fusionpbx/app/vars/vars.php

<?php
/*
	FusionPBX
	Version: MPL 1.1

	The contents of this file are subject to the Mozilla Public License Version
	1.1 (the "License"); you may not use this file except in compliance with
	the License. You may obtain a copy of the License at
	http://www.mozilla.org/MPL/

	Software distributed under the License is distributed on an "AS IS" basis,
	WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
	for the specific language governing rights and limitations under the
	License.

	The Original Code is FusionPBX

	The Initial Developer of the Original Code is
	Mark J Crane <markjcrane@fusionpbx.com>
	Portions created by the Initial Developer are Copyright (C) 2008-2018
	the Initial Developer. All Rights Reserved.

	Contributor(s):
	Mark J Crane <markjcrane@fusionpbx.com>
*/
//includes
	include "root.php";
	require_once "resources/require.php";
	require_once "resources/check_auth.php";

//check permissions
	if (permission_exists('var_view')) {
		//access granted
	}
	else {
		echo "access denied";
		exit;
	}

//add multi-lingual support
	$language = new text;
	$text = $language->get();

//toggle enabled state
	if ($_REQUEST['id'] != '' && $_REQUEST['enabled'] != '') {
		$sql = "update v_vars set ";
		$sql .= "var_enabled = '".check_str($_REQUEST['enabled'])."' ";
		$sql .= "where var_uuid = '".check_str($_REQUEST['id'])."' ";
		$db->exec(check_sql($sql));
		unset($sql);

		//unset the user defined variables
		$_SESSION["user_defined_variables"] = "";

		//synchronize the configuration
		save_var_xml();

		messages::add($text['message-update']);
		header("Location: vars.php?id=".$_REQUEST['id']);
		exit;
	}

//include the header
	require_once "resources/header.php";
	$document['title'] = $text['title-variables'];

//set http values as php variables
	$order_by = $_GET["order_by"];
	$order = $_GET["order"];

//show the content
	echo "<table width=\"100%\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\">\n";
	echo "  <tr>\n";
	echo "	<td align='left'><b>".$text['header-variables']."</b><br>\n";
	echo "		".$text['description-variables']."\n";
	echo "	</td>\n";
	echo "  </tr>\n";
	echo "</table>\n";

	$sql = "select * from v_vars ";
	if (strlen($order_by)> 0) {
		$sql .= "order by $order_by $order ";
	}
	else {
		$sql .= "order by var_category, var_order asc ";
	}
	$prep_statement = $db->prepare(check_sql($sql));
	$prep_statement->execute();
	$result = $prep_statement->fetchAll(PDO::FETCH_NAMED);
	$result_count = count($result);
	unset ($prep_statement, $sql);

	$c = 0;
	$row_style["0"] = "row_style0";
	$row_style["1"] = "row_style1";

	echo "<table class='tr_hover' width='100%' border='0' cellpadding='0' cellspacing='0'>\n";

	$tmp_var_header = '';
	$tmp_var_header .= "<tr>\n";
	$tmp_var_header .= th_order_by('var_name', $text['label-name'], $order_by, $order);
	$tmp_var_header .= th_order_by('var_value', $text['label-value'], $order_by, $order);
	$tmp_var_header .= th_order_by('var_hostname', $text['label-hostname'], $order_by, $order);
	$tmp_var_header .= th_order_by('var_enabled', $text['label-enabled'], $order_by, $order);
	$tmp_var_header .= "<th>".$text['label-description']."</th>\n";
	$tmp_var_header .= "<td class='list_control_icons'>";
	if (permission_exists('var_add')) {
		$tmp_var_header .= "<a href='var_edit.php' alt='".$text['button-add']."'>$v_link_label_add</a>";
	}
	$tmp_var_header .= "</td>\n";
	$tmp_var_header .= "<tr>\n";

	if ($result_count > 0) {
		$prev_var_category = '';
		foreach($result as $row) {
			$var_value = $row['var_value'];
			$var_value = substr($var_value, 0, 50);
			if ($prev_var_category != $row['var_category']) {
				$c=0;
				if (strlen($prev_var_category) > 0) {
					echo "<tr>\n";
					echo "<td colspan='6'>\n";
					echo "	<table width='100%' cellpadding='0' cellspacing='0'>\n";
					echo "	<tr>\n";
					echo "		<td width='33.3%' nowrap>&nbsp;</td>\n";
					echo "		<td width='33.3%' align='center' nowrap>&nbsp;</td>\n";
					echo "		<td width='33.3%' align='right'>";
					if (permission_exists('var_add')) {
						echo "<a href='var_edit.php' alt='".$text['button-add']."'>$v_link_label_add</a>";
					}
					echo "		</td>\n";
					echo "	</tr>\n";
					echo "	</table>\n";
					echo "</td>\n";
					echo "</tr>\n";
				}
				echo "<tr><td colspan='4' align='left'>\n";
				echo "	<br />\n";
				echo "	<br />\n";
				echo "	<b>".$row['var_category']."</b>&nbsp;</td></tr>\n";
				echo $tmp_var_header;
			}

			$tr_link = (permission_exists('var_edit')) ? "href='var_edit.php?id=".$row['var_uuid']."'" : null;
			echo "<tr ".$tr_link.">\n";
			echo "	<td valign='top' align='left' class='".$row_style[$c]."'>";
			if (permission_exists('var_edit')) {
				echo "<a href='var_edit.php?id=".$row['var_uuid']."'>".substr($row['var_name'],0,32)."</a>";
			}
			else {
				echo substr($row['var_name'],0,32);
			}
			echo "	</td>\n";
			echo "	<td valign='top' align='left' class='".$row_style[$c]."'>".substr($var_value,0,30)."</td>\n";
			echo "	<td valign='top' align='left' class='".$row_style[$c]."'>".$row['var_hostname']."&nbsp;</td>\n";
			echo "	<td valign='top' align='left' class='".$row_style[$c]."'>";
			echo "		<a href='?id=".$row['var_uuid']."&enabled=".(($row['var_enabled'] == 'true') ? 'false' : 'true')."'>".(($row['var_enabled'] == 'true') ? $text['option-true'] : $text['option-false'])."</a>";
			echo "	</td>\n";
			$var_description = str_replace("\n", "<br />", trim(substr(base64_decode($row['var_description']),0,40)));
			$var_description = str_replace("   ", "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;", $var_description);
			echo "	<td valign='top' align='left' class='row_stylebg'>".$var_description."&nbsp;</td>\n";
			echo "	<td valign='top' align='right'>";
			if (permission_exists('var_edit')) {
				echo "<a href='var_edit.php?id=".escape($row['var_uuid'])."' alt='".$text['button-edit']."'>$v_link_label_edit</a>";
			}
			if (permission_exists('var_delete')) {
				echo "<a href='var_delete.php?id=".escape($row['var_uuid'])."' alt='".$text['button-delete']."' onclick=\"return confirm('".$text['confirm-delete']."')\">$v_link_label_delete</a>";
			}
			echo "	</td>\n";
			echo "</tr>\n";

			$prev_var_category = $row['var_category'];
			if ($c==0) { $c=1; } else { $c=0; }
		} //end foreach
		unset($sql, $result, $row_count);
	} //end if results

	echo "<tr>\n";
	echo "<td colspan='6' align='left'>\n";
	echo "	<table width='100%' cellpadding='0' cellspacing='0'>\n";
	echo "	<tr>\n";
	echo "		<td width='33.3%' nowrap='nowrap'>&nbsp;</td>\n";
	echo "		<td align='center' nowrap='nowrap'>$paging_controls</td>\n";
	echo "		<td width='33.3%' class='list_control_icons'>";
	if (permission_exists('var_add')) {
		echo "<a href='var_edit.php' alt='".$text['button-add']."'>$v_link_label_add</a>";
	}
	echo "		</td>\n";
	echo "	</tr>\n";
 	echo "	</table>\n";
	echo "</td>\n";
	echo "</tr>\n";

	echo "</table>";
	echo "<br><br>";

//include the footer
	require_once "resources/footer.php";

?>
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`<?php`
			`/*`
			`FusionPBX`
			`Version: MPL 1.1`

			`The contents of this file are subject to the Mozilla Public License Version`
			`1.1 (the "License"); you may not use this file except in compliance with`
			`the License. You may obtain a copy of the License at`
			`http://www.mozilla.org/MPL/`

			`Software distributed under the License is distributed on an "AS IS" basis,`
			`WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License`
			`for the specific language governing rights and limitations under the`
			`License.`

			`The Original Code is FusionPBX`

			`The Initial Developer of the Original Code is`
			`Mark J Crane <markjcrane@fusionpbx.com>`
Update vars.php 2018-03-25 18:00:12 +02:00			`Portions created by the Initial Developer are Copyright (C) 2008-2018`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`the Initial Developer. All Rights Reserved.`

			`Contributor(s):`
			`Mark J Crane <markjcrane@fusionpbx.com>`
			`*/`
Update vars.php 2018-03-25 18:00:12 +02:00			`//includes`
			`include "root.php";`
			`require_once "resources/require.php";`
			`require_once "resources/check_auth.php";`

			`//check permissions`
			`if (permission_exists('var_view')) {`
			`//access granted`
			`}`
			`else {`
			`echo "access denied";`
			`exit;`
			`}`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00
Multilinguified Variables. 2013-05-30 00:27:04 +02:00			`//add multi-lingual support`
Use the new multi-lingual code on fusionpbx/app sub directories. 2015-01-18 11:04:43 +01:00			`$language = new text;`
			`$text = $language->get();`
Multilinguified Variables. 2013-05-30 00:27:04 +02:00
Variables: Click to toggle Enabled state. 2015-01-22 02:10:30 +01:00			`//toggle enabled state`
			`if ($_REQUEST['id'] != '' && $_REQUEST['enabled'] != '') {`
			`$sql = "update v_vars set ";`
			`$sql .= "var_enabled = '".check_str($_REQUEST['enabled'])."' ";`
			`$sql .= "where var_uuid = '".check_str($_REQUEST['id'])."' ";`
			`$db->exec(check_sql($sql));`
			`unset($sql);`

			`//unset the user defined variables`
			`$_SESSION["user_defined_variables"] = "";`

			`//synchronize the configuration`
			`save_var_xml();`

Enhance - More messages::add updates (#2662) convert more messages over to messsagse::add 2017-06-10 04:13:40 +02:00			`messages::add($text['message-update']);`
Variables: Click to toggle Enabled state. 2015-01-22 02:10:30 +01:00			`header("Location: vars.php?id=".$_REQUEST['id']);`
			`exit;`
			`}`

Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`//include the header`
Update the references for header.php and footer.php files to point the resources directory. 2013-07-06 08:29:50 +02:00			`require_once "resources/header.php";`
Document (Window) Title: Update variable name to avoid conflict when paging is used. 2014-07-10 02:32:50 +02:00			`$document['title'] = $text['title-variables'];`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00
			`//set http values as php variables`
			`$order_by = $_GET["order_by"];`
			`$order = $_GET["order"];`

			`//show the content`
Visual adjustments. 2015-02-15 08:59:02 +01:00			`echo "<table width=\"100%\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\">\n";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`echo " <tr>\n";`
Multilinguified Variables. 2013-05-30 00:27:04 +02:00			`echo " <td align='left'><b>".$text['header-variables']."</b><br>\n";`
			`echo " ".$text['description-variables']."\n";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`echo " </td>\n";`
			`echo " </tr>\n";`
			`echo "</table>\n";`

Fix the display when no value is used for a variable on the system -> variables page. 2012-09-24 22:39:53 +02:00			`$sql = "select * from v_vars ";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`if (strlen($order_by)> 0) {`
			`$sql .= "order by $order_by $order ";`
			`}`
			`else {`
Update vars.php 2018-03-25 18:00:12 +02:00			`$sql .= "order by var_category, var_order asc ";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`}`
			`$prep_statement = $db->prepare(check_sql($sql));`
			`$prep_statement->execute();`
			`$result = $prep_statement->fetchAll(PDO::FETCH_NAMED);`
			`$result_count = count($result);`
			`unset ($prep_statement, $sql);`

			`$c = 0;`
			`$row_style["0"] = "row_style0";`
			`$row_style["1"] = "row_style1";`

Usability Enhancement: Click on list rows to Edit items. 2014-06-21 09:04:04 +02:00			`echo "<table class='tr_hover' width='100%' border='0' cellpadding='0' cellspacing='0'>\n";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00
			`$tmp_var_header = '';`
			`$tmp_var_header .= "<tr>\n";`
Multilinguified Variables. 2013-05-30 00:27:04 +02:00			`$tmp_var_header .= th_order_by('var_name', $text['label-name'], $order_by, $order);`
			`$tmp_var_header .= th_order_by('var_value', $text['label-value'], $order_by, $order);`
Add hostname to the variable list. 2015-03-25 21:30:17 +01:00			`$tmp_var_header .= th_order_by('var_hostname', $text['label-hostname'], $order_by, $order);`
Multilinguified Variables. 2013-05-30 00:27:04 +02:00			`$tmp_var_header .= th_order_by('var_enabled', $text['label-enabled'], $order_by, $order);`
			`$tmp_var_header .= "<th>".$text['label-description']."</th>\n";`
Unstack list control icons. 2014-02-26 03:27:13 +01:00			`$tmp_var_header .= "<td class='list_control_icons'>";`
Add permissions for every table (view, add, edit, and delete). Important change to increase security on the REST API and will be beneficial for more detailed control of permissions. 2013-09-25 22:23:10 +02:00			`if (permission_exists('var_add')) {`
Unstack list control icons. 2014-02-26 03:27:13 +01:00			`$tmp_var_header .= "<a href='var_edit.php' alt='".$text['button-add']."'>$v_link_label_add</a>";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`}`
			`$tmp_var_header .= "</td>\n";`
			`$tmp_var_header .= "<tr>\n";`

rename the links in the vars php files. 2012-11-24 02:24:13 +01:00			`if ($result_count > 0) {`
Update vars.php 2018-03-25 18:00:12 +02:00			`$prev_var_category = '';`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`foreach($result as $row) {`
vars.php - fix 3 notify warnings (#2247) 2016-12-26 22:57:49 +01:00			`$var_value = $row['var_value'];`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`$var_value = substr($var_value, 0, 50);`
Update vars.php 2018-03-25 18:00:12 +02:00			`if ($prev_var_category != $row['var_category']) {`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`$c=0;`
Update vars.php 2018-03-25 18:00:12 +02:00			`if (strlen($prev_var_category) > 0) {`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`echo "<tr>\n";`
Completed the change and test for system -> variables with final adjustments. 2015-03-26 01:18:19 +01:00			`echo "<td colspan='6'>\n";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`echo " <table width='100%' cellpadding='0' cellspacing='0'>\n";`
			`echo " <tr>\n";`
			`echo " <td width='33.3%' nowrap> </td>\n";`
			`echo " <td width='33.3%' align='center' nowrap> </td>\n";`
Unstack list control icons. 2014-02-26 03:27:13 +01:00			`echo " <td width='33.3%' align='right'>";`
Add permissions for every table (view, add, edit, and delete). Important change to increase security on the REST API and will be beneficial for more detailed control of permissions. 2013-09-25 22:23:10 +02:00			`if (permission_exists('var_add')) {`
Unstack list control icons. 2014-02-26 03:27:13 +01:00			`echo "<a href='var_edit.php' alt='".$text['button-add']."'>$v_link_label_add</a>";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`}`
			`echo " </td>\n";`
			`echo " </tr>\n";`
			`echo " </table>\n";`
			`echo "</td>\n";`
			`echo "</tr>\n";`
			`}`
			`echo "<tr><td colspan='4' align='left'>\n";`
			`echo " <br />\n";`
			`echo " <br />\n";`
Update vars.php 2018-03-25 18:00:12 +02:00			`echo " <b>".$row['var_category']."</b> </td></tr>\n";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`echo $tmp_var_header;`
			`}`

(Modified) Usability Enhancement: Click on list rows to Edit items. Now uses jQuery (instead of onclick) to avoid being redirected to Edit when canceling a Delete. 2014-06-21 10:52:47 +02:00			`$tr_link = (permission_exists('var_edit')) ? "href='var_edit.php?id=".$row['var_uuid']."'" : null;`
Usability Enhancement: Click on list rows to Edit items. 2014-06-21 09:04:04 +02:00			`echo "<tr ".$tr_link.">\n";`
Add links to certain column text in a list view. Add ability to edit Call Block number. 2014-06-21 02:58:16 +02:00			`echo " <td valign='top' align='left' class='".$row_style[$c]."'>";`
			`if (permission_exists('var_edit')) {`
			`echo "<a href='var_edit.php?id=".$row['var_uuid']."'>".substr($row['var_name'],0,32)."</a>";`
			`}`
			`else {`
			`echo substr($row['var_name'],0,32);`
			`}`
			`echo " </td>\n";`
			`echo " <td valign='top' align='left' class='".$row_style[$c]."'>".substr($var_value,0,30)."</td>\n";`
System Variables: Adjust Hostname cell style. 2015-06-02 23:33:43 +02:00			`echo " <td valign='top' align='left' class='".$row_style[$c]."'>".$row['var_hostname']." </td>\n";`
Correct the order of the tags. 2015-03-26 01:09:54 +01:00			`echo " <td valign='top' align='left' class='".$row_style[$c]."'>";`
Variables: Click to toggle Enabled state. 2015-01-22 02:10:30 +01:00			`echo " <a href='?id=".$row['var_uuid']."&enabled=".(($row['var_enabled'] == 'true') ? 'false' : 'true')."'>".(($row['var_enabled'] == 'true') ? $text['option-true'] : $text['option-false'])."</a>";`
			`echo " </td>\n";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`$var_description = str_replace("\n", "<br />", trim(substr(base64_decode($row['var_description']),0,40)));`
			`$var_description = str_replace(" ", "       ", $var_description);`
Description column style mods, just for consistency. 2014-06-22 08:35:33 +02:00			`echo " <td valign='top' align='left' class='row_stylebg'>".$var_description." </td>\n";`
Unstack list control icons. 2014-02-26 03:27:13 +01:00			`echo " <td valign='top' align='right'>";`
Add permissions for every table (view, add, edit, and delete). Important change to increase security on the REST API and will be beneficial for more detailed control of permissions. 2013-09-25 22:23:10 +02:00			`if (permission_exists('var_edit')) {`
Update vars.php (#3310) 2018-08-28 04:26:46 +02:00			`echo "<a href='var_edit.php?id=".escape($row['var_uuid'])."' alt='".$text['button-edit']."'>$v_link_label_edit</a>";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`}`
Add permissions for every table (view, add, edit, and delete). Important change to increase security on the REST API and will be beneficial for more detailed control of permissions. 2013-09-25 22:23:10 +02:00			`if (permission_exists('var_delete')) {`
Update vars.php (#3310) 2018-08-28 04:26:46 +02:00			`echo "<a href='var_delete.php?id=".escape($row['var_uuid'])."' alt='".$text['button-delete']."' onclick=\"return confirm('".$text['confirm-delete']."')\">$v_link_label_delete</a>";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`}`
			`echo " </td>\n";`
			`echo "</tr>\n";`

Update vars.php 2018-03-25 18:00:12 +02:00			`$prev_var_category = $row['var_category'];`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`if ($c==0) { $c=1; } else { $c=0; }`
			`} //end foreach`
			`unset($sql, $result, $row_count);`
			`} //end if results`

			`echo "<tr>\n";`
			`echo "<td colspan='6' align='left'>\n";`
			`echo " <table width='100%' cellpadding='0' cellspacing='0'>\n";`
			`echo " <tr>\n";`
Move the hostname column and fix the add button position. 2015-03-26 01:01:24 +01:00			`echo " <td width='33.3%' nowrap='nowrap'> </td>\n";`
Completed the change and test for system -> variables with final adjustments. 2015-03-26 01:18:19 +01:00			`echo " <td align='center' nowrap='nowrap'>$paging_controls</td>\n";`
Try again to get the position right. 2015-03-26 01:05:14 +01:00			`echo " <td width='33.3%' class='list_control_icons'>";`
Add permissions for every table (view, add, edit, and delete). Important change to increase security on the REST API and will be beneficial for more detailed control of permissions. 2013-09-25 22:23:10 +02:00			`if (permission_exists('var_add')) {`
Unstack list control icons. 2014-02-26 03:27:13 +01:00			`echo "<a href='var_edit.php' alt='".$text['button-add']."'>$v_link_label_add</a>";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00			`}`
			`echo " </td>\n";`
			`echo " </tr>\n";`
			`echo " </table>\n";`
			`echo "</td>\n";`
			`echo "</tr>\n";`

			`echo "</table>";`
			`echo "<br><br>";`

			`//include the footer`
Update the references for header.php and footer.php files to point the resources directory. 2013-07-06 08:29:50 +02:00			`require_once "resources/footer.php";`
Add a missing file sip_profile_copy.php to the dev branch. 2012-06-04 16:58:40 +02:00
Update vars.php 2018-03-25 18:00:12 +02:00			`?>`