2010-09-03 09:20:39 +02:00
|
|
|
<?php
|
2021-02-12 11:28:13 +01:00
|
|
|
/**
|
|
|
|
* View for Add profiles in Massive Operations
|
|
|
|
*
|
|
|
|
* @category Configuration
|
|
|
|
* @package Pandora FMS
|
|
|
|
* @subpackage Massive Operations
|
|
|
|
* @version 1.0.0
|
|
|
|
* @license See below
|
|
|
|
*
|
|
|
|
* ______ ___ _______ _______ ________
|
|
|
|
* | __ \.-----.--.--.--| |.-----.----.-----. | ___| | | __|
|
|
|
|
* | __/| _ | | _ || _ | _| _ | | ___| |__ |
|
|
|
|
* |___| |___._|__|__|_____||_____|__| |___._| |___| |__|_|__|_______|
|
|
|
|
*
|
|
|
|
* ============================================================================
|
2023-06-08 11:53:13 +02:00
|
|
|
* Copyright (c) 2005-2023 Pandora FMS
|
2021-02-12 11:28:13 +01:00
|
|
|
* Please see http://pandorafms.org for full contribution list
|
|
|
|
* This program is free software; you can redistribute it and/or
|
|
|
|
* modify it under the terms of the GNU General Public License
|
|
|
|
* as published by the Free Software Foundation for version 2.
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
* ============================================================================
|
|
|
|
*/
|
|
|
|
|
|
|
|
// Begin.
|
2019-01-30 16:18:44 +01:00
|
|
|
check_login();
|
|
|
|
|
2020-09-23 11:36:15 +02:00
|
|
|
if (!check_acl($config['id_user'], 0, 'UM')) {
|
2019-01-30 16:18:44 +01:00
|
|
|
db_pandora_audit(
|
2022-01-20 10:55:23 +01:00
|
|
|
AUDIT_LOG_ACL_VIOLATION,
|
2019-01-30 16:18:44 +01:00
|
|
|
'Trying to access massive profile addition'
|
|
|
|
);
|
|
|
|
include 'general/noaccess.php';
|
|
|
|
return;
|
2010-09-03 09:20:39 +02:00
|
|
|
}
|
|
|
|
|
2021-05-31 17:32:53 +02:00
|
|
|
if (is_management_allowed() === false) {
|
2021-09-23 11:16:48 +02:00
|
|
|
if (is_metaconsole() === false) {
|
|
|
|
$url = '<a target="_blank" href="'.ui_get_meta_url(
|
|
|
|
'index.php?sec=advanced&sec2=advanced/users_setup&tab=profile&pure='.(int) $config['pure']
|
|
|
|
).'">'.__('metaconsole').'</a>';
|
|
|
|
} else {
|
|
|
|
$url = __('any node');
|
|
|
|
}
|
|
|
|
|
2021-05-31 17:32:53 +02:00
|
|
|
ui_print_warning_message(
|
2021-06-24 19:48:07 +02:00
|
|
|
__(
|
|
|
|
'This node is configured with centralized mode. All profiles user information is read only. Go to %s to manage it.',
|
2021-09-23 11:16:48 +02:00
|
|
|
$url
|
2021-06-24 19:48:07 +02:00
|
|
|
)
|
2021-05-31 17:32:53 +02:00
|
|
|
);
|
|
|
|
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
require_once 'include/functions_agents.php';
|
|
|
|
require_once 'include/functions_alerts.php';
|
|
|
|
require_once $config['homedir'].'/include/functions_profile.php';
|
|
|
|
require_once $config['homedir'].'/include/functions_users.php';
|
2010-09-03 09:20:39 +02:00
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
$create_profiles = (int) get_parameter('create_profiles');
|
2010-09-03 09:20:39 +02:00
|
|
|
|
2022-02-24 12:17:21 +01:00
|
|
|
// Get users and groups user can manage to check and for selectors.
|
|
|
|
$group_um = users_get_groups_UM($config['id_user']);
|
|
|
|
|
|
|
|
$users_profiles = '';
|
|
|
|
$users_order = [
|
|
|
|
'field' => 'id_user',
|
|
|
|
'order' => 'ASC',
|
|
|
|
];
|
|
|
|
|
|
|
|
$info_users = [];
|
|
|
|
// Is admin.
|
|
|
|
if (users_is_admin()) {
|
|
|
|
$info_users = users_get_info($users_order, 'id_user');
|
|
|
|
// has PM permission.
|
|
|
|
} else if (check_acl($config['id_user'], 0, 'PM')) {
|
|
|
|
$info_users = users_get_info($users_order, 'id_user');
|
|
|
|
foreach ($info_users as $id_user => $value) {
|
|
|
|
if (users_is_admin($id_user)) {
|
|
|
|
unset($info_users[$value]);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
$info = [];
|
|
|
|
foreach ($group_um as $group => $value) {
|
|
|
|
$info = array_merge($info, users_get_users_by_group($group, $value));
|
|
|
|
}
|
|
|
|
|
|
|
|
foreach ($info as $key => $value) {
|
|
|
|
if (!$value['is_admin']) {
|
|
|
|
$info_users[$key] = $value['id_user'];
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2010-10-29 Miguel de Dios <miguel.dedios@artica.es>
* extensions/dbmanager.php, godmode/agentes/module_manager_editor.php,
godmode/massive/massive_add_alerts.php,
godmode/massive/massive_copy_modules.php,
godmode/massive/massive_delete_agents.php,
godmode/massive/massive_enable_disable_alerts.php,
godmode/massive/massive_operations.php,
godmode/massive/massive_delete_profiles.php,
godmode/massive/massive_edit_agents.php,
godmode/massive/massive_delete_action_alerts.php,
godmode/massive/massive_delete_modules.php,
godmode/massive/massive_add_profiles.php,
godmode/massive/massive_delete_alerts.php,
godmode/massive/massive_edit_modules.php,
godmode/massive/massive_standby_alerts.php,
godmode/massive/massive_add_action_alerts.php: now in the source code pick
more info in the audit for actions.
Pending tasks: #3089687
git-svn-id: https://svn.code.sf.net/p/pandora/code/trunk@3480 c3f86ba8-e40f-0410-aaad-9ba5e7f4b01f
2010-10-29 14:35:34 +02:00
|
|
|
if ($create_profiles) {
|
2019-01-30 16:18:44 +01:00
|
|
|
$profiles_id = get_parameter('profiles_id', -1);
|
|
|
|
$groups_id = get_parameter('groups_id', -1);
|
|
|
|
$users_id = get_parameter('users_id', -1);
|
|
|
|
$n_added = 0;
|
|
|
|
|
|
|
|
if ($profiles_id == -1 || $groups_id == -1 || $users_id == -1) {
|
|
|
|
$result = false;
|
|
|
|
} else {
|
|
|
|
foreach ($profiles_id as $profile) {
|
2022-02-24 12:17:21 +01:00
|
|
|
// Check profiles permissions for non admin user.
|
2023-05-26 12:37:37 +02:00
|
|
|
if (is_user_admin($config['id_user']) === false) {
|
2022-02-24 12:17:21 +01:00
|
|
|
$user_profiles = profile_get_profiles(
|
|
|
|
[
|
|
|
|
'pandora_management' => '<> 1',
|
|
|
|
'db_management' => '<> 1',
|
|
|
|
]
|
|
|
|
);
|
|
|
|
|
|
|
|
if (array_search((int) $profile, array_keys($user_profiles)) === false) {
|
|
|
|
db_pandora_audit(
|
|
|
|
AUDIT_LOG_ACL_VIOLATION,
|
|
|
|
'Trying to add administrator profile whith standar user for user '.io_safe_input($user)
|
|
|
|
);
|
2023-05-26 12:37:37 +02:00
|
|
|
continue;
|
2022-02-24 12:17:21 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
foreach ($groups_id as $group) {
|
2022-02-24 12:17:21 +01:00
|
|
|
if (check_acl($config['id_user'], $group, 'UM') === false) {
|
|
|
|
db_pandora_audit(
|
|
|
|
AUDIT_LOG_ACL_VIOLATION,
|
|
|
|
'Trying to add profile group without permission for user '.io_safe_input($user)
|
|
|
|
);
|
2023-05-26 12:37:37 +02:00
|
|
|
continue;
|
2022-02-24 12:17:21 +01:00
|
|
|
}
|
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
foreach ($users_id as $user) {
|
2022-02-24 12:17:21 +01:00
|
|
|
if (array_search($user, $info_users) === false) {
|
|
|
|
db_pandora_audit(
|
|
|
|
AUDIT_LOG_ACL_VIOLATION,
|
|
|
|
'Trying to edit user without permission for user '.io_safe_input($user)
|
|
|
|
);
|
2023-05-26 12:37:37 +02:00
|
|
|
continue;
|
2022-02-24 12:17:21 +01:00
|
|
|
}
|
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
$profile_data = db_get_row_filter('tusuario_perfil', ['id_usuario' => $user, 'id_perfil' => $profile, 'id_grupo' => $group]);
|
|
|
|
// If the profile doesnt exist, we create it
|
|
|
|
if ($profile_data === false) {
|
|
|
|
db_pandora_audit(
|
2022-01-20 10:55:23 +01:00
|
|
|
AUDIT_LOG_USER_MANAGEMENT,
|
2019-01-30 16:18:44 +01:00
|
|
|
'Added profile for user '.io_safe_input($user)
|
|
|
|
);
|
|
|
|
$return = profile_create_user_profile($user, $profile, $group);
|
|
|
|
if ($return !== false) {
|
2021-10-26 14:21:40 +02:00
|
|
|
$n_added++;
|
2019-01-30 16:18:44 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($n_added > 0) {
|
|
|
|
db_pandora_audit(
|
2022-01-20 10:55:23 +01:00
|
|
|
AUDIT_LOG_MASSIVE_MANAGEMENT,
|
2019-01-30 16:18:44 +01:00
|
|
|
'Add profiles',
|
|
|
|
false,
|
|
|
|
false,
|
|
|
|
'Profiles: '.json_encode($profiles_id).' Groups: '.json_encode($groups_id).'Users: '.json_encode($users_id)
|
|
|
|
);
|
|
|
|
} else {
|
|
|
|
db_pandora_audit(
|
2022-01-20 10:55:23 +01:00
|
|
|
AUDIT_LOG_MASSIVE_MANAGEMENT,
|
2019-01-30 16:18:44 +01:00
|
|
|
'Fail to try add profiles',
|
|
|
|
false,
|
|
|
|
false,
|
|
|
|
'Profiles: '.json_encode($profiles_id).' Groups: '.json_encode($groups_id).'Users: '.json_encode($users_id)
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
ui_print_result_message(
|
|
|
|
$n_added > 0,
|
|
|
|
__('Profiles added successfully').'('.$n_added.')',
|
|
|
|
__('Profiles cannot be added')
|
|
|
|
);
|
2010-09-03 09:20:39 +02:00
|
|
|
}
|
|
|
|
|
2019-07-11 14:46:41 +02:00
|
|
|
if ($table !== null) {
|
|
|
|
html_print_table($table);
|
|
|
|
}
|
2010-09-03 09:20:39 +02:00
|
|
|
|
2022-01-12 14:22:16 +01:00
|
|
|
$table = new stdClass();
|
2015-06-15 15:50:28 +02:00
|
|
|
$table->width = '100%';
|
|
|
|
$table->class = 'databox filters';
|
2019-01-30 16:18:44 +01:00
|
|
|
$table->data = [];
|
|
|
|
$table->head = [];
|
|
|
|
$table->align = [];
|
|
|
|
$table->style = [];
|
2010-09-03 09:20:39 +02:00
|
|
|
$table->style[0] = 'font-weight: bold';
|
|
|
|
$table->style[1] = 'font-weight: bold';
|
|
|
|
$table->head[0] = __('Profile name');
|
|
|
|
$table->head[1] = __('Group');
|
|
|
|
$table->head[2] = __('Users');
|
2015-06-15 15:50:28 +02:00
|
|
|
$table->align[2] = 'left';
|
2010-09-03 09:20:39 +02:00
|
|
|
$table->size[0] = '34%';
|
|
|
|
$table->size[1] = '33%';
|
|
|
|
$table->size[2] = '33%';
|
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
$data = [];
|
2011-11-10 20:19:38 +01:00
|
|
|
$data[0] = '<form method="post" id="form_profiles" action="index.php?sec=gmassive&sec2=godmode/massive/massive_operations&tab=massive_users&option=add_profiles">';
|
2020-12-25 09:38:03 +01:00
|
|
|
|
|
|
|
|
2020-09-23 11:36:15 +02:00
|
|
|
$display_all_group = true;
|
|
|
|
if (check_acl($config['id_user'], 0, 'PM')) {
|
|
|
|
$data[0] .= html_print_select(
|
|
|
|
profile_get_profiles(),
|
|
|
|
'profiles_id[]',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
true,
|
|
|
|
true,
|
|
|
|
false,
|
|
|
|
'',
|
|
|
|
false,
|
|
|
|
'width: 100%'
|
|
|
|
);
|
|
|
|
} else {
|
2020-12-25 09:38:03 +01:00
|
|
|
if (!isset($group_um[0])) {
|
|
|
|
$display_all_group = false;
|
|
|
|
}
|
2021-01-07 10:42:29 +01:00
|
|
|
|
2020-09-23 11:36:15 +02:00
|
|
|
$data[0] .= html_print_select(
|
|
|
|
profile_get_profiles(
|
|
|
|
[
|
|
|
|
'pandora_management' => '<> 1',
|
|
|
|
'db_management' => '<> 1',
|
|
|
|
]
|
|
|
|
),
|
|
|
|
'profiles_id[]',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
true,
|
|
|
|
true,
|
|
|
|
false,
|
|
|
|
'',
|
|
|
|
false,
|
|
|
|
'width: 100%'
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
$data[1] = html_print_select_groups(
|
|
|
|
$config['id_user'],
|
|
|
|
'UM',
|
2020-09-23 11:36:15 +02:00
|
|
|
$display_all_group,
|
2019-01-30 16:18:44 +01:00
|
|
|
'groups_id[]',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
true,
|
|
|
|
true,
|
|
|
|
false,
|
|
|
|
'',
|
|
|
|
false,
|
|
|
|
'width: 100%'
|
|
|
|
);
|
2010-09-03 09:20:39 +02:00
|
|
|
$data[2] = '<span id="alerts_loading" class="invisible">';
|
2011-04-27 15:43:31 +02:00
|
|
|
$data[2] .= html_print_image('images/spinner.png', true);
|
2010-09-03 09:20:39 +02:00
|
|
|
$data[2] .= '</span>';
|
2020-09-23 11:36:15 +02:00
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
$data[2] .= html_print_select(
|
2020-09-23 11:36:15 +02:00
|
|
|
$info_users,
|
2019-01-30 16:18:44 +01:00
|
|
|
'users_id[]',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
'',
|
|
|
|
true,
|
|
|
|
true,
|
|
|
|
true,
|
|
|
|
'',
|
|
|
|
false,
|
|
|
|
'width: 100%'
|
|
|
|
);
|
|
|
|
|
2021-02-12 11:28:13 +01:00
|
|
|
// Waiting spinner.
|
|
|
|
ui_print_spinner(__('Loading'));
|
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
array_push($table->data, $data);
|
|
|
|
|
|
|
|
html_print_table($table);
|
2010-09-03 09:20:39 +02:00
|
|
|
|
2023-03-27 11:10:51 +02:00
|
|
|
attachActionButton('create_profiles', 'update', $table->width, false, $SelectAction);
|
2010-09-03 09:20:39 +02:00
|
|
|
|
|
|
|
echo '</form>';
|
|
|
|
|
2019-01-30 16:18:44 +01:00
|
|
|
unset($table);
|