Changeset 370

Timestamp:

07/29/12 22:02:48 (12 years ago)

Author:

Kris Deugau

Message:

/trunk

Checkpoint; adding location/view support. See #10.

• add location to menu
• add table and link fields to initial tabledef and upgrade SQL
• add listing subs and list page
• update permissions list and subpage template with new permissions

Location:

trunk

Files:

• DNSDB.pm (modified) (5 diffs)
• dns-1.0-1.2.sql (modified) (4 diffs)
• dns.cgi (modified) (3 diffs)
• dns.sql (modified) (7 diffs)
• templates/loclist.tmpl (added)
• templates/menu.tmpl (modified) (1 diff)
• templates/permlist.tmpl (modified) (1 diff)

trunk/DNSDB.pm

@@ -47 +47 @@
         &addUser &updateUser &delUser &userFullName &userStatus &getUserData
         &getUserCount &getUserList &getUserDropdown
+        &addLoc &updateLoc &delLoc
+        &getLocCount &getLocList &getLocDropdown
         &getSOA &updateSOA &getRecLine &getDomRecs &getRecCount
         &addRec &updateRec &delRec
@@ -72 +74 @@
                 &addUser &updateUser &delUser &userFullName &userStatus &getUserData
                 &getUserCount &getUserList &getUserDropdown
+                &addLoc &updateLoc &delLoc
+                &getLocCount &getLocList &getLocDropdown
                 &getSOA &updateSOA &getRecLine &getDomRecs &getRecCount
                 &addRec &updateRec &delRec
@@ -106 +110 @@
 
 # Arguably defined wholly in the db, but little reason to change without supporting code changes
+# group_view, user_view permissions? separate rDNS permission(s)?
 our @permtypes = qw (
         group_edit      group_create    group_delete
@@ -111 +116 @@
         domain_edit     domain_create   domain_delete
         record_edit     record_create   record_delete
+        location_edit   location_create location_delete location_view
         self_edit       admin
 );
@@ -2891 +2897 @@
 
 } # end getUserData()
+
+
+## DNSDB::addLoc()
+sub addLoc {}
+
+## DNSDB::updateLoc()
+sub updateLoc {}
+
+## DNSDB::delLoc()
+sub delLoc {}
+
+
+## DNSDB::getLocCount()
+# Get count of locations/views
+# Takes a database handle and hash containing at least the current group, and optionally:
+# - a reference list of secondary groups
+# - a filter string
+# - a "Starts with" string
+sub getLocCount {
+  my $dbh = shift;
+
+  my %args = @_;
+
+  my @filterargs;
+
+  $args{startwith} = undef if $args{startwith} && $args{startwith} !~ /^(?:[a-z]|0-9)$/;
+  push @filterargs, "^$args{startwith}" if $args{startwith};
+  push @filterargs, $args{filter} if $args{filter};
+
+
+  my $sql = "SELECT count(*) FROM locations ".
+        "WHERE group_id IN ($args{curgroup}".($args{childlist} ? ",$args{childlist}" : '').")".
+        ($args{startwith} ? " AND description ~* ?" : '').
+        ($args{filter} ? " AND description ~* ?" : '');
+  my ($count) = $dbh->selectrow_array($sql, undef, (@filterargs) );
+  $errstr = $dbh->errstr if !$count;
+  return $count;
+} # end getLocCount()
+
+
+## DNSDB::getLocList()
+sub getLocList {
+  my $dbh = shift;
+
+  my %args = @_;
+
+  my @filterargs;
+
+  $args{startwith} = undef if $args{startwith} && $args{startwith} !~ /^(?:[a-z]|0-9)$/;
+  push @filterargs, "^$args{startwith}" if $args{startwith};
+  push @filterargs, $args{filter} if $args{filter};
+
+  # better to request sorts on "simple" names, but it means we need to map it to real columns
+#  my %sortmap = (user => 'u.username', type => 'u.type', group => 'g.group_name', status => 'u.status',
+#       fname => 'fname');
+#  $args{sortby} = $sortmap{$args{sortby}};
+
+  # protection against bad or missing arguments
+  $args{sortorder} = 'ASC' if !$args{sortorder};
+  $args{sortby} = 'l.description' if !$args{sortby};
+  $args{offset} = 0 if !$args{offset};
+
+  my $sql = "SELECT l.location, l.description, l.iplist, g.group_name ".
+        "FROM locations l ".
+        "INNER JOIN groups g ON l.group_id=g.group_id ".
+        "WHERE l.group_id IN ($args{curgroup}".($args{childlist} ? ",$args{childlist}" : '').")".
+        ($args{startwith} ? " AND l.description ~* ?" : '').
+        ($args{filter} ? " AND l.description ~* ?" : '').
+        " ORDER BY $args{sortby} $args{sortorder} ".
+        ($args{offset} eq 'all' ? '' : " LIMIT $config{perpage} OFFSET ".$args{offset}*$config{perpage});
+  my $ulist = $dbh->selectall_arrayref($sql, { Slice => {} }, (@filterargs) );
+  $errstr = $dbh->errstr if !$ulist;
+  return $ulist;
+} # end getLocList()
+
+
+## DNSDB::getLocDropdown()
 
 

trunk/dns-1.0-1.2.sql

@@ -1 +1 @@
 -- SQL table/record type upgrade file for dnsadmin 1.0 to 1.2 migration
+
+-- need this before we add any other bits
+CREATE TABLE locations (
+    loc character varying (4) PRIMARY KEY,
+    group_id integer NOT NULL DEFAULT 1,
+    iplist text NOT NULL DEFAULT '',
+    description text NOT NULL DEFAULT ''
+);
+
+ALTER TABLE ONLY locations
+    ADD CONSTRAINT "locations_group_id_fkey" FOREIGN KEY (group_id) REFERENCES groups(group_id);
+
+ALTER TABLE permissions ADD COLUMN location_create boolean DEFAULT false NOT NULL;
+ALTER TABLE permissions ADD COLUMN location_edit boolean DEFAULT false NOT NULL;
+ALTER TABLE permissions ADD COLUMN location_delete boolean DEFAULT false NOT NULL;
+ALTER TABLE permissions ADD COLUMN location_view boolean DEFAULT false NOT NULL;
 
 -- Minor buglet;  domains must be unique
@@ -23 +39 @@
 SELECT pg_catalog.setval('default_rev_records_record_id_seq', 5, false);
 
-ALTER TABLE domains ADD COLUMN changed boolean;
-UPDATE domains SET changed=false;
-ALTER TABLE domains ALTER COLUMN changed SET DEFAULT true;
-ALTER TABLE domains ALTER COLUMN changed SET NOT NULL;
+ALTER TABLE domains ADD COLUMN changed boolean DEFAULT true NOT NULL;
+ALTER TABLE domains ADD COLUMN default_location character varying (4) DEFAULT '' NOT NULL;
 -- ~2x performance boost iff most zones are fed to output from the cache
 CREATE INDEX dom_status_index ON domains (status);
@@ -38 +52 @@
     zserial integer,
     sertype character(1) DEFAULT 'D'::bpchar,
-    changed boolean DEFAULT true NOT NULL
+    changed boolean DEFAULT true NOT NULL,
+    default_location character varying (4) DEFAULT '' NOT NULL
 );
 CREATE INDEX rev_status_index ON revzones (status);
@@ -52 +67 @@
 ALTER TABLE records DROP CONSTRAINT "$1";
 ALTER TABLE records ALTER COLUMN domain_id SET DEFAULT 0;
-ALTER TABLE records ADD COLUMN rdns_id INTEGER DEFAULT 0;
-UPDATE records SET rdns_id=0;
-ALTER TABLE records ALTER COLUMN rdns_id SET NOT NULL;
+ALTER TABLE records ADD COLUMN rdns_id INTEGER DEFAULT 0 NOT NULL;
+ALTER TABLE records ADD COLUMN location character varying (4) DEFAULT '' NOT NULL;
+
 -- ~120s -> 75s performance boost on 100K records when always exporting all records
 CREATE INDEX rec_types_index ON records (type);

trunk/dns.cgi

@@ -1342 +1342 @@
   }
 
+} elsif ($webvar{page} eq 'loclist') {
+
+#  changepage(page => "domlist", errmsg => "You are not allowed access to this function")
+#       unless $permissions{admin} || $permissions{ foo? };
+
+  # security check - does the user have permission to access this entity?
+#  if (!check_scope(id => $webvar{id}, type => 'loc')) {
+#    changepage(page => "loclist", errmsg => "You are not permitted to <foo> the requested location/view");
+#  }
+  list_locations();
+
+# Permissions!
+  $page->param(addloc => $permissions{admin} || $permissions{loc_create});
+  $page->param(delloc => $permissions{admin} || $permissions{loc_delete});
+
+} elsif ($webvar{page} eq 'location') {
+
+
 } elsif ($webvar{page} eq 'dnsq') {
 
@@ -1586 +1604 @@
 ##fixme
   $page->param(mayrdns => 1);
+  $page->param(mayloc => 1);
 
   $page->param(maydefrec => $permissions{admin});
@@ -2079 +2098 @@
 
 
+sub list_locations {
+
+  my @childgroups;
+  getChildren($dbh, $curgroup, \@childgroups, 'all') if $searchsubs;
+  my $childlist = join(',',@childgroups);
+
+  my $count = getLocCount($dbh, (childlist => $childlist, curgroup => $curgroup,
+        filter => ($filter ? $filter : undef), startwith => ($startwith ? $startwith : undef) ) );
+
+# fill page count and first-previous-next-last-all bits
+  fill_pgcount($count,"locations/views",'');
+  fill_fpnla($count);
+
+  $sortby = 'user';
+# sort/order
+  $session->param($webvar{page}.'sortby', $webvar{sortby}) if $webvar{sortby};
+  $session->param($webvar{page}.'order', $webvar{order}) if $webvar{order};
+
+  $sortby = $session->param($webvar{page}.'sortby') if $session->param($webvar{page}.'sortby');
+  $sortorder = $session->param($webvar{page}.'order') if $session->param($webvar{page}.'order');
+
+# set up the headers
+  my @cols = ('description', 'iplist', 'group');
+  my %colnames = (description => 'Location/View Name', iplist => 'Permitted IPs/Ranges', group => 'Group');
+  fill_colheads($sortby, $sortorder, \@cols, \%colnames);
+
+# waffle, waffle - keep state on these as well as sortby, sortorder?
+  $page->param("start$startwith" => 1) if $startwith && $startwith =~ /^(?:[a-z]|0-9)$/;
+
+  $page->param(filter => $filter) if $filter;
+  $page->param(searchsubs => $searchsubs) if $searchsubs;
+
+  my $loclist = getLocList($dbh, (childlist => $childlist, curgroup => $curgroup,
+        filter => ($filter ? $filter : undef), startwith => ($startwith ? $startwith : undef),
+        offset => $webvar{offset}, sortby => $sortby, sortorder => $sortorder) );
+  # Some UI things need to be done to the list
+  foreach my $l (@{$loclist}) {
+    $l->{edloc} = ($permissions{admin} || $permissions{loc_edit});
+    $l->{delloc} = ($permissions{admin} || $permissions{loc_delete});
+  }
+  $page->param(loctable => $loclist);
+} # end list_locations()
+
+
 # Generate all of the glop necessary to add or not the appropriate marker/flag for
 # the sort order and column in domain, user, group, and record lists

trunk/dns.sql

@@ -16 +16 @@
 1       dbversion       1.2
 \.
+
+CREATE TABLE locations (
+    location character varying (4) PRIMARY KEY,
+    group_id integer NOT NULL DEFAULT 1,
+    iplist text NOT NULL DEFAULT '',
+    description text NOT NULL DEFAULT ''
+);
 
 CREATE TABLE default_records (
@@ -66 +73 @@
     zserial integer,
     sertype character(1) DEFAULT 'D'::bpchar,
-    changed boolean DEFAULT true NOT NULL
+    changed boolean DEFAULT true NOT NULL,
+    default_location character varying (4) DEFAULT '' NOT NULL
 );
 
@@ -77 +85 @@
     zserial integer,
     sertype character(1) DEFAULT 'D'::bpchar,
-    changed boolean DEFAULT true NOT NULL
+    changed boolean DEFAULT true NOT NULL,
+    default_location character varying (4) DEFAULT '' NOT NULL
 );
 
@@ -123 +132 @@
     record_edit boolean DEFAULT false NOT NULL,
     record_delete boolean DEFAULT false NOT NULL,
+    location_create boolean DEFAULT false NOT NULL,
+    location_edit boolean DEFAULT false NOT NULL,
+    location_delete boolean DEFAULT false NOT NULL,
+    location_view boolean DEFAULT false NOT NULL,
     user_id integer UNIQUE,
     group_id integer UNIQUE
@@ -129 +142 @@
 -- Need *two* basic permissions;  one for the initial group, one for the default admin user
 COPY permissions (permission_id, admin, self_edit, group_create, group_edit, group_delete, user_create, user_edit, user_delete, domain_create, domain_edit, domain_delete, record_create, record_edit, record_delete, user_id, group_id) FROM stdin;
-1       f       f       f       f       f       f       f       f       t       t       t       t       t       t       \N      1
-2       t       f       f       f       f       f       f       f       f       f       f       f       f       f       1       \N
+1       f       f       f       f       f       f       f       f       t       t       t       t       t       t       f       f       f       f       \N      1
+2       t       f       f       f       f       f       f       f       f       f       f       f       f       f       f       f       f       f       1       \N
 \.
 
@@ -145 +158 @@
     port integer DEFAULT 0 NOT NULL,
     ttl integer DEFAULT 7200 NOT NULL,
-    description text
+    description text,
+    default_location character varying (4) DEFAULT '' NOT NULL
 );
 
@@ -289 +303 @@
 -- foreign keys
 -- fixme: permissions FK refs
+ALTER TABLE ONLY locations
+    ADD CONSTRAINT "locations_group_id_fkey" FOREIGN KEY (group_id) REFERENCES groups(group_id);
+
 ALTER TABLE ONLY domains
     ADD CONSTRAINT "$1" FOREIGN KEY (group_id) REFERENCES groups(group_id);

trunk/templates/menu.tmpl

@@ -9 +9 @@
 <TMPL_IF maydefrec><a href="dns.cgi?sid=<TMPL_VAR NAME=sid>&amp;page=reclist&amp;id=<TMPL_VAR NAME=group>&amp;defrec=y">Default Records</a><br />
 <TMPL_IF mayrdns><a href="dns.cgi?sid=<TMPL_VAR NAME=sid>&amp;page=reclist&amp;id=<TMPL_VAR NAME=group>&amp;defrec=y&amp;revrec=y">Default Reverse Records</a><br /></TMPL_IF></TMPL_IF>
+<TMPL_IF mayloc><a href="dns.cgi?sid=<TMPL_VAR NAME=sid>&amp;page=loclist&id=<TMPL_VAR NAME=group>">Locations/Views</a><br /></TMPL_IF>
 <TMPL_IF mayimport><a href="dns.cgi?sid=<TMPL_VAR NAME=sid>&amp;page=axfr">AXFR Import</a><br /></TMPL_IF>
 <TMPL_IF maybulk><a href="dns.cgi?sid=<TMPL_VAR NAME=sid>&amp;page=bulkdomain">Bulk Domain Operations</a><br /></TMPL_IF>

trunk/templates/permlist.tmpl

@@ -25 +25 @@
 </tr>
 <tr>
+        <td align="right">Location/View:</td>
+        <td<TMPL_UNLESS may_location_edit> class="<TMPL_UNLESS info>noaccess<TMPL_ELSE>info</TMPL_UNLESS>"</TMPL_UNLESS>><input type="checkbox"<TMPL_UNLESS info> name="location_edit"</TMPL_UNLESS><TMPL_IF location_edit> checked="checked"</TMPL_IF><TMPL_UNLESS may_location_edit>disabled="disabled"</TMPL_UNLESS> /> Edit</td>
+        <td<TMPL_UNLESS may_location_create> class="<TMPL_UNLESS info>noaccess<TMPL_ELSE>info</TMPL_UNLESS>"</TMPL_UNLESS>><input type="checkbox"<TMPL_UNLESS info> name="location_create"</TMPL_UNLESS><TMPL_IF location_create> checked="checked"</TMPL_IF><TMPL_UNLESS may_location_create> disabled="disabled"</TMPL_UNLESS> /> Create</td>
+        <td<TMPL_UNLESS may_location_delete> class="<TMPL_UNLESS info>noaccess<TMPL_ELSE>info</TMPL_UNLESS>"</TMPL_UNLESS>><input type="checkbox"<TMPL_UNLESS info> name="location_delete"</TMPL_UNLESS><TMPL_IF location_delete> checked="checked"</TMPL_IF><TMPL_UNLESS may_location_delete> disabled="disabled"</TMPL_UNLESS> /> Delete</td>
+        <td<TMPL_UNLESS may_location_view> class="<TMPL_UNLESS info>noaccess<TMPL_ELSE>info</TMPL_UNLESS>"</TMPL_UNLESS>><input type="checkbox"<TMPL_UNLESS info> name="location_view"</TMPL_UNLESS><TMPL_IF location_view> checked="checked"</TMPL_IF><TMPL_UNLESS may_location_view> disabled="disabled"</TMPL_UNLESS> /> View</td>
+</tr>
+<tr>
         <td align="right">Self:</td>
         <td<TMPL_UNLESS may_self_edit> class="<TMPL_UNLESS info>noaccess<TMPL_ELSE>info</TMPL_UNLESS>"</TMPL_UNLESS>><input type="checkbox"<TMPL_UNLESS info> name="self_edit"</TMPL_UNLESS><TMPL_IF self_edit> checked="checked"</TMPL_IF><TMPL_UNLESS may_self_edit> disabled="disabled"</TMPL_UNLESS> /> Edit</td>