setBreadcrum([]); $this->task = []; $this->msg = $msg; $this->icon = $icon; $this->label = $label; $this->page = $page; $this->url = ui_get_full_url( 'index.php?sec=gservers&sec2=godmode/servers/discovery&wiz=hd' ); return $this; } /** * Run wizard manager. * * @return mixed Returns null if wizard is ongoing. Result if done. */ public function run() { global $config; // Load styles. parent::run(); $mode = get_parameter('mode', null); if ($mode === null) { $this->prepareBreadcrum( [ [ 'link' => $this->url.'&wiz=hd', 'label' => __('    Host & devices'), ], ] ); $this->printHeader(); $this->printBigButtonsList( [ [ 'url' => $this->url.'&mode=importcsv', 'icon' => 'images/wizard/csv_image.svg', 'label' => __('Import CSV'), ], [ 'url' => $this->url.'&mode=netscan', 'icon' => 'images/wizard/csv_image.svg', 'label' => __('Net Scan'), ], ] ); $this->printGoBackButton(); return; } if (enterprise_installed()) { if ($mode == 'importcsv') { $this->prepareBreadcrum( [ [ 'link' => $this->url.'&wiz=hd', 'label' => __('    Host & devices'), ], [ 'link' => $this->url.'&wiz=hd&mode=importcsv', 'label' => __('      Import CSV'), ], ] ); $this->printHeader(); $csv_importer = new CSVImportAgents($this->page, $this->breadcrum); return $csv_importer->runCSV(); } } if ($mode == 'netscan') { if ($this->page != 2) { // Do not paint breadcrum in last page. Redirected. $this->prepareBreadcrum( [ [ 'link' => $this->url.'&wiz=hd', 'label' => __('    Host & devices'), ], [ 'link' => $this->url.'&wiz=hd&mode=netscan', 'label' => __('      Net scan definition'), ], ] ); if ($this->page == 1) { $this->prepareBreadcrum( [ [ 'link' => $this->url.'&wiz=hd', 'label' => __('    Host & devices'), ], [ 'link' => $this->url.'&wiz=hd&mode=netscan', 'label' => __('      Net scan definition'), ], [ 'link' => $this->url.'&wiz=hd&mode=netscan&page=1', 'label' => __('      Net scan features'), ], ] ); } $this->printHeader(); } return $this->runNetScan(); } return null; } /** * Checks if environment is ready, * returns array * icon: icon to be displayed * label: label to be displayed * * @return array With data. **/ public function load() { return [ 'icon' => $this->icon, 'label' => $this->label, 'url' => $this->url, ]; } // Extra methods. /** * Retrieves and validates information given by user in NetScan wizard. * * @return boolean Data OK or not. */ public function parseNetScan() { if ($this->page == 0) { // Check if we're updating a task. $task_id = get_parameter('task', null); if (isset($task_id) === true) { // We're updating this task. $task = db_get_row( 'trecon_task', 'id_rt', $task_id ); if ($task !== false) { $this->task = $task; } } return true; } // Validate response from page 0. No, not a bug, we're always 1 page // from 'validation' page. if ($this->page == 1) { $task_id = get_parameter('task', null); $taskname = get_parameter('taskname', ''); $comment = get_parameter('comment', ''); $server_id = get_parameter('id_recon_server', ''); $network = get_parameter('network', ''); $id_group = get_parameter('id_group', ''); $interval = get_parameter('interval', 0); if (isset($task_id) === true) { // We're updating this task. $task = db_get_row( 'trecon_task', 'id_rt', $task_id ); if ($task !== false) { $this->task = $task; } } else if (isset($taskname) === true && isset($network) === true ) { // Avoid double creation. $task = db_get_row_filter( 'trecon_task', [ 'name' => $taskname, 'subnet' => $network, ] ); if ($task !== false) { $this->task = $task; $this->msg = __('This network scan task has been already defined. Please edit it or create a new one.'); return false; } } if (isset($this->task['id_rt']) === false) { // Disabled 2 Implies wizard non finished. $this->task['disabled'] = 2; } if ($taskname == '') { $this->msg = __('You must provide a task name.'); return false; } if ($server_id == '') { $this->msg = __('You must select a Discovery Server.'); return false; } if ($network == '') { // XXX: Could be improved validating provided network. $this->msg = __('You must provide a valid network.'); return false; } if ($id_group == '') { $this->msg = __('You must select a valid group.'); return false; } // Assign fields. $this->task['name'] = $taskname; $this->task['description'] = $comment; $this->task['subnet'] = $network; $this->task['id_recon_server'] = $server_id; $this->task['id_group'] = $id_group; $this->task['interval_sweep'] = $interval; if (isset($this->task['id_rt']) === false) { // Create. $this->task['id_rt'] = db_process_sql_insert( 'trecon_task', $this->task ); } else { // Update. db_process_sql_update( 'trecon_task', $this->task, ['id_rt' => $this->task['id_rt']] ); } return true; } // Validate response from page 1. if ($this->page == 2) { $id_rt = get_parameter('task', -1); $task = db_get_row( 'trecon_task', 'id_rt', $id_rt ); if ($task !== false) { $this->task = $task; } else { $this->msg = __('Failed to find network scan task.'); return false; } $id_network_profile = get_parameter('id_network_profile', null); $autoconf_enabled = get_parameter_switch( 'autoconfiguration_enabled' ); $snmp_enabled = get_parameter_switch('snmp_enabled'); $os_detect = get_parameter_switch('os_detect'); $parent_detection = get_parameter_switch('parent_detection'); $parent_recursion = get_parameter_switch('parent_recursion'); $vlan_enabled = get_parameter_switch('vlan_enabled'); $wmi_enabled = get_parameter_switch('wmi_enabled'); $resolve_names = get_parameter_switch('resolve_names'); $snmp_version = get_parameter('snmp_version', null); $community = get_parameter('community', null); $snmp_context = get_parameter('snmp_context', null); $snmp_auth_user = get_parameter('snmp_auth_user', null); $snmp_auth_pass = get_parameter('snmp_auth_pass', null); $snmp_privacy_method = get_parameter('snmp_privacy_method', null); $snmp_privacy_pass = get_parameter('snmp_privacy_pass', null); $snmp_auth_method = get_parameter('snmp_auth_method', null); $snmp_security_level = get_parameter('snmp_security_level', null); $auth_strings = get_parameter('auth_strings', null); if ($snmp_version == 3) { $this->task['snmp_community'] = $snmp_context; } else { $this->task['snmp_community'] = $community; } $this->task['autoconfiguration_enabled'] = $autoconf_enabled; $this->task['id_network_profile'] = $id_network_profile; $this->task['snmp_enabled'] = $snmp_enabled; $this->task['os_detect'] = $os_detect; $this->task['parent_detection'] = $parent_detection; $this->task['parent_recursion'] = $parent_recursion; $this->task['vlan_enabled'] = $vlan_enabled; $this->task['wmi_enabled'] = $wmi_enabled; $this->task['resolve_names'] = $resolve_names; $this->task['snmp_version'] = $snmp_version; $this->task['snmp_auth_user'] = $snmp_auth_user; $this->task['snmp_auth_pass'] = $snmp_auth_pass; $this->task['snmp_privacy_method'] = $snmp_privacy_method; $this->task['snmp_privacy_pass'] = $snmp_privacy_pass; $this->task['snmp_auth_method'] = $snmp_auth_method; $this->task['snmp_security_level'] = $snmp_security_level; $this->task['auth_strings'] = $auth_strings; if ($this->task['disabled'] == 2) { // Wizard finished. $this->task['disabled'] = 0; } // Update. $res = db_process_sql_update( 'trecon_task', $this->task, ['id_rt' => $this->task['id_rt']] ); return true; } if ($this->page == 3) { // Wizard ended. Load data and return control to Discovery. $id_rt = get_parameter('task', -1); $task = db_get_row( 'trecon_task', 'id_rt', $id_rt ); if ($task !== false) { $this->task = $task; } else { $this->msg = __('Failed to find network scan task.'); return false; } return true; } return false; } /** * Undocumented function * * @return void */ public function runNetScan() { global $config; check_login(); if (! check_acl($config['id_user'], 0, 'PM')) { db_pandora_audit( 'ACL Violation', 'Trying to access Agent Management' ); include 'general/noaccess.php'; return; } if ($this->parseNetScan() === false) { // Error. ui_print_error_message( $this->msg ); $form = [ 'form' => [ 'method' => 'POST', 'action' => $this->url.'&mode=netscan&page='.($this->page - 1).'&task='.$this->task['id_rt'], ], 'inputs' => [ [ 'arguments' => [ 'type' => 'hidden', 'name' => 'task', 'value' => $this->task['id_rt'], ], ], [ 'arguments' => [ 'name' => 'submit', 'label' => __('Go back'), 'type' => 'submit', 'attributes' => 'class="sub cancel"', 'return' => true, ], ], ], ]; // Check ACL. If user is not able to manage target task, // redirect him to main page. if (users_is_admin() !== true && check_acl( $config['id_usuario'], $this->task['id_group'], 'PM' ) !== true ) { $form['form']['action'] = $this->url.'&mode=netscan&page='.($this->page - 1); } $this->printForm($form); return null; } if (isset($this->page) === true && $this->page != 0 && isset($this->task['id_rt']) === false ) { // Error. ui_print_error_message( __('Internal error, please re-run this wizard.') ); $form = [ 'form' => [ 'method' => 'POST', 'action' => $this->url.'&mode=netscan&page=0', ], 'inputs' => [ [ 'arguments' => [ 'type' => 'hidden', 'name' => 'page', 'value' => 0, ], ], [ 'arguments' => [ 'name' => 'submit', 'label' => __('Go back'), 'type' => 'submit', 'attributes' => 'class="sub cancel"', 'return' => true, ], ], ], ]; $this->printForm($form); return null; } // -------------------------------. // Page 0. wizard starts HERE. // -------------------------------. if (isset($this->page) === true || $this->page == 0) { if (isset($this->page) === false || $this->page == 0 ) { $form = []; // Input task name. $form['inputs'][] = [ 'label' => ''.__('Task name').'', 'arguments' => [ 'name' => 'taskname', 'value' => $this->task['name'], 'type' => 'text', 'size' => 25, ], ]; if (isset($this->task['id_rt']) === true) { // Propagate id. $form['inputs'][] = [ 'arguments' => [ 'name' => 'task', 'value' => $this->task['id_rt'], 'type' => 'hidden', ], ]; } // Input task name. $form['inputs'][] = [ 'label' => ''.__('Comment').'', 'arguments' => [ 'name' => 'comment', 'value' => $this->task['description'], 'type' => 'text', 'size' => 25, ], ]; // Input Discovery Server. $form['inputs'][] = [ 'label' => ''.__('Discovery server').''.ui_print_help_tip( __('You must select a Discovery Server to run the Task, otherwise the Recon Task will never run'), true ), 'arguments' => [ 'type' => 'select_from_sql', 'sql' => sprintf( 'SELECT id_server, name FROM tserver WHERE server_type = %d ORDER BY name', SERVER_TYPE_DISCOVERY ), 'name' => 'id_recon_server', 'selected' => $this->task['id_recon_server'], 'return' => true, ], ]; // Input Network. $form['inputs'][] = [ 'label' => ''.__('Network').''.ui_print_help_tip( __('You can specify several networks, separated by commas, for example: 192.168.50.0/24,192.168.60.0/24'), true ), 'arguments' => [ 'name' => 'network', 'value' => $this->task['subnet'], 'type' => 'text', 'size' => 25, ], ]; // Input Group. $form['inputs'][] = [ 'label' => ''.__('Group').'', 'arguments' => [ 'name' => 'id_group', 'returnAllGroup' => false, 'privilege' => 'PM', 'type' => 'select_groups', 'selected' => $this->task['id_group'], 'return' => true, ], ]; // Interval and schedules. $interv_manual = 0; if ((int) $this->task['interval_sweep'] == 0) { $interv_manual = 1; } // Schedule. $form['inputs'][] = [ 'label' => ''.__('Interval').''.ui_print_help_tip( __('Manual interval means that it will be executed only On-demand'), true ), 'arguments' => [ 'type' => 'select', 'selected' => $interv_manual, 'fields' => [ 0 => __('Defined'), 1 => __('Manual'), ], 'name' => 'interval_manual_defined', 'return' => true, ], 'extra' => ''.html_print_extended_select_for_time( 'interval', $this->task['interval_sweep'], '', '', '0', false, true, false, false ).ui_print_help_tip( __('The minimum recomended interval for Recon Task is 5 minutes'), true ).'', ]; $str = __('Next'); if (isset($this->task['id_rt']) === true) { $str = __('Update and continue'); } // Submit button. $form['inputs'][] = [ 'arguments' => [ 'name' => 'submit', 'label' => $str, 'type' => 'submit', 'attributes' => 'class="sub next"', 'return' => true, ], ]; $task_url = ''; if (isset($this->task['id_rt'])) { $task_url = '&task='.$this->task['id_rt']; } $form['form'] = [ 'method' => 'POST', 'action' => $this->url.'&mode=netscan&page='.($this->page + 1).$task_url, ]; $form['js'] = ' $("select#interval_manual_defined").change(function() { if ($("#interval_manual_defined").val() == 1) { $("#interval_manual_container").hide(); $("#text-interval_text").val(0); $("#hidden-interval").val(0); } else { $("#interval_manual_container").show(); $("#text-interval_text").val(10); $("#hidden-interval").val(600); $("#interval_units").val(60); } }).change();'; // XXX: Could be improved validating inputs before continue (JS) // Print NetScan page 0. $this->printForm($form); $this->printGoBackButton(); } } if ($this->page == 1) { // Page 1. $form = []; // Hidden, id_rt. $form['inputs'][] = [ 'arguments' => [ 'name' => 'task', 'value' => $this->task['id_rt'], 'type' => 'hidden', 'return' => true, ], ]; // Hidden, page. $form['inputs'][] = [ 'arguments' => [ 'name' => 'page', 'value' => ($this->page + 1), 'type' => 'hidden', 'return' => true, ], ]; $form['inputs'][] = [ 'extra' => '
Please, configure task '.io_safe_output($this->task['name']).'
', ]; // Input: Module template. $form['inputs'][] = [ 'label' => __('Module template'), 'arguments' => [ 'name' => 'id_network_profile', 'type' => 'select_from_sql', 'sql' => 'SELECT id_np, name FROM tnetwork_profile ORDER BY name', 'return' => true, 'selected' => $this->task['id_network_profile'], 'nothing_value' => 0, 'nothing' => __('None'), ], ]; if (enterprise_installed() === true) { // Input: Enable auto configuration. $form['inputs'][] = [ 'label' => __('Apply autoconfiguration rules').ui_print_help_tip( __( 'System is able to auto configure detected host & devices by applying your defined configuration rules.' ), true ), 'arguments' => [ 'name' => 'autoconfiguration_enabled', 'type' => 'switch', 'return' => true, 'value' => (isset($this->task['autoconfiguration_enabled'])) ? $this->task['autoconfiguration_enabled'] : 0, ], ]; } // Feature configuration. // Input: SNMP enabled. $form['inputs'][] = [ 'label' => __('SNMP enabled'), 'arguments' => [ 'name' => 'snmp_enabled', 'type' => 'switch', 'return' => true, 'value' => (isset($this->task['snmp_enabled'])) ? $this->task['snmp_enabled'] : 1, 'onclick' => 'extraSNMP();', ], ]; // SNMP CONFIGURATION. $form['inputs'][] = [ 'hidden' => 1, 'block_id' => 'snmp_extra', 'block_content' => [ [ 'label' => __('SNMP version'), 'arguments' => [ 'name' => 'snmp_version', 'fields' => [ '1' => 'v. 1', '2c' => 'v. 2c', '3' => 'v. 3', ], 'type' => 'select', 'script' => 'SNMPExtraShow(this.value)', 'selected' => $this->task['snmp_version'], 'return' => true, ], ], ], ]; // SNMP Options pack v1. $form['inputs'][] = [ 'hidden' => 1, 'block_id' => 'snmp_options_basic', 'block_content' => [ [ 'label' => ''.__('SNMP Default community').''.ui_print_help_tip( __( 'You can specify several values, separated by commas, for example: public,mysecret,1234' ), true ), 'arguments' => [ 'name' => 'community', 'type' => 'text', 'value' => $this->task['snmp_community'], 'size' => 25, 'return' => true, ], ], ], ]; // SNMP Options pack v3. $form['inputs'][] = [ 'hidden' => 1, 'block_id' => 'snmp_options_v3', 'block_content' => [ [ 'label' => ''.__('Context').'', 'arguments' => [ 'name' => 'snmp_context', 'type' => 'text', 'value' => $this->task['snmp_community'], 'size' => 15, 'return' => true, ], ], [ 'label' => ''.__('Auth user').'', 'arguments' => [ 'name' => 'snmp_auth_user', 'type' => 'text', 'value' => $this->task['snmp_auth_user'], 'size' => 15, 'return' => true, ], ], [ 'label' => ''.__('Auth password').''.ui_print_help_tip( __( 'The pass length must be eight character minimum.' ), true ), 'arguments' => [ 'name' => 'snmp_auth_pass', 'type' => 'password', 'value' => $this->task['snmp_auth_pass'], 'size' => 15, 'return' => true, ], ], [ 'label' => ''.__('Privacy method').'', 'arguments' => [ 'name' => 'snmp_privacy_method', 'type' => 'select', 'fields' => [ 'DES' => __('DES'), 'AES' => __('AES'), ], 'selected' => $this->task['snmp_privacy_method'], 'size' => 15, 'return' => true, ], ], [ 'label' => ''.__('Privacy pass').''.ui_print_help_tip( __( 'The pass length must be eight character minimum.' ), true ), 'arguments' => [ 'name' => 'snmp_privacy_pass', 'type' => 'password', 'value' => $this->task['snmp_privacy_pass'], 'size' => 15, 'return' => true, ], ], [ 'label' => ''.__('Auth method').'', 'arguments' => [ 'name' => 'snmp_auth_method', 'type' => 'select', 'fields' => [ 'MD5' => __('MD5'), 'SHA' => __('SHA'), ], 'selected' => $this->task['snmp_auth_method'], 'size' => 15, 'return' => true, ], ], [ 'label' => ''.__('Security level').'', 'arguments' => [ 'name' => 'snmp_security_level', 'type' => 'select', 'fields' => [ 'noAuthNoPriv' => __('Not auth and not privacy method'), 'authNoPriv' => __('Auth and not privacy method'), 'authPriv' => __('Auth and privacy method'), ], 'selected' => $this->task['snmp_security_level'], 'size' => 15, 'return' => true, ], ], ], ]; // Input: WMI enabled. $form['inputs'][] = [ 'label' => __('WMI enabled'), 'arguments' => [ 'name' => 'wmi_enabled', 'type' => 'switch', 'value' => (isset($this->task['wmi_enabled'])) ? $this->task['wmi_enabled'] : 0, 'return' => true, 'onclick' => 'toggleWMI();', ], ]; // WMI CONFIGURATION. $form['inputs'][] = [ 'block_id' => 'wmi_extra', 'hidden' => 1, 'block_content' => [ [ 'label' => ''.__('WMI Auth. strings').''.ui_print_help_tip( __( 'Auth strings must be defined as user%pass, comma separated as many you need.' ), true ), 'arguments' => [ 'name' => 'auth_strings', 'type' => 'text', 'value' => $this->task['auth_strings'], 'return' => true, ], ], ], ]; // Input: Enforce os detection. $form['inputs'][] = [ 'label' => __('OS detection'), 'arguments' => [ 'name' => 'os_detect', 'type' => 'switch', 'return' => true, 'value' => (isset($this->task['os_detect'])) ? $this->task['os_detect'] : 1, ], ]; // Input: Name resolution. $form['inputs'][] = [ 'label' => __('Name resolution'), 'arguments' => [ 'name' => 'resolve_names', 'type' => 'switch', 'return' => true, 'value' => (isset($this->task['resolve_names'])) ? $this->task['resolve_names'] : 0, ], ]; // Input: Parent detection. $form['inputs'][] = [ 'label' => __('Parent detection'), 'arguments' => [ 'name' => 'parent_detection', 'type' => 'switch', 'return' => true, 'value' => (isset($this->task['parent_detection'])) ? $this->task['parent_detection'] : 1, ], ]; // Input: Parent recursion. $form['inputs'][] = [ 'label' => __('Parent recursion'), 'arguments' => [ 'name' => 'parent_recursion', 'type' => 'switch', 'return' => true, 'value' => (isset($this->task['parent_recursion'])) ? $this->task['parent_recursion'] : 1, ], ]; // Input: VLAN enabled. $form['inputs'][] = [ 'label' => __('VLAN enabled'), 'arguments' => [ 'name' => 'vlan_enabled', 'type' => 'switch', 'return' => true, 'value' => (isset($this->task['vlan_enabled'])) ? $this->task['vlan_enabled'] : 1, ], ]; // Submit button. $form['inputs'][] = [ 'arguments' => [ 'name' => 'submit', 'label' => __('Finish'), 'type' => 'submit', 'attributes' => 'class="sub next"', 'return' => true, ], ]; $form['js'] = ' function SNMPExtraShow(target) { $("#snmp_options_basic").hide(); $("#snmp_options_v3").hide(); if (document.getElementsByName("snmp_enabled")[0].checked) { $("#snmp_extra").show(); if (target == 3) { $("#snmp_options_v3").show(); } else { $("#snmp_options_basic").show(); } } } function extraSNMP() { if (document.getElementsByName("snmp_enabled")[0].checked) { SNMPExtraShow($("#snmp_version").val()); $("#snmp_extra").show(); } else { // Hide unusable sections $("#snmp_extra").hide(); $("#snmp_options_basic").hide(); $("#snmp_options_v3").hide(); // Disable snmp dependant checks if (document.getElementsByName("parent_recursion")[0].checked) $("input[name=parent_recursion]").click(); if (document.getElementsByName("parent_detection")[0].checked) $("input[name=parent_detection]").click(); if (document.getElementsByName("vlan_enabled")[0].checked) $("input[name=vlan_enabled]").click(); } } function toggleWMI() { if (document.getElementsByName("wmi_enabled")[0].checked) $("#wmi_extra").show(); else $("#wmi_extra").hide(); } $(function() { SNMPExtraShow($("#snmp_version").val()); toggleWMI(); }); '; $form['form'] = [ 'method' => 'POST', 'action' => $this->url.'&mode=netscan&page='.($this->page + 1).'&task='.$this->task['id_rt'], ]; $this->printForm($form); } if ($this->page == 2) { if ($this->task['id_rt']) { // 0 - Is OK. $this->result = 0; $this->msg = __('Task configured.'); } else { // 1 - Is NOT OK. $this->result = 1; $this->msg = __('Wizard failed. Cannot configure task.'); } return [ 'result' => $this->result, 'id' => $this->task['id_rt'], 'msg' => $this->msg, ]; } } /** * Builder for breadcrum * * @param array $urls Array of urls to be stored in breadcrum. * * @return void */ public function prepareBreadcrum(array $urls) { $bc = []; $i = 0; foreach ($urls as $url) { $bc[$i] = ''; $bc[$i] .= '