zabbix/ui/app/controllers/CControllerUserTokenList.php

<?php declare(strict_types = 0);
/*
** Zabbix
** Copyright (C) 2001-2023 Zabbix SIA
**
** This program is free software; you can redistribute it and/or modify
** it under the terms of the GNU General Public License as published by
** the Free Software Foundation; either version 2 of the License, or
** (at your option) any later version.
**
** This program is distributed in the hope that it will be useful,
** but WITHOUT ANY WARRANTY; without even the implied warranty of
** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
** GNU General Public License for more details.
**
** You should have received a copy of the GNU General Public License
** along with this program; if not, write to the Free Software
** Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
**/


class CControllerUserTokenList extends CController {

	protected function init() {
		$this->disableCsrfValidation();
	}

	protected function checkInput() {
		$fields = [
			'sort'                   => 'in name,expires_at,lastaccess,status',
			'sortorder'              => 'in '.ZBX_SORT_DOWN.','.ZBX_SORT_UP,
			'uncheck'                => 'in 1',
			'filter_set'             => 'in 1',
			'filter_rst'             => 'in 1',
			'filter_name'            => 'string',
			'filter_expires_state'   => 'in 1',
			'filter_expires_days'    => 'int32',
			'filter_status'          => 'in -1,'.ZBX_AUTH_TOKEN_ENABLED.','.ZBX_AUTH_TOKEN_DISABLED,
			'page'                   => 'ge 1'
		];

		$ret = $this->validateInput($fields);

		if (!$ret) {
			$this->setResponse(new CControllerResponseFatal());
		}

		return $ret;
	}

	protected function checkPermissions() {
		if (CWebUser::isGuest()) {
			return false;
		}

		return $this->checkAccess(CRoleHelper::ACTIONS_MANAGE_API_TOKENS);
	}

	protected function doAction() {
		$sort_field = $this->getInput('sort', CProfile::get('web.user.token.list.sort', 'name'));
		$sort_order = $this->getInput('sortorder', CProfile::get('web.user.token.list.sortorder', ZBX_SORT_UP));

		CProfile::update('web.user.token.list.sort', $sort_field, PROFILE_TYPE_STR);
		CProfile::update('web.user.token.list.sortorder', $sort_order, PROFILE_TYPE_STR);

		if ($this->hasInput('filter_set')) {
			CProfile::update('web.user.token.filter_name', $this->getInput('filter_name', ''), PROFILE_TYPE_STR);
			CProfile::update('web.user.token.filter_expires_state', $this->getInput('filter_expires_state', 0),
				PROFILE_TYPE_INT
			);
			CProfile::update('web.user.token.filter_expires_days', $this->getInput('filter_expires_days', 14),
				PROFILE_TYPE_INT
			);
			CProfile::update('web.user.token.filter_status', $this->getInput('filter_status', -1), PROFILE_TYPE_INT);
		}
		elseif ($this->hasInput('filter_rst')) {
			CProfile::delete('web.user.token.filter_name');
			CProfile::delete('web.user.token.filter_expires_state');
			CProfile::delete('web.user.token.filter_expires_days');
			CProfile::delete('web.user.token.filter_status');
		}

		$filter = [
			'name' => CProfile::get('web.user.token.filter_name', ''),
			'expires_state' => CProfile::get('web.user.token.filter_expires_state', 0),
			'expires_days' => CProfile::get('web.user.token.filter_expires_days', 14),
			'status' => CProfile::get('web.user.token.filter_status', -1)
		];

		$data = [
			'sort' => $sort_field,
			'sortorder' => $sort_order,
			'uncheck' => $this->hasInput('uncheck'),
			'filter' => $filter,
			'profileIdx' => 'web.user.token.filter',
			'active_tab' => CProfile::get('web.user.token.filter.active', 1)
		];

		$limit = CSettingsHelper::get(CSettingsHelper::SEARCH_LIMIT) + 1;
		$data['tokens'] = API::Token()->get([
			'output' => ['tokenid', 'name', 'expires_at', 'created_at', 'lastaccess', 'status'],
			'userids' => CWebUser::$data['userid'],
			'valid_at' => $filter['expires_state'] ? time() : null,
			'expired_at' => $filter['expires_state']
				? bcadd((string) time(), bcmul($filter['expires_days'], (string) SEC_PER_DAY, 0), 0)
				: null,
			'search' => [
				'name' => ($filter['name'] === '') ? null : $filter['name']
			],
			'filter' => [
				'status' => ($filter['status'] == -1) ? null : $filter['status']
			],
			'limit' => $limit,
			'preservekeys' => true
		]);

		if ($data['tokens'] === false) {
			$data['tokens'] = [];
		}

		$now = time();
		array_walk($data['tokens'], function (array &$token) use ($now) {
			$token['is_expired'] = $token['expires_at']
				? $now > $token['expires_at']
				: false;
		});

		CArrayHelper::sort($data['tokens'], [['field' => $sort_field, 'order' => $sort_order]]);

		$page_num = $this->getInput('page', 1);
		CPagerHelper::savePage('user.token.list', $page_num);
		$data['paging'] = CPagerHelper::paginate($page_num, $data['tokens'], $sort_order,
			(new CUrl('zabbix.php'))->setArgument('action', $this->getAction())
		);

		$response = new CControllerResponseData($data);
		$response->setTitle(_('API tokens'));
		$this->setResponse($response);
	}
}
zabbix6.0 1 year ago			`<?php declare(strict_types = 0);`
			`/*`
			`** Zabbix`
			`** Copyright (C) 2001-2023 Zabbix SIA`
			`**`
			`** This program is free software; you can redistribute it and/or modify`
			`** it under the terms of the GNU General Public License as published by`
			`** the Free Software Foundation; either version 2 of the License, or`
			`** (at your option) any later version.`
			`**`
			`** This program is distributed in the hope that it will be useful,`
			`** but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`** GNU General Public License for more details.`
			`**`
			`** You should have received a copy of the GNU General Public License`
			`** along with this program; if not, write to the Free Software`
			`** Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.`
			`**/`


			`class CControllerUserTokenList extends CController {`

			`protected function init() {`
			`$this->disableCsrfValidation();`
			`}`

			`protected function checkInput() {`
			`$fields = [`
			`'sort' => 'in name,expires_at,lastaccess,status',`
			`'sortorder' => 'in '.ZBX_SORT_DOWN.','.ZBX_SORT_UP,`
			`'uncheck' => 'in 1',`
			`'filter_set' => 'in 1',`
			`'filter_rst' => 'in 1',`
			`'filter_name' => 'string',`
			`'filter_expires_state' => 'in 1',`
			`'filter_expires_days' => 'int32',`
			`'filter_status' => 'in -1,'.ZBX_AUTH_TOKEN_ENABLED.','.ZBX_AUTH_TOKEN_DISABLED,`
			`'page' => 'ge 1'`
			`];`

			`$ret = $this->validateInput($fields);`

			`if (!$ret) {`
			`$this->setResponse(new CControllerResponseFatal());`
			`}`

			`return $ret;`
			`}`

			`protected function checkPermissions() {`
			`if (CWebUser::isGuest()) {`
			`return false;`
			`}`

			`return $this->checkAccess(CRoleHelper::ACTIONS_MANAGE_API_TOKENS);`
			`}`

			`protected function doAction() {`
			`$sort_field = $this->getInput('sort', CProfile::get('web.user.token.list.sort', 'name'));`
			`$sort_order = $this->getInput('sortorder', CProfile::get('web.user.token.list.sortorder', ZBX_SORT_UP));`

			`CProfile::update('web.user.token.list.sort', $sort_field, PROFILE_TYPE_STR);`
			`CProfile::update('web.user.token.list.sortorder', $sort_order, PROFILE_TYPE_STR);`

			`if ($this->hasInput('filter_set')) {`
			`CProfile::update('web.user.token.filter_name', $this->getInput('filter_name', ''), PROFILE_TYPE_STR);`
			`CProfile::update('web.user.token.filter_expires_state', $this->getInput('filter_expires_state', 0),`
			`PROFILE_TYPE_INT`
			`);`
			`CProfile::update('web.user.token.filter_expires_days', $this->getInput('filter_expires_days', 14),`
			`PROFILE_TYPE_INT`
			`);`
			`CProfile::update('web.user.token.filter_status', $this->getInput('filter_status', -1), PROFILE_TYPE_INT);`
			`}`
			`elseif ($this->hasInput('filter_rst')) {`
			`CProfile::delete('web.user.token.filter_name');`
			`CProfile::delete('web.user.token.filter_expires_state');`
			`CProfile::delete('web.user.token.filter_expires_days');`
			`CProfile::delete('web.user.token.filter_status');`
			`}`

			`$filter = [`
			`'name' => CProfile::get('web.user.token.filter_name', ''),`
			`'expires_state' => CProfile::get('web.user.token.filter_expires_state', 0),`
			`'expires_days' => CProfile::get('web.user.token.filter_expires_days', 14),`
			`'status' => CProfile::get('web.user.token.filter_status', -1)`
			`];`

			`$data = [`
			`'sort' => $sort_field,`
			`'sortorder' => $sort_order,`
			`'uncheck' => $this->hasInput('uncheck'),`
			`'filter' => $filter,`
			`'profileIdx' => 'web.user.token.filter',`
			`'active_tab' => CProfile::get('web.user.token.filter.active', 1)`
			`];`

			`$limit = CSettingsHelper::get(CSettingsHelper::SEARCH_LIMIT) + 1;`
			`$data['tokens'] = API::Token()->get([`
			`'output' => ['tokenid', 'name', 'expires_at', 'created_at', 'lastaccess', 'status'],`
			`'userids' => CWebUser::$data['userid'],`
			`'valid_at' => $filter['expires_state'] ? time() : null,`
			`'expired_at' => $filter['expires_state']`
			`? bcadd((string) time(), bcmul($filter['expires_days'], (string) SEC_PER_DAY, 0), 0)`
			`: null,`
			`'search' => [`
			`'name' => ($filter['name'] === '') ? null : $filter['name']`
			`],`
			`'filter' => [`
			`'status' => ($filter['status'] == -1) ? null : $filter['status']`
			`],`
			`'limit' => $limit,`
			`'preservekeys' => true`
			`]);`

			`if ($data['tokens'] === false) {`
			`$data['tokens'] = [];`
			`}`

			`$now = time();`
			`array_walk($data['tokens'], function (array &$token) use ($now) {`
			`$token['is_expired'] = $token['expires_at']`
			`? $now > $token['expires_at']`
			`: false;`
			`});`

			`CArrayHelper::sort($data['tokens'], [['field' => $sort_field, 'order' => $sort_order]]);`

			`$page_num = $this->getInput('page', 1);`
			`CPagerHelper::savePage('user.token.list', $page_num);`
			`$data['paging'] = CPagerHelper::paginate($page_num, $data['tokens'], $sort_order,`
			`(new CUrl('zabbix.php'))->setArgument('action', $this->getAction())`
			`);`

			`$response = new CControllerResponseData($data);`
			`$response->setTitle(_('API tokens'));`
			`$this->setResponse($response);`
			`}`
			`}`