صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
chiappa
/
irdb
mirrorاز https://git.snix.ch/chiappa/irdb.git
1
0
انشعاب 0
پرونده‌ها مشکلات 0
درخت: 4eaf3d9d4a
شاخه‌ها تگ‌ها
irdb
/
ui
/
src
/
Controllers
/
SettingsController.php

SettingsController.php 7.2 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202 
  1. <?php
    2. 

  2. 

  3. declare(strict_types=1);
    4. 

  4. 

  5. namespace App\Controllers;
    6. 

  6. 

  7. use App\ApiClient\AdminClient;
    8. 

  8. use App\ApiClient\ApiAuthException;
    9. 

  9. use App\ApiClient\ApiException;
    10. 

  10. use App\Auth\SessionManager;
    11. 

  11. use Psr\Http\Message\ResponseInterface;
    12. 

  12. use Psr\Http\Message\ServerRequestInterface;
    13. 

  13. use Slim\Views\Twig;
    14. 

  14. 

  15. /**
    16. 

  16.  * `/app/settings` — admin-only effective config + jobs status.
    17. 

  17.  *
    18. 

  18.  * Three sections render: Configuration (from `/admin/config`), Jobs
    19. 

  19.  * (from `/admin/jobs/status`, with overdue badges + manual-trigger
    20. 

  20.  * buttons), GeoIP (parsed out of the config payload).
    21. 

  21.  *
    22. 

  22.  * The trigger handler is a server-rendered POST → 303 → re-render
    23. 

  23.  * pattern: forwards to the api's `POST /admin/jobs/trigger/{name}` and
    24. 

  24.  * stashes the outcome in flash. We deliberately avoid an XHR + spinner
    25. 

  25.  * to keep the no-JS path working; the admin can wait the few seconds
    26. 

  26.  * a job takes.
    27. 

  27.  *
    28. 

  28.  * RBAC: Viewer/Operator get a no-access page; Admin only.
    29. 

  29.  */
    30. 

  30. final class SettingsController
    31. 

  31. {
    32. 

  32.     use CrudControllerSupport;
    33. 

  33. 

  34.     public function __construct(
    35. 

  35.         private readonly Twig $twigEngine,
    36. 

  36.         private readonly SessionManager $sessionManager,
    37. 

  37.         private readonly AdminClient $admin,
    38. 

  38.     ) {
    39. 

  39.     }
    40. 

  40. 

  41.     protected function twig(): Twig
    42. 

  42.     {
    43. 

  43.         return $this->twigEngine;
    44. 

  44.     }
    45. 

  45. 

  46.     protected function sessions(): SessionManager
    47. 

  47.     {
    48. 

  48.         return $this->sessionManager;
    49. 

  49.     }
    50. 

  50. 

  51.     public function index(ServerRequestInterface $request, ResponseInterface $response): ResponseInterface
    52. 

  52.     {
    53. 

  53.         if (($redirect = $this->requireUser($request, $response)) !== null) {
    54. 

  54.             return $redirect;
    55. 

  55.         }
    56. 

  56.         $user = $this->sessions()->getUser();
    57. 

  57.         if ($user === null) {
    58. 

  58.             return $response->withStatus(302)->withHeader('Location', '/login');
    59. 

  59.         }
    60. 

  60. 

  61.         if (!$this->userIs($user, 'admin')) {
    62. 

  62.             return $response->withStatus(303)->withHeader('Location', '/no-access');
    63. 

  63.         }
    64. 

  64. 

  65.         $config = null;
    66. 

  66.         $jobs = null;
    67. 

  67.         $error = null;
    68. 

  68.         try {
    69. 

  69.             $config = $this->admin->getConfig($user->userId);
    70. 

  70.             $jobs = $this->admin->getJobsStatus($user->userId);
    71. 

  71.         } catch (ApiAuthException) {
    72. 

  72.             return $response->withStatus(303)->withHeader('Location', '/no-access');
    73. 

  73.         } catch (ApiException $e) {
    74. 

  74.             $error = 'API error: ' . $e->getMessage();
    75. 

  75.         }
    76. 

  76. 

  77.         return $this->twigEngine->render($response, 'pages/settings/index.twig', [
    78. 

  78.             'active_section' => 'settings',
    79. 

  79.             'config' => $config,
    80. 

  80.             'jobs' => $jobs,
    81. 

  81.             'error' => $error,
    82. 

  82.         ]);
    83. 

  83.     }
    84. 

  84. 

  85.     /**
    86. 

  86.      * @param array{name: string} $args
    87. 

  87.      */
    88. 

  88.     public function trigger(ServerRequestInterface $request, ResponseInterface $response, array $args): ResponseInterface
    89. 

  89.     {
    90. 

  90.         if (($redirect = $this->requireUser($request, $response)) !== null) {
    91. 

  91.             return $redirect;
    92. 

  92.         }
    93. 

  93.         $user = $this->sessions()->getUser();
    94. 

  94.         if ($user === null) {
    95. 

  95.             return $response->withStatus(302)->withHeader('Location', '/login');
    96. 

  96.         }
    97. 

  97.         if (!$this->userIs($user, 'admin')) {
    98. 

  98.             return $response->withStatus(303)->withHeader('Location', '/no-access');
    99. 

  99.         }
    100. 

  100. 

  101.         $name = $args['name'];
    102. 

  102.         $body = $this->formBody($request);
    103. 

  103.         $params = [];
    104. 

  104.         if (isset($body['full'])) {
    105. 

  105.             $params['full'] = $this->formBool($body['full']);
    106. 

  106.         }
    107. 

  107.         if (isset($body['reenrich'])) {
    108. 

  108.             $params['reenrich'] = $this->formBool($body['reenrich']);
    109. 

  109.         }
    110. 

  110. 

  111.         try {
    112. 

  112.             $result = $this->admin->triggerJob($user->userId, $name, $params);
    113. 

  113.             $status = (string) ($result['status'] ?? 'unknown');
    114. 

  114.             $items = (int) ($result['items_processed'] ?? 0);
    115. 

  115.             $duration = (int) ($result['duration_ms'] ?? 0);
    116. 

  116.             $this->sessions()->flash(
    117. 

  117.                 $status === 'success' ? 'success' : 'error',
    118. 

  118.                 sprintf('%s — %s (items=%d, duration=%dms)', $name, $status, $items, $duration),
    119. 

  119.             );
    120. 

  120.         } catch (ApiException $e) {
    121. 

  121.             $this->flashFromException($e);
    122. 

  122.         }
    123. 

  123. 

  124.         return $response->withStatus(303)->withHeader('Location', '/app/settings');
    125. 

  125.     }
    126. 

  126. 

  127.     /**
    128. 

  128.      * Wipe operational data. The API requires the literal `PURGE` string;
    129. 

  129.      * we additionally require the user to have typed it in the form, both
    130. 

  130.      * to avoid drive-by clicks and to keep curl-style misuse loud.
    131. 

  131.      */
    132. 

  132.     public function purge(ServerRequestInterface $request, ResponseInterface $response): ResponseInterface
    133. 

  133.     {
    134. 

  134.         if (($redirect = $this->requireUser($request, $response)) !== null) {
    135. 

  135.             return $redirect;
    136. 

  136.         }
    137. 

  137.         $user = $this->sessions()->getUser();
    138. 

  138.         if ($user === null) {
    139. 

  139.             return $response->withStatus(302)->withHeader('Location', '/login');
    140. 

  140.         }
    141. 

  141.         if (!$this->userIs($user, 'admin')) {
    142. 

  142.             return $response->withStatus(303)->withHeader('Location', '/no-access');
    143. 

  143.         }
    144. 

  144. 

  145.         $body = $this->formBody($request);
    146. 

  146.         $confirm = isset($body['confirm']) && is_string($body['confirm']) ? trim($body['confirm']) : '';
    147. 

  147.         if ($confirm !== 'PURGE') {
    148. 

  148.             $this->sessions()->flash('error', 'Type PURGE exactly to confirm the wipe.');
    149. 

  149. 

  150.             return $response->withStatus(303)->withHeader('Location', '/app/settings');
    151. 

  151.         }
    152. 

  152. 

  153.         try {
    154. 

  154.             $result = $this->admin->purgeData($user->userId);
    155. 

  155.             $deleted = is_array($result['deleted'] ?? null) ? $result['deleted'] : [];
    156. 

  156.             $total = array_sum(array_map('intval', $deleted));
    157. 

  157.             $this->sessions()->flash('success', sprintf(
    158. 

  158.                 'Database purged. %d rows deleted across %d tables.',
    159. 

  159.                 $total,
    160. 

  160.                 count($deleted),
    161. 

  161.             ));
    162. 

  162.         } catch (ApiException $e) {
    163. 

  163.             $this->flashFromException($e);
    164. 

  164.         }
    165. 

  165. 

  166.         return $response->withStatus(303)->withHeader('Location', '/app/settings');
    167. 

  167.     }
    168. 

  168. 

  169.     /**
    170. 

  170.      * Load the demo dataset. Idempotent on the api side — repeats return
    171. 

  171.      * 409 which we surface as an info-level flash, not an error.
    172. 

  172.      */
    173. 

  173.     public function seedDemo(ServerRequestInterface $request, ResponseInterface $response): ResponseInterface
    174. 

  174.     {
    175. 

  175.         if (($redirect = $this->requireUser($request, $response)) !== null) {
    176. 

  176.             return $redirect;
    177. 

  177.         }
    178. 

  178.         $user = $this->sessions()->getUser();
    179. 

  179.         if ($user === null) {
    180. 

  180.             return $response->withStatus(302)->withHeader('Location', '/login');
    181. 

  181.         }
    182. 

  182.         if (!$this->userIs($user, 'admin')) {
    183. 

  183.             return $response->withStatus(303)->withHeader('Location', '/no-access');
    184. 

  184.         }
    185. 

  185. 

  186.         try {
    187. 

  187.             $result = $this->admin->seedDemo($user->userId);
    188. 

  188.             $summary = is_array($result['summary'] ?? null) ? $result['summary'] : [];
    189. 

  189.             $this->sessions()->flash('success', sprintf(
    190. 

  190.                 'Demo data loaded — %d reporters, %d consumers, %d IPs, %d reports.',
    191. 

  191.                 (int) ($summary['reporters'] ?? 0),
    192. 

  192.                 (int) ($summary['consumers'] ?? 0),
    193. 

  193.                 (int) ($summary['ips'] ?? 0),
    194. 

  194.                 (int) ($summary['reports'] ?? 0),
    195. 

  195.             ));
    196. 

  196.         } catch (ApiException $e) {
    197. 

  197.             $this->flashFromException($e);
    198. 

  198.         }
    199. 

  199. 

  200.         return $response->withStatus(303)->withHeader('Location', '/app/settings');
    201. 

  201.     }
    202. 

  202. }
    203.