<?php
/*
** Zabbix
** Copyright (C) 2001-2022 Zabbix SIA
**
** This program is free software; you can redistribute it and/or modify
** it under the terms of the GNU General Public License as published by
** the Free Software Foundation; either version 2 of the License, or
** (at your option) any later version.
**
** This program is distributed in the hope that it will be useful,
** but WITHOUT ANY WARRANTY; without even the implied warranty of
** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
** GNU General Public License for more details.
**
** You should have received a copy of the GNU General Public License
** along with this program; if not, write to the Free Software
** Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
**/
require_once dirname(__FILE__).'/include/config.inc.php';
require_once dirname(__FILE__).'/include/screens.inc.php';
$page['title'] = _('Configuration of slide shows');
$page['file'] = 'slideconf.php';
$page['type'] = detect_page_type(PAGE_TYPE_HTML);
$page['scripts'] = ['multiselect.js'];
require_once dirname(__FILE__).'/include/page_header.php';
// VAR TYPE OPTIONAL FLAGS VALIDATION EXCEPTION
$fields = [
'shows' => [T_ZBX_INT, O_OPT, P_SYS, DB_ID, null],
'slideshowid' => [T_ZBX_INT, O_NO, P_SYS, DB_ID, 'isset({form}) && {form} == "update"'],
'name' => [T_ZBX_STR, O_OPT, null, NOT_EMPTY, 'isset({add}) || isset({update})', _('Name')],
'delay' => [T_ZBX_TU, O_OPT, null, null, 'isset({add}) || isset({update})', _('Default delay')],
'slides' => [null, O_OPT, null, null, null],
'userid' => [T_ZBX_INT, O_OPT, P_SYS, DB_ID, null],
'private' => [T_ZBX_INT, O_OPT, null, BETWEEN(0, 1), null],
'users' => [T_ZBX_INT, O_OPT, null, null, null],
'userGroups' => [T_ZBX_INT, O_OPT, null, null, null],
// actions
'action' => [T_ZBX_STR, O_OPT, P_SYS|P_ACT, IN('"slideshow.massdelete"'), null],
'add' => [T_ZBX_STR, O_OPT, P_SYS|P_ACT, null, null],
'update' => [T_ZBX_STR, O_OPT, P_SYS|P_ACT, null, null],
'delete' => [T_ZBX_STR, O_OPT, P_SYS|P_ACT, null, null],
'cancel' => [T_ZBX_STR, O_OPT, P_SYS, null, null],
'form' => [T_ZBX_STR, O_OPT, P_SYS, null, null],
'form_refresh' => [T_ZBX_INT, O_OPT, null, null, null],
// filter
'filter_set' => [T_ZBX_STR, O_OPT, P_SYS, null, null],
'filter_rst' => [T_ZBX_STR, O_OPT, P_SYS, null, null],
'filter_name' => [T_ZBX_STR, O_OPT, null, null, null],
// sort and sortorder
'sort' => [T_ZBX_STR, O_OPT, P_SYS, IN('"cnt","delay","name"'), null],
'sortorder' => [T_ZBX_STR, O_OPT, P_SYS, IN('"'.ZBX_SORT_DOWN.'","'.ZBX_SORT_UP.'"'), null]
];
check_fields($fields);
if (!empty($_REQUEST['slides'])) {
natksort($_REQUEST['slides']);
}
/*
* Permissions
*/
if (hasRequest('slideshowid')) {
if (!slideshow_accessible($_REQUEST['slideshowid'], PERM_READ)) {
access_deny();
}
$db_slideshow = get_slideshow_by_slideshowid(getRequest('slideshowid'), PERM_READ_WRITE);
if (!$db_slideshow) {
access_deny();
}
}
else {
$db_slideshow = [];
}
if (hasRequest('action')) {
if (!hasRequest('shows') || !is_array(getRequest('shows'))) {
access_deny();
}
else {
$slideshows = DBfetchArray(DBselect(
'SELECT slideshowid FROM slideshows s WHERE '.dbConditionInt('s.slideshowid', getRequest('shows'))
));
if (count($slideshows) != count(getRequest('shows'))) {
uncheckTableRows(null, zbx_objectValues($slideshows, 'slideshowid'));
}
}
}
/*
* Actions
*/
if (hasRequest('add') || hasRequest('update')) {
DBstart();
$slides = getRequest('slides', []);
foreach ($slides as &$slide) {
$slide['delay'] = ($slide['delay'] === '') ? '0' : $slide['delay'];
}
unset($slide);
if (hasRequest('update')) {
$data = [
'slideshowid' => getRequest('slideshowid'),
'name' => getRequest('name'),
'delay' => getRequest('delay'),
'slides' => $slides,
'userid' => getRequest('userid', ''),
'private' => getRequest('private'),
'users' => getRequest('users', []),
'userGroups' => getRequest('userGroups', [])
];
// Only administrators can set slide show owner.
if (CWebUser::getType() == USER_TYPE_ZABBIX_USER) {
unset($data['userid']);
}
// Slide show update with inaccessible user.
elseif (CWebUser::getType() == USER_TYPE_ZABBIX_ADMIN && $data['userid'] === '') {
$user_exist = API::User()->get([
'output' => ['userid'],
'userids' => [$data['userid']]
]);
if (!$user_exist) {
unset($data['userid']);
}
}
$result = update_slideshow($data);
$messageSuccess = _('Slide show updated');
$messageFailed = _('Cannot update slide show');
$auditAction = AUDIT_ACTION_UPDATE;
}
else {
$result = add_slideshow([
'name' => getRequest('name'),
'delay' => getRequest('delay'),
'slides' => $slides,
'userid' => getRequest('userid'),
'private' => getRequest('private'),
'users' => getRequest('users', []),
'userGroups' => getRequest('userGroups', [])
]);
$messageSuccess = _('Slide show added');
$messageFailed = _('Cannot add slide show');
$auditAction = AUDIT_ACTION_ADD;
}
if ($result) {
add_audit($auditAction, AUDIT_RESOURCE_SLIDESHOW, ' Name "'.getRequest('name').'" ');
unset($_REQUEST['form'], $_REQUEST['slideshowid']);
}
$result = DBend($result);
if ($result) {
uncheckTableRows();
}
show_messages($result, $messageSuccess, $messageFailed);
}
elseif (isset($_REQUEST['delete']) && isset($_REQUEST['slideshowid'])) {
DBstart();
$result = delete_slideshow($_REQUEST['slideshowid']);
if ($result) {
add_audit(AUDIT_ACTION_DELETE, AUDIT_RESOURCE_SLIDESHOW, ' Name "'.$db_slideshow['name'].'" ');
}
unset($_REQUEST['slideshowid'], $_REQUEST['form']);
$result = DBend($result);
if ($result) {
uncheckTableRows();
}
show_messages($result, _('Slide show deleted'), _('Cannot delete slide show'));
}
elseif (hasRequest('action') && getRequest('action') == 'slideshow.massdelete' && hasRequest('shows')) {
$result = true;
$shows = getRequest('shows');
DBstart();
foreach ($shows as $showid) {
$result &= delete_slideshow($showid);
if (!$result) {
break;
}
}
$result = DBend($result);
if ($result) {
unset($_REQUEST['form']);
uncheckTableRows();
}
show_messages($result, _('Slide show deleted'), _('Cannot delete slide show'));
}
/*
* Display
*/
if (hasRequest('form')) {
$current_userid = CWebUser::$data['userid'];
$userids[$current_userid] = true;
$user_groupids = [];
$data = [
'form' => getRequest('form'),
'form_refresh' => getRequest('form_refresh', 0)
];
if (!hasRequest('slideshowid') || hasRequest('form_refresh')) {
// Slide show owner.
$slideshow_owner = getRequest('userid', $current_userid);
$userids[$slideshow_owner] = true;
foreach (getRequest('users', []) as $user) {
$userids[$user['userid']] = true;
}
foreach (getRequest('userGroups', []) as $user_group) {
$user_groupids[$user_group['usrgrpid']] = true;
}
}
else {
// Slide show owner.
$userids[$db_slideshow['userid']] = true;
$db_slideshow['users'] = DBfetchArray(DBselect(
'SELECT s.userid,s.permission'.
' FROM slideshow_user s'.
' WHERE s.slideshowid='.zbx_dbstr(getRequest('slideshowid'))
));
foreach ($db_slideshow['users'] as $user) {
$userids[$user['userid']] = true;
}
$db_slideshow['userGroups'] = DBfetchArray(DBselect(
'SELECT s.usrgrpid,s.permission'.
' FROM slideshow_usrgrp s'.
' WHERE s.slideshowid='.zbx_dbstr(getRequest('slideshowid'))
));
foreach ($db_slideshow['userGroups'] as $user_group) {
$user_groupids[$user_group['usrgrpid']] = true;
}
}
$data['users'] = API::User()->get([
'output' => ['userid', 'alias', 'name', 'surname'],
'userids' => array_keys($userids),
'preservekeys' => true
]);
$data['user_groups'] = API::UserGroup()->get([
'output' => ['usrgrpid', 'name'],
'usrgrpids' => array_keys($user_groupids),
'preservekeys' => true
]);
if (array_key_exists('slideshowid', $db_slideshow) && !isset($_REQUEST['form_refresh'])) {
$data['slideshow'] = [
'slideshowid' => $db_slideshow['slideshowid'],
'name' => $db_slideshow['name'],
'delay' => $db_slideshow['delay'],
'userid' => $db_slideshow['userid'],
'private' => $db_slideshow['private'],
'users' => $db_slideshow['users'],
'userGroups' => $db_slideshow['userGroups']
];
// Get slides.
$data['slideshow']['slides'] = DBfetchArray(DBselect(
'SELECT s.slideid, s.screenid, s.delay'.
' FROM slides s'.
' WHERE s.slideshowid='.zbx_dbstr($db_slideshow['slideshowid']).
' ORDER BY s.step'
));
}
else {
$data['slideshow'] = [
'slideshowid' => getRequest('slideshowid'),
'name' => getRequest('name', ''),
'delay' => getRequest('delay', DB::getDefault('slideshows', 'delay')),
'slides' => getRequest('slides', []),
'private' => getRequest('private', PRIVATE_SHARING),
'users' => getRequest('users', []),
'userGroups' => getRequest('userGroups', [])
];
if (hasRequest('form_refresh')) {
if (CWebUser::getType() == USER_TYPE_SUPER_ADMIN || CWebUser::getType() == USER_TYPE_ZABBIX_ADMIN) {
$data['slideshow']['userid'] = getRequest('userid', '');
}
else {
$data['slideshow']['userid'] = getRequest('userid');
}
}
else {
if ($db_slideshow) {
$data['slideshow']['userid'] = $db_slideshow['userid'];
}
else {
$data['slideshow']['userid'] = $current_userid;
}
}
}
foreach ($data['slideshow']['slides'] as &$slide) {
$slide['delay'] = $slide['delay'] === '0' ? '' : $slide['delay'];
}
unset($slide);
$screenids = [];
foreach ($data['slideshow']['slides'] as $slides) {
$screenids[] = $slides['screenid'];
}
$data['slideshow']['screens'] = API::Screen()->get([
'output' => ['screenid', 'name'],
'screenids' => $screenids,
'preservekeys' => true
]);
$data['current_user_userid'] = $current_userid;
// Get slides without delay.
$data['slides_without_delay'] = $data['slideshow']['slides'];
foreach ($data['slides_without_delay'] as &$slide) {
unset($slide['delay']);
}
unset($slide);
// render view
echo (new CView('monitoring.slideconf.edit', $data))->getOutput();
}
else {
CProfile::delete('web.slides.elementid');
$sortField = getRequest('sort', CProfile::get('web.'.$page['file'].'.sort', 'name'));
$sortOrder = getRequest('sortorder', CProfile::get('web.'.$page['file'].'.sortorder', ZBX_SORT_UP));
CProfile::update('web.'.$page['file'].'.sort', $sortField, PROFILE_TYPE_STR);
CProfile::update('web.'.$page['file'].'.sortorder', $sortOrder, PROFILE_TYPE_STR);
if (hasRequest('filter_set')) {
CProfile::update('web.slideconf.filter_name', getRequest('filter_name', ''), PROFILE_TYPE_STR);
}
elseif (hasRequest('filter_rst')) {
DBStart();
CProfile::delete('web.slideconf.filter_name');
DBend();
}
$config = select_config();
$limit = $config['search_limit'] + 1;
$data = [
'filter' => [
'name' => CProfile::get('web.slideconf.filter_name', '')
],
'sort' => $sortField,
'sortorder' => $sortOrder,
'profileIdx' => 'web.slideconf.filter',
'active_tab' => CProfile::get('web.slideconf.filter.active', 1)
];
if ($data['filter']['name'] !== '') {
// escaping parameter that is about to be used in LIKE statement
$pattern = str_replace("!", "!!", $data['filter']['name']);
$pattern = str_replace("%", "!%", $pattern);
$pattern = str_replace("_", "!_", $pattern);
$sql_where = ' WHERE UPPER(s.name) LIKE '.zbx_dbstr('%'.mb_strtoupper($pattern).'%')." ESCAPE '!'";
}
else {
$sql_where = '';
}
$data['slides'] = DBfetchArray(DBselect(
'SELECT s.slideshowid,s.name,s.delay,COUNT(sl.slideshowid) AS cnt'.
' FROM slideshows s'.
' LEFT JOIN slides sl ON sl.slideshowid=s.slideshowid'.
$sql_where.
' GROUP BY s.slideshowid,s.name,s.delay'.
' ORDER BY '.(($sortField === 'cnt') ? 'cnt' : 's.'.$sortField)
));
foreach ($data['slides'] as $key => &$slide) {
if (!slideshow_accessible($slide['slideshowid'], PERM_READ)) {
unset($data['slides'][$key]);
}
else {
$slide['editable'] = (bool) get_slideshow_by_slideshowid($slide['slideshowid'], PERM_READ_WRITE);
}
}
unset($slide);
order_result($data['slides'], $sortField, $sortOrder);
if ($sortOrder == ZBX_SORT_UP) {
$data['slides'] = array_slice($data['slides'], 0, $limit);
}
else {
$data['slides'] = array_slice($data['slides'], -$limit, $limit);
}
order_result($data['slides'], $sortField, $sortOrder);
// pager
if (hasRequest('page')) {
$page_num = getRequest('page');
}
elseif (isRequestMethod('get') && !hasRequest('cancel')) {
$page_num = 1;
}
else {
$page_num = CPagerHelper::loadPage($page['file']);
}
CPagerHelper::savePage($page['file'], $page_num);
$data['paging'] = CPagerHelper::paginate($page_num, $data['slides'], $sortOrder, new CUrl('slideconf.php'));
// render view
echo (new CView('monitoring.slideconf.list', $data))->getOutput();
}
require_once dirname(__FILE__).'/include/page_footer.php';