jilo-web/app/pages/config.php

<?php

/**
 * Config management.
 *
 * This page handles the config file.
 */

// Get any new feedback messages
include '../app/includes/feedback-get.php';
include '../app/includes/feedback-show.php';

require '../app/classes/config.php';
$configObject = new Config();

require '../app/includes/rate_limit_middleware.php';

// For AJAX requests
$isAjax = !empty($_SERVER['HTTP_X_REQUESTED_WITH']) && 
          strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) == 'xmlhttprequest';

// Check if file is writable
$isWritable = is_writable($config_file);
$configMessage = '';
if (!$isWritable) {
    $configMessage = Feedback::render('ERROR', 'DEFAULT', 'Config file is not writable', false);
}

if ($_SERVER['REQUEST_METHOD'] === 'POST') {
    // Apply rate limiting
    checkRateLimit($dbWeb, 'config', $user_id);

    // Ensure no output before this point
    ob_clean();

    // For AJAX requests, get JSON data
    if ($isAjax) {
        header('Content-Type: application/json');

        // Get raw input
        $jsonData = file_get_contents('php://input');

        $postData = json_decode($jsonData, true);

        if (json_last_error() !== JSON_ERROR_NONE) {
            $error = json_last_error_msg();

            Feedback::flash('ERROR', 'DEFAULT', 'Invalid JSON data received: ' . $error, true);
            echo json_encode([
                'success' => false,
                'message' => 'Invalid JSON data received: ' . $error
            ]);
            exit;
        }

        // Try to update config file
        $result = $configObject->editConfigFile($postData, $config_file);
        if ($result === true) {
            $messageData = Feedback::getMessageData('NOTICE', 'DEFAULT', 'Config file updated successfully', true);
            echo json_encode([
                'success' => true,
                'message' => 'Config file updated successfully',
                'messageData' => $messageData
            ]);
        } else {
            $messageData = Feedback::getMessageData('ERROR', 'DEFAULT', "Error updating config file: $result", true);
            echo json_encode([
                'success' => false,
                'message' => "Error updating config file: $result",
                'messageData' => $messageData
            ]);
        }
        exit;
    }

    // Handle non-AJAX POST
    $result = $configObject->editConfigFile($_POST, $config_file);
    if ($result === true) {
        Feedback::flash('NOTICE', 'DEFAULT', 'Config file updated successfully', true);
    } else {
        Feedback::flash('ERROR', 'DEFAULT', "Error updating config file: $result", true);
    }

    header('Location: ' . htmlspecialchars($app_root) . '?page=config');
    exit;
}

// Only include template for non-AJAX requests
if (!$isAjax) {
    /**
     * Handles GET requests to display templates.
     */

    if ($userObject->hasRight($user_id, 'view config file')) {
        include '../app/templates/config.php';
    } else {
        $logObject->insertLog($user_id, "Unauthorized: User \"$currentUser\" tried to access \"config\" page. IP: $user_IP", 'system');
        include '../app/templates/error-unauthorized.php';
    }
}
?>
Separates app code from public files. 2024-08-12 11:12:24 +00:00			`<?php`

Adds phpdoc comments 2024-12-04 10:13:33 +00:00			`/**`
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`* Config management.`
Adds phpdoc comments 2024-12-04 10:13:33 +00:00			`*`
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`* This page handles the config file.`
Adds phpdoc comments 2024-12-04 10:13:33 +00:00			`*/`

Renames messages to feedback 2025-02-17 08:24:50 +00:00			`// Get any new feedback messages`
			`include '../app/includes/feedback-get.php';`
			`include '../app/includes/feedback-show.php';`
Adds the new messages system to all pages 2025-01-13 08:45:31 +00:00
Moves the platforms config from flat file to SQLite DB 2024-09-04 09:53:02 +00:00			`require '../app/classes/config.php';`
Cleans up style 2024-09-06 16:34:03 +00:00			`$configObject = new Config();`
Platforms edit code 2024-08-18 19:12:45 +00:00
Adds ratelimiting to some pages 2025-02-17 13:15:05 +00:00			`require '../app/includes/rate_limit_middleware.php';`

Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`// For AJAX requests`
			`$isAjax = !empty($_SERVER['HTTP_X_REQUESTED_WITH']) &&`
			`strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) == 'xmlhttprequest';`

Enhances messages system with JS-based messages 2025-01-23 12:06:36 +00:00			`// Check if file is writable`
			`$isWritable = is_writable($config_file);`
			`$configMessage = '';`
			`if (!$isWritable) {`
Renames messages to feedback 2025-02-16 08:18:26 +00:00			`$configMessage = Feedback::render('ERROR', 'DEFAULT', 'Config file is not writable', false);`
Enhances messages system with JS-based messages 2025-01-23 12:06:36 +00:00			`}`

Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`if ($_SERVER['REQUEST_METHOD'] === 'POST') {`
Adds ratelimiting to some pages 2025-02-17 13:15:05 +00:00			`// Apply rate limiting`
			`checkRateLimit($dbWeb, 'config', $user_id);`

Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`// Ensure no output before this point`
			`ob_clean();`

			`// For AJAX requests, get JSON data`
			`if ($isAjax) {`
			`header('Content-Type: application/json');`

			`// Get raw input`
			`$jsonData = file_get_contents('php://input');`
Fixes config editing JS messages 2025-01-26 15:32:37 +00:00
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`$postData = json_decode($jsonData, true);`

			`if (json_last_error() !== JSON_ERROR_NONE) {`
Fixes config editing JS messages 2025-01-26 15:32:37 +00:00			`$error = json_last_error_msg();`

Renames messages to feedback 2025-02-16 08:18:26 +00:00			`Feedback::flash('ERROR', 'DEFAULT', 'Invalid JSON data received: ' . $error, true);`
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`echo json_encode([`
			`'success' => false,`
Fixes config editing JS messages 2025-01-26 15:32:37 +00:00			`'message' => 'Invalid JSON data received: ' . $error`
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`]);`
			`exit;`
Adds editing of the config file 2024-11-01 16:23:40 +00:00			`}`

Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`// Try to update config file`
			`$result = $configObject->editConfigFile($postData, $config_file);`
			`if ($result === true) {`
Renames messages to feedback 2025-02-16 08:18:26 +00:00			`$messageData = Feedback::getMessageData('NOTICE', 'DEFAULT', 'Config file updated successfully', true);`
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`echo json_encode([`
			`'success' => true,`
			`'message' => 'Config file updated successfully',`
			`'messageData' => $messageData`
			`]);`
			`} else {`
Renames messages to feedback 2025-02-16 08:18:26 +00:00			`$messageData = Feedback::getMessageData('ERROR', 'DEFAULT', "Error updating config file: $result", true);`
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`echo json_encode([`
			`'success' => false,`
			`'message' => "Error updating config file: $result",`
			`'messageData' => $messageData`
			`]);`
Fixes agent config 2024-09-22 09:26:19 +00:00			`}`
Debugs config items management 2025-01-22 20:52:50 +00:00			`exit;`
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`}`
Fixes agent config 2024-09-22 09:26:19 +00:00
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`// Handle non-AJAX POST`
Enhances messages system with JS-based messages 2025-01-23 12:06:36 +00:00			`$result = $configObject->editConfigFile($_POST, $config_file);`
			`if ($result === true) {`
Renames messages to feedback 2025-02-16 08:18:26 +00:00			`Feedback::flash('NOTICE', 'DEFAULT', 'Config file updated successfully', true);`
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`} else {`
Renames messages to feedback 2025-02-16 08:18:26 +00:00			`Feedback::flash('ERROR', 'DEFAULT', "Error updating config file: $result", true);`
Adds platform editing code 2024-08-19 10:25:09 +00:00			`}`

Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`header('Location: ' . htmlspecialchars($app_root) . '?page=config');`
			`exit;`
Platforms edit code 2024-08-18 19:12:45 +00:00			`}`
Separates app code from public files. 2024-08-12 11:12:24 +00:00
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`// Only include template for non-AJAX requests`
			`if (!$isAjax) {`
HTML fixes 2025-01-26 17:07:07 +00:00			`/**`
			`* Handles GET requests to display templates.`
			`*/`

			`if ($userObject->hasRight($user_id, 'view config file')) {`
			`include '../app/templates/config.php';`
			`} else {`
			`$logObject->insertLog($user_id, "Unauthorized: User \"$currentUser\" tried to access \"config\" page. IP: $user_IP", 'system');`
			`include '../app/templates/error-unauthorized.php';`
			`}`
Updates design of config page, adds ajax 2025-01-23 10:42:27 +00:00			`}`
Separates app code from public files. 2024-08-12 11:12:24 +00:00			`?>`