'.__('Event successfully deleted').''; audit_db ($config['id_user'], $REMOTE_ADDR, "Event deleted","Deleted event: ".$descr); } else { echo '
'.__('Error deleting event').'
'; } } else { audit_db ($config['id_user'], $REMOTE_ADDR, "ACL Violation", "Trying to delete event ID".$id_evento); } } // Check Event (only incident write access). if (isset ($_GET["check"])) { $id_evento = get_parameter_get ("check"); // Look for event_id following parameters: id_group. $id_group = gime_idgroup_from_idevent ($id_evento); if (give_acl ($config["id_user"], $id_group, "IW") ==1){ $sql = "UPDATE tevento SET estado = 1, id_usuario = '".$config["id_user"]."' WHERE id_evento = ".$id_evento; $result = process_sql ($sql); if ($result !== false) { echo '
'.__('Event successfully validated').'
'; audit_db($config["id_user"],$REMOTE_ADDR, "Event validated","Validate event: ".return_event_description ($id_evento)); } else { echo '
'.__('Error validating event').'
'; } } else { audit_db ($config['id_user'],$REMOTE_ADDR, "ACL Violation", "Trying to checkout event ".return_event_description ($id_evento)); } } // Mass-process DELETE if (isset ($_POST["deletebt"])){ $count=0; while ($count <= $config["block_size"]) { if (isset ($_POST["eventid".$count])) { $event_id = get_parameter_post ("eventid".$count); $descr = return_event_description ($event_id); //Get description before it gets deleted // Look for event_id following parameters: id_group. $id_group = gime_idgroup_from_idevent ($event_id); if (give_acl ($config['id_user'], $id_group, "IM")) { process_sql ("DELETE FROM tevento WHERE id_evento = ".$event_id); audit_db ($config['id_user'], $REMOTE_ADDR, "Event deleted","Deleted event: ".$descr); } else { audit_db ($config['id_user'], $REMOTE_ADDR, "ACL Violation","Trying to delete event: ".$descr); } } $count++; } } // Mass-process UPDATE if (isset ($_POST["updatebt"])) { $count = 0; while ($count <= $config["block_size"]) { if (isset ($_POST["eventid".$count])) { $id_evento = get_parameter_post ("eventid".$count); $id_group = gime_idgroup_from_idevent($id_evento); if (give_acl ($config['id_user'], $id_group, "IW")) { $sql = "UPDATE tevento SET estado=1, id_usuario = '".$config['id_user']."' WHERE estado = 0 AND id_evento = ".$id_evento; $result = process_sql ($sql); audit_db ($config['id_user'], $REMOTE_ADDR, "Event validated","Validate event: ".return_event_description ($id_evento)); } else { audit_db ($config['id_user'], $REMOTE_ADDR, "ACL Violation","Trying to checkout event ID".$id_evento); } } $count++; } } // *********************************************************************** // Main code form / page // *********************************************************************** // Get data $offset = (int) get_parameter ( "offset",0); $ev_group = (int) get_parameter ("ev_group", 1); //1 = all $search = get_parameter ("search", ""); // free search $event_type = get_parameter ("event_type", ''); // 0 all $severity = (int) get_parameter ("severity", -1); // -1 all $status = (int) get_parameter ("status", 0); // -1 all, 0 only red, 1 only green $id_agent = (int) get_parameter ("id_agent", -1); //-1 all, 0 system $id_event = (int) get_parameter ("id_event", -1); $pagination = (int) get_parameter ("pagination", $config["block_size"]); $config["block_size"] = $pagination; $groups = get_user_groups ($config["id_user"]); //Group selection if ($ev_group > 1 && in_array ($ev_group, array_keys ($groups))) { //If a group is selected and it's in the groups allowed $sql_post = " AND id_grupo = $ev_group"; } elseif (dame_admin ($config["id_user"])) { //Do nothing if you're admin, you get full access $sql_post = ""; $groups[0] = __('System Events'); } else { //Otherwise select all groups the user has rights to. $sql_post = " AND id_grupo IN (".implode (",", array_keys ($groups)).")"; } if ($status == 1) { $sql_post .= " AND estado = 1"; } elseif ($status == 0) { $sql_post .= " AND estado = 0"; } if ($search != "") $sql_post .= " AND evento LIKE '%$search%'"; if ($event_type != "") $sql_post .= " AND event_type = '$event_type'"; if ($severity != -1) $sql_post .= " AND criticity >= ".$severity; if ($id_agent != -1) $sql_post .= " AND id_agente = ".$id_agent; if ($id_event != -1) $sql_post .= " AND id_evento = ".$id_event; $url = "index.php?sec=eventos&sec2=operation/events/events&search=$search&event_type=$event_type&severity=$severity&status=$status&ev_group=$ev_group&refr=60&id_agent=$id_agent&id_event=$id_event"; echo "
".__('Events')." > ".__('Main event view'). " "; if ($config["pure"] == 1) { echo "
"; } else { // Fullscreen echo "
"; } echo "
"; echo '
'; echo "
".__('Event control filter')." ".'
'; if ($config["pure"] == 1) { echo "
"; } else { echo "
"; //There is no value all to property display } // Table who separate control and graph echo "
"; echo "
"; // Table for filter controls echo "
"; echo "
"; echo "
"; // Group combo echo "
".__('Group')."
"; echo "
"; print_select ($groups, 'ev_group', $ev_group, 'javascript:this.form.submit();', '', 0, false, false, false, 'w130'); echo "
"; // Event type echo "
".__('Event type')."
"; echo "
"; print_select (get_event_types (), 'event_type', $event_type, '', __('All'), ''); echo "
"; // Severity echo "
".__('Severity')."
"; echo "
"; print_select (get_priorities (), "severity", $severity, '', __('All'), '-1'); // Status echo "
".__('Event status')."
"; echo "
"; $fields = array (); $fields[-1] = __('All event'); $fields[1] = __('Only validated'); $fields[0] = __('Only pending'); print_select ($fields, 'status', $status, 'javascript:this.form.submit();', '', ''); echo "
"; // Free search echo "
".__('Free search')."
"; print_input_text ('search', $search, '', 15); //Agent search echo "
".__('Agent search')."
"; $sql = "SELECT DISTINCT(id_agente) FROM tevento WHERE 1=1 ".$sql_post; $result = get_db_all_rows_sql ($sql); if ($result === false) $result = array(); $agents = array (); $agents[-1] = __('All'); if (dame_admin ($config["id_user"])) { $agents[0] = __('System'); } foreach ($result as $id_row) { $name_for_combo = ""; if ($id_row[0] > 0) $name_for_combo = substr (strtolower (dame_nombre_agente ($id_row[0])),0,20); if ($name_for_combo != "") $agents[$id_row[0]] = $name_for_combo; } print_select ($agents, 'id_agent', $id_agent, 'javascript:this.form.submit();', '', ''); echo "
"; // User selectable block size echo '
'; echo __('Block size for pagination'); echo '
'; $lpagination[25]=25; $lpagination[50]=50; $lpagination[100]=100; $lpagination[200]=200; $lpagination[500]=500; echo "
"; print_select ($lpagination, "pagination", $pagination, '', __('Default'), $config["block_size"]); echo "
"; //The buttons echo '
'; print_submit_button (__('Update'), '', false, 'class="sub upd"'); // CSV echo '
'; // Marquee echo "
"; // RSS echo '
'; echo "
"; echo '
'; //Don't rely on browsers to do this correctly echo "
"; $sql = "SELECT * FROM tevento WHERE 1=1 ".$sql_post." ORDER BY utimestamp DESC LIMIT ".$offset.",".$config["block_size"]; $result = get_db_all_rows_sql ($sql); $sql = "SELECT COUNT(id_evento) FROM tevento WHERE 1=1 ".$sql_post; $total_events = get_db_sql ($sql); // Show pagination header if ($total_events > 0) { $offset = get_parameter ("offset",0); pagination ($total_events, $url."&pure=".$config["pure"], $offset); // Show data. echo "
"; echo "
"; if ($config["pure"] == 0) { echo "
"; } else { echo "
"; } echo "
"; echo "
".__('St')."
"; echo "
".__('Type')."
"; echo "
".__('Event name')."
"; echo "
".__('Agent name')."
"; echo "
".__('Source')."
"; echo "
".__('Group')."
"; echo "
".__('User ID')."
"; echo "
".__('Timestamp')."
"; echo "
".__('Action')."
"; echo "
"; echo "
".__('All')."
"; echo '
'; echo "
"; $id_evento = 0; $offset_counter=0; // Make query for data (all data, not only distinct). foreach ($result as $row2) { $id_grupo = $row2["id_grupo"]; if (give_acl($config["id_user"], $id_grupo, "AR") == 1) // Only incident read access to view data ! $id_group = $row2["id_grupo"]; switch ($row2["criticity"]) { case 0: $tdclass = "datos_blue"; break; case 1: $tdclass = "datos_grey"; break; case 2: $tdclass = "datos_green"; break; case 3: $tdclass = "datos_yellow"; break; case 4: $tdclass = "datos_red"; break; default: $tdclass = "datos_grey"; } $criticity_label = return_priority ($row2["criticity"]); // Colored box echo "
"; if ($row2["estado"] == 0) { echo "
"; } else { echo "
"; } // Event type echo "
"; switch ($row2["event_type"]) { case "unknown": echo "
"; break; case "alert_recovered": echo "
"; break; case "alert_manual_validation": echo "
"; break; case "monitor_up": echo "
"; break; case "monitor_down": echo "
"; break; case "alert_fired": echo "
"; break; case "system"; echo "
"; break; case "recon_host_detected"; echo "
"; break; case "new_agent"; echo "
"; break; } // Event description $event_title = safe_input ($row2["evento"]); echo "
"; echo substr($row2["evento"],0,45); if (strlen($row2["evento"]) > 45) echo ".."; if ($row2["id_agente"] > 0) { // Agent name $agent_name = dame_nombre_agente ($row2["id_agente"]); echo "
"; echo substr($agent_name, 0, 14); if (strlen($agent_name) > 14) echo ".."; echo "
"; // Module name / Alert echo "
"; if ($row2["id_agentmodule"] != 0) echo "
"; echo " "; if ($row2["id_alert_am"] != 0) echo "
"; // Group icon $group_name = (string) get_db_value ('nombre', 'tgrupo', 'id_grupo', $id_group); echo "
"; // for System or SNMP generated alerts } elseif ($row2["event_type"] == "system") { echo "
".__('System'); } else { echo "
".__('Alert')."SNMP"; } // User who validated event echo "
"; if ($row2["estado"] <> 0) echo "
".substr($row2["id_usuario"],0,8)."
".dame_nombre_real($row2["id_usuario"])."
"; // Timestamp echo "
"; echo human_time_comparation ($row2["timestamp"]); echo "
"; // Several options grouped here echo "
"; // Validate event if (($row2["estado"] == 0) and (give_acl ($config["id_user"], $id_group,"IW") ==1)) echo "
"; // Delete event if (give_acl ($config["id_user"], $id_group,"IM") ==1) echo "
"; // Create incident from this event if (give_acl ($config["id_user"], $id_group,"IW") == 1) echo "
"; echo "
"; // Checbox echo "
"; echo "
"; echo "
"; $offset_counter++; } echo "
"; echo "
"; echo "
"; if (give_acl ($config["id_user"], 0,"IM") == 1) { echo "
"; } echo "
"; echo "
"; echo "
"; echo "
"; echo "
".__('Status')."
"; echo "
- ".__('Validated event'); echo "
"; echo "
- ".__('Not validated event'); echo "
"; echo "
"; echo "
".__('Action')."
"; echo "
- ".__('Validate event'); echo "
"; echo "
- ".__('Delete event'); echo "
"; echo "
- ".__('Create incident'); echo "
"; } // no events to show ?>
";
} else {
// Fullscreen
echo "";
}
echo "";
} else {
// Fullscreen
echo "";
}
echo "
';
if ($config["pure"] == 1) {
echo "
- ".__('Validated event');
echo "
- ".__('Not validated event');
echo "
- ".__('Validate event');
echo "
- ".__('Delete event');
echo "
- ".__('Create incident');
echo "