2025-10-08 14:23:07 +03:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
namespace App\Controllers;
|
|
|
|
|
|
|
|
|
|
use Core\Controller;
|
|
|
|
|
use App\Models\NotificationGroup;
|
|
|
|
|
use App\Models\NotificationChannel;
|
|
|
|
|
|
|
|
|
|
class NotificationGroupController extends Controller
|
|
|
|
|
{
|
|
|
|
|
private NotificationGroup $groupModel;
|
|
|
|
|
private NotificationChannel $channelModel;
|
|
|
|
|
|
|
|
|
|
public function __construct()
|
|
|
|
|
{
|
|
|
|
|
$this->groupModel = new NotificationGroup();
|
|
|
|
|
$this->channelModel = new NotificationChannel();
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
/**
|
|
|
|
|
* Check group access based on isolation mode
|
|
|
|
|
*/
|
|
|
|
|
private function checkGroupAccess(int $id): ?array
|
|
|
|
|
{
|
|
|
|
|
$userId = \Core\Auth::id();
|
|
|
|
|
$settingModel = new \App\Models\Setting();
|
|
|
|
|
$isolationMode = $settingModel->getValue('user_isolation_mode', 'shared');
|
|
|
|
|
|
|
|
|
|
if ($isolationMode === 'isolated') {
|
|
|
|
|
return $this->groupModel->getWithDetails($id, $userId);
|
|
|
|
|
} else {
|
|
|
|
|
return $this->groupModel->getWithDetails($id);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-08 14:23:07 +03:00
|
|
|
public function index()
|
|
|
|
|
{
|
2025-10-20 17:04:13 +03:00
|
|
|
// Get current user and isolation mode
|
|
|
|
|
$userId = \Core\Auth::id();
|
|
|
|
|
$settingModel = new \App\Models\Setting();
|
|
|
|
|
$isolationMode = $settingModel->getValue('user_isolation_mode', 'shared');
|
|
|
|
|
|
2025-10-20 18:13:57 +03:00
|
|
|
// Get groups based on isolation mode
|
|
|
|
|
if ($isolationMode === 'isolated') {
|
|
|
|
|
$groups = $this->groupModel->getAllWithChannelCount($userId);
|
|
|
|
|
} else {
|
|
|
|
|
$groups = $this->groupModel->getAllWithChannelCount();
|
|
|
|
|
}
|
2025-10-20 17:04:13 +03:00
|
|
|
|
|
|
|
|
// Get users for transfer functionality (admin only)
|
|
|
|
|
$users = [];
|
2025-10-20 17:40:43 +03:00
|
|
|
if (\Core\Auth::isAdmin()) {
|
2025-10-20 17:04:13 +03:00
|
|
|
$userModel = new \App\Models\User();
|
|
|
|
|
$users = $userModel->all();
|
|
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
|
|
|
|
|
$this->view('groups/index', [
|
|
|
|
|
'groups' => $groups,
|
2025-10-20 17:04:13 +03:00
|
|
|
'users' => $users,
|
2025-10-08 14:23:07 +03:00
|
|
|
'title' => 'Notification Groups'
|
|
|
|
|
]);
|
|
|
|
|
}
|
|
|
|
|
|
Add import/export and update system
Implement CSV/JSON import and export for domains, notification groups and tags (with masking for sensitive channel data), including size/format validation, in-memory CSV building, and logging. Add tag transfer and bulk transfer actions (admin-only). Introduce a new update system: Add UpdateController and UpdateService, migration 025_add_update_system_v1.1.3.sql, and installer changes to include the new migration and version handling; provide endpoints to check, apply, rollback and configure updates. Update helpers and UI bits: add getUpdateBadgeInfo in LayoutHelper, update notification icons/redirects, and add getMaxUploadSize in ViewHelper. Misc: add NotificationGroup::findByName, tweak .gitignore backups path, and update related views and routes.
2026-02-11 17:43:23 +02:00
|
|
|
/**
|
|
|
|
|
* Export notification groups with channels as CSV or JSON (secrets masked)
|
|
|
|
|
*/
|
|
|
|
|
public function export()
|
|
|
|
|
{
|
|
|
|
|
$logger = new \App\Services\Logger('export');
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
$userId = \Core\Auth::id();
|
|
|
|
|
$settingModel = new \App\Models\Setting();
|
|
|
|
|
$isolationMode = $settingModel->getValue('user_isolation_mode', 'shared');
|
|
|
|
|
$format = $_GET['format'] ?? 'csv';
|
|
|
|
|
$logger->info("Groups export started", ['format' => $format, 'user_id' => $userId]);
|
|
|
|
|
|
|
|
|
|
if (!in_array($format, ['csv', 'json'])) {
|
|
|
|
|
$_SESSION['error'] = 'Invalid export format';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Get groups
|
|
|
|
|
if ($isolationMode === 'isolated') {
|
|
|
|
|
$groups = $this->groupModel->getAllWithChannelCount($userId);
|
|
|
|
|
} else {
|
|
|
|
|
$groups = $this->groupModel->getAllWithChannelCount();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$exportData = [];
|
|
|
|
|
foreach ($groups as $group) {
|
|
|
|
|
$channels = $this->channelModel->getByGroupId($group['id']);
|
|
|
|
|
$maskedChannels = [];
|
|
|
|
|
foreach ($channels as $ch) {
|
|
|
|
|
$config = json_decode($ch['channel_config'], true) ?? [];
|
|
|
|
|
$maskedConfig = $this->maskChannelConfig($ch['channel_type'], $config);
|
|
|
|
|
$maskedChannels[] = [
|
|
|
|
|
'channel_type' => $ch['channel_type'],
|
|
|
|
|
'channel_config' => $maskedConfig,
|
|
|
|
|
'is_active' => (bool)$ch['is_active']
|
|
|
|
|
];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$exportData[] = [
|
|
|
|
|
'group_name' => $group['name'],
|
|
|
|
|
'group_description' => $group['description'] ?? '',
|
|
|
|
|
'channels' => $maskedChannels
|
|
|
|
|
];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$date = date('Y-m-d');
|
|
|
|
|
$filename = "notification_groups_export_{$date}";
|
|
|
|
|
|
|
|
|
|
// Clean any prior output buffers to prevent header conflicts
|
|
|
|
|
while (ob_get_level()) {
|
|
|
|
|
ob_end_clean();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($format === 'json') {
|
|
|
|
|
header('Content-Type: application/json');
|
|
|
|
|
header("Content-Disposition: attachment; filename=\"{$filename}.json\"");
|
|
|
|
|
header('Cache-Control: no-cache, must-revalidate');
|
|
|
|
|
header('Pragma: no-cache');
|
|
|
|
|
echo json_encode($exportData, JSON_PRETTY_PRINT | JSON_UNESCAPED_UNICODE);
|
|
|
|
|
} else {
|
|
|
|
|
// Build CSV in memory — flatten groups with channels into rows
|
|
|
|
|
$csvRows = [];
|
|
|
|
|
foreach ($exportData as $group) {
|
|
|
|
|
if (empty($group['channels'])) {
|
|
|
|
|
$csvRows[] = ['group_name' => $group['group_name'], 'group_description' => $group['group_description'], 'channel_type' => '', 'channel_config' => '', 'is_active' => ''];
|
|
|
|
|
} else {
|
|
|
|
|
foreach ($group['channels'] as $ch) {
|
|
|
|
|
$csvRows[] = [
|
|
|
|
|
'group_name' => $group['group_name'],
|
|
|
|
|
'group_description' => $group['group_description'],
|
|
|
|
|
'channel_type' => $ch['channel_type'],
|
|
|
|
|
'channel_config' => json_encode($ch['channel_config']),
|
|
|
|
|
'is_active' => $ch['is_active'] ? '1' : '0'
|
|
|
|
|
];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$csvContent = $this->buildCsv($csvRows, ['group_name', 'group_description', 'channel_type', 'channel_config', 'is_active']);
|
|
|
|
|
$logger->info("CSV content built", ['bytes' => strlen($csvContent)]);
|
|
|
|
|
|
|
|
|
|
header('Content-Type: text/csv; charset=utf-8');
|
|
|
|
|
header("Content-Disposition: attachment; filename=\"{$filename}.csv\"");
|
|
|
|
|
header('Content-Length: ' . strlen($csvContent));
|
|
|
|
|
header('Cache-Control: no-cache, must-revalidate');
|
|
|
|
|
header('Pragma: no-cache');
|
|
|
|
|
echo $csvContent;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$logger->info("Groups export completed successfully");
|
|
|
|
|
exit;
|
|
|
|
|
} catch (\Throwable $e) {
|
|
|
|
|
$logger->error("Groups export failed", [
|
|
|
|
|
'error' => $e->getMessage(),
|
|
|
|
|
'file' => $e->getFile(),
|
|
|
|
|
'line' => $e->getLine()
|
|
|
|
|
]);
|
|
|
|
|
$_SESSION['error'] = 'Export failed: ' . $e->getMessage();
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Build CSV string in memory from array data
|
|
|
|
|
*/
|
|
|
|
|
private function buildCsv(array $rows, array $headers): string
|
|
|
|
|
{
|
|
|
|
|
$handle = fopen('php://temp', 'r+');
|
|
|
|
|
fputcsv($handle, $headers, ',', '"', '\\');
|
|
|
|
|
foreach ($rows as $row) {
|
|
|
|
|
fputcsv($handle, array_values($row), ',', '"', '\\');
|
|
|
|
|
}
|
|
|
|
|
rewind($handle);
|
|
|
|
|
$csv = stream_get_contents($handle);
|
|
|
|
|
fclose($handle);
|
|
|
|
|
return $csv;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Import notification groups from CSV or JSON file
|
|
|
|
|
*/
|
|
|
|
|
public function import()
|
|
|
|
|
{
|
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$this->verifyCsrf('/groups');
|
|
|
|
|
|
2026-03-02 11:17:58 +02:00
|
|
|
$logger = new \App\Services\Logger('import');
|
|
|
|
|
$userId = \Core\Auth::id();
|
|
|
|
|
$logger->info('Notification groups import started', ['user_id' => $userId]);
|
|
|
|
|
|
Add import/export and update system
Implement CSV/JSON import and export for domains, notification groups and tags (with masking for sensitive channel data), including size/format validation, in-memory CSV building, and logging. Add tag transfer and bulk transfer actions (admin-only). Introduce a new update system: Add UpdateController and UpdateService, migration 025_add_update_system_v1.1.3.sql, and installer changes to include the new migration and version handling; provide endpoints to check, apply, rollback and configure updates. Update helpers and UI bits: add getUpdateBadgeInfo in LayoutHelper, update notification icons/redirects, and add getMaxUploadSize in ViewHelper. Misc: add NotificationGroup::findByName, tweak .gitignore backups path, and update related views and routes.
2026-02-11 17:43:23 +02:00
|
|
|
$validChannelTypes = ['email', 'telegram', 'discord', 'slack', 'mattermost', 'webhook', 'pushover'];
|
|
|
|
|
|
|
|
|
|
if (!isset($_FILES['import_file']) || $_FILES['import_file']['error'] !== UPLOAD_ERR_OK) {
|
2026-03-02 11:17:58 +02:00
|
|
|
$logger->warning('No valid file uploaded for groups import');
|
Add import/export and update system
Implement CSV/JSON import and export for domains, notification groups and tags (with masking for sensitive channel data), including size/format validation, in-memory CSV building, and logging. Add tag transfer and bulk transfer actions (admin-only). Introduce a new update system: Add UpdateController and UpdateService, migration 025_add_update_system_v1.1.3.sql, and installer changes to include the new migration and version handling; provide endpoints to check, apply, rollback and configure updates. Update helpers and UI bits: add getUpdateBadgeInfo in LayoutHelper, update notification icons/redirects, and add getMaxUploadSize in ViewHelper. Misc: add NotificationGroup::findByName, tweak .gitignore backups path, and update related views and routes.
2026-02-11 17:43:23 +02:00
|
|
|
$_SESSION['error'] = 'Please select a valid file to import';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$file = $_FILES['import_file'];
|
2026-03-02 11:17:58 +02:00
|
|
|
$logger->info('Import file received', [
|
|
|
|
|
'filename' => $file['name'],
|
|
|
|
|
'size' => $file['size']
|
|
|
|
|
]);
|
Add import/export and update system
Implement CSV/JSON import and export for domains, notification groups and tags (with masking for sensitive channel data), including size/format validation, in-memory CSV building, and logging. Add tag transfer and bulk transfer actions (admin-only). Introduce a new update system: Add UpdateController and UpdateService, migration 025_add_update_system_v1.1.3.sql, and installer changes to include the new migration and version handling; provide endpoints to check, apply, rollback and configure updates. Update helpers and UI bits: add getUpdateBadgeInfo in LayoutHelper, update notification icons/redirects, and add getMaxUploadSize in ViewHelper. Misc: add NotificationGroup::findByName, tweak .gitignore backups path, and update related views and routes.
2026-02-11 17:43:23 +02:00
|
|
|
|
|
|
|
|
if ($file['size'] > 2097152) {
|
2026-03-02 11:17:58 +02:00
|
|
|
$logger->warning('Import file too large', ['size' => $file['size']]);
|
Add import/export and update system
Implement CSV/JSON import and export for domains, notification groups and tags (with masking for sensitive channel data), including size/format validation, in-memory CSV building, and logging. Add tag transfer and bulk transfer actions (admin-only). Introduce a new update system: Add UpdateController and UpdateService, migration 025_add_update_system_v1.1.3.sql, and installer changes to include the new migration and version handling; provide endpoints to check, apply, rollback and configure updates. Update helpers and UI bits: add getUpdateBadgeInfo in LayoutHelper, update notification icons/redirects, and add getMaxUploadSize in ViewHelper. Misc: add NotificationGroup::findByName, tweak .gitignore backups path, and update related views and routes.
2026-02-11 17:43:23 +02:00
|
|
|
$_SESSION['error'] = 'File is too large. Maximum size is 2MB';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$ext = strtolower(pathinfo($file['name'], PATHINFO_EXTENSION));
|
|
|
|
|
if (!in_array($ext, ['csv', 'json'])) {
|
2026-03-02 11:17:58 +02:00
|
|
|
$logger->warning('Invalid file type for groups import', ['extension' => $ext]);
|
Add import/export and update system
Implement CSV/JSON import and export for domains, notification groups and tags (with masking for sensitive channel data), including size/format validation, in-memory CSV building, and logging. Add tag transfer and bulk transfer actions (admin-only). Introduce a new update system: Add UpdateController and UpdateService, migration 025_add_update_system_v1.1.3.sql, and installer changes to include the new migration and version handling; provide endpoints to check, apply, rollback and configure updates. Update helpers and UI bits: add getUpdateBadgeInfo in LayoutHelper, update notification icons/redirects, and add getMaxUploadSize in ViewHelper. Misc: add NotificationGroup::findByName, tweak .gitignore backups path, and update related views and routes.
2026-02-11 17:43:23 +02:00
|
|
|
$_SESSION['error'] = 'Invalid file type. Please upload a CSV or JSON file';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$content = file_get_contents($file['tmp_name']);
|
|
|
|
|
$settingModel = new \App\Models\Setting();
|
|
|
|
|
$isolationMode = $settingModel->getValue('user_isolation_mode', 'shared');
|
|
|
|
|
|
|
|
|
|
$groupsCreated = 0;
|
|
|
|
|
$channelsCreated = 0;
|
|
|
|
|
$groupsSkipped = 0;
|
|
|
|
|
|
|
|
|
|
if ($ext === 'json') {
|
|
|
|
|
$parsed = json_decode($content, true);
|
|
|
|
|
if (!is_array($parsed)) {
|
2026-03-02 11:17:58 +02:00
|
|
|
$logger->error('Invalid JSON file for groups import');
|
Add import/export and update system
Implement CSV/JSON import and export for domains, notification groups and tags (with masking for sensitive channel data), including size/format validation, in-memory CSV building, and logging. Add tag transfer and bulk transfer actions (admin-only). Introduce a new update system: Add UpdateController and UpdateService, migration 025_add_update_system_v1.1.3.sql, and installer changes to include the new migration and version handling; provide endpoints to check, apply, rollback and configure updates. Update helpers and UI bits: add getUpdateBadgeInfo in LayoutHelper, update notification icons/redirects, and add getMaxUploadSize in ViewHelper. Misc: add NotificationGroup::findByName, tweak .gitignore backups path, and update related views and routes.
2026-02-11 17:43:23 +02:00
|
|
|
$_SESSION['error'] = 'Invalid JSON file';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2026-03-02 11:17:58 +02:00
|
|
|
$logger->info('Groups data parsed from file', ['entries' => count($parsed)]);
|
|
|
|
|
|
Add import/export and update system
Implement CSV/JSON import and export for domains, notification groups and tags (with masking for sensitive channel data), including size/format validation, in-memory CSV building, and logging. Add tag transfer and bulk transfer actions (admin-only). Introduce a new update system: Add UpdateController and UpdateService, migration 025_add_update_system_v1.1.3.sql, and installer changes to include the new migration and version handling; provide endpoints to check, apply, rollback and configure updates. Update helpers and UI bits: add getUpdateBadgeInfo in LayoutHelper, update notification icons/redirects, and add getMaxUploadSize in ViewHelper. Misc: add NotificationGroup::findByName, tweak .gitignore backups path, and update related views and routes.
2026-02-11 17:43:23 +02:00
|
|
|
foreach ($parsed as $groupData) {
|
|
|
|
|
$groupName = trim($groupData['group_name'] ?? '');
|
|
|
|
|
if (empty($groupName)) continue;
|
|
|
|
|
|
|
|
|
|
// Check if group already exists
|
|
|
|
|
$existing = $this->groupModel->findByName($groupName, $isolationMode === 'isolated' ? $userId : null);
|
|
|
|
|
if ($existing) {
|
|
|
|
|
$groupsSkipped++;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$groupId = $this->groupModel->create([
|
|
|
|
|
'name' => $groupName,
|
|
|
|
|
'description' => trim($groupData['group_description'] ?? ''),
|
|
|
|
|
'user_id' => $isolationMode === 'isolated' ? $userId : null
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
if ($groupId && !empty($groupData['channels'])) {
|
|
|
|
|
foreach ($groupData['channels'] as $ch) {
|
|
|
|
|
$channelType = $ch['channel_type'] ?? '';
|
|
|
|
|
$config = $ch['channel_config'] ?? [];
|
|
|
|
|
if (empty($channelType) || !in_array($channelType, $validChannelTypes)) continue;
|
|
|
|
|
|
|
|
|
|
// Channels with masked secrets are created as inactive
|
|
|
|
|
$hasMasked = $this->configHasMaskedValues($config);
|
|
|
|
|
|
|
|
|
|
$this->channelModel->create([
|
|
|
|
|
'notification_group_id' => $groupId,
|
|
|
|
|
'channel_type' => $channelType,
|
|
|
|
|
'channel_config' => json_encode($config),
|
|
|
|
|
'is_active' => $hasMasked ? 0 : ((int)($ch['is_active'] ?? 1))
|
|
|
|
|
]);
|
|
|
|
|
$channelsCreated++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
$groupsCreated++;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// CSV: group rows by group_name
|
|
|
|
|
$lines = array_filter(explode("\n", $content));
|
|
|
|
|
$header = null;
|
|
|
|
|
$csvGroups = [];
|
|
|
|
|
|
|
|
|
|
foreach ($lines as $line) {
|
|
|
|
|
$row = str_getcsv(trim($line), ',', '"', '\\');
|
|
|
|
|
if (!$header) {
|
|
|
|
|
$header = array_map('strtolower', array_map('trim', $row));
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
$item = [];
|
|
|
|
|
foreach ($header as $i => $col) {
|
|
|
|
|
$item[$col] = $row[$i] ?? '';
|
|
|
|
|
}
|
|
|
|
|
$gName = trim($item['group_name'] ?? '');
|
|
|
|
|
if (empty($gName)) continue;
|
|
|
|
|
|
|
|
|
|
if (!isset($csvGroups[$gName])) {
|
|
|
|
|
$csvGroups[$gName] = [
|
|
|
|
|
'description' => trim($item['group_description'] ?? ''),
|
|
|
|
|
'channels' => []
|
|
|
|
|
];
|
|
|
|
|
}
|
|
|
|
|
$chType = trim($item['channel_type'] ?? '');
|
|
|
|
|
if (!empty($chType) && in_array($chType, $validChannelTypes)) {
|
|
|
|
|
$config = json_decode($item['channel_config'] ?? '{}', true) ?: [];
|
|
|
|
|
$csvGroups[$gName]['channels'][] = [
|
|
|
|
|
'channel_type' => $chType,
|
|
|
|
|
'channel_config' => $config,
|
|
|
|
|
'is_active' => $item['is_active'] ?? '1'
|
|
|
|
|
];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
foreach ($csvGroups as $gName => $gData) {
|
|
|
|
|
$existing = $this->groupModel->findByName($gName, $isolationMode === 'isolated' ? $userId : null);
|
|
|
|
|
if ($existing) {
|
|
|
|
|
$groupsSkipped++;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$groupId = $this->groupModel->create([
|
|
|
|
|
'name' => $gName,
|
|
|
|
|
'description' => $gData['description'],
|
|
|
|
|
'user_id' => $isolationMode === 'isolated' ? $userId : null
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
if ($groupId) {
|
|
|
|
|
foreach ($gData['channels'] as $ch) {
|
|
|
|
|
$config = $ch['channel_config'] ?? [];
|
|
|
|
|
$hasMasked = $this->configHasMaskedValues($config);
|
|
|
|
|
|
|
|
|
|
$this->channelModel->create([
|
|
|
|
|
'notification_group_id' => $groupId,
|
|
|
|
|
'channel_type' => $ch['channel_type'],
|
|
|
|
|
'channel_config' => json_encode($config),
|
|
|
|
|
'is_active' => $hasMasked ? 0 : ((int)($ch['is_active'] ?? 1))
|
|
|
|
|
]);
|
|
|
|
|
$channelsCreated++;
|
|
|
|
|
}
|
|
|
|
|
$groupsCreated++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2026-03-02 11:17:58 +02:00
|
|
|
$logger->info('Notification groups import completed', [
|
|
|
|
|
'groups_created' => $groupsCreated,
|
|
|
|
|
'channels_created' => $channelsCreated,
|
|
|
|
|
'groups_skipped' => $groupsSkipped
|
|
|
|
|
]);
|
|
|
|
|
|
Add import/export and update system
Implement CSV/JSON import and export for domains, notification groups and tags (with masking for sensitive channel data), including size/format validation, in-memory CSV building, and logging. Add tag transfer and bulk transfer actions (admin-only). Introduce a new update system: Add UpdateController and UpdateService, migration 025_add_update_system_v1.1.3.sql, and installer changes to include the new migration and version handling; provide endpoints to check, apply, rollback and configure updates. Update helpers and UI bits: add getUpdateBadgeInfo in LayoutHelper, update notification icons/redirects, and add getMaxUploadSize in ViewHelper. Misc: add NotificationGroup::findByName, tweak .gitignore backups path, and update related views and routes.
2026-02-11 17:43:23 +02:00
|
|
|
$msg = "{$groupsCreated} group(s) imported ({$channelsCreated} channels)";
|
|
|
|
|
if ($groupsSkipped > 0) $msg .= ", {$groupsSkipped} skipped (already exist)";
|
|
|
|
|
$_SESSION['success'] = $msg;
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Mask sensitive values in channel config for export
|
|
|
|
|
*/
|
|
|
|
|
private function maskChannelConfig(string $type, array $config): array
|
|
|
|
|
{
|
|
|
|
|
$masked = $config;
|
|
|
|
|
$sensitiveKeys = ['bot_token', 'api_token', 'user_key', 'pushover_api_token', 'pushover_user_key'];
|
|
|
|
|
$urlKeys = ['webhook_url', 'discord_webhook_url', 'slack_webhook_url', 'mattermost_webhook_url'];
|
|
|
|
|
|
|
|
|
|
foreach ($sensitiveKeys as $key) {
|
|
|
|
|
if (!empty($masked[$key])) {
|
|
|
|
|
$val = $masked[$key];
|
|
|
|
|
$masked[$key] = '****' . substr($val, -4);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
foreach ($urlKeys as $key) {
|
|
|
|
|
if (!empty($masked[$key])) {
|
|
|
|
|
$parsed = parse_url($masked[$key]);
|
|
|
|
|
if ($parsed && isset($parsed['host'])) {
|
|
|
|
|
$scheme = $parsed['scheme'] ?? 'https';
|
|
|
|
|
$masked[$key] = "{$scheme}://{$parsed['host']}/****";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Email is not masked
|
|
|
|
|
return $masked;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Check if config contains masked placeholder values
|
|
|
|
|
*/
|
|
|
|
|
private function configHasMaskedValues(array $config): bool
|
|
|
|
|
{
|
|
|
|
|
foreach ($config as $value) {
|
|
|
|
|
if (is_string($value) && (str_contains($value, '****'))) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-08 14:23:07 +03:00
|
|
|
public function create()
|
|
|
|
|
{
|
|
|
|
|
$this->view('groups/create', [
|
|
|
|
|
'title' => 'Create Notification Group'
|
|
|
|
|
]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function store()
|
|
|
|
|
{
|
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
|
|
|
|
|
$this->redirect('/groups/create');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
Add CSRF, CAPTCHA, and input validation improvements
Introduces CSRF protection to all sensitive controller actions, integrates configurable CAPTCHA (reCAPTCHA v2/v3, Turnstile) for authentication and registration flows, and centralizes input validation via a new InputValidator helper. Adds new helpers and services for CSRF and CAPTCHA, updates settings and migration for CAPTCHA configuration, and enhances logging and error handling in TLD registry import processes. Also improves validation for user, domain, group, and profile inputs throughout the application.
2025-10-10 00:04:12 +03:00
|
|
|
// CSRF Protection
|
|
|
|
|
$this->verifyCsrf('/groups/create');
|
|
|
|
|
|
2025-10-08 14:23:07 +03:00
|
|
|
$name = trim($_POST['name'] ?? '');
|
|
|
|
|
$description = trim($_POST['description'] ?? '');
|
|
|
|
|
|
|
|
|
|
if (empty($name)) {
|
|
|
|
|
$_SESSION['error'] = 'Group name is required';
|
|
|
|
|
$this->redirect('/groups/create');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
Add CSRF, CAPTCHA, and input validation improvements
Introduces CSRF protection to all sensitive controller actions, integrates configurable CAPTCHA (reCAPTCHA v2/v3, Turnstile) for authentication and registration flows, and centralizes input validation via a new InputValidator helper. Adds new helpers and services for CSRF and CAPTCHA, updates settings and migration for CAPTCHA configuration, and enhances logging and error handling in TLD registry import processes. Also improves validation for user, domain, group, and profile inputs throughout the application.
2025-10-10 00:04:12 +03:00
|
|
|
// Validate length
|
|
|
|
|
$nameError = \App\Helpers\InputValidator::validateLength($name, 255, 'Group name');
|
|
|
|
|
if ($nameError) {
|
|
|
|
|
$_SESSION['error'] = $nameError;
|
|
|
|
|
$this->redirect('/groups/create');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$descError = \App\Helpers\InputValidator::validateLength($description, 1000, 'Description');
|
|
|
|
|
if ($descError) {
|
|
|
|
|
$_SESSION['error'] = $descError;
|
|
|
|
|
$this->redirect('/groups/create');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
try {
|
2025-10-20 17:04:13 +03:00
|
|
|
// Get current user and isolation mode
|
|
|
|
|
$userId = \Core\Auth::id();
|
|
|
|
|
$settingModel = new \App\Models\Setting();
|
|
|
|
|
$isolationMode = $settingModel->getValue('user_isolation_mode', 'shared');
|
|
|
|
|
|
|
|
|
|
$groupData = [
|
2025-10-13 16:35:28 +03:00
|
|
|
'name' => $name,
|
|
|
|
|
'description' => $description
|
2025-10-20 17:04:13 +03:00
|
|
|
];
|
|
|
|
|
|
|
|
|
|
// Assign to current user if in isolated mode
|
|
|
|
|
if ($isolationMode === 'isolated') {
|
|
|
|
|
$groupData['user_id'] = $userId;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$id = $this->groupModel->create($groupData);
|
2025-10-08 14:23:07 +03:00
|
|
|
|
2025-10-20 19:02:56 +03:00
|
|
|
// Log group creation
|
|
|
|
|
$logger = new \App\Services\Logger();
|
|
|
|
|
$logger->info('Notification group created', [
|
|
|
|
|
'group_id' => $id,
|
|
|
|
|
'group_name' => $name,
|
|
|
|
|
'user_id' => $userId,
|
|
|
|
|
'isolation_mode' => $isolationMode
|
|
|
|
|
]);
|
|
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
$_SESSION['success'] = "Group '$name' created successfully";
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$id/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
} catch (\Exception $e) {
|
|
|
|
|
// Log the error using the ErrorHandler service
|
|
|
|
|
$errorHandler = new \App\Services\ErrorHandler();
|
|
|
|
|
$errorHandler->handleException($e);
|
|
|
|
|
|
|
|
|
|
$_SESSION['error'] = 'Failed to create notification group. Please try again.';
|
|
|
|
|
$this->redirect('/groups/create');
|
|
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
}
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
public function edit($params = [])
|
2025-10-08 14:23:07 +03:00
|
|
|
{
|
2025-10-20 21:08:09 +03:00
|
|
|
$id = $params['id'] ?? 0;
|
|
|
|
|
$group = $this->checkGroupAccess($id);
|
2025-10-08 14:23:07 +03:00
|
|
|
|
|
|
|
|
if (!$group) {
|
|
|
|
|
$_SESSION['error'] = 'Group not found';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$this->view('groups/edit', [
|
|
|
|
|
'group' => $group,
|
|
|
|
|
'title' => 'Edit Group: ' . $group['name']
|
|
|
|
|
]);
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
public function update($params = [])
|
2025-10-08 14:23:07 +03:00
|
|
|
{
|
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
Add CSRF, CAPTCHA, and input validation improvements
Introduces CSRF protection to all sensitive controller actions, integrates configurable CAPTCHA (reCAPTCHA v2/v3, Turnstile) for authentication and registration flows, and centralizes input validation via a new InputValidator helper. Adds new helpers and services for CSRF and CAPTCHA, updates settings and migration for CAPTCHA configuration, and enhances logging and error handling in TLD registry import processes. Also improves validation for user, domain, group, and profile inputs throughout the application.
2025-10-10 00:04:12 +03:00
|
|
|
// CSRF Protection
|
|
|
|
|
$this->verifyCsrf('/groups');
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
$id = $params['id'] ?? 0;
|
|
|
|
|
$group = $this->checkGroupAccess($id);
|
|
|
|
|
|
|
|
|
|
if (!$group) {
|
|
|
|
|
$_SESSION['error'] = 'Group not found';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-08 14:23:07 +03:00
|
|
|
$name = trim($_POST['name'] ?? '');
|
|
|
|
|
$description = trim($_POST['description'] ?? '');
|
|
|
|
|
|
|
|
|
|
if (empty($name)) {
|
|
|
|
|
$_SESSION['error'] = 'Group name is required';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$id/edit");
|
2025-10-08 14:23:07 +03:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
Add CSRF, CAPTCHA, and input validation improvements
Introduces CSRF protection to all sensitive controller actions, integrates configurable CAPTCHA (reCAPTCHA v2/v3, Turnstile) for authentication and registration flows, and centralizes input validation via a new InputValidator helper. Adds new helpers and services for CSRF and CAPTCHA, updates settings and migration for CAPTCHA configuration, and enhances logging and error handling in TLD registry import processes. Also improves validation for user, domain, group, and profile inputs throughout the application.
2025-10-10 00:04:12 +03:00
|
|
|
// Validate length
|
|
|
|
|
$nameError = \App\Helpers\InputValidator::validateLength($name, 255, 'Group name');
|
|
|
|
|
if ($nameError) {
|
|
|
|
|
$_SESSION['error'] = $nameError;
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$id/edit");
|
Add CSRF, CAPTCHA, and input validation improvements
Introduces CSRF protection to all sensitive controller actions, integrates configurable CAPTCHA (reCAPTCHA v2/v3, Turnstile) for authentication and registration flows, and centralizes input validation via a new InputValidator helper. Adds new helpers and services for CSRF and CAPTCHA, updates settings and migration for CAPTCHA configuration, and enhances logging and error handling in TLD registry import processes. Also improves validation for user, domain, group, and profile inputs throughout the application.
2025-10-10 00:04:12 +03:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$descError = \App\Helpers\InputValidator::validateLength($description, 1000, 'Description');
|
|
|
|
|
if ($descError) {
|
|
|
|
|
$_SESSION['error'] = $descError;
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$id/edit");
|
Add CSRF, CAPTCHA, and input validation improvements
Introduces CSRF protection to all sensitive controller actions, integrates configurable CAPTCHA (reCAPTCHA v2/v3, Turnstile) for authentication and registration flows, and centralizes input validation via a new InputValidator helper. Adds new helpers and services for CSRF and CAPTCHA, updates settings and migration for CAPTCHA configuration, and enhances logging and error handling in TLD registry import processes. Also improves validation for user, domain, group, and profile inputs throughout the application.
2025-10-10 00:04:12 +03:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
try {
|
|
|
|
|
$this->groupModel->update($id, [
|
|
|
|
|
'name' => $name,
|
|
|
|
|
'description' => $description
|
|
|
|
|
]);
|
2025-10-08 14:23:07 +03:00
|
|
|
|
2025-10-20 19:02:56 +03:00
|
|
|
// Log group update
|
|
|
|
|
$logger = new \App\Services\Logger();
|
|
|
|
|
$logger->info('Notification group updated', [
|
|
|
|
|
'group_id' => $id,
|
|
|
|
|
'group_name' => $name,
|
|
|
|
|
'user_id' => \Core\Auth::id()
|
|
|
|
|
]);
|
|
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
$_SESSION['success'] = 'Group updated successfully';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$id/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
} catch (\Exception $e) {
|
|
|
|
|
// Log the error using the ErrorHandler service
|
|
|
|
|
$errorHandler = new \App\Services\ErrorHandler();
|
|
|
|
|
$errorHandler->handleException($e);
|
|
|
|
|
|
|
|
|
|
$_SESSION['error'] = 'Failed to update notification group. Please try again.';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$id/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
}
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
public function delete($params = [])
|
2025-10-08 14:23:07 +03:00
|
|
|
{
|
2025-10-20 21:08:09 +03:00
|
|
|
$id = $params['id'] ?? 0;
|
|
|
|
|
$group = $this->checkGroupAccess($id);
|
2025-10-08 14:23:07 +03:00
|
|
|
|
|
|
|
|
if (!$group) {
|
|
|
|
|
$_SESSION['error'] = 'Group not found';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
try {
|
2025-10-20 19:02:56 +03:00
|
|
|
// Log group deletion
|
|
|
|
|
$logger = new \App\Services\Logger();
|
|
|
|
|
$logger->info('Notification group deleted', [
|
|
|
|
|
'group_id' => $id,
|
|
|
|
|
'group_name' => $group['name'],
|
|
|
|
|
'user_id' => \Core\Auth::id()
|
|
|
|
|
]);
|
|
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
$this->groupModel->deleteWithRelations($id);
|
|
|
|
|
$_SESSION['success'] = 'Group deleted successfully';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
} catch (\Exception $e) {
|
|
|
|
|
// Log the error using the ErrorHandler service
|
|
|
|
|
$errorHandler = new \App\Services\ErrorHandler();
|
|
|
|
|
$errorHandler->handleException($e);
|
|
|
|
|
|
|
|
|
|
$_SESSION['error'] = 'Failed to delete notification group. Please try again.';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
}
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
public function addChannel($params = [])
|
2025-10-08 14:23:07 +03:00
|
|
|
{
|
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
Add CSRF, CAPTCHA, and input validation improvements
Introduces CSRF protection to all sensitive controller actions, integrates configurable CAPTCHA (reCAPTCHA v2/v3, Turnstile) for authentication and registration flows, and centralizes input validation via a new InputValidator helper. Adds new helpers and services for CSRF and CAPTCHA, updates settings and migration for CAPTCHA configuration, and enhances logging and error handling in TLD registry import processes. Also improves validation for user, domain, group, and profile inputs throughout the application.
2025-10-10 00:04:12 +03:00
|
|
|
// CSRF Protection
|
|
|
|
|
$this->verifyCsrf('/groups');
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
$groupId = $params['group_id'] ?? 0;
|
|
|
|
|
|
|
|
|
|
// Check group access
|
|
|
|
|
$group = $this->checkGroupAccess($groupId);
|
|
|
|
|
if (!$group) {
|
|
|
|
|
$_SESSION['error'] = 'Group not found';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-08 14:23:07 +03:00
|
|
|
$channelType = $_POST['channel_type'] ?? '';
|
|
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
// Validate channel type
|
|
|
|
|
if (empty($channelType)) {
|
|
|
|
|
$_SESSION['error'] = 'Please select a channel type';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$groupId/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-08 14:23:07 +03:00
|
|
|
$config = $this->buildChannelConfig($channelType, $_POST);
|
|
|
|
|
|
|
|
|
|
if (!$config) {
|
2025-10-09 16:38:52 +03:00
|
|
|
$missingField = '';
|
|
|
|
|
switch ($channelType) {
|
|
|
|
|
case 'email':
|
|
|
|
|
$missingField = 'email address';
|
|
|
|
|
break;
|
|
|
|
|
case 'telegram':
|
|
|
|
|
$missingField = empty($_POST['bot_token']) ? 'bot token' : 'chat ID';
|
|
|
|
|
break;
|
|
|
|
|
case 'discord':
|
|
|
|
|
case 'slack':
|
2025-10-17 11:13:25 +03:00
|
|
|
case 'webhook':
|
2025-10-09 16:38:52 +03:00
|
|
|
$missingField = 'webhook URL';
|
|
|
|
|
break;
|
2025-11-18 13:22:49 +02:00
|
|
|
case 'pushover':
|
|
|
|
|
$missingField = empty($_POST['pushover_api_token']) ? 'API token' : 'user key';
|
|
|
|
|
break;
|
2025-10-09 16:38:52 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$_SESSION['error'] = "Invalid channel configuration: Missing {$missingField}";
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$groupId/edit");
|
2025-10-08 14:23:07 +03:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
try {
|
|
|
|
|
$this->channelModel->createChannel($groupId, $channelType, $config);
|
|
|
|
|
$_SESSION['success'] = 'Channel added successfully';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$groupId/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
} catch (\Exception $e) {
|
|
|
|
|
// Log the error using the ErrorHandler service
|
|
|
|
|
$errorHandler = new \App\Services\ErrorHandler();
|
|
|
|
|
$errorHandler->handleException($e);
|
|
|
|
|
|
|
|
|
|
$_SESSION['error'] = 'Failed to add notification channel. Please try again.';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$groupId/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
}
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
public function deleteChannel($params = [])
|
2025-10-08 14:23:07 +03:00
|
|
|
{
|
2025-10-20 21:08:09 +03:00
|
|
|
$id = $params['id'] ?? 0;
|
|
|
|
|
$groupId = $params['group_id'] ?? 0;
|
|
|
|
|
|
|
|
|
|
// Check group access
|
|
|
|
|
$group = $this->checkGroupAccess($groupId);
|
|
|
|
|
if (!$group) {
|
|
|
|
|
$_SESSION['error'] = 'Group not found';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
try {
|
|
|
|
|
$this->channelModel->delete($id);
|
|
|
|
|
$_SESSION['success'] = 'Channel deleted successfully';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$groupId/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
} catch (\Exception $e) {
|
|
|
|
|
// Log the error using the ErrorHandler service
|
|
|
|
|
$errorHandler = new \App\Services\ErrorHandler();
|
|
|
|
|
$errorHandler->handleException($e);
|
|
|
|
|
|
|
|
|
|
$_SESSION['error'] = 'Failed to delete notification channel. Please try again.';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$groupId/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
}
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
public function toggleChannel($params = [])
|
2025-10-08 14:23:07 +03:00
|
|
|
{
|
2025-10-20 21:08:09 +03:00
|
|
|
$id = $params['id'] ?? 0;
|
|
|
|
|
$groupId = $params['group_id'] ?? 0;
|
|
|
|
|
|
|
|
|
|
// Check group access
|
|
|
|
|
$group = $this->checkGroupAccess($groupId);
|
|
|
|
|
if (!$group) {
|
|
|
|
|
$_SESSION['error'] = 'Group not found';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
try {
|
|
|
|
|
$this->channelModel->toggleActive($id);
|
|
|
|
|
$_SESSION['success'] = 'Channel status updated';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$groupId/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
} catch (\Exception $e) {
|
|
|
|
|
// Log the error using the ErrorHandler service
|
|
|
|
|
$errorHandler = new \App\Services\ErrorHandler();
|
|
|
|
|
$errorHandler->handleException($e);
|
|
|
|
|
|
|
|
|
|
$_SESSION['error'] = 'Failed to update channel status. Please try again.';
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$groupId/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function testChannel()
|
|
|
|
|
{
|
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// CSRF Protection
|
|
|
|
|
$this->verifyCsrf('/groups');
|
|
|
|
|
|
|
|
|
|
$channelType = $_POST['channel_type'] ?? '';
|
|
|
|
|
$config = $this->buildChannelConfig($channelType, $_POST);
|
|
|
|
|
|
|
|
|
|
// Check if this is an AJAX request
|
|
|
|
|
$isAjax = !empty($_SERVER['HTTP_X_REQUESTED_WITH']) && strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) === 'xmlhttprequest';
|
|
|
|
|
|
|
|
|
|
if (!$config) {
|
|
|
|
|
if ($isAjax) {
|
|
|
|
|
http_response_code(400);
|
|
|
|
|
echo json_encode(['success' => false, 'message' => 'Invalid channel configuration for testing']);
|
|
|
|
|
return;
|
|
|
|
|
} else {
|
|
|
|
|
$_SESSION['error'] = 'Invalid channel configuration for testing';
|
|
|
|
|
$groupId = $_POST['group_id'] ?? 0;
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect($groupId ? "/groups/$groupId/edit" : '/groups');
|
2025-10-13 16:35:28 +03:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
$notificationService = new \App\Services\NotificationService();
|
|
|
|
|
$testMessage = $this->getTestMessage($channelType);
|
|
|
|
|
$testData = $this->getTestData();
|
|
|
|
|
|
|
|
|
|
$success = $notificationService->send($channelType, $config, $testMessage, $testData);
|
|
|
|
|
|
|
|
|
|
if ($success) {
|
|
|
|
|
$message = "Test message sent successfully to {$channelType} channel! Check your {$channelType} for the test notification.";
|
|
|
|
|
if ($isAjax) {
|
|
|
|
|
echo json_encode(['success' => true, 'message' => $message]);
|
|
|
|
|
return;
|
|
|
|
|
} else {
|
|
|
|
|
$_SESSION['success'] = $message;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
$message = "Failed to send test message to {$channelType} channel. Please check your configuration and try again.";
|
|
|
|
|
if ($isAjax) {
|
|
|
|
|
http_response_code(400);
|
|
|
|
|
echo json_encode(['success' => false, 'message' => $message]);
|
|
|
|
|
return;
|
|
|
|
|
} else {
|
|
|
|
|
$_SESSION['error'] = $message;
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
|
2025-10-13 16:35:28 +03:00
|
|
|
} catch (\Exception $e) {
|
|
|
|
|
// Log the error using the ErrorHandler service
|
|
|
|
|
$errorHandler = new \App\Services\ErrorHandler();
|
|
|
|
|
$errorHandler->handleException($e);
|
|
|
|
|
|
|
|
|
|
$message = "Test failed: " . $e->getMessage() . " Please check your configuration and try again.";
|
|
|
|
|
if ($isAjax) {
|
|
|
|
|
http_response_code(500);
|
|
|
|
|
echo json_encode(['success' => false, 'message' => $message]);
|
|
|
|
|
return;
|
|
|
|
|
} else {
|
|
|
|
|
$_SESSION['error'] = $message;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Only redirect if not AJAX
|
|
|
|
|
if (!$isAjax) {
|
|
|
|
|
$groupId = $_POST['group_id'] ?? 0;
|
2025-10-20 21:08:09 +03:00
|
|
|
$this->redirect("/groups/$groupId/edit");
|
2025-10-13 16:35:28 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private function getTestMessage(string $channelType): string
|
|
|
|
|
{
|
|
|
|
|
$channelNames = [
|
|
|
|
|
'email' => 'Email',
|
|
|
|
|
'telegram' => 'Telegram',
|
|
|
|
|
'discord' => 'Discord',
|
2025-10-21 14:33:22 +03:00
|
|
|
'slack' => 'Slack',
|
|
|
|
|
'mattermost' => 'Mattermost',
|
2025-11-18 18:34:05 +02:00
|
|
|
'pushover' => 'Pushover',
|
2025-10-21 14:33:22 +03:00
|
|
|
'webhook' => 'Webhook'
|
2025-10-13 16:35:28 +03:00
|
|
|
];
|
|
|
|
|
|
|
|
|
|
$channelName = $channelNames[$channelType] ?? ucfirst($channelType);
|
|
|
|
|
|
|
|
|
|
return "🧪 **Test Message from Domain Monitor**\n\n" .
|
|
|
|
|
"This is a test notification to verify your {$channelName} channel configuration.\n\n" .
|
|
|
|
|
"✅ If you're seeing this message, your {$channelName} integration is working correctly!\n\n" .
|
|
|
|
|
"Test sent at: " . date('Y-m-d H:i:s T');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private function getTestData(): array
|
|
|
|
|
{
|
|
|
|
|
return [
|
|
|
|
|
'domain' => 'example.com',
|
|
|
|
|
'days_left' => 30,
|
|
|
|
|
'expiration_date' => date('Y-m-d', strtotime('+30 days')),
|
|
|
|
|
'registrar' => 'Example Registrar',
|
|
|
|
|
'domain_id' => 1
|
|
|
|
|
];
|
2025-10-08 14:23:07 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private function buildChannelConfig(string $type, array $data): ?array
|
|
|
|
|
{
|
|
|
|
|
switch ($type) {
|
|
|
|
|
case 'email':
|
2025-10-13 16:35:28 +03:00
|
|
|
$email = trim($data['email'] ?? '');
|
|
|
|
|
if (empty($email) || !filter_var($email, FILTER_VALIDATE_EMAIL)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
return ['email' => $email];
|
2025-10-08 14:23:07 +03:00
|
|
|
|
|
|
|
|
case 'telegram':
|
2025-10-13 16:35:28 +03:00
|
|
|
$botToken = trim($data['bot_token'] ?? '');
|
|
|
|
|
$chatId = trim($data['chat_id'] ?? '');
|
|
|
|
|
if (empty($botToken) || empty($chatId)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
// Basic validation for bot token format
|
|
|
|
|
if (!preg_match('/^\d+:[A-Za-z0-9_-]+$/', $botToken)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
return [
|
2025-10-13 16:35:28 +03:00
|
|
|
'bot_token' => $botToken,
|
|
|
|
|
'chat_id' => $chatId
|
2025-10-08 14:23:07 +03:00
|
|
|
];
|
|
|
|
|
|
|
|
|
|
case 'discord':
|
2025-10-13 16:35:28 +03:00
|
|
|
$webhookUrl = trim($data['discord_webhook_url'] ?? '');
|
|
|
|
|
if (empty($webhookUrl) || !filter_var($webhookUrl, FILTER_VALIDATE_URL)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
// Validate Discord webhook URL format
|
|
|
|
|
if (!str_contains($webhookUrl, 'discord.com/api/webhooks/')) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
2025-10-09 16:38:52 +03:00
|
|
|
return ['webhook_url' => $webhookUrl];
|
2025-10-08 14:23:07 +03:00
|
|
|
|
|
|
|
|
case 'slack':
|
2025-10-13 16:35:28 +03:00
|
|
|
$webhookUrl = trim($data['slack_webhook_url'] ?? '');
|
|
|
|
|
if (empty($webhookUrl) || !filter_var($webhookUrl, FILTER_VALIDATE_URL)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
// Validate Slack webhook URL format
|
|
|
|
|
if (!str_contains($webhookUrl, 'hooks.slack.com/services/')) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
2025-10-09 16:38:52 +03:00
|
|
|
return ['webhook_url' => $webhookUrl];
|
2025-10-08 14:23:07 +03:00
|
|
|
|
2025-10-21 14:33:22 +03:00
|
|
|
case 'mattermost':
|
|
|
|
|
$webhookUrl = trim($data['mattermost_webhook_url'] ?? '');
|
|
|
|
|
if (empty($webhookUrl) || !filter_var($webhookUrl, FILTER_VALIDATE_URL)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
// Validate Mattermost webhook URL format
|
|
|
|
|
if (!str_contains($webhookUrl, '/hooks/')) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
return ['webhook_url' => $webhookUrl];
|
|
|
|
|
|
2025-11-18 13:22:49 +02:00
|
|
|
case 'pushover':
|
|
|
|
|
$apiToken = trim($data['pushover_api_token'] ?? '');
|
|
|
|
|
$userKey = trim($data['pushover_user_key'] ?? '');
|
|
|
|
|
|
|
|
|
|
// Both API token and user key are required
|
|
|
|
|
if (empty($apiToken) || empty($userKey)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Basic validation for Pushover token format (30 characters, alphanumeric)
|
|
|
|
|
if (!preg_match('/^[a-zA-Z0-9]{30}$/', $apiToken) || !preg_match('/^[a-zA-Z0-9]{30}$/', $userKey)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$config = [
|
|
|
|
|
'api_token' => $apiToken,
|
|
|
|
|
'user_key' => $userKey
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
// Optional: Device name
|
|
|
|
|
$device = trim($data['pushover_device'] ?? '');
|
|
|
|
|
if (!empty($device)) {
|
|
|
|
|
$config['device'] = $device;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Optional: Sound
|
|
|
|
|
$sound = trim($data['pushover_sound'] ?? '');
|
|
|
|
|
if (!empty($sound)) {
|
|
|
|
|
$config['sound'] = $sound;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $config;
|
|
|
|
|
|
2025-10-17 11:13:25 +03:00
|
|
|
case 'webhook':
|
|
|
|
|
$webhookUrl = trim($data['webhook_url'] ?? '');
|
|
|
|
|
if (empty($webhookUrl) || !filter_var($webhookUrl, FILTER_VALIDATE_URL)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
// Optional: Allow any HTTPS URL; prefer HTTPS for security
|
|
|
|
|
if (!str_starts_with($webhookUrl, 'https://') && !str_starts_with($webhookUrl, 'http://')) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
Add webhook formats and Google Chat support
Introduce selectable webhook payload formats and Google Chat rich-card support. NotificationGroupController now reads and validates a webhook_format option (generic, google_chat, simple_text) and logs a warning if Google Chat format is chosen but the URL does not look like chat.googleapis.com. WebhookChannel gains format constants, a payload builder (generic/simple text/Google Chat card), improved Content-Type header, enhanced logging with masked URLs, response truncation, payload previews, and better RequestException handling. Views updated to expose a Webhook Format dropdown, contextual help (including Google Chat setup instructions), dynamic placeholders/help text, and include the selected format when testing/saving webhooks. These changes add format flexibility and improve observability and safety when sending webhook notifications.
2026-02-01 12:40:02 +02:00
|
|
|
|
|
|
|
|
$config = ['webhook_url' => $webhookUrl];
|
|
|
|
|
|
|
|
|
|
// Add format option (generic, google_chat, simple_text)
|
|
|
|
|
$format = trim($data['webhook_format'] ?? 'generic');
|
|
|
|
|
$validFormats = ['generic', 'google_chat', 'simple_text'];
|
|
|
|
|
if (in_array($format, $validFormats)) {
|
|
|
|
|
$config['format'] = $format;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Validate Google Chat webhook URL format if that format is selected
|
|
|
|
|
if ($format === 'google_chat' && !str_contains($webhookUrl, 'chat.googleapis.com')) {
|
|
|
|
|
// Allow it but log a warning - user might have a proxy
|
|
|
|
|
$logger = new \App\Services\Logger();
|
|
|
|
|
$logger->warning('Google Chat format selected but URL does not appear to be a Google Chat webhook', [
|
|
|
|
|
'url' => $webhookUrl
|
|
|
|
|
]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $config;
|
2025-10-17 11:13:25 +03:00
|
|
|
|
2025-10-08 14:23:07 +03:00
|
|
|
default:
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-10-10 14:01:19 +03:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Bulk delete notification groups
|
|
|
|
|
*/
|
|
|
|
|
public function bulkDelete()
|
|
|
|
|
{
|
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$this->verifyCsrf('/groups');
|
|
|
|
|
|
|
|
|
|
$groupIdsJson = $_POST['group_ids'] ?? '[]';
|
|
|
|
|
$groupIds = json_decode($groupIdsJson, true);
|
|
|
|
|
|
|
|
|
|
if (empty($groupIds) || !is_array($groupIds)) {
|
|
|
|
|
$_SESSION['error'] = 'No groups selected for deletion';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2025-10-20 21:08:09 +03:00
|
|
|
// Get current user and isolation mode
|
|
|
|
|
$userId = \Core\Auth::id();
|
|
|
|
|
$settingModel = new \App\Models\Setting();
|
|
|
|
|
$isolationMode = $settingModel->getValue('user_isolation_mode', 'shared');
|
|
|
|
|
|
2025-10-10 14:01:19 +03:00
|
|
|
$deletedCount = 0;
|
2025-10-13 16:35:28 +03:00
|
|
|
$errors = [];
|
2025-10-10 14:01:19 +03:00
|
|
|
|
|
|
|
|
foreach ($groupIds as $groupId) {
|
|
|
|
|
try {
|
2025-10-20 21:08:09 +03:00
|
|
|
// Check group access based on isolation mode
|
|
|
|
|
if ($isolationMode === 'isolated') {
|
|
|
|
|
$group = $this->groupModel->getWithDetails((int)$groupId, $userId);
|
|
|
|
|
} else {
|
|
|
|
|
$group = $this->groupModel->getWithDetails((int)$groupId);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($group) {
|
|
|
|
|
$this->groupModel->deleteWithRelations((int)$groupId);
|
|
|
|
|
$deletedCount++;
|
|
|
|
|
}
|
2025-10-10 14:01:19 +03:00
|
|
|
} catch (\Exception $e) {
|
2025-10-13 16:35:28 +03:00
|
|
|
// Log individual errors but continue processing
|
|
|
|
|
$errorHandler = new \App\Services\ErrorHandler();
|
|
|
|
|
$errorHandler->handleException($e);
|
|
|
|
|
$errors[] = "Failed to delete group ID: $groupId";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($deletedCount > 0) {
|
|
|
|
|
if (empty($errors)) {
|
|
|
|
|
$_SESSION['success'] = "Successfully deleted $deletedCount notification group(s)";
|
|
|
|
|
} else {
|
|
|
|
|
$_SESSION['warning'] = "Deleted $deletedCount group(s), but " . count($errors) . " failed. Check error logs for details.";
|
2025-10-10 14:01:19 +03:00
|
|
|
}
|
2025-10-13 16:35:28 +03:00
|
|
|
} else {
|
|
|
|
|
$_SESSION['error'] = 'Failed to delete any groups. Please check error logs for details.';
|
2025-10-10 14:01:19 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
}
|
2025-10-20 17:04:13 +03:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Transfer group to another user (Admin only)
|
|
|
|
|
*/
|
|
|
|
|
public function transfer()
|
|
|
|
|
{
|
|
|
|
|
\Core\Auth::requireAdmin();
|
|
|
|
|
|
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$this->verifyCsrf('/groups');
|
|
|
|
|
|
|
|
|
|
$groupId = (int)($_POST['group_id'] ?? 0);
|
|
|
|
|
$targetUserId = (int)($_POST['target_user_id'] ?? 0);
|
|
|
|
|
|
|
|
|
|
if (!$groupId || !$targetUserId) {
|
|
|
|
|
$_SESSION['error'] = 'Invalid group or user selected';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Validate group exists
|
|
|
|
|
$group = $this->groupModel->find($groupId);
|
|
|
|
|
if (!$group) {
|
|
|
|
|
$_SESSION['error'] = 'Group not found';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Validate target user exists
|
|
|
|
|
$userModel = new \App\Models\User();
|
|
|
|
|
$targetUser = $userModel->find($targetUserId);
|
|
|
|
|
if (!$targetUser) {
|
|
|
|
|
$_SESSION['error'] = 'Target user not found';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
Enhance DNS discovery, validation & transfers
Add comprehensive DNS management and input validation, plus safer transfer and logging behavior.
- Add CronHelper utilities for cron scripts and unify logging/formatting.
- Improve InputValidator: sanitizeDomainInput and validateRootDomain (handles multi-level TLDs) and use throughout domain import/create flows to reject subdomains.
- DomainController: refactor DNS refresh to support quick/deep discovery (background deep scans), add endpoints to discover, add/delete/bulk-delete DNS records, import BIND zone files, enrich IP metadata via enrichIpDetails, and strengthen bulk import/reporting messages.
- DnsRecord model: add source column handling (discovered/manual/imported), avoid auto-deleting manual/imported records, and add helpers for deleting, bulk deleting, manual adding and importing zone records.
- Tag, NotificationGroup and Domain transfer logic: unlink groups when ownership changes, remove tags that belong to other users, add audit logging via Logger and improved bulk transfer reporting. TagController/View: show transferable users for admins and skip global tags on transfer.
- Notification channels (Discord, Mattermost, etc.) and EmailHelper: allow explicit subjects and improve payload fields based on notification type.
- Add new migration 029_add_dns_record_source.sql and wire it into the installer; update migrations detection.
- Add new views/partials for confirm/import/transfer modals, update various domain/group/tag templates, and update cron scripts and routes for discovery.
These changes preserve manual/imported DNS records, improve root-domain validation, enable background deep discovery, and add better logging/audit trails for transfers and imports.
2026-03-10 22:54:28 +02:00
|
|
|
$logger = new \App\Services\Logger('transfer');
|
|
|
|
|
|
2025-10-20 17:04:13 +03:00
|
|
|
try {
|
|
|
|
|
$this->groupModel->update($groupId, ['user_id' => $targetUserId]);
|
|
|
|
|
|
|
|
|
|
$domainModel = new \App\Models\Domain();
|
Enhance DNS discovery, validation & transfers
Add comprehensive DNS management and input validation, plus safer transfer and logging behavior.
- Add CronHelper utilities for cron scripts and unify logging/formatting.
- Improve InputValidator: sanitizeDomainInput and validateRootDomain (handles multi-level TLDs) and use throughout domain import/create flows to reject subdomains.
- DomainController: refactor DNS refresh to support quick/deep discovery (background deep scans), add endpoints to discover, add/delete/bulk-delete DNS records, import BIND zone files, enrich IP metadata via enrichIpDetails, and strengthen bulk import/reporting messages.
- DnsRecord model: add source column handling (discovered/manual/imported), avoid auto-deleting manual/imported records, and add helpers for deleting, bulk deleting, manual adding and importing zone records.
- Tag, NotificationGroup and Domain transfer logic: unlink groups when ownership changes, remove tags that belong to other users, add audit logging via Logger and improved bulk transfer reporting. TagController/View: show transferable users for admins and skip global tags on transfer.
- Notification channels (Discord, Mattermost, etc.) and EmailHelper: allow explicit subjects and improve payload fields based on notification type.
- Add new migration 029_add_dns_record_source.sql and wire it into the installer; update migrations detection.
- Add new views/partials for confirm/import/transfer modals, update various domain/group/tag templates, and update cron scripts and routes for discovery.
These changes preserve manual/imported DNS records, improve root-domain validation, enable background deep discovery, and add better logging/audit trails for transfers and imports.
2026-03-10 22:54:28 +02:00
|
|
|
$domainsTransferred = $domainModel->updateWhere(['notification_group_id' => $groupId], ['user_id' => $targetUserId]);
|
|
|
|
|
|
|
|
|
|
$tagModel = new \App\Models\Tag();
|
|
|
|
|
$tagsRemoved = $tagModel->removeOtherUserTagsFromDomainsByGroup($groupId, $targetUserId);
|
|
|
|
|
|
|
|
|
|
$logger->info('Notification group transferred', [
|
|
|
|
|
'group_id' => $groupId,
|
|
|
|
|
'group_name' => $group['name'],
|
|
|
|
|
'from_user_id' => $group['user_id'],
|
|
|
|
|
'to_user_id' => $targetUserId,
|
|
|
|
|
'to_username' => $targetUser['username'],
|
|
|
|
|
'domains_transferred' => $domainsTransferred,
|
|
|
|
|
'tags_removed' => $tagsRemoved,
|
|
|
|
|
'admin_user_id' => \Core\Auth::id(),
|
|
|
|
|
]);
|
2025-10-20 17:04:13 +03:00
|
|
|
|
|
|
|
|
$_SESSION['success'] = "Group '{$group['name']}' and its domains transferred to {$targetUser['username']}";
|
|
|
|
|
} catch (\Exception $e) {
|
Enhance DNS discovery, validation & transfers
Add comprehensive DNS management and input validation, plus safer transfer and logging behavior.
- Add CronHelper utilities for cron scripts and unify logging/formatting.
- Improve InputValidator: sanitizeDomainInput and validateRootDomain (handles multi-level TLDs) and use throughout domain import/create flows to reject subdomains.
- DomainController: refactor DNS refresh to support quick/deep discovery (background deep scans), add endpoints to discover, add/delete/bulk-delete DNS records, import BIND zone files, enrich IP metadata via enrichIpDetails, and strengthen bulk import/reporting messages.
- DnsRecord model: add source column handling (discovered/manual/imported), avoid auto-deleting manual/imported records, and add helpers for deleting, bulk deleting, manual adding and importing zone records.
- Tag, NotificationGroup and Domain transfer logic: unlink groups when ownership changes, remove tags that belong to other users, add audit logging via Logger and improved bulk transfer reporting. TagController/View: show transferable users for admins and skip global tags on transfer.
- Notification channels (Discord, Mattermost, etc.) and EmailHelper: allow explicit subjects and improve payload fields based on notification type.
- Add new migration 029_add_dns_record_source.sql and wire it into the installer; update migrations detection.
- Add new views/partials for confirm/import/transfer modals, update various domain/group/tag templates, and update cron scripts and routes for discovery.
These changes preserve manual/imported DNS records, improve root-domain validation, enable background deep discovery, and add better logging/audit trails for transfers and imports.
2026-03-10 22:54:28 +02:00
|
|
|
$logger->error('Notification group transfer failed', [
|
|
|
|
|
'group_id' => $groupId,
|
|
|
|
|
'to_user_id' => $targetUserId,
|
|
|
|
|
'error' => $e->getMessage(),
|
|
|
|
|
]);
|
2025-10-20 17:04:13 +03:00
|
|
|
$_SESSION['error'] = 'Failed to transfer group. Please try again.';
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Bulk transfer groups to another user (Admin only)
|
|
|
|
|
*/
|
|
|
|
|
public function bulkTransfer()
|
|
|
|
|
{
|
|
|
|
|
\Core\Auth::requireAdmin();
|
|
|
|
|
|
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$this->verifyCsrf('/groups');
|
|
|
|
|
|
|
|
|
|
$groupIds = $_POST['group_ids'] ?? [];
|
|
|
|
|
$targetUserId = (int)($_POST['target_user_id'] ?? 0);
|
|
|
|
|
|
|
|
|
|
if (empty($groupIds) || !$targetUserId) {
|
|
|
|
|
$_SESSION['error'] = 'No groups selected or invalid user';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Validate target user exists
|
|
|
|
|
$userModel = new \App\Models\User();
|
|
|
|
|
$targetUser = $userModel->find($targetUserId);
|
|
|
|
|
if (!$targetUser) {
|
|
|
|
|
$_SESSION['error'] = 'Target user not found';
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
Enhance DNS discovery, validation & transfers
Add comprehensive DNS management and input validation, plus safer transfer and logging behavior.
- Add CronHelper utilities for cron scripts and unify logging/formatting.
- Improve InputValidator: sanitizeDomainInput and validateRootDomain (handles multi-level TLDs) and use throughout domain import/create flows to reject subdomains.
- DomainController: refactor DNS refresh to support quick/deep discovery (background deep scans), add endpoints to discover, add/delete/bulk-delete DNS records, import BIND zone files, enrich IP metadata via enrichIpDetails, and strengthen bulk import/reporting messages.
- DnsRecord model: add source column handling (discovered/manual/imported), avoid auto-deleting manual/imported records, and add helpers for deleting, bulk deleting, manual adding and importing zone records.
- Tag, NotificationGroup and Domain transfer logic: unlink groups when ownership changes, remove tags that belong to other users, add audit logging via Logger and improved bulk transfer reporting. TagController/View: show transferable users for admins and skip global tags on transfer.
- Notification channels (Discord, Mattermost, etc.) and EmailHelper: allow explicit subjects and improve payload fields based on notification type.
- Add new migration 029_add_dns_record_source.sql and wire it into the installer; update migrations detection.
- Add new views/partials for confirm/import/transfer modals, update various domain/group/tag templates, and update cron scripts and routes for discovery.
These changes preserve manual/imported DNS records, improve root-domain validation, enable background deep discovery, and add better logging/audit trails for transfers and imports.
2026-03-10 22:54:28 +02:00
|
|
|
$domainModel = new \App\Models\Domain();
|
|
|
|
|
$tagModel = new \App\Models\Tag();
|
|
|
|
|
$logger = new \App\Services\Logger('transfer');
|
|
|
|
|
|
2025-10-20 17:04:13 +03:00
|
|
|
$transferred = 0;
|
|
|
|
|
foreach ($groupIds as $groupId) {
|
|
|
|
|
$groupId = (int)$groupId;
|
|
|
|
|
if ($groupId > 0) {
|
|
|
|
|
try {
|
Enhance DNS discovery, validation & transfers
Add comprehensive DNS management and input validation, plus safer transfer and logging behavior.
- Add CronHelper utilities for cron scripts and unify logging/formatting.
- Improve InputValidator: sanitizeDomainInput and validateRootDomain (handles multi-level TLDs) and use throughout domain import/create flows to reject subdomains.
- DomainController: refactor DNS refresh to support quick/deep discovery (background deep scans), add endpoints to discover, add/delete/bulk-delete DNS records, import BIND zone files, enrich IP metadata via enrichIpDetails, and strengthen bulk import/reporting messages.
- DnsRecord model: add source column handling (discovered/manual/imported), avoid auto-deleting manual/imported records, and add helpers for deleting, bulk deleting, manual adding and importing zone records.
- Tag, NotificationGroup and Domain transfer logic: unlink groups when ownership changes, remove tags that belong to other users, add audit logging via Logger and improved bulk transfer reporting. TagController/View: show transferable users for admins and skip global tags on transfer.
- Notification channels (Discord, Mattermost, etc.) and EmailHelper: allow explicit subjects and improve payload fields based on notification type.
- Add new migration 029_add_dns_record_source.sql and wire it into the installer; update migrations detection.
- Add new views/partials for confirm/import/transfer modals, update various domain/group/tag templates, and update cron scripts and routes for discovery.
These changes preserve manual/imported DNS records, improve root-domain validation, enable background deep discovery, and add better logging/audit trails for transfers and imports.
2026-03-10 22:54:28 +02:00
|
|
|
$group = $this->groupModel->find($groupId);
|
2025-10-20 17:04:13 +03:00
|
|
|
$this->groupModel->update($groupId, ['user_id' => $targetUserId]);
|
|
|
|
|
|
Enhance DNS discovery, validation & transfers
Add comprehensive DNS management and input validation, plus safer transfer and logging behavior.
- Add CronHelper utilities for cron scripts and unify logging/formatting.
- Improve InputValidator: sanitizeDomainInput and validateRootDomain (handles multi-level TLDs) and use throughout domain import/create flows to reject subdomains.
- DomainController: refactor DNS refresh to support quick/deep discovery (background deep scans), add endpoints to discover, add/delete/bulk-delete DNS records, import BIND zone files, enrich IP metadata via enrichIpDetails, and strengthen bulk import/reporting messages.
- DnsRecord model: add source column handling (discovered/manual/imported), avoid auto-deleting manual/imported records, and add helpers for deleting, bulk deleting, manual adding and importing zone records.
- Tag, NotificationGroup and Domain transfer logic: unlink groups when ownership changes, remove tags that belong to other users, add audit logging via Logger and improved bulk transfer reporting. TagController/View: show transferable users for admins and skip global tags on transfer.
- Notification channels (Discord, Mattermost, etc.) and EmailHelper: allow explicit subjects and improve payload fields based on notification type.
- Add new migration 029_add_dns_record_source.sql and wire it into the installer; update migrations detection.
- Add new views/partials for confirm/import/transfer modals, update various domain/group/tag templates, and update cron scripts and routes for discovery.
These changes preserve manual/imported DNS records, improve root-domain validation, enable background deep discovery, and add better logging/audit trails for transfers and imports.
2026-03-10 22:54:28 +02:00
|
|
|
$domainsTransferred = $domainModel->updateWhere(['notification_group_id' => $groupId], ['user_id' => $targetUserId]);
|
|
|
|
|
$tagsRemoved = $tagModel->removeOtherUserTagsFromDomainsByGroup($groupId, $targetUserId);
|
|
|
|
|
|
|
|
|
|
$logger->info('Notification group transferred (bulk)', [
|
|
|
|
|
'group_id' => $groupId,
|
|
|
|
|
'group_name' => $group['name'] ?? 'unknown',
|
|
|
|
|
'from_user_id' => $group['user_id'] ?? null,
|
|
|
|
|
'to_user_id' => $targetUserId,
|
|
|
|
|
'to_username' => $targetUser['username'],
|
|
|
|
|
'domains_transferred' => $domainsTransferred,
|
|
|
|
|
'tags_removed' => $tagsRemoved,
|
|
|
|
|
'admin_user_id' => \Core\Auth::id(),
|
|
|
|
|
]);
|
2025-10-20 17:04:13 +03:00
|
|
|
|
|
|
|
|
$transferred++;
|
|
|
|
|
} catch (\Exception $e) {
|
Enhance DNS discovery, validation & transfers
Add comprehensive DNS management and input validation, plus safer transfer and logging behavior.
- Add CronHelper utilities for cron scripts and unify logging/formatting.
- Improve InputValidator: sanitizeDomainInput and validateRootDomain (handles multi-level TLDs) and use throughout domain import/create flows to reject subdomains.
- DomainController: refactor DNS refresh to support quick/deep discovery (background deep scans), add endpoints to discover, add/delete/bulk-delete DNS records, import BIND zone files, enrich IP metadata via enrichIpDetails, and strengthen bulk import/reporting messages.
- DnsRecord model: add source column handling (discovered/manual/imported), avoid auto-deleting manual/imported records, and add helpers for deleting, bulk deleting, manual adding and importing zone records.
- Tag, NotificationGroup and Domain transfer logic: unlink groups when ownership changes, remove tags that belong to other users, add audit logging via Logger and improved bulk transfer reporting. TagController/View: show transferable users for admins and skip global tags on transfer.
- Notification channels (Discord, Mattermost, etc.) and EmailHelper: allow explicit subjects and improve payload fields based on notification type.
- Add new migration 029_add_dns_record_source.sql and wire it into the installer; update migrations detection.
- Add new views/partials for confirm/import/transfer modals, update various domain/group/tag templates, and update cron scripts and routes for discovery.
These changes preserve manual/imported DNS records, improve root-domain validation, enable background deep discovery, and add better logging/audit trails for transfers and imports.
2026-03-10 22:54:28 +02:00
|
|
|
$logger->error('Notification group transfer failed (bulk)', [
|
|
|
|
|
'group_id' => $groupId,
|
|
|
|
|
'to_user_id' => $targetUserId,
|
|
|
|
|
'error' => $e->getMessage(),
|
|
|
|
|
]);
|
2025-10-20 17:04:13 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
Enhance DNS discovery, validation & transfers
Add comprehensive DNS management and input validation, plus safer transfer and logging behavior.
- Add CronHelper utilities for cron scripts and unify logging/formatting.
- Improve InputValidator: sanitizeDomainInput and validateRootDomain (handles multi-level TLDs) and use throughout domain import/create flows to reject subdomains.
- DomainController: refactor DNS refresh to support quick/deep discovery (background deep scans), add endpoints to discover, add/delete/bulk-delete DNS records, import BIND zone files, enrich IP metadata via enrichIpDetails, and strengthen bulk import/reporting messages.
- DnsRecord model: add source column handling (discovered/manual/imported), avoid auto-deleting manual/imported records, and add helpers for deleting, bulk deleting, manual adding and importing zone records.
- Tag, NotificationGroup and Domain transfer logic: unlink groups when ownership changes, remove tags that belong to other users, add audit logging via Logger and improved bulk transfer reporting. TagController/View: show transferable users for admins and skip global tags on transfer.
- Notification channels (Discord, Mattermost, etc.) and EmailHelper: allow explicit subjects and improve payload fields based on notification type.
- Add new migration 029_add_dns_record_source.sql and wire it into the installer; update migrations detection.
- Add new views/partials for confirm/import/transfer modals, update various domain/group/tag templates, and update cron scripts and routes for discovery.
These changes preserve manual/imported DNS records, improve root-domain validation, enable background deep discovery, and add better logging/audit trails for transfers and imports.
2026-03-10 22:54:28 +02:00
|
|
|
$logger->info('Bulk notification group transfer completed', [
|
|
|
|
|
'transferred' => $transferred,
|
|
|
|
|
'total_requested' => count($groupIds),
|
|
|
|
|
'to_user_id' => $targetUserId,
|
|
|
|
|
'to_username' => $targetUser['username'],
|
|
|
|
|
'admin_user_id' => \Core\Auth::id(),
|
|
|
|
|
]);
|
|
|
|
|
|
2025-10-20 17:04:13 +03:00
|
|
|
$_SESSION['success'] = "$transferred group(s) and their domains transferred to {$targetUser['username']}";
|
|
|
|
|
$this->redirect('/groups');
|
|
|
|
|
}
|
2025-10-08 14:23:07 +03:00
|
|
|
}
|
|
|
|
|
|