tyler.durden
/
pandorafms
mirror of https://github.com/pandorafms/pandorafms.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Commit para revisar progreso 

Former-commit-id: 498b7c6a44a18c075c431853d8bf6875e92945f9
This commit is contained in:
marcos.alconada 2019-03-25 17:59:12 +01:00
parent 3916bcf636
commit e163c27b43
2 changed files with 182 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

53
pandora_console/include/api.php
View File

@ -107,14 +107,13 @@ if ($correctLogin) {
if ($op == 'set' && $id) { if ($op == 'set' && $id) {
switch ($op2) { switch ($op2) {
case 'update_agent': case 'update_agent':
case 'add_module_in_conf': case 'add_module_in_conf':
case 'update_module_in_conf': case 'update_module_in_conf':
case 'delete_module_in_conf': case 'delete_module_in_conf':
$id_os = db_get_value_sql('select id_os from tagente where id_agente = '.$id); $id_os = db_get_value_sql('select id_os from tagente where id_agente = '.$id);
if ($id_os == 100) { if ($id_os === 100) {
returnError('not_allowed_operation_cluster', $returnType); returnError('not_allowed_operation_cluster', $returnType);
return false; return false;
} }
@ -130,7 +129,7 @@ if ($correctLogin) {
$id_os = db_get_value_sql('select id_os from tagente where nombre = "'.$id.'"'); $id_os = db_get_value_sql('select id_os from tagente where nombre = "'.$id.'"');
if ($id_os == 100) { if ($id_os === 100) {
returnError('not_allowed_operation_cluster', $returnType); returnError('not_allowed_operation_cluster', $returnType);
return false; return false;
} }
@ -143,14 +142,58 @@ if ($correctLogin) {
$id_os = db_get_value_sql('select id_os from tagente where id_agente = (select id_agente from tagente_modulo where id_agente_modulo ='.$id.')'); $id_os = db_get_value_sql('select id_os from tagente where id_agente = (select id_agente from tagente_modulo where id_agente_modulo ='.$id.')');
if ($id_os == 100) { if ($id_os === 100) {
returnError('not_allowed_operation_cluster', $returnType); returnError('not_allowed_operation_cluster', $returnType);
return false; return false;
} }
break; break;
default: case 'get_info_user_name':
$id_os = get_info_user_name($user);
if ($id_os === 100) {
returnError('not_allowed_operation_cluster', $returnType);
return false;
}
break;
case 'get_filter_user_group':
$id_os = get_filter_user_group($user, $group, $disable);
if ($id_os === false) {
returnError('not_allowed_operation_cluster', $returnType);
return false;
}
break;
case 'delete_user_profile':
$id_os = delete_user_profile($user);
if ($id_os === false) {
returnError('not_allowed_operation_cluster', $returnType);
return false;
}
break;
case 'get_list_all_user':
$id_os = get_list_all_user();
if ($id_os === false) {
returnError('not_allowed_operation_cluster', $returnType);
return false;
}
case 'add_permission_user_to_group':
$id_os = add_permisson_user_to_group();
if ($id_os === false) {
returnError('not_allowed_operation_cluster', $returnType);
return false;
}
default:
// break; // break;
} }
} }

136
pandora_console/include/functions_api.php
View File

@ -542,7 +542,6 @@ $module_field_column_mampping = [
'module_critical_inverse' => 'critical_inverse as module_critical_inverse', 'module_critical_inverse' => 'critical_inverse as module_critical_inverse',
'module_warning_inverse' => 'warning_inverse as module_warning_inverse', 'module_warning_inverse' => 'warning_inverse as module_warning_inverse',
]; ];
// module related field mappings 2/2 (output field => column for 'tagente_estado') // module related field mappings 2/2 (output field => column for 'tagente_estado')
// module_id_agent_modulo is not in this list // module_id_agent_modulo is not in this list
$estado_fields_to_columns_mapping = [ $estado_fields_to_columns_mapping = [
@ -13952,7 +13951,7 @@ function api_set_update_event_filter($id_event_filter, $thrash1, $other, $thrash
break; break;
case 5: case 5:
$values['status'] = (array_key_exists($other['data'][5], events_get_all_status()) || $other['data'][5] == -1) ? $other['data'][5] : -1; $values['status'] = (array_key_exists($other['data'][5], events_get_all_status()) || $db_process_sql_insertother['data'][5] == -1) ? $other['data'][5] : -1;
break; break;
case 6: case 6:
@ -14684,3 +14683,136 @@ function api_set_reset_agent_counts($id, $thrash1, $thrash2, $thrash3)
} }
} }
function api_get_list_all_user()
{
$sql = sprintf('SELECT * FROM tusuario ORDER BY fullname');
$users = db_get_all_rows_sql($sql);
if ($users === false) {
returnError('Error_user', ' Users could not be found.');
} else {
$data = [
'type' => 'string',
'data' => $users,
];
returnData('string', ['type' => 'string', 'data' => $data]);
}
}
function api_get_info_user_name($user)
{
if ($user === null) {
return false;
}
$sql = sprintf("select * from tperfil,tusuario_perfil where tperfil.id_perfil in (select tusuario_perfil.id_perfil from tusuario_perfil where id_usuario = '$user')");
$user_profile = db_get_all_rows_sql($sql);
if ($user_profile === false) {
returnError('Error_user', ' User could not be found.');
} else {
$data = [
'type' => 'string',
'data' => $user_profile,
];
returnData('string', ['type' => 'string', 'data' => $data]);
}
}
function api_get_filter_user_group($user, $group, $disable)
{
if ($user === null && ($group === null || $disable === null)) {
return false;
}
if ($group !== null) {
$sql = "select * from tperfil,tusuario_perfil where tperfil.id_perfil in (select tusuario_perfil.id_perfil from tusuario_perfil where id_usuario = '$user' and id_grupo = $group) LIMIT 1";
$filter_user = db_get_all_rows_sql($sql);
}
if ($disable !== null) {
$sql = "select * from tperfil,tusuario_perfil where tperfil.id_perfil in (select tusuario_perfil.id_perfil from tusuario_perfil where id_usuario = '$user' and disable = $disable) LIMIT 1";
$filter_user = db_get_all_rows_sql($sql);
}
if ($filter_user === false) {
returnError('Error_user', ' User profile could not be found.');
} else {
$data = [
'type' => 'string',
'data' => $filter_user,
];
returnData('string', ['type' => 'string', 'data' => $data]);
}
}
function api_get_delete_user_profile($id_user)
{
if ($id_user === null) {
return false;
}
$sql = "delete from tusuario_perfil where id_usuario = '$id_user'";
$deleted_permission = db_process_sql_delete($sql);
if ($deleted_permission === false) {
returnError('Error_delete', ' User profile could not be deleted.');
} else {
$data = [
'type' => 'string',
'data' => $deleted_permission,
];
returnData('string', ['type' => 'string', 'data' => $data]);
}
}
function api_add_permisson_user_to_group($id_user, $group, $profile, $other=';')
{
if ($user === null || $group === null || $profile === null) {
return false;
}
$other[0] = $id_user;
$other[1] = $group;
$other[2] = $profile;
if ($id_user === null || $group === null || $profile === null) {
return false;
}
// take it up last value(id_up) for tusuario_peril and increase 1 value
$sql = 'select MAX(id_up) from tusuario_perfil';
$last_id_up = db_get_value_sql($sql);
$last_id_up ++;
$values = [
'id_up' => $last_id_up,
'id_usuario' => $other[0],
'id_perfil' => $other[2],
'id_grupo' => $other[1],
'no_hierarchy' => 0,
'assigned_by' => 0,
'id_policy' => 0,
'tags' => '',
];
$sucessfull_insert = db_process_sql_insert('tusuario_perfil', $values);
if ($sucessfull_insert === false) {
returnError('Error_insert', ' User profile could not be aviable.');
} else {
returnData('string', ['type' => 'string', 'data' => $data]);
}
}