2013-01-28 09:32:01 +01:00
< ? php
App :: uses ( 'AppController' , 'Controller' );
2022-12-01 13:25:36 +01:00
/**
* @ property Log $Log
*/
2018-07-19 11:48:22 +02:00
class LogsController extends AppController
{
public $components = array (
'RequestHandler' ,
'AdminCrud' => array (
'crud' => array ( 'index' )
)
);
2013-01-28 09:32:01 +01:00
2018-07-19 11:48:22 +02:00
public $paginate = array (
'limit' => 60 ,
'order' => array (
'Log.id' => 'DESC'
)
);
2013-01-28 09:32:01 +01:00
2018-07-19 11:48:22 +02:00
public function beforeFilter ()
{
parent :: beforeFilter ();
2013-01-28 09:32:01 +01:00
2020-10-23 14:56:23 +02:00
// No need for CSRF tokens for a search
2022-12-01 15:12:20 +01:00
if ( 'admin_search' === $this -> request -> params [ 'action' ]) {
2020-10-23 14:56:23 +02:00
$this -> Security -> csrfCheck = false ;
2018-07-19 11:48:22 +02:00
}
}
2013-01-28 09:32:01 +01:00
2022-12-01 10:03:22 +01:00
public function index ()
2018-07-19 11:48:22 +02:00
{
2022-06-24 12:18:52 +02:00
$paramArray = array ( 'id' , 'title' , 'created' , 'model' , 'model_id' , 'action' , 'user_id' , 'change' , 'email' , 'org' , 'description' , 'ip' );
$filterData = array (
'request' => $this -> request ,
2022-12-01 15:12:20 +01:00
'named_params' => $this -> request -> params [ 'named' ],
2022-06-24 12:18:52 +02:00
'paramArray' => $paramArray ,
'ordered_url_params' => func_get_args ()
);
$exception = false ;
$filters = $this -> _harvestParameters ( $filterData , $exception );
unset ( $filterData );
2022-12-01 13:25:36 +01:00
2018-11-23 14:11:33 +01:00
if ( $this -> _isRest ()) {
if ( $filters === false ) {
return $exception ;
}
$conditions = array ();
foreach ( $filters as $filter => $data ) {
2019-02-06 17:47:51 +01:00
if ( $filter === 'created' ) {
$tempData = $data ;
if ( ! is_array ( $data )) {
$tempData = array ( $data );
}
foreach ( $tempData as $k => $v ) {
$tempData [ $k ] = $this -> Log -> resolveTimeDelta ( $v );
}
if ( count ( $tempData ) == 1 ) {
$conditions [ 'AND' ][ 'created >=' ] = date ( " Y-m-d H:i:s " , $tempData [ 0 ]);
} else {
if ( $tempData [ 0 ] < $tempData [ 1 ]) {
$temp = $tempData [ 1 ];
$tempData [ 1 ] = $tempData [ 0 ];
$tempData [ 0 ] = $temp ;
}
$conditions [ 'AND' ][] = array ( 'created <= ' => date ( " Y-m-d H:i:s " , $tempData [ 0 ]));
$conditions [ 'AND' ][] = array ( 'created >= ' => date ( " Y-m-d H:i:s " , $tempData [ 1 ]));
}
2021-01-14 13:34:57 +01:00
} else if ( $filter !== 'limit' && $filter !== 'page' ) {
2019-02-06 17:47:51 +01:00
$data = array ( 'OR' => $data );
$conditions = $this -> Log -> generic_add_filter ( $conditions , $data , 'Log.' . $filter );
}
2018-11-23 14:11:33 +01:00
}
if ( ! $this -> _isSiteAdmin ()) {
2022-12-01 15:12:20 +01:00
if ( $this -> _isAdmin ()) {
// ORG admins can see their own org info
$orgRestriction = $this -> Auth -> user ( 'Organisation' )[ 'name' ];
$conditions [ 'Log.org' ] = $orgRestriction ;
} else {
// users can see their own info
2022-12-06 13:08:31 +01:00
$conditions [ 'Log.user_id' ] = $this -> Auth -> user ( 'id' );
2022-12-01 15:12:20 +01:00
}
2018-11-23 14:11:33 +01:00
}
$params = array (
'conditions' => $conditions ,
'recursive' => - 1
);
if ( isset ( $filters [ 'limit' ])) {
$params [ 'limit' ] = $filters [ 'limit' ];
}
if ( isset ( $filters [ 'page' ])) {
$params [ 'page' ] = $filters [ 'page' ];
}
$log_entries = $this -> Log -> find ( 'all' , $params );
return $this -> RestResponse -> viewData ( $log_entries , 'json' );
2022-12-01 15:12:20 +01:00
}
$this -> set ( 'isSearch' , 0 );
$this -> recursive = 0 ;
$validFilters = $this -> Log -> logMeta ;
if ( $this -> _isSiteAdmin ()) {
$validFilters = array_merge_recursive ( $validFilters , $this -> Log -> logMetaAdmin );
}
else if ( ! $this -> _isSiteAdmin () && $this -> _isAdmin ()) {
// ORG admins can see their own org info
$orgRestriction = $this -> Auth -> user ( 'Organisation' )[ 'name' ];
$conditions [ 'Log.org' ] = $orgRestriction ;
$this -> paginate [ 'conditions' ] = $conditions ;
2018-11-23 14:11:33 +01:00
} else {
2022-12-01 15:12:20 +01:00
// users can see their own info
$conditions [ 'Log.email' ] = $this -> Auth -> user ( 'email' );
$this -> paginate [ 'conditions' ] = $conditions ;
}
if ( isset ( $this -> params [ 'named' ][ 'filter' ]) && in_array ( $this -> params [ 'named' ][ 'filter' ], array_keys ( $validFilters ))) {
$this -> paginate [ 'conditions' ][ 'Log.action' ] = $validFilters [ $this -> params [ 'named' ][ 'filter' ]][ 'values' ];
}
foreach ( $filters as $key => $value ) {
if ( $key === 'created' ) {
$key = 'created >=' ;
2022-06-24 12:18:52 +02:00
}
2022-12-01 15:12:20 +01:00
$this -> paginate [ 'conditions' ][ " Log. $key " ] = $value ;
2018-11-23 14:11:33 +01:00
}
2022-12-01 15:12:20 +01:00
$this -> set ( 'validFilters' , $validFilters );
$this -> set ( 'filter' , isset ( $this -> params [ 'named' ][ 'filter' ]) ? $this -> params [ 'named' ][ 'filter' ] : false );
$this -> set ( 'list' , $this -> paginate ());
2018-07-19 11:48:22 +02:00
}
2013-01-28 09:32:01 +01:00
2022-12-01 10:03:22 +01:00
public function admin_index ()
{
$this -> view = 'index' ;
2022-12-01 13:25:36 +01:00
return $this -> index ();
2022-12-01 10:03:22 +01:00
}
2018-07-19 11:48:22 +02:00
// Shows a minimalistic history for the currently selected event
2021-01-20 09:20:22 +01:00
public function event_index ( $id , $org = null )
2018-07-19 11:48:22 +02:00
{
$this -> loadModel ( 'Event' );
$event = $this -> Event -> fetchEvent ( $this -> Auth -> user (), array (
'eventid' => $id ,
'sgReferenceOnly' => 1 ,
2020-07-02 15:47:16 +02:00
'deleted' => [ 0 , 1 ],
2020-12-27 15:36:33 +01:00
'deleted_proposals' => 1 ,
'noSightings' => true ,
2021-01-14 13:34:57 +01:00
'noEventReports' => true ,
2021-01-22 13:01:23 +01:00
'includeEventCorrelations' => false ,
'excludeGalaxy' => true ,
2018-07-19 11:48:22 +02:00
));
if ( empty ( $event )) {
2019-08-14 21:27:05 +02:00
throw new NotFoundException ( 'Invalid event.' );
2018-07-19 11:48:22 +02:00
}
$event = $event [ 0 ];
$attribute_ids = array ();
$object_ids = array ();
2021-08-23 16:09:52 +02:00
$proposal_ids = array_column ( $event [ 'ShadowAttribute' ], 'id' );
2018-07-19 11:48:22 +02:00
if ( ! empty ( $event [ 'Attribute' ])) {
foreach ( $event [ 'Attribute' ] as $aa ) {
$attribute_ids [] = $aa [ 'id' ];
if ( ! empty ( $aa [ 'ShadowAttribute' ])) {
foreach ( $aa [ 'ShadowAttribute' ] as $sa ) {
$proposal_ids [] = $sa [ 'id' ];
}
}
}
unset ( $event [ 'Attribute' ]);
}
if ( ! empty ( $event [ 'Object' ])) {
foreach ( $event [ 'Object' ] as $ob ) {
foreach ( $ob [ 'Attribute' ] as $aa ) {
$attribute_ids [] = $aa [ 'id' ];
if ( ! empty ( $aa [ 'ShadowAttribute' ])) {
foreach ( $aa [ 'ShadowAttribute' ] as $sa ) {
$proposal_ids [] = $sa [ 'id' ];
}
}
}
$object_ids [] = $ob [ 'id' ];
}
unset ( $event [ 'Object' ]);
}
$conditions = array ();
$conditions [ 'OR' ][] = array (
'AND' => array (
'model' => 'Event' ,
'model_id' => $event [ 'Event' ][ 'id' ]
)
);
if ( ! empty ( $attribute_ids )) {
$conditions [ 'OR' ][] = array (
'AND' => array (
'model' => 'Attribute' ,
'model_id' => $attribute_ids
)
);
}
if ( ! empty ( $proposal_ids )) {
$conditions [ 'OR' ][] = array (
'AND' => array (
'model' => 'ShadowAttribute' ,
'model_id' => $proposal_ids
)
);
}
if ( ! empty ( $object_ids )) {
$conditions [ 'OR' ][] = array (
'AND' => array (
'model' => 'MispObject' ,
'model_id' => $object_ids
)
);
}
2013-01-28 09:32:01 +01:00
2021-01-20 09:20:22 +01:00
if ( $org ) {
$conditions [ 'org' ] = $org ;
}
2021-01-14 13:34:57 +01:00
$this -> paginate [ 'fields' ] = array ( 'title' , 'created' , 'model' , 'model_id' , 'action' , 'change' , 'org' , 'email' );
$this -> paginate [ 'conditions' ] = $conditions ;
2018-07-19 11:48:22 +02:00
$list = $this -> paginate ();
if ( ! $this -> _isSiteAdmin ()) {
$this -> loadModel ( 'User' );
2021-01-14 13:34:57 +01:00
$orgEmails = $this -> User -> find ( 'column' , array (
'conditions' => array ( 'User.org_id' => $this -> Auth -> user ( 'org_id' )),
'fields' => array ( 'User.email' )
2018-07-19 11:48:22 +02:00
));
foreach ( $list as $k => $item ) {
2021-01-20 09:20:22 +01:00
if ( ! in_array ( $item [ 'Log' ][ 'email' ], $orgEmails , true )) {
2018-07-19 11:48:22 +02:00
$list [ $k ][ 'Log' ][ 'email' ] = '' ;
}
}
}
if ( $this -> _isRest ()) {
2021-01-14 13:34:57 +01:00
$list = array ( 'Log' => array_column ( $list , 'Log' ));
2018-07-19 11:48:22 +02:00
return $this -> RestResponse -> viewData ( $list , $this -> response -> type ());
}
2021-01-14 13:34:57 +01:00
// send unauthorised people away. Only site admins and users of the same org may see events that are "your org only". Everyone else can proceed for all other levels of distribution
$mineOrAdmin = true ;
if ( ! $this -> _isSiteAdmin () && $event [ 'Event' ][ 'org_id' ] != $this -> Auth -> user ( 'org_id' )) {
$mineOrAdmin = false ;
}
$mayModify = false ;
if ( $mineOrAdmin && $this -> userRole [ 'perm_modify' ]) {
$mayModify = true ;
}
$this -> set ( 'published' , $event [ 'Event' ][ 'published' ]);
$this -> set ( 'event' , $event );
$this -> set ( 'list' , $list );
$this -> set ( 'eventId' , $id );
$this -> set ( 'mayModify' , $mayModify );
2018-07-19 11:48:22 +02:00
}
2018-01-26 10:11:23 +01:00
2018-07-19 11:48:22 +02:00
public function admin_search ( $new = false )
{
$orgRestriction = null ;
if ( $this -> _isSiteAdmin ()) {
$orgRestriction = false ;
} else {
$orgRestriction = $this -> Auth -> user ( 'Organisation' )[ 'name' ];
}
$this -> set ( 'orgRestriction' , $orgRestriction );
$validFilters = $this -> Log -> logMeta ;
if ( $this -> _isSiteAdmin ()) {
$validFilters = array_merge_recursive ( $validFilters , $this -> Log -> logMetaAdmin );
}
$this -> set ( 'validFilters' , $validFilters );
$this -> set ( 'filters' , false );
if ( $new !== false ) {
$this -> set ( 'actionDefinitions' , $this -> { $this -> defaultModel } -> actionDefinitions );
2013-01-28 09:32:01 +01:00
2018-07-19 11:48:22 +02:00
// reset the paginate_conditions
2023-10-02 15:30:17 +02:00
//$this->Session->write('paginate_conditions_log', array());
2018-07-19 11:48:22 +02:00
if ( $this -> request -> is ( 'post' )) {
$filters [ 'email' ] = $this -> request -> data [ 'Log' ][ 'email' ];
if ( ! $orgRestriction ) {
$filters [ 'org' ] = $this -> request -> data [ 'Log' ][ 'org' ];
} else {
$filters [ 'org' ] = $this -> Auth -> user ( 'Organisation' )[ 'name' ];
}
$filters [ 'action' ] = $this -> request -> data [ 'Log' ][ 'action' ];
$filters [ 'model' ] = $this -> request -> data [ 'Log' ][ 'model' ];
$filters [ 'model_id' ] = $this -> request -> data [ 'Log' ][ 'model_id' ];
$filters [ 'title' ] = $this -> request -> data [ 'Log' ][ 'title' ];
2023-09-14 14:14:51 +02:00
if ( ! empty ( $this -> request -> data [ 'Log' ][ 'from' ])) {
$filters [ 'from' ] = $this -> request -> data [ 'Log' ][ 'from' ];
}
if ( ! empty ( $this -> request -> data [ 'Log' ][ 'to' ])) {
$filters [ 'to' ] = $this -> request -> data [ 'Log' ][ 'to' ];
}
2018-07-19 11:48:22 +02:00
$filters [ 'change' ] = $this -> request -> data [ 'Log' ][ 'change' ];
if ( Configure :: read ( 'MISP.log_client_ip' )) {
$filters [ 'ip' ] = $this -> request -> data [ 'Log' ][ 'ip' ];
}
2013-01-28 09:32:01 +01:00
2018-07-19 11:48:22 +02:00
// for info on what was searched for
$this -> set ( 'emailSearch' , $filters [ 'email' ]);
$this -> set ( 'orgSearch' , $filters [ 'org' ]);
$this -> set ( 'actionSearch' , $filters [ 'action' ]);
$this -> set ( 'modelSearch' , $filters [ 'model' ]);
$this -> set ( 'model_idSearch' , $filters [ 'model_id' ]);
$this -> set ( 'titleSearch' , $filters [ 'title' ]);
2023-09-14 14:14:51 +02:00
$this -> set ( 'fromSearch' , $filters [ 'from' ] ? ? null );
$this -> set ( 'toSearch' , $filters [ 'to' ] ? ? null );
2018-07-19 11:48:22 +02:00
$this -> set ( 'changeSearch' , $filters [ 'change' ]);
if ( Configure :: read ( 'MISP.log_client_ip' )) {
$this -> set ( 'ipSearch' , $filters [ 'ip' ]);
}
$this -> set ( 'isSearch' , 1 );
2013-01-28 09:32:01 +01:00
2018-07-19 11:48:22 +02:00
// search the db
$conditions = $this -> __buildSearchConditions ( $filters );
$this -> { $this -> defaultModel } -> recursive = 0 ;
$this -> paginate = array (
'limit' => 60 ,
'conditions' => $conditions ,
'order' => array ( 'Log.id' => 'DESC' )
);
2019-06-11 11:05:34 +02:00
$list = $this -> paginate ();
if ( empty ( $this -> Auth -> user ( 'Role' )[ 'perm_site_admin' ])) {
$list = $this -> Log -> filterSiteAdminSensitiveLogs ( $list );
}
$this -> set ( 'list' , $list );
2013-01-28 09:32:01 +01:00
2020-04-14 10:06:55 +02:00
if ( $this -> _isRest ()) {
return $this -> RestResponse -> viewData ( $list , $this -> response -> type ());
} else {
// and store into session
$this -> Session -> write ( 'paginate_conditions_log' , $this -> paginate );
$this -> Session -> write ( 'paginate_conditions_log_email' , $filters [ 'email' ]);
$this -> Session -> write ( 'paginate_conditions_log_org' , $filters [ 'org' ]);
$this -> Session -> write ( 'paginate_conditions_log_action' , $filters [ 'action' ]);
$this -> Session -> write ( 'paginate_conditions_log_model' , $filters [ 'model' ]);
$this -> Session -> write ( 'paginate_conditions_log_model_id' , $filters [ 'model_id' ]);
$this -> Session -> write ( 'paginate_conditions_log_title' , $filters [ 'title' ]);
$this -> Session -> write ( 'paginate_conditions_log_change' , $filters [ 'change' ]);
2023-10-02 15:30:17 +02:00
$this -> Session -> write ( 'paginate_conditions_log_from' , $filters [ 'from' ] ? ? null );
$this -> Session -> write ( 'paginate_conditions_log_to' , $filters [ 'to' ] ? ? null );
2020-04-14 10:06:55 +02:00
if ( Configure :: read ( 'MISP.log_client_ip' )) {
$this -> Session -> write ( 'paginate_conditions_log_ip' , $filters [ 'ip' ]);
}
// set the same view as the index page
2022-12-01 10:03:22 +01:00
$this -> render ( 'index' );
2020-04-14 10:06:55 +02:00
}
2018-07-19 11:48:22 +02:00
} else {
// get from Session
$filters [ 'email' ] = $this -> Session -> read ( 'paginate_conditions_log_email' );
$filters [ 'org' ] = $this -> Session -> read ( 'paginate_conditions_log_org' );
$filters [ 'action' ] = $this -> Session -> read ( 'paginate_conditions_log_action' );
$filters [ 'model' ] = $this -> Session -> read ( 'paginate_conditions_log_model' );
$filters [ 'model_id' ] = $this -> Session -> read ( 'paginate_conditions_log_model_id' );
$filters [ 'title' ] = $this -> Session -> read ( 'paginate_conditions_log_title' );
$filters [ 'change' ] = $this -> Session -> read ( 'paginate_conditions_log_change' );
2023-10-02 15:30:17 +02:00
$filters [ 'from' ] = $this -> Session -> read ( 'paginate_conditions_log_from' ) ? ? null ;
$filters [ 'to' ] = $this -> Session -> read ( 'paginate_conditions_log_to' ) ? ? null ;
2018-07-19 11:48:22 +02:00
if ( Configure :: read ( 'MISP.log_client_ip' )) {
$filters [ 'ip' ] = $this -> Session -> read ( 'paginate_conditions_log_ip' );
}
// for info on what was searched for
$this -> set ( 'emailSearch' , $filters [ 'email' ]);
$this -> set ( 'orgSearch' , $filters [ 'org' ]);
$this -> set ( 'actionSearch' , $filters [ 'action' ]);
$this -> set ( 'modelSearch' , $filters [ 'model' ]);
$this -> set ( 'model_idSearch' , $filters [ 'model_id' ]);
$this -> set ( 'titleSearch' , $filters [ 'title' ]);
$this -> set ( 'changeSearch' , $filters [ 'change' ]);
2023-09-14 14:14:51 +02:00
$this -> set ( 'changeSearch' , $filters [ 'from' ] ? ? null );
$this -> set ( 'changeSearch' , $filters [ 'to' ] ? ? null );
2018-07-19 11:48:22 +02:00
if ( Configure :: read ( 'MISP.log_client_ip' )) {
$this -> set ( 'ipSearch' , $filters [ 'ip' ]);
}
$this -> set ( 'isSearch' , 1 );
2016-06-04 01:08:16 +02:00
2018-07-19 11:48:22 +02:00
// re-get pagination
$this -> { $this -> defaultModel } -> recursive = 0 ;
2023-10-02 15:30:17 +02:00
$this -> paginate = array_replace_recursive ( $this -> paginate , $this -> Session -> read ( 'paginate_conditions_log' ));
2018-07-19 11:48:22 +02:00
if ( ! isset ( $this -> paginate [ 'order' ])) {
$this -> paginate [ 'order' ] = array ( 'Log.id' => 'DESC' );
}
$conditions = $this -> __buildSearchConditions ( $filters );
$this -> paginate [ 'conditions' ] = $conditions ;
2019-06-11 11:05:34 +02:00
$list = $this -> paginate ();
if ( empty ( $this -> Auth -> user ( 'Role' )[ 'perm_site_admin' ])) {
$list = $this -> Log -> filterSiteAdminSensitiveLogs ( $list );
}
$this -> set ( 'list' , $list );
2016-06-04 01:08:16 +02:00
2018-07-19 11:48:22 +02:00
// set the same view as the index page
2023-04-18 16:58:02 +02:00
$this -> render ( 'index' );
2018-07-19 11:48:22 +02:00
}
} else {
// no search keyword is given, show the search form
2016-06-04 01:08:16 +02:00
2018-07-19 11:48:22 +02:00
// combobox for actions
$actions = array ( '' => array ( 'ALL' => 'ALL' ), 'actions' => array ());
$actions [ 'actions' ] = array_merge ( $actions [ 'actions' ], $this -> _arrayToValuesIndexArray ( $this -> { $this -> defaultModel } -> validate [ 'action' ][ 'rule' ][ 1 ]));
$this -> set ( 'actions' , $actions );
2016-06-04 01:08:16 +02:00
2018-07-19 11:48:22 +02:00
// combobox for models
2020-11-19 15:47:39 +01:00
$models = [
'Attribute' ,
'Allowedlist' ,
'AuthKey' ,
'Event' ,
'EventBlocklist' ,
'EventTag' ,
'Feed' ,
'DecayingModel' ,
2021-02-12 15:05:11 +01:00
'EventGraph' ,
2021-02-12 15:13:16 +01:00
'EventReport' ,
2020-11-19 15:47:39 +01:00
'MispObject' ,
'Organisation' ,
'Post' ,
'Regexp' ,
'Role' ,
'Server' ,
'ShadowAttribute' ,
'SharingGroup' ,
'Tag' ,
'Task' ,
'Taxonomy' ,
'Template' ,
'Thread' ,
'User' ,
'Galaxy' ,
'GalaxyCluster' ,
'GalaxyClusterRelation' ,
2022-06-24 11:22:26 +02:00
'Workflow' ,
2020-11-19 15:47:39 +01:00
];
sort ( $models );
2018-07-19 11:48:22 +02:00
$models = array ( '' => 'ALL' ) + $this -> _arrayToValuesIndexArray ( $models );
$this -> set ( 'models' , $models );
$this -> set ( 'actionDefinitions' , $this -> { $this -> defaultModel } -> actionDefinitions );
}
}
2016-06-04 01:08:16 +02:00
2018-07-19 11:48:22 +02:00
private function __buildSearchConditions ( $filters )
{
$conditions = array ();
if ( isset ( $filters [ 'email' ]) && ! empty ( $filters [ 'email' ])) {
$conditions [ 'LOWER(Log.email) LIKE' ] = '%' . strtolower ( $filters [ 'email' ]) . '%' ;
}
if ( isset ( $filters [ 'org' ]) && ! empty ( $filters [ 'org' ])) {
$conditions [ 'LOWER(Log.org) LIKE' ] = '%' . strtolower ( $filters [ 'org' ]) . '%' ;
}
if ( $filters [ 'action' ] != 'ALL' ) {
$conditions [ 'Log.action' ] = $filters [ 'action' ];
}
if ( $filters [ 'model' ] != '' ) {
$conditions [ 'Log.model' ] = $filters [ 'model' ];
}
if ( $filters [ 'model_id' ] != '' ) {
$conditions [ 'Log.model_id' ] = $filters [ 'model_id' ];
}
if ( isset ( $filters [ 'title' ]) && ! empty ( $filters [ 'title' ])) {
$conditions [ 'LOWER(Log.title) LIKE' ] = '%' . strtolower ( $filters [ 'title' ]) . '%' ;
}
if ( isset ( $filters [ 'change' ]) && ! empty ( $filters [ 'change' ])) {
$conditions [ 'LOWER(Log.change) LIKE' ] = '%' . strtolower ( $filters [ 'change' ]) . '%' ;
}
2023-09-14 14:14:51 +02:00
if ( isset ( $filters [ 'from' ]) && ! empty ( $filters [ 'from' ])) {
$conditions [ 'Log.created >=' ] = $filters [ 'from' ];
}
if ( isset ( $filters [ 'to' ]) && ! empty ( $filters [ 'to' ])) {
$conditions [ 'Log.created <=' ] = $filters [ 'to' ];
}
2018-07-19 11:48:22 +02:00
if ( Configure :: read ( 'MISP.log_client_ip' ) && isset ( $filters [ 'ip' ]) && ! empty ( $filters [ 'ip' ])) {
$conditions [ 'Log.ip LIKE' ] = '%' . $filters [ 'ip' ] . '%' ;
}
return $conditions ;
}
2014-01-09 10:04:53 +01:00
2018-07-19 11:48:22 +02:00
public function returnDates ( $org = 'all' )
{
if ( ! $this -> Auth -> user ( 'Role' )[ 'perm_sharing_group' ] && ! empty ( Configure :: read ( 'Security.hide_organisation_index_from_users' ))) {
if ( $org !== 'all' && $org !== $this -> Auth -> user ( 'Organisation' )[ 'name' ]) {
throw new MethodNotAllowedException ( 'Invalid organisation.' );
}
}
$data = $this -> Log -> returnDates ( $org );
$this -> set ( 'data' , $data );
$this -> set ( '_serialize' , 'data' );
}
2016-06-04 01:08:16 +02:00
2018-07-19 11:48:22 +02:00
public function pruneUpdateLogs ()
{
if ( ! $this -> request -> is ( 'post' )) {
//throw new MethodNotAllowedException('This functionality is only accessible via POST requests');
}
$this -> Log -> pruneUpdateLogsRouter ( $this -> Auth -> user ());
if ( Configure :: read ( 'MISP.background_jobs' )) {
$this -> Flash -> success ( 'The pruning job is queued.' );
} else {
$this -> Flash -> success ( 'The pruning is complete.' );
}
$this -> redirect ( $this -> referer ());
}
2017-01-30 09:16:43 +01:00
2018-07-19 11:48:22 +02:00
public function testForStolenAttributes ()
{
$logs = $this -> Log -> find ( 'list' , array (
'recursive' => - 1 ,
'conditions' => array (
'Log.model' => 'Attribute' ,
'Log.action' => 'edit'
),
'fields' => array ( 'Log.title' )
));
$ids = array ();
foreach ( $logs as $log ) {
preg_match ( '/Attribute \(([0-9]+?)\)/' , $log , $attribute_id );
preg_match ( '/Event \(([0-9]+?)\)/' , $log , $event_id );
if ( ! isset ( $attribute_id [ 1 ])) {
continue ;
}
if ( empty ( $ids [ $attribute_id [ 1 ]]) || ! in_array ( $event_id [ 1 ], $ids [ $attribute_id [ 1 ]])) {
$ids [ $attribute_id [ 1 ]][] = $event_id [ 1 ];
}
}
$issues = array ();
foreach ( $ids as $aid => $eids ) {
if ( count ( $eids ) > 1 ) {
$issues [ $aid ] = $eids ;
}
}
$this -> set ( 'issues' , $issues );
}
2013-01-28 09:32:01 +01:00
}
