2006-07-19 20:29:12 +02:00
|
|
|
<?php
|
|
|
|
|
|
|
|
// Pandora - the Free monitoring system
|
|
|
|
// ====================================
|
|
|
|
// Copyright (c) 2004-2006 Sancho Lerena, slerena@gmail.com
|
|
|
|
// Copyright (c) 2005-2006 Artica Soluciones Tecnologicas S.L, info@artica.es
|
|
|
|
// Copyright (c) 2004-2006 Raul Mateos Martin, raulofpandora@gmail.com
|
|
|
|
// This program is free software; you can redistribute it and/or
|
|
|
|
// modify it under the terms of the GNU General Public License
|
|
|
|
// as published by the Free Software Foundation; either version 2
|
|
|
|
// of the License, or (at your option) any later version.
|
|
|
|
// This program is distributed in the hope that it will be useful,
|
|
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
// GNU General Public License for more details.
|
|
|
|
// You should have received a copy of the GNU General Public License
|
|
|
|
// along with this program; if not, write to the Free Software
|
|
|
|
// Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
|
|
|
|
|
|
?>
|
|
|
|
|
2006-03-27 05:37:27 +02:00
|
|
|
<script language="JavaScript" type="text/javascript">
|
|
|
|
<!--
|
|
|
|
function CheckAll()
|
|
|
|
{
|
|
|
|
for (var i=0;i<document.eventtable.elements.length;i++)
|
|
|
|
{
|
|
|
|
var e = document.eventtable.elements[i];
|
|
|
|
if (e.type == 'checkbox' && e.name != 'allbox')
|
|
|
|
e.checked = 1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
function OpConfirm(text, conf)
|
|
|
|
{
|
|
|
|
for (var i=0;i<document.pageform.elements.length;i++)
|
|
|
|
{
|
|
|
|
var e = document.pageform.elements[i];
|
|
|
|
if (e.type == 'checkbox' && e.name != 'allbox' && e.checked == 1 ) {
|
|
|
|
if (conf) {
|
|
|
|
return confirm(text);
|
|
|
|
} else {
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
//-->
|
|
|
|
</script>
|
|
|
|
|
|
|
|
<?php
|
2006-07-19 20:29:12 +02:00
|
|
|
// Load global vars
|
2006-03-27 05:37:27 +02:00
|
|
|
require("include/config.php");
|
2006-07-19 20:29:12 +02:00
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
if (comprueba_login() != 0) {
|
|
|
|
audit_db("Noauth",$REMOTE_ADDR, "No authenticated acces","Trying to access event viewer");
|
|
|
|
no_permission();
|
|
|
|
}
|
|
|
|
|
|
|
|
$accion = "";
|
|
|
|
if (give_acl($id_user, 0, "AR")!=1) {
|
|
|
|
audit_db($id_user,$REMOTE_ADDR, "ACL Violation","Trying to access event viewer");
|
|
|
|
no_permission();
|
|
|
|
}
|
|
|
|
|
|
|
|
// OPERATIONS
|
|
|
|
// Delete Event (only incident management access).
|
|
|
|
if (isset($_GET["delete"])){
|
|
|
|
$id_evento = $_GET["delete"];
|
|
|
|
// Look for event_id following parameters: id_group.
|
|
|
|
$id_group = gime_idgroup_from_idevent($id_evento);
|
|
|
|
if (give_acl($id_user, $id_group, "IM") ==1){
|
|
|
|
$sql2="DELETE FROM tevento WHERE id_evento =".$id_evento;
|
|
|
|
$result2=mysql_query($sql2);
|
|
|
|
if ($result) {
|
|
|
|
echo "<h3 class='suc'>".$lang_label["delete_event_ok"]."</h3>";
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
} else {
|
|
|
|
audit_db($id_user,$REMOTE_ADDR, "ACL Violation",
|
|
|
|
"Trying to delete event ID".$id_evento);
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2006-03-27 05:37:27 +02:00
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
// Check Event (only incident write access).
|
|
|
|
if (isset($_GET["check"])){
|
|
|
|
$id_evento = $_GET["check"];
|
|
|
|
// Look for event_id following parameters: id_group.
|
|
|
|
$id_group = gime_idgroup_from_idevent($id_evento);
|
|
|
|
if (give_acl($id_user, $id_group, "IW") ==1){
|
|
|
|
$sql2="UPDATE tevento SET estado = 1, id_usuario = '".$id_user."' WHERE id_evento = ".$id_evento;
|
|
|
|
$result2=mysql_query($sql2);
|
|
|
|
if ($result2) {
|
|
|
|
echo "<h3 class='suc'>".$lang_label["validate_event_ok"]."</h3>";
|
2006-03-27 05:37:27 +02:00
|
|
|
} else {
|
2007-02-05 18:45:14 +01:00
|
|
|
echo "<h3 class='error'>".$lang_label["validate_event_failed"]."</h3>";
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
|
|
|
|
} else {
|
|
|
|
audit_db($id_user,$REMOTE_ADDR, "ACL Violation","Trying to checkout event ID".$id_evento);
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2006-03-27 05:37:27 +02:00
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
// Mass-process DELETE
|
|
|
|
if (isset($_POST["deletebt"])){
|
|
|
|
$count=0;
|
|
|
|
while ($count <= $block_size){
|
|
|
|
if (isset($_POST["eventid".$count])){
|
|
|
|
$event_id = $_POST["eventid".$count];
|
|
|
|
// Look for event_id following parameters: id_group.
|
|
|
|
$id_group = gime_idgroup_from_idevent($event_id);
|
|
|
|
if (give_acl($id_user, $id_group, "IM") ==1){
|
|
|
|
mysql_query("DELETE FROM tevento WHERE id_evento =".$event_id);
|
|
|
|
} else {
|
|
|
|
audit_db($id_user,$REMOTE_ADDR, "ACL Violation","Trying to delete event ID".$id_evento);
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
$count++;
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
// Mass-process UPDATE
|
|
|
|
if (isset($_POST["updatebt"])){
|
|
|
|
$count=0;
|
|
|
|
while ($count <= $block_size){
|
|
|
|
if (isset($_POST["eventid".$count])){
|
|
|
|
$id_evento = $_POST["eventid".$count];
|
|
|
|
$id_group = gime_idgroup_from_idevent($id_evento);
|
|
|
|
if (give_acl($id_user, $id_group, "IW") ==1){
|
|
|
|
$sql2="UPDATE tevento SET estado=1, id_user = '".$id_user."' WHERE estado = 0 AND id_evento = ".$id_evento;
|
|
|
|
$result2=mysql_query($sql2);
|
|
|
|
} else {
|
|
|
|
audit_db($id_user,$REMOTE_ADDR, "ACL Violation","Trying to checkout event ID".$id_evento);
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
$count++;
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2006-12-03 03:07:36 +01:00
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
// ***********************************************************************
|
|
|
|
// Main code form / page
|
|
|
|
// ***********************************************************************
|
2006-12-03 03:07:36 +01:00
|
|
|
|
2006-11-14 01:26:29 +01:00
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
// Get data
|
|
|
|
|
|
|
|
$offset=0;
|
|
|
|
if (isset($_GET["offset"]))
|
|
|
|
$offset=$_GET["offset"];
|
|
|
|
|
|
|
|
$ev_group = -1;
|
|
|
|
if (isset($_POST["ev_group"]))
|
|
|
|
$ev_group = $_POST["ev_group"];
|
|
|
|
|
|
|
|
$event="All";
|
|
|
|
if (isset($_POST["event"]))
|
|
|
|
$event = entrada_limpia($_POST["event"]);
|
|
|
|
|
|
|
|
echo "<h2>".$lang_label["events"]."</h2>";
|
|
|
|
echo "<h3>".$lang_label["event_main_view"]."<a href='help/".$help_code."/chap5.php#5' target='_help' class='help'> <span>".$lang_label["help"]."</span></a></h3>";
|
|
|
|
echo "<table cellpadding='3' cellspacing='3'><tr>";
|
|
|
|
|
|
|
|
echo "<form method='post' action='index.php?sec=eventos&sec2=operation/events/events&refr=60'>";
|
|
|
|
echo "<td>".$lang_label["group"]."</td>";
|
|
|
|
echo "<td>";
|
|
|
|
echo "<select name='ev_group' onChange='javascript:this.form.submit();' class='w130'>";
|
|
|
|
if ( $ev_group > 1 ){
|
|
|
|
echo "<option value='".$ev_group."'>".dame_nombre_grupo($ev_group);
|
|
|
|
}
|
|
|
|
echo "<option value=1>".dame_nombre_grupo(1)."</option>";
|
|
|
|
list_group ($id_user);
|
|
|
|
echo "</select>";
|
|
|
|
echo "<td class='f9l30w17t'>";
|
|
|
|
echo "<img src='images/dot_green.gif'> - ".$lang_label["validated_event"];
|
|
|
|
echo "<br>";
|
|
|
|
echo "<img src='images/dot_red.gif'> - ".$lang_label["not_validated_event"];
|
|
|
|
echo "</td>";
|
|
|
|
echo "<td class='f9l30w17t'>";
|
|
|
|
echo "<img src='images/ok.gif'> - ".$lang_label["validate_event"];
|
|
|
|
echo "<br>";
|
|
|
|
echo "<img src='images/cancel.gif'> - ".$lang_label["delete_event"];
|
|
|
|
echo "</td>";
|
|
|
|
echo "<tr><td valign='middle'>".$lang_label["events"]."</td>";
|
|
|
|
echo "<td><form method='post' action='index.php?sec=eventos&sec2=operation/events/events&refr=60'>";
|
|
|
|
echo "<select name='event' onChange='javascript:this.form.submit();' class='w155'>";
|
|
|
|
echo "<option value='All'>".$lang_label["all"]."</option>";
|
|
|
|
|
|
|
|
// Fill event type combo (DISTINCT!)
|
|
|
|
if (isset($ev_group) && ($ev_group > 1))
|
2007-02-19 08:44:07 +01:00
|
|
|
$sql="SELECT DISTINCT evento FROM tevento WHERE id_grupo = '$ev_group'";
|
2007-02-05 18:45:14 +01:00
|
|
|
else
|
2007-02-19 08:44:07 +01:00
|
|
|
$sql="SELECT DISTINCT evento FROM tevento";
|
2007-02-05 18:45:14 +01:00
|
|
|
$result=mysql_query($sql);
|
|
|
|
// Make query for distinct (to fill combo)
|
|
|
|
while ($row=mysql_fetch_array($result))
|
|
|
|
echo "<option value='".$row["evento"]."'>".$row["evento"]."</option>";
|
|
|
|
echo "</select>";
|
|
|
|
echo "</form>";
|
|
|
|
echo "<td valign='middle'>";
|
|
|
|
echo "<noscript><input type='submit' class='sub' value='".$lang_label["show"]."'></noscript>";
|
|
|
|
echo "</td></tr>";
|
|
|
|
echo "</table>";
|
|
|
|
echo "<br>";
|
2006-03-27 05:37:27 +02:00
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
// How many events do I have in total ?
|
|
|
|
if ($event=="All"){
|
2006-12-03 03:07:36 +01:00
|
|
|
if (isset($ev_group) && ($ev_group > 1)) {
|
2007-02-05 18:45:14 +01:00
|
|
|
$sql3="SELECT COUNT(id_evento) FROM tevento WHERE id_grupo = '$ev_group' ";
|
2006-12-03 03:07:36 +01:00
|
|
|
} else {
|
2007-02-05 18:45:14 +01:00
|
|
|
$sql3="SELECT COUNT(id_evento) FROM tevento";
|
2006-12-31 01:29:40 +01:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
} else {
|
|
|
|
if (isset($ev_group) && ($ev_group > 1)) {
|
|
|
|
$sql3="SELECT COUNT(id_evento) FROM tevento WHERE evento = '$event' AND id_grupo = '$ev_group'";
|
2006-03-27 05:37:27 +02:00
|
|
|
} else {
|
2007-02-05 18:45:14 +01:00
|
|
|
$sql3="SELECT COUNT(id_evento) FROM tevento WHERE evento = '$event' ";
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
|
|
|
$result3=mysql_query($sql3);
|
|
|
|
$row3=mysql_fetch_array($result3);
|
|
|
|
$total_events = $row3[0];
|
|
|
|
// Show pagination header
|
|
|
|
|
2007-02-19 08:44:07 +01:00
|
|
|
if ($total_events > 0){
|
|
|
|
pagination($total_events, "index.php?sec=eventos&sec2=operation/events/events", $offset);
|
|
|
|
// Show data.
|
|
|
|
|
|
|
|
echo "<br>";
|
|
|
|
echo "<br>";
|
|
|
|
echo "<table cellpadding='3' cellspacing='3' width='775'>";
|
|
|
|
echo "<tr>";
|
|
|
|
echo "<th>".$lang_label["status"]."</th>";
|
|
|
|
echo "<th>".$lang_label["event_name"]."</th>";
|
|
|
|
echo "<th>".$lang_label["agent_name"]."</th>";
|
|
|
|
echo "<th>".$lang_label["group"]."</th>";
|
|
|
|
echo "<th>".$lang_label["id_user"]."</th>";
|
|
|
|
echo "<th class='w130'>".$lang_label["timestamp"]."</th>";
|
|
|
|
echo "<th width='62'>".$lang_label["action"]."</th>";
|
|
|
|
echo "<th class='p10'>";
|
|
|
|
echo "<label for='checkbox' class='p21'>".$lang_label["all"]." </label>";
|
|
|
|
echo '<input type="checkbox" class="chk" name="allbox" onclick="CheckAll();"></th>';
|
|
|
|
echo "<form name='eventtable' method='POST' action='index.php?sec=eventos&sec2=operation/events/events&refr=60&offset=".$offset."'>";
|
|
|
|
$color = 1;
|
|
|
|
$id_evento = 0;
|
|
|
|
|
|
|
|
// Prepare index for pagination. Prepare queries
|
|
|
|
if ($event=="All"){
|
|
|
|
if (isset($ev_group) && ($ev_group > 1)) {
|
|
|
|
$sql2="SELECT * FROM tevento WHERE id_grupo = '$ev_group' ORDER BY timestamp DESC LIMIT $offset, $block_size";
|
|
|
|
} else {
|
|
|
|
$sql2="SELECT * FROM tevento ORDER BY timestamp DESC LIMIT $offset, $block_size";
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2007-02-19 08:44:07 +01:00
|
|
|
} else {
|
|
|
|
if (isset($ev_group) && ($ev_group > 1)) {
|
|
|
|
$sql2="SELECT * FROM tevento WHERE evento = '$event' AND id_grupo = '$ev_group' ORDER BY timestamp DESC LIMIT $offset, $block_size";
|
|
|
|
} else {
|
|
|
|
$sql2="SELECT * FROM tevento WHERE evento = '$event' ORDER BY timestamp DESC LIMIT $offset, $block_size";
|
2007-02-05 18:45:14 +01:00
|
|
|
}
|
2007-02-19 08:44:07 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
// Make query for data (all data, not only distinct).
|
|
|
|
$result2=mysql_query($sql2);
|
|
|
|
while ($row2=mysql_fetch_array($result2)){
|
|
|
|
$id_grupo = $row2["id_grupo"];
|
|
|
|
if (give_acl($id_user, $id_grupo, "IR") == 1){ // Only incident read access to view data !
|
|
|
|
$id_group = $row2["id_grupo"];
|
|
|
|
if ($color == 1){
|
|
|
|
$tdcolor = "datos";
|
|
|
|
$color = 0;
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
$tdcolor = "datos2";
|
|
|
|
$color = 1;
|
|
|
|
}
|
|
|
|
echo "<tr><td class='$tdcolor' align='center'>";
|
|
|
|
if ($row2["estado"] == 0)
|
|
|
|
echo "<img src='images/dot_red.gif'>";
|
|
|
|
else
|
|
|
|
echo "<img src='images/dot_green.gif'>";
|
|
|
|
echo "<td class='$tdcolor'>".$row2["evento"];
|
|
|
|
if ($row2["id_agente"] > 0){
|
|
|
|
echo "<td class='$tdcolor'><a href='index.php?sec=estado&sec2=operation/agentes/ver_agente&id_agente=".$row2["id_agente"]."'><b>".dame_nombre_agente($row2["id_agente"])."</b></a>";
|
|
|
|
echo "<td class='$tdcolor'><img src='images/g_".show_icon_group($id_group).".gif'></td>";
|
|
|
|
echo "<td class='$tdcolor'>";
|
2007-02-05 18:45:14 +01:00
|
|
|
} else { // for SNMP generated alerts
|
|
|
|
echo "<td class='$tdcolor' colspan='2'>".$lang_label["alert"]." / SNMP";
|
|
|
|
echo "<td class='$tdcolor' width='95'>";
|
|
|
|
}
|
|
|
|
if ($row2["estado"] <> 0)
|
|
|
|
echo "<a href='index.php?sec=usuario&sec2=operation/users/user_edit&ver=".$row2["id_usuario"]."'><a href='#' class='tip'> <span>".dame_nombre_real($row2["id_usuario"])."</span></a>".substr($row2["id_usuario"],0,8)."</a>";
|
|
|
|
echo "<td class='$tdcolor'>".$row2["timestamp"];
|
|
|
|
echo "<td class='$tdcolor' align='right'>";
|
2007-02-19 08:44:07 +01:00
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
if (($row2["estado"] == 0) and (give_acl($id_user,$id_group,"IW") ==1))
|
|
|
|
echo "<a href='index.php?sec=eventos&sec2=operation/events/events&offset=".$offset."&check=".$row2["id_evento"]."'><img src='images/ok.gif' border='0'></a>";
|
|
|
|
if (give_acl($id_user,$id_group,"IM") ==1)
|
|
|
|
echo "<a href='index.php?sec=eventos&sec2=operation/events/events&delete=".$row2["id_evento"]."&refr=60&offset=".$offset."'><img src='images/cancel.gif' border=0></a> ";
|
2007-02-19 08:44:07 +01:00
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
if (give_acl($id_user,$id_group,"IW") == 1)
|
|
|
|
echo "<a href='index.php?sec=incidencias&sec2=operation/incidents/incident_detail&insert_form&from_event=".$row2["id_evento"]."'><img src='images/page_lightning.png' border=0></a>";
|
2007-02-19 08:44:07 +01:00
|
|
|
|
2007-02-05 18:45:14 +01:00
|
|
|
echo "<td class='$tdcolor' align='center'>";
|
|
|
|
echo "<input type='checkbox' class='chk' name='eventid".$offset_counter."' value='".$row2["id_evento"]."'>";
|
|
|
|
echo "</td></tr>";
|
2007-02-19 08:44:07 +01:00
|
|
|
}
|
2006-03-27 05:37:27 +02:00
|
|
|
}
|
2007-02-19 08:44:07 +01:00
|
|
|
|
|
|
|
echo "<tr><td colspan='8'><div class='raya'></div></td></tr>";
|
|
|
|
echo "<tr><td colspan='8' align='right'>";
|
2007-02-05 18:45:14 +01:00
|
|
|
|
2007-02-19 08:44:07 +01:00
|
|
|
echo "<input class='sub' type='submit' name='updatebt' value='".$lang_label["validate"]."'> ";
|
|
|
|
if (give_acl($id_user, 0,"IM") ==1){
|
|
|
|
echo "<input class='sub' type='submit' name='deletebt' value='".$lang_label["delete"]."'>";
|
|
|
|
}
|
|
|
|
echo "</form></table>";
|
|
|
|
} // no events to show
|
2006-03-27 05:37:27 +02:00
|
|
|
?>
|