.
* ---------------------------------------------------------------------
*/
/**
* @since 9.2
*/
if (!defined('GLPI_ROOT')) {
die("Sorry. You can't access this file directly");
}
/**
* Class to declare a certificate
*/
class Certificate extends CommonDBTM {
use Glpi\Features\Clonable;
public $dohistory = true;
static $rightname = "certificate";
protected $usenotepad = true;
public function getCloneRelations() :array {
return [
Infocom::class,
Contract_Item::class,
Document_Item::class,
KnowbaseItem_Item::class
];
}
static function getTypeName($nb = 0) {
return _n('Certificate', 'Certificates', $nb);
}
/**
* Clean certificate items
*/
function cleanDBonPurge() {
$this->deleteChildrenAndRelationsFromDb(
[
Certificate_Item::class,
]
);
}
function rawSearchOptions() {
$tab = [];
$tab[] = [
'id' => 'common',
'name' => __('Characteristics')
];
$tab[] = [
'id' => '1',
'table' => $this->getTable(),
'field' => 'name',
'name' => __('Name'),
'datatype' => 'itemlink',
'massiveaction' => false, // implicit key==1
'autocomplete' => true,
];
$tab[] = [
'id' => '2',
'table' => $this->getTable(),
'field' => 'id',
'name' => __('ID'),
'massiveaction' => false, // implicit field is id
'datatype' => 'number'
];
$tab[] = [
'id' => '5',
'table' => $this->getTable(),
'field' => 'serial',
'name' => __('Serial number'),
'datatype' => 'string',
'autocomplete' => true,
];
$tab[] = [
'id' => '6',
'table' => $this->getTable(),
'field' => 'otherserial',
'name' => __('Inventory number'),
'datatype' => 'string',
'autocomplete' => true,
];
$tab = array_merge($tab, Location::rawSearchOptionsToAdd());
$tab[] = [
'id' => '7',
'table' => 'glpi_certificatetypes',
'field' => 'name',
'name' => _n('Type', 'Types', 1),
'datatype' => 'dropdown'
];
$tab[] = [
'id' => '8',
'table' => $this->getTable(),
'field' => 'dns_suffix',
'name' => __('DNS suffix'),
'autocomplete' => true,
];
$tab[] = [
'id' => '9',
'table' => $this->getTable(),
'field' => 'is_autosign',
'name' => __('Self-signed'),
'datatype' => 'bool'
];
$tab[] = [
'id' => '10',
'table' => $this->getTable(),
'field' => 'date_expiration',
'name' => __('Expiration date'),
'datatype' => 'date'
];
$tab[] = [
'id' => '11',
'table' => $this->getTable(),
'field' => 'command',
'name' => __('Command used'),
'datatype' => 'text'
];
$tab[] = [
'id' => '12',
'table' => $this->getTable(),
'field' => 'certificate_request',
'name' => __('Certificate request (CSR)'),
'datatype' => 'text'
];
$tab[] = [
'id' => '13',
'table' => $this->getTable(),
'field' => 'certificate_item',
'name' => self::getTypeName(1),
'datatype' => 'text'
];
$tab[] = [
'id' => '14',
'table' => 'glpi_certificates_items',
'field' => 'items_id',
'name' => _n('Associated item', 'Associated items', Session::getPluralNumber()),
'nosearch' => true,
'massiveaction' => false,
'forcegroupby' => true,
'additionalfields' => ['itemtype'],
'joinparams' => ['jointype' => 'child']
];
$tab[] = [
'id' => '15',
'table' => $this->getTable(),
'field' => 'comment',
'name' => __('Comments'),
'datatype' => 'text'
];
$tab[] = [
'id' => '16',
'table' => $this->getTable(),
'field' => 'contact',
'name' => __('Alternate username'),
'datatype' => 'string',
'autocomplete' => true,
];
$tab[] = [
'id' => '17',
'table' => $this->getTable(),
'field' => 'contact_num',
'name' => __('Alternate username number'),
'datatype' => 'string',
'autocomplete' => true,
];
$tab[] = [
'id' => '18',
'table' => $this->getTable(),
'field' => 'dns_name',
'name' => __('DNS name'),
'autocomplete' => true,
];
$tab[] = [
'id' => '19',
'table' => $this->getTable(),
'field' => 'date_mod',
'name' => __('Last update'),
'datatype' => 'datetime',
'massiveaction' => false
];
$tab[] = [
'id' => '23',
'table' => 'glpi_manufacturers',
'field' => 'name',
'name' => Manufacturer::getTypeName(1),
'datatype' => 'dropdown'
];
$tab[] = [
'id' => '24',
'table' => 'glpi_users',
'field' => 'name',
'linkfield' => 'users_id_tech',
'name' => __('Technician in charge of the hardware'),
'datatype' => 'dropdown',
'right' => 'own_ticket'
];
$tab[] = [
'id' => '31',
'table' => 'glpi_states',
'field' => 'completename',
'name' => __('Status'),
'datatype' => 'dropdown',
'condition' => ['is_visible_certificate' => 1]
];
$tab[] = [
'id' => '49',
'table' => 'glpi_groups',
'field' => 'completename',
'linkfield' => 'groups_id_tech',
'name' => __('Group in charge of the hardware'),
'condition' => ['is_assign' => 1],
'datatype' => 'dropdown'
];
$tab[] = [
'id' => '61',
'table' => $this->getTable(),
'field' => 'template_name',
'name' => __('Template name'),
'datatype' => 'text',
'massiveaction' => false,
'nosearch' => true,
'nodisplay' => true,
'autocomplete' => true,
];
$tab[] = [
'id' => '70',
'table' => 'glpi_users',
'field' => 'name',
'name' => User::getTypeName(1),
'datatype' => 'dropdown',
'right' => 'all'
];
$tab[] = [
'id' => '71',
'table' => 'glpi_groups',
'field' => 'completename',
'name' => Group::getTypeName(1),
'condition' => ['is_itemgroup' => 1],
'datatype' => 'dropdown'
];
$tab[] = [
'id' => '72',
'table' => 'glpi_certificates_items',
'field' => 'id',
'name' => _x('quantity', 'Number of associated items'),
'forcegroupby' => true,
'usehaving' => true,
'datatype' => 'count',
'massiveaction' => false,
'joinparams' => [
'jointype' => 'child'
]
];
$tab[] = [
'id' => '80',
'table' => 'glpi_entities',
'field' => 'completename',
'name' => Entity::getTypeName(1),
'datatype' => 'dropdown'
];
$tab[] = [
'id' => '86',
'table' => $this->getTable(),
'field' => 'is_recursive',
'name' => __('Child entities'),
'datatype' => 'bool'
];
$tab[] = [
'id' => '121',
'table' => $this->getTable(),
'field' => 'date_creation',
'name' => __('Creation date'),
'datatype' => 'datetime',
'massiveaction' => false
];
// add objectlock search options
$tab = array_merge($tab, ObjectLock::rawSearchOptionsToAdd(get_class($this)));
$tab = array_merge($tab, Notepad::rawSearchOptionsToAdd());
return $tab;
}
/**
* @param array $options
* @return array
*/
function defineTabs($options = []) {
$ong = [];
$this->addDefaultFormTab($ong)
->addStandardTab(__CLASS__, $ong, $options)
->addStandardTab('Certificate_Item', $ong, $options)
->addStandardTab('Infocom', $ong, $options)
->addStandardTab('Contract_Item', $ong, $options)
->addStandardTab('Document_Item', $ong, $options)
->addStandardTab('KnowbaseItem_Item', $ong, $options)
->addStandardTab('Ticket', $ong, $options)
->addStandardTab('Item_Problem', $ong, $options)
->addStandardTab('Change_Item', $ong, $options)
->addStandardTab('Link', $ong, $options)
->addStandardTab('Lock', $ong, $options)
->addStandardTab('Notepad', $ong, $options)
->addStandardTab('Log', $ong, $options);
return $ong;
}
function prepareInputForAdd($input) {
if (isset($input["id"]) && ($input["id"] > 0)) {
$input["_oldID"] = $input["id"];
}
unset($input['id']);
unset($input['withtemplate']);
return $input;
}
/**
* @param $ID
* @param array $options
* @return bool
*/
function showForm($ID, $options = []) {
$this->initForm($ID, $options);
$this->showFormHeader($options);
echo "";
//TRANS: %1$s is a string, %2$s a second one without spaces between them : to change for RTL
echo "| ".sprintf(__('%1$s%2$s'), __('Name'),
(isset($options['withtemplate'])
&& $options['withtemplate']?"*":"")).
" | ";
echo "";
$objectName = autoName($this->fields["name"], "name",
(isset($options['withtemplate'])
&& ( $options['withtemplate']== 2)),
$this->getType(), $this->fields["entities_id"]);
Html::autocompletionTextField($this, 'name', ['value' => $objectName]);
echo " | ";
echo "".__('Status')." | ";
echo "";
State::dropdown([
'value' => $this->fields["states_id"],
'entity' => $this->fields["entities_id"],
'condition' => ['is_visible_certificate' => 1]
]);
echo " |
\n";
echo "";
echo "| ".Location::getTypeName(1)." | ";
echo "";
Location::dropdown(['value' => $this->fields["locations_id"],
'entity' => $this->fields["entities_id"]]);
echo " | ";
echo ""._n('Type', 'Types', 1)." | ";
echo "";
Dropdown::show('CertificateType',
['name' => "certificatetypes_id",
'value' => $this->fields["certificatetypes_id"],
'entity' => $this->fields["entities_id"]
]);
echo " |
\n";
echo "";
echo "| ".__('Technician in charge of the hardware')." | ";
echo "";
User::dropdown(['name' => 'users_id_tech',
'value' => $this->fields["users_id_tech"],
'right' => 'own_ticket',
'entity' => $this->fields["entities_id"]]);
echo " | ";
echo "".Manufacturer::getTypeName(1)." (" . __('Root CA') . ")";
echo " | ";
Manufacturer::dropdown(['value' => $this->fields["manufacturers_id"]]);
echo " |
\n";
echo "";
echo "| ".__('Serial number')." | ";
echo "";
Html::autocompletionTextField($this, 'serial');
echo " | ".sprintf(__('%1$s%2$s'), __('Inventory number'),
(isset($options['withtemplate']) && $options['withtemplate']?"*":"")).
" | ";
echo "";
$objectName = autoName($this->fields["otherserial"], "otherserial",
(isset($options['withtemplate']) && ($options['withtemplate'] == 2)),
$this->getType(), $this->fields["entities_id"]);
Html::autocompletionTextField($this, 'otherserial', ['value' => $objectName]);
echo " |
\n";
echo "";
echo "| ".__('Group in charge of the hardware')." | ";
echo "";
Group::dropdown([
'name' => 'groups_id_tech',
'value' => $this->fields['groups_id_tech'],
'entity' => $this->fields['entities_id'],
'condition' => ['is_assign' => 1]
]);
echo " | |
\n";
echo "";
echo "| ".User::getTypeName(1)." | ";
echo "";
User::dropdown(['value' => $this->fields["users_id"],
'entity' => $this->fields["entities_id"],
'right' => 'all']);
echo " | ";
echo "".Group::getTypeName(1)." | ";
echo "";
Group::dropdown([
'value' => $this->fields["groups_id"],
'entity' => $this->fields["entities_id"],
'condition' => ['is_itemgroup' => 1]
]);
echo " |
\n";
echo "";
echo "| ".__('Alternate username number')." | ";
echo "";
Html::autocompletionTextField($this, "contact_num");
echo " | ";
echo "".__('Alternate username')." | ";
echo "";
Html::autocompletionTextField($this, "contact");
echo " |
";
echo "";
echo "| " . __('Self-signed') . " | ";
echo "";
Dropdown::showYesNo('is_autosign', $this->fields["is_autosign"]);
echo " | ".__('Comments')." | ";
echo "";
echo " |
";
echo "";
echo "| " . __('DNS name') . " | ";
echo "";
Html::autocompletionTextField($this, "dns_name");
echo " |
\n";
echo "";
echo "| " . __('DNS suffix') . " | ";
echo "";
Html::autocompletionTextField($this, "dns_suffix");
echo " |
";
echo "";
echo "| " . __('Expiration date');
echo " ";
Html::showToolTip(nl2br(__('Empty for infinite')));
echo " | ";
echo "";
Html::showDateField('date_expiration', ['value' => $this->fields["date_expiration"]]);
echo " |
";
echo "";
echo "| ";
echo __('Command used') . " | ";
echo "";
echo "";
echo " |
";
echo "";
echo "| ";
echo __('Certificate request (CSR)') . " | ";
echo "";
echo "";
echo " |
";
echo "";
echo "| ". self::getTypeName(1) . " | ";
echo "";
echo "";
echo " |
";
$this->showFormButtons($options);
return true;
}
/**
* @since 0.85
*
* @see CommonDBTM::getSpecificMassiveActions()
* @param null $checkitem
* @return array
*/
function getSpecificMassiveActions($checkitem = null) {
$actions = parent::getSpecificMassiveActions($checkitem);
if (Session::getCurrentInterface() == 'central') {
if (self::canUpdate()) {
$actions[__CLASS__ . MassiveAction::CLASS_ACTION_SEPARATOR . 'install']
= _x('button', 'Associate certificate');
$actions[__CLASS__ . MassiveAction::CLASS_ACTION_SEPARATOR . 'uninstall']
= _x('button', 'Dissociate certificate');
}
}
return $actions;
}
/**
* @since 0.85
*
* @see CommonDBTM::showMassiveActionsSubForm()
* @param MassiveAction $ma
* @return bool|false
*/
static function showMassiveActionsSubForm(MassiveAction $ma) {
switch ($ma->getAction()) {
case __CLASS__ . MassiveAction::CLASS_ACTION_SEPARATOR . 'install' :
Dropdown::showSelectItemFromItemtypes(['items_id_name' => 'item_item',
'itemtype_name' => 'typeitem',
'itemtypes' => self::getTypes(true),
'checkright' => true
]);
echo Html::submit(_x('button', 'Post'), ['name' => 'massiveaction']);
return true;
break;
case __CLASS__ . MassiveAction::CLASS_ACTION_SEPARATOR . 'uninstall' :
Dropdown::showSelectItemFromItemtypes(['items_id_name' => 'item_item',
'itemtype_name' => 'typeitem',
'itemtypes' => self::getTypes(true),
'checkright' => true
]);
echo Html::submit(_x('button', 'Post'), ['name' => 'massiveaction']);
return true;
break;
}
return parent::showMassiveActionsSubForm($ma);
}
/**
* @since 0.85
*
* @see CommonDBTM::processMassiveActionsForOneItemtype()
* @param MassiveAction $ma
* @param CommonDBTM $item
* @param array $ids
* @return void
*/
static function processMassiveActionsForOneItemtype(MassiveAction $ma,
CommonDBTM $item,
array $ids) {
$certif_item = new Certificate_Item();
switch ($ma->getAction()) {
case __CLASS__ . MassiveAction::CLASS_ACTION_SEPARATOR . 'add_item':
$input = $ma->getInput();
foreach ($ids as $id) {
$input = ['certificates_id' => $input['certificates_id'],
'items_id' => $id,
'itemtype' => $item->getType()
];
if ($certif_item->can(-1, UPDATE, $input)) {
if ($certif_item->add($input)) {
$ma->itemDone($item->getType(), $id, MassiveAction::ACTION_OK);
} else {
$ma->itemDone($item->getType(), $id, MassiveAction::ACTION_KO);
}
} else {
$ma->itemDone($item->getType(), $id, MassiveAction::ACTION_KO);
}
}
return;
case __CLASS__ . MassiveAction::CLASS_ACTION_SEPARATOR . 'install' :
$input = $ma->getInput();
foreach ($ids as $key) {
if ($item->can($key, UPDATE)) {
$values = ['plugin_certificates_certificates_id'
=> $key,
'items_id' => $input["item_item"],
'itemtype' => $input['typeitem']];
if ($certif_item->add($values)) {
$ma->itemDone($item->getType(), $key, MassiveAction::ACTION_OK);
} else {
$ma->itemDone($item->getType(), $key, MassiveAction::ACTION_KO);
}
} else {
$ma->itemDone($item->getType(), $key, MassiveAction::ACTION_NORIGHT);
$ma->addMessage($item->getErrorMessage(ERROR_RIGHT));
}
}
return;
case __CLASS__ . MassiveAction::CLASS_ACTION_SEPARATOR . 'uninstall':
$input = $ma->getInput();
foreach ($ids as $key) {
if ($certif_item->deleteItemByCertificatesAndItem($key, $input['item_item'], $input['typeitem'])) {
$ma->itemDone($item->getType(), $key, MassiveAction::ACTION_OK);
} else {
$ma->itemDone($item->getType(), $key, MassiveAction::ACTION_KO);
}
}
return;
}
parent::processMassiveActionsForOneItemtype($ma, $item, $ids);
}
/**
* Type than could be linked to a certificate
*
* @param boolean $all Get all possible types or only allowed ones
*
* @return array of types
**/
static function getTypes($all = false) {
global $CFG_GLPI;
$types = $CFG_GLPI['certificate_types'];
foreach ($types as $key => $type) {
if (!class_exists($type)) {
continue;
}
if (!$type::canView()) {
unset($types[$key]);
}
}
return $types;
}
/**
* Give cron information
*
* @param $name : task's name
*
* @return array
**/
static function cronInfo($name) {
return ['description' => __('Send alarms on expired certificate')];
}
/**
* Cron action on certificates : alert on expired certificates
*
* @param CronTask $task to log, if NULL display (default NULL)
*
* @return integer 0 : nothing to do 1 : done with success
**/
static function cronCertificate($task = null) {
global $DB, $CFG_GLPI;
$cron_status = 1;
if (!$CFG_GLPI['use_notifications']) {
return 0;
}
$message = [];
foreach (array_keys(Entity::getEntitiesToNotify('use_certificates_alert')) as $entity) {
$before = Entity::getUsedConfig('send_certificates_alert_before_delay', $entity);
// Check licenses
$result = $DB->request(
[
'SELECT' => [
'glpi_certificates.*',
],
'FROM' => self::getTable(),
'LEFT JOIN' => [
'glpi_alerts' => [
'FKEY' => [
'glpi_alerts' => 'items_id',
'glpi_certificates' => 'id',
[
'AND' => [
'glpi_alerts.itemtype' => __CLASS__,
'glpi_alerts.type' => Alert::END,
],
],
]
]
],
'WHERE' => [
'glpi_alerts.date' => null,
'glpi_certificates.is_deleted' => 0,
'glpi_certificates.is_template' => 0,
[
'NOT' => ['glpi_certificates.date_expiration' => null],
],
[
'RAW' => [
'DATEDIFF(' . DBmysql::quoteName('glpi_certificates.date_expiration') . ', CURDATE())' => ['<', $before]
]
],
'glpi_certificates.entities_id' => $entity,
],
]
);
$message = "";
$items = [];
foreach ($result as $certificate) {
$name = $certificate['name'].' - '.$certificate['serial'];
//TRANS: %1$s the license name, %2$s is the expiration date
$message .= sprintf(__('Certificate %1$s expired on %2$s'),
Html::convDate($certificate["date_expiration"]), $name)."
\n";
$items[$certificate['id']] = $certificate;
}
if (!empty($items)) {
$alert = new Alert();
$options = [
'entities_id' => $entity,
'certificates' => $items,
];
if (NotificationEvent::raiseEvent('alert', new self(), $options)) {
$entityname = Dropdown::getDropdownName("glpi_entities", $entity);
if ($task) {
//TRANS: %1$s is the entity, %2$s is the message
$task->log(sprintf(__('%1$s: %2$s')."\n", $entityname, $message));
$task->addVolume(1);
} else {
Session::addMessageAfterRedirect(sprintf(__('%1$s: %2$s'),
$entityname, $message));
}
$input = [
'type' => Alert::END,
'itemtype' => __CLASS__,
];
// add alerts
foreach ($items as $ID => $certificate) {
$input["items_id"] = $ID;
$alert->add($input);
unset($alert->fields['id']);
}
} else {
$entityname = Dropdown::getDropdownName('glpi_entities', $entity);
//TRANS: %s is entity name
$msg = sprintf(__('%1$s: %2$s'), $entityname, __('Send Certificates alert failed'));
if ($task) {
$task->log($msg);
} else {
Session::addMessageAfterRedirect($msg, false, ERROR);
}
}
}
}
return $cron_status;
}
/**
* Display debug information for current object
**/
function showDebug() {
NotificationEvent::debugEvent($this);
}
static function getIcon() {
return "fas fa-certificate";
}
}