mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
librenms-librenms/html/includes/table/toner.inc.php
Maurice den Braber 9f5b42b028 webui: Allow full search on devices page (#8364) 
* Update devices.inc.php

* Update devices.inc.php

* Replace $_POST with $vars

Better protection for SQL injection attempts; Need to verify other files for same issue.

* Fixed whitespace.

*sigh*

* More search options & sql injection fixes.

+Allow full search on devices page;
+Allow sysName search on alertlog page;
+Allow sysName search on alerts page;
+Allow sysName search on eventlog page;
+Allow sysName search on poll-log page;
+Allow sysName search on ports page;

*Replaced all occurrences of $_POST with $vars in librenms/html/includes/table. ($vars are sanity-checked).

* Whitespace fix

* Fixed $where & $param

* Add files via upload

* Whitespaces....

Sometimes you want'em, sometimes you hate'em.
2018-03-25 21:50:09 +01:00

105 lines
3.5 KiB
PHP
Raw Blame History

<?php
/*
* LibreNMS
*
* This program is free software: you can redistribute it and/or modify it
* under the terms of the GNU General Public License as published by the
* Free Software Foundation, either version 3 of the License, or (at your
* option) any later version. Please see LICENSE.txt at the top level of
* the source code distribution for details.
*
* @package LibreNMS
* @subpackage webui
* @link http://librenms.org
* @copyright 2018 LibreNMS
* @author LibreNMS Contributors
*/
$graph_type = 'toner_usage';
$sql = 'SELECT * FROM `toner` AS S, `devices` AS D WHERE S.device_id = D.device_id';
if (!empty($searchPhrase)) {
$sql .= " AND (`D`.`hostname` LIKE '%$searchPhrase%' OR `toner_descr` LIKE '%$searchPhrase%')";
}
$count_sql = "SELECT COUNT(`toner_id`) FROM `toner`";
$param[] = $_SESSION['user_id'];
$count = dbFetchCell($count_sql, $param);
if (empty($count)) {
$count = 0;
}
if (empty($sort)) {
$sort = '`D`.`hostname`, `toner_descr`';
} else {
// toner_used is an alias for toner_perc
$sort = str_replace('toner_used', 'toner_current', $sort);
}
$sql .= " ORDER BY $sort";
if (isset($current)) {
$limit_low = (($current * $rowCount) - ($rowCount));
$limit_high = $rowCount;
}
if ($rowCount != -1) {
$sql .= " LIMIT $limit_low,$limit_high";
}
foreach (dbFetchRows($sql, $param) as $toner) {
if (device_permitted($toner['device_id'])) {
$perc = $toner['toner_current'];
$graph_array['type'] = $graph_type;
$graph_array['id'] = $toner['toner_id'];
$graph_array['from'] = $config['time']['day'];
$graph_array['to'] = $config['time']['now'];
$graph_array['height'] = '20';
$graph_array['width'] = '80';
$graph_array_zoom = $graph_array;
$graph_array_zoom['height'] = '150';
$graph_array_zoom['width'] = '400';
$link = 'graphs/id='.$graph_array['id'].'/type='.$graph_array['type'].'/from='.$graph_array['from'].'/to='.$graph_array['to'].'/';
$mini_graph = overlib_link($link, generate_lazy_graph_tag($graph_array), generate_graph_tag($graph_array_zoom), null);
$background = get_percentage_colours(100 - $perc);
$bar_link = print_percentage_bar(400, 20, $perc, "$perc%", 'ffffff', $background['left'], $free, 'ffffff', $background['right']);
$response[] = array(
'hostname' => generate_device_link($toner),
'toner_descr' => $toner['toner_descr'],
'graph' => $mini_graph,
'toner_used' => $bar_link,
'toner_current' => $perc.'%',
);
if ($vars['view'] == 'graphs') {
$graph_array['height'] = '100';
$graph_array['width'] = '216';
$graph_array['to'] = $config['time']['now'];
$graph_array['id'] = $toner['toner_id'];
$graph_array['type'] = $graph_type;
$return_data = true;
include 'includes/print-graphrow.inc.php';
unset($return_data);
$response[] = array(
'hostname' => $graph_data[0],
'mempool_descr' => $graph_data[1],
'graph' => $graph_data[2],
'mempool_used' => $graph_data[3],
'mempool_perc' => '',
);
}
}
}
$output = array(
'current' => $current,
'rowCount' => $rowCount,
'rows' => $response,
'total' => $count,
);
echo _json_encode($output);
Reference in New Issue View Git Blame Copy Permalink