318 lines
9.3 KiB
PHP
318 lines
9.3 KiB
PHP
<?php
|
|
|
|
/**
|
|
* Jilo web logs observer
|
|
*
|
|
* Description: A web interface to Jilo (JItsi Logs Observer), written in PHP
|
|
* Author: Yasen Pramatarov
|
|
* License: GPLv2
|
|
* Project URL: https://lindeas.com/jilo
|
|
* Year: 2024-2025
|
|
* Version: 0.4
|
|
*/
|
|
|
|
// Preparing plugins and hooks
|
|
$GLOBALS['plugin_hooks'] = [];
|
|
$enabled_plugins = [];
|
|
|
|
// Plugin discovery
|
|
$plugins_dir = dirname(__DIR__) . '/plugins/';
|
|
foreach (glob($plugins_dir . '*', GLOB_ONLYDIR) as $plugin_path) {
|
|
$manifest = $plugin_path . '/plugin.json';
|
|
if (file_exists($manifest)) {
|
|
$meta = json_decode(file_get_contents($manifest), true);
|
|
if (!empty($meta['enabled'])) {
|
|
$plugin_name = basename($plugin_path);
|
|
$enabled_plugins[$plugin_name] = [
|
|
'path' => $plugin_path,
|
|
'meta' => $meta
|
|
];
|
|
// Autoload plugin bootstrap if exists
|
|
$bootstrap = $plugin_path . '/bootstrap.php';
|
|
if (file_exists($bootstrap)) {
|
|
include_once $bootstrap;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
$GLOBALS['enabled_plugins'] = $enabled_plugins;
|
|
|
|
// Simple hook system
|
|
function register_hook($hook, $callback) {
|
|
$GLOBALS['plugin_hooks'][$hook][] = $callback;
|
|
}
|
|
function do_hook($hook, $context = []) {
|
|
if (!empty($GLOBALS['plugin_hooks'][$hook])) {
|
|
foreach ($GLOBALS['plugin_hooks'][$hook] as $callback) {
|
|
call_user_func($callback, $context);
|
|
}
|
|
}
|
|
}
|
|
|
|
// Define CSRF token include path globally
|
|
if (!defined('CSRF_TOKEN_INCLUDE')) {
|
|
define('CSRF_TOKEN_INCLUDE', dirname(__DIR__) . '/app/includes/csrf_token.php');
|
|
}
|
|
|
|
// we start output buffering and
|
|
// flush it later only when there is no redirect
|
|
ob_start();
|
|
|
|
// Start session before any session-dependent code
|
|
require_once '../app/classes/session.php';
|
|
Session::startSession();
|
|
|
|
// Apply security headers
|
|
require_once '../app/includes/security_headers_middleware.php';
|
|
|
|
// sanitize all input vars that may end up in URLs or forms
|
|
require '../app/includes/sanitize.php';
|
|
|
|
// Check session validity
|
|
$validSession = Session::isValidSession();
|
|
|
|
// Get user ID early if session is valid
|
|
$userId = $validSession ? Session::getUserId() : null;
|
|
|
|
// Initialize feedback message system
|
|
require_once '../app/classes/feedback.php';
|
|
$system_messages = [];
|
|
|
|
require '../app/includes/errors.php';
|
|
|
|
// error reporting, comment out in production
|
|
ini_set('display_errors', 1);
|
|
ini_set('display_startup_errors', 1);
|
|
error_reporting(E_ALL);
|
|
|
|
// list of available pages
|
|
// edit accordingly, add 'pages/PAGE.php'
|
|
$allowed_urls = [
|
|
'dashboard',
|
|
|
|
'conferences',
|
|
'participants',
|
|
'components',
|
|
|
|
'graphs',
|
|
'latest',
|
|
'livejs',
|
|
|
|
'agents',
|
|
|
|
'config',
|
|
|
|
'profile',
|
|
'credentials',
|
|
|
|
'settings',
|
|
'security',
|
|
'status',
|
|
'logs',
|
|
'help',
|
|
|
|
'login',
|
|
'logout',
|
|
'register',
|
|
|
|
'about',
|
|
];
|
|
|
|
// Let plugins filter/extend allowed_urls
|
|
function filter_allowed_urls($urls) {
|
|
if (!empty($GLOBALS['plugin_hooks']['filter_allowed_urls'])) {
|
|
foreach ($GLOBALS['plugin_hooks']['filter_allowed_urls'] as $callback) {
|
|
$urls = call_user_func($callback, $urls);
|
|
}
|
|
}
|
|
return $urls;
|
|
}
|
|
$allowed_urls = filter_allowed_urls($allowed_urls);
|
|
|
|
// cnfig file
|
|
// possible locations, in order of preference
|
|
$config_file_locations = [
|
|
__DIR__ . '/../app/config/jilo-web.conf.php',
|
|
__DIR__ . '/../jilo-web.conf.php',
|
|
'/srv/jilo-web/jilo-web.conf.php',
|
|
'/opt/jilo-web/jilo-web.conf.php'
|
|
];
|
|
$config_file = null;
|
|
// try to find the config file
|
|
foreach ($config_file_locations as $location) {
|
|
if (file_exists($location)) {
|
|
$config_file = $location;
|
|
break;
|
|
}
|
|
}
|
|
// if found, use it
|
|
if ($config_file) {
|
|
$localConfigPath = str_replace(__DIR__ . '/..', '', $config_file);
|
|
$config = require $config_file;
|
|
} else {
|
|
die('Config file not found');
|
|
}
|
|
|
|
$app_root = $config['folder'];
|
|
|
|
// List of pages that don't require authentication
|
|
$public_pages = ['login', 'register', 'help', 'about'];
|
|
|
|
// Check if the requested page requires authentication
|
|
if (!isset($_COOKIE['username']) && !$validSession && !in_array($page, $public_pages)) {
|
|
require_once '../app/includes/session_middleware.php';
|
|
applySessionMiddleware($config, $app_root);
|
|
}
|
|
|
|
// Check session and redirect if needed
|
|
$currentUser = null;
|
|
if ($validSession) {
|
|
$currentUser = Session::getUsername();
|
|
} else if (isset($_COOKIE['username']) && !in_array($page, $public_pages)) {
|
|
// Cookie exists but session is invalid - redirect to login
|
|
if (!isset($_SESSION['session_timeout_shown'])) {
|
|
Feedback::flash('LOGIN', 'SESSION_TIMEOUT');
|
|
$_SESSION['session_timeout_shown'] = true;
|
|
}
|
|
header('Location: ' . htmlspecialchars($app_root) . '?page=login');
|
|
exit();
|
|
} else if (!in_array($page, $public_pages)) {
|
|
// No valid session or cookie, and not a public page
|
|
header('Location: ' . htmlspecialchars($app_root) . '?page=login');
|
|
exit();
|
|
}
|
|
|
|
// connect to db of Jilo Web
|
|
require '../app/classes/database.php';
|
|
require '../app/includes/database.php';
|
|
try {
|
|
$response = connectDB($config);
|
|
if (!$response['db']) {
|
|
throw new Exception('Could not connect to database: ' . $response['error']);
|
|
}
|
|
$dbWeb = $response['db'];
|
|
} catch (Exception $e) {
|
|
Feedback::flash('ERROR', 'DEFAULT', getError('Error connecting to the database.', $e->getMessage()));
|
|
include '../app/templates/page-header.php';
|
|
include '../app/helpers/feedback.php';
|
|
include '../app/templates/page-footer.php';
|
|
exit();
|
|
}
|
|
|
|
// start logging
|
|
require '../app/classes/log.php';
|
|
include '../app/helpers/logs.php';
|
|
$logObject = new Log($dbWeb);
|
|
$user_IP = getUserIP();
|
|
|
|
// Initialize security middleware
|
|
require_once '../app/includes/csrf_middleware.php';
|
|
require_once '../app/helpers/security.php';
|
|
$security = SecurityHelper::getInstance();
|
|
|
|
// Verify CSRF token for POST requests
|
|
applyCsrfMiddleware();
|
|
|
|
// init rate limiter
|
|
require '../app/classes/ratelimiter.php';
|
|
|
|
// get platforms details
|
|
require '../app/classes/platform.php';
|
|
$platformObject = new Platform($dbWeb);
|
|
$platformsAll = $platformObject->getPlatformDetails();
|
|
|
|
// by default we connect ot the first configured platform
|
|
if ($platform_id == '') {
|
|
$platform_id = $platformsAll[0]['id'];
|
|
}
|
|
|
|
$platformDetails = $platformObject->getPlatformDetails($platform_id);
|
|
|
|
// init user functions
|
|
require '../app/classes/user.php';
|
|
include '../app/helpers/profile.php';
|
|
$userObject = new User($dbWeb);
|
|
|
|
// logout is a special case, as we can't use session vars for notices
|
|
if ($page == 'logout') {
|
|
// clean up session
|
|
Session::destroySession();
|
|
|
|
// start new session for the login page
|
|
Session::startSession();
|
|
|
|
setcookie('username', "", time() - 100, $config['folder'], $config['domain'], isset($_SERVER['HTTPS']), true);
|
|
|
|
// Log successful logout
|
|
$logObject->insertLog($userId, "Logout: User \"$currentUser\" logged out. IP: $user_IP", 'user');
|
|
|
|
// Set success message
|
|
Feedback::flash('LOGIN', 'LOGOUT_SUCCESS');
|
|
|
|
include '../app/templates/page-header.php';
|
|
include '../app/templates/page-menu.php';
|
|
include '../app/pages/login.php';
|
|
include '../app/templates/page-footer.php';
|
|
|
|
} else {
|
|
|
|
// if user is logged in, we need user details and rights
|
|
if ($validSession) {
|
|
// If by error a logged in user requests the login page
|
|
if ($page === 'login') {
|
|
header('Location: ' . htmlspecialchars($app_root));
|
|
exit();
|
|
}
|
|
$userDetails = $userObject->getUserDetails($userId);
|
|
$userRights = $userObject->getUserRights($userId);
|
|
$userTimezone = (!empty($userDetails[0]['timezone'])) ? $userDetails[0]['timezone'] : 'UTC'; // Default to UTC if no timezone is set (or is missing)
|
|
|
|
// check if the Jilo Server is running
|
|
require '../app/classes/server.php';
|
|
$serverObject = new Server($dbWeb);
|
|
|
|
$server_host = '127.0.0.1';
|
|
$server_port = '8080';
|
|
$server_endpoint = '/health';
|
|
$server_status = $serverObject->getServerStatus($server_host, $server_port, $server_endpoint);
|
|
if (!$server_status) {
|
|
Feedback::flash('ERROR', 'DEFAULT', 'The Jilo Server is not running. Some data may be old and incorrect.', false, true);
|
|
}
|
|
}
|
|
|
|
// --- Plugin loading logic for all enabled plugins ---
|
|
$plugin_controllers = [];
|
|
foreach ($GLOBALS['enabled_plugins'] as $plugin_name => $plugin_info) {
|
|
$controller_path = $plugin_info['path'] . '/controllers/' . $plugin_name . '.php';
|
|
if (file_exists($controller_path)) {
|
|
$plugin_controllers[$plugin_name] = $controller_path;
|
|
}
|
|
}
|
|
|
|
// page building
|
|
include '../app/templates/page-header.php';
|
|
include '../app/templates/page-menu.php';
|
|
if ($validSession) {
|
|
include '../app/templates/page-sidebar.php';
|
|
}
|
|
if (in_array($page, $allowed_urls)) {
|
|
// all normal pages
|
|
if (isset($plugin_controllers[$page])) {
|
|
include $plugin_controllers[$page];
|
|
} else {
|
|
include "../app/pages/{$page}.php";
|
|
}
|
|
} else {
|
|
// the page is not in allowed urls, loading "not found" page
|
|
include '../app/templates/error-notfound.php';
|
|
}
|
|
include '../app/templates/page-footer.php';
|
|
}
|
|
|
|
// flush the output buffer and show the page
|
|
ob_end_flush();
|
|
|
|
// clear errors and notices before next page just in case
|
|
unset($_SESSION['error']);
|
|
unset($_SESSION['notice']);
|