icingaweb2/modules/monitoring/library/Monitoring/Controller.php

<?php
/* Icinga Web 2 | (c) 2013 Icinga Development Team | GPLv2+ */

namespace Icinga\Module\Monitoring;

use Icinga\Exception\ConfigurationError;
use Icinga\Exception\QueryException;
use Icinga\Data\Filter\Filter;
use Icinga\Data\Filterable;
use Icinga\File\Csv;
use Icinga\Util\Json;
use Icinga\Web\Controller as IcingaWebController;
use Icinga\Web\Url;

/**
 * Base class for all monitoring action controller
 */
class Controller extends IcingaWebController
{
    /**
     * The backend used for this controller
     *
     * @var Backend
     */
    protected $backend;

    protected function moduleInit()
    {
        $this->backend = Backend::createBackend($this->_getParam('backend'));
        $this->view->url = Url::fromRequest();
    }

    protected function handleFormatRequest($query)
    {
        $desiredContentType = $this->getRequest()->getHeader('Accept');
        if ($desiredContentType === 'application/json') {
            $desiredFormat = 'json';
        } elseif ($desiredContentType === 'text/csv') {
            $desiredFormat = 'csv';
        } else {
            $desiredFormat = strtolower($this->params->get('format', 'html'));
        }

        if ($desiredFormat !== 'html' && ! $this->params->has('limit')) {
            $query->limit();  // Resets any default limit and offset
        }

        switch ($desiredFormat) {
            case 'sql':
                echo '<pre>'
                    . htmlspecialchars(wordwrap($query->dump()))
                    . '</pre>';
                exit;
            case 'json':
                $response = $this->getResponse();
                $response
                    ->setHeader('Content-Type', 'application/json')
                    ->setHeader('Cache-Control', 'no-store')
                    ->setHeader(
                        'Content-Disposition',
                        'inline; filename=' . $this->getRequest()->getActionName() . '.json'
                    )
                    ->appendBody(Json::sanitize($query->fetchAll()))
                    ->sendResponse();
                exit;
            case 'csv':
                $response = $this->getResponse();
                $response
                    ->setHeader('Content-Type', 'text/csv')
                    ->setHeader('Cache-Control', 'no-store')
                    ->setHeader(
                        'Content-Disposition',
                        'attachment; filename=' . $this->getRequest()->getActionName() . '.csv'
                    )
                    ->appendBody((string) Csv::fromQuery($query))
                    ->sendResponse();
                exit;
        }
    }

    /**
     * Apply a restriction of the authenticated on the given filterable
     *
     * @param   string      $name       Name of the restriction
     * @param   Filterable  $filterable Filterable to restrict
     *
     * @return  Filterable  The filterable having the restriction applied
     */
    protected function applyRestriction($name, Filterable $filterable)
    {
        $filterable->applyFilter($this->getRestriction($name));
        return $filterable;
    }

    /**
     * Get a restriction of the authenticated
     *
     * @param   string $name        Name of the restriction
     *
     * @return  Filter|null         Filter object or null if the authenticated user is not restricted
     * @throws  ConfigurationError  If the restriction contains invalid filter columns
     */
    protected function getRestriction($name)
    {
        $restriction = Filter::matchAny();
        $restriction->setAllowedFilterColumns(array(
            'host_name',
            'hostgroup_name',
            'instance_name',
            'service_description',
            'servicegroup_name',
            function ($c) {
                return preg_match('/^_(?:host|service)_/i', $c);
            }
        ));
        foreach ($this->getRestrictions($name) as $filter) {
            if ($filter === '*') {
                return Filter::matchAny();
            }
            try {
                $restriction->addFilter(Filter::fromQueryString($filter));
            } catch (QueryException $e) {
                throw new ConfigurationError(
                    $this->translate(
                        'Cannot apply restriction %s using the filter %s. You can only use the following columns: %s'
                    ),
                    $name,
                    $filter,
                    implode(', ', array(
                        'instance_name',
                        'host_name',
                        'hostgroup_name',
                        'service_description',
                        'servicegroup_name',
                        '_(host|service)_<customvar-name>'
                    )),
                    $e
                );
            }
        }
        return $restriction;
    }
}
Add monitoring controller class refs #4823 2013-10-10 14:40:13 +02:00			`<?php`
Change all license headers to only reflect a file's year of creation refs #11000 2016-02-08 15:41:00 +01:00			`/* Icinga Web 2 \| (c) 2013 Icinga Development Team \| GPLv2+ */`
Add monitoring controller class refs #4823 2013-10-10 14:40:13 +02:00
			`namespace Icinga\Module\Monitoring;`

Controller: Validate restriction columns 2015-06-18 16:42:27 +02:00			`use Icinga\Exception\ConfigurationError;`
			`use Icinga\Exception\QueryException;`
monitoring/security: Move applyRestriction() to the module's base controller 2015-01-27 14:22:37 +01:00			`use Icinga\Data\Filter\Filter;`
monitoring/security: Require a Filterable instead of a DataView in applyRestriction() 2015-01-27 14:24:56 +01:00			`use Icinga\Data\Filterable;`
monitoring/security: Move applyRestriction() to the module's base controller 2015-01-27 14:22:37 +01:00			`use Icinga\File\Csv;`
Export JSON with .json extension Signed-off-by: Eric Lippmann <eric.lippmann@icinga.com> 2017-10-05 18:02:43 +02:00			`use Icinga\Util\Json;`
Inherit from Icinga\Web\Controller rather than from Icinga\Web\Controller\ModuleActionController 2015-04-08 15:08:14 +02:00			`use Icinga\Web\Controller as IcingaWebController;`
Monitoring\Controller: add $url to all views There are too many view scripts fiddling with namespaces. There is still the url helper, not sure why it's not going to be used. I may roll this back one far day... 2014-06-20 12:26:00 +02:00			`use Icinga\Web\Url;`
Add monitoring controller class refs #4823 2013-10-10 14:40:13 +02:00
			`/**`
			`* Base class for all monitoring action controller`
			`*/`
Inherit from Icinga\Web\Controller rather than from Icinga\Web\Controller\ModuleActionController 2015-04-08 15:08:14 +02:00			`class Controller extends IcingaWebController`
Add monitoring controller class refs #4823 2013-10-10 14:40:13 +02:00			`{`
Monitoring\Controller: provide $this->backend Every monitoring controller needs $backend, so why declaring it over and over again. Created "moduleInit" dummy function in our base action controller to allow such implementations without polluting init(). 2014-06-17 14:55:43 +02:00			`/**`
			`* The backend used for this controller`
			`*`
			`* @var Backend`
			`*/`
			`protected $backend;`

			`protected function moduleInit()`
			`{`
			`$this->backend = Backend::createBackend($this->_getParam('backend'));`
Monitoring\Controller: add $url to all views There are too many view scripts fiddling with namespaces. There is still the url helper, not sure why it's not going to be used. I may roll this back one far day... 2014-06-20 12:26:00 +02:00			`$this->view->url = Url::fromRequest();`
Monitoring\Controller: provide $this->backend Every monitoring controller needs $backend, so why declaring it over and over again. Created "moduleInit" dummy function in our base action controller to allow such implementations without polluting init(). 2014-06-17 14:55:43 +02:00			`}`

Various style fixes, changed icon size, fixed show/service 2013-10-22 15:57:30 +02:00			`protected function handleFormatRequest($query)`
Add monitoring controller class refs #4823 2013-10-10 14:40:13 +02:00			`{`
Respect limits and sort orders for format requests fixes #2967 2017-10-17 16:05:07 +02:00			`$desiredContentType = $this->getRequest()->getHeader('Accept');`
			`if ($desiredContentType === 'application/json') {`
			`$desiredFormat = 'json';`
			`} elseif ($desiredContentType === 'text/csv') {`
			`$desiredFormat = 'csv';`
			`} else {`
			`$desiredFormat = strtolower($this->params->get('format', 'html'));`
Add monitoring controller class refs #4823 2013-10-10 14:40:13 +02:00			`}`
Respect limits and sort orders for format requests fixes #2967 2017-10-17 16:05:07 +02:00
			`if ($desiredFormat !== 'html' && ! $this->params->has('limit')) {`
			`$query->limit(); // Resets any default limit and offset`
Add monitoring controller class refs #4823 2013-10-10 14:40:13 +02:00			`}`
Respect limits and sort orders for format requests fixes #2967 2017-10-17 16:05:07 +02:00
Fix code style issues 2017-11-08 10:26:41 +01:00			`switch ($desiredFormat) {`
Respect limits and sort orders for format requests fixes #2967 2017-10-17 16:05:07 +02:00			`case 'sql':`
			`echo '<pre>'`
			`. htmlspecialchars(wordwrap($query->dump()))`
			`. '</pre>';`
			`exit;`
			`case 'json':`
			`$response = $this->getResponse();`
			`$response`
			`->setHeader('Content-Type', 'application/json')`
			`->setHeader('Cache-Control', 'no-store')`
Fix code style issues 2017-11-08 10:26:41 +01:00			`->setHeader(`
			`'Content-Disposition',`
			`'inline; filename=' . $this->getRequest()->getActionName() . '.json'`
			`)`
Split Json::encode() into Json::encode() and Json::sanitize() refs #2635 2018-06-20 18:03:21 +02:00			`->appendBody(Json::sanitize($query->fetchAll()))`
Respect limits and sort orders for format requests fixes #2967 2017-10-17 16:05:07 +02:00			`->sendResponse();`
			`exit;`
			`case 'csv':`
			`$response = $this->getResponse();`
			`$response`
			`->setHeader('Content-Type', 'text/csv')`
			`->setHeader('Cache-Control', 'no-store')`
Fix code style issues 2017-11-08 10:26:41 +01:00			`->setHeader(`
			`'Content-Disposition',`
			`'attachment; filename=' . $this->getRequest()->getActionName() . '.csv'`
			`)`
Respect limits and sort orders for format requests fixes #2967 2017-10-17 16:05:07 +02:00			`->appendBody((string) Csv::fromQuery($query))`
			`->sendResponse();`
			`exit;`
Add monitoring controller class refs #4823 2013-10-10 14:40:13 +02:00			`}`
			`}`
monitoring/security: Move applyRestriction() to the module's base controller 2015-01-27 14:22:37 +01:00
			`/**`
monitoring: Implement Controller::getRestriction() Controller::applyRestriction() breaks fluent interfaces whereas Controller::getRestriction() doesn't. 2015-08-20 13:07:57 +02:00			`* Apply a restriction of the authenticated on the given filterable`
monitoring/security: Move applyRestriction() to the module's base controller 2015-01-27 14:22:37 +01:00			`*`
monitoring: Implement Controller::getRestriction() Controller::applyRestriction() breaks fluent interfaces whereas Controller::getRestriction() doesn't. 2015-08-20 13:07:57 +02:00			`* @param string $name Name of the restriction`
			`* @param Filterable $filterable Filterable to restrict`
monitoring/security: Move applyRestriction() to the module's base controller 2015-01-27 14:22:37 +01:00			`*`
monitoring: Implement Controller::getRestriction() Controller::applyRestriction() breaks fluent interfaces whereas Controller::getRestriction() doesn't. 2015-08-20 13:07:57 +02:00			`* @return Filterable The filterable having the restriction applied`
monitoring/security: Move applyRestriction() to the module's base controller 2015-01-27 14:22:37 +01:00			`*/`
monitoring: Implement Controller::getRestriction() Controller::applyRestriction() breaks fluent interfaces whereas Controller::getRestriction() doesn't. 2015-08-20 13:07:57 +02:00			`protected function applyRestriction($name, Filterable $filterable)`
monitoring/security: Move applyRestriction() to the module's base controller 2015-01-27 14:22:37 +01:00			`{`
monitoring: Return an empty filter in Controller::getRestriction() if the authenticated user is not restricted This is because applyFilter requires a filter object. 2015-08-20 14:24:06 +02:00			`$filterable->applyFilter($this->getRestriction($name));`
monitoring: Implement Controller::getRestriction() Controller::applyRestriction() breaks fluent interfaces whereas Controller::getRestriction() doesn't. 2015-08-20 13:07:57 +02:00			`return $filterable;`
			`}`

			`/**`
			`* Get a restriction of the authenticated`
			`*`
			`* @param string $name Name of the restriction`
			`*`
			`* @return Filter\|null Filter object or null if the authenticated user is not restricted`
			`* @throws ConfigurationError If the restriction contains invalid filter columns`
			`*/`
			`protected function getRestriction($name)`
			`{`
			`$restriction = Filter::matchAny();`
			`$restriction->setAllowedFilterColumns(array(`
Controller: Validate restriction columns 2015-06-18 16:42:27 +02:00			`'host_name',`
			`'hostgroup_name',`
Merge branch 'master' into feature/api-9606 2015-09-07 11:33:44 +02:00			`'instance_name',`
Controller: Validate restriction columns 2015-06-18 16:42:27 +02:00			`'service_description',`
			`'servicegroup_name',`
			`function ($c) {`
Allow passing customvar names in upper and lower case Fix that customvar names are not properly lowercased in all places. refs #10172 2015-09-28 16:01:13 +02:00			`return preg_match('/^_(?:host\|service)_/i', $c);`
Controller: Validate restriction columns 2015-06-18 16:42:27 +02:00			`}`
			`));`
monitoring: Implement Controller::getRestriction() Controller::applyRestriction() breaks fluent interfaces whereas Controller::getRestriction() doesn't. 2015-08-20 13:07:57 +02:00			`foreach ($this->getRestrictions($name) as $filter) {`
monitoring: Ignore restrictions if user has the wildcard restriction resolves #9830 2015-08-04 16:28:45 +02:00			`if ($filter === '*') {`
monitoring: Return an empty filter in Controller::getRestriction() if the authenticated user is not restricted This is because applyFilter requires a filter object. 2015-08-20 14:24:06 +02:00			`return Filter::matchAny();`
monitoring: Ignore restrictions if user has the wildcard restriction resolves #9830 2015-08-04 16:28:45 +02:00			`}`
Controller: Validate restriction columns 2015-06-18 16:42:27 +02:00			`try {`
monitoring: Implement Controller::getRestriction() Controller::applyRestriction() breaks fluent interfaces whereas Controller::getRestriction() doesn't. 2015-08-20 13:07:57 +02:00			`$restriction->addFilter(Filter::fromQueryString($filter));`
Controller: Validate restriction columns 2015-06-18 16:42:27 +02:00			`} catch (QueryException $e) {`
			`throw new ConfigurationError(`
			`$this->translate(`
			`'Cannot apply restriction %s using the filter %s. You can only use the following columns: %s'`
			`),`
monitoring: Implement Controller::getRestriction() Controller::applyRestriction() breaks fluent interfaces whereas Controller::getRestriction() doesn't. 2015-08-20 13:07:57 +02:00			`$name,`
Controller: Validate restriction columns 2015-06-18 16:42:27 +02:00			`$filter,`
			`implode(', ', array(`
monitoring: Allow `instance_name' as restriction column refs #9934 2015-08-25 16:39:40 +02:00			`'instance_name',`
Controller: Validate restriction columns 2015-06-18 16:42:27 +02:00			`'host_name',`
			`'hostgroup_name',`
			`'service_description',`
			`'servicegroup_name',`
			`'_(host\|service)_<customvar-name>'`
			`)),`
			`$e`
			`);`
			`}`
monitoring/security: Move applyRestriction() to the module's base controller 2015-01-27 14:22:37 +01:00			`}`
monitoring: Implement Controller::getRestriction() Controller::applyRestriction() breaks fluent interfaces whereas Controller::getRestriction() doesn't. 2015-08-20 13:07:57 +02:00			`return $restriction;`
monitoring/security: Move applyRestriction() to the module's base controller 2015-01-27 14:22:37 +01:00			`}`
Add monitoring controller class refs #4823 2013-10-10 14:40:13 +02:00			`}`