pandorafms/pandora_console/mobile/index.php

355 lines
10 KiB
PHP

<?php
// Pandora FMS - http://pandorafms.com
// ==================================================
// Copyright (c) 2005-2021 Artica Soluciones Tecnologicas
// Please see http://pandorafms.org for full contribution list
// This program is free software; you can redistribute it and/or
// modify it under the terms of the GNU General Public License
// as published by the Free Software Foundation for version 2.
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.
// Set character encoding to UTF-8 - fixes a lot of multibyte character
// headaches
if (function_exists('mb_internal_encoding')) {
mb_internal_encoding('UTF-8');
}
$develop_bypass = 0;
require_once 'include/ui.class.php';
require_once 'include/system.class.php';
require_once 'include/db.class.php';
require_once 'include/user.class.php';
/*
Info:
* The classes above doesn't start any session before it's properly
* configured into the file below, but it's important the classes
* exist at the time the session is started for things like
* serializing objects stored into the session.
*/
require_once '../include/config.php';
require_once 'operation/home.php';
require_once 'operation/tactical.php';
require_once 'operation/groups.php';
require_once 'operation/events.php';
require_once 'operation/alerts.php';
require_once 'operation/agents.php';
require_once 'operation/modules.php';
require_once 'operation/module_graph.php';
require_once 'operation/agent.php';
require_once 'operation/visualmaps.php';
require_once 'operation/visualmap.php';
$enterpriseHook = enterprise_include('mobile/include/enterprise.class.php');
$enterpriseHook = enterprise_include('mobile/operation/home.php');
$is_mobile = true;
if (!empty($config['https']) && empty($_SERVER['HTTPS'])) {
$query = '';
if (sizeof($_REQUEST)) {
// Some (old) browsers don't like the ?&key=var
$query .= 'mobile/index.php?1=1';
}
// We don't clean these variables up as they're only being passed along
foreach ($_GET as $key => $value) {
if ($key == 1) {
continue;
}
$query .= '&'.$key.'='.$value;
}
foreach ($_POST as $key => $value) {
$query .= '&'.$key.'='.$value;
}
$url = ui_get_full_url($query);
// Prevent HTTP response splitting attacks
// http://en.wikipedia.org/wiki/HTTP_response_splitting
$url = str_replace("\n", '', $url);
header('Location: '.$url);
exit;
// Always exit after sending location headers
}
$system = System::getInstance();
// ~ In this moment doesn't work the version mobile when have metaconsole version.
// ~ In the future versions of pandora maybe is added a mobile version of PandoraFMS Metaconsole version.
// ~ if ($system->getConfig('metaconsole'))
// ~ header ("Location: " . $system->getConfig('homeurl') . "enterprise/meta");
require_once $system->getConfig('homedir').'/include/constants.php';
$user = User::getInstance();
$user->saveLogin();
$default_page = 'home';
$page = $system->getRequest('page');
$action = $system->getRequest('action');
// The logout action has priority
if ($action != 'logout') {
if (!$user->isLogged()) {
$action = 'login';
} else if ($user->isWaitingDoubleAuth()) {
$dauth_period = SECONDS_2MINUTES;
$now = time();
$dauth_time = $user->getLoginTime();
if (($now - $dauth_period) < $dauth_time) {
$action = 'double_auth';
}
// Expired login
else {
$action = 'logout';
}
}
}
if ($action != 'ajax') {
$user_language = get_user_language($system->getConfig('id_user'));
if (file_exists('../include/languages/'.$user_language.'.mo')) {
$l10n = new gettext_reader(new CachedFileReader('../include/languages/'.$user_language.'.mo'));
$l10n->load_tables();
}
}
if ($user->isLogged()) {
if (file_exists('../enterprise/load_enterprise.php')) {
include_once '../enterprise/load_enterprise.php';
}
}
switch ($action) {
case 'ajax':
$parameter1 = $system->getRequest('parameter1', false);
$parameter2 = $system->getRequest('parameter2', false);
if (class_exists('Enterprise')) {
$enterprise = Enterprise::getInstance();
$permission = $enterprise->checkEnterpriseACL($parameter1);
if (!$permission) {
return false;
}
}
switch ($parameter1) {
case 'events':
$events = new Events();
$events->ajax($parameter2);
break;
case 'agents':
$agents = new Agents();
$agents->ajax($parameter2);
break;
case 'agent':
$agent = new Agent();
$agent->ajax($parameter2);
break;
case 'modules':
$modules = new Modules();
$modules->ajax($parameter2);
break;
case 'module_graph':
$module_graph = new ModuleGraph();
$module_graph->ajax($parameter2);
break;
case 'visualmap':
$visualmap = new Visualmap();
$visualmap->ajax($parameter2);
case 'tactical':
$tactical = new Tactical();
$tactical->ajax($parameter2);
break;
default:
if (class_exists('Enterprise')) {
$enterprise->enterpriseAjax($parameter1, $parameter2);
}
break;
}
return;
break;
case 'login':
if ($user->login() && $user->isLogged()) {
if (file_exists('../enterprise/load_enterprise.php')) {
include_once '../enterprise/load_enterprise.php';
}
if ($user->isWaitingDoubleAuth()) {
if ($user->validateDoubleAuthCode()) {
// Logged. Refresh the page
header('Location: .');
return;
} else {
$user->showDoubleAuthPage();
}
} else {
// Logged. Refresh the page
header('Location: .');
return;
}
} else {
$user->showLoginPage();
}
break;
case 'double_auth':
if ($user->isLogged()) {
if (file_exists('../enterprise/load_enterprise.php')) {
include_once '../enterprise/load_enterprise.php';
}
if ($user->validateDoubleAuthCode()) {
$user_language = get_user_language($system->getConfig('id_user'));
if (file_exists('../include/languages/'.$user_language.'.mo')) {
$l10n = new gettext_reader(new CachedFileReader('../include/languages/'.$user_language.'.mo'));
$l10n->load_tables();
}
if ($_GET['page'] != '') {
header('refresh:0; url=http://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']);
}
if (class_exists('HomeEnterprise')) {
$home = new HomeEnterprise();
} else {
$home = new Home();
}
$home->show();
} else {
$user->showDoubleAuthPage();
}
} else {
$user->showLoginPage();
}
break;
case 'logout':
$user->logout();
$user->showLoginPage();
break;
default:
if (class_exists('Enterprise')) {
$enterprise = Enterprise::getInstance();
if (!empty($page) && $page != $default_page) {
$permission = $enterprise->checkEnterpriseACL($page);
if (!$permission) {
$error['type'] = 'onStart';
$error['title_text'] = __('You don\'t have access to this page');
$error['content_text'] = System::getDefaultACLFailText();
if (class_exists('HomeEnterprise')) {
$home = new HomeEnterprise();
} else {
$home = new Home();
}
$home->show($error);
return;
}
}
}
if (empty($page)) {
$user_info = $user->getInfo();
$home_page = $system->safeOutput($user_info['section']);
$section_data = $user_info['data_section'];
switch ($home_page) {
case 'Event list':
$page = 'events';
break;
case 'Group view':
break;
case 'Alert detail':
$page = 'alerts';
break;
case 'Tactical view':
$page = 'tactical';
break;
case 'Visual console':
$page = 'visualmap';
$id_map = (int) db_get_value('id', 'tlayout', 'name', $section_data);
$_GET['id'] = $id_map;
break;
}
}
switch ($page) {
case 'home':
default:
if (class_exists('HomeEnterprise')) {
$home = new HomeEnterprise();
} else {
$home = new Home();
}
$home->show();
break;
case 'tactical':
$tactical = new Tactical();
$tactical->show();
break;
case 'groups':
$groups = new Groups();
$groups->show();
break;
case 'events':
$events = new Events();
$events->show();
break;
case 'alerts':
$alerts = new Alerts();
$alerts->show();
break;
case 'agents':
$agents = new Agents();
$agents->show();
break;
case 'modules':
$modules = new Modules();
$modules->show();
break;
case 'module_graph':
$module_graph = new ModuleGraph();
$module_graph->show();
break;
case 'agent':
$agent = new Agent();
$agent->show();
break;
}
break;
}