mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
librenms-librenms/includes/html/forms/alert-transports.inc.php
Tony Murray 36431dd296 Security fix: unauthorized access (#10091) 
* Security fix: unauthorized access
Affects nginx users:
Moved php files outside of public html directory (Apache was protected by .htaccess)

Affects all users:
Some files did not check for authentication and could disclose some info.
Better checks before including files from user input

* git mv html/includes/ includes/html
git mv html/pages/ includes/html/
2019-04-11 23:26:42 -05:00

133 lines
4.6 KiB
PHP
Raw Blame History

<?php
/**
* alert-transports.inc.php
*
* LibreNMS alert-transports.inc.php for processor
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
* @package LibreNMS
* @link http://librenms.org
* @copyright 2018 Vivia Nguyen-Tran
* @author Vivia Nguyen-Tran <vivia@ualberta.ca>
*/
use Illuminate\Container\Container;
use Illuminate\Filesystem\Filesystem;
use Illuminate\Translation\FileLoader;
use Illuminate\Translation\Translator;
use Illuminate\Validation\Factory;
use LibreNMS\Authentication\LegacyAuth;
header('Content-type: application/json');
if (!LegacyAuth::user()->hasGlobalAdmin()) {
die(json_encode([
'status' => 'error',
'message' => 'You need to be admin'
]));
}
$status = 'ok';
$message = '';
$transport_id = $vars['transport_id'];
$name = $vars['name'];
$is_default = (int)(isset($vars['is_default']) && $vars['is_default'] == 'on');
$transport_type = $vars['transport-type'];
if (empty($name)) {
$status = 'error';
$message = 'No transport name provided';
} elseif (empty($transport_type)) {
$status = 'error';
$message = 'Missing transport information';
} else {
$details = array(
'transport_name' => $name,
'is_default' => $is_default
);
if (is_numeric($transport_id) && $transport_id > 0) {
// Update the fields -- json config field will be updated later
dbUpdate($details, 'alert_transports', 'transport_id=?', [$transport_id]);
} else {
// Insert the new alert transport
$newEntry = true;
$transport_id = dbInsert($details, 'alert_transports');
}
if ($transport_id) {
$class = 'LibreNMS\\Alert\\Transport\\'.ucfirst($transport_type);
if (!method_exists($class, 'configTemplate')) {
die(json_encode([
'status' => 'error',
'message' => 'This transport type is not yet supported'
]));
}
// Build config values
$result = call_user_func_array($class.'::configTemplate', []);
$loader = new FileLoader(new Filesystem, "$install_dir/resources/lang");
$translator = new Translator($loader, 'en');
$validation = new Factory($translator, new Container);
$validator = $validation->make($vars, $result['validation']);
if ($validator->fails()) {
$errors = $validator->errors();
foreach ($errors->all() as $error) {
$message .= "$error<br>";
}
$status = 'error';
} else {
$transport_config = json_decode(dbFetchCell('SELECT transport_config FROM alert_transports WHERE transport_id=?', [$transport_id]), true);
foreach ($result['config'] as $tmp_config) {
if (isset($tmp_config['name']) && $tmp_config['type'] !== 'hidden') {
$transport_config[$tmp_config['name']] = $vars[$tmp_config['name']];
}
}
//Update the json config field
if ($transport_config) {
$transport_config = json_encode($transport_config);
$detail = [
'transport_type' => $transport_type,
'transport_config' => $transport_config
];
$where = 'transport_id=?';
dbUpdate($detail, 'alert_transports', $where, [$transport_id]);
$status = 'ok';
$message = 'Updated alert transports';
} else {
$status = 'error';
$message = 'There was an issue with the transport config';
}
}
if ($status == 'error' && $newEntry) {
//If error, we will have to delete the new entry in alert_transports tbl
$where = '`transport_id`=?';
dbDelete('alert_transports', $where, [$transport_id]);
}
} else {
$status = 'error';
$message = 'Failed to update transport';
}
}
die(json_encode([
'status' => $status,
'message' => $message
]));
Reference in New Issue View Git Blame Copy Permalink