>'never','onclick'=>"modal_close(); list_action_set('copy'); list_form_submit('form_list');"])]);
    235. 

  235. 	}
    236. 

  236. 	if (permission_exists('device_log_edit') && $device_logs) {
    237. 

  237. 		echo modal::create(['id'=>'modal-toggle','type'=>'toggle','actions'=>button::create(['type'=>'button','label'=>$text['button-continue'],'icon'=>'check','id'=>'btn_toggle','style'=>'float: right; margin-left: 15px;','collapse'=>'never','onclick'=>"modal_close(); list_action_set('toggle'); list_form_submit('form_list');"])]);
    238. 

  238. 	}
    239. 

  239. 	if (permission_exists('device_log_delete') && $device_logs) {
    240. 

  240. 		echo modal::create(['id'=>'modal-delete','type'=>'delete','actions'=>button::create(['type'=>'button','label'=>$text['button-continue'],'icon'=>'check','id'=>'btn_delete','style'=>'float: right; margin-left: 15px;','collapse'=>'never','onclick'=>"modal_close(); list_action_set('delete'); list_form_submit('form_list');"])]);
    241. 

  241. 	}
    242. 

  242. 

  243. 	echo $text['description-device_logs']."\n";
    244. 

  244. 	echo "<br /><br />\n";
    245. 

  245. 

  246. 	echo "<form id='form_list' method='post'>\n";
    247. 

  247. 	echo "<input type='hidden' id='action' name='action' value=''>\n";
    248. 

  248. 	echo "<input type='hidden' name='search' value=\"".escape($search)."\">\n";
    249. 

  249. 

  250. 	echo "<div class='card'>\n";
    251. 

  251. 	echo "<table class='list'>\n";
    252. 

  252. 	echo "<tr class='list-header'>\n";
    253. 

  253. 	if (permission_exists('device_log_add') || permission_exists('device_log_edit') || permission_exists('device_log_delete')) {
    254. 

  254. 		echo "	<th class='checkbox'>\n";
    255. 

  255. 		echo "		<input type='checkbox' id='checkbox_all' name='checkbox_all' onclick='list_all_toggle();' ".(!empty($device_logs) ?: "style='visibility: hidden;'").">\n";
    256. 

  256. 		echo "	</th>\n";
    257. 

  257. 	}
    258. 

  258. 	if ($show == 'all' && permission_exists('device_log_all')) {
    259. 

  259. 		echo th_order_by('domain_name', $text['label-domain'], $order_by, $order);
    260. 

  260. 	}
    261. 

  261. 	echo "<th class='left'>".$text['label-date']."</th>\n";
    262. 

  262. 	echo "<th class='left hide-md-dn'>".$text['label-time']."</th>\n";
    263. 

  263. 	echo th_order_by('device_address', $text['label-device_address'], $order_by, $order);
    264. 

  264. 	echo "<th class='left hide-sm-dn'>".$text['label-request_scheme']."</th>\n";
    265. 

  265. 	echo "<th class='left hide-md-dn'>".$text['label-http_host']."</th>\n";
    266. 

  266. 	echo "<th class='left hide-md-dn'>".$text['label-server_port']."</th>\n";
    267. 

  267. 	echo "<th class='left hide-md-dn'>".$text['label-server_protocol']."</th>\n";
    268. 

  268. 	echo "<th class='left hide-md-dn'>".$text['label-query_string']."</th>\n";
    269. 

  269. 	echo th_order_by('remote_address', $text['label-remote_address'], $order_by, $order);
    270. 

  270. 	echo "<th class='left hide-md-dn'>".$text['label-http_user_agent']."</th>\n";
    271. 

  271. 	echo "<th class='left hide-md-dn'>".$text['label-http_status']."</th>\n";
    272. 

  272. 	echo "<th class='left hide-md-dn'>".$text['label-http_status_code']."</th>\n";
    273. 

  273. 	if (permission_exists('device_log_edit') && $list_row_edit_button == 'true') {
    274. 

  274. 		echo "	<td class='action-button'>&nbsp;</td>\n";
    275. 

  275. 	}
    276. 

  276. 	echo "</tr>\n";
    277. 

  277. 

  278. 	if (is_array($device_logs) && @sizeof($device_logs) != 0) {
    279. 

  279. 		$x = 0;
    280. 

  280. 		foreach ($device_logs as $row) {
    281. 

  281. 			if (permission_exists('device_log_edit')) {
    282. 

  282. 				$list_row_url = "device_log_edit.php?id=".urlencode($row['device_log_uuid']);
    283. 

  283. 			}
    284. 

  284. 			echo "<tr class='list-row' href='".$list_row_url."'>\n";
    285. 

  285. 			if (permission_exists('device_log_add') || permission_exists('device_log_edit') || permission_exists('device_log_delete')) {
    286. 

  286. 				echo "	<td class='checkbox'>\n";
    287. 

  287. 				echo "		<input type='checkbox' name='device_logs[$x][checked]' id='checkbox_".$x."' value='true' onclick=\"if (!this.checked) { document.getElementById('checkbox_all').checked = false; }\">\n";
    288. 

  288. 				echo "		<input type='hidden' name='device_logs[$x][uuid]' value='".escape($row['device_log_uuid'])."' />\n";
    289. 

  289. 				echo "	</td>\n";
    290. 

  290. 			}
    291. 

  291. 			if ($show == 'all' && permission_exists('device_log_all')) {
    292. 

  292. 				echo "	<td>".escape($_SESSION['domains'][$row['domain_uuid']]['domain_name'])."</td>\n";
    293. 

  293. 			}
    294. 

  294. 			echo "	<td>".escape($row['date_formatted'])."</td>\n";
    295. 

  295. 			echo "	<td class='left hide-md-dn'>".escape($row['time_formatted'])."</td>\n";
    296. 

  296. 			echo "	<td>".escape($row['device_address'])."</td>\n";
    297. 

  297. 			echo "	<td class='left hide-sm-dn'>".escape($row['request_scheme'])."</td>\n";
    298. 

  298. 			echo "	<td class='left hide-md-dn'>".escape($row['http_host'])."</td>\n";
    299. 

  299. 			echo "	<td class='left hide-md-dn'>".escape($row['server_port'])."</td>\n";
    300. 

  300. 			echo "	<td class='left hide-md-dn'>".escape($row['server_protocol'])."</td>\n";
    301. 

  301. 			echo "	<td class='left hide-md-dn'>".escape($row['query_string'])."</td>\n";
    302. 

  302. 			echo "	<td>".escape($row['remote_address'])."</td>\n";
    303. 

  303. 			echo "	<td class='left hide-md-dn'>".escape($row['http_user_agent'])."</td>\n";
    304. 

  304. 			echo "	<td class='left hide-md-dn'>".escape($row['http_status'])."</td>\n";
    305. 

  305. 			echo "	<td class='left hide-md-dn'>".escape($row['http_status_code'])."</td>\n";
    306. 

  306. 			if (permission_exists('device_log_edit') && $list_row_edit_button == 'true') {
    307. 

  307. 				echo "	<td class='action-button'>\n";
    308. 

  308. 				echo button::create(['type'=>'button','title'=>$text['button-edit'],'icon'=>$_SESSION['theme']['button_icon_edit'],'link'=>$list_row_url]);
    309. 

  309. 				echo "	</td>\n";
    310. 

  310. 			}
    311. 

  311. 			echo "</tr>\n";
    312. 

  312. 			$x++;
    313. 

  313. 		}
    314. 

  314. 	}
    315. 

  315. 

  316. 	echo "</table>\n";
    317. 

  317. 	echo "</div>\n";
    318. 

  318. 	echo "<br />\n";
    319. 

  319. 	echo "<div align='center'>".$paging_controls."</div>\n";
    320. 

  320. 	echo "<input type='hidden' name='".$token['name']."' value='".$token['hash']."'>\n";
    321. 

  321. 	echo "</form>\n";
    322. 

  322. 

  323. //include the footer
    324. 

  324. 	require_once "resources/footer.php";
    325. 

  325. 

  326. ?>
    327.