pandorafms/pandora_console/include/rest-api/index.php

<?php

global $config;


if (!is_ajax()) {
    return;
}

require_once $config['homedir'].'/vendor/autoload.php';

use Models\VisualConsole\Container as VisualConsole;

$visualConsoleId = (int) get_parameter('visualConsoleId');
$getVisualConsole = (bool) get_parameter('getVisualConsole');
$getVisualConsoleItems = (bool) get_parameter('getVisualConsoleItems');
$updateVisualConsoleItem = (bool) get_parameter('updateVisualConsoleItem');
$getVisualConsoleItem = (bool) get_parameter('getVisualConsoleItem');
$removeVisualConsoleItem = (bool) get_parameter('removeVisualConsoleItem');
$copyVisualConsoleItem = (bool) get_parameter('copyVisualConsoleItem');
$getGroupsVisualConsoleItem = (bool) get_parameter('getGroupsVisualConsoleItem');
$getAllVisualConsole = (bool) get_parameter('getAllVisualConsole');

ob_clean();

// Retrieve the visual console.
$visualConsole = VisualConsole::fromDB(['id' => $visualConsoleId]);
$visualConsoleData = $visualConsole->toArray();
$vcGroupId = $visualConsoleData['groupId'];

// ACL.
$aclRead = check_acl($config['id_user'], $vcGroupId, 'VR');
$aclWrite = check_acl($config['id_user'], $vcGroupId, 'VW');
$aclManage = check_acl($config['id_user'], $vcGroupId, 'VM');

if (!$aclRead && !$aclWrite && !$aclManage) {
    db_pandora_audit(
        'ACL Violation',
        'Trying to access visual console without group access'
    );
    http_response_code(403);
    return;
}

if ($getVisualConsole === true) {
    echo $visualConsole;
    return;
} else if ($getVisualConsoleItems === true) {
    // Check groups can access user.
    $aclUserGroups = [];
    if (!users_can_manage_group_all('AR')) {
        $aclUserGroups = array_keys(users_get_groups(false, 'AR'));
    }

    $vcItems = VisualConsole::getItemsFromDB($visualConsoleId, $aclUserGroups);
    echo '['.implode($vcItems, ',').']';
    return;
} else if ($getVisualConsoleItem === true
    || $updateVisualConsoleItem === true
) {
    $itemId = (int) get_parameter('visualConsoleItemId');

    try {
        $item = VisualConsole::getItemFromDB($itemId);
    } catch (Throwable $e) {
        // Bad params.
        http_response_code(409);
        return;
    }

    $itemData = $item->toArray();
    $itemType = $itemData['type'];
    $itemAclGroupId = $itemData['aclGroupId'];

    // ACL.
    $aclRead = check_acl($config['id_user'], $itemAclGroupId, 'VR');
    $aclWrite = check_acl($config['id_user'], $itemAclGroupId, 'VW');
    $aclManage = check_acl($config['id_user'], $itemAclGroupId, 'VM');

    if (!$aclRead && !$aclWrite && !$aclManage) {
        db_pandora_audit(
            'ACL Violation',
            'Trying to access visual console without group access'
        );
        http_response_code(403);
        return;
    }

    // Check also the group Id for the group item.
    if ($itemType === GROUP_ITEM) {
        $itemGroupId = $itemData['groupId'];
        // ACL.
        $aclRead = check_acl($config['id_user'], $itemGroupId, 'VR');
        $aclWrite = check_acl($config['id_user'], $itemGroupId, 'VW');
        $aclManage = check_acl($config['id_user'], $itemGroupId, 'VM');

        if (!$aclRead && !$aclWrite && !$aclManage) {
            db_pandora_audit(
                'ACL Violation',
                'Trying to access visual console without group access'
            );
            http_response_code(403);
            return;
        }
    }

    if ($getVisualConsoleItem === true) {
        echo $item;
        return;
    } else if ($updateVisualConsoleItem === true) {
        $data = get_parameter('data');
        $data['id'] = $itemId;
        $result = $item->save($data);

        echo $item;
        return;
    }
} else if ($removeVisualConsoleItem === true) {
    $itemId = (int) get_parameter('visualConsoleItemId');

    try {
        $item = VisualConsole::getItemFromDB($itemId);
    } catch (\Throwable $th) {
        // There is no item in the database.
        echo true;
        return;
    }

    $itemData = $item->toArray();
    $itemAclGroupId = $itemData['aclGroupId'];

    $aclWrite = check_acl($config['id_user'], $itemAclGroupId, 'VW');
    $aclManage = check_acl($config['id_user'], $itemAclGroupId, 'VM');

    // ACL.
    if (!$aclWrite && !$aclManage) {
        db_pandora_audit(
            'ACL Violation',
            'Trying to delete visual console item without group access'
        );
        http_response_code(403);
        return;
    }

    $data = get_parameter('data');
    $result = $item::delete($itemId);
    echo $result;
    return;
} else if ($copyVisualConsoleItem === true) {
    $itemId = (int) get_parameter('visualConsoleItemId');

    // Get a copy of the item.
    $item = VisualConsole::getItemFromDB($itemId);
    $data = $item->toArray();
    $data['id_layout'] = $visualConsoleId;
    $data['x'] = ($data['x'] + 20);
    $data['y'] = ($data['y'] + 20);
    unset($data['id']);

    $class = VisualConsole::getItemClass((int) $data['type']);
    try {
        // Save the new item.
        $result = $class::save($data);
    } catch (\Throwable $th) {
        // There is no item in the database.
        echo false;
        return;
    }

    echo $result;
    return;
} else if ($getGroupsVisualConsoleItem === true) {
    $data = users_get_groups_for_select(
        $config['id_user'],
        'AR',
        true,
        true
    );

    $result = array_map(
        function ($id) use ($data) {
            return [
                'value' => $id,
                'text'  => $data[$id],
            ];
        },
        array_keys($data)
    );

    echo json_encode($result);
    return;
} else if ($getAllVisualConsole === true) {
    // Extract all VC except own.
    $result = db_get_all_rows_filter(
        'tlayout',
        'id != '.(int) $visualConsole,
        [
            'id',
            'name',
        ]
    );

    // Extract all VC for each node.
    if (is_metaconsole() === true) {
        enterprise_include_once('include/functions_metaconsole.php');
        $meta_servers = metaconsole_get_servers();
        foreach ($meta_servers as $server) {
            if (metaconsole_load_external_db($server) !== NOERR) {
                metaconsole_restore_db();
                continue;
            }

            $node_visual_maps = db_get_all_rows_filter(
                'tlayout',
                [],
                [
                    'id',
                    'name',
                ]
            );

            if (isset($node_visual_maps) === true
                && is_array($node_visual_maps) === true
            ) {
                foreach ($node_visual_maps as $node_visual_map) {
                    // Add nodeID.
                    $node_visual_map['nodeId'] = (int) $server['id'];

                    // Name = vc_name - (node).
                    $node_visual_map['name'] = $node_visual_map['name'];
                    $node_visual_map['name'] .= ' - (';
                    $node_visual_map['name'] .= $server['server_name'].')';

                    $result[] = $node_visual_map;
                }
            }

            metaconsole_restore_db();
        }
    }

    echo json_encode(io_safe_output($result));
    return;
}

exit;
Visual Console Refactor: added the initial version of the background updates Former-commit-id: 6c859ebebf4882b3e48e9ec5f99570687ec31117 2019-04-11 10:05:28 +02:00			`<?php`

VIsual Console Refactor: bugfix Former-commit-id: f0603f3512dbb224f11d628600857a4b9dbb9f9b 2019-04-16 16:06:56 +02:00			`global $config;`

Add select group form VC 2019-07-31 11:03:13 +02:00
Visual Console Refactor: added the initial version of the background updates Former-commit-id: 6c859ebebf4882b3e48e9ec5f99570687ec31117 2019-04-11 10:05:28 +02:00			`if (!is_ajax()) {`
			`return;`
			`}`

			`require_once $config['homedir'].'/vendor/autoload.php';`

			`use Models\VisualConsole\Container as VisualConsole;`

			`$visualConsoleId = (int) get_parameter('visualConsoleId');`
			`$getVisualConsole = (bool) get_parameter('getVisualConsole');`
			`$getVisualConsoleItems = (bool) get_parameter('getVisualConsoleItems');`
Added save in onItemMoved 2019-06-18 10:13:56 +02:00			`$updateVisualConsoleItem = (bool) get_parameter('updateVisualConsoleItem');`
Update visual console 2019-07-08 17:51:01 +02:00			`$getVisualConsoleItem = (bool) get_parameter('getVisualConsoleItem');`
Added remove item 2019-07-25 17:58:37 +02:00			`$removeVisualConsoleItem = (bool) get_parameter('removeVisualConsoleItem');`
added copy an item 2019-07-31 13:23:25 +02:00			`$copyVisualConsoleItem = (bool) get_parameter('copyVisualConsoleItem');`
Add select group form VC 2019-07-31 11:03:13 +02:00			`$getGroupsVisualConsoleItem = (bool) get_parameter('getGroupsVisualConsoleItem');`
Add new input group visual console linked 2019-08-02 12:24:47 +02:00			`$getAllVisualConsole = (bool) get_parameter('getAllVisualConsole');`
Visual Console Refactor: added the initial version of the background updates Former-commit-id: 6c859ebebf4882b3e48e9ec5f99570687ec31117 2019-04-11 10:05:28 +02:00
			`ob_clean();`

Great improvements into the edition of the visual console items 2019-07-16 16:27:23 +02:00			`// Retrieve the visual console.`
			`$visualConsole = VisualConsole::fromDB(['id' => $visualConsoleId]);`
			`$visualConsoleData = $visualConsole->toArray();`
			`$vcGroupId = $visualConsoleData['groupId'];`

			`// ACL.`
			`$aclRead = check_acl($config['id_user'], $vcGroupId, 'VR');`
			`$aclWrite = check_acl($config['id_user'], $vcGroupId, 'VW');`
			`$aclManage = check_acl($config['id_user'], $vcGroupId, 'VM');`

			`if (!$aclRead && !$aclWrite && !$aclManage) {`
			`db_pandora_audit(`
			`'ACL Violation',`
			`'Trying to access visual console without group access'`
			`);`
			`http_response_code(403);`
			`return;`
			`}`

Visual Console Refactor: added the initial version of the background updates Former-commit-id: 6c859ebebf4882b3e48e9ec5f99570687ec31117 2019-04-11 10:05:28 +02:00			`if ($getVisualConsole === true) {`
Great improvements into the edition of the visual console items 2019-07-16 16:27:23 +02:00			`echo $visualConsole;`
			`return;`
			`} else if ($getVisualConsoleItems === true) {`
			`// Check groups can access user.`
			`$aclUserGroups = [];`
			`if (!users_can_manage_group_all('AR')) {`
			`$aclUserGroups = array_keys(users_get_groups(false, 'AR'));`
			`}`

			`$vcItems = VisualConsole::getItemsFromDB($visualConsoleId, $aclUserGroups);`
			`echo '['.implode($vcItems, ',').']';`
			`return;`
			`} else if ($getVisualConsoleItem === true`
			`\|\| $updateVisualConsoleItem === true`
			`) {`
			`$itemId = (int) get_parameter('visualConsoleItemId');`

			`try {`
			`$item = VisualConsole::getItemFromDB($itemId);`
			`} catch (Throwable $e) {`
			`// Bad params.`
			`http_response_code(409);`
			`return;`
			`}`

			`$itemData = $item->toArray();`
			`$itemType = $itemData['type'];`
			`$itemAclGroupId = $itemData['aclGroupId'];`
Visual Console Refactor: acl improvements Former-commit-id: f2cd4e7dd12a02eb4cee34f5947566ae37c35e9d 2019-04-12 13:12:12 +02:00
			`// ACL.`
Great improvements into the edition of the visual console items 2019-07-16 16:27:23 +02:00			`$aclRead = check_acl($config['id_user'], $itemAclGroupId, 'VR');`
			`$aclWrite = check_acl($config['id_user'], $itemAclGroupId, 'VW');`
			`$aclManage = check_acl($config['id_user'], $itemAclGroupId, 'VM');`
Visual Console Refactor: acl improvements Former-commit-id: f2cd4e7dd12a02eb4cee34f5947566ae37c35e9d 2019-04-12 13:12:12 +02:00
			`if (!$aclRead && !$aclWrite && !$aclManage) {`
			`db_pandora_audit(`
			`'ACL Violation',`
			`'Trying to access visual console without group access'`
			`);`
Great improvements into the edition of the visual console items 2019-07-16 16:27:23 +02:00			`http_response_code(403);`
			`return;`
Visual Console Refactor: acl improvements Former-commit-id: f2cd4e7dd12a02eb4cee34f5947566ae37c35e9d 2019-04-12 13:12:12 +02:00			`}`

Great improvements into the edition of the visual console items 2019-07-16 16:27:23 +02:00			`// Check also the group Id for the group item.`
			`if ($itemType === GROUP_ITEM) {`
Bugfix 2019-07-29 17:45:59 +02:00			`$itemGroupId = $itemData['groupId'];`
Great improvements into the edition of the visual console items 2019-07-16 16:27:23 +02:00			`// ACL.`
			`$aclRead = check_acl($config['id_user'], $itemGroupId, 'VR');`
			`$aclWrite = check_acl($config['id_user'], $itemGroupId, 'VW');`
			`$aclManage = check_acl($config['id_user'], $itemGroupId, 'VM');`

			`if (!$aclRead && !$aclWrite && !$aclManage) {`
			`db_pandora_audit(`
			`'ACL Violation',`
			`'Trying to access visual console without group access'`
			`);`
			`http_response_code(403);`
			`return;`
			`}`
			`}`
Update visual console 2019-07-08 17:51:01 +02:00
Great improvements into the edition of the visual console items 2019-07-16 16:27:23 +02:00			`if ($getVisualConsoleItem === true) {`
			`echo $item;`
			`return;`
			`} else if ($updateVisualConsoleItem === true) {`
			`$data = get_parameter('data');`
added copy an item 2019-07-31 13:23:25 +02:00			`$data['id'] = $itemId;`
Great improvements into the edition of the visual console items 2019-07-16 16:27:23 +02:00			`$result = $item->save($data);`
Update visual console 2019-07-08 17:51:01 +02:00
Great improvements into the edition of the visual console items 2019-07-16 16:27:23 +02:00			`echo $item;`
			`return;`
			`}`
Added remove item 2019-07-25 17:58:37 +02:00			`} else if ($removeVisualConsoleItem === true) {`
			`$itemId = (int) get_parameter('visualConsoleItemId');`
Fixed delete item 2019-07-26 14:17:14 +02:00
			`try {`
			`$item = VisualConsole::getItemFromDB($itemId);`
			`} catch (\Throwable $th) {`
			`// There is no item in the database.`
			`echo true;`
			`return;`
			`}`

item deletion improvements 2019-07-30 11:20:03 +02:00			`$itemData = $item->toArray();`
			`$itemAclGroupId = $itemData['aclGroupId'];`

			`$aclWrite = check_acl($config['id_user'], $itemAclGroupId, 'VW');`
			`$aclManage = check_acl($config['id_user'], $itemAclGroupId, 'VM');`

			`// ACL.`
			`if (!$aclWrite && !$aclManage) {`
			`db_pandora_audit(`
			`'ACL Violation',`
			`'Trying to delete visual console item without group access'`
			`);`
			`http_response_code(403);`
			`return;`
			`}`

Added remove item 2019-07-25 17:58:37 +02:00			`$data = get_parameter('data');`
item deletion improvements 2019-07-30 11:20:03 +02:00			`$result = $item::delete($itemId);`
added copy an item 2019-07-31 13:23:25 +02:00			`echo $result;`
			`return;`
			`} else if ($copyVisualConsoleItem === true) {`
			`$itemId = (int) get_parameter('visualConsoleItemId');`

			`// Get a copy of the item.`
			`$item = VisualConsole::getItemFromDB($itemId);`
			`$data = $item->toArray();`
			`$data['id_layout'] = $visualConsoleId;`
			`$data['x'] = ($data['x'] + 20);`
			`$data['y'] = ($data['y'] + 20);`
			`unset($data['id']);`

			`$class = VisualConsole::getItemClass((int) $data['type']);`
			`try {`
			`// Save the new item.`
			`$result = $class::save($data);`
			`} catch (\Throwable $th) {`
			`// There is no item in the database.`
			`echo false;`
			`return;`
			`}`

Added remove item 2019-07-25 17:58:37 +02:00			`echo $result;`
			`return;`
Add select group form VC 2019-07-31 11:03:13 +02:00			`} else if ($getGroupsVisualConsoleItem === true) {`
			`$data = users_get_groups_for_select(`
			`$config['id_user'],`
			`'AR',`
			`true,`
			`true`
			`);`

			`$result = array_map(`
			`function ($id) use ($data) {`
			`return [`
			`'value' => $id,`
			`'text' => $data[$id],`
			`];`
			`},`
			`array_keys($data)`
			`);`

			`echo json_encode($result);`
			`return;`
Add new input group visual console linked 2019-08-02 12:24:47 +02:00			`} else if ($getAllVisualConsole === true) {`
			`// Extract all VC except own.`
			`$result = db_get_all_rows_filter(`
			`'tlayout',`
			`'id != '.(int) $visualConsole,`
			`[`
			`'id',`
			`'name',`
			`]`
			`);`

			`// Extract all VC for each node.`
			`if (is_metaconsole() === true) {`
			`enterprise_include_once('include/functions_metaconsole.php');`
			`$meta_servers = metaconsole_get_servers();`
			`foreach ($meta_servers as $server) {`
			`if (metaconsole_load_external_db($server) !== NOERR) {`
			`metaconsole_restore_db();`
			`continue;`
			`}`

			`$node_visual_maps = db_get_all_rows_filter(`
			`'tlayout',`
			`[],`
			`[`
			`'id',`
			`'name',`
			`]`
			`);`

			`if (isset($node_visual_maps) === true`
			`&& is_array($node_visual_maps) === true`
			`) {`
			`foreach ($node_visual_maps as $node_visual_map) {`
			`// Add nodeID.`
			`$node_visual_map['nodeId'] = (int) $server['id'];`

			`// Name = vc_name - (node).`
			`$node_visual_map['name'] = $node_visual_map['name'];`
			`$node_visual_map['name'] .= ' - (';`
			`$node_visual_map['name'] .= $server['server_name'].')';`

			`$result[] = $node_visual_map;`
			`}`
			`}`

			`metaconsole_restore_db();`
			`}`
			`}`

			`echo json_encode(io_safe_output($result));`
			`return;`
Visual Console Refactor: added the initial version of the background updates Former-commit-id: 6c859ebebf4882b3e48e9ec5f99570687ec31117 2019-04-11 10:05:28 +02:00			`}`

			`exit;`