fusionpbx/app/access_controls/app_defaults.php

<?php
/*
	FusionPBX
	Version: MPL 1.1

	The contents of this file are subject to the Mozilla Public License Version
	1.1 (the "License"); you may not use this file except in compliance with
	the License. You may obtain a copy of the License at
	http://www.mozilla.org/MPL/

	Software distributed under the License is distributed on an "AS IS" basis,
	WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
	for the specific language governing rights and limitations under the
	License.

	The Original Code is FusionPBX

	The Initial Developer of the Original Code is
	Mark J Crane <markjcrane@fusionpbx.com>
	Portions created by the Initial Developer are Copyright (C) 2016
	the Initial Developer. All Rights Reserved.

	Contributor(s):
	Mark J Crane <markjcrane@fusionpbx.com>
*/

//if the number of rows is 0 then read the acl xml into the database
	if ($domains_processed == 1) {

		//add the access control list to the database
		$sql = "select count(*) as num_rows from v_access_controls ";
		$prep_statement = $db->prepare($sql);
		if ($prep_statement) {
			$prep_statement->execute();
			$row = $prep_statement->fetch(PDO::FETCH_ASSOC);
			if ($row['num_rows'] == 0) {
				//set the directory
					$xml_dir = $_SESSION["switch"]["conf"]["dir"].'/autoload_configs';
					$xml_file = $xml_dir."/acl.conf.xml";
					$xml_file_alt = $_SERVER["DOCUMENT_ROOT"].'/'.PROJECT_PATH.'/resources/templates/conf/autoload_configs/acl.conf';
				//load the xml and save it into an array
					if (file_exists($xml_file)) {
						$xml_string = file_get_contents($xml_file);
					}
					elseif (file_exists($xml_file_alt)) {
						$xml_string = file_get_contents(xml_file_alt);
					}
					else {
						$xml_string = "<configuration name=\"acl.conf\" description=\"Network Lists\">\n";
						$xml_string .= "	<network-lists>\n";
						$xml_string .= "		<list name=\"lan\" default=\"allow\">\n";
						$xml_string .= "			<node type=\"allow\" cidr=\"192.168.42.42/32\"/>\n";
						$xml_string .= "		</list>\n";
						$xml_string .= "		<list name=\"domains\" default=\"deny\">\n";
						$xml_string .= "			<node type=\"allow\" domain=\"".$_SESSION['domain_name']."\"/>\n";
						$xml_string .= "		</list>\n";
						$xml_string .= "	</network-lists>\n";
						$xml_string .= "</configuration>\n";
					}
					$xml_object = simplexml_load_string($xml_string);
					$json = json_encode($xml_object);
					$conf_array = json_decode($json, true);

				//process the array
					foreach($conf_array['network-lists']['list'] as $list) {
						//get the attributes
							$access_control_name = $list['@attributes']['name'];
							$access_control_default = $list['@attributes']['default'];

						//insert the name, description
							$access_control_uuid = uuid();
							$sql = "insert into v_access_controls ";
							$sql .= "(";
							$sql .= "access_control_uuid, ";
							$sql .= "access_control_name, ";
							$sql .= "access_control_default ";
							$sql .= ") ";
							$sql .= "values ";
							$sql .= "( ";
							$sql .= "'".$access_control_uuid."', ";
							$sql .= "'".check_str($access_control_name)."', ";
							$sql .= "'".check_str($access_control_default)."' ";
							$sql .= ")";
							//echo $sql."\n";
							$db->exec(check_sql($sql));
							unset($sql);

					//normalize the array - needed because the array is inconsistent when there is only one row vs multiple
						if (strlen($list['node']['@attributes']['type']) > 0) {
							$list['node'][]['@attributes'] = $list['node']['@attributes'];
							unset($list['node']['@attributes']);
						}

					//add the nodes
						foreach ($list['node'] as $row) {
							//get the name and value pair
								$node_type = $row['@attributes']['type'];
								$node_cidr = $row['@attributes']['cidr'];
								$node_domain = $row['@attributes']['domain'];
								$node_description = $row['@attributes']['description'];
							//replace $${domain}
								if (strlen($node_domain) > 0) {
									$node_domain = str_replace("\$\${domain}", $domain_name, $node_domain);
								}
							//add the profile settings into the database
								$access_control_node_uuid = uuid();
								$sql = "insert into v_access_control_nodes ";
								$sql .= "(";
								$sql .= "access_control_node_uuid, ";
								$sql .= "access_control_uuid, ";
								$sql .= "node_type, ";
								$sql .= "node_cidr, ";
								$sql .= "node_domain, ";
								$sql .= "node_description ";
								$sql .= ") ";
								$sql .= "values ";
								$sql .= "( ";
								$sql .= "'".$access_control_node_uuid."', ";
								$sql .= "'".$access_control_uuid."', ";
								$sql .= "'".$node_type."', ";
								$sql .= "'".$node_cidr."', ";
								$sql .= "'".$node_domain."', ";
								$sql .= "'".$node_description."' ";
								$sql .= ")";
								//echo $sql."\n";
								$db->exec(check_sql($sql));
						}
					}
					unset($prep_statement);

				//rename the file
					if (file_exists($xml_dir.'/acl.conf.xml')) {
						rename($xml_dir.'/acl.conf.xml', $xml_dir.'/acl.conf');
					}
			}
		}

	}

?>
Add the Access Controls as the new interface for ACL Lists. 2015-08-13 07:09:07 +02:00			`<?php`
			`/*`
			`FusionPBX`
			`Version: MPL 1.1`

			`The contents of this file are subject to the Mozilla Public License Version`
			`1.1 (the "License"); you may not use this file except in compliance with`
			`the License. You may obtain a copy of the License at`
			`http://www.mozilla.org/MPL/`

			`Software distributed under the License is distributed on an "AS IS" basis,`
			`WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License`
			`for the specific language governing rights and limitations under the`
			`License.`

			`The Original Code is FusionPBX`

			`The Initial Developer of the Original Code is`
			`Mark J Crane <markjcrane@fusionpbx.com>`
Remove the lan access control list as its not needed by default. 2016-04-06 08:14:53 +02:00			`Portions created by the Initial Developer are Copyright (C) 2016`
Add the Access Controls as the new interface for ACL Lists. 2015-08-13 07:09:07 +02:00			`the Initial Developer. All Rights Reserved.`

			`Contributor(s):`
			`Mark J Crane <markjcrane@fusionpbx.com>`
			`*/`

			`//if the number of rows is 0 then read the acl xml into the database`
			`if ($domains_processed == 1) {`

			`//add the access control list to the database`
			`$sql = "select count(*) as num_rows from v_access_controls ";`
			`$prep_statement = $db->prepare($sql);`
			`if ($prep_statement) {`
			`$prep_statement->execute();`
			`$row = $prep_statement->fetch(PDO::FETCH_ASSOC);`
			`if ($row['num_rows'] == 0) {`
Fix a quote mismatch. 2015-08-20 17:23:53 +02:00			`//set the directory`
Fix the path problems for the reading the acl.conf.xml. 2015-08-20 17:06:45 +02:00			`$xml_dir = $_SESSION["switch"]["conf"]["dir"].'/autoload_configs';`
Make sure access controls is not empty. 2015-08-25 22:52:19 +02:00			`$xml_file = $xml_dir."/acl.conf.xml";`
			`$xml_file_alt = $_SERVER["DOCUMENT_ROOT"].'/'.PROJECT_PATH.'/resources/templates/conf/autoload_configs/acl.conf';`
Add the Access Controls as the new interface for ACL Lists. 2015-08-13 07:09:07 +02:00			`//load the xml and save it into an array`
Make sure access controls is not empty. 2015-08-25 22:52:19 +02:00			`if (file_exists($xml_file)) {`
			`$xml_string = file_get_contents($xml_file);`
			`}`
			`elseif (file_exists($xml_file_alt)) {`
			`$xml_string = file_get_contents(xml_file_alt);`
			`}`
			`else {`
			`$xml_string = "<configuration name=\"acl.conf\" description=\"Network Lists\">\n";`
			`$xml_string .= " <network-lists>\n";`
Fix the access control list. 2016-04-30 01:01:04 +02:00			`$xml_string .= " <list name=\"lan\" default=\"allow\">\n";`
			`$xml_string .= " <node type=\"allow\" cidr=\"192.168.42.42/32\"/>\n";`
			`$xml_string .= " </list>\n";`
Make sure access controls is not empty. 2015-08-25 22:52:19 +02:00			`$xml_string .= " <list name=\"domains\" default=\"deny\">\n";`
			`$xml_string .= " <node type=\"allow\" domain=\"".$_SESSION['domain_name']."\"/>\n";`
			`$xml_string .= " </list>\n";`
			`$xml_string .= " </network-lists>\n";`
			`$xml_string .= "</configuration>\n";`
			`}`
Add the Access Controls as the new interface for ACL Lists. 2015-08-13 07:09:07 +02:00			`$xml_object = simplexml_load_string($xml_string);`
			`$json = json_encode($xml_object);`
			`$conf_array = json_decode($json, true);`

			`//process the array`
			`foreach($conf_array['network-lists']['list'] as $list) {`
			`//get the attributes`
			`$access_control_name = $list['@attributes']['name'];`
			`$access_control_default = $list['@attributes']['default'];`

			`//insert the name, description`
			`$access_control_uuid = uuid();`
			`$sql = "insert into v_access_controls ";`
			`$sql .= "(";`
			`$sql .= "access_control_uuid, ";`
			`$sql .= "access_control_name, ";`
			`$sql .= "access_control_default ";`
			`$sql .= ") ";`
			`$sql .= "values ";`
			`$sql .= "( ";`
			`$sql .= "'".$access_control_uuid."', ";`
			`$sql .= "'".check_str($access_control_name)."', ";`
			`$sql .= "'".check_str($access_control_default)."' ";`
			`$sql .= ")";`
			`//echo $sql."\n";`
			`$db->exec(check_sql($sql));`
			`unset($sql);`

			`//normalize the array - needed because the array is inconsistent when there is only one row vs multiple`
			`if (strlen($list['node']['@attributes']['type']) > 0) {`
			`$list['node'][]['@attributes'] = $list['node']['@attributes'];`
			`unset($list['node']['@attributes']);`
			`}`

			`//add the nodes`
			`foreach ($list['node'] as $row) {`
			`//get the name and value pair`
			`$node_type = $row['@attributes']['type'];`
			`$node_cidr = $row['@attributes']['cidr'];`
			`$node_domain = $row['@attributes']['domain'];`
Add ability to the acl.conf.xml to read a description attribute. 2016-02-14 11:09:55 +01:00			`$node_description = $row['@attributes']['description'];`
Add the Access Controls as the new interface for ACL Lists. 2015-08-13 07:09:07 +02:00			`//replace $${domain}`
			`if (strlen($node_domain) > 0) {`
			`$node_domain = str_replace("\$\${domain}", $domain_name, $node_domain);`
			`}`
			`//add the profile settings into the database`
			`$access_control_node_uuid = uuid();`
			`$sql = "insert into v_access_control_nodes ";`
			`$sql .= "(";`
			`$sql .= "access_control_node_uuid, ";`
			`$sql .= "access_control_uuid, ";`
			`$sql .= "node_type, ";`
			`$sql .= "node_cidr, ";`
Add ability to the acl.conf.xml to read a description attribute. 2016-02-14 11:09:55 +01:00			`$sql .= "node_domain, ";`
			`$sql .= "node_description ";`
Add the Access Controls as the new interface for ACL Lists. 2015-08-13 07:09:07 +02:00			`$sql .= ") ";`
			`$sql .= "values ";`
			`$sql .= "( ";`
			`$sql .= "'".$access_control_node_uuid."', ";`
			`$sql .= "'".$access_control_uuid."', ";`
			`$sql .= "'".$node_type."', ";`
			`$sql .= "'".$node_cidr."', ";`
Add ability to the acl.conf.xml to read a description attribute. 2016-02-14 11:09:55 +01:00			`$sql .= "'".$node_domain."', ";`
			`$sql .= "'".$node_description."' ";`
Add the Access Controls as the new interface for ACL Lists. 2015-08-13 07:09:07 +02:00			`$sql .= ")";`
			`//echo $sql."\n";`
			`$db->exec(check_sql($sql));`
			`}`
Fix the path problems for the reading the acl.conf.xml. 2015-08-20 17:06:45 +02:00			`}`
			`unset($prep_statement);`

			`//rename the file`
Update app_defaults.php 2017-01-10 08:00:07 +01:00			`if (file_exists($xml_dir.'/acl.conf.xml')) {`
Update app_defaults.php Check to see if the file exists before renaming it. 2017-01-10 07:26:54 +01:00			`rename($xml_dir.'/acl.conf.xml', $xml_dir.'/acl.conf');`
			`}`
Add the Access Controls as the new interface for ACL Lists. 2015-08-13 07:09:07 +02:00			`}`
			`}`
Fix the path problems for the reading the acl.conf.xml. 2015-08-20 17:06:45 +02:00
Add the Access Controls as the new interface for ACL Lists. 2015-08-13 07:09:07 +02:00			`}`

Update app_defaults.php Check to see if the file exists before renaming it. 2017-01-10 07:26:54 +01:00			`?>`