362 lines
9.3 KiB
PHP
362 lines
9.3 KiB
PHP
<?php
|
|
// Pandora FMS - http://pandorafms.com
|
|
// ==================================================
|
|
// Copyright (c) 2005-2010 Artica Soluciones Tecnologicas
|
|
// Please see http://pandorafms.org for full contribution list
|
|
|
|
// This program is free software; you can redistribute it and/or
|
|
// modify it under the terms of the GNU General Public License
|
|
// as published by the Free Software Foundation for version 2.
|
|
// This program is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU General Public License for more details.
|
|
|
|
//Set character encoding to UTF-8 - fixes a lot of multibyte character
|
|
//headaches
|
|
if (function_exists ('mb_internal_encoding')) {
|
|
mb_internal_encoding ("UTF-8");
|
|
}
|
|
|
|
$develop_bypass = 0;
|
|
|
|
require_once("include/ui.class.php");
|
|
require_once("include/system.class.php");
|
|
require_once("include/db.class.php");
|
|
require_once("include/user.class.php");
|
|
|
|
require_once('operation/home.php');
|
|
require_once('operation/tactical.php');
|
|
require_once('operation/groups.php');
|
|
require_once('operation/events.php');
|
|
require_once('operation/alerts.php');
|
|
require_once('operation/agents.php');
|
|
require_once('operation/modules.php');
|
|
require_once('operation/module_graph.php');
|
|
require_once('operation/agent.php');
|
|
require_once('operation/networkmaps.php');
|
|
require_once('operation/networkmap.php');
|
|
require_once('operation/visualmaps.php');
|
|
require_once('operation/visualmap.php');
|
|
$enterpriseHook = enterprise_include('mobile/include/enterprise.class.php');
|
|
$enterpriseHook = enterprise_include('mobile/operation/dashboard.php');
|
|
$enterpriseHook = enterprise_include('mobile/operation/home.php');
|
|
|
|
if (!empty ($config["https"]) && empty ($_SERVER['HTTPS'])) {
|
|
$query = '';
|
|
if (sizeof ($_REQUEST))
|
|
//Some (old) browsers don't like the ?&key=var
|
|
$query .= 'mobile/index.php?1=1';
|
|
|
|
//We don't clean these variables up as they're only being passed along
|
|
foreach ($_GET as $key => $value) {
|
|
if ($key == 1)
|
|
continue;
|
|
$query .= '&'.$key.'='.$value;
|
|
}
|
|
foreach ($_POST as $key => $value) {
|
|
$query .= '&'.$key.'='.$value;
|
|
}
|
|
$url = ui_get_full_url($query);
|
|
|
|
// Prevent HTTP response splitting attacks
|
|
// http://en.wikipedia.org/wiki/HTTP_response_splitting
|
|
$url = str_replace ("\n", "", $url);
|
|
header ('Location: '.$url);
|
|
exit; //Always exit after sending location headers
|
|
}
|
|
|
|
$system = System::getInstance();
|
|
|
|
//~ In this moment doesn't work the version mobile when have metaconsole version.
|
|
//~ In the future versions of pandora maybe is added a mobile version of PandoraFMS Metaconsole version.
|
|
//~ if ($system->getConfig('metaconsole'))
|
|
//~ header ("Location: " . $system->getConfig('homeurl') . "enterprise/meta");
|
|
|
|
|
|
require_once($system->getConfig('homedir').'/include/constants.php');
|
|
|
|
$user = User::getInstance();
|
|
|
|
if (!is_object($user) && gettype($user) == 'object') {
|
|
$user = unserialize (serialize ($user));
|
|
}
|
|
|
|
$user->saveLogin();
|
|
|
|
$default_page = 'home';
|
|
$page = $system->getRequest('page');
|
|
$action = $system->getRequest('action');
|
|
|
|
// The logout action has priority
|
|
if ($action != 'logout') {
|
|
if (!$user->isLogged()) {
|
|
$action = 'login';
|
|
}
|
|
else if ($user->isWaitingDoubleAuth()) {
|
|
$dauth_period = SECONDS_2MINUTES;
|
|
$now = time();
|
|
$dauth_time = $user->getLoginTime();
|
|
|
|
if ($now - $dauth_period < $dauth_time) {
|
|
$action = 'double_auth';
|
|
}
|
|
// Expired login
|
|
else {
|
|
$action = 'logout';
|
|
}
|
|
}
|
|
}
|
|
|
|
if ($action != "ajax") {
|
|
$user_language = get_user_language ($system->getConfig('id_user'));
|
|
if (file_exists ('../include/languages/'.$user_language.'.mo')) {
|
|
$l10n = new gettext_reader (new CachedFileReader('../include/languages/'.$user_language.'.mo'));
|
|
$l10n->load_tables();
|
|
}
|
|
}
|
|
|
|
switch ($action) {
|
|
case 'ajax':
|
|
$parameter1 = $system->getRequest('parameter1', false);
|
|
$parameter2 = $system->getRequest('parameter2', false);
|
|
|
|
if (class_exists("Enterprise")) {
|
|
$enterprise = Enterprise::getInstance();
|
|
|
|
$permission = $enterprise->checkEnterpriseACL($parameter1);
|
|
|
|
if (!$permission) {
|
|
return false;
|
|
}
|
|
}
|
|
|
|
switch ($parameter1) {
|
|
case 'events':
|
|
$events = new Events();
|
|
$events->ajax($parameter2);
|
|
break;
|
|
case 'agents':
|
|
$agents = new Agents();
|
|
$agents->ajax($parameter2);
|
|
break;
|
|
case 'agent':
|
|
$agent = new Agent();
|
|
$agent->ajax($parameter2);
|
|
break;
|
|
case 'modules':
|
|
$modules = new Modules();
|
|
$modules->ajax($parameter2);
|
|
break;
|
|
case 'module_graph':
|
|
$module_graph = new ModuleGraph();
|
|
$module_graph->ajax($parameter2);
|
|
break;
|
|
case 'visualmap':
|
|
$visualmap = new Visualmap();
|
|
$visualmap->ajax($parameter2);
|
|
case 'tactical':
|
|
$tactical = new Tactical();
|
|
$tactical->ajax($parameter2);
|
|
break;
|
|
default:
|
|
if (class_exists("Enterprise")) {
|
|
$enterprise->enterpriseAjax($parameter1, $parameter2);
|
|
}
|
|
break;
|
|
}
|
|
return;
|
|
break;
|
|
case 'login':
|
|
if ($user->login() && $user->isLogged()) {
|
|
if ($user->isWaitingDoubleAuth()) {
|
|
if ($user->validateDoubleAuthCode()) {
|
|
// Logged. Refresh the page
|
|
header('Location: .');
|
|
return;
|
|
}
|
|
else {
|
|
$user->showDoubleAuthPage();
|
|
}
|
|
}
|
|
else {
|
|
// Logged. Refresh the page
|
|
header('Location: .');
|
|
return;
|
|
}
|
|
|
|
}
|
|
else {
|
|
$user->showLoginPage();
|
|
}
|
|
break;
|
|
case 'double_auth':
|
|
if ($user->isLogged()) {
|
|
if ($user->validateDoubleAuthCode()) {
|
|
$user_language = get_user_language ($system->getConfig('id_user'));
|
|
if (file_exists ('../include/languages/'.$user_language.'.mo')) {
|
|
$l10n = new gettext_reader (new CachedFileReader('../include/languages/'.$user_language.'.mo'));
|
|
$l10n->load_tables();
|
|
}
|
|
|
|
if($_GET['page'] != ''){
|
|
header('refresh:0; url=http://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']);
|
|
}
|
|
|
|
if (class_exists("HomeEnterprise"))
|
|
$home = new HomeEnterprise();
|
|
else
|
|
$home = new Home();
|
|
$home->show();
|
|
}
|
|
else {
|
|
$user->showDoubleAuthPage();
|
|
}
|
|
}
|
|
else {
|
|
$user->showLoginPage();
|
|
}
|
|
break;
|
|
case 'logout':
|
|
$user->logout();
|
|
$user->showLoginPage();
|
|
break;
|
|
default:
|
|
if (class_exists("Enterprise")) {
|
|
$enterprise = Enterprise::getInstance();
|
|
if (!empty($page) && $page != $default_page) {
|
|
$permission = $enterprise->checkEnterpriseACL($page);
|
|
|
|
if (!$permission) {
|
|
$error['type'] = 'onStart';
|
|
$error['title_text'] = __('You don\'t have access to this page');
|
|
$error['content_text'] = __('Access to this page is restricted to authorized users only, please contact system administrator if you need assistance. <br><br>Please know that all attempts to access this page are recorded in security logs of Pandora System Database');
|
|
if (class_exists("HomeEnterprise"))
|
|
$home = new HomeEnterprise();
|
|
else
|
|
$home = new Home();
|
|
$home->show($error);
|
|
|
|
return;
|
|
}
|
|
}
|
|
}
|
|
|
|
if (empty($page)) {
|
|
$user_info = $user->getInfo();
|
|
$home_page = $system->safeOutput($user_info['section']);
|
|
$section_data = $user_info['data_section'];
|
|
|
|
switch ($home_page) {
|
|
case 'Event list':
|
|
$page = 'events';
|
|
break;
|
|
case 'Group view':
|
|
break;
|
|
case 'Alert detail':
|
|
$page = 'alerts';
|
|
break;
|
|
case 'Tactical view':
|
|
$page = 'tactical';
|
|
break;
|
|
case 'Dashboard':
|
|
$page = 'dashboard';
|
|
$id_dashboard = (int) db_get_value('id', 'tdashboard', 'name', $section_data);
|
|
$_GET['id_dashboard'] = $id_dashboard;
|
|
break;
|
|
case 'Visual console':
|
|
$page = 'visualmap';
|
|
$id_map = (int) db_get_value('id', 'tlayout', 'name', $section_data);
|
|
$_GET['id'] = $id_map;
|
|
break;
|
|
}
|
|
}
|
|
|
|
switch ($page) {
|
|
case 'home':
|
|
default:
|
|
if (class_exists("HomeEnterprise"))
|
|
$home = new HomeEnterprise();
|
|
else
|
|
$home = new Home();
|
|
$home->show();
|
|
break;
|
|
case 'tactical':
|
|
$tactical = new Tactical();
|
|
$tactical->show();
|
|
break;
|
|
case 'groups':
|
|
$groups = new Groups();
|
|
$groups->show();
|
|
break;
|
|
case 'events':
|
|
$events = new Events();
|
|
$events->show();
|
|
break;
|
|
case 'alerts':
|
|
$alerts = new Alerts();
|
|
$alerts->show();
|
|
break;
|
|
case 'agents':
|
|
$agents = new Agents();
|
|
$agents->show();
|
|
break;
|
|
case 'modules':
|
|
$modules = new Modules();
|
|
$modules->show();
|
|
break;
|
|
case 'module_graph':
|
|
$module_graph = new ModuleGraph();
|
|
$module_graph->show();
|
|
break;
|
|
case 'agent':
|
|
$agent = new Agent();
|
|
$agent->show();
|
|
break;
|
|
case 'networkmaps':
|
|
$networkmaps = new Networkmaps();
|
|
$networkmaps->show();
|
|
break;
|
|
case 'networkmap':
|
|
$networkmap = new Networkmap();
|
|
$networkmap->show();
|
|
break;
|
|
case 'visualmaps':
|
|
$visualmaps = new Visualmaps();
|
|
$visualmaps->show();
|
|
break;
|
|
case 'visualmap':
|
|
$visualmap = new Visualmap();
|
|
$visualmap->show();
|
|
break;
|
|
case 'dashboard_list':
|
|
if (class_exists("Dashboards")) {
|
|
$dashboard = new Dashboards();
|
|
$dashboard->showDashboards();
|
|
}
|
|
else {
|
|
if (class_exists("HomeEnterprise"))
|
|
$home = new HomeEnterprise();
|
|
else
|
|
$home = new Home();
|
|
$home->show();
|
|
}
|
|
break;
|
|
case 'dashboard':
|
|
if (class_exists("Dashboards")) {
|
|
$dashboard = new Dashboards();
|
|
$dashboard->show();
|
|
}
|
|
else {
|
|
if (class_exists("HomeEnterprise"))
|
|
$home = new HomeEnterprise();
|
|
else
|
|
$home = new Home();
|
|
$home->show();
|
|
}
|
|
break;
|
|
}
|
|
break;
|
|
}
|
|
?>
|