2006-10-08 16:04:10 +02:00
|
|
|
<?php
|
|
|
|
|
|
2008-08-22 20:07:32 +02:00
|
|
|
// Pandora FMS - the Flexible Monitoring System
|
|
|
|
|
// ============================================
|
|
|
|
|
// Copyright (c) 2008 Artica Soluciones Tecnologicas, http://www.artica.es
|
|
|
|
|
// Please see http://pandora.sourceforge.net for full contribution list
|
2007-02-20 02:38:59 +01:00
|
|
|
|
2006-10-08 16:04:10 +02:00
|
|
|
// This program is free software; you can redistribute it and/or
|
|
|
|
|
// modify it under the terms of the GNU General Public License
|
2008-08-22 20:07:32 +02:00
|
|
|
// as published by the Free Software Foundation for version 2.
|
2006-10-08 16:04:10 +02:00
|
|
|
// This program is distributed in the hope that it will be useful,
|
|
|
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
// GNU General Public License for more details.
|
|
|
|
|
// You should have received a copy of the GNU General Public License
|
|
|
|
|
// along with this program; if not, write to the Free Software
|
|
|
|
|
// Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
2008-08-22 20:07:32 +02:00
|
|
|
|
|
|
|
|
|
2006-10-08 16:04:10 +02:00
|
|
|
// Load global vars
|
2007-06-21 20:58:35 +02:00
|
|
|
|
2006-10-08 16:04:10 +02:00
|
|
|
require("include/config.php");
|
|
|
|
|
|
2008-08-11 Esteban Sanchez <estebans@artica.es>
* include/functions_db.php: Added __ as an alias of lang_string().
* include/functions_reporting_pdf.php,
include/functions_reporting.php, include/functions.php,
include/functions_visual_map.php, index.php,
operation/incidents/incident.php,
operation/incidents/incident_detail.php,
operation/incidents/incident_note.php,
operation/incidents/incident_search.php,
operation/incidents/incident_statistics.php,
operation/snmpconsole/snmp_alert.php,
operation/snmpconsole/snmp_view.php, operation/users/user.php,
operation/users/user_edit.php, operation/users/user_statistics.php,
operation/events/event_statistics.php, operation/events/events.php,
operation/visual_console/render_view.php,
operation/visual_console/index.php, operation/extensions.php,
operation/agentes/estado_alertas.php,
operation/agentes/status_monitor.php,
operation/agentes/estado_grupo.php, operation/agentes/export_csv.php,
operation/agentes/datos_agente.php,
operation/agentes/estado_ultimopaquete.php,
operation/agentes/estado_generalagente.php,
operation/agentes/estado_agente.php, operation/agentes/bulbs.php,
operation/agentes/status_events.php, operation/agentes/sla_view.php,
operation/agentes/exportdata.php,
operation/agentes/estado_monitores.php,
operation/agentes/ver_agente.php, operation/agentes/estadisticas.php,
operation/agentes/tactical.php, operation/agentes/networkmap.php,
operation/messages/message.php,
operation/reporting/reporting_viewer.php,
operation/reporting/graph_viewer.php,
operation/reporting/custom_reporting.php,
operation/servers/view_server.php,
operation/servers/view_server_detail.php, operation/menu.php,
reporting/fgraph.php, reporting/stat_win.php, ajax.php,
general/logoff.php, general/pandora_help.php, general/footer.php,
general/noaccess.php, general/logon_failed.php,
general/links_menu.php, general/login_page.php, general/logon_ok.php,
general/header.php, general/main_menu.php,
godmode/groups/configure_group.php, godmode/groups/group_list.php,
godmode/setup/news.php, godmode/setup/links.php,
godmode/setup/setup.php, godmode/users/user_list.php,
godmode/users/configure_user.php, godmode/profiles/profile_list.php,
godmode/admin_access_logs.php, godmode/db/db_info_data.php,
godmode/db/db_main.php, godmode/db/db_audit.php,
godmode/db/db_sanity.php, godmode/db/db_refine.php,
godmode/db/db_info.php, godmode/db/db_event.php,
godmode/db/db_purge.php, godmode/extensions.php,
godmode/agentes/agent_template.php,
godmode/agentes/module_manager_editor_network.php,
godmode/agentes/module_manager_editor_wmi.php,
godmode/agentes/alert_manager.php,
godmode/agentes/module_manager_editor_plugin.php,
godmode/agentes/module_manager_editor_prediction.php,
godmode/agentes/alert_manager_editor.php,
godmode/agentes/manage_config.php,
godmode/agentes/module_manager_editor_data.php,
godmode/agentes/module_manager.php,
godmode/agentes/modificar_agente.php,
godmode/agentes/configurar_agente.php,
godmode/agentes/agent_disk_conf_editor.php,
godmode/agentes/planned_downtime.php,
godmode/agentes/manage_config_remote.php,
godmode/agentes/agent_manager.php,
godmode/modules/manage_network_components_form.php,
godmode/modules/manage_nc_groups_form.php,
godmode/modules/manage_network_templates.php,
godmode/modules/module_list.php,
godmode/modules/manage_network_templates_form.php,
godmode/modules/manage_network_components_form_network.php,
godmode/modules/manage_network_components_form_wmi.php,
godmode/modules/manage_network_components.php,
godmode/modules/manage_nc_groups.php,
godmode/reporting/reporting_builder.php,
godmode/reporting/map_builder.php,
godmode/reporting/graph_builder.php, godmode/servers/plugin.php,
godmode/servers/manage_recontask.php,
godmode/servers/modificar_server.php,
godmode/servers/manage_recontask_form.php,
godmode/alerts/modify_alert.php, godmode/alerts/configure_alert.php,
godmode/menu.php: Replaced $id_user with $config['id_user']. Use __a
instead of $lang_label to future use of gettext. Style
corrections.
* godmode/agentes/planned_downtime.php: Rewritten to use Pandora
functions and adopt the UI style. Replaced lang_string with __().
* pandoradb.sql: Fields in tplanned_downtime renamed to fit
guidelines.
git-svn-id: https://svn.code.sf.net/p/pandora/code/trunk@1005 c3f86ba8-e40f-0410-aaad-9ba5e7f4b01f
2008-08-11 12:59:07 +02:00
|
|
|
check_login ();
|
2007-02-05 18:45:14 +01:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
if (! give_acl ($config["id_user"], 0, "IR")) {
|
2007-02-05 18:45:14 +01:00
|
|
|
// Doesn't have access to this page
|
2008-09-19 18:08:59 +02:00
|
|
|
audit_db ($config["id_user"], $REMOTE_ADDR, "ACL Violation", "Trying to access incident details");
|
2007-02-05 18:45:14 +01:00
|
|
|
include ("general/noaccess.php");
|
|
|
|
|
exit;
|
|
|
|
|
}
|
|
|
|
|
|
2008-11-10 18:35:27 +01:00
|
|
|
$inicio = date('Y-m-d H:i:s');
|
|
|
|
|
$actualizacion = date('Y-m-d H:i:s');
|
|
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
// EDITION MODE
|
2008-08-11 Esteban Sanchez <estebans@artica.es>
* include/functions_db.php: Added __ as an alias of lang_string().
* include/functions_reporting_pdf.php,
include/functions_reporting.php, include/functions.php,
include/functions_visual_map.php, index.php,
operation/incidents/incident.php,
operation/incidents/incident_detail.php,
operation/incidents/incident_note.php,
operation/incidents/incident_search.php,
operation/incidents/incident_statistics.php,
operation/snmpconsole/snmp_alert.php,
operation/snmpconsole/snmp_view.php, operation/users/user.php,
operation/users/user_edit.php, operation/users/user_statistics.php,
operation/events/event_statistics.php, operation/events/events.php,
operation/visual_console/render_view.php,
operation/visual_console/index.php, operation/extensions.php,
operation/agentes/estado_alertas.php,
operation/agentes/status_monitor.php,
operation/agentes/estado_grupo.php, operation/agentes/export_csv.php,
operation/agentes/datos_agente.php,
operation/agentes/estado_ultimopaquete.php,
operation/agentes/estado_generalagente.php,
operation/agentes/estado_agente.php, operation/agentes/bulbs.php,
operation/agentes/status_events.php, operation/agentes/sla_view.php,
operation/agentes/exportdata.php,
operation/agentes/estado_monitores.php,
operation/agentes/ver_agente.php, operation/agentes/estadisticas.php,
operation/agentes/tactical.php, operation/agentes/networkmap.php,
operation/messages/message.php,
operation/reporting/reporting_viewer.php,
operation/reporting/graph_viewer.php,
operation/reporting/custom_reporting.php,
operation/servers/view_server.php,
operation/servers/view_server_detail.php, operation/menu.php,
reporting/fgraph.php, reporting/stat_win.php, ajax.php,
general/logoff.php, general/pandora_help.php, general/footer.php,
general/noaccess.php, general/logon_failed.php,
general/links_menu.php, general/login_page.php, general/logon_ok.php,
general/header.php, general/main_menu.php,
godmode/groups/configure_group.php, godmode/groups/group_list.php,
godmode/setup/news.php, godmode/setup/links.php,
godmode/setup/setup.php, godmode/users/user_list.php,
godmode/users/configure_user.php, godmode/profiles/profile_list.php,
godmode/admin_access_logs.php, godmode/db/db_info_data.php,
godmode/db/db_main.php, godmode/db/db_audit.php,
godmode/db/db_sanity.php, godmode/db/db_refine.php,
godmode/db/db_info.php, godmode/db/db_event.php,
godmode/db/db_purge.php, godmode/extensions.php,
godmode/agentes/agent_template.php,
godmode/agentes/module_manager_editor_network.php,
godmode/agentes/module_manager_editor_wmi.php,
godmode/agentes/alert_manager.php,
godmode/agentes/module_manager_editor_plugin.php,
godmode/agentes/module_manager_editor_prediction.php,
godmode/agentes/alert_manager_editor.php,
godmode/agentes/manage_config.php,
godmode/agentes/module_manager_editor_data.php,
godmode/agentes/module_manager.php,
godmode/agentes/modificar_agente.php,
godmode/agentes/configurar_agente.php,
godmode/agentes/agent_disk_conf_editor.php,
godmode/agentes/planned_downtime.php,
godmode/agentes/manage_config_remote.php,
godmode/agentes/agent_manager.php,
godmode/modules/manage_network_components_form.php,
godmode/modules/manage_nc_groups_form.php,
godmode/modules/manage_network_templates.php,
godmode/modules/module_list.php,
godmode/modules/manage_network_templates_form.php,
godmode/modules/manage_network_components_form_network.php,
godmode/modules/manage_network_components_form_wmi.php,
godmode/modules/manage_network_components.php,
godmode/modules/manage_nc_groups.php,
godmode/reporting/reporting_builder.php,
godmode/reporting/map_builder.php,
godmode/reporting/graph_builder.php, godmode/servers/plugin.php,
godmode/servers/manage_recontask.php,
godmode/servers/modificar_server.php,
godmode/servers/manage_recontask_form.php,
godmode/alerts/modify_alert.php, godmode/alerts/configure_alert.php,
godmode/menu.php: Replaced $id_user with $config['id_user']. Use __a
instead of $lang_label to future use of gettext. Style
corrections.
* godmode/agentes/planned_downtime.php: Rewritten to use Pandora
functions and adopt the UI style. Replaced lang_string with __().
* pandoradb.sql: Fields in tplanned_downtime renamed to fit
guidelines.
git-svn-id: https://svn.code.sf.net/p/pandora/code/trunk@1005 c3f86ba8-e40f-0410-aaad-9ba5e7f4b01f
2008-08-11 12:59:07 +02:00
|
|
|
if (isset ($_GET["id"])) {
|
2008-09-19 18:08:59 +02:00
|
|
|
$id_inc = get_parameter_get ("id");
|
|
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
// Obtain group of this incident
|
2008-09-19 18:08:59 +02:00
|
|
|
$row = get_db_row ("tincidencia","id_incidencia",$id_inc);
|
|
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
// Get values
|
|
|
|
|
$titulo = $row["titulo"];
|
|
|
|
|
$texto = $row["descripcion"];
|
|
|
|
|
$inicio = $row["inicio"];
|
|
|
|
|
$actualizacion = $row["actualizacion"];
|
|
|
|
|
$estado = $row["estado"];
|
|
|
|
|
$prioridad = $row["prioridad"];
|
|
|
|
|
$origen = $row["origen"];
|
|
|
|
|
$usuario = $row["id_usuario"];
|
|
|
|
|
$id_grupo = $row["id_grupo"];
|
|
|
|
|
$id_creator = $row["id_creator"];
|
2008-09-19 18:08:59 +02:00
|
|
|
$upd_sql = sprintf ("UPDATE tincidencia SET actualizacion = NOW(), id_usuario = '%s' WHERE id_incidencia = %d", $usuario, $id_inc);
|
|
|
|
|
// Note add - everybody that can read incidents, can add notes
|
|
|
|
|
if (isset ($_GET["insertar_nota"])) {
|
|
|
|
|
$nota = get_parameter_post ("nota");
|
|
|
|
|
|
|
|
|
|
$sql = sprintf ("INSERT INTO tnota (id_usuario, timestamp, nota) VALUES ('%s',NOW(),'%s')",$config["id_user"],$nota);
|
|
|
|
|
$id_nota = process_sql ($sql, "insert_id");
|
|
|
|
|
|
|
|
|
|
if ($id_nota !== false) {
|
|
|
|
|
echo '<h3 class="suc">'.__('Note successfully added').'</h3>';
|
|
|
|
|
$sql = sprintf ("INSERT INTO tnota_inc (id_incidencia, id_nota) VALUES (%d,%d)", $id_inc, $id_nota);
|
|
|
|
|
process_sql ($sql);
|
|
|
|
|
process_sql ($upd_sql); //Update tincidencia
|
|
|
|
|
} else {
|
|
|
|
|
echo '<h3 class="error">'.__('Error adding note').'</h3>';
|
|
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Delete note
|
2008-09-19 18:08:59 +02:00
|
|
|
if (isset ($_GET["id_nota"])) {
|
|
|
|
|
$id_nota = get_parameter_get ("id_nota");
|
|
|
|
|
$note_user = give_note_author ($id_nota);
|
|
|
|
|
if (((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($note_user == $config["id_user"])) OR ($id_creator == $config["id_user"]) ) {
|
|
|
|
|
// Only admins (manage incident) or owners can modify
|
|
|
|
|
// incidents, including their notes. note authors are
|
|
|
|
|
// able to delete their own notes
|
|
|
|
|
$sql = sprintf ("DELETE FROM tnota WHERE id_nota = %d",$id_nota);
|
|
|
|
|
$result = process_sql ($sql); //Result is 0 or false if the note wasn't deleted, therefore check with empty
|
|
|
|
|
|
|
|
|
|
if (!empty ($result)) {
|
|
|
|
|
$sql = sprintf ("DELETE FROM tnota_inc WHERE id_nota = %d",$id_nota);
|
|
|
|
|
$result = process_sql ($sql);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!empty ($result)) {
|
|
|
|
|
process_sql ($upd_sql); //Update tincidencia
|
|
|
|
|
echo '<h3 class="suc">'.__('Note successfully deleted').'</h3>';
|
|
|
|
|
} else {
|
|
|
|
|
echo '<h3 class="error">'.__('Error deleting note').'<h3>';
|
2007-05-27 04:55:55 +02:00
|
|
|
}
|
2006-10-08 16:04:10 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Delete file
|
2008-09-19 18:08:59 +02:00
|
|
|
if (((give_acl ($config["id_user"], $id_grupo, "IM")==1) OR ($id_creator == $config["id_user"])) AND isset ($_GET["delete_file"])) {
|
|
|
|
|
$file_id = get_parameter_get ("delete_file");
|
|
|
|
|
$sql = sprintf ("SELECT filename FROM tattachment WHERE id_attachment = %d",$file_id);
|
|
|
|
|
$filename = get_db_sql ($sql);
|
|
|
|
|
if (!empty ($filename)) {
|
|
|
|
|
$sql = sprintf ("DELETE FROM tattachment WHERE id_attachment = %d",$file_id);
|
|
|
|
|
$result = process_sql ($sql);
|
|
|
|
|
} else {
|
|
|
|
|
echo '<h3 class="error">'.__('Could not find file in database').'</h3>';
|
|
|
|
|
$result = false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!empty ($result)) {
|
|
|
|
|
unlink ($config["attachment_store"]."/pand".$file_id."_".$filename);
|
|
|
|
|
process_sql ($upd_sql); //Update tincidencia
|
|
|
|
|
echo '<h3 class="suc">'.__('File successfully deleted from database').'</h3>';
|
|
|
|
|
} else {
|
|
|
|
|
echo '<h3 class="error"'.__('Unable to delete file').'</h3>';
|
|
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Upload file
|
2008-09-19 18:08:59 +02:00
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IW") == 1) AND isset ($_GET["upload_file"]) AND ($_FILES['userfile']['name'] != "")) { //if file
|
|
|
|
|
if (isset ($_POST["file_description"])) {
|
|
|
|
|
$description = get_parameter_post ("file_description");
|
|
|
|
|
} else {
|
|
|
|
|
$description = __("No description available");
|
|
|
|
|
}
|
|
|
|
|
// Insert into database
|
|
|
|
|
$filename = safe_input ($_FILES['userfile']['name']);
|
|
|
|
|
$filesize = safe_input ($_FILES['userfile']['size']);
|
|
|
|
|
|
|
|
|
|
//The following is if you have clamavlib installed
|
|
|
|
|
//(php5-clamavlib) and enabled in php.ini
|
|
|
|
|
//http://www.howtoforge.com/scan_viruses_with_php_clamavlib
|
|
|
|
|
if(extension_loaded ('clamav')) {
|
|
|
|
|
cl_setlimits (5, 1000, 200, 0, 10485760);
|
|
|
|
|
$malware = cl_scanfile ($_FILES['file']['tmp_name']);
|
|
|
|
|
if ($malware) {
|
|
|
|
|
$error = 'Malware detected: '.$malware.'<br>ClamAV version: '.clam_get_version();
|
|
|
|
|
die ($error); //On malware, we die because it's not good to handle it
|
2006-10-08 16:04:10 +02:00
|
|
|
}
|
|
|
|
|
}
|
2008-09-19 18:08:59 +02:00
|
|
|
|
|
|
|
|
$sql = sprintf ("INSERT INTO tattachment (id_incidencia, id_usuario, filename, description, size)
|
|
|
|
|
VALUES (%d, '%s', '%s', '%s', %d)", $id_inc, $config["id_user"],$filename,$description,$filesize);
|
|
|
|
|
|
|
|
|
|
$id_attachment = process_sql ($sql,"insert_id");
|
|
|
|
|
|
|
|
|
|
// Copy file to directory and change name
|
|
|
|
|
if ($id_attachment !== false) {
|
|
|
|
|
$nombre_archivo = $config["attachment_store"]."/pand".$id_attachment."_".$filename;
|
|
|
|
|
$result = copy ($_FILES['userfile']['tmp_name'], $nombre_archivo);
|
|
|
|
|
} else {
|
|
|
|
|
echo '<h3 class="error">'.__('File could not be saved due to database error').'</h3>';
|
|
|
|
|
$result = false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($result !== false) {
|
|
|
|
|
unlink ($_FILES['userfile']['tmp_name']);
|
|
|
|
|
process_sql ($upd_sql); //Update tincidencia
|
|
|
|
|
echo '<h3 class="suc">'.__('File uploaded').'</h3>';
|
|
|
|
|
} else {
|
|
|
|
|
echo '<h3 class="error">'.__('File could not be saved. Contact the Pandora Administrator for more information').'</h3>';
|
|
|
|
|
process_sql ("DELETE FROM tattachment WHERE id_attachment = ".$id_attachment);
|
|
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2007-02-06 16:38:29 +01:00
|
|
|
} // else Not given id
|
|
|
|
|
// Create incident from event... read event data
|
2008-09-19 18:08:59 +02:00
|
|
|
elseif (isset ($_GET["insert_form"])) {
|
|
|
|
|
$titulo = "";
|
|
|
|
|
$descripcion = "";
|
|
|
|
|
$origen = "";
|
|
|
|
|
$prioridad = 0;
|
|
|
|
|
$id_grupo = 0;
|
|
|
|
|
$estado = 0;
|
|
|
|
|
$texto = "";
|
|
|
|
|
$usuario = $config["id_user"];
|
|
|
|
|
$id_creator = $config["id_user"];
|
|
|
|
|
|
|
|
|
|
if (isset($_GET["from_event"])) {
|
|
|
|
|
$event = get_parameter_get ("from_event");
|
|
|
|
|
$titulo = return_event_description ($event);
|
|
|
|
|
$descripcion = "";
|
|
|
|
|
$origen = "Pandora FMS event";
|
|
|
|
|
unset ($event);
|
|
|
|
|
}
|
|
|
|
|
$prioridad = 0;
|
|
|
|
|
$id_grupo = 0;
|
2007-02-06 16:38:29 +01:00
|
|
|
} else {
|
2008-09-19 18:08:59 +02:00
|
|
|
audit_db ($config['id_user'],$REMOTE_ADDR, "HACK","Trying to get to incident details in an unusual way");
|
|
|
|
|
no_permission ();
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
|
|
|
|
|
2007-02-06 16:38:29 +01:00
|
|
|
|
|
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
// ********************************************************************************************************
|
|
|
|
|
// ********************************************************************************************************
|
|
|
|
|
// Show the form
|
|
|
|
|
// ********************************************************************************************************
|
|
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
//This is for the pretty slide down attachment form
|
|
|
|
|
echo '<script type="text/javascript" src="include/javascript/jquery.js"></script>';
|
|
|
|
|
echo "<script type=\"text/javascript\">
|
|
|
|
|
$(document).ready(function() {
|
|
|
|
|
$('#file_control').hide();
|
|
|
|
|
$('#add_note').hide();
|
|
|
|
|
$('input#submit-attachment').click(function() {
|
|
|
|
|
$('#submit-attachment').fadeOut('fast');
|
|
|
|
|
$('#file_control').slideDown('slow');
|
|
|
|
|
return false;
|
|
|
|
|
});
|
|
|
|
|
$('input#submit-note_control').click(function() {
|
|
|
|
|
$('#submit-note_control').fadeOut('fast');
|
|
|
|
|
$('#add_note').slideDown('slow');
|
|
|
|
|
return false;
|
|
|
|
|
});
|
|
|
|
|
});</script>";
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
if (isset ($id_inc)) { //If $id_inc is set (when $_GET["id"] is set, not $_GET["insert_form"]
|
|
|
|
|
echo '<form name="accion_form" method="POST" action="index.php?sec=incidencias&sec2=operation/incidents/incident&action=update">';
|
|
|
|
|
echo '<input type="hidden" name="id_inc" value="'.$id_inc.'">';
|
|
|
|
|
echo '<h2>'.__('Incident management').' > '.__('Incident details').' #'.$id_inc.'</h2>';
|
2007-02-05 18:45:14 +01:00
|
|
|
} else {
|
2008-09-19 18:08:59 +02:00
|
|
|
echo '<form name="accion_form" method="POST" action="index.php?sec=incidencias&sec2=operation/incidents/incident&action=insert">';
|
|
|
|
|
echo '<h2>'.__('Incident management').' > '.__('Create incident').'</h2>';
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2008-09-19 18:08:59 +02:00
|
|
|
|
|
|
|
|
echo '<table cellpadding="4" cellspacing="4" class="databox" width="650px">';
|
|
|
|
|
echo '<tr><td class="datos"><b>'.__('Incident').'</b></td><td colspan="3" class="datos">';
|
|
|
|
|
|
|
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($usuario == $config["id_user"])) {
|
|
|
|
|
print_input_text ("titulo", $titulo,'', 70);
|
2007-05-28 21:15:44 +02:00
|
|
|
} else {
|
2008-09-19 18:08:59 +02:00
|
|
|
print_input_text_extended ("titulo", $titulo, "", "", 70, "", false, "", "readonly");
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2008-09-19 18:08:59 +02:00
|
|
|
|
|
|
|
|
echo '</td></tr>';
|
|
|
|
|
|
|
|
|
|
echo '<tr><td class="datos2"><b>'.__('Opened at').'</b></td><td class="datos2"><i>'.date ($config['date_format'],strtotime ($inicio)).'</i></td>';
|
|
|
|
|
echo '<td class="datos2"><b>'.__('Updated at').'</b><td class="datos2"><i>'.date ($config['date_format'],strtotime ($actualizacion)).'</i></td></tr>';
|
|
|
|
|
|
|
|
|
|
echo '<tr><td class="datos"><b>'.__('Owner').'</b></td><td class="datos">';
|
|
|
|
|
|
|
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($usuario == $config["id_user"])) {
|
|
|
|
|
print_select (list_users (), "usuario_form", $usuario, '', 'SYSTEM', '', false, false, true, "w135");
|
2007-04-18 23:45:03 +02:00
|
|
|
} else {
|
2008-09-19 18:08:59 +02:00
|
|
|
print_select (list_users (), "usuario_form", $usuario, '', 'SYSTEM', '', false, false, true, "w135", true);
|
2007-04-18 23:45:03 +02:00
|
|
|
}
|
2008-09-19 18:08:59 +02:00
|
|
|
echo '</td><td class="datos"><b>'.__('Status').'</b></td><td class="datos">';
|
2007-02-05 18:45:14 +01:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
$fields = array ();
|
|
|
|
|
$fields[0] = __('Open and Active');
|
|
|
|
|
$fields[2] = __('Not valid');
|
|
|
|
|
$fields[3] = __('Out of date');
|
|
|
|
|
$fields[13] = __('Closed');
|
|
|
|
|
|
|
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($usuario == $config["id_user"])) {
|
|
|
|
|
print_select ($fields, "estado_form", $estado, '', '', '', false, false, false, 'w135');
|
|
|
|
|
} else {
|
|
|
|
|
print_select ($fields, "estado_form", $estado, '', '', '', false, false, false, 'w135', true);
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2008-09-19 18:08:59 +02:00
|
|
|
echo '</td></tr>';
|
|
|
|
|
|
|
|
|
|
echo '<tr><td class="datos2"><b>'.__('Source').'</b></td><td class="datos2">';
|
2007-02-05 18:45:14 +01:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
$fields = array ();
|
|
|
|
|
$return = get_db_all_rows_sql ("SELECT origen FROM torigen ORDER BY origen");
|
|
|
|
|
if ($return === false)
|
|
|
|
|
$return[0] = $estado; //Something must be displayed
|
|
|
|
|
|
|
|
|
|
foreach ($return as $row) {
|
|
|
|
|
$fields[$row["origen"]] = $row["origen"];
|
|
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
|
|
|
|
|
// Only owner could change source or user with Incident management privileges
|
2008-09-19 18:08:59 +02:00
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($usuario == $config["id_user"])) {
|
2008-11-10 18:35:27 +01:00
|
|
|
print_select ($fields, "origen_form", $estado, '', '', '', false, false, false, 'w135');
|
2007-04-18 23:45:03 +02:00
|
|
|
} else {
|
2008-11-10 18:35:27 +01:00
|
|
|
print_select ($fields, "origen_form", $estado, '', '', '', false, false, false, 'w135', true);
|
2007-04-18 23:45:03 +02:00
|
|
|
}
|
2008-09-19 18:08:59 +02:00
|
|
|
echo '</td><td class="datos2"><b>'.__('Group').'</b></td><td class="datos2">';
|
2007-02-05 18:45:14 +01:00
|
|
|
|
|
|
|
|
// Group combo
|
2008-09-19 18:08:59 +02:00
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($usuario == $config["id_user"])) {
|
|
|
|
|
print_select (get_user_groups (), "grupo_form", $id_grupo, '', '', '', false, false, false, 'w135');
|
2007-04-18 23:45:03 +02:00
|
|
|
} else {
|
2008-09-19 18:08:59 +02:00
|
|
|
print_select (get_user_groups (), "grupo_form", $id_grupo, '', '', '', false, false, true, 'w135', true);
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
|
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
echo '</td></tr><tr><td class="datos"><b>'.__('Priority').'</b></td><td class="datos">';
|
|
|
|
|
|
|
|
|
|
$fields = array();
|
|
|
|
|
$fields[0] = __('Informative');
|
|
|
|
|
$fields[1] = __('Low');
|
|
|
|
|
$fields[2] = __('Medium');
|
|
|
|
|
$fields[3] = __('Serious');
|
|
|
|
|
$fields[4] = __('Very serious');
|
|
|
|
|
$fields[10] = __('Maintenance');
|
|
|
|
|
|
|
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($usuario == $config["id_user"])) {
|
|
|
|
|
print_select ($fields, "prioridad_form", $prioridad, '', '', '', false, false, false, 'w135');
|
2007-04-18 23:45:03 +02:00
|
|
|
} else {
|
2008-09-19 18:08:59 +02:00
|
|
|
print_select ($fields, "prioridad_form", $prioridad, '', '', '', false, false, false, 'w135', true);
|
2007-04-18 23:45:03 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
echo '</td><td class="datos"><b>'.__('Creator').'</b></td><td class="datos">';
|
|
|
|
|
if (empty ($id_creator)) {
|
|
|
|
|
echo 'SYSTEM';
|
|
|
|
|
} else {
|
|
|
|
|
echo $id_creator.' (<i>'.dame_nombre_real ($id_creator).'</i>)';
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
|
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
echo '</td></tr><tr><td class="datos2" colspan="4">';
|
2007-02-05 18:45:14 +01:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($usuario == $config["id_user"])) {
|
|
|
|
|
print_textarea ("descripcion", 15, 80, safe_input ($texto), 'style="height:200px;"');
|
2007-04-18 23:45:03 +02:00
|
|
|
} else {
|
2008-09-19 18:08:59 +02:00
|
|
|
print_textarea ("descripcion", 15, 80, safe_input ($texto), 'style="height:200px;" disabled');
|
2007-04-18 23:45:03 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
echo '</td></tr></table><div style="width: 600px; text-align:right;">';
|
2007-02-05 18:45:14 +01:00
|
|
|
// Only if user is the used who opened incident or (s)he is admin
|
|
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
if (isset ($id_inc) AND (give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($usuario == $config["id_user"])) {
|
|
|
|
|
print_submit_button (__('Update incident'), "accion", false, 'class="sub upd"');
|
|
|
|
|
} elseif (give_acl ($config["id_user"], $id_grupo, "IW")) {
|
|
|
|
|
print_submit_button (__('Create'), "accion", false, 'class="sub wand"');
|
|
|
|
|
} else {
|
|
|
|
|
print_submit_button (__('Submit'), "accion", true, 'class="sub upd"');
|
|
|
|
|
}
|
|
|
|
|
echo "</div></form>";
|
|
|
|
|
|
|
|
|
|
if (isset ($id_inc)) {
|
2008-11-10 18:35:27 +01:00
|
|
|
echo '<div>';
|
|
|
|
|
print_submit_button (__('Add note'), "note_control", false, 'class="sub next"');
|
|
|
|
|
echo '</div><div>';
|
|
|
|
|
echo '<form id="add_note" name="nota" method="POST" action="index.php?sec=incidencias&sec2=operation/incidents/incident_detail&insertar_nota=1&id='.$id_inc.'">';
|
|
|
|
|
echo '<table cellpadding="4" cellspacing="4" class="databox" width="600px">
|
|
|
|
|
<tr><td class="datos2"><textarea name="nota" rows="5" cols="70" style="height: 100px;"></textarea></td>
|
|
|
|
|
<td valign="bottom"><input name="addnote" type="submit" class="sub wand" value="'.__('Add').'"></td></tr>
|
|
|
|
|
</table></form></div><div>';
|
|
|
|
|
|
|
|
|
|
// ********************************************************************
|
|
|
|
|
// Notes
|
|
|
|
|
// ********************************************************************
|
|
|
|
|
|
|
|
|
|
if (isset ($id_inc)) {
|
|
|
|
|
$sql = sprintf ("SELECT tnota.* FROM tnota, tnota_inc WHERE tnota_inc.id_incidencia = '%d' AND tnota.id_nota = tnota_inc.id_nota",$id_inc);
|
|
|
|
|
$result = get_db_all_rows_sql ($sql);
|
|
|
|
|
} else {
|
|
|
|
|
$result = array ();
|
|
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
|
2008-11-10 18:35:27 +01:00
|
|
|
if (empty ($result)) {
|
|
|
|
|
$result = array ();
|
|
|
|
|
} else {
|
|
|
|
|
echo "<h3>".__('Notes attached to incident').'<h3>';
|
|
|
|
|
}
|
2008-09-19 18:08:59 +02:00
|
|
|
|
2008-11-10 18:35:27 +01:00
|
|
|
echo '<table cellpadding="4" cellspacing="4" class="databox" width="600px">';
|
|
|
|
|
foreach ($result as $row) {
|
|
|
|
|
echo '<tr><td><img src="images/page_white_text.png" border="0"></td>';
|
|
|
|
|
echo '<td>'.__('Author').': <a href="index.php?sec=usuario&sec2=operation/users/user_edit&ver='.$row["id_usuario"].'">'.dame_nombre_real ($row["id_usuario"]).'</a> ('.date ($config['date_format'],strtotime ($row["timestamp"])).')</td></tr>';
|
|
|
|
|
echo '<tr><td>';
|
|
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($row["id_usuario"] == $config["id_user"])) {
|
|
|
|
|
echo '<a href="index.php?sec=incidencias&sec2=operation/incidents/incident_detail&id='.$id_inc.'&id_nota='.$row["id_nota"].'"><img src="images/cross.png" border="0"></a>';
|
|
|
|
|
}
|
|
|
|
|
echo '</td><td>'.safe_input ($row["nota"]).'</td></tr>';
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2008-11-10 18:35:27 +01:00
|
|
|
echo '</table>';
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2008-09-19 18:08:59 +02:00
|
|
|
|
|
|
|
|
// ************************************************************
|
|
|
|
|
// Files attached to this incident
|
|
|
|
|
// ************************************************************
|
|
|
|
|
|
|
|
|
|
// Attach head if there's attach for this incident
|
|
|
|
|
if (isset ($id_inc)) {
|
|
|
|
|
$result = get_db_all_rows_field_filter ("tattachment", "id_incidencia", $id_inc, "filename");
|
|
|
|
|
} else {
|
|
|
|
|
$result = array ();
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
|
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
if (empty ($result)) {
|
|
|
|
|
$result = array ();
|
|
|
|
|
} else {
|
|
|
|
|
echo "<h3>".__('Attached files')."</h3>";
|
|
|
|
|
}
|
2007-06-21 20:58:35 +02:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
$table->cellpadding = 4;
|
|
|
|
|
$table->cellspacing = 4;
|
|
|
|
|
$table->class = "databox";
|
|
|
|
|
$table->width = 650;
|
|
|
|
|
$table->head = array ();
|
|
|
|
|
$table->data = array ();
|
|
|
|
|
|
|
|
|
|
$table->head[0] = __('Filename');
|
|
|
|
|
$table->head[1] = __('Description');
|
|
|
|
|
$table->head[2] = __('Size');
|
|
|
|
|
$table->head[3] = __('Delete');
|
|
|
|
|
|
|
|
|
|
$table->align[2] = "center";
|
|
|
|
|
$table->align[3] = "center";
|
|
|
|
|
|
|
|
|
|
foreach ($result as $row) {
|
|
|
|
|
$data[0] = '<img src="images/disk.png" border="0" align="top" /> <a target="_new" href="attachment/pand'.$row["id_attachment"].'_'.$row["filename"].'"><b>'.$row["filename"].'</b></a>';
|
|
|
|
|
$data[1] = $row["description"];
|
|
|
|
|
$data[2] = $row["size"]." KB";
|
|
|
|
|
if ((give_acl ($config["id_user"], $id_grupo, "IM") == 1) OR ($usuario == $config["id_user"])) {
|
|
|
|
|
$data[3] = '<a href="index.php?sec=incidencias&sec2=operation/incidents/incident_detail&id='.$id_inc.'&delete_file='.$row["id_attachment"].'"><img src="images/cross.png" border=0 /></a>';
|
|
|
|
|
} else {
|
|
|
|
|
$data[3] = '';
|
2007-06-21 20:58:35 +02:00
|
|
|
}
|
2008-09-19 18:08:59 +02:00
|
|
|
array_push ($table->data, $data);
|
|
|
|
|
}
|
2007-06-21 20:58:35 +02:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
if (!empty ($table->data)) {
|
|
|
|
|
print_table ($table);
|
|
|
|
|
}
|
|
|
|
|
unset ($table);
|
|
|
|
|
|
|
|
|
|
// ************************************************************
|
|
|
|
|
// Upload control
|
|
|
|
|
// ************************************************************
|
|
|
|
|
|
2008-11-10 18:35:27 +01:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
// Upload control
|
2008-11-10 18:35:27 +01:00
|
|
|
if ((give_acl($config["id_user"], $id_grupo, "IW")==1) AND (isset ($id_inc))) {
|
2008-09-19 18:08:59 +02:00
|
|
|
echo '<div>';
|
|
|
|
|
print_submit_button (__('Add attachment'), "attachment", false, 'class="sub next"');
|
|
|
|
|
echo '</div>';
|
|
|
|
|
echo '<div><form method="post" id="file_control" action="index.php?sec=incidencias&sec2=operation/incidents/incident_detail&id='.$id_inc.'&upload_file=1" enctype="multipart/form-data">';
|
|
|
|
|
echo '<table cellpadding="4" cellspacing="3" class="databox" width="400">
|
|
|
|
|
<tr><td class="datos">'.__('Filename').'</td><td class="datos"><input type="file" name="userfile" value="userfile" class="sub" size="40" /></td></tr>
|
|
|
|
|
<tr><td class="datos2">'.__('Description').'</td><td class="datos2" colspan="3"><input type="text" name="file_description" size="47"></td></tr>
|
|
|
|
|
<tr><td rowspan="2" style="text-align: right;"> <input type="submit" name="upload" value="'.__('Upload').'" class="sub wand"></td></tr>
|
|
|
|
|
</table></form></div>';
|
2006-10-08 16:04:10 +02:00
|
|
|
|
2008-09-19 18:08:59 +02:00
|
|
|
}
|
2006-10-08 16:04:10 +02:00
|
|
|
?>
|
