mirror of
https://github.com/librenms/librenms.git
synced 2024-10-07 16:52:45 +00:00
Tony Murray
32a7c50189
* Use Laravel for authentication Support legacy auth methods Always create DB entry for users (segregate by auth method) Port api auth to Laravel restrict poller errors to devices the user has access to Run checks on every page load. But set a 5 minute (configurable) timer. Only run some checks if the user is an admin Move toastr down a few pixels so it isn't as annoying. Fix menu not loaded on laravel pages when twofactor is enabled for the system, but disabled for the user. Add two missing menu entries in the laravel menu Rewrite 2FA code Simplify some and verify code before applying Get http-auth working Handle legacy $_SESSION differently. Allows Auth::once(), etc to work. * Fix tests and mysqli extension check * remove duplicate Toastr messages * Fix new items * Rename 266.sql to 267.sql
455 lines
18 KiB
PHP
455 lines
18 KiB
PHP
<?php
|
|
/*
|
|
* This program is free software: you can redistribute it and/or modify it
|
|
* under the terms of the GNU General Public License as published by the
|
|
* Free Software Foundation, either version 3 of the License, or (at your
|
|
* option) any later version. Please see LICENSE.txt at the top level of
|
|
* the source code distribution for details.
|
|
*
|
|
* @package LibreNMS
|
|
* @subpackage webui
|
|
* @link http://librenms.org
|
|
* @copyright 2017 LibreNMS
|
|
* @author LibreNMS Contributors
|
|
*/
|
|
|
|
use LibreNMS\Authentication\LegacyAuth;
|
|
|
|
$pagetitle[] = "Ports";
|
|
|
|
// Set Defaults here
|
|
|
|
if (!isset($vars['format'])) {
|
|
$vars['format'] = "list_basic";
|
|
}
|
|
|
|
$displayLists = '';
|
|
$displayLists .= '<span style="font-weight: bold;">Ports lists</span> » ';
|
|
|
|
$menu_options = array('basic' => 'Basic', 'detail' => 'Detail');
|
|
|
|
$sep = "";
|
|
foreach ($menu_options as $option => $text) {
|
|
$displayLists .= $sep;
|
|
if ($vars['format'] == "list_" . $option) {
|
|
$displayLists .= '<span class="pagemenu-selected">';
|
|
}
|
|
$displayLists .= '<a href="' . generate_url($vars, array('format' => "list_" . $option)) . '">' . $text . '</a>';
|
|
if ($vars['format'] == "list_" . $option) {
|
|
$displayLists .= '</span>';
|
|
}
|
|
$sep = " | ";
|
|
}
|
|
$displayLists .= ' <span style="font-weight: bold;">Graphs</span> » ';
|
|
|
|
$menu_options = array('bits' => 'Bits',
|
|
'upkts' => 'Unicast Packets',
|
|
'nupkts' => 'Non-Unicast Packets',
|
|
'errors' => 'Errors');
|
|
|
|
$sep = "";
|
|
foreach ($menu_options as $option => $text) {
|
|
$displayLists .= $sep;
|
|
if ($vars['format'] == 'graph_' . $option) {
|
|
$displayLists .= '<span class="pagemenu-selected">';
|
|
}
|
|
$displayLists .= '<a href="' . generate_url($vars, array('format' => 'graph_' . $option)) . '">' . $text . '</a>';
|
|
if ($vars['format'] == 'graph_' . $option) {
|
|
$displayLists .= '</span>';
|
|
}
|
|
$sep = " | ";
|
|
}
|
|
|
|
$displayLists .= '<div style="float: right;">';
|
|
$displayLists .= '<a href="csv.php/report=' . generate_url($vars, array('format' => '')) . '" title="Export as CSV" target="_blank" rel="noopener">Export CSV</a> | <a href="' . generate_url($vars) . '" title="Update the browser URL to reflect the search criteria.">Update URL</a>';
|
|
|
|
if (isset($vars['searchbar']) && $vars['searchbar'] == "hide") {
|
|
$displayLists .= '<a href="' . generate_url($vars, array('searchbar' => '')) . '">Search</a>';
|
|
} else {
|
|
$displayLists .= '<a href="' . generate_url($vars, array('searchbar' => 'hide')) . '">Search</a>';
|
|
}
|
|
|
|
$displayLists .= ' | ';
|
|
|
|
if (isset($vars['bare']) && $vars['bare'] == "yes") {
|
|
$displayLists .= '<a href="' . generate_url($vars, array('bare' => '')) . '">Header</a>';
|
|
} else {
|
|
$displayLists .= '<a href="' . generate_url($vars, array('bare' => 'yes')) . '">Header</a>';
|
|
}
|
|
|
|
$displayLists .= ' | ';
|
|
$displayLists .= '<span style="font-weight: bold;">Bulk actions</span> »';
|
|
|
|
$displayLists .= '<a href="ports/deleted=yes/purge=all" title="Delete ports"> Purge all deleted</a>';
|
|
|
|
$displayLists .= '</div>';
|
|
|
|
if ((isset($vars['searchbar']) && $vars['searchbar'] != "hide") || !isset($vars['searchbar'])) {
|
|
$output = "<div class='pull-left'>";
|
|
$output .= "<form method='post' action='' class='form-inline' role='form'>";
|
|
|
|
$output .= "<div style='margin-bottom:4px;text-align:left;'>";
|
|
$output .= "<div class='form-group'>";
|
|
$output .= "<select name='device_id' id='device_id' class='form-control input-sm'>";
|
|
$output .= "<option value=''>All Devices</option>";
|
|
|
|
if (LegacyAuth::user()->hasGlobalRead()) {
|
|
$results = dbFetchRows("SELECT `device_id`,`hostname`, `sysName` FROM `devices` ORDER BY `hostname`");
|
|
} else {
|
|
$results = dbFetchRows("SELECT `D`.`device_id`,`D`.`hostname`, `D`.`sysname` FROM `devices` AS `D`, `devices_perms` AS `P` WHERE `P`.`user_id` = ? AND `P`.`device_id` = `D`.`device_id` ORDER BY `hostname`", array(LegacyAuth::id()));
|
|
}
|
|
foreach ($results as $data) {
|
|
if ($data['device_id'] == $vars['device_id']) {
|
|
$deviceselected = "selected";
|
|
} else {
|
|
$deviceselected = "";
|
|
}
|
|
$ui_device = strlen(format_hostname($data)) > 15 ? substr(format_hostname($data), 0, 15) . "..." : format_hostname($data);
|
|
$output .= "<option value='" . $data['device_id'] . "' " . $deviceselected . ">" . $ui_device . "</option>";
|
|
}
|
|
|
|
if (!LegacyAuth::user()->hasGlobalRead()) {
|
|
$results = dbFetchRows("SELECT `D`.`device_id`,`D`.`hostname`, `D`.`sysName` FROM `ports` AS `I` JOIN `devices` AS `D` ON `D`.`device_id`=`I`.`device_id` JOIN `ports_perms` AS `PP` ON `PP`.`port_id`=`I`.`port_id` WHERE `PP`.`user_id` = ? AND `PP`.`port_id` = `I`.`port_id` ORDER BY `hostname`", array(LegacyAuth::id()));
|
|
} else {
|
|
$results = array();
|
|
}
|
|
|
|
foreach ($results as $data) {
|
|
if ($data['device_id'] == $vars['device_id']) {
|
|
$deviceselected = "selected";
|
|
} else {
|
|
$deviceselected = "";
|
|
}
|
|
$output .= "<option value='" . $data['device_id'] . "' " . $deviceselected . ">" . format_hostname($data) . "</option>";
|
|
}
|
|
|
|
$output .= "</select> ";
|
|
|
|
if (strlen($vars['hostname'])) {
|
|
$hasvalue = "value='" . $vars['hostname'] . "'";
|
|
} else {
|
|
$hasvalue = "";
|
|
}
|
|
|
|
$output .= "<input type='text' name='hostname' id='hostname' title='Hostname' class='form-control input-sm' " . $hasvalue . " placeholder='Hostname'>";
|
|
|
|
$output .= "</div> ";
|
|
|
|
switch ($vars['state']) {
|
|
case "up":
|
|
$isup = "selected";
|
|
$isdown = "";
|
|
$admindown = "";
|
|
break;
|
|
case "down":
|
|
$isup = "";
|
|
$isdown = "selected";
|
|
$admindown = "";
|
|
break;
|
|
case "admindown":
|
|
$isup = "";
|
|
$isdown = "";
|
|
$admindown = "selected";
|
|
break;
|
|
}
|
|
|
|
$output .= "<div class='form-group'>";
|
|
$output .= "<select name='state' id='state' class='form-control input-sm'>";
|
|
$output .= "<option value=''>All States</option>";
|
|
$output .= "<option value='up' " . $isup . ">Up</option>";
|
|
$output .= "<option value='down' " . $isdown . ">Down</option>";
|
|
$output .= "<option value='admindown' " . $admindown . ">Shutdown</option>";
|
|
$output .= "</select> ";
|
|
|
|
$output .= "<select name='ifSpeed' id='ifSpeed' class='form-control input-sm'>";
|
|
$output .= "<option value=''>All Speeds</option>";
|
|
|
|
if (LegacyAuth::user()->hasGlobalRead()) {
|
|
$sql = "SELECT `ifSpeed` FROM `ports` GROUP BY `ifSpeed` ORDER BY `ifSpeed`";
|
|
} else {
|
|
$sql = "SELECT `ifSpeed` FROM `ports` AS `I`, `devices` AS `D`, `devices_perms` AS `P`, `ports_perms` AS `PP` WHERE ((`P`.`user_id` = ? AND `P`.`device_id` = `D`.`device_id`) OR (`PP`.`user_id` = ? AND `PP`.`port_id` = `I`.`port_id` AND `I`.`device_id` = `D`.`device_id`)) AND `D`.`device_id` = `I`.`device_id` GROUP BY `ifSpeed` ORDER BY `ifSpeed`";
|
|
$param[] = array(LegacyAuth::id(), LegacyAuth::id());
|
|
}
|
|
|
|
foreach (dbFetchRows($sql, $param) as $data) {
|
|
if ($data['ifSpeed']) {
|
|
if ($data['ifSpeed'] == $vars['ifSpeed']) {
|
|
$speedselected = "selected";
|
|
} else {
|
|
$speedselected = "";
|
|
}
|
|
$output .= "<option value='" . $data['ifSpeed'] . "'" . $speedselected . ">" . humanspeed($data['ifSpeed']) . "</option>";
|
|
}
|
|
}
|
|
|
|
$output .= "</select> ";
|
|
$output .= "</div>";
|
|
$output .= "<div class='form-group'>";
|
|
$output .= "<select name='ifType' id='ifType' class='form-control input-sm'>";
|
|
$output .= "<option value=''>All Media</option>";
|
|
|
|
if (LegacyAuth::user()->hasGlobalRead()) {
|
|
$sql = "SELECT `ifType` FROM `ports` GROUP BY `ifType` ORDER BY `ifType`";
|
|
} else {
|
|
$sql = "SELECT `ifType` FROM `ports` AS `I`, `devices` AS `D`, `devices_perms` AS `P`, `ports_perms` AS `PP` WHERE ((`P`.`user_id` = ? AND `P`.`device_id` = `D`.`device_id`) OR (`PP`.`user_id` = ? AND `PP`.`port_id` = `I`.`port_id` AND `I`.`device_id` = `D`.`device_id`)) AND `D`.`device_id` = `I`.`device_id` GROUP BY `ifType` ORDER BY `ifType`";
|
|
$param[] = array(LegacyAuth::id(), LegacyAuth::id());
|
|
}
|
|
|
|
foreach (dbFetchRows($sql, $param) as $data) {
|
|
if ($data['ifType']) {
|
|
if ($data['ifType'] == $vars['ifType']) {
|
|
$dataselected = "selected";
|
|
} else {
|
|
$dataselected = "";
|
|
}
|
|
$output .= "<option value='" . clean_bootgrid($data['ifType']) . "' " . $dataselected . ">" . clean_bootgrid($data['ifType']) . "</option>";
|
|
}
|
|
}
|
|
|
|
$output .= "</select> ";
|
|
$output .= "<select name='port_descr_type' id='port_descr_type' class='form-control input-sm'>";
|
|
$output .= "<option value=''>All Port Types</option>";
|
|
|
|
if (LegacyAuth::user()->hasGlobalRead()) {
|
|
$sql = "SELECT `port_descr_type` FROM `ports` GROUP BY `port_descr_type` ORDER BY `port_descr_type`";
|
|
} else {
|
|
$sql = "SELECT `port_descr_type` FROM `ports` AS `I`, `devices` AS `D`, `devices_perms` AS `P`, `ports_perms` AS `PP` WHERE ((`P`.`user_id` = ? AND `P`.`device_id` = `D`.`device_id`) OR (`PP`.`user_id` = ? AND `PP`.`port_id` = `I`.`port_id` AND `I`.`device_id` = `D`.`device_id`)) AND `D`.`device_id` = `I`.`device_id` GROUP BY `port_descr_type` ORDER BY `port_descr_type`";
|
|
$param[] = array(LegacyAuth::id(), LegacyAuth::id());
|
|
}
|
|
$ports = dbFetchRows($sql, $param);
|
|
|
|
foreach ($ports as $data) {
|
|
if ($data['port_descr_type']) {
|
|
if ($data['port_descr_type'] == $vars['port_descr_type']) {
|
|
$portdescrib = "selected";
|
|
} else {
|
|
$portdescrib = "";
|
|
}
|
|
$output .= "<option value='" . clean_bootgrid($data['port_descr_type']) . "' " . $portdescrib . ">" . ucfirst(clean_bootgrid($data['port_descr_type'])) . "</option>";
|
|
}
|
|
}
|
|
|
|
$output .= "</select> ";
|
|
$output .= "</div>";
|
|
$output .= "<div class='form-group'>";
|
|
|
|
if (strlen($vars['ifAlias'])) {
|
|
$ifaliasvalue = "value='" . $vars['ifAlias'] . "'";
|
|
}
|
|
|
|
$output .= "</div>";
|
|
|
|
$output .= "</div>";
|
|
$output .= "<div style='text-align:left;'>";
|
|
|
|
$output .= "<input title='Port Description' type='text' name='ifAlias' id='ifAlias' class='form-control input-sm' " . $ifaliasvalue . " placeholder='Port Description'> ";
|
|
$output .= "<select title='Location' name='location' id='location' class='form-control input-sm'> ";
|
|
$output .= "<option value=''>All Locations</option>";
|
|
|
|
foreach (getlocations() as $location) {
|
|
if ($location) {
|
|
if ($location == $vars['location']) {
|
|
$locationselected = "selected";
|
|
} else {
|
|
$locationselected = "";
|
|
}
|
|
$ui_location = strlen($location) > 15 ? substr($location, 0, 15) . "..." : $location;
|
|
$output .= "<option value='" . clean_bootgrid($location) . "' " . $locationselected . ">" . clean_bootgrid($ui_location) . "</option>";
|
|
}
|
|
}
|
|
|
|
$output .= "</select> ";
|
|
|
|
if ($vars['ignore']) {
|
|
$ignorecheck = "checked";
|
|
} else {
|
|
$ignorecheck = "";
|
|
}
|
|
|
|
if ($vars['disabled']) {
|
|
$disabledcheck = "checked";
|
|
} else {
|
|
$disabledcheck = "";
|
|
}
|
|
|
|
if ($vars['deleted']) {
|
|
$deletedcheck = "checked";
|
|
} else {
|
|
$deletedcheck = "";
|
|
}
|
|
|
|
$output .= "<label for='ignore'>Ignored</label> ";
|
|
$output .= "<input type='checkbox' id='ignore' name='ignore' value='1' " . $ignorecheck . "> ";
|
|
$output .= "<label for='disabled'>Disabled</label> ";
|
|
$output .= "<input type='checkbox' id='disabled' name='disabled' value='1' " . $disabledcheck . "> ";
|
|
$output .= "<label for='deleted'>Deleted</label> ";
|
|
$output .= "<input type='checkbox' id='deleted' name='deleted' value='1' " . $deletedcheck . "> ";
|
|
|
|
$output .= "<button type='submit' class='btn btn-default btn-sm'>Search</button> ";
|
|
$output .= "<a class='btn btn-default btn-sm' href='" . generate_url(array('page' => 'ports', 'section' => $vars['section'], 'bare' => $vars['bare'])) . "' title='Reset critera to default.'>Reset</a>";
|
|
|
|
$output .= "</div>";
|
|
|
|
$output .= "</form>";
|
|
$output .= "</div>";
|
|
}
|
|
|
|
$param = array();
|
|
|
|
if (!isset($vars['ignore'])) {
|
|
$vars['ignore'] = "0";
|
|
}
|
|
if (!isset($vars['disabled'])) {
|
|
$vars['disabled'] = "0";
|
|
}
|
|
if (!isset($vars['deleted'])) {
|
|
$vars['deleted'] = "0";
|
|
}
|
|
|
|
$where = '';
|
|
$ignore_filter = 0;
|
|
$disabled_filter = 0;
|
|
|
|
foreach ($vars as $var => $value) {
|
|
if ($value != "") {
|
|
switch ($var) {
|
|
case 'hostname':
|
|
$where .= " AND D.hostname LIKE ?";
|
|
$param[] = "%" . $value . "%";
|
|
break;
|
|
case 'location':
|
|
$where .= " AND D.location LIKE ?";
|
|
$param[] = "%" . $value . "%";
|
|
break;
|
|
case 'device_id':
|
|
$where .= " AND D.device_id = ?";
|
|
$param[] = $value;
|
|
break;
|
|
case 'deleted':
|
|
if ($value == 1) {
|
|
$where .= " AND `I`.`deleted` = 1";
|
|
$ignore_filter = 1;
|
|
}
|
|
break;
|
|
case 'ignore':
|
|
if ($value == 1) {
|
|
$where .= " AND (I.ignore = 1 OR D.ignore = 1) AND I.deleted = 0";
|
|
$ignore_filter = 1;
|
|
}
|
|
break;
|
|
case 'disabled':
|
|
if ($value == 1) {
|
|
$where .= " AND `I`.`disabled` = 1 AND `I`.`deleted` = 0";
|
|
$disabled_filter = 1;
|
|
}
|
|
break;
|
|
case 'ifSpeed':
|
|
if (is_numeric($value)) {
|
|
$where .= " AND I.$var = ?";
|
|
$param[] = $value;
|
|
}
|
|
break;
|
|
case 'ifType':
|
|
$where .= " AND I.$var = ?";
|
|
$param[] = $value;
|
|
break;
|
|
case 'ifAlias':
|
|
case 'port_descr_type':
|
|
$where .= " AND I.$var LIKE ?";
|
|
$param[] = "%" . $value . "%";
|
|
break;
|
|
case 'errors':
|
|
if ($value == 1) {
|
|
$where .= " AND (I.`ifInErrors_delta` > '0' OR I.`ifOutErrors_delta` > '0')";
|
|
}
|
|
break;
|
|
case 'state':
|
|
if ($value == "down") {
|
|
$where .= " AND I.ifAdminStatus = ? AND I.ifOperStatus = ?";
|
|
$param[] = "up";
|
|
$param[] = "down";
|
|
} elseif ($value == "up") {
|
|
$where .= " AND I.ifAdminStatus = ? AND I.ifOperStatus = ?";
|
|
$param[] = "up";
|
|
$param[] = "up";
|
|
} elseif ($value == "admindown") {
|
|
$where .= " AND I.ifAdminStatus = ? AND D.ignore = 0";
|
|
$param[] = "down";
|
|
}
|
|
break;
|
|
case 'purge':
|
|
if ($vars['purge'] === 'all') {
|
|
$interfaces = dbFetchRows('SELECT * from `ports` AS P, `devices` AS D WHERE `deleted` = 1 AND D.device_id = P.device_id');
|
|
foreach ($interfaces as $interface) {
|
|
$interface = cleanPort($interface);
|
|
if (port_permitted($interface['port_id'], $interface['device_id'])) {
|
|
delete_port($interface['port_id']);
|
|
}
|
|
}
|
|
} else {
|
|
$interface = dbFetchRow('SELECT * from `ports` AS P, `devices` AS D WHERE `port_id` = ? AND D.device_id = P.device_id', array($vars['purge']));
|
|
$interface = cleanPort($interface);
|
|
if (port_permitted($interface['port_id'], $interface['device_id'])) {
|
|
delete_port($interface['port_id']);
|
|
}
|
|
}
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
|
|
if ($ignore_filter == 0 && $disabled_filter == 0) {
|
|
$where .= " AND `I`.`ignore` = 0 AND `I`.`disabled` = 0 AND `I`.`deleted` = 0";
|
|
}
|
|
|
|
$query = "SELECT * FROM `ports` AS I, `devices` AS D WHERE I.device_id = D.device_id " . $where . " " . $query_sort;
|
|
|
|
$row = 1;
|
|
|
|
list($format, $subformat) = explode("_", $vars['format']);
|
|
|
|
$ports = dbFetchRows($query, $param);
|
|
|
|
switch ($vars['sort']) {
|
|
case 'traffic':
|
|
$ports = array_sort_by_column($ports, 'ifOctets_rate', SORT_DESC);
|
|
break;
|
|
case 'traffic_in':
|
|
$ports = array_sort_by_column($ports, 'ifInOctets_rate', SORT_DESC);
|
|
break;
|
|
case 'traffic_out':
|
|
$ports = array_sort_by_column($ports, 'ifOutOctets_rate', SORT_DESC);
|
|
break;
|
|
case 'packets':
|
|
$ports = array_sort_by_column($ports, 'ifUcastPkts_rate', SORT_DESC);
|
|
break;
|
|
case 'packets_in':
|
|
$ports = array_sort_by_column($ports, 'ifInUcastOctets_rate', SORT_DESC);
|
|
break;
|
|
case 'packets_out':
|
|
$ports = array_sort_by_column($ports, 'ifOutUcastOctets_rate', SORT_DESC);
|
|
break;
|
|
case 'errors':
|
|
$ports = array_sort_by_column($ports, 'ifErrors_rate', SORT_DESC);
|
|
break;
|
|
case 'speed':
|
|
$ports = array_sort_by_column($ports, 'ifSpeed', SORT_DESC);
|
|
break;
|
|
case 'port':
|
|
$ports = array_sort_by_column($ports, 'ifDescr', SORT_ASC);
|
|
break;
|
|
case 'media':
|
|
$ports = array_sort_by_column($ports, 'ifType', SORT_ASC);
|
|
break;
|
|
case 'descr':
|
|
$ports = array_sort_by_column($ports, 'ifAlias', SORT_ASC);
|
|
break;
|
|
case 'device':
|
|
default:
|
|
$ports = array_sort_by_column($ports, 'hostname', SORT_ASC);
|
|
}
|
|
|
|
if (file_exists('pages/ports/' . $format . '.inc.php')) {
|
|
require 'pages/ports/' . $format . '.inc.php';
|
|
}
|