Changeset 195

Timestamp:

12/12/11 17:52:55 (12 years ago)

Author:

Kris Deugau

Message:

/trunk

More log behaviour tweaking

• fix broken detail-logging of MX/SRV records on record add
• add flag to control failure logging
• fix broken user fullname grabber in _log

Tweak config loading with a few new options

Location:

trunk

Files:

• DNSDB.pm (modified) (6 diffs)
• dns.cgi (modified) (14 diffs)

trunk/DNSDB.pm

@@ -98 +98 @@
 
 # Prepopulate a basic config.  Note some of these *will* cause errors if left unset.
+# note:  add appropriate stanzas in loadConfig to parse these
 our %config = (
                 # Database connection info
@@ -107 +108 @@
                 # Email notice settings
                 mailhost        => 'smtp.example.com',
-                mailsender      => 'dnsdb@example.com',
+                mailnotify      => 'dnsdb@example.com', # to
+                mailsender      => 'dnsdb@example.com', # from
                 mailname        => 'DNS Administration',
+                orgname         => 'Example Corp',
+                domain          => 'example.com',
 
                 # Template directory
@@ -116 +120 @@
 
                 # Session params
-                timeout         => '3600'       # 1 hour default
+                timeout         => '3600',      # 1 hour default
+
+                # Other miscellanea
+                log_failures    => 1,   # log all evarthing by default
         );
 
@@ -150 +157 @@
         "Error opening site config file $siteconfig";
       return;
+    }
+  }
+
+  # Munge log_failures.
+  if ($config{log_failures} ne '1' && $config{log_failures} ne '0') {
+    # true/false, on/off, yes/no all valid.
+    if ($config{log_failures} =~ /^(?:true|false|on|off|yes|no)$/) {
+      if ($config{log_failures} =~ /(?:true|on|yes)/) {
+        $config{log_failures} = 1;
+      } else {
+        $config{log_failures} = 0;
+      }
+    } else {
+      $errstr = "Bad log_failures setting $config{log_failures}";
+      $config{log_failures} = 1;
+      # Bad setting shouldn't be fatal.
+      # return 2;
     }
   }
@@ -190 +214 @@
       # Mail settings
       $config{mailhost}         = $1 if /^mailhost\s*=\s*([a-z0-9_.-]+)/i;
+      $config{mailnotify}       = $1 if /^mailnotify\s*=\s*([a-z0-9_.@-]+)/i;
       $config{mailsender}       = $1 if /^mailsender\s*=\s*([a-z0-9_.@-]+)/i;
       $config{mailname}         = $1 if /^mailname\s*=\s*([a-z0-9\s_.-]+)/i;
+      $config{orgname}          = $1 if /^orgname\s*=\s*([a-z0-9\s_.,'-]+)/i;
+      $config{domain}           = $1 if /^domain\s*=\s*([a-z0-9_.-]+)/i;
       # session - note this is fed directly to CGI::Session
       $config{timeout}  = $1 if /^[tT][iI][mM][eE][oO][uU][tT]\s*=\s*(\d+[smhdwMy]?)/;
+      # log failed actions
+      $config{log_failures}     = $1 if /^log_failures\s*=\s*([a-z01]+)/i;
     }
     close CFG;
@@ -496 +525 @@
 ##fixme:  need better way(s?) to snag userinfo for log entries.  don't want to have
 # to pass around yet *another* constant (already passing $dbh, shouldn't need to)
+  my $fullname;
   if (!$user_id) {
-    $user_id, $fullname) = $dbh->fetchrow_array("SELECT user_id, firstname || ' ' || lastname FROM users".
+    ($user_id, $fullname) = $dbh->selectrow_array("SELECT user_id, firstname || ' ' || lastname FROM users".
         " WHERE username=?", undef, ($username));
   } elsif (!$username) {
-    $username, $fullname) = $dbh->fetchrow_array("SELECT username, firstname || ' ' || lastname FROM users".
+    ($username, $fullname) = $dbh->selectrow_array("SELECT username, firstname || ' ' || lastname FROM users".
+        " WHERE user_id=?", undef, ($user_id));
+  } else {
+    ($fullname) = $dbh->selectrow_array("SELECT firstname || ' ' || lastname FROM users".
         " WHERE user_id=?", undef, ($user_id));
   }

trunk/dns.cgi

@@ -350 +350 @@
     changepage(page => "reclist", id => $msg);
   } else {
-    logaction(0, $session->param("username"), $webvar{group}, "Failed adding domain $webvar{domain} ($msg)");
+    logaction(0, $session->param("username"), $webvar{group}, "Failed adding domain $webvar{domain} ($msg)")
+        if $config{log_failures};
     $session->param('add_failed', 1);
 ##fixme:  domain a security risk for XSS?
@@ -383 +384 @@
       changepage(page => "domlist", resultmsg => "Deleted domain $dom");
     } else {
-      logaction($webvar{id}, $session->param("username"), $pargroup, "Failed to delete domain $dom ($msg)");
+      logaction($webvar{id}, $session->param("username"), $pargroup, "Failed to delete domain $dom ($msg)")
+        if $config{log_failures};
       changepage(page => "domlist", errmsg => "Error deleting domain $dom: $msg");
     }
@@ -520 +522 @@
       if ($webvar{defrec} eq 'y') {
         my $restr = "Added default record '$webvar{name} $typemap{$webvar{type}}";
-        $restr .= " [distance $dist]" if $typemap{$webvar{type}} eq 'MX';
-        $restr .= " [priority $dist] [weight $weight] [port $port]" if $typemap{$webvar{type}} eq 'SRV';
+        $restr .= " [distance $webvar{distance}]" if $typemap{$webvar{type}} eq 'MX';
+        $restr .= " [priority $webvar{distance}] [weight $webvar{weight}] [port $webvar{port}]"
+                if $typemap{$webvar{type}} eq 'SRV';
         $restr .= " $webvar{address}', TTL $webvar{ttl}";
         logaction(0, $session->param("username"), $webvar{parentid}, $restr);
         changepage(page => "reclist", id => $webvar{parentid}, defrec => $webvar{defrec}, resultmsg => $restr);
       } else {
-        my $restr = "Added record '$webvar{name} $typemap{$webvar{type}}".
-        $restr .= " [distance $dist]" if $typemap{$webvar{type}} eq 'MX';
-        $restr .= " [priority $dist] [weight $weight] [port $port]" if $typemap{$webvar{type}} eq 'SRV';
+        my $restr = "Added record '$webvar{name} $typemap{$webvar{type}}";
+        $restr .= " [distance $webvar{dist}]" if $typemap{$webvar{type}} eq 'MX';
+        $restr .= " [priority $webvar{dist}] [weight $webvar{weight}] [port $webvar{port}]"
+                if $typemap{$webvar{type}} eq 'SRV';
         $restr .= " $webvar{address}', TTL $webvar{ttl}";
         logaction($webvar{parentid}, $session->param("username"), parentID($webvar{parentid}, 'dom', 'group'), $restr);
@@ -543 +547 @@
       $page->param(id           => $webvar{id});
       fill_recdata();   # populate the form... er, mostly.
-      if ($webvar{defrec} eq 'y') {
-        logaction(0, $session->param("username"), $webvar{parentid},
+      if ($config{log_failures}) {
+        if ($webvar{defrec} eq 'y') {
+          logaction(0, $session->param("username"), $webvar{parentid},
                 "Failed adding default record '$webvar{name} $typemap{$webvar{type}} $webvar{address}', TTL $webvar{ttl} ($msg)");
-      } else {
-        logaction($webvar{parentid}, $session->param("username"), parentID($webvar{parentid}, 'dom', 'group'),
+        } else {
+          logaction($webvar{parentid}, $session->param("username"), parentID($webvar{parentid}, 'dom', 'group'),
                 "Failed adding record '$webvar{name} $typemap{$webvar{type}} $webvar{address}', TTL $webvar{ttl} ($msg)");
+        }
       }
     }
@@ -610 +616 @@
       $page->param(id           => $webvar{id});
       fill_recdata();
-      if ($webvar{defrec} eq 'y') {
-        logaction(0, $session->param("username"), $webvar{parentid},
+      if ($config{log_failures}) {
+        if ($webvar{defrec} eq 'y') {
+          logaction(0, $session->param("username"), $webvar{parentid},
                 "Failed updating default record '$typemap{$webvar{type}} $webvar{name} $webvar{address}', TTL $webvar{ttl} ($msg)");
-      } else {
-        logaction($webvar{parentid}, $session->param("username"), parentID($webvar{parentid}, 'dom', 'group'),
+        } else {
+          logaction($webvar{parentid}, $session->param("username"), parentID($webvar{parentid}, 'dom', 'group'),
                 "Failed updating record '$typemap{$webvar{type}} $webvar{name} $webvar{address}', TTL $webvar{ttl} ($msg)");
+        }
       }
     }
@@ -669 +677 @@
     } else {
 ## need to find failure mode
-      if ($webvar{defrec} eq 'y') {
-        logaction(0, $session->param("username"), $rec->{parid},
+      if ($config{log_failures}) {
+        if ($webvar{defrec} eq 'y') {
+          logaction(0, $session->param("username"), $rec->{parid},
                 "Failed deleting default record '$rec->{host} $typemap{$rec->{type}} $rec->{val}',".
                 " TTL $rec->{ttl} ($msg)");
-      } else {
-        logaction($rec->{parid}, $session->param("username"), parentID($rec->{parid}, 'dom', 'group'),
+        } else {
+          logaction($rec->{parid}, $session->param("username"), parentID($rec->{parid}, 'dom', 'group'),
                 "Failed deleting record '$rec->{host} $typemap{$rec->{type}} $rec->{val}', TTL $rec->{ttl} ($msg)");
+        }
       }
       changepage(page => "reclist", id => $webvar{parentid}, defrec => $webvar{defrec},
@@ -740 +750 @@
     $page->param(msg => $DBI::errstr);
     fillsoa($webvar{defrec},$webvar{id});
+##fixme: faillog
   } else {
 
@@ -820 +831 @@
       }
     } # fallthrough else
-    logaction(0, $session->param("username"), $webvar{pargroup}, "Failed to add group $webvar{newgroup}: $msg");
+    logaction(0, $session->param("username"), $webvar{pargroup}, "Failed to add group $webvar{newgroup}: $msg")
+        if $config{log_failures};
     # no point in doing extra work
     fill_permissions($page, \%newperms);
@@ -864 +876 @@
     } else {
 # need to find failure mode
-      logaction(0, $session->param("username"), $delparent, "Failed to delete group $deleteme: $msg");
+      logaction(0, $session->param("username"), $delparent, "Failed to delete group $deleteme: $msg")
+        if $config{log_failures};
       changepage(page => "grpman", errmsg => "Error deleting group $deleteme: $msg");
     }
@@ -913 +926 @@
     } # fallthrough else
     logaction(0, $session->param("username"), $webvar{gid}, "Failed to update default permissions in group ".
-        groupName($dbh, $webvar{gid}).": $msg");
+        groupName($dbh, $webvar{gid}).": $msg")
+        if $config{log_failures};
     # no point in doing extra work
     fill_permissions($page, \%chperms);
@@ -1002 +1016 @@
       } else {
         logaction($webvar{$_}, $session->param("username"), parentID($webvar{$_}, 'dom', 'group'),
-                "Failed to move domain ".domainName($dbh, $webvar{$_})." to group $newgname: $msg");
+                "Failed to move domain ".domainName($dbh, $webvar{$_})." to group $newgname: $msg")
+                if $config{log_failures};
       }
       $row{domerr} = $msg;
@@ -1059 +1074 @@
         $row{domok} = ($code eq 'OK');
       } else {
-        logaction($webvar{$_}, $session->param("username"), $pargroup, "Failed to delete domain $dom: $msg");
+        logaction($webvar{$_}, $session->param("username"), $pargroup, "Failed to delete domain $dom: $msg")
+                if $config{log_failures};
       }
       $row{domerr} = $msg;
@@ -1251 +1267 @@
       fill_clonemelist();
       logaction(0, $session->param("username"), $curgroup, "Failed to $webvar{action} user ".
-        "$webvar{uname}: $msg");
+        "$webvar{uname}: $msg")
+        if $config{log_failures};
     }
 
@@ -1330 +1347 @@
       list_users($curgroup);
       logaction(0, $session->param("username"), $curgroup, "Failed to delete user ".
-        "$webvar{id}/".$userref->{username}.": $msg");
+        "$webvar{id}/".$userref->{username}.": $msg")
+        if $config{log_failures};
     }
   } else {