| commit | author | age | ||
| cdaae6 | 1 | <?php |
| V | 2 | /* |
| 3 | Copyright (c) 2010, Till Brehm, projektfarm Gmbh and Oliver Vogel www.muv.com | |
| 4 | All rights reserved. | |
| 5 | ||
| 6 | Redistribution and use in source and binary forms, with or without modification, | |
| 7 | are permitted provided that the following conditions are met: | |
| 8 | ||
| 9 | * Redistributions of source code must retain the above copyright notice, | |
| 10 | this list of conditions and the following disclaimer. | |
| 11 | * Redistributions in binary form must reproduce the above copyright notice, | |
| 12 | this list of conditions and the following disclaimer in the documentation | |
| 13 | and/or other materials provided with the distribution. | |
| 14 | * Neither the name of ISPConfig nor the names of its contributors | |
| 15 | may be used to endorse or promote products derived from this software without | |
| 16 | specific prior written permission. | |
| 17 | ||
| 18 | THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND | |
| 19 | ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED | |
| 20 | WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. | |
| 21 | IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, | |
| 22 | INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, | |
| 23 | BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | |
| 24 | DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY | |
| 25 | OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING | |
| 26 | NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, | |
| 27 | EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | |
| 28 | */ | |
| 29 | ||
| 7fe908 | 30 | require_once '../../lib/config.inc.php'; |
| MC | 31 | require_once '../../lib/app.inc.php'; |
| cdaae6 | 32 | |
| V | 33 | //* Check permissions for module |
| 34 | $app->auth->check_module_permissions('admin'); | |
| 9edea9 | 35 | $app->auth->check_security_permissions('admin_allow_osupdate'); |
| cdaae6 | 36 | |
| V | 37 | //* This is only allowed for administrators |
| 38 | if(!$app->auth->is_admin()) die('only allowed for administrators.'); | |
| 39 | ||
| 40 | $app->uses('tpl'); | |
| 41 | ||
| 42 | $app->tpl->newTemplate('form.tpl.htm'); | |
| 43 | $app->tpl->setInclude('content_tpl', 'templates/remote_action_osupdate.htm'); | |
| 44 | ||
| 45 | //* load language file | |
| 46 | $lng_file = 'lib/lang/'.$_SESSION['s']['language'].'_remote_action.lng'; | |
| 7fe908 | 47 | include $lng_file; |
| cdaae6 | 48 | |
| V | 49 | /* |
| 50 | * We need a list of all Servers | |
| 51 | */ | |
| 52 | $sysServers = $app->db->queryAllRecords("SELECT server_id, server_name FROM server order by server_name"); | |
| 53 | $dropDown = "<option value='*'>" . $wb['select_all_server'] . "</option>"; | |
| 54 | foreach ($sysServers as $server) { | |
| 55 | $dropDown .= "<option value='" . $server['server_id'] . "'>" . $server['server_name'] . "</option>"; | |
| 56 | } | |
| 57 | $app->tpl->setVar('server_option', $dropDown); | |
| 58 | ||
| 59 | $msg = ''; | |
| 60 | ||
| 61 | /* | |
| 62 | * If the user wants to do the action, write this to our db | |
| 63 | */ | |
| 64 | if (isset($_POST['server_select'])) { | |
| 5af0cf | 65 | |
| TB | 66 | //* CSRF Check |
| 67 | $app->auth->csrf_token_check(); | |
| 68 | ||
| cdaae6 | 69 | $server = $_POST['server_select']; |
| V | 70 | $servers = array(); |
| 71 | if ($server == '*') { | |
| 72 | /* We need ALL Servers */ | |
| 73 | foreach ($sysServers as $server) { | |
| 74 | $servers[] = $server['server_id']; | |
| 75 | } | |
| 76 | } | |
| 77 | else { | |
| 78 | /* We need only the selected Server */ | |
| 79 | $servers[] = $_POST['server_select']; | |
| 80 | } | |
| 81 | foreach ($servers as $serverId) { | |
| 82d6e5 | 82 | $sql = "INSERT INTO sys_remoteaction (server_id, tstamp, action_type, action_param, action_state, response) " . |
| 7fe908 | 83 | "VALUES (". |
| 604c0c | 84 | $app->functions->intval($serverId) . ", " . |
| 7fe908 | 85 | time() . ", " . |
| MC | 86 | "'os_update', " . |
| 87 | "'', " . | |
| 88 | "'pending', " . | |
| 89 | "''" . | |
| 90 | ")"; | |
| cdaae6 | 91 | $app->db->query($sql); |
| V | 92 | } |
| 93 | $msg = $wb['action_scheduled']; | |
| 94 | } | |
| 95 | ||
| 7fe908 | 96 | $app->tpl->setVar('msg', $msg); |
| cdaae6 | 97 | |
| 5af0cf | 98 | //* SET csrf token |
| TB | 99 | $csrf_token = $app->auth->csrf_token_get('osupdate'); |
| 100 | $app->tpl->setVar('_csrf_id',$csrf_token['csrf_id']); | |
| 101 | $app->tpl->setVar('_csrf_key',$csrf_token['csrf_key']); | |
| 102 | ||
| cdaae6 | 103 | $app->tpl->setVar($wb); |
| V | 104 | |
| 105 | $app->tpl_defaults(); | |
| 106 | $app->tpl->pparse(); | |
| 107 | ||
| 108 | ||
| 7fe908 | 109 | ?> |
