2015-09-27 15:35:33 +00:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								< ? php  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								/*  Copyright  ( C )  2015  Daniel  Preussker ,  QuxLabs  UG  < preussker @ quxlabs . com >  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  This  program  is  free  software :  you  can  redistribute  it  and / or  modify 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  it  under  the  terms  of  the  GNU  General  Public  License  as  published  by 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  the  Free  Software  Foundation ,  either  version  3  of  the  License ,  or 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  ( at  your  option )  any  later  version . 
							 
						 
					
						
							
								
									
										
										
										
											2018-01-05 15:22:48 -06:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								 * 
							 
						 
					
						
							
								
									
										
										
										
											2015-09-27 15:35:33 +00:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								 *  This  program  is  distributed  in  the  hope  that  it  will  be  useful , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  but  WITHOUT  ANY  WARRANTY ;  without  even  the  implied  warranty  of 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  MERCHANTABILITY  or  FITNESS  FOR  A  PARTICULAR  PURPOSE . See  the 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  GNU  General  Public  License  for  more  details . 
							 
						 
					
						
							
								
									
										
										
										
											2018-01-05 15:22:48 -06:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								 * 
							 
						 
					
						
							
								
									
										
										
										
											2015-09-27 15:35:33 +00:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								 *  You  should  have  received  a  copy  of  the  GNU  General  Public  License 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  along  with  this  program .   If  not ,  see  < http :// www . gnu . org / licenses />.  */ 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								/**  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  Notification  Page 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  @ author  Daniel  Preussker 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  @ copyright  2015  Daniel  Preussker ,  QuxLabs  UG 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  @ license  GPL 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  @ package  LibreNMS 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 *  @ subpackage  Notifications 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								 */ 
							 
						 
					
						
							
								
									
										
										
										
											2018-04-07 15:55:28 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2018-09-11 07:51:35 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								use  LibreNMS\Authentication\LegacyAuth ;  
						 
					
						
							
								
									
										
										
										
											2018-04-07 15:55:28 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2016-04-26 15:13:01 -07:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								header ( 'Content-type: application/json' );  
						 
					
						
							
								
									
										
										
										
											2015-09-27 15:35:33 +00:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
									
										
										
										
											2019-04-03 20:52:08 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								if  ( ! isset ( $_REQUEST [ 'action' ]))  {  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    die ( json_encode ([ 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        'status'  =>  'error' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        'message'  =>  'ERROR: Missing Params' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    ])); 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								}  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								if  ( in_array ( $_REQUEST [ 'action' ],  [ 'stick' ,  'unstick' ,  'create' ])  &&  ! LegacyAuth :: user () -> hasGlobalAdmin ())  {  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    die ( json_encode ([ 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        'status'  =>  'error' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        'message'  =>  'ERROR: Need to be GlobalAdmin or DemoUser' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    ])); 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								}  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								if  ( $_REQUEST [ 'action' ]  ==  'read'  &&  isset ( $_REQUEST [ 'notification_id' ]))  {  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    if  ( dbInsert ([ 'notifications_id' => $_REQUEST [ 'notification_id' ], 'user_id' => LegacyAuth :: id (), 'key' => 'read' , 'value' => 1 ],  'notifications_attribs' ))  { 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        die ( json_encode ([ 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								            'status'  =>  'ok' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								            'message'  =>  'Set as Read' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        ])); 
							 
						 
					
						
							
								
									
										
										
										
											2015-09-27 15:35:33 +00:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								    } 
							 
						 
					
						
							
								
									
										
										
										
											2019-04-03 20:52:08 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								}  elseif  ( $_REQUEST [ 'action' ]  ==  'read-all-notif' )  {  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    $unread  =  dbFetchColumn ( " SELECT `notifications_id` FROM `notifications` AS N WHERE NOT EXISTS ( SELECT 1 FROM `notifications_attribs` WHERE `notifications_id` = N.`notifications_id` AND `user_id`=? AND `key`='read' AND `value`=1) " ,  [ LegacyAuth :: id ()]); 
							 
						 
					
						
							
								
									
										
										
										
											2018-01-05 15:22:48 -06:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								    foreach  ( $unread  as  $notification_id )  { 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        dbInsert ( 
							 
						 
					
						
							
								
									
										
										
										
											2019-04-03 20:52:08 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								            [ 
							 
						 
					
						
							
								
									
										
										
										
											2018-01-05 15:22:48 -06:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								                'notifications_id'  =>  $notification_id , 
							 
						 
					
						
							
								
									
										
										
										
											2018-09-11 07:51:35 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								                'user_id'  =>  LegacyAuth :: id (), 
							 
						 
					
						
							
								
									
										
										
										
											2018-01-05 15:22:48 -06:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								                'key'  =>  'read' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								                'value'  =>  1 
							 
						 
					
						
							
								
									
										
										
										
											2019-04-03 20:52:08 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								            ], 
							 
						 
					
						
							
								
									
										
										
										
											2018-01-05 15:22:48 -06:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								            'notifications_attribs' 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        ); 
							 
						 
					
						
							
								
									
										
										
										
											2017-11-29 04:22:53 +01:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								    } 
							 
						 
					
						
							
								
									
										
										
										
											2019-04-03 20:52:08 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								    die ( json_encode ([ 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        'status'  =>  'ok' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        'message'  =>  'All notifications set as read' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    ])); 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								}  elseif  ( $_REQUEST [ 'action' ]  ==  'stick'  &&  isset ( $_REQUEST [ 'notification_id' ]))  {  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    if  ( dbInsert ([ 'notifications_id' => $_REQUEST [ 'notification_id' ], 'user_id' => LegacyAuth :: id (), 'key' => 'sticky' , 'value' => 1 ],  'notifications_attribs' ))  { 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        die ( json_encode ([ 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								            'status'  =>  'ok' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								            'message'  =>  'Set as Sticky' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        ])); 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    } 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								}  elseif  ( $_REQUEST [ 'action' ]  ==  'unstick'  &&  isset ( $_REQUEST [ 'notification_id' ]))  {  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    if  ( dbDelete ( 'notifications_attribs' ,  " notifications_id = ? && user_id = ? AND `key`='sticky' " ,  [ $_REQUEST [ 'notification_id' ], LegacyAuth :: id ()]))  { 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        die ( json_encode ([ 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								            'status'  =>  'ok' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								            'message'  =>  'Removed Sticky' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        ])); 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    } 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								}  elseif  ( $_REQUEST [ 'action' ]  ==  'create'  &&  ( ! empty ( $_REQUEST [ 'title' ])  &&  ! empty ( $_REQUEST [ 'body' ])))  {  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    if  ( dbInsert ([ 'title' => $_REQUEST [ 'title' ], 'body' => $_REQUEST [ 'body' ], 'checksum' => hash ( 'sha512' ,  LegacyAuth :: id () . '.LOCAL.' . $_REQUEST [ 'title' ]), 'source' => LegacyAuth :: id ()],  'notifications' ))  { 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        die ( json_encode ([ 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								            'status'  =>  'ok' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								            'message'  =>  'Created' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        ])); 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    } 
							 
						 
					
						
							
								
									
										
										
										
											2016-08-18 20:28:22 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								}  else  {  
						 
					
						
							
								
									
										
										
										
											2019-04-03 20:52:08 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								    die ( json_encode ([ 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        'status'  =>  'error' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								        'message'  =>  'ERROR: Missing Params' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    ])); 
							 
						 
					
						
							
								
									
										
										
										
											2015-09-27 15:35:33 +00:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								}  
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								die ( json_encode ( array (  
						 
					
						
							
								
									
										
										
										
											2019-04-03 20:52:08 -05:00 
										
									 
								 
							 
							
								
									
										 
								
							 
							
								 
							
							
								    'status'        =>  'error' , 
							 
						 
					
						
							
								
							 
							
								
							 
							
								 
							
							
								    'message'       =>  'unknown error' , 
							 
						 
					
						
							
								
									
										
										
										
											2015-09-27 15:35:33 +00:00 
										
									 
								 
							 
							
								
							 
							
								 
							
							
								)));