mirror of
https://github.com/librenms/librenms.git
synced 2024-10-07 16:52:45 +00:00
e9ff8c48b6
Most were fine as they hardcoded the in into the query. Change them all to use PDO properly. Did not fix IRCBot, they are are all hardcoded. DO NOT DELETE THIS TEXT #### Please note > Please read this information carefully. You can run `./scripts/pre-commit.php` to check your code before submitting. - [x] Have you followed our [code guidelines?](http://docs.librenms.org/Developing/Code-Guidelines/) #### Testers If you would like to test this pull request then please run: `./scripts/github-apply <pr_id>`, i.e `./scripts/github-apply 5926`
104 lines
6.4 KiB
PHP
104 lines
6.4 KiB
PHP
<?php
|
|
|
|
/*
|
|
* LibreNMS
|
|
*
|
|
* Copyright (c) 2014 Neil Lathwood <https://github.com/laf/ http://www.lathwood.co.uk/fa>
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify it
|
|
* under the terms of the GNU General Public License as published by the
|
|
* Free Software Foundation, either version 3 of the License, or (at your
|
|
* option) any later version. Please see LICENSE.txt at the top level of
|
|
* the source code distribution for details.
|
|
*/
|
|
|
|
use LibreNMS\Authentication\Auth;
|
|
|
|
if (!Auth::user()->hasGlobalAdmin()) {
|
|
header('Content-type: text/plain');
|
|
die('ERROR: You need to be admin');
|
|
}
|
|
|
|
$config_id = mres($_POST['config_id']);
|
|
$action = mres($_POST['action']);
|
|
$config_type = mres($_POST['config_type']);
|
|
|
|
$status = 'error';
|
|
|
|
if (!is_numeric($config_id)) {
|
|
$message = 'ERROR: No config item';
|
|
} elseif ($action == 'update-textarea') {
|
|
$extras = explode(PHP_EOL, $_POST['config_value']);
|
|
$x=0;
|
|
$db_id = [];
|
|
foreach ($extras as $option) {
|
|
list($k,$v) = explode('=', $option, 2);
|
|
if (!empty($k) || !empty($v)) {
|
|
if ($config_type == 'slack') {
|
|
$db_id[] = dbInsert(array('config_name' => 'alert.transports.slack.'.$config_id.'.'.$k, 'config_value' => $v, 'config_group' => 'alerting', 'config_sub_group' => 'transports', 'config_default' => $v, 'config_descr' => 'Slack Transport'), 'config');
|
|
} elseif ($config_type == 'rocket') {
|
|
$db_id[] = dbInsert(array('config_name' => 'alert.transports.rocket.'.$config_id.'.'.$k, 'config_value' => $v, 'config_group' => 'alerting', 'config_sub_group' => 'transports', 'config_default' => $v, 'config_descr' => 'Rocket.Chat Transport'), 'config');
|
|
} elseif ($config_type == 'hipchat') {
|
|
$db_id[] = dbInsert(array('config_name' => 'alert.transports.hipchat.'.$config_id.'.'.$k, 'config_value' => $v, 'config_group' => 'alerting', 'config_sub_group' => 'transports', 'config_default' => $v, 'config_descr' => 'Hipchat Transport'), 'config');
|
|
} elseif ($config_type == 'pushover') {
|
|
$db_id[] = dbInsert(array('config_name' => 'alert.transports.pushover.'.$config_id.'.'.$k, 'config_value' => $v, 'config_group' => 'alerting', 'config_sub_group' => 'transports', 'config_default' => $v, 'config_descr' => 'Pushover Transport'), 'config');
|
|
} elseif ($config_type == 'boxcar') {
|
|
$db_id[] = dbInsert(array('config_name' => 'alert.transports.boxcar.'.$config_id.'.'.$k, 'config_value' => $v, 'config_group' => 'alerting', 'config_sub_group' => 'transports', 'config_default' => $v, 'config_descr' => 'Boxcar Transport'), 'config');
|
|
} elseif ($config_type == 'clickatell') {
|
|
$db_id[] = dbInsert(array('config_name' => 'alert.transports.clickatell.to.'.$x, 'config_value' => $k, 'config_group' => 'alerting', 'config_sub_group' => 'transports', 'config_default' => $v, 'config_descr' => 'Clickatell Transport'), 'config');
|
|
$x++;
|
|
} elseif ($config_type == 'playsms') {
|
|
$db_id[] = dbInsert(array('config_name' => 'alert.transports.playsms.to.'.$x, 'config_value' => $k, 'config_group' => 'alerting', 'config_sub_group' => 'transports', 'config_default' => $v, 'config_descr' => 'PlaySMS Transport'), 'config');
|
|
$x++;
|
|
} elseif ($config_type == 'smseagle') {
|
|
$db_id[] = dbInsert(array('config_name' => 'alert.transports.smseagle.to.'.$x, 'config_value' => $k, 'config_group' => 'alerting', 'config_sub_group' => 'transports', 'config_default' => $v, 'config_descr' => 'SMSEagle Transport'), 'config');
|
|
$x++;
|
|
}
|
|
}
|
|
}
|
|
|
|
if (!empty($db_id) || empty($_POST['config_value'])) {
|
|
if (empty($_POST['config_value'])) {
|
|
$db_id = [0];
|
|
}
|
|
$placeholders = dbGenPlaceholders(count($db_id));
|
|
|
|
if ($config_type == 'slack') {
|
|
dbDelete('config', "(`config_name` LIKE 'alert.transports.slack.$config_id.%' AND `config_name` != 'alert.transports.slack.$config_id.url' AND `config_id` NOT IN $placeholders)", $db_id);
|
|
} elseif ($config_type == 'rocket') {
|
|
dbDelete('config', "(`config_name` LIKE 'alert.transports.rocket.$config_id.%' AND `config_name` != 'alert.transports.rocket.$config_id.url' AND `config_id` NOT IN $placeholders)", $db_id);
|
|
} elseif ($config_type == 'hipchat') {
|
|
dbDelete('config', "(`config_name` LIKE 'alert.transports.hipchat.$config_id.%' AND (`config_name` != 'alert.transports.hipchat.$config_id.url' AND `config_name` != 'alert.transports.hipchat.$config_id.room_id' AND `config_name` != 'alert.transports.hipchat.$config_id.from') AND `config_id` NOT IN $placeholders)", $db_id);
|
|
} elseif ($config_type == 'pushover') {
|
|
dbDelete('config', "(`config_name` LIKE 'alert.transports.pushover.$config_id.%' AND (`config_name` != 'alert.transports.pushover.$config_id.appkey' AND `config_name` != 'alert.transports.pushover.$config_id.userkey') AND `config_id` NOT IN $placeholders)", $db_id);
|
|
} elseif ($config_type == 'boxcar') {
|
|
dbDelete('config', "(`config_name` LIKE 'alert.transports.boxcar.$config_id.%' AND (`config_name` != 'alert.transports.boxcar.$config_id.access_token' AND `config_name` != 'alert.transports.boxcar.$config_id.userkey') AND `config_id` NOT IN $placeholders)", $db_id);
|
|
} elseif ($config_type == 'clickatell') {
|
|
dbDelete('config', "(`config_name` LIKE 'alert.transports.clickatell.to.%' AND `config_id` NOT IN $placeholders)", $db_id);
|
|
} elseif ($config_type == 'playsms') {
|
|
dbDelete('config', "(`config_name` LIKE 'alert.transports.playsms.to.%' AND `config_id` NOT IN $placeholders)", $db_id);
|
|
} elseif ($config_type == 'smseagle') {
|
|
dbDelete('config', "(`config_name` LIKE 'alert.transports.smseagle.to.%' AND `config_id` NOT IN $placeholders)", $db_id);
|
|
}
|
|
}
|
|
|
|
$message = 'Config item has been updated:';
|
|
$status = 'ok';
|
|
} else {
|
|
$state = mres($_POST['config_value']);
|
|
$update = dbUpdate(array('config_value' => $state), 'config', '`config_id`=?', array($config_id));
|
|
if (!empty($update) || $update == '0') {
|
|
$message = 'Alert rule has been updated.';
|
|
$status = 'ok';
|
|
} else {
|
|
$message = 'ERROR: Alert rule has not been updated.';
|
|
}
|
|
}//end if
|
|
|
|
$response = array(
|
|
'status' => $status,
|
|
'message' => $message,
|
|
);
|
|
header('Content-type: application/json');
|
|
echo _json_encode($response);
|