CX: Viewing File server/web/admin.php of 0.03.02a

File: 0.03.02a/server/web/admin.php (View as Code)

1: 2: /* ------------------------------------------------------------- 3: This file is part of FreeNATS 4: 5: FreeNATS is (C) Copyright 2008 PurplePixie Systems 6: 7: FreeNATS is free software: you can redistribute it and/or modify 8: it under the terms of the GNU General Public License as published by 9: the Free Software Foundation, either version 3 of the License, or 10: (at your option) any later version. 11: 12: FreeNATS is distributed in the hope that it will be useful, 13: but WITHOUT ANY WARRANTY; without even the implied warranty of 14: MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 15: GNU General Public License for more details. 16: 17: You should have received a copy of the GNU General Public License 18: along with FreeNATS. If not, see www.gnu.org/licenses 19: 20: For more information see www.purplepixie.org/freenats 21: -------------------------------------------------------------- */ 22: 23: ob_start(); 24: require("include.php"); 25: $NATS->Start(); 26: if (!$NATS_Session->Check($NATS->DB)) 27: { 28: header("Location: ./?login_msg=Invalid+Or+Expired+Session"); 29: exit(); 30: } 31: if ($NATS_Session->userlevel<9) UL_Error("Admin Interface"); 32: 33: if (isset($_REQUEST['action'])) 34: { 35: switch($_REQUEST['action']) 36: { 37: case "save_user": 38: $q="UPDATE fnuser SET realname=\"".ss($_REQUEST['realname'])."\",userlevel=".ss($_REQUEST['userlevel']); 39: if ((isset($_REQUEST['pword']))&&($_REQUEST['pword']!="_NOTTHIS_")) $q.=",password=MD5(\"".ss($_REQUEST['pword'])."\")"; 40: $q.=" WHERE username=\"".ss($_REQUEST['username'])."\""; 41: $NATS->DB->Query($q); 42: if ($NATS->DB->Affected_Rows()<=0) $amsg="Save User Failed or Nothing Changed"; 43: else $amsg="Save User ".$_REQUEST['username']." Succeeded"; 44: break; 45: 46: case "create_user": 47: $q="INSERT INTO fnuser(username,password,realname,userlevel) VALUES(\"".ss($_REQUEST['username'])."\","; 48: $q.="MD5(\"".ss($_REQUEST['pword'])."\"),\"".ss($_REQUEST['realname'])."\",".ss($_REQUEST['userlevel']).")"; 49: $NATS->DB->Query($q); 50: //echo $q; 51: if ($NATS->DB->Affected_Rows()<=0) $amsg="Create User Failed"; 52: else $amsg="User ".$_REQUEST['username']." Created"; 53: break; 54: 55: case "delete_user": 56: /* - disabled for 0.02.44 to allow duplicate deletion 57: if ($_REQUEST['username']=="admin") 58: { 59: $amsg="Can't delete the admin user"; 60: break; 61: } 62: */ 63: if (!isset($_REQUEST['confirmed'])) 64: { 65: $back=urlencode("admin.php?action=delete_user&mode=users&username=".$_REQUEST['username']."&confirmed=1"); 66: $url="confirm.php?action=Delete+User+".$_REQUEST['username']."&back=".$back; 67: header("Location: ".$url); 68: exit(); 69: } 70: $q="DELETE FROM fnuser WHERE username=\"".ss($_REQUEST['username'])."\""; 71: $NATS->DB->Query($q); 72: $amsg="User ".$_REQUEST['username']." Deleted"; 73: break; 74: 75: case "var_save": 76: if ($_REQUEST['new_var']=="") // delete 77: { 78: $q="DELETE FROM fnconfig WHERE fnc_var=\"".ss($_REQUEST['orig_var'])."\""; 79: } 80: else // update 81: { 82: $q="UPDATE fnconfig SET fnc_var=\"".ss($_REQUEST['new_var'])."\",fnc_val=\"".ss($_REQUEST['new_val'])."\" "; 83: $q.="WHERE fnc_var=\"".ss($_REQUEST['orig_var'])."\""; 84: } 85: $NATS->DB->Query($q); 86: if ($NATS->DB->Affected_Rows()<=0) $amsg="Update/Delete Variable Failed"; 87: else $amsg="Updated/Deleted Variable"; 88: break; 89: case "var_new": 90: $q="INSERT INTO fnconfig(fnc_var,fnc_val) VALUES(\"".ss($_REQUEST['new_var'])."\",\"".ss($_REQUEST['new_val'])."\")"; 91: //echo $q; 92: $NATS->DB->Query($q); 93: if ($NATS->DB->Affected_Rows()<=0) $amsg="Create Variable Failed"; 94: else $amsg="Created Variable"; 95: break; 96: 97: case "save_aa": 98: $q="UPDATE fnalertaction SET "; 99: $q.="atype=\"".ss($_REQUEST['atype'])."\","; 100: $q.="ctrlimit=".ss($_REQUEST['ctrlimit']).","; 101: $q.="ctrtoday=".ss($_REQUEST['ctrtoday']).","; 102: $q.="aname=\"".ss($_REQUEST['aname'])."\","; 103: if (isset($_REQUEST['efrom'])) $q.="efrom=\"".ss($_REQUEST['efrom'])."\","; 104: $q.="etolist=\"".ss($_REQUEST['etolist'])."\","; 105: if (isset($_REQUEST['esubject'])) $q.="esubject=".ss($_REQUEST['esubject']).","; 106: $q.="etype=".ss($_REQUEST['etype']); 107: if (isset($_REQUEST['awarnings'])) $q.=",awarnings=".ss($_REQUEST['awarnings']); 108: else $q.=",awarnings=0"; 109: if (isset($_REQUEST['adecrease'])) $q.=",adecrease=".ss($_REQUEST['adecrease']); 110: else $q.=",adecrease=0"; 111: $q.=" WHERE aaid=".ss($_REQUEST['aaid']); 112: //echo $q; 113: $NATS->DB->Query($q); 114: if ($NATS->DB->Affected_Rows()<=0) $amsg="Action Update Failed or Nothing Changed"; 115: else $amsg="Action Updated"; 116: break; 117: 118: case "action_test": 119: $q="SELECT mdata FROM fnalertaction WHERE aaid=".ss($_REQUEST['aaid'])." LIMIT 0,1"; 120: $r=$NATS->DB->Query($q); 121: $row=$NATS->DB->Fetch_Array($r); 122: $oldm=$row['mdata']; 123: $q="UPDATE fnalertaction SET mdata=\"** ACTION TEST **\" WHERE aaid=".ss($_REQUEST['aaid']); 124: $NATS->DB->Query($q); 125: $NATS->ActionFlush(); 126: $q="UPDATE fnalertaction SET mdata=\"".ss($oldm)."\" WHERE aaid=".ss($_REQUEST['aaid']); 127: $NATS->DB->Query($q); 128: $amsg="Alert Action Tested & Flushed"; 129: break; 130: 131: case "action_create": 132: $q="INSERT INTO fnalertaction(atype) VALUES(\"\")"; 133: $NATS->DB->Query($q); 134: $amsg="Created New Alert Action"; 135: break; 136: 137: case "action_delete": 138: if (!isset($_REQUEST['confirmed'])) 139: { 140: $back=urlencode("admin.php?mode=alertactions&aaid_del=".$_REQUEST['aaid_del']."&action=action_delete&confirmed=1"); 141: $url="confirm.php?action=Delete+alert+action&back=".$back; 142: header("Location: ".$url); 143: exit(); 144: } 145: // otherwise confirmed 146: $q="DELETE FROM fnalertaction WHERE aaid=".ss($_REQUEST['aaid_del']); 147: $NATS->DB->Query($q); 148: if ($NATS->DB->Affected_Rows()>0) $amsg="Alert Action Deleted"; 149: else $amsg="Alert Action Delete Failed"; 150: $q="DELETE FROM fnnalink WHERE aaid=".ss($_REQUEST['aaid_del']); 151: $NATS->DB->Query($q); 152: break; 153: 154: case "optimize": 155: $q="OPTIMIZE TABLE ".ss($_REQUEST['table']); 156: $NATS->DB->Query($q); 157: $msg="Optimised Table ".$_REQUEST['table']; 158: break; 159: 160: } 161: } 162: 163: ob_end_flush(); 164: Screen_Header("Administration Interface",1); 165: 166: if (isset($_REQUEST['mode'])) $mode=$_REQUEST['mode']; 167: else $mode=""; 168: 169: if (isset($_REQUEST['message'])) echo "
".$_REQUEST['message']."
"; 170: if (isset($amsg)) echo "
".$amsg."
"; 171: 172: echo "
"; 173: if (isset($_REQUEST['updatecheck'])) 174: { 175: // check for updates 176: $dq="?CheckVersion=".$NATS->Version."&JSMode=1"; 177: $dl="http://www.purplepixie.org/freenats/download.php"; 178: $du=$dl.$dq; 179: /* old method 180: $cp=@fopen($du,"r"); 181: if ($cp>0) 182: { 183: $cs=@fgets($cp,128); 184: @fclose($cp); 185: if ($cs=="0") echo "System Up to Date
"; 186: else echo "Update Available: ".$cs."
"; 187: } 188: else echo "Error Checking for Updates
"; 189: */ 190: echo "Checking Version: "; 191: echo "\n"; 192: echo "

"; 193: } 194: else if ($mode=="") 195: { 196: echo "Check for FreeNATS Updates

"; 197: } 198: 199: function tul($l) 200: { 201: if ($l>9) return "Administrator"; 202: if ($l>4) return "Power User"; 203: if ($l>0) return "Normal User"; 204: return "Disabled"; 205: } 206: 207: function aat_etype($type) 208: { 209: switch ($type) 210: { 211: case 0: return "Short"; 212: case 1: return "Long"; 213: default: return "Unknown"; 214: } 215: } 216: 217: function aat_esub($type) 218: { 219: switch ($type) 220: { 221: case 0: return "Blank"; 222: case 1: return "Short"; 223: case 2: return "Long"; 224: default: return "Unknown"; 225: } 226: } 227: 228: function aat_atype($type) 229: { 230: switch($type) 231: { 232: case "": case "Disabled": return "Disabled"; 233: case "email": return "EMail"; 234: case "url": return "URL"; 235: default: return "Unknown"; 236: } 237: } 238: 239: if ($mode=="users") 240: { 241: echo "Users

"; 242: 243: 244: 245: 246: $q="SELECT username,realname,userlevel FROM fnuser"; 247: $r=$NATS->DB->Query($q); 248: echo ""; 249: echo ""; 250: echo ""; 251: while ($row=$NATS->DB->Fetch_Array($r)) 252: { 253: echo ""; 254: echo ""; 255: echo ""; 256: echo ""; 257: echo ""; 258: echo ""; 259: echo ""; 267: echo ""; 268: echo ""; 269: echo ""; 270: echo ""; 271: } 272: echo ""; 273: echo ""; 274: echo ""; 275: echo ""; 276: echo ""; 277: echo ""; 283: echo ""; 284: echo ""; 285: echo ""; 286: echo "

Username	Real Name	User Level	Password	Options
".$row['username']."		"; 266: echo "		Delete

"; 287: echo "
"; 288: $NATS->DB->Free($r); 289: } 290: else if ($mode=="nodetestsessions") 291: { 292: echo "Test Sessions for ".$_REQUEST['nodeid']."

"; 293: echo "Running Sessions for ".$_REQUEST['nodeid']."
"; 294: $q="SELECT * FROM fntestrun WHERE fnode=\"".ss($_REQUEST['nodeid'])."\" AND finishx=0 ORDER BY trid DESC"; 295: $r=$NATS->DB->Query($q); 296: if ($NATS->DB->Num_Rows($r)==0) echo "No running test sessions
"; 297: echo ""; 298: while ($row=$NATS->DB->Fetch_Array($r)) 299: { 300: echo ""; 301: echo ""; 306: } 307: echo "

run/".$row['trid']."

".nicedt($row['startx'])." - "; 302: if ($row['finishx']>0) echo nicedt($row['finishx']); 303: else echo "Still Running"; 304: echo " (System Logs)"; 305: echo "

"; 308: $NATS->DB->Free($r); 309: echo "
"; 310: echo "
"; 311: 312: echo "Last 100 Previous Sessions for ".$_REQUEST['nodeid']."
"; 313: $q="SELECT * FROM fntestrun WHERE fnode=\"".ss($_REQUEST['nodeid'])."\" ORDER BY trid DESC LIMIT 0,100"; 314: $r=$NATS->DB->Query($q); 315: if ($NATS->DB->Num_Rows($r)==0) echo "No previous test sessions
"; 316: echo ""; 317: while ($row=$NATS->DB->Fetch_Array($r)) 318: { 319: echo ""; 320: echo ""; 325: } 326: echo "

run/".$row['trid']."

".nicedt($row['startx'])." - "; 321: if ($row['finishx']>0) echo nicedt($row['finishx']); 322: else echo "Still Running"; 323: echo " (System Logs)"; 324: echo "

"; 327: $NATS->DB->Free($r); 328: echo "
"; 329: echo "
"; 330: 331: } 332: else if ($mode=="testsessions") 333: { 334: echo "Running Test Sessions

"; 335: $q="SELECT * FROM fntestrun WHERE finishx=0 ORDER BY trid DESC"; 336: $r=$NATS->DB->Query($q); 337: if ($NATS->DB->Num_Rows($r)==0) echo "No running test sessions
"; 338: echo ""; 339: while ($row=$NATS->DB->Fetch_Array($r)) 340: { 341: echo ""; 342: echo ""; 347: } 348: echo "

run/".$row['trid']."

".nicedt($row['startx'])." - "; 343: if ($row['finishx']>0) echo nicedt($row['finishx']); 344: else echo "Still Running"; 345: echo " (System Logs)"; 346: echo "

"; 349: $NATS->DB->Free($r); 350: echo "
"; 351: echo "362: } 363: else if ($mode=="alertactions") 364: { 365: echo "Alert Actions

"; 366: 367: if (isset($_REQUEST['aaid'])) 368: { // view/edit aaid 369: $q="SELECT * FROM fnalertaction WHERE aaid=".ss($_REQUEST['aaid']); 370: $r=$NATS->DB->Query($q); 371: if (!$row=$NATS->DB->Fetch_Array($r)) 372: { 373: echo "Error Fetching AAID

"; 374: Screen_Footer(); 375: exit(); 376: } 377: echo ""; 378: echo ""; 379: echo ""; 380: echo ""; 381: echo ""; 382: echo ""; 383: 384: echo ""; 385: echo ""; 388: 389: echo ""; 397: 398: echo ""; 399: if ($row['awarnings']==1) $s=" checked"; 400: else $s=""; 401: echo ""; 402: 403: echo ""; 404: if ($row['adecrease']==1) $s=" checked"; 405: else $s=""; 406: echo ""; 407: 408: echo ""; 409: echo ""; 413: 414: echo ""; 415: echo ""; 423: 424: if ($row['atype']!="url") 425: { 426: 427: echo ""; 428: echo ""; 431: 432: echo ""; 440: 441: } 442: 443: echo ""; 450: 451: echo ""; 454: 455: echo ""; 459: 460: echo "

ID :	action/".$_REQUEST['aaid']."
Action Name :	"; 386: echo ""; 387: echo "
Type :	"; 390: echo ""; 396: echo "
Warnings :	".hlink("AAction:Warnings")."
Decreases :	".hlink("AAction:Decreases")."
Action Limit :	"; 410: echo " "; 411: echo hlink("AAction:Limit"); 412: echo "
Action Counter :	"; 416: echo " "; 417: echo hlink("AAction:Counter"); 418: echo " (for "; 419: if ($row['ctrdate']=="") echo "unknown"; 420: else echo substr($row['ctrdate'],6,2)."/".substr($row['ctrdate'],4,2)."/".substr($row['ctrdate'],0,4); 421: echo ")"; 422: echo "
Email From :	"; 429: echo ""; 430: echo "
Email Subject :	"; 433: echo ""; 439: echo "
Msg Type :	"; 444: echo ""; 449: echo "
Email To or URL :	"; 452: echo "".$row['etolist'].""; 453: echo "
Cancel Update \| "; 456: echo "Test Action \| "; 457: echo "Delete Action"; 458: echo "

"; 461: $NATS->DB->Free($r); 462: } 463: 464: $q="SELECT aaid,atype,aname FROM fnalertaction"; 465: $r=$NATS->DB->Query($q); 466: echo ""; 467: echo ""; 468: while ($row=$NATS->DB->Fetch_Array($r)) 469: { 470: echo ""; 472: echo ""; 475: } 476: echo "

ID	Action Name	Action Type
"; 471: echo "".$row['aaid']."	".$row['aname']."	"; 473: echo aat_atype($row['atype']); 474: echo "

"; 477: 478: echo "
Create New Alert Action
"; 479: echo "

"; 480: } 481: else if ($mode=="logs") 482: { 483: echo "System Logs

"; 484: echo "System Event Log

"; 485: 486: echo "

"; 487: } 488: else if ($mode=="status") 489: { 490: // system healthcheck 491: 492: // usage data 493: //$q="SELECT COUNT(fnnode.nodeid),COUNT(fngroup.groupid),COUNT( FROM fnnode,fngroup"; 494: $q="SHOW TABLE STATUS LIKE \"fn%\""; 495: $r=$NATS->DB->Query($q); 496: 497: echo "FreeNATS System Status

"; 498: 499: $tinfo=array(); 500: 501: echo "Table Sizes

"; 502: 503: echo ""; 504: echo ""; 505: while ($row=$NATS->DB->Fetch_Array($r)) 506: { 507: echo ""; 508: echo ""; 516: } 517: echo "

Table Name	Size (Rows)	Size (kb)	Other Information
".$row['Name']."	".$row['Rows']."	".round($row['Data_length']/1024,0)."	"; 509: if (isset($tinfo[$row['Name']])) echo $tinfo[$row['Name']]; 510: else echo " "; 511: if ($row['Data_free']>0) 512: { 513: echo " [".round($row['Data_free']/1024,0)."kb Free - Optimise]"; 514: } 515: echo "

"; 518: $NATS->DB->Free($r); 519: echo "

"; 520: 521: echo "Test Sessions

"; 522: $q="SELECT * FROM fntestrun WHERE finishx=0"; 523: $r=$NATS->DB->Query($q); 524: echo "".$NATS->DB->Num_Rows($r)." Open/Running Test Sessions

"; 525: if ($NATS->DB->Num_Rows($r)>0) 526: { 527: echo ""; 528: echo ""; 529: $nowx=time(); 530: $fifteenx=$nowx-(15*60); 531: $hourx=$nowx-(60*60); 532: while ($row=$NATS->DB->Fetch_Array($r)) 533: { 534: echo ""; 536: echo ""; 537: echo ""; 538: echo ""; 543: } 544: echo "

ID	Node	Started	Notes
"; 535: echo $row['trid']."		".nicedt($row['startx'])." - ".dtago($row['startx'])."	"; 539: if ($row['startx']<$hourx) echo "Error: Over an hour old"; 540: else if($row['startx']<$fifteenx) echo "Warning: Over fifteen minutes old"; 541: else echo " "; 542: echo "

"; 545: } 546: $NATS->DB->Free($r); 547: echo "

"; 548: 549: 550: echo "Please note this merely displays FreeNATS software status - not
the status of "; 551: echo "the underlying Virtual Machine (if applicable).

You should monitor disk space and "; 552: echo "performance for the VM via
the relevant system (such as the rPath interface).

"; 553: 554: } 555: else if ($mode=="variables") 556: { 557: echo "Variables ".hlink("Variable")."

"; 558: $q="SELECT * FROM fnconfig ORDER BY fnc_var ASC"; 559: $r=$NATS->DB->Query($q); 560: echo ""; 561: while ($row=$NATS->DB->Fetch_Array($r)) 562: { 563: echo ""; 564: echo ""; 565: echo ""; 566: echo ""; 567: echo ""; 568: echo ""; 570: echo ""; 571: echo ""; 572: echo ""; 575: echo ""; 576: echo ""; 577: } 578: echo ""; 579: echo ""; 580: echo ""; 581: echo ""; 582: echo ""; 583: echo ""; 584: echo ""; 585: echo ""; 586: echo ""; 587: echo "

"; 569: echo "	=		"; 573: echo hlink("Var:".$row['fnc_var']); 574: echo "
	=

"; 588: } 589: else // catch-all 590: { 591: echo "

"; 592: echo "User Administration

"; 593: echo "

"; 594: echo "System Event Log

"; 595: echo "

"; 596: echo "Alert Actions

"; 597: echo "

"; 598: echo "System Variables

"; 599: echo "

"; 600: echo "Test Sessions

"; 601: echo "

"; 602: echo "Test Schedules

"; 603: 604: if ($NATS->Cfg->Get("site.enable.adminsql",0)==1) 605: { 606: echo "

"; 607: echo "SQL Console

"; 608: } 609: echo "

"; 610: echo "System Status Report

"; 611: } 612: 613: if ($mode!="") echo "Back to Main Admin Menu

"; 614: ?> 615: 616: 617: 618: Screen_Footer(); 619: ?> 620: