2858 lines
81 KiB
PHP
2858 lines
81 KiB
PHP
<?php
|
|
|
|
// Pandora FMS - http://pandorafms.com
|
|
// ==================================================
|
|
// Copyright (c) 2005-2011 Artica Soluciones Tecnologicas
|
|
// Please see http://pandorafms.org for full contribution list
|
|
|
|
// This program is free software; you can redistribute it and/or
|
|
// modify it under the terms of the GNU Lesser General Public License
|
|
// as published by the Free Software Foundation; version 2
|
|
|
|
// This program is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU General Public License for more details.
|
|
|
|
include_once($config['homedir'] . "/include/functions_ui.php");
|
|
include_once($config['homedir'] . "/include/functions_tags.php");
|
|
enterprise_include_once ('meta/include/functions_events_meta.php');
|
|
enterprise_include_once ('meta/include/functions_agents_meta.php');
|
|
enterprise_include_once ('meta/include/functions_modules_meta.php');
|
|
|
|
|
|
/**
|
|
* @package Include
|
|
* @subpackage Events
|
|
*/
|
|
|
|
function events_get_all_fields() {
|
|
|
|
$columns = array();
|
|
|
|
$columns['id_evento'] = __('Event id');
|
|
$columns['evento'] = __('Event name');
|
|
$columns['id_agente'] = __('Agent name');
|
|
$columns['id_usuario'] = __('User');
|
|
$columns['id_grupo'] = __('Group');
|
|
$columns['estado'] = __('Status');
|
|
$columns['timestamp'] = __('Timestamp');
|
|
$columns['event_type'] = __('Event type');
|
|
$columns['id_agentmodule'] = __('Agent module');
|
|
$columns['id_alert_am'] = __('Alert');
|
|
$columns['criticity'] = __('Criticity');
|
|
$columns['user_comment'] = __('Comment');
|
|
$columns['tags'] = __('Tags');
|
|
$columns['source'] = __('Source');
|
|
$columns['id_extra'] = __('Extra id');
|
|
$columns['owner_user'] = __('Owner');
|
|
$columns['ack_utimestamp'] = __('ACK Timestamp');
|
|
$columns['instructions'] = __('Instructions');
|
|
$columns['server_name'] = __('Server name');
|
|
|
|
return $columns;
|
|
}
|
|
|
|
/**
|
|
* Get all rows of events from the database, that
|
|
* pass the filter, and can get only some fields.
|
|
*
|
|
* @param mixed Filters elements. It can be an indexed array
|
|
* (keys would be the field name and value the expected value, and would be
|
|
* joined with an AND operator) or a string, including any SQL clause (without
|
|
* the WHERE keyword). Example:
|
|
* <code>
|
|
* Both are similars:
|
|
* db_get_all_rows_filter ('table', array ('disabled', 0));
|
|
* db_get_all_rows_filter ('table', 'disabled = 0');
|
|
*
|
|
* Both are similars:
|
|
* db_get_all_rows_filter ('table', array ('disabled' => 0, 'history_data' => 0), 'name', 'OR');
|
|
* db_get_all_rows_filter ('table', 'disabled = 0 OR history_data = 0', 'name');
|
|
* </code>
|
|
* @param mixed Fields of the table to retrieve. Can be an array or a coma
|
|
* separated string. All fields are retrieved by default
|
|
*
|
|
*
|
|
* @return mixed False in case of error or invalid values passed. Affected rows otherwise
|
|
*/
|
|
function events_get_events ($filter = false, $fields = false) {
|
|
if ($filter['criticity'] == EVENT_CRIT_WARNING_OR_CRITICAL) {
|
|
$filter['criticity'] = array(EVENT_CRIT_WARNING, EVENT_CRIT_CRITICAL);
|
|
}
|
|
|
|
return db_get_all_rows_filter ('tevento', $filter, $fields);
|
|
}
|
|
|
|
/**
|
|
* Get the event with the id pass as parameter.
|
|
*
|
|
* @param int $id Event id
|
|
* @param mixed $fields The fields to show or by default all with false.
|
|
*
|
|
* @return mixed False in case of error or invalid values passed. Event row otherwise
|
|
*/
|
|
function events_get_event ($id, $fields = false) {
|
|
if (empty ($id))
|
|
return false;
|
|
global $config;
|
|
|
|
if (is_array ($fields)) {
|
|
if (! in_array ('id_grupo', $fields))
|
|
$fields[] = 'id_grupo';
|
|
}
|
|
|
|
$event = db_get_row ('tevento', 'id_evento', $id, $fields);
|
|
if (! check_acl ($config['id_user'], $event['id_grupo'], 'ER'))
|
|
return false;
|
|
|
|
return $event;
|
|
}
|
|
|
|
function events_get_events_grouped($sql_post, $offset = 0, $pagination = 1, $meta = false, $history = false, $total = false) {
|
|
global $config;
|
|
|
|
$table = events_get_events_table($meta, $history);
|
|
|
|
if ($meta) {
|
|
$groupby_extra = ', server_id';
|
|
}
|
|
else {
|
|
$groupby_extra = '';
|
|
}
|
|
|
|
switch ($config["dbtype"]) {
|
|
case "mysql":
|
|
db_process_sql ('SET group_concat_max_len = 9999999');
|
|
if ($total) {
|
|
$sql = "SELECT COUNT(*) FROM (SELECT *
|
|
FROM $table te
|
|
WHERE 1=1 " . $sql_post . "
|
|
GROUP BY estado, evento, id_agentmodule" . $groupby_extra . ") AS t";
|
|
}
|
|
else {
|
|
$sql = "SELECT *, MAX(id_evento) AS id_evento,
|
|
GROUP_CONCAT(DISTINCT user_comment SEPARATOR '<br>') AS user_comment,
|
|
GROUP_CONCAT(DISTINCT id_evento SEPARATOR ',') AS similar_ids,
|
|
COUNT(*) AS event_rep, MAX(utimestamp) AS timestamp_rep,
|
|
MIN(utimestamp) AS timestamp_rep_min,
|
|
(SELECT owner_user FROM $table WHERE id_evento = MAX(te.id_evento)) owner_user,
|
|
(SELECT id_usuario FROM $table WHERE id_evento = MAX(te.id_evento)) id_usuario,
|
|
(SELECT id_agente FROM $table WHERE id_evento = MAX(te.id_evento)) id_agente,
|
|
(SELECT criticity FROM $table WHERE id_evento = MAX(te.id_evento)) AS criticity,
|
|
(SELECT ack_utimestamp FROM $table WHERE id_evento = MAX(te.id_evento)) AS ack_utimestamp
|
|
FROM $table te
|
|
WHERE 1=1 " . $sql_post . "
|
|
GROUP BY estado, evento, id_agentmodule" . $groupby_extra . "
|
|
ORDER BY timestamp_rep DESC LIMIT " . $offset . "," . $pagination;
|
|
}
|
|
break;
|
|
case "postgresql":
|
|
if ($total) {
|
|
$sql = "SELECT COUNT(*)
|
|
FROM $table te
|
|
WHERE 1=1 " . $sql_post . "
|
|
GROUP BY estado, evento, id_agentmodule, id_evento, id_agente, id_usuario, id_grupo, estado, timestamp, utimestamp, event_type, id_alert_am, criticity, user_comment, tags, source, id_extra" . $groupby_extra;
|
|
}
|
|
else {
|
|
$sql = "SELECT *, MAX(id_evento) AS id_evento, array_to_string(array_agg(DISTINCT user_comment), '<br>') AS user_comment,
|
|
array_to_string(array_agg(DISTINCT id_evento), ',') AS similar_ids,
|
|
COUNT(*) AS event_rep, MAX(utimestamp) AS timestamp_rep,
|
|
MIN(utimestamp) AS timestamp_rep_min,
|
|
(SELECT owner_user FROM $table WHERE id_evento = MAX(te.id_evento)) owner_user,
|
|
(SELECT id_usuario FROM $table WHERE id_evento = MAX(te.id_evento)) id_usuario,
|
|
(SELECT id_agente FROM $table WHERE id_evento = MAX(te.id_evento)) id_agente,
|
|
(SELECT criticity FROM $table WHERE id_evento = MAX(te.id_evento)) AS criticity,
|
|
(SELECT ack_utimestamp FROM $table WHERE id_evento = MAX(te.id_evento)) AS ack_utimestamp
|
|
FROM $table te
|
|
WHERE 1=1 " . $sql_post . "
|
|
GROUP BY estado, evento, id_agentmodule, id_evento,
|
|
id_agente, id_usuario, id_grupo, estado,
|
|
timestamp, utimestamp, event_type, id_alert_am,
|
|
criticity, user_comment, tags, source, id_extra,
|
|
te.critical_instructions,
|
|
te.warning_instructions,
|
|
te.unknown_instructions,
|
|
te.owner_user,
|
|
te.ack_utimestamp,
|
|
te.custom_data " . $groupby_extra . "
|
|
ORDER BY timestamp_rep DESC LIMIT " . $pagination . " OFFSET " . $offset;
|
|
}
|
|
break;
|
|
case "oracle":
|
|
if ($total) {
|
|
$sql = "SELECT COUNT(*)
|
|
FROM $table te
|
|
WHERE 1=1 $sql_post
|
|
GROUP BY estado, to_char(evento), id_agentmodule" . $groupby_extra . ") b ";
|
|
}
|
|
else {
|
|
$set = array();
|
|
$set['limit'] = $pagination;
|
|
$set['offset'] = $offset;
|
|
|
|
// TODO: Remove duplicate user comments
|
|
$sql = "SELECT a.*, b.event_rep, b.timestamp_rep
|
|
FROM (SELECT * FROM $table WHERE 1=1 $sql_post) a,
|
|
(SELECT MAX(id_evento) AS id_evento, to_char(evento) AS evento, MIN(utimestamp) AS timestamp_rep_min,
|
|
id_agentmodule, COUNT(*) AS event_rep, MAX(utimestamp) AS timestamp_rep,
|
|
LISTAGG(user_comment, '<br>') WITHIN GROUP (ORDER BY null) AS user_comment,
|
|
LISTAGG(id_evento, ',') WITHIN GROUP (ORDER BY null) AS similar_ids,
|
|
MAX(owner_user) KEEP (DENSE_RANK FIRST ORDER BY id_evento) AS owner_user,
|
|
MAX(id_usuario) KEEP (DENSE_RANK FIRST ORDER BY id_evento) AS id_usuario,
|
|
MAX(id_agente) KEEP (DENSE_RANK FIRST ORDER BY id_evento) AS id_agente,
|
|
MAX(criticity) KEEP (DENSE_RANK FIRST ORDER BY id_evento) AS criticity,
|
|
MAX(ack_utimestamp) KEEP (DENSE_RANK FIRST ORDER BY id_evento) AS ack_utimestamp
|
|
FROM $table te
|
|
WHERE 1=1 $sql_post
|
|
GROUP BY estado, to_char(evento), id_agentmodule$groupby_extra) b
|
|
WHERE a.id_evento = b.id_evento
|
|
AND to_char(a.evento)=to_char(b.evento)
|
|
AND a.id_agentmodule=b.id_agentmodule";
|
|
$sql = oracle_recode_query ($sql, $set);
|
|
}
|
|
break;
|
|
}
|
|
|
|
//Extract the events by filter (or not) from db
|
|
$events = db_get_all_rows_sql ($sql);
|
|
|
|
if ($total) {
|
|
return reset($events[0]);
|
|
}
|
|
else {
|
|
return $events;
|
|
}
|
|
}
|
|
|
|
function events_get_total_events_grouped($sql_post, $meta = false, $history = false) {
|
|
return events_get_events_grouped($sql_post, 0, 0, $meta, $history, true);
|
|
}
|
|
|
|
/**
|
|
* Get all the events ids similar to a given event id.
|
|
*
|
|
* An event is similar then the event text (evento) and the id_agentmodule are
|
|
* the same.
|
|
*
|
|
* @param int Event id to get similar events.
|
|
* @param bool Metaconsole mode flag
|
|
* @param bool History mode flag
|
|
*
|
|
* @return array A list of events ids.
|
|
*/
|
|
function events_get_similar_ids ($id, $meta = false, $history = false) {
|
|
$events_table = events_get_events_table($meta, $history);
|
|
|
|
$ids = array ();
|
|
if($meta) {
|
|
$event = events_meta_get_event($id, array ('evento', 'id_agentmodule'), $history);
|
|
}
|
|
else {
|
|
$event = events_get_event ($id, array ('evento', 'id_agentmodule'));
|
|
}
|
|
if ($event === false)
|
|
return $ids;
|
|
|
|
$events = db_get_all_rows_filter ($events_table,
|
|
array ('evento' => $event['evento'],
|
|
'id_agentmodule' => $event['id_agentmodule']),
|
|
array ('id_evento'));
|
|
if ($events === false)
|
|
return $ids;
|
|
|
|
foreach ($events as $event)
|
|
$ids[] = $event['id_evento'];
|
|
|
|
return $ids;
|
|
}
|
|
|
|
/**
|
|
* Delete events in a transresponse
|
|
*
|
|
* @param mixed Event ID or array of events
|
|
* @param bool Whether to delete similar events too.
|
|
* @param bool Metaconsole mode flag
|
|
* @param bool History mode flag
|
|
*
|
|
* @return bool Whether or not it was successful
|
|
*/
|
|
function events_delete_event ($id_event, $similar = true, $meta = false, $history = false) {
|
|
global $config;
|
|
|
|
$table_event = events_get_events_table($meta, $history);
|
|
|
|
//Cleans up the selection for all unwanted values also casts any single values as an array
|
|
$id_event = (array) safe_int ($id_event, 1);
|
|
|
|
/* We must delete all events like the selected */
|
|
if ($similar) {
|
|
foreach ($id_event as $id) {
|
|
$id_event = array_merge ($id_event, events_get_similar_ids ($id, $meta, $history));
|
|
}
|
|
$id_event = array_unique($id_event);
|
|
}
|
|
|
|
$errors = 0;
|
|
|
|
foreach ($id_event as $event) {
|
|
if ($meta) {
|
|
$event_group = events_meta_get_group ($event, $history);
|
|
}
|
|
else {
|
|
$event_group = events_get_group ($event);
|
|
}
|
|
|
|
if (check_acl ($config["id_user"], $event_group, "EM") == 0) {
|
|
//Check ACL
|
|
db_pandora_audit("ACL Violation", "Attempted deleting event #".$event);
|
|
$errors++;
|
|
}
|
|
else {
|
|
$ret = db_process_sql_delete($table_event, array('id_evento' => $event));
|
|
|
|
if(!$ret) {
|
|
$errors++;
|
|
}
|
|
else {
|
|
db_pandora_audit("Event deleted", "Deleted event #".$event);
|
|
//ACL didn't fail nor did return
|
|
continue;
|
|
}
|
|
}
|
|
|
|
break;
|
|
}
|
|
|
|
if ($errors > 0) {
|
|
return false;
|
|
}
|
|
else {
|
|
return true;
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Change the status of one or various events
|
|
*
|
|
* @param mixed Event ID or array of events
|
|
* @param int new status of the event
|
|
* @param bool metaconsole mode flag
|
|
* @param bool history mode flag
|
|
*
|
|
* @return bool Whether or not it was successful
|
|
*/
|
|
function events_change_status ($id_event, $new_status, $meta = false, $history = false) {
|
|
global $config;
|
|
|
|
$event_table = events_get_events_table($meta, $history);
|
|
|
|
//Cleans up the selection for all unwanted values also casts any single values as an array
|
|
$id_event = (array) safe_int ($id_event, 1);
|
|
|
|
// Update ack info if the new status is validated
|
|
if ($new_status == EVENT_STATUS_VALIDATED) {
|
|
$ack_utimestamp = time();
|
|
$ack_user = $config['id_user'];
|
|
}
|
|
else {
|
|
$acl_utimestamp = 0;
|
|
$ack_user = '';
|
|
}
|
|
|
|
switch ($new_status) {
|
|
case EVENT_STATUS_NEW:
|
|
$status_string = 'New';
|
|
break;
|
|
case EVENT_STATUS_VALIDATED:
|
|
$status_string = 'Validated';
|
|
break;
|
|
case EVENT_STATUS_INPROCESS:
|
|
$status_string = 'In process';
|
|
break;
|
|
default:
|
|
$status_string = '';
|
|
break;
|
|
}
|
|
|
|
$alerts = array();
|
|
|
|
foreach ($id_event as $k => $id) {
|
|
if ($meta) {
|
|
$event_group = events_meta_get_group ($id, $history);
|
|
$event = events_meta_get_event ($id, false, $history);
|
|
$server_id = $event['server_id'];
|
|
}
|
|
else {
|
|
$event_group = events_get_group ($id);
|
|
$event = events_get_event ($id);
|
|
}
|
|
|
|
if ($event['id_alert_am'] > 0 && !in_array($event['id_alert_am'], $alerts)) {
|
|
$alerts[] = $event['id_alert_am'];
|
|
}
|
|
|
|
if (check_acl ($config["id_user"], $event_group, "EW") == 0) {
|
|
db_pandora_audit("ACL Violation", "Attempted updating event #".$id);
|
|
|
|
unset($id_event[$k]);
|
|
}
|
|
}
|
|
|
|
if (empty($id_event)) {
|
|
return false;
|
|
}
|
|
|
|
$values = array(
|
|
'estado' => $new_status,
|
|
'id_usuario' => $ack_user,
|
|
'ack_utimestamp' => $ack_utimestamp);
|
|
|
|
$ret = db_process_sql_update($event_table, $values,
|
|
array('id_evento' => $id_event));
|
|
|
|
if (($ret === false) || ($ret === 0)) {
|
|
return false;
|
|
}
|
|
|
|
events_comment($id_event, '', "Change status to $status_string", $meta, $history);
|
|
|
|
if ($meta && !empty($alerts)) {
|
|
$server = metaconsole_get_connection_by_id ($server_id);
|
|
metaconsole_connect($server);
|
|
}
|
|
|
|
// Put the alerts in standby or not depends the new status
|
|
foreach ($alerts as $alert) {
|
|
switch ($new_status) {
|
|
case EVENT_NEW:
|
|
case EVENT_VALIDATE:
|
|
alerts_agent_module_standby ($alert, 0);
|
|
break;
|
|
case EVENT_PROCESS:
|
|
alerts_agent_module_standby ($alert, 1);
|
|
break;
|
|
}
|
|
}
|
|
|
|
if ($meta && !empty($alerts)) {
|
|
metaconsole_restore_db();
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Change the owner of an event if the event hasn't owner
|
|
*
|
|
* @param mixed Event ID or array of events
|
|
* @param string id_user of the new owner. If is false, the current owner will be setted
|
|
* @param bool flag to force the change or not (not force is change only when it hasn't owner)
|
|
* @param bool metaconsole mode flag
|
|
* @param bool history mode flag
|
|
*
|
|
* @return bool Whether or not it was successful
|
|
*/
|
|
function events_change_owner ($id_event, $new_owner = false, $force = false, $meta = false, $history = false) {
|
|
global $config;
|
|
|
|
$event_table = events_get_events_table($meta, $history);
|
|
|
|
//Cleans up the selection for all unwanted values also casts any single values as an array
|
|
$id_event = (array) safe_int ($id_event, 1);
|
|
|
|
foreach ($id_event as $k => $id) {
|
|
if ($meta) {
|
|
$event_group = events_meta_get_group ($id, $history);
|
|
}
|
|
else {
|
|
$event_group = events_get_group ($id);
|
|
}
|
|
if (check_acl ($config["id_user"], $event_group, "EW") == 0) {
|
|
db_pandora_audit("ACL Violation", "Attempted updating event #".$id);
|
|
unset($id_event[$k]);
|
|
}
|
|
}
|
|
|
|
if (empty($id_event)) {
|
|
return false;
|
|
}
|
|
|
|
// If no new_owner is provided, the current user will be the owner
|
|
if (empty($new_owner)) {
|
|
$new_owner = $config['id_user'];
|
|
}
|
|
|
|
// Only generate comment when is forced (sometimes is changed the owner when comment)
|
|
if ($force) {
|
|
events_comment($id_event, '', "Change owner to $new_owner", $meta, $history);
|
|
}
|
|
|
|
$values = array('owner_user' => $new_owner);
|
|
|
|
$where = array('id_evento' => $id_event);
|
|
|
|
// If not force, add to where if owner_user = ''
|
|
if (!$force) {
|
|
$where['owner_user'] = '';
|
|
}
|
|
|
|
$ret = db_process_sql_update($event_table, $values,
|
|
$where, 'AND', false);
|
|
|
|
if (($ret === false) || ($ret === 0)) {
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
function events_get_events_table($meta, $history) {
|
|
if ($meta) {
|
|
if ($history) {
|
|
$event_table = 'tmetaconsole_event_history';
|
|
}
|
|
else {
|
|
$event_table = 'tmetaconsole_event';
|
|
}
|
|
}
|
|
else {
|
|
$event_table = 'tevento';
|
|
}
|
|
|
|
return $event_table;
|
|
}
|
|
|
|
/**
|
|
* Comment events in a transresponse
|
|
*
|
|
* @param mixed Event ID or array of events
|
|
* @param string comment to be registered
|
|
* @param string action performed with the comment. Bu default just Added comment
|
|
* @param bool Flag of metaconsole mode
|
|
* @param bool Flag of history mode
|
|
*
|
|
* @return bool Whether or not it was successful
|
|
*/
|
|
function events_comment ($id_event, $comment = '', $action = 'Added comment', $meta = false, $history = false, $similars = true) {
|
|
global $config;
|
|
|
|
$event_table = events_get_events_table($meta, $history);
|
|
|
|
//Cleans up the selection for all unwanted values also casts any single values as an array
|
|
$id_event = (array) safe_int ($id_event, 1);
|
|
|
|
foreach ($id_event as $k => $id) {
|
|
if ($meta) {
|
|
$event_group = events_meta_get_group ($id, $history);
|
|
}
|
|
else {
|
|
$event_group = events_get_group ($id);
|
|
}
|
|
if (check_acl ($config["id_user"], $event_group, "EW") == 0) {
|
|
db_pandora_audit("ACL Violation", "Attempted updating event #".$id);
|
|
|
|
unset($id_event[$k]);
|
|
}
|
|
}
|
|
|
|
if (empty($id_event)) {
|
|
return false;
|
|
}
|
|
|
|
// If the event hasn't owner, assign the user as owner
|
|
events_change_owner ($id_event);
|
|
|
|
// Get the current event comments
|
|
$first_event = $id_event;
|
|
if (is_array($id_event)) {
|
|
$first_event = reset($id_event);
|
|
}
|
|
$event_comments = db_get_value('user_comment', $event_table, 'id_evento', $first_event);
|
|
$event_comments_array = array();
|
|
|
|
if ($event_comments == '') {
|
|
$comments_format = 'new';
|
|
}
|
|
else {
|
|
// If comments are not stored in json, the format is old
|
|
$event_comments_array = json_decode($event_comments);
|
|
|
|
if (is_null($event_comments_array)) {
|
|
$comments_format = 'old';
|
|
}
|
|
else {
|
|
$comments_format = 'new';
|
|
}
|
|
}
|
|
|
|
switch($comments_format) {
|
|
case 'new':
|
|
$comment_for_json['comment'] = $comment;
|
|
$comment_for_json['action'] = $action;
|
|
$comment_for_json['id_user'] = $config['id_user'];
|
|
$comment_for_json['utimestamp'] = time();
|
|
|
|
$event_comments_array[] = $comment_for_json;
|
|
|
|
$event_comments = io_json_mb_encode($event_comments_array);
|
|
|
|
// Update comment
|
|
$ret = db_process_sql_update($event_table, array('user_comment' => $event_comments), array('id_evento' => implode(',', $id_event)));
|
|
break;
|
|
case 'old':
|
|
// Give old ugly format to comment. TODO: Change this method for aux table or json
|
|
$comment = str_replace(array("\r\n", "\r", "\n"), '<br>', $comment);
|
|
|
|
if ($comment != '') {
|
|
$commentbox = '<div style="border:1px dotted #CCC; min-height: 10px;">'.$comment.'</div>';
|
|
}
|
|
else {
|
|
$commentbox = '';
|
|
}
|
|
|
|
// Don't translate 'by' word because if various users with different languages
|
|
// make comments in the same console will be a mess
|
|
$comment = '<b>-- ' . $action . ' by '.$config['id_user'].' '.'['.date ($config["date_format"]).'] --</b><br>'.$commentbox.'<br>';
|
|
|
|
// Update comment
|
|
switch ($config['dbtype']) {
|
|
// Oldstyle SQL to avoid innecesary PHP foreach
|
|
case 'mysql':
|
|
$sql_validation = "UPDATE $event_table
|
|
SET user_comment = concat('" . $comment . "', user_comment)
|
|
WHERE id_evento in (" . implode(',', $id_event) . ")";
|
|
|
|
$ret = db_process_sql($sql_validation);
|
|
break;
|
|
case 'postgresql':
|
|
case 'oracle':
|
|
$sql_validation = "UPDATE $event_table
|
|
SET user_comment='" . $comment . "' || user_comment)
|
|
WHERE id_evento in (" . implode(',', $id_event) . ")";
|
|
|
|
$ret = db_process_sql($sql_validation);
|
|
break;
|
|
}
|
|
break;
|
|
}
|
|
|
|
if (($ret === false) || ($ret === 0)) {
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Get group id of an event.
|
|
*
|
|
* @param int $id_event Event id
|
|
*
|
|
* @return int Group id of the given event.
|
|
*/
|
|
function events_get_group ($id_event) {
|
|
return (int) db_get_value ('id_grupo', 'tevento', 'id_evento', (int) $id_event);
|
|
}
|
|
|
|
/**
|
|
* Get description of an event.
|
|
*
|
|
* @param int $id_event Event id.
|
|
*
|
|
* @return string Description of the given event.
|
|
*/
|
|
function events_get_description ($id_event) {
|
|
return (string) db_get_value ('evento', 'tevento', 'id_evento', (int) $id_event);
|
|
}
|
|
|
|
/**
|
|
* Insert a event in the event log system.
|
|
*
|
|
* @param int $event
|
|
* @param int $id_group
|
|
* @param int $id_agent
|
|
* @param int $status
|
|
* @param string $id_user
|
|
* @param string $event_type
|
|
* @param int $priority
|
|
* @param int $id_agent_module
|
|
* @param int $id_aam
|
|
*
|
|
* @return int event id
|
|
*/
|
|
function events_create_event ($event, $id_group, $id_agent, $status = 0,
|
|
$id_user = "", $event_type = "unknown", $priority = 0,
|
|
$id_agent_module = 0, $id_aam = 0, $critical_instructions = '',
|
|
$warning_instructions = '', $unknown_instructions = '',
|
|
$source="Pandora", $tags="", $custom_data="", $server_id = 0) {
|
|
|
|
global $config;
|
|
|
|
$table_events = 'tevento';
|
|
if (defined ('METACONSOLE')) {
|
|
$table_events = 'tmetaconsole_event';
|
|
|
|
switch ($config["dbtype"]) {
|
|
case "mysql":
|
|
$sql = sprintf ('
|
|
INSERT INTO ' . $table_events . ' (id_agente, id_grupo, evento,
|
|
timestamp, estado, utimestamp, id_usuario,
|
|
event_type, criticity, id_agentmodule, id_alert_am,
|
|
critical_instructions, warning_instructions,
|
|
unknown_instructions, source, tags, custom_data,
|
|
server_id)
|
|
VALUES (%d, %d, "%s", NOW(), %d, UNIX_TIMESTAMP(NOW()),
|
|
"%s", "%s", %d, %d, %d, "%s", "%s", "%s", "%s",
|
|
"%s", "%s", %d)',
|
|
$id_agent, $id_group, $event, $status, $id_user,
|
|
$event_type, $priority, $id_agent_module, $id_aam,
|
|
$critical_instructions, $warning_instructions,
|
|
$unknown_instructions, $source, $tags, $custom_data,
|
|
$server_id);
|
|
break;
|
|
case "postgresql":
|
|
$sql = sprintf ('
|
|
INSERT INTO ' . $table_events . ' (id_agente, id_grupo, evento,
|
|
timestamp, estado, utimestamp, id_usuario,
|
|
event_type, criticity, id_agentmodule, id_alert_am,
|
|
critical_instructions, warning_instructions,
|
|
unknown_instructions, source, tags, custom_data,
|
|
server_id)
|
|
VALUES (%d, %d, "%s", NOW(), %d,
|
|
ceil(date_part(\'epoch\', CURRENT_TIMESTAMP)), "%s",
|
|
"%s", %d, %d, %d, "%s", "%s", "%s", "%s", "%s",
|
|
"%s", %d)',
|
|
$id_agent, $id_group, $event, $status, $id_user,
|
|
$event_type, $priority, $id_agent_module, $id_aam,
|
|
$critical_instructions, $warning_instructions,
|
|
$unknown_instructions, $source, $tags, $custom_data,
|
|
$server_id);
|
|
break;
|
|
case "oracle":
|
|
$sql = sprintf ('
|
|
INSERT INTO ' . $table_events . ' (id_agente, id_grupo, evento,
|
|
timestamp, estado, utimestamp, id_usuario,
|
|
event_type, criticity, id_agentmodule, id_alert_am,
|
|
critical_instructions, warning_instructions,
|
|
unknown_instructions, source, tags, custom_data,
|
|
server_id)
|
|
VALUES (%d, %d, "%s", CURRENT_TIMESTAMP, %d,
|
|
ceil((sysdate - to_date(\'19700101000000\',\'YYYYMMDDHH24MISS\')) * (' . SECONDS_1DAY . ')),
|
|
"%s", "%s", %d, %d, %d, "%s", "%s", "%s", "%s",
|
|
"%s", "%s", %d)',
|
|
$id_agent, $id_group, $event, $status, $id_user,
|
|
$event_type, $priority, $id_agent_module, $id_aam,
|
|
$critical_instructions, $warning_instructions,
|
|
$unknown_instructions, $source, $tags, $custom_data,
|
|
$server_id);
|
|
break;
|
|
}
|
|
}
|
|
else {
|
|
switch ($config["dbtype"]) {
|
|
case "mysql":
|
|
$sql = sprintf ('
|
|
INSERT INTO ' . $table_events . ' (id_agente, id_grupo, evento,
|
|
timestamp, estado, utimestamp, id_usuario,
|
|
event_type, criticity, id_agentmodule, id_alert_am,
|
|
critical_instructions, warning_instructions,
|
|
unknown_instructions, source, tags, custom_data)
|
|
VALUES (%d, %d, "%s", NOW(), %d, UNIX_TIMESTAMP(NOW()),
|
|
"%s", "%s", %d, %d, %d, "%s", "%s", "%s", "%s",
|
|
"%s", "%s")',
|
|
$id_agent, $id_group, $event, $status, $id_user,
|
|
$event_type, $priority, $id_agent_module, $id_aam,
|
|
$critical_instructions, $warning_instructions,
|
|
$unknown_instructions, $source, $tags, $custom_data);
|
|
break;
|
|
case "postgresql":
|
|
$sql = sprintf ('
|
|
INSERT INTO ' . $table_events . ' (id_agente, id_grupo, evento,
|
|
timestamp, estado, utimestamp, id_usuario,
|
|
event_type, criticity, id_agentmodule, id_alert_am,
|
|
critical_instructions, warning_instructions,
|
|
unknown_instructions, source, tags, custom_data)
|
|
VALUES (%d, %d, "%s", NOW(), %d,
|
|
ceil(date_part(\'epoch\', CURRENT_TIMESTAMP)), "%s",
|
|
"%s", %d, %d, %d, "%s", "%s", "%s", "%s", "%s",
|
|
"%s")',
|
|
$id_agent, $id_group, $event, $status, $id_user,
|
|
$event_type, $priority, $id_agent_module, $id_aam,
|
|
$critical_instructions, $warning_instructions,
|
|
$unknown_instructions, $source, $tags, $custom_data);
|
|
break;
|
|
case "oracle":
|
|
$sql = sprintf ('
|
|
INSERT INTO ' . $table_events . ' (id_agente, id_grupo, evento,
|
|
timestamp, estado, utimestamp, id_usuario,
|
|
event_type, criticity, id_agentmodule, id_alert_am,
|
|
critical_instructions, warning_instructions,
|
|
unknown_instructions, source, tags, custom_data)
|
|
VALUES (%d, %d, "%s", CURRENT_TIMESTAMP, %d,
|
|
ceil((sysdate - to_date(\'19700101000000\',\'YYYYMMDDHH24MISS\')) * (' . SECONDS_1DAY . ')),
|
|
"%s", "%s", %d, %d, %d, "%s", "%s", "%s", "%s",
|
|
"%s", "%s")',
|
|
$id_agent, $id_group, $event, $status, $id_user,
|
|
$event_type, $priority, $id_agent_module, $id_aam,
|
|
$critical_instructions, $warning_instructions,
|
|
$unknown_instructions, $source, $tags, $custom_data);
|
|
break;
|
|
}
|
|
}
|
|
return (int) db_process_sql ($sql, "insert_id");
|
|
}
|
|
|
|
|
|
/**
|
|
* Prints a small event table
|
|
*
|
|
* @param string $filter SQL WHERE clause
|
|
* @param int $limit How many events to show
|
|
* @param int $width How wide the table should be
|
|
* @param bool $return Prints out HTML if false
|
|
* @param int agent id if is the table of one agent. 0 otherwise
|
|
*
|
|
* @return string HTML with table element
|
|
*/
|
|
function events_print_event_table ($filter = "", $limit = 10, $width = 440, $return = false, $agent_id = 0, $tactical_view = false) {
|
|
global $config;
|
|
|
|
if ($agent_id == 0) {
|
|
$agent_condition = '';
|
|
}
|
|
else {
|
|
$agent_condition = " id_agente = $agent_id AND ";
|
|
}
|
|
|
|
if ($filter == '') {
|
|
$filter = '1 = 1';
|
|
}
|
|
|
|
switch ($config["dbtype"]) {
|
|
case "mysql":
|
|
case "postgresql":
|
|
$sql = sprintf ("SELECT *
|
|
FROM tevento
|
|
WHERE %s %s
|
|
ORDER BY utimestamp DESC LIMIT %d", $agent_condition, $filter, $limit);
|
|
break;
|
|
case "oracle":
|
|
$sql = sprintf ("SELECT *
|
|
FROM tevento
|
|
WHERE %s %s AND rownum <= %d
|
|
ORDER BY utimestamp DESC", $agent_condition, $filter, $limit);
|
|
break;
|
|
}
|
|
|
|
$result = db_get_all_rows_sql ($sql);
|
|
|
|
if ($result === false) {
|
|
if ($return){
|
|
$returned = ui_print_info_message ( __('No events'),'',true );
|
|
return $returned;
|
|
}
|
|
else
|
|
echo ui_print_info_message ( __('No events') );
|
|
}
|
|
else {
|
|
$table->id = 'latest_events_table';
|
|
$table->cellpadding = 0;
|
|
$table->cellspacing = 0;
|
|
$table->width = $width;
|
|
$table->class = "databox data";
|
|
if (!$tactical_view)
|
|
$table->title = __('Latest events');
|
|
$table->titleclass = 'tabletitle';
|
|
$table->titlestyle = 'text-transform:uppercase;';
|
|
$table->headclass = array ();
|
|
$table->head = array ();
|
|
$table->rowclass = array ();
|
|
$table->cellclass = array ();
|
|
$table->data = array ();
|
|
$table->align = array ();
|
|
$table->style[0] = $table->style[1] = $table->style[2] = 'width:25px;';
|
|
if ($agent_id == 0) {
|
|
$table->style[3] = 'word-break: break-all;';
|
|
}
|
|
$table->style[4] = 'width:120px; word-break: break-all;';
|
|
|
|
$table->head[0] = "<span title='" . __('Validated') . "'>" . __('V.') . "</span>";
|
|
$table->align[0] = 'center';
|
|
|
|
$table->head[1] = "<span title='" . __('Severity') . "'>" . __('S.') . "</span>";
|
|
$table->align[1] = 'center';
|
|
|
|
$table->head[2] = __('Type');
|
|
$table->headclass[2] = "datos3 f9";
|
|
$table->align[2] = "center";
|
|
|
|
$table->head[3] = __('Event name');
|
|
|
|
if ($agent_id == 0) {
|
|
$table->head[4] = __('Agent name');
|
|
$table->size[4] = "15%";
|
|
}
|
|
|
|
$table->head[5] = __('Timestamp');
|
|
$table->headclass[5] = "datos3 f9";
|
|
$table->align[5] = "left";
|
|
$table->size[5] = "15%";
|
|
|
|
foreach ($result as $event) {
|
|
if (! check_acl ($config["id_user"], $event["id_grupo"], "ER")) {
|
|
continue;
|
|
}
|
|
|
|
$data = array ();
|
|
|
|
// Colored box
|
|
switch($event["estado"]) {
|
|
case 0:
|
|
$img = "images/star.png";
|
|
$title = __('New event');
|
|
break;
|
|
case 1:
|
|
$img = "images/tick.png";
|
|
$title = __('Event validated');
|
|
break;
|
|
case 2:
|
|
$img = "images/hourglass.png";
|
|
$title = __('Event in process');
|
|
break;
|
|
}
|
|
|
|
$data[0] = html_print_image ($img, true,
|
|
array ("class" => "image_status",
|
|
"title" => $title));
|
|
|
|
switch ($event["criticity"]) {
|
|
default:
|
|
case EVENT_CRIT_MAINTENANCE:
|
|
$img = "images/status_sets/default/severity_maintenance.png";
|
|
break;
|
|
case EVENT_CRIT_INFORMATIONAL:
|
|
$img = "images/status_sets/default/severity_informational.png";
|
|
break;
|
|
case EVENT_CRIT_NORMAL:
|
|
$img = "images/status_sets/default/severity_normal.png";
|
|
break;
|
|
case EVENT_CRIT_WARNING:
|
|
$img = "images/status_sets/default/severity_warning.png";
|
|
break;
|
|
case EVENT_CRIT_CRITICAL:
|
|
$img = "images/status_sets/default/severity_critical.png";
|
|
break;
|
|
}
|
|
|
|
$data[1] = html_print_image ($img, true,
|
|
array ("class" => "image_status",
|
|
"width" => 12,
|
|
"height" => 12,
|
|
"title" => get_priority_name ($event["criticity"])));
|
|
|
|
/* Event type */
|
|
$data[2] = events_print_type_img ($event["event_type"], true);
|
|
|
|
/* Event text */
|
|
$data[3] = ui_print_string_substr (io_safe_output($event["evento"]), 75, true, '7.5');
|
|
|
|
if($agent_id == 0) {
|
|
if ($event["id_agente"] > 0) {
|
|
// Agent name
|
|
// Get class name, for the link color...
|
|
$myclass = get_priority_class ($event["criticity"]);
|
|
|
|
$data[4] = "<a class='$myclass' href='index.php?sec=estado&sec2=operation/agentes/ver_agente&id_agente=".$event["id_agente"]."'>".
|
|
agents_get_name ($event["id_agente"]). "</A>";
|
|
|
|
// ui_print_agent_name ($event["id_agente"], true, 25, '', true);
|
|
// for System or SNMP generated alerts
|
|
}
|
|
elseif ($event["event_type"] == "system") {
|
|
$data[4] = __('System');
|
|
}
|
|
else {
|
|
$data[4] = __('Alert')."SNMP";
|
|
}
|
|
}
|
|
|
|
// Timestamp
|
|
$data[5] = ui_print_timestamp ($event["timestamp"], true, array('style' => 'font-size: 7.5pt; letter-spacing: 0.3pt;'));
|
|
|
|
$class = get_priority_class ($event["criticity"]);
|
|
$cell_classes[3] = $cell_classes[4] = $cell_classes[5] = $class;
|
|
array_push ($table->cellclass, $cell_classes);
|
|
//array_push ($table->rowclass, get_priority_class ($event["criticity"]));
|
|
array_push ($table->data, $data);
|
|
}
|
|
|
|
$events_table = html_print_table ($table, true);
|
|
$out = '<table width="100%"><tr><td style="width: 90%; vertical-align: top; padding-top: 0px;">';
|
|
$out .= $events_table;
|
|
|
|
if (!$tactical_view) {
|
|
if ($agent_id != 0) {
|
|
$out .= '</td><td style="width: 200px; vertical-align: top;">';
|
|
$out .= '<table cellpadding=0 cellspacing=0 class="databox"><tr><td>';
|
|
$out .= '<fieldset class="databox tactical_set">
|
|
<legend>' .
|
|
__('Events -by module-') .
|
|
'</legend>' .
|
|
graph_event_module (180, 100, $event['id_agente']) . '</fieldset>';
|
|
$out .= '</td></tr></table>';
|
|
}
|
|
else {
|
|
$out .= '</td><td style="width: 200px; vertical-align: top;">';
|
|
$out .= '<table cellpadding=0 cellspacing=0 class="databox"><tr><td>';
|
|
$out .= '<fieldset class="databox tactical_set">
|
|
<legend>' .
|
|
__('Event graph') .
|
|
'</legend>' .
|
|
grafico_eventos_total("", 180, 60) . '</fieldset>';
|
|
$out .= '<fieldset class="databox tactical_set">
|
|
<legend>' .
|
|
__('Event graph by agent') .
|
|
'</legend>' .
|
|
grafico_eventos_grupo(180, 60) . '</fieldset>';
|
|
$out .= '</td></tr></table>';
|
|
}
|
|
}
|
|
$out .= '</td></tr></table>';
|
|
|
|
unset ($table);
|
|
|
|
if ($return) {
|
|
return $out;
|
|
}
|
|
else {
|
|
echo $out;
|
|
}
|
|
}
|
|
}
|
|
|
|
|
|
/**
|
|
* Prints the event type image
|
|
*
|
|
* @param string $type Event type from SQL
|
|
* @param bool $return Whether to return or print
|
|
* @param bool $only_url Flag to return only url of image, by default false.
|
|
*
|
|
* @return string HTML with img
|
|
*/
|
|
function events_print_type_img ($type, $return = false, $only_url = false) {
|
|
global $config;
|
|
|
|
$output = '';
|
|
|
|
$urlImage = ui_get_full_url(false);
|
|
|
|
switch ($type) {
|
|
case "alert_recovered":
|
|
$icon = "bell.png";
|
|
break;
|
|
case "alert_manual_validation":
|
|
$icon = "ok.png";
|
|
break;
|
|
case "going_down_critical":
|
|
case "going_up_critical": //This is to be backwards compatible
|
|
$icon = "module_critical.png";
|
|
break;
|
|
case "going_up_normal":
|
|
case "going_down_normal": //This is to be backwards compatible
|
|
$icon = "module_ok.png";
|
|
break;
|
|
case "going_up_warning":
|
|
case "going_down_warning":
|
|
$icon = "module_warning.png";
|
|
break;
|
|
case "going_unknown":
|
|
$icon = "module_unknown.png";
|
|
break;
|
|
case "alert_fired":
|
|
$icon = "bell_error.png";
|
|
break;
|
|
case "system":
|
|
$icon = "cog.png";
|
|
break;
|
|
case "recon_host_detected":
|
|
$icon = "recon.png";
|
|
break;
|
|
case "new_agent":
|
|
$icon = "agent.png";
|
|
break;
|
|
case "configuration_change":
|
|
$icon = "config.png";
|
|
break;
|
|
case "unknown":
|
|
default:
|
|
$icon = "lightning_go.png";
|
|
break;
|
|
}
|
|
|
|
if ($only_url) {
|
|
$output = $urlImage . "/" . "images/" . $icon;
|
|
}
|
|
else {
|
|
$output .= html_print_image ("images/" . $icon, true,
|
|
array ("title" => events_print_type_description($type, true)));
|
|
}
|
|
|
|
if ($return)
|
|
return $output;
|
|
echo $output;
|
|
}
|
|
|
|
/**
|
|
* Prints the event type description
|
|
*
|
|
* @param string $type Event type from SQL
|
|
* @param bool $return Whether to return or print
|
|
*
|
|
* @return string HTML with img
|
|
*/
|
|
function events_print_type_description ($type, $return = false) {
|
|
$output = '';
|
|
|
|
switch ($type) {
|
|
case "going_unknown":
|
|
$output .= __('Going to unknown');
|
|
break;
|
|
case "alert_recovered":
|
|
$output .= __('Alert recovered');
|
|
break;
|
|
case "alert_manual_validation":
|
|
$output .= __('Alert manually validated');
|
|
break;
|
|
case "going_up_warning":
|
|
$output .= __('Going from critical to warning');
|
|
break;
|
|
case "going_down_critical":
|
|
case "going_up_critical": //This is to be backwards compatible
|
|
$output .= __('Going down to critical state');
|
|
break;
|
|
case "going_up_normal":
|
|
case "going_down_normal": //This is to be backwards compatible
|
|
$output .= __('Going up to normal state');
|
|
break;
|
|
case "going_down_warning":
|
|
$output .= __('Going down from normal to warning');
|
|
break;
|
|
case "alert_fired":
|
|
$output .= __('Alert fired');
|
|
break;
|
|
case "system";
|
|
$output .= __('SYSTEM');
|
|
break;
|
|
case "recon_host_detected";
|
|
$output .= __('Recon server detected a new host');
|
|
break;
|
|
case "new_agent";
|
|
$output .= __('New agent created');
|
|
break;
|
|
case "configuration_change";
|
|
$output .= __('Configuration change');
|
|
break;
|
|
case "alert_ceased";
|
|
$output .= __('Alert ceased');
|
|
break;
|
|
case "error";
|
|
$output .= __('Error');
|
|
break;
|
|
case "unknown":
|
|
default:
|
|
$output .= __('Unknown type:').': '.$type;
|
|
break;
|
|
}
|
|
|
|
if ($return)
|
|
return $output;
|
|
echo $output;
|
|
}
|
|
|
|
/**
|
|
* Get all the events happened in a group during a period of time.
|
|
*
|
|
* The returned events will be in the time interval ($date - $period, $date]
|
|
*
|
|
* @param mixed $id_group Group id to get events for.
|
|
* @param int $period Period of time in seconds to get events.
|
|
* @param int $date Beginning date to get events.
|
|
*
|
|
* @return array An array with all the events happened.
|
|
*/
|
|
function events_get_group_events ($id_group, $period, $date,
|
|
$filter_event_validated = false, $filter_event_critical = false,
|
|
$filter_event_warning = false, $filter_event_no_validated = false) {
|
|
|
|
global $config;
|
|
|
|
$id_group = groups_safe_acl ($config["id_user"], $id_group, "ER");
|
|
|
|
if (empty ($id_group)) {
|
|
//An empty array means the user doesn't have access
|
|
return false;
|
|
}
|
|
|
|
$datelimit = $date - $period;
|
|
|
|
$sql_where = ' AND 1 = 1 ';
|
|
$criticities = array();
|
|
if ($filter_event_critical) {
|
|
$criticities[] = 4;
|
|
}
|
|
if ($filter_event_warning) {
|
|
$criticities[] = 3;
|
|
}
|
|
if (!empty($criticities)) {
|
|
$sql_where .= ' AND criticity IN (' . implode(', ', $criticities) . ')';
|
|
}
|
|
if ($filter_event_validated) {
|
|
$sql_where .= ' AND estado = 1 ';
|
|
}
|
|
if ($filter_event_no_validated) {
|
|
$sql_where .= ' AND estado = 0 ';
|
|
}
|
|
$sql_where .= sprintf(' AND id_grupo IN (%s) AND utimestamp > %d
|
|
AND utimestamp <= %d ', implode (",", $id_group), $datelimit, $date);
|
|
|
|
return events_get_events_grouped($sql_where, 0, 1000);
|
|
}
|
|
|
|
/**
|
|
* Get all the events happened in a group during a period of time.
|
|
*
|
|
* The returned events will be in the time interval ($date - $period, $date]
|
|
*
|
|
* @param mixed $id_group Group id to get events for.
|
|
* @param int $period Period of time in seconds to get events.
|
|
* @param int $date Beginning date to get events.
|
|
*
|
|
* @return array An array with all the events happened.
|
|
*/
|
|
function events_get_group_events_steps ($begin, &$result, $id_group, $period, $date,
|
|
$filter_event_validated = false, $filter_event_critical = false,
|
|
$filter_event_warning = false, $filter_event_no_validated = false) {
|
|
|
|
global $config;
|
|
|
|
$id_group = groups_safe_acl ($config["id_user"], $id_group, "ER");
|
|
|
|
if (empty ($id_group)) {
|
|
//An empty array means the user doesn't have access
|
|
return false;
|
|
}
|
|
|
|
$datelimit = $date - $period;
|
|
|
|
$sql_where = ' AND 1 = 1 ';
|
|
$criticities = array();
|
|
if ($filter_event_critical) {
|
|
$criticities[] = 4;
|
|
}
|
|
if ($filter_event_warning) {
|
|
$criticities[] = 3;
|
|
}
|
|
if (!empty($criticities)) {
|
|
$sql_where .= ' AND criticity IN (' . implode(', ', $criticities) . ')';
|
|
}
|
|
if ($filter_event_validated) {
|
|
$sql_where .= ' AND estado = 1 ';
|
|
}
|
|
if ($filter_event_no_validated) {
|
|
$sql_where .= ' AND estado = 0 ';
|
|
}
|
|
|
|
|
|
$sql = sprintf ('SELECT *,
|
|
(SELECT t2.nombre
|
|
FROM tagente t2
|
|
WHERE t2.id_agente = t3.id_agente) AS agent_name,
|
|
(SELECT t2.fullname
|
|
FROM tusuario t2
|
|
WHERE t2.id_user = t3.id_usuario) AS user_name
|
|
FROM tevento t3
|
|
WHERE utimestamp > %d AND utimestamp <= %d
|
|
AND id_grupo IN (%s) ' . $sql_where . '
|
|
ORDER BY utimestamp ASC',
|
|
$datelimit, $date, implode (",", $id_group));
|
|
|
|
return db_get_all_row_by_steps_sql($begin, $result, $sql);
|
|
}
|
|
|
|
/**
|
|
* Get all the events happened in an Agent during a period of time.
|
|
*
|
|
* The returned events will be in the time interval ($date - $period, $date]
|
|
*
|
|
* @param int $id_agent Agent id to get events.
|
|
* @param int $period Period of time in seconds to get events.
|
|
* @param int $date Beginning date to get events.
|
|
*
|
|
* @return array An array with all the events happened.
|
|
*/
|
|
function events_get_agent ($id_agent, $period, $date = 0,
|
|
$filter_event_validated = false, $filter_event_critical = false,
|
|
$filter_event_warning = false, $filter_event_no_validated = false) {
|
|
|
|
if (!is_numeric ($date)) {
|
|
$date = strtotime ($date);
|
|
}
|
|
if (empty ($date)) {
|
|
$date = get_system_time ();
|
|
}
|
|
|
|
$datelimit = $date - $period;
|
|
|
|
$sql_where = '';
|
|
|
|
$criticities = array();
|
|
if ($filter_event_critical) {
|
|
$criticities[] = 4;
|
|
}
|
|
if ($filter_event_warning) {
|
|
$criticities[] = 3;
|
|
}
|
|
if (!empty($criticities)) {
|
|
$sql_where .= ' AND criticity IN (' . implode(', ', $criticities) . ')';
|
|
}
|
|
|
|
if ($filter_event_validated) {
|
|
$sql_where .= ' AND estado = 1 ';
|
|
}
|
|
if ($filter_event_no_validated) {
|
|
$sql_where .= ' AND estado = 0 ';
|
|
}
|
|
|
|
$sql_where .= sprintf(' AND id_agente = %d AND utimestamp > %d
|
|
AND utimestamp <= %d ', $id_agent, $datelimit, $date);
|
|
|
|
return events_get_events_grouped($sql_where, 0, 1000);
|
|
}
|
|
|
|
/**
|
|
* Get all the events happened in an Agent during a period of time.
|
|
*
|
|
* The returned events will be in the time interval ($date - $period, $date]
|
|
*
|
|
* @param int $id_agent_module Module id to get events.
|
|
* @param int $period Period of time in seconds to get events.
|
|
* @param int $date Beginning date to get events.
|
|
*
|
|
* @return array An array with all the events happened.
|
|
*/
|
|
function events_get_module ($id_agent_module, $period, $date = 0) {
|
|
if (!is_numeric ($date)) {
|
|
$date = strtotime ($date);
|
|
}
|
|
if (empty ($date)) {
|
|
$date = get_system_time ();
|
|
}
|
|
|
|
$datelimit = $date - $period;
|
|
|
|
$sql_where .= sprintf(' AND id_agentmodule = %d AND utimestamp > %d
|
|
AND utimestamp <= %d ', $id_agent_module, $datelimit, $date);
|
|
|
|
return events_get_events_grouped($sql_where, 0, 1000);
|
|
|
|
$sql = sprintf ('SELECT evento, event_type, criticity, count(*) as count_rep, max(timestamp) AS time2
|
|
FROM tevento
|
|
WHERE id_agentmodule = %d AND utimestamp > %d AND utimestamp <= %d
|
|
GROUP BY id_agentmodule, evento ORDER BY time2 DESC', $id_agent_module, $datelimit, $date);
|
|
|
|
return db_get_all_rows_sql ($sql);
|
|
}
|
|
|
|
/**
|
|
* Decode a numeric type into type description.
|
|
*
|
|
* @param int $type_id Numeric type.
|
|
*
|
|
* @return string Type description.
|
|
*/
|
|
function events_get_event_types ($type_id){
|
|
|
|
$diferent_types = get_event_types ();
|
|
|
|
$type_desc = '';
|
|
switch($type_id) {
|
|
case 'unknown':
|
|
$type_desc = __('Unknown');
|
|
break;
|
|
case 'critical':
|
|
$type_desc = __('Monitor Critical');
|
|
break;
|
|
case 'warning':
|
|
$type_desc = __('Monitor Warning');
|
|
break;
|
|
case 'normal':
|
|
$type_desc = __('Monitor Normal');
|
|
break;
|
|
case 'alert_fired':
|
|
$type_desc = __('Alert fired');
|
|
break;
|
|
case 'alert_recovered':
|
|
$type_desc = __('Alert recovered');
|
|
break;
|
|
case 'alert_ceased':
|
|
$type_desc = __('Alert ceased');
|
|
break;
|
|
case 'alert_manual_validation':
|
|
$type_desc = __('Alert manual validation');
|
|
break;
|
|
case 'recon_host_detected':
|
|
$type_desc = __('Recon host detected');
|
|
break;
|
|
case 'system':
|
|
$type_desc = __('System');
|
|
break;
|
|
case 'error':
|
|
$type_desc = __('Error');
|
|
break;
|
|
case 'configuration_change':
|
|
$type_desc = __('Configuration change');
|
|
break;
|
|
case 'not_normal':
|
|
$type_desc = __('Not normal');
|
|
break;
|
|
default:
|
|
if (isset($config['text_char_long'])) {
|
|
foreach ($diferent_types as $key => $type) {
|
|
if ($key == $type_id){
|
|
$type_desc = ui_print_truncate_text($type, $config['text_char_long'], false, true, false);
|
|
}
|
|
}
|
|
}
|
|
break;
|
|
}
|
|
|
|
return $type_desc;
|
|
}
|
|
|
|
|
|
/**
|
|
* Decode a numeric severity into severity description.
|
|
*
|
|
* @param int $severity_id Numeric severity.
|
|
*
|
|
* @return string Severity description.
|
|
*/
|
|
function events_get_severity_types ($severity_id){
|
|
|
|
$diferent_types = get_priorities ();
|
|
|
|
$severity_desc = '';
|
|
switch ($severity_id) {
|
|
case EVENT_CRIT_MAINTENANCE:
|
|
$severity_desc = __('Maintenance');
|
|
break;
|
|
case EVENT_CRIT_INFORMATIONAL:
|
|
$severity_desc = __('Informational');
|
|
break;
|
|
case EVENT_CRIT_NORMAL:
|
|
$severity_desc = __('Normal');
|
|
break;
|
|
case EVENT_CRIT_WARNING:
|
|
$severity_desc = __('Warning');
|
|
break;
|
|
case EVENT_CRIT_CRITICAL:
|
|
$severity_desc = __('Critical');
|
|
break;
|
|
default:
|
|
if (isset($config['text_char_long'])) {
|
|
foreach ($diferent_types as $key => $type) {
|
|
if ($key == $severity_id){
|
|
$severity_desc = ui_print_truncate_text($type, $config['text_char_long'], false, true, false);
|
|
}
|
|
}
|
|
}
|
|
break;
|
|
}
|
|
|
|
return $severity_desc;
|
|
}
|
|
|
|
/**
|
|
* Return all descriptions of event status.
|
|
*
|
|
* @return array Status description array.
|
|
*/
|
|
function events_get_all_status () {
|
|
$fields = array ();
|
|
$fields[-1] = __('All event');
|
|
$fields[0] = __('Only new');
|
|
$fields[1] = __('Only validated');
|
|
$fields[2] = __('Only in process');
|
|
$fields[3] = __('Only not validated');
|
|
|
|
return $fields;
|
|
}
|
|
|
|
/**
|
|
* Decode a numeric status into status description.
|
|
*
|
|
* @param int $status_id Numeric status.
|
|
*
|
|
* @return string Status description.
|
|
*/
|
|
function events_get_status ($status_id) {
|
|
switch ($status_id) {
|
|
case -1:
|
|
$status_desc = __('All event');
|
|
break;
|
|
case 0:
|
|
$status_desc = __('Only new');
|
|
break;
|
|
case 1:
|
|
$status_desc = __('Only validated');
|
|
break;
|
|
case 2:
|
|
$status_desc = __('Only in process');
|
|
break;
|
|
case 3:
|
|
$status_desc = __('Only not validated');
|
|
break;
|
|
}
|
|
|
|
return $status_desc;
|
|
}
|
|
|
|
/**
|
|
* Checks if a user has permissions to see an event filter.
|
|
*
|
|
* @param int $id_filter Id of the event filter.
|
|
*
|
|
* @return bool True if the user has permissions or false otherwise.
|
|
*/
|
|
function events_check_event_filter_group ($id_filter) {
|
|
global $config;
|
|
|
|
$id_group = db_get_value('id_group', 'tevent_filter', 'id_filter', $id_filter);
|
|
$own_info = get_user_info ($config['id_user']);
|
|
// Get group list that user has access
|
|
$groups_user = users_get_groups ($config['id_user'], "EW", $own_info['is_admin'], true);
|
|
|
|
// Permissions in any group allow to edit "All group" filters
|
|
if($id_group == 0 && !empty($groups_user)) {
|
|
return true;
|
|
}
|
|
|
|
$groups_id = array();
|
|
$has_permission = false;
|
|
|
|
foreach ($groups_user as $key => $groups) {
|
|
if ($groups['id_grupo'] == $id_group)
|
|
return true;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Return an array with all the possible macros in event responses
|
|
*
|
|
* @return array
|
|
*/
|
|
function events_get_macros() {
|
|
return array('_agent_address_' => __('Agent address'),
|
|
'_agent_id_' => __('Agent id'),
|
|
'_event_id_' => __('Event id'));
|
|
}
|
|
|
|
/**
|
|
* Get a event filter.
|
|
*
|
|
* @param int Filter id to be fetched.
|
|
* @param array Extra filter.
|
|
* @param array Fields to be fetched.
|
|
*
|
|
* @return array A event filter matching id and filter or false.
|
|
*/
|
|
function events_get_event_filter ($id_filter, $filter = false, $fields = false) {
|
|
|
|
if (empty($id_filter)) {
|
|
return false;
|
|
}
|
|
|
|
if (! is_array ($filter)) {
|
|
$filter = array ();
|
|
$filter['id_filter'] = (int) $id_filter;
|
|
}
|
|
|
|
return db_get_row_filter ('tevent_filter', $filter, $fields);
|
|
}
|
|
|
|
/**
|
|
* Get a event filters in select format.
|
|
*
|
|
* @param boolean If event filters are used for manage/view operations (non admin users can see group ALL for manage) # Fix
|
|
* @return array A event filter matching id and filter or false.
|
|
*/
|
|
function events_get_event_filter_select($manage = true) {
|
|
global $config;
|
|
|
|
$strict_acl = db_get_value('strict_acl', 'tusuario', 'id_user', $config['id_user']);
|
|
|
|
if ($strict_acl) {
|
|
$user_groups = users_get_strict_mode_groups($config['id_user'],
|
|
users_can_manage_group_all());
|
|
}
|
|
else {
|
|
$user_groups = users_get_groups ($config['id_user'], "EW",
|
|
users_can_manage_group_all(), true);
|
|
}
|
|
|
|
if(empty($user_groups)) {
|
|
return array();
|
|
}
|
|
$sql = "
|
|
SELECT id_filter, id_name
|
|
FROM tevent_filter
|
|
WHERE id_group IN (" . implode(',', array_keys ($user_groups)) . ")";
|
|
|
|
$event_filters = db_get_all_rows_sql($sql);
|
|
|
|
if ($event_filters === false) {
|
|
return array();
|
|
}
|
|
else {
|
|
$result = array();
|
|
foreach ($event_filters as $event_filter){
|
|
$result[$event_filter['id_filter']] = $event_filter['id_name'];
|
|
}
|
|
}
|
|
|
|
return $result;
|
|
}
|
|
|
|
|
|
// Events pages functions to load modal window with advanced view of an event.
|
|
// Called from include/ajax/events.php
|
|
|
|
function events_page_responses ($event, $childrens_ids = array()) {
|
|
global $config;
|
|
/////////
|
|
// Responses
|
|
/////////
|
|
|
|
$table_responses->cellspacing = 2;
|
|
$table_responses->cellpadding = 2;
|
|
$table_responses->id = 'responses_table';
|
|
$table_responses->width = '100%';
|
|
$table_responses->data = array ();
|
|
$table_responses->head = array ();
|
|
$table_responses->style[0] = 'width:35%; font-weight: bold; text-align: left; height: 23px;';
|
|
$table_responses->style[1] = 'text-align: left; height: 23px; text-align: right;';
|
|
$table_responses->class = "alternate rounded_cells";
|
|
|
|
if (tags_checks_event_acl ($config["id_user"], $event["id_grupo"], "EM", $event['clean_tags'], $childrens_ids)) {
|
|
// Owner
|
|
$data = array();
|
|
$data[0] = __('Change owner');
|
|
// Owner change can be done to users that belong to the event group with ER permission
|
|
$profiles_view_events = db_get_all_rows_filter('tperfil', array('event_view' => '1'), 'id_perfil');
|
|
foreach($profiles_view_events as $k => $v) {
|
|
$profiles_view_events[$k] = reset($v);
|
|
}
|
|
// Juanma (05/05/2014) Fix : Propagate ACL hell!
|
|
$_user_groups = array_keys(users_get_groups($config['id_user'], 'ER', users_can_manage_group_all()));
|
|
$strict_user = db_get_value('strict_acl', 'tusuario', 'id_user', $config['id_user']);
|
|
if ($strict_user) {
|
|
$user_name = db_get_value('fullname', 'tusuario', 'id_user', $config['id_user']);
|
|
|
|
$users = array();
|
|
$users[0]['id_user'] = $config['id_user'];
|
|
$users[0]['fullname'] = $user_name;
|
|
} else {
|
|
$users = groups_get_users($_user_groups, array('id_perfil' => $profiles_view_events), true, true);
|
|
}
|
|
|
|
foreach($users as $u) {
|
|
$owners[$u['id_user']] = $u['fullname'];
|
|
}
|
|
|
|
if($event['owner_user'] == '') {
|
|
$owner_name = __('None');
|
|
}
|
|
else {
|
|
$owner_name = db_get_value('fullname', 'tusuario', 'id_user', $event['owner_user']);
|
|
$owners[$event['owner_user']] = $owner_name;
|
|
}
|
|
|
|
$data[1] = html_print_select($owners, 'id_owner', $event['owner_user'], '', __('None'), -1, true);
|
|
$data[1] .= html_print_button(__('Update'),'owner_button',false,'event_change_owner();','class="sub next"',true);
|
|
|
|
$table_responses->data[] = $data;
|
|
}
|
|
|
|
// Status
|
|
$data = array();
|
|
$data[0] = __('Change status');
|
|
|
|
$status_blocked = false;
|
|
|
|
if (tags_checks_event_acl ($config["id_user"], $event["id_grupo"], "EM", $event['clean_tags'], $childrens_ids)) {
|
|
// If the user has manager acls, the status can be changed to all possibilities always
|
|
$status = array(0 => __('New'), 2 => __('In process'), 1 => __('Validated'));
|
|
}
|
|
else {
|
|
switch($event['estado']) {
|
|
case 0:
|
|
// If the user hasnt manager acls and the event is new. The status can be changed
|
|
$status = array(2 => __('In process'), 1 => __('Validated'));
|
|
break;
|
|
case 1:
|
|
// If the user hasnt manager acls and the event is validated. The status cannot be changed
|
|
$status = array(1 => __('Validated'));
|
|
$status_blocked = true;
|
|
break;
|
|
case 2:
|
|
// If the user hasnt manager acls and the event is in process. The status only can be changed to validated
|
|
$status = array(1 => __('Validated'));
|
|
break;
|
|
}
|
|
|
|
}
|
|
|
|
// The change status option will be enabled only when is possible change the status
|
|
$data[1] = html_print_select($status, 'estado', $event['estado'], '', '', 0, true, false, false, '', $status_blocked);
|
|
|
|
if(!$status_blocked) {
|
|
$data[1] .= html_print_button(__('Update'),'status_button',false,'event_change_status(\''.$event['similar_ids'] .'\');','class="sub next"',true);
|
|
}
|
|
|
|
$table_responses->data[] = $data;
|
|
|
|
// Comments
|
|
$data = array();
|
|
$data[0] = __('Comment');
|
|
$data[1] = html_print_button(__('Add comment'),'comment_button',false,'$(\'#link_comments\').trigger(\'click\');','class="sub next"',true);
|
|
|
|
$table_responses->data[] = $data;
|
|
|
|
if (tags_checks_event_acl($config["id_user"], $event["id_grupo"], "EM", $event['clean_tags'], $childrens_ids)) {
|
|
// Delete
|
|
$data = array();
|
|
$data[0] = __('Delete event');
|
|
$data[1] = '<form method="post">';
|
|
$data[1] .= html_print_button(__('Delete event'),'delete_button',false,'if(!confirm(\''.__('Are you sure?').'\')) { return false; } this.form.submit();','class="sub cancel"',true);
|
|
$data[1] .= html_print_input_hidden('delete', 1, true);
|
|
$data[1] .= html_print_input_hidden('validate_ids', $event['id_evento'], true);
|
|
$data[1] .= '</form>';
|
|
|
|
$table_responses->data[] = $data;
|
|
}
|
|
|
|
// Custom responses
|
|
$data = array();
|
|
$data[0] = __('Custom responses');
|
|
|
|
$id_groups = array_keys(users_get_groups(false, "EW"));
|
|
$event_responses = db_get_all_rows_filter('tevent_response',
|
|
array('id_group' => $id_groups));
|
|
|
|
if (empty($event_responses)) {
|
|
$data[1] = '<i>'.__('N/A').'</i>';
|
|
}
|
|
else {
|
|
$responses = array();
|
|
foreach ($event_responses as $v) {
|
|
$responses[$v['id']] = $v['name'];
|
|
}
|
|
$data[1] = html_print_select(
|
|
$responses,
|
|
'select_custom_response','','','','',true, false, false);
|
|
|
|
if (isset($event['server_id'])) {
|
|
$server_id = $event['server_id'];
|
|
}
|
|
else {
|
|
$server_id = 0;
|
|
}
|
|
|
|
$data[1] .= html_print_button(__('Execute'),'custom_response_button',false,'execute_response('.$event['id_evento'].','.$server_id.')',"class='sub next'",true);
|
|
}
|
|
|
|
$table_responses->data[] = $data;
|
|
|
|
|
|
$responses_js = "<script>
|
|
$('#select_custom_response').change(function() {
|
|
var id_response = $('#select_custom_response').val();
|
|
var params = get_response_params(id_response);
|
|
var description = get_response_description(id_response);
|
|
$('.params_rows').remove();
|
|
|
|
$('#responses_table')
|
|
.append('<tr class=\"params_rows\"><td style=\"text-align:left; font-weight: bolder;\">".__('Description')."</td><td style=\"text-align:left;\">'+description+'</td></tr>');
|
|
|
|
if (params.length == 1 && params[0] == '') {
|
|
return;
|
|
}
|
|
|
|
$('#responses_table')
|
|
.append('<tr class=\"params_rows\"><td style=\"text-align:left; padding-left:20px;\" colspan=\"2\">".__('Parameters')."</td></tr>');
|
|
|
|
for (i = 0; i < params.length; i++) {
|
|
add_row_param('responses_table',params[i]);
|
|
}
|
|
});
|
|
$('#select_custom_response').trigger('change');
|
|
</script>";
|
|
|
|
$responses = '<div id="extended_event_responses_page" class="extended_event_pages">' .
|
|
html_print_table($table_responses, true) .
|
|
$responses_js .
|
|
'</div>';
|
|
|
|
return $responses;
|
|
}
|
|
|
|
// Replace macros in the target of a response and return it
|
|
// If server_id > 0, is a metaconsole query
|
|
function events_get_response_target($event_id, $response_id, $server_id, $history = false) {
|
|
global $config;
|
|
|
|
$event_response = db_get_row('tevent_response','id',$response_id);
|
|
|
|
if ($server_id > 0) {
|
|
$meta = true;
|
|
}
|
|
else {
|
|
$meta = false;
|
|
}
|
|
|
|
$event_table = events_get_events_table($meta, $history);
|
|
|
|
$event = db_get_row($event_table,'id_evento', $event_id);
|
|
|
|
$macros = array_keys(events_get_macros());
|
|
|
|
$target = io_safe_output($event_response['target']);
|
|
|
|
foreach($macros as $macro) {
|
|
$subst = '';
|
|
switch($macro) {
|
|
case '_agent_address_':
|
|
if($meta) {
|
|
$server = metaconsole_get_connection_by_id ($server_id);
|
|
metaconsole_connect($server);
|
|
}
|
|
|
|
$subst = agents_get_address($event['id_agente']);
|
|
|
|
if($meta) {
|
|
metaconsole_restore_db_force();
|
|
}
|
|
break;
|
|
case '_agent_id_':
|
|
$subst = $event['id_agente'];
|
|
break;
|
|
case '_event_id_':
|
|
$subst = $event['id_evento'];
|
|
break;
|
|
}
|
|
|
|
$target = str_replace($macro,$subst,$target);
|
|
}
|
|
|
|
return $target;
|
|
}
|
|
|
|
function events_page_custom_fields ($event) {
|
|
global $config;
|
|
|
|
////////////////////////////////////////////////////////////////////
|
|
// Custom fields
|
|
////////////////////////////////////////////////////////////////////
|
|
|
|
$table->cellspacing = 2;
|
|
$table->cellpadding = 2;
|
|
$table->width = '100%';
|
|
$table->data = array ();
|
|
$table->head = array ();
|
|
$table->style[0] = 'width:35%; font-weight: bold; text-align: left; height: 23px;';
|
|
$table->style[1] = 'text-align: left; height: 23px;';
|
|
$table->class = "alternate rounded_cells";
|
|
|
|
$all_customs_fields = (bool)check_acl($config["id_user"],
|
|
$event["id_grupo"], "AW");
|
|
|
|
if ($all_customs_fields) {
|
|
$fields = db_get_all_rows_filter('tagent_custom_fields');
|
|
}
|
|
else {
|
|
$fields = db_get_all_rows_filter('tagent_custom_fields',
|
|
array('display_on_front' => 1));
|
|
}
|
|
|
|
if ($event['id_agente'] == 0) {
|
|
$fields_data = array();
|
|
}
|
|
else {
|
|
$fields_data = db_get_all_rows_filter('tagent_custom_data', array('id_agent' => $event['id_agente']));
|
|
if(is_array($fields_data)) {
|
|
$fields_data_aux = array();
|
|
foreach($fields_data as $fd) {
|
|
$fields_data_aux[$fd['id_field']] = $fd['description'];
|
|
}
|
|
$fields_data = $fields_data_aux;
|
|
}
|
|
}
|
|
|
|
foreach ($fields as $field) {
|
|
// Owner
|
|
$data = array();
|
|
$data[0] = $field['name'];
|
|
|
|
$data[1] = empty($fields_data[$field['id_field']]) ? '<i>'.__('N/A').'</i>' : $fields_data[$field['id_field']];
|
|
|
|
$field['id_field'];
|
|
|
|
$table->data[] = $data;
|
|
}
|
|
|
|
$custom_fields = '<div id="extended_event_custom_fields_page" class="extended_event_pages">'.html_print_table($table, true).'</div>';
|
|
|
|
return $custom_fields;
|
|
}
|
|
|
|
function events_page_details ($event, $server = "") {
|
|
global $img_sev;
|
|
global $config;
|
|
|
|
// If server is provided, get the hash parameters
|
|
if (!empty($server) && defined("METACONSOLE")) {
|
|
$hashdata = metaconsole_get_server_hashdata($server);
|
|
$hashstring = "&" .
|
|
"loginhash=auto&" .
|
|
"loginhash_data=" . $hashdata . "&" .
|
|
"loginhash_user=" . str_rot13($config["id_user"]);
|
|
$serverstring = $server['server_url'] . "/";
|
|
|
|
if (metaconsole_connect($server) !== NOERR) {
|
|
return ui_print_error_message(__('There was an error connecting to the node'), '', true);
|
|
}
|
|
}
|
|
else {
|
|
$hashstring = "";
|
|
$serverstring = "";
|
|
}
|
|
|
|
////////////////////////////////////////////////////////////////////
|
|
// Details
|
|
////////////////////////////////////////////////////////////////////
|
|
|
|
$table_details->width = '100%';
|
|
$table_details->data = array ();
|
|
$table_details->head = array ();
|
|
$table_details->cellspacing = 2;
|
|
$table_details->cellpadding = 2;
|
|
$table_details->style[0] = 'width:35%; font-weight: bold; text-align: left; height: 23px;';
|
|
$table_details->style[1] = 'text-align: left; height: 23px;';
|
|
$table_details->class = "alternate rounded_cells";
|
|
|
|
switch ($event['event_type']) {
|
|
case 'going_unknown':
|
|
case 'going_up_warning':
|
|
case 'going_down_warning':
|
|
case 'going_up_critical':
|
|
case 'going_down_critical':
|
|
|
|
break;
|
|
}
|
|
|
|
if ($event["id_agente"] != 0) {
|
|
$agent = db_get_row('tagente','id_agente',$event["id_agente"]);
|
|
}
|
|
else {
|
|
$agent = array();
|
|
}
|
|
|
|
$data = array();
|
|
$data[0] = __('Agent details');
|
|
$data[1] = empty($agent) ? '<i>' . __('N/A') . '</i>' : '';
|
|
$table_details->data[] = $data;
|
|
|
|
if (!empty($agent)) {
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('Name').'</div>';
|
|
if (can_user_access_node ()) {
|
|
$data[1] = ui_print_agent_name ($event["id_agente"], true, 'agent_medium', '', false, $serverstring, $hashstring, $agent['nombre']);
|
|
}
|
|
else {
|
|
$data[1] = ui_print_truncate_text($agent['nombre'], 'agent_medium', true, true, true);
|
|
}
|
|
$table_details->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('IP Address').'</div>';
|
|
$data[1] = empty($agent['direccion']) ? '<i>'.__('N/A').'</i>' : $agent['direccion'];
|
|
$table_details->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('OS').'</div>';
|
|
$data[1] = ui_print_os_icon ($agent["id_os"], true, true).' ('.$agent["os_version"].')';
|
|
$table_details->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('Last contact').'</div>';
|
|
$data[1] = $agent["ultimo_contacto"] == "1970-01-01 00:00:00" ? '<i>'.__('N/A').'</i>' : $agent["ultimo_contacto"];
|
|
$table_details->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('Last remote contact').'</div>';
|
|
$data[1] = $agent["ultimo_contacto_remoto"] == "1970-01-01 00:00:00" ? '<i>'.__('N/A').'</i>' : $agent["ultimo_contacto_remoto"];
|
|
$table_details->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('Custom fields').'</div>';
|
|
$data[1] = html_print_button(__('View custom fields'),'custom_button',false,'$(\'#link_custom_fields\').trigger(\'click\');','class="sub next"',true);
|
|
$table_details->data[] = $data;
|
|
}
|
|
|
|
if ($event["id_agentmodule"] != 0) {
|
|
$module = db_get_row_filter('tagente_modulo',array('id_agente_modulo' => $event["id_agentmodule"], 'delete_pending' => 0));
|
|
}
|
|
else {
|
|
$module = array();
|
|
}
|
|
|
|
$data = array();
|
|
$data[0] = __('Module details');
|
|
$data[1] = empty($module) ? '<i>' . __('N/A') . '</i>' : '';
|
|
$table_details->data[] = $data;
|
|
|
|
if (!empty($module)) {
|
|
// Module name
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('Name').'</div>';
|
|
$data[1] = $module['nombre'];
|
|
$table_details->data[] = $data;
|
|
|
|
// Module group
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">' .
|
|
__('Module group') . '</div>';
|
|
$id_module_group = $module['id_module_group'];
|
|
if ($id_module_group == 0) {
|
|
$data[1] = __('No assigned');
|
|
}
|
|
else {
|
|
$module_group = db_get_value('name', 'tmodule_group', 'id_mg', $id_module_group);
|
|
$data[1] = '<a href="'.$serverstring . 'index.php?sec=estado&sec2=operation/agentes/status_monitor&status=-1&modulegroup=' . $id_module_group . $hashstring.'">';
|
|
$data[1] .= $module_group;
|
|
$data[1] .= '</a>';
|
|
}
|
|
$table_details->data[] = $data;
|
|
|
|
// ACL
|
|
$acl_graph = false;
|
|
$strict_user = (bool) db_get_value("strict_acl", "tusuario", "id_user", $config['id_user']);
|
|
|
|
if (!empty($agent['id_grupo'])) {
|
|
if ($strict_user) {
|
|
$acl_graph = tags_check_acl_by_module($module["id_agente_modulo"], $config['id_user'], 'RR') === true;
|
|
}
|
|
else {
|
|
$acl_graph = check_acl($config['id_user'], $agent['id_grupo'], "RR");
|
|
}
|
|
}
|
|
|
|
if ($acl_graph) {
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('Graph').'</div>';
|
|
|
|
$module_type = -1;
|
|
if (isset($module["module_type"])) {
|
|
$module_type = $module["module_type"];
|
|
}
|
|
$graph_type = return_graphtype ($module_type);
|
|
$url = ui_get_full_url("operation/agentes/stat_win.php", false, false, false);
|
|
$handle = dechex(crc32($module["id_agente_modulo"].$module["nombre"]));
|
|
$win_handle = "day_$handle";
|
|
|
|
$graph_params = array(
|
|
"type" => $graph_type,
|
|
"period" => SECONDS_1DAY,
|
|
"id" => $module["id_agente_modulo"],
|
|
"label" => rawurlencode(urlencode(base64_encode($module["nombre"]))),
|
|
"refresh" => SECONDS_10MINUTES
|
|
);
|
|
|
|
if (defined('METACONSOLE')) {
|
|
$graph_params["avg_only"] = 1;
|
|
// Set the server id
|
|
$graph_params["server"] = $server["id"];
|
|
}
|
|
|
|
$graph_params_str = http_build_query($graph_params);
|
|
|
|
$link = "winopeng('$url?$graph_params_str','$win_handle')";
|
|
|
|
$data[1] = '<a href="javascript:'.$link.'">';
|
|
$data[1] .= html_print_image('images/chart_curve.png',true);
|
|
$data[1] .= '</a>';
|
|
$table_details->data[] = $data;
|
|
}
|
|
}
|
|
|
|
$data = array();
|
|
$data[0] = __('Alert details');
|
|
$data[1] = $event["id_alert_am"] == 0 ? '<i>' . __('N/A') . '</i>' : '';
|
|
$table_details->data[] = $data;
|
|
|
|
if ($event["id_alert_am"] != 0) {
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('Source').'</div>';
|
|
$data[1] = '<a href="'.$serverstring.'index.php?sec=estado&sec2=operation/agentes/ver_agente&id_agente='.$event["id_agente"].'&tab=alert'.$hashstring.'">';
|
|
$standby = db_get_value('standby', 'talert_template_modules', 'id', $event["id_alert_am"]);
|
|
if(!$standby) {
|
|
$data[1] .= html_print_image ("images/bell.png", true,
|
|
array ("title" => __('Go to data overview')));
|
|
}
|
|
else {
|
|
$data[1] .= html_print_image ("images/bell_pause.png", true,
|
|
array ("title" => __('Go to data overview')));
|
|
}
|
|
|
|
$sql = 'SELECT name
|
|
FROM talert_templates
|
|
WHERE id IN (SELECT id_alert_template
|
|
FROM talert_template_modules
|
|
WHERE id = ' . $event["id_alert_am"] . ');';
|
|
|
|
$templateName = db_get_sql($sql);
|
|
|
|
$data[1] .= $templateName;
|
|
|
|
$data[1] .= '</a>';
|
|
|
|
$table_details->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = '<div style="font-weight:normal; margin-left: 20px;">'.__('Priority').'</div>';
|
|
|
|
$priority_code = db_get_value('priority', 'talert_template_modules', 'id', $event["id_alert_am"]);
|
|
$alert_priority = get_priority_name ($priority_code);
|
|
$data[1] = html_print_image ($img_sev, true,
|
|
array ("class" => "image_status",
|
|
"width" => 12,
|
|
"height" => 12,
|
|
"title" => $alert_priority));
|
|
$data[1] .= ' '.$alert_priority;
|
|
|
|
$table_details->data[] = $data;
|
|
}
|
|
|
|
switch($event['event_type']) {
|
|
case 'going_unknown':
|
|
$data = array();
|
|
$data[0] = __('Instructions');
|
|
if ($event["unknown_instructions"] != '') {
|
|
$data[1] = str_replace("\n","<br>", io_safe_output($event["unknown_instructions"]));
|
|
}
|
|
else {
|
|
$data[1] = '<i>' . __('N/A') . '</i>';
|
|
}
|
|
$table_details->data[] = $data;
|
|
break;
|
|
case 'going_up_warning':
|
|
case 'going_down_warning':
|
|
$data = array();
|
|
$data[0] = __('Instructions');
|
|
if ($event["warning_instructions"] != '') {
|
|
$data[1] = str_replace("\n","<br>", io_safe_output($event["warning_instructions"]));
|
|
}
|
|
else {
|
|
$data[1] = '<i>' . __('N/A') . '</i>';
|
|
}
|
|
$table_details->data[] = $data;
|
|
break;
|
|
case 'going_up_critical':
|
|
case 'going_down_critical':
|
|
$data = array();
|
|
$data[0] = __('Instructions');
|
|
if ($event["critical_instructions"] != '') {
|
|
$data[1] = str_replace("\n","<br>", io_safe_output($event["critical_instructions"]));
|
|
}
|
|
else {
|
|
$data[1] = '<i>' . __('N/A') . '</i>';
|
|
}
|
|
$table_details->data[] = $data;
|
|
break;
|
|
}
|
|
|
|
$data = array();
|
|
$data[0] = __('Extra id');
|
|
if ($event["id_extra"] != '') {
|
|
$data[1] = $event["id_extra"];
|
|
}
|
|
else {
|
|
$data[1] = '<i>' . __('N/A') . '</i>';
|
|
}
|
|
$table_details->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('Source');
|
|
if ($event["source"] != '') {
|
|
$data[1] = $event["source"];
|
|
}
|
|
else {
|
|
$data[1] = '<i>' . __('N/A') . '</i>';
|
|
}
|
|
$table_details->data[] = $data;
|
|
|
|
$details = '<div id="extended_event_details_page" class="extended_event_pages">'.html_print_table($table_details, true).'</div>';
|
|
|
|
if (!empty($server) && defined("METACONSOLE"))
|
|
metaconsole_restore_db();
|
|
|
|
return $details;
|
|
}
|
|
|
|
function events_page_custom_data ($event) {
|
|
global $config;
|
|
|
|
////////////////////////////////////////////////////////////////////
|
|
// Custom data
|
|
////////////////////////////////////////////////////////////////////
|
|
if ($event['custom_data'] == '') {
|
|
return '';
|
|
}
|
|
|
|
$table->width = '100%';
|
|
$table->data = array ();
|
|
$table->head = array ();
|
|
$table->style[0] = 'width:35%; font-weight: bold; text-align: left;';
|
|
$table->style[1] = 'text-align: left;';
|
|
$table->class = "alternate rounded_cells";
|
|
|
|
$json_custom_data = base64_decode ($event['custom_data']);
|
|
$custom_data = json_decode ($json_custom_data);
|
|
if ($custom_data === NULL) {
|
|
return '<div id="extended_event_custom_data_page" class="extended_event_pages">'.__('Invalid custom data: %s', $json_custom_data).'</div>';
|
|
}
|
|
|
|
$i = 0;
|
|
foreach ($custom_data as $field => $value) {
|
|
$table->data[$i][0] = io_safe_output ($field);
|
|
$table->data[$i][1] = io_safe_output ($value);
|
|
$i++;
|
|
}
|
|
|
|
$custom_data = '<div id="extended_event_custom_data_page" class="extended_event_pages">'.html_print_table($table, true).'</div>';
|
|
|
|
return $custom_data;
|
|
}
|
|
|
|
function events_page_general ($event) {
|
|
global $img_sev;
|
|
global $config;
|
|
|
|
//$group_rep = $event['similar_ids'] == -1 ? 1 : count(explode(',',$event['similar_ids']));
|
|
global $group_rep;
|
|
|
|
////////////////////////////////////////////////////////////////////
|
|
// General
|
|
////////////////////////////////////////////////////////////////////
|
|
$table_general->cellspacing = 2;
|
|
$table_general->cellpadding = 2;
|
|
$table_general->width = '100%';
|
|
$table_general->data = array ();
|
|
$table_general->head = array ();
|
|
$table_general->style[0] = 'width:35%; font-weight: bold; text-align: left; height: 23px;';
|
|
$table_general->style[1] = 'text-align: left; height: 23px;';
|
|
$table_general->class = "alternate rounded_cells";
|
|
|
|
$data = array();
|
|
$data[0] = __('Event ID');
|
|
$data[1] = "#".$event["id_evento"];
|
|
$table_general->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('Event name');
|
|
$data[1] = io_safe_output(io_safe_output($event["evento"]));
|
|
$table_general->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('Timestamp');
|
|
if ($group_rep == 1 && $event["event_rep"] > 1) {
|
|
$data[1] = __('First event').': '.date ($config["date_format"], $event['timestamp_first']).'<br>'.__('Last event').': '.date ($config["date_format"], $event['timestamp_last']);
|
|
}
|
|
else {
|
|
$data[1] = date ($config["date_format"], strtotime($event["timestamp"]));
|
|
}
|
|
$table_general->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('Owner');
|
|
if (empty($event["owner_user"])) {
|
|
$data[1] = '<i>'.__('N/A').'</i>';
|
|
}
|
|
else {
|
|
$user_owner = db_get_value('fullname', 'tusuario', 'id_user', $event["owner_user"]);
|
|
if(empty($user_owner)) {
|
|
$user_owner = $event['owner_user'];
|
|
}
|
|
$data[1] = $user_owner;
|
|
}
|
|
$table_general->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('Type');
|
|
$data[1] = events_print_type_img ($event["event_type"], true).' '.events_print_type_description($event["event_type"], true);
|
|
$table_general->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('Repeated');
|
|
if ($group_rep != 0) {
|
|
if($event["event_rep"] <= 1) {
|
|
$data[1] = '<i>'.__('No').'</i>';
|
|
}
|
|
else {
|
|
$data[1] = sprintf("%d Times",$event["event_rep"]);
|
|
}
|
|
}
|
|
else {
|
|
$data[1] = '<i>'.__('No').'</i>';
|
|
}
|
|
$table_general->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('Severity');
|
|
$event_criticity = get_priority_name ($event["criticity"]);
|
|
|
|
$data[1] = html_print_image ($img_sev, true,
|
|
array ("class" => "image_status",
|
|
"width" => 12,
|
|
"height" => 12,
|
|
"title" => $event_criticity));
|
|
$data[1] .= ' '.$event_criticity;
|
|
$table_general->data[] = $data;
|
|
|
|
// Get Status
|
|
switch($event['estado']) {
|
|
case 0:
|
|
$img_st = "images/star.png";
|
|
$title_st = __('New event');
|
|
break;
|
|
case 1:
|
|
$img_st = "images/tick.png";
|
|
$title_st = __('Event validated');
|
|
break;
|
|
case 2:
|
|
$img_st = "images/hourglass.png";
|
|
$title_st = __('Event in process');
|
|
break;
|
|
}
|
|
|
|
$data = array();
|
|
$data[0] = __('Status');
|
|
$data[1] = html_print_image($img_st,true).' '.$title_st;
|
|
$table_general->data[] = $data;
|
|
|
|
// If event is validated, show who and when acknowleded it
|
|
$data = array();
|
|
$data[0] = __('Acknowledged by');
|
|
|
|
if ($event['estado'] == 1) {
|
|
$user_ack = db_get_value('fullname', 'tusuario', 'id_user', $event['id_usuario']);
|
|
if(empty($user_ack)) {
|
|
$user_ack = $event['id_usuario'];
|
|
}
|
|
$date_ack = date ($config["date_format"], $event['ack_utimestamp']);
|
|
$data[1] = $user_ack.' ('.$date_ack.')';
|
|
}
|
|
else {
|
|
$data[1] = '<i>'.__('N/A').'</i>';
|
|
}
|
|
$table_general->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('Group');
|
|
$data[1] = "";
|
|
if (!$config['show_group_name']) {
|
|
$data[1] = ui_print_group_icon ($event["id_grupo"], true);
|
|
}
|
|
$data[1] .= groups_get_name ($event["id_grupo"]);
|
|
$table_general->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('Tags');
|
|
|
|
if ($event["tags"] != '') {
|
|
$tags = tags_get_tags_formatted($event["tags"]);
|
|
|
|
$data[1] = $tags;
|
|
}
|
|
else {
|
|
$data[1] = '<i>' . __('N/A') . '</i>';
|
|
}
|
|
$table_general->data[] = $data;
|
|
|
|
$data = array();
|
|
$data[0] = __('ID extra');
|
|
if ($event["id_extra"] != '') {
|
|
$data[1] = $event["id_extra"];
|
|
}
|
|
else {
|
|
$data[1] = '<i>' . __('N/A') . '</i>';
|
|
}
|
|
$table_general->data[] = $data;
|
|
|
|
$general = '<div id="extended_event_general_page" class="extended_event_pages">' .
|
|
html_print_table($table_general,true) .
|
|
'</div>';
|
|
|
|
return $general;
|
|
}
|
|
|
|
function events_page_comments ($event, $childrens_ids = array()) {
|
|
////////////////////////////////////////////////////////////////////
|
|
// Comments
|
|
////////////////////////////////////////////////////////////////////
|
|
global $config;
|
|
|
|
$table_comments->width = '100%';
|
|
$table_comments->data = array ();
|
|
$table_comments->head = array ();
|
|
$table_comments->style[0] = 'width:35%; vertical-align: top; text-align: left;';
|
|
$table_comments->style[1] = 'text-align: left;';
|
|
$table_comments->class = "alternate rounded_cells";
|
|
|
|
$event_comments = io_safe_output($event["user_comment"]);
|
|
$event_comments = str_replace( array("\n", '
'), "<br>", $event_comments);
|
|
|
|
// If comments are not stored in json, the format is old
|
|
$event_comments_array = json_decode($event_comments, true);
|
|
|
|
// Show the comments more recent first
|
|
$event_comments_array = array_reverse($event_comments_array);
|
|
|
|
if (is_null($event_comments_array)) {
|
|
$comments_format = 'old';
|
|
}
|
|
else {
|
|
$comments_format = 'new';
|
|
}
|
|
|
|
|
|
switch($comments_format) {
|
|
case 'new':
|
|
if (empty($event_comments_array)) {
|
|
$table_comments->style[0] = 'text-align:center;';
|
|
$table_comments->colspan[0][0] = 2;
|
|
$data = array();
|
|
$data[0] = __('There are no comments');
|
|
$table_comments->data[] = $data;
|
|
}
|
|
|
|
foreach($event_comments_array as $c) {
|
|
$data[0] = '<b>' . $c['action'] . ' by ' . $c['id_user'] . '</b>';
|
|
$data[0] .= '<br><br><i>' . date ($config["date_format"], $c['utimestamp']) . '</i>';
|
|
$data[1] = $c['comment'];
|
|
$table_comments->data[] = $data;
|
|
}
|
|
break;
|
|
case 'old':
|
|
$comments_array = explode('<br>',$event_comments);
|
|
|
|
// Split comments and put in table
|
|
$col = 0;
|
|
$data = array();
|
|
|
|
foreach ($comments_array as $c) {
|
|
switch ($col) {
|
|
case 0:
|
|
$row_text = preg_replace('/\s*--\s*/',"",$c);
|
|
$row_text = preg_replace('/\<\/b\>/',"</i>",$row_text);
|
|
$row_text = preg_replace('/\[/',"</b><br><br><i>[",$row_text);
|
|
$row_text = preg_replace('/[\[|\]]/',"",$row_text);
|
|
break;
|
|
case 1:
|
|
$row_text = preg_replace("/[\r\n|\r|\n]/","<br>",io_safe_output(strip_tags($c)));
|
|
break;
|
|
}
|
|
|
|
$data[$col] = $row_text;
|
|
|
|
$col++;
|
|
|
|
if($col == 2) {
|
|
$col = 0;
|
|
$table_comments->data[] = $data;
|
|
$data = array();
|
|
}
|
|
}
|
|
|
|
if (count($comments_array) == 1 && $comments_array[0] == '') {
|
|
$table_comments->style[0] = 'text-align:center;';
|
|
$table_comments->colspan[0][0] = 2;
|
|
$data = array();
|
|
$data[0] = __('There are no comments');
|
|
$table_comments->data[] = $data;
|
|
}
|
|
break;
|
|
}
|
|
|
|
if ((tags_checks_event_acl($config["id_user"], $event["id_grupo"], "EM", $event['clean_tags'], $childrens_ids)) || (tags_checks_event_acl($config["id_user"], $event["id_grupo"], "EW", $event['clean_tags'],$childrens_ids))) {
|
|
$comments_form = '<br><div id="comments_form" style="width:98%;">'.html_print_textarea("comment", 3, 10, '', 'style="min-height: 15px; width: 100%;"', true);
|
|
$comments_form .= '<br><div style="text-align:right;">'.html_print_button(__('Add comment'),'comment_button',false,'event_comment();','class="sub next"',true).'</div><br></div>';
|
|
}
|
|
else {
|
|
$comments_form = '';
|
|
}
|
|
|
|
$comments = '<div id="extended_event_comments_page" class="extended_event_pages">'.$comments_form.html_print_table($table_comments, true).'</div>';
|
|
|
|
return $comments;
|
|
}
|
|
|
|
function events_clean_tags ($tags) {
|
|
if(empty($tags)) {
|
|
return array();
|
|
}
|
|
|
|
$event_tags = tags_get_tags_formatted ($tags, false);
|
|
return explode(',',str_replace(' ','',$event_tags));
|
|
}
|
|
|
|
/**
|
|
* Get all the events happened in a group during a period of time.
|
|
*
|
|
* The returned events will be in the time interval ($date - $period, $date]
|
|
*
|
|
* @param mixed $id_group Group id to get events for.
|
|
* @param int $period Period of time in seconds to get events.
|
|
* @param int $date Beginning date to get events.
|
|
*
|
|
* @return array An array with all the events happened.
|
|
*/
|
|
function events_get_count_events_by_agent ($id_group, $period, $date,
|
|
$filter_event_validated = false, $filter_event_critical = false,
|
|
$filter_event_warning = false, $filter_event_no_validated = false) {
|
|
global $config;
|
|
|
|
$id_group = groups_safe_acl ($config["id_user"], $id_group, "AR");
|
|
|
|
if (empty ($id_group)) {
|
|
//An empty array means the user doesn't have access
|
|
return false;
|
|
}
|
|
|
|
$datelimit = $date - $period;
|
|
|
|
$sql_where = ' AND 1 = 1 ';
|
|
$criticities = array();
|
|
if ($filter_event_critical) {
|
|
$criticities[] = 4;
|
|
}
|
|
if ($filter_event_warning) {
|
|
$criticities[] = 3;
|
|
}
|
|
if (!empty($criticities)) {
|
|
$sql_where .= ' AND criticity IN (' . implode(', ', $criticities) . ')';
|
|
}
|
|
|
|
if ($filter_event_validated) {
|
|
$sql_where .= ' AND estado = 1 ';
|
|
}
|
|
if ($filter_event_no_validated) {
|
|
$sql_where .= ' AND estado = 0 ';
|
|
}
|
|
|
|
$sql = sprintf ('SELECT id_agente,
|
|
(SELECT t2.nombre
|
|
FROM tagente t2
|
|
WHERE t2.id_agente = t3.id_agente) AS agent_name,
|
|
COUNT(*) AS count
|
|
FROM tevento t3
|
|
WHERE utimestamp > %d AND utimestamp <= %d
|
|
AND id_grupo IN (%s) ' . $sql_where . '
|
|
GROUP BY id_agente',
|
|
$datelimit, $date, implode (",", $id_group));
|
|
|
|
$rows = db_get_all_rows_sql ($sql);
|
|
|
|
if ($rows == false)
|
|
$rows = array();
|
|
|
|
$return = array();
|
|
foreach ($rows as $row) {
|
|
$agent_name = $row['agent_name'];
|
|
if (empty($row['agent_name'])) {
|
|
$agent_name = __('Pandora System');
|
|
}
|
|
$return[$agent_name] = $row['count'];
|
|
}
|
|
|
|
return $return;
|
|
}
|
|
|
|
/**
|
|
* Get all the events happened in a group during a period of time.
|
|
*
|
|
* The returned events will be in the time interval ($date - $period, $date]
|
|
*
|
|
* @param mixed $id_group Group id to get events for.
|
|
* @param int $period Period of time in seconds to get events.
|
|
* @param int $date Beginning date to get events.
|
|
*
|
|
* @return array An array with all the events happened.
|
|
*/
|
|
function events_get_count_events_validated_by_user ($filter, $period, $date,
|
|
$filter_event_validated = false, $filter_event_critical = false,
|
|
$filter_event_warning = false, $filter_event_no_validated = false) {
|
|
global $config;
|
|
|
|
$sql_filter = ' AND 1=1 ';
|
|
if (isset($filter['id_group'])) {
|
|
$id_group = groups_safe_acl ($config["id_user"], $filter['id_group'], "AR");
|
|
|
|
if (empty ($id_group)) {
|
|
//An empty array means the user doesn't have access
|
|
return false;
|
|
}
|
|
|
|
$sql_filter .=
|
|
sprintf(' AND id_grupo IN (%s) ', implode (",", $id_group));
|
|
}
|
|
if (!empty($filter['id_agent'])) {
|
|
$sql_filter .=
|
|
sprintf(' AND id_agente = %d ', $filter['id_agent']);
|
|
}
|
|
|
|
$datelimit = $date - $period;
|
|
|
|
$sql_where = ' AND 1 = 1 ';
|
|
$criticities = array();
|
|
if ($filter_event_critical) {
|
|
$criticities[] = 4;
|
|
}
|
|
if ($filter_event_warning) {
|
|
$criticities[] = 3;
|
|
}
|
|
if (!empty($criticities)) {
|
|
$sql_where .= ' AND criticity IN (' . implode(', ', $criticities) . ')';
|
|
}
|
|
|
|
if ($filter_event_validated) {
|
|
$sql_where .= ' AND estado = 1 ';
|
|
}
|
|
if ($filter_event_no_validated) {
|
|
$sql_where .= ' AND estado = 0 ';
|
|
}
|
|
|
|
$sql = sprintf ('SELECT id_usuario,
|
|
(SELECT t2.fullname
|
|
FROM tusuario t2
|
|
WHERE t2.id_user = t3.id_usuario) AS user_name,
|
|
COUNT(*) AS count
|
|
FROM tevento t3
|
|
WHERE utimestamp > %d AND utimestamp <= %d
|
|
%s ' . $sql_where . '
|
|
GROUP BY id_usuario',
|
|
$datelimit, $date, $sql_filter);
|
|
|
|
$rows = db_get_all_rows_sql ($sql);
|
|
|
|
if ($rows == false)
|
|
$rows = array();
|
|
|
|
$return = array();
|
|
foreach ($rows as $row) {
|
|
$user_name = $row['user_name'];
|
|
if (empty($row['user_name'])) {
|
|
$user_name = __('Unknown');
|
|
}
|
|
$return[$user_name] = $row['count'];
|
|
}
|
|
|
|
return $return;
|
|
}
|
|
|
|
/**
|
|
* Get all the events happened in a group during a period of time.
|
|
*
|
|
* The returned events will be in the time interval ($date - $period, $date]
|
|
*
|
|
* @param mixed $id_group Group id to get events for.
|
|
* @param int $period Period of time in seconds to get events.
|
|
* @param int $date Beginning date to get events.
|
|
*
|
|
* @return array An array with all the events happened.
|
|
*/
|
|
function events_get_count_events_by_criticity ($filter, $period, $date,
|
|
$filter_event_validated = false, $filter_event_critical = false,
|
|
$filter_event_warning = false, $filter_event_no_validated = false) {
|
|
global $config;
|
|
|
|
$sql_filter = ' AND 1=1 ';
|
|
if (isset($filter['id_group'])) {
|
|
$id_group = groups_safe_acl ($config["id_user"], $filter['id_group'], "AR");
|
|
|
|
if (empty ($id_group)) {
|
|
//An empty array means the user doesn't have access
|
|
return false;
|
|
}
|
|
|
|
$sql_filter .=
|
|
sprintf(' AND id_grupo IN (%s) ', implode (",", $id_group));
|
|
}
|
|
if (!empty($filter['id_agent'])) {
|
|
$sql_filter .=
|
|
sprintf(' AND id_agente = %d ', $filter['id_agent']);
|
|
}
|
|
|
|
$datelimit = $date - $period;
|
|
|
|
$sql_where = ' AND 1 = 1 ';
|
|
$criticities = array();
|
|
if ($filter_event_critical) {
|
|
$criticities[] = 4;
|
|
}
|
|
if ($filter_event_warning) {
|
|
$criticities[] = 3;
|
|
}
|
|
if (!empty($criticities)) {
|
|
$sql_where .= ' AND criticity IN (' . implode(', ', $criticities) . ')';
|
|
}
|
|
|
|
if ($filter_event_validated) {
|
|
$sql_where .= ' AND estado = 1 ';
|
|
}
|
|
if ($filter_event_no_validated) {
|
|
$sql_where .= ' AND estado = 0 ';
|
|
}
|
|
|
|
$sql = sprintf ('SELECT criticity,
|
|
COUNT(*) AS count
|
|
FROM tevento
|
|
WHERE utimestamp > %d AND utimestamp <= %d
|
|
%s ' . $sql_where . '
|
|
GROUP BY criticity',
|
|
$datelimit, $date, $sql_filter);
|
|
|
|
$rows = db_get_all_rows_sql ($sql);
|
|
|
|
if ($rows == false)
|
|
$rows = array();
|
|
|
|
$return = array();
|
|
foreach ($rows as $row) {
|
|
$return[get_priority_name($row['criticity'])] = $row['count'];
|
|
}
|
|
|
|
return $return;
|
|
}
|
|
|
|
/**
|
|
* Get all the events happened in a group during a period of time.
|
|
*
|
|
* The returned events will be in the time interval ($date - $period, $date]
|
|
*
|
|
* @param mixed $id_group Group id to get events for.
|
|
* @param int $period Period of time in seconds to get events.
|
|
* @param int $date Beginning date to get events.
|
|
*
|
|
* @return array An array with all the events happened.
|
|
*/
|
|
function events_get_count_events_validated ($filter, $period, $date,
|
|
$filter_event_validated = false, $filter_event_critical = false,
|
|
$filter_event_warning = false, $filter_event_no_validated = false) {
|
|
global $config;
|
|
|
|
$sql_filter = ' AND 1=1 ';
|
|
if (isset($filter['id_group'])) {
|
|
$id_group = groups_safe_acl ($config["id_user"], $filter['id_group'], "AR");
|
|
|
|
if (empty ($id_group)) {
|
|
//An empty array means the user doesn't have access
|
|
return false;
|
|
}
|
|
|
|
$sql_filter .=
|
|
sprintf(' AND id_grupo IN (%s) ', implode (",", $id_group));
|
|
}
|
|
if (!empty($filter['id_agent'])) {
|
|
$sql_filter .=
|
|
sprintf(' AND id_agente = %d ', $filter['id_agent']);
|
|
}
|
|
|
|
$datelimit = $date - $period;
|
|
|
|
$sql_where = ' AND 1 = 1 ';
|
|
$criticities = array();
|
|
if ($filter_event_critical) {
|
|
$criticities[] = 4;
|
|
}
|
|
if ($filter_event_warning) {
|
|
$criticities[] = 3;
|
|
}
|
|
if (!empty($criticities)) {
|
|
$sql_where .= ' AND criticity IN (' . implode(', ', $criticities) . ')';
|
|
}
|
|
|
|
if ($filter_event_validated) {
|
|
$sql_where .= ' AND estado = 1 ';
|
|
}
|
|
if ($filter_event_no_validated) {
|
|
$sql_where .= ' AND estado = 0 ';
|
|
}
|
|
|
|
$sql = sprintf ('SELECT estado,
|
|
COUNT(*) AS count
|
|
FROM tevento
|
|
WHERE utimestamp > %d AND utimestamp <= %d
|
|
%s ' . $sql_where . '
|
|
GROUP BY estado',
|
|
$datelimit, $date, $sql_filter);
|
|
|
|
$rows = db_get_all_rows_sql ($sql);
|
|
|
|
if ($rows == false)
|
|
$rows = array();
|
|
|
|
$return = array();
|
|
$return[__('Validated')] = 0;
|
|
$return[__('Not validated')] = 0;
|
|
foreach ($rows as $row) {
|
|
if ($row['estado'] == 1) {
|
|
$return[__('Validated')] += $row['count'];
|
|
}
|
|
else {
|
|
$return[__('Not validated')] += $row['count'];
|
|
}
|
|
}
|
|
|
|
return $return;
|
|
}
|
|
|
|
function events_checks_event_tags($event_data, $acltags) {
|
|
global $config;
|
|
|
|
if (empty($acltags[$event_data['id_grupo']])) {
|
|
return true;
|
|
} else {
|
|
$tags_arr_acl = explode(',',$acltags[$event_data['id_grupo']]);
|
|
$tags_arr_event = explode(',',$event_data['tags']);
|
|
|
|
foreach ($tags_arr_acl as $tag) {
|
|
$tag_name = tags_get_name($tag);
|
|
if (in_array($tag_name, $tags_arr_event)) {
|
|
return true;
|
|
} else {
|
|
$has_tag = false;
|
|
}
|
|
}
|
|
if (!$has_tag) {
|
|
return false;
|
|
}
|
|
}
|
|
return false;
|
|
}
|
|
?>
|