mirror of
https://github.com/librenms/librenms.git
synced 2024-10-07 16:52:45 +00:00
32a7c50189
* Use Laravel for authentication Support legacy auth methods Always create DB entry for users (segregate by auth method) Port api auth to Laravel restrict poller errors to devices the user has access to Run checks on every page load. But set a 5 minute (configurable) timer. Only run some checks if the user is an admin Move toastr down a few pixels so it isn't as annoying. Fix menu not loaded on laravel pages when twofactor is enabled for the system, but disabled for the user. Add two missing menu entries in the laravel menu Rewrite 2FA code Simplify some and verify code before applying Get http-auth working Handle legacy $_SESSION differently. Allows Auth::once(), etc to work. * Fix tests and mysqli extension check * remove duplicate Toastr messages * Fix new items * Rename 266.sql to 267.sql
215 lines
8.0 KiB
PHP
215 lines
8.0 KiB
PHP
<?php
|
|
/*
|
|
* This program is free software: you can redistribute it and/or modify it
|
|
* under the terms of the GNU General Public License as published by the
|
|
* Free Software Foundation, either version 3 of the License, or (at your
|
|
* option) any later version. Please see LICENSE.txt at the top level of
|
|
* the source code distribution for details.
|
|
*
|
|
* @package LibreNMS
|
|
* @subpackage graphs
|
|
* @link http://librenms.org
|
|
* @copyright 2018 LibreNMS
|
|
* @author LibreNMS Contributors
|
|
*/
|
|
|
|
use LibreNMS\Authentication\LegacyAuth;
|
|
|
|
require_once $config['install_dir'] . '/includes/device-groups.inc.php';
|
|
|
|
$where = ' `devices`.`disabled` = 0';
|
|
|
|
$alert_states = array(
|
|
// divined from librenms/alerts.php
|
|
'recovered' => 0,
|
|
'alerted' => 1,
|
|
'acknowledged' => 2,
|
|
'worse' => 3,
|
|
'better' => 4,
|
|
);
|
|
|
|
$alert_severities = array(
|
|
// alert_rules.status is enum('ok','warning','critical')
|
|
'ok' => 1,
|
|
'warning' => 2,
|
|
'critical' => 3,
|
|
'ok only' => 4,
|
|
'warning only' => 5,
|
|
'critical only' => 6,
|
|
);
|
|
|
|
$show_recovered = false;
|
|
|
|
if (is_numeric($vars['device_id']) && $vars['device_id'] > 0) {
|
|
$where .= ' AND `alerts`.`device_id`=' . $vars['device_id'];
|
|
}
|
|
|
|
if (is_numeric($vars['acknowledged'])) {
|
|
// I assume that if we are searching for acknowleged/not, we aren't interested in recovered
|
|
$where .= " AND `alerts`.`state`" . ($vars['acknowledged'] ? "=" : "!=") . $alert_states['acknowledged'];
|
|
}
|
|
|
|
if (is_numeric($vars['fired'])) {
|
|
$where .= " AND `alerts`.`alerted`=" . $alert_states['alerted'];
|
|
}
|
|
|
|
if (is_numeric($vars['state'])) {
|
|
$where .= " AND `alerts`.`state`=" . $vars['state'];
|
|
if ($vars['state'] == $alert_states['recovered']) {
|
|
$show_recovered = true;
|
|
}
|
|
}
|
|
|
|
if (isset($vars['min_severity'])) {
|
|
if (is_numeric($vars['min_severity'])) {
|
|
$min_severity_id = $vars['min_severity'];
|
|
} elseif (!empty($vars['min_severity'])) {
|
|
$min_severity_id = $alert_severities[$vars['min_severity']];
|
|
}
|
|
if (isset($min_severity_id)) {
|
|
$where .= " AND `alert_rules`.`severity` " . ($min_severity_id > 3 ? "" : ">") . "= " . ($min_severity_id > 3 ? $min_severity_id - 3 : $min_severity_id);
|
|
}
|
|
}
|
|
|
|
if (is_numeric($vars['group'])) {
|
|
$where .= " AND devices.device_id IN (SELECT `device_id` FROM `device_group_device` WHERE `device_group_id` = ?)";
|
|
$param[] = $vars['group'];
|
|
}
|
|
|
|
if (!$show_recovered) {
|
|
$where .= " AND `alerts`.`state`!=" . $alert_states['recovered'];
|
|
}
|
|
|
|
if (isset($searchPhrase) && !empty($searchPhrase)) {
|
|
$where .= " AND (`timestamp` LIKE '%$searchPhrase%' OR `rule` LIKE '%$searchPhrase%' OR `name` LIKE '%$searchPhrase%' OR `hostname` LIKE '%$searchPhrase%' OR `sysName` LIKE '%$searchPhrase%')";
|
|
}
|
|
|
|
$sql = ' FROM `alerts` LEFT JOIN `devices` ON `alerts`.`device_id`=`devices`.`device_id`';
|
|
|
|
if (!LegacyAuth::user()->hasGlobalRead()) {
|
|
$sql .= ' LEFT JOIN `devices_perms` AS `DP` ON `devices`.`device_id` = `DP`.`device_id`';
|
|
$where .= ' AND `DP`.`user_id`=?';
|
|
$param[] = LegacyAuth::id();
|
|
}
|
|
|
|
$sql .= " RIGHT JOIN `alert_rules` ON `alerts`.`rule_id`=`alert_rules`.`id` WHERE $where";
|
|
|
|
$count_sql = "SELECT COUNT(`alerts`.`id`) $sql";
|
|
$total = dbFetchCell($count_sql, $param);
|
|
if (empty($total)) {
|
|
$total = 0;
|
|
}
|
|
|
|
if (!isset($vars['sort']) || empty($vars['sort'])) {
|
|
$sort = 'timestamp DESC';
|
|
} else {
|
|
$sort = '`alert_rules`.`severity` DESC, timestamp DESC';
|
|
}
|
|
|
|
$sql .= " ORDER BY $sort";
|
|
|
|
if (isset($current)) {
|
|
$limit_low = (($current * $rowCount) - ($rowCount));
|
|
$limit_high = $rowCount;
|
|
}
|
|
|
|
if ($rowCount != -1) {
|
|
$sql .= " LIMIT $limit_low,$limit_high";
|
|
}
|
|
|
|
$sql = "SELECT `alerts`.*, `devices`.`hostname`, `devices`.`sysName`, `devices`.`hardware`, `devices`.`location`, `alert_rules`.`rule`, `alert_rules`.`name`, `alert_rules`.`severity` $sql";
|
|
|
|
$rulei = 0;
|
|
$format = $vars['format'];
|
|
foreach (dbFetchRows($sql, $param) as $alert) {
|
|
$log = dbFetchCell('SELECT details FROM alert_log WHERE rule_id = ? AND device_id = ? ORDER BY id DESC LIMIT 1', array($alert['rule_id'], $alert['device_id']));
|
|
$fault_detail = alert_details($log);
|
|
|
|
$alert_to_ack = '<button type="button" class="btn btn-danger command-ack-alert fa fa-eye" aria-hidden="true" title="Mark as acknowledged" data-target="ack-alert" data-state="' . $alert['state'] . '" data-alert_id="' . $alert['id'] . '" data-alert_state="' . $alert['state'] . '" name="ack-alert"></button>';
|
|
$alert_to_nack = '<button type="button" class="btn btn-primary command-ack-alert fa fa-eye-slash" aria-hidden="true" title="Mark as not acknowledged" data-target="ack-alert" data-state="' . $alert['state'] . '" data-alert_id="' . $alert['id'] . '" data-alert_state="' . $alert['state'] . '" name="ack-alert"></button>';
|
|
|
|
$ack_ico = $alert_to_ack;
|
|
|
|
if ((int)$alert['state'] === 0) {
|
|
$ico = '';
|
|
$msg = '';
|
|
} elseif ((int)$alert['state'] === 1 || (int)$alert['state'] === 3 || (int)$alert['state'] === 4) {
|
|
$ico = $alert_to_ack;
|
|
if ((int)$alert['state'] === 3) {
|
|
$msg = '<i class="fa fa-angle-double-down" style="font-size:20px;" aria-hidden="true" title="Status got worse"></i>';
|
|
} elseif ((int)$alert['state'] === 4) {
|
|
$msg = '<i class="fa fa-angle-double-up" style="font-size:20px;" aria-hidden="true" title="Status got better"></i>';
|
|
}
|
|
} elseif ((int)$alert['state'] === 2) {
|
|
$ico = $alert_to_nack;
|
|
$ack_ico = $alert_to_nack;
|
|
}
|
|
|
|
$severity = $alert['severity'];
|
|
if ($alert['state'] == 3) {
|
|
$severity .= ' <strong>+</strong>';
|
|
} elseif ($alert['state'] == 4) {
|
|
$severity .= ' <strong>-</strong>';
|
|
}
|
|
|
|
$hostname = '<div class="incident">' . generate_device_link($alert, shorthost($alert['hostname'])) . '<div id="incident' . ($rulei + 1) . '" class="collapse">' . $fault_detail . '</div></div>';
|
|
|
|
switch ($severity) {
|
|
case 'critical':
|
|
$severity_ico = '<span class="alert-status label-danger"> </span>';
|
|
break;
|
|
case 'warning':
|
|
$severity_ico = '<span class="alert-status label-warning"> </span>';
|
|
break;
|
|
case 'ok':
|
|
$severity_ico = '<span class="alert-status label-success"> </span>';
|
|
break;
|
|
default:
|
|
$severity_ico = '<span class="alert-status label-info"> </span>';
|
|
break;
|
|
}
|
|
|
|
if ((int)$alert['state'] === 2) {
|
|
$severity_ico = '<span class="alert-status label-primary"> </span>';
|
|
}
|
|
|
|
$proc = dbFetchCell('SELECT proc FROM alerts,alert_rules WHERE alert_rules.id = alerts.rule_id AND alerts.id = ?', array($alert['id']));
|
|
if (($proc == "") || ($proc == "NULL")) {
|
|
$has_proc = '';
|
|
} else {
|
|
if (!preg_match('/^http[s]*:\/\//', $proc)) {
|
|
$has_proc = '';
|
|
} else {
|
|
$has_proc = '<a href="' . $proc . '" target="_blank"><button type="button" class="btn btn-info fa fa-external-link" aria-hidden="true"></button></a>';
|
|
}
|
|
}
|
|
|
|
if (empty($alert['note'])) {
|
|
$note_class = 'default';
|
|
} else {
|
|
$note_class = 'warning';
|
|
}
|
|
|
|
$response[] = array(
|
|
'id' => $rulei++,
|
|
'rule' => '<i title="' . htmlentities($alert['rule']) . '"><a href="' . generate_url(array('page' => 'alert-rules')) . '">' . htmlentities($alert['name']) . '</a></i>',
|
|
'details' => '<a class="fa fa-plus incident-toggle" style="display:none" data-toggle="collapse" data-target="#incident' . ($rulei) . '" data-parent="#alerts"></a>',
|
|
'hostname' => $hostname,
|
|
'timestamp' => ($alert['timestamp'] ? $alert['timestamp'] : 'N/A'),
|
|
'severity' => $severity_ico,
|
|
'state' => $alert['state'],
|
|
'alert_id' => $alert['id'],
|
|
'ack_ico' => $ack_ico,
|
|
'proc' => $has_proc,
|
|
'notes' => "<button type='button' class='btn btn-$note_class fa fa-sticky-note-o command-alert-note' aria-label='Notes' id='alert-notes' data-alert_id='{$alert['id']}'></button>",
|
|
);
|
|
}
|
|
|
|
$output = array(
|
|
'current' => $current,
|
|
'rowCount' => $rowCount,
|
|
'rows' => $response,
|
|
'total' => $total,
|
|
);
|
|
echo _json_encode($output);
|