Source of file jeeApi.php
Size: 45,971 Bytes - Last Modified: 2020-10-24T02:46:31+00:00
/home/travis/build/NextDom/nextdom-core/src/Api/jeeApi.php
| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085 | <?php/* This file is part of Jeedom.** Jeedom is free software: you can redistribute it and/or modify* it under the terms of the GNU General Public License as published by* the Free Software Foundation, either version 3 of the License, or* (at your option) any later version.** Jeedom is distributed in the hope that it will be useful,* but WITHOUT ANY WARRANTY; without even the implied warranty of* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the* GNU General Public License for more details.** You should have received a copy of the GNU General Public License* along with Jeedom. If not, see <http://www.gnu.org/licenses/>.*//* This file is part of NextDom Software. * * NextDom is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * NextDom Software is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with NextDom Software. If not, see <http://www.gnu.org/licenses/>. */use NextDom\Enums\CmdType; header('Access-Control-Allow-Origin: *'); require_once __DIR__ . "/../../src/core.php"; if (user::isBan()) { header("Status: 404 Not Found"); header('HTTP/1.0 404 Not Found'); $_SERVER['REDIRECT_STATUS'] = 404; require(NEXTDOM_ROOT . '/public/404.html'); die(); }if (isset($argv)) { foreach ($argv as $arg) { $argList = explode('=', $arg); if (isset($argList[0]) && isset($argList[1])) { $_REQUEST[$argList[0]] = $argList[1]; } } }GLOBAL $_USER_GLOBAL; $_USER_GLOBAL = null; if (init('type') != '') { try { $type = init('type'); $plugin = init('plugin', 'core'); if ($plugin == 'core' && !in_array(init('type'), ['ask', 'cmd', 'interact', 'widget', 'scenario', 'message', 'object', 'eqLogic', 'command', 'fullData', 'variable'])) { $plugin = init('type'); } if (!jeedom::apiAccess(init('apikey', init('api')), $plugin)) { user::failedLogin(); sleep(5); throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action 1, IP : ', __FILE__) . getClientIp()); } if ($plugin != 'core' && !jeedom::apiModeResult(config::byKey('api::' . $plugin . '::mode', 'core', 'enable'))) { user::failedLogin(); sleep(5); throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action (API ' . $plugin . '), IP : ', __FILE__) . getClientIp()); } if (!jeedom::apiModeResult(config::byKey('api::core::http::mode', 'core', 'enable'))) { user::failedLogin(); sleep(5); throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action (HTTP API désactivé), IP : ', __FILE__) . getClientIp()); } if ($type == 'ask') { $cmd = cmd::byId(init('cmd_id')); if (!is_object($cmd)) { throw new Exception(__('Commande inconnue : ', __FILE__) . init('cmd_id')); } if ($cmd->getCache('ask::token', config::genKey()) != init('token')) { throw new Exception(__('Token invalide', __FILE__) . $cmd->getCache('ask::token') . ' != ' . init('token')); } if (init('count', 0) != 0 && init('count', 0) > $cmd->getCache('ask::count', 0)) { $cmd->setCache('ask::count', $cmd->getCache('ask::count', 0) + 1); die(); } $cmd->askResponse(init('response')); } if ($type == 'cmd') { if (is_json(init('id'))) { $ids = json_decode(init('id'), true); $result = []; foreach ($ids as $id) { $cmd = cmd::byId($id); if (!is_object($cmd)) { throw new Exception(__('Aucune commande correspondant à l\'ID : ', __FILE__) . secureXSS($id)); } if (init('plugin', 'core') != 'core' && init('plugin', 'core') != $cmd->getEqType()) { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action 2, IP : ', __FILE__) . getClientIp()); } if ($_USER_GLOBAL != null && !$cmd->hasRight($_USER_GLOBAL)) { continue; } $result[$id] = $cmd->execCmd($_REQUEST); } echo json_encode($result); die(); } else { $cmd = cmd::byId(init('id')); if (!is_object($cmd)) { throw new Exception(__('Aucune commande correspondant à l\'ID : ', __FILE__) . secureXSS(init('id'))); } if (init('plugin', 'core') != 'core' && init('plugin', 'core') != $cmd->getEqType()) { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action 3, IP : ', __FILE__) . getClientIp()); } if ($_USER_GLOBAL != null && !$cmd->hasRight($_USER_GLOBAL)) { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action 4, IP : ', __FILE__) . getClientIp()); } log::add('api', 'debug', __('Exécution de : ', __FILE__) . $cmd->getHumanName()); echo $cmd->execCmd($_REQUEST); die(); } } if ($type != init('plugin', 'core') && init('plugin', 'core') != 'core') { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action 4, IP : ', __FILE__) . getClientIp()); } if (class_exists($type) && method_exists($type, 'event')) { log::add('api', 'info', __('Appels de ', __FILE__) . secureXSS($type) . '::event()'); $type::event(); die(); } if ($type == 'interact') { $query = init('query'); if (init('utf8', 0) == 1) { $query = utf8_encode($query); } $param = []; if (init('emptyReply') != '') { $param['emptyReply'] = init('emptyReply'); } if (init('profile') != '') { $param['profile'] = init('profile'); } if (init('reply_cmd') != '') { $reply_cmd = cmd::byId(init('reply_cmd')); if (is_object($reply_cmd)) { $param['reply_cmd'] = $reply_cmd; $param['force_reply_cmd'] = 1; } } $reply = interactQuery::tryToReply($query, $param); echo $reply['reply']; die(); } if ($type == 'interact') { die(); } if ($type == 'scenario') { log::add('api', 'debug', __('Demande API pour les scénarios', __FILE__)); $scenario = scenario::byId(init('id')); if (!is_object($scenario)) { throw new Exception(__('Aucun scénario correspondant à l\'ID : ', __FILE__) . secureXSS(init('id'))); } if ($_USER_GLOBAL != null && !$scenario->hasRight('x', $_USER_GLOBAL)) { throw new Exception(__('Vous n\'avez pas le droit de faire une action sur ce scénario', __FILE__)); } switch (init('action')) { case 'start': log::add('api', 'debug', __('Démarrage scénario de : ', __FILE__) . $scenario->getHumanName()); $tags = []; foreach ($_REQUEST as $key => $value) { $tags['#' . $key . '#'] = $value; } if (init('tags') != '' && !is_array(init('tags'))) { $_tags = []; $args = arg2array(init('tags')); foreach ($args as $key => $value) { $_tags['#' . trim(trim($key), '#') . '#'] = scenarioExpression::setTags(trim($value), $scenario); } $scenario->setTags($_tags); } else if (is_array(init('tags'))) { $scenario->setTags(init('tags')); } $scenario->launch('api', __('Exécution provoquée par un appel API ', __FILE__)); break; case 'stop': log::add('api', 'debug', __('Arrêt scénario de : ', __FILE__) . $scenario->getHumanName()); $scenario->stop(); break; case 'deactivate': log::add('api', 'debug', __('Désactivation scénario de : ', __FILE__) . $scenario->getHumanName()); $scenario->setIsActive(0); $scenario->save(); break; case 'activate': log::add('api', 'debug', __('Activation scénario de : ', __FILE__) . $scenario->getHumanName()); $scenario->setIsActive(1); $scenario->save(); break; default: throw new Exception(__('Action non trouvée ou invalide [start,stop,deactivate,activate]', __FILE__)); } echo 'ok'; die(); } if ($type == 'message') { log::add('api', 'debug', __('Demande API pour ajouter un message', __FILE__)); message::add(init('category'), init('message')); die(); } if ($type == 'object') { log::add('api', 'debug', __('Demande API pour les objets', __FILE__)); header('Content-Type: application/json'); echo json_encode(utils::o2a(jeeObject::all()), JSON_HEX_TAG | JSON_HEX_APOS | JSON_HEX_QUOT | JSON_HEX_AMP | JSON_UNESCAPED_UNICODE, 1024); die(); } if ($type == 'eqLogic') { log::add('api', 'debug', __('Demande API pour les équipements', __FILE__)); header('Content-Type: application/json'); echo json_encode(utils::o2a(eqLogic::byObjectId(init('object_id'))), JSON_HEX_TAG | JSON_HEX_APOS | JSON_HEX_QUOT | JSON_HEX_AMP | JSON_UNESCAPED_UNICODE, 1024); die(); } if ($type == 'command') { log::add('api', 'debug', __('Demande API pour les commandes', __FILE__)); header('Content-Type: application/json'); echo json_encode(utils::o2a(cmd::byEqLogicId(init('eqLogic_id'))), JSON_HEX_TAG | JSON_HEX_APOS | JSON_HEX_QUOT | JSON_HEX_AMP | JSON_UNESCAPED_UNICODE, 1024); die(); } if ($type == 'fullData') { log::add('api', 'debug', __('Demande API pour les commandes', __FILE__)); header('Content-Type: application/json'); echo json_encode(jeeObject::fullData(), JSON_HEX_TAG | JSON_HEX_APOS | JSON_HEX_QUOT | JSON_HEX_AMP | JSON_UNESCAPED_UNICODE, 1024); die(); } if ($type == 'variable') { log::add('api', 'debug', __('Demande API pour les variables', __FILE__)); if (init('value') == '') { $dataStore = dataStore::byTypeLinkIdKey('scenario', -1, trim(init('name'))); if (is_object($dataStore)) { echo $dataStore->getValue($_default); } } else { $dataStore = new dataStore(); $dataStore->setKey(trim(init('name'))); $dataStore->setValue(init('value')); $dataStore->setType('scenario'); $dataStore->setLink_id(-1); $dataStore->save(); } die(); } } catch (Exception $e) { echo $e->getMessage(); log::add('jeeEvent', 'error', $e->getMessage()); } die(); }try { $IP = getClientIp(); $request = init('request'); if ($request == '') { $request = file_get_contents("php://input"); } log::add('api', 'info', $request . ' - IP :' . $IP); $jsonrpc = new jsonrpc($request); if (!jeedom::apiModeResult(config::byKey('api::core::jsonrpc::mode', 'core', 'enable'))) { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action (JSON-RPC disable)', __FILE__), -32001); } if ($jsonrpc->getJsonrpc() != '2.0') { user::failedLogin(); throw new Exception(__('Requête invalide. Version JSON-RPC invalide : ', __FILE__) . $jsonrpc->getJsonrpc(), -32001); } $params = $jsonrpc->getParams(); if ($jsonrpc->getMethod() == 'user::useTwoFactorAuthentification') { if (network::getUserLocation() == 'internal') { $jsonrpc->makeSuccess(0); } $user = user::byLogin($params['login']); if (!is_object($user)) { $jsonrpc->makeSuccess(0); } $jsonrpc->makeSuccess($user->getOptions('twoFactorAuthentification', 0)); } if ($jsonrpc->getMethod() == 'user::getHash') { if (!isset($params['login']) || !isset($params['password']) || $params['login'] == '' || $params['password'] == '') { user::failedLogin(); sleep(5); throw new Exception(__('L\'identifiant ou le mot de passe ne peuvent pas être vide', __FILE__), -32001); } $user = user::connect($params['login'], $params['password']); if (!is_object($user) || $user->getEnable() != 1) { user::failedLogin(); sleep(5); throw new Exception(__('Echec lors de l\'authentification', __FILE__), -32001); } if (network::getUserLocation() != 'internal' && $user->getOptions('twoFactorAuthentification', 0) == 1 && $user->getOptions('twoFactorAuthentificationSecret') != '') { if (!isset($params['twoFactorCode']) || trim($params['twoFactorCode']) == '' || !$user->validateTwoFactorCode($params['twoFactorCode'])) { user::failedLogin(); sleep(5); throw new Exception(__('Echec lors de l\'authentification', __FILE__), -32001); } } $jsonrpc->makeSuccess($user->getHash()); } if ($jsonrpc->getMethod() == 'ping') { $jsonrpc->makeSuccess('pong'); } if (isset($params['session']) && $params['session']) { ini_set('session.gc_maxlifetime', 24 * 3600); ini_set('session.use_cookies', 1); ini_set('session.cookie_httponly', 1); if (isset($params['sess_id']) && $params['sess_id'] != '') { session_id($params['sess_id']); } @session_start(); $_SESSION['ip'] = getClientIp(); @session_write_close(); $jsonrpc->setAdditionnalParams('sess_id', session_id()); if (isset($_SESSION['user']) && is_object($_SESSION['user'])) { $_USER_GLOBAL = $_SESSION['user']; } } if (!is_object($_USER_GLOBAL)) { if (!isset($params['apikey']) && !isset($params['api'])) { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action', __FILE__), -32001); } $apikey = isset($params['apikey']) ? $params['apikey'] : $params['api']; if (isset($params['plugin']) && $params['plugin'] != '' && $params['plugin'] != 'core') { if (!jeedom::apiAccess($apikey, $params['plugin']) && !jeedom::apiAccess($apikey)) { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action 1', __FILE__), -32001); } } else if (!jeedom::apiAccess($apikey)) { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action 2', __FILE__), -32001); } if (is_object($_USER_GLOBAL) && isset($params['session']) && $params['session']) { @session_start(); $_SESSION['user'] = $_USER_GLOBAL; @session_write_close(); } } /* * ************************config*************************** */ if ($jsonrpc->getMethod() == 'config::byKey') { if (!isset($params['default'])) { $params['default'] = ''; } if (!isset($params['plugin'])) { $params['plugin'] = 'core'; } $jsonrpc->makeSuccess(config::byKey($params['key'], $params['plugin'], $params['default'])); } if ($jsonrpc->getMethod() == 'config::save') { if (!isset($params['plugin'])) { $params['plugin'] = 'core'; } $jsonrpc->makeSuccess(config::save($params['key'], $params['value'], $params['plugin'])); } /* * ***********************Version********************************* */ if ($jsonrpc->getMethod() == 'version') { $jsonrpc->makeSuccess(jeedom::version()); } /* * ***********************isOk********************************* */ if ($jsonrpc->getMethod() == 'jeedom::isOk') { $jsonrpc->makeSuccess(jeedom::isOK()); } if ($jsonrpc->getMethod() == 'jeedom::halt') { if (is_object($_USER_GLOBAL) && $_USER_GLOBAL->getProfils() != 'admin') { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action ', __FILE__) . $jsonrpc->getMethod(), -32001); } jeedom::haltSystem(); $jsonrpc->makeSuccess('ok'); } if ($jsonrpc->getMethod() == 'jeedom::reboot') { if (is_object($_USER_GLOBAL) && $_USER_GLOBAL->getProfils() != 'admin') { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action ', __FILE__) . $jsonrpc->getMethod(), -32001); } jeedom::rebootSystem(); $jsonrpc->makeSuccess('ok'); } if ($jsonrpc->getMethod() == 'jeedom::update') { if (is_object($_USER_GLOBAL) && $_USER_GLOBAL->getProfils() != 'admin') { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action ', __FILE__) . $jsonrpc->getMethod(), -32001); } jeedom::update('', 0); $jsonrpc->makeSuccess('ok'); } if ($jsonrpc->getMethod() == 'jeedom::backup') { if (is_object($_USER_GLOBAL) && $_USER_GLOBAL->getProfils() != 'admin') { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action ', __FILE__) . $jsonrpc->getMethod(), -32001); } jeedom::backup(true); $jsonrpc->makeSuccess('ok'); } /* * ***********************Datetime********************************* */ if ($jsonrpc->getMethod() == 'datetime') { $jsonrpc->makeSuccess(getmicrotime()); } /* * ***********************changes********************************* */ if ($jsonrpc->getMethod() == 'event::changes') { $longPolling = null; if (isset($params['longPolling'])) { $longPolling = $params['longPolling']; } $filter = null; if (isset($params['filter'])) { $filter = $params['filter']; } $jsonrpc->makeSuccess(event::changes($params['datetime'], $longPolling, $filter)); } /* * ************************Plugin*************************** */ if ($jsonrpc->getMethod() == 'plugin::listPlugin') { $activateOnly = (isset($params['activateOnly']) && $params['activateOnly'] == 1) ? true : false; $orderByCaterogy = (isset($params['orderByCaterogy']) && $params['orderByCaterogy'] == 1) ? true : false; $jsonrpc->makeSuccess(utils::o2a(plugin::listPlugin($activateOnly, $orderByCaterogy))); } /* * ************************Object*************************** */ if ($jsonrpc->getMethod() == 'jeeObject::all' || $jsonrpc->getMethod() == 'object::all') { $jsonrpc->makeSuccess(utils::o2a(jeeObject::all())); } if ($jsonrpc->getMethod() == 'jeeObject::byId' || $jsonrpc->getMethod() == 'object::byId') { $jeeObject = jeeObject::byId($params['id']); if (!is_object($jeeObject)) { throw new Exception(__('Objet introuvable : ', __FILE__) . secureXSS($params['id']), -32601); } $jsonrpc->makeSuccess(utils::o2a($jeeObject)); } if ($jsonrpc->getMethod() == 'jeeObject::full' || $jsonrpc->getMethod() == 'object::full') { $jsonrpc->makeSuccess(jeeObject::fullData()); } if ($jsonrpc->getMethod() == 'jeeObject::fullById' || $jsonrpc->getMethod() == 'object::fullById') { $jeeObject = jeeObject::byId($params['id']); if (!is_object($jeeObject)) { throw new Exception(__('Objet introuvable : ', __FILE__) . secureXSS($params['id']), -32601); } $return = utils::o2a($jeeObject); $return['eqLogics'] = []; foreach ($jeeObject->getEqLogic() as $eqLogic) { $eqLogic_return = utils::o2a($eqLogic); $eqLogic_return['cmds'] = []; foreach ($eqLogic->getCmd() as $cmd) { $eqLogic_return['cmds'][] = $cmd->exportApi(); } $return['eqLogics'][] = $eqLogic_return; } $jsonrpc->makeSuccess($return); } if ($jsonrpc->getMethod() == 'jeeObject::save' || $jsonrpc->getMethod() == 'object::save') { if (isset($params['id'])) { $jeeObject = jeeObject::byId($params['id']); } if (!is_object($jeeObject)) { $jeeObject = new jeeObject(); } utils::a2o($jeeObject, jeedom::fromHumanReadable($params)); $jeeObject->save(); $jsonrpc->makeSuccess(utils::o2a($jeeObject)); } /* * ************************Summary*************************** */ if ($jsonrpc->getMethod() == 'summary::global') { if (isset($params['key'])) { $jsonrpc->makeSuccess(jeeObject::getGlobalSummary($params['key'])); } $return = []; $def = config::byKey('object:summary'); foreach ($def as $key => $value) { $return[$key] = jeeObject::getGlobalSummary($key); } $jsonrpc->makeSuccess($return); } if ($jsonrpc->getMethod() == 'summary::byId') { $jeeObject = jeeObject::byId($params['id']); if (!is_object($jeeObject)) { throw new Exception(__('Objet introuvable : ', __FILE__) . secureXSS($params['id']), -32601); } if (!isset($params['key'])) { $params['key'] = ''; } if (!isset($params['raw'])) { $params['raw'] = false; } $jsonrpc->makeSuccess($jeeObject->getSummary($params['key'], $params['raw'])); } /* * ************************datastore*************************** */ if ($jsonrpc->getMethod() == 'datastore::byTypeLinkIdKey') { $jsonrpc->makeSuccess(utils::o2a(dataStore::byTypeLinkIdKey($params['type'], $params['linkId'], $params['key']))); } if ($jsonrpc->getMethod() == 'datastore::save') { $dataStore = new dataStore(); $dataStore->setType($params['type']); $dataStore->setKey($params['key']); $dataStore->setValue($params['value']); $dataStore->setLink_id($params['linkId']); $dataStore->save(); $jsonrpc->makeSuccess('ok'); } /* * ************************Equipement*************************** */ if ($jsonrpc->getMethod() == 'eqLogic::all') { $jsonrpc->makeSuccess(utils::o2a(eqLogic::all())); } if ($jsonrpc->getMethod() == 'eqLogic::byType') { $jsonrpc->makeSuccess(utils::o2a(eqLogic::byType($params['type']))); } if ($jsonrpc->getMethod() == 'eqLogic::byObjectId') { $jsonrpc->makeSuccess(utils::o2a(eqLogic::byObjectId($params['object_id']))); } if ($jsonrpc->getMethod() == 'eqLogic::byId') { $eqLogic = eqLogic::byId($params['id']); if (!is_object($eqLogic)) { throw new Exception(__('EqLogic introuvable : ', __FILE__) . secureXSS($params['id']), -32602); } $jsonrpc->makeSuccess(utils::o2a($eqLogic)); } if ($jsonrpc->getMethod() == 'eqLogic::fullById') { $eqLogic = eqLogic::byId($params['id']); if (!is_object($eqLogic)) { throw new Exception(__('EqLogic introuvable : ', __FILE__) . secureXSS($params['id']), -32602); } $return = utils::o2a($eqLogic); $return['cmds'] = []; foreach ($eqLogic->getCmd() as $cmd) { $return['cmds'][] = $cmd->exportApi(); } $jsonrpc->makeSuccess($return); } if ($jsonrpc->getMethod() == 'eqLogic::save') { $typeEqLogic = $params['eqType_name']; $typeCmd = $typeEqLogic . 'Cmd'; if ($typeEqLogic == '' || !class_exists($typeEqLogic) || !class_exists($typeCmd)) { throw new Exception(__('Type incorrect (classe commande inexistante)', __FILE__) . secureXSS($typeCmd)); } $eqLogic = null; if (isset($params['id'])) { $eqLogic = $typeEqLogic::byId($params['id']); } if (!is_object($eqLogic)) { $eqLogic = new $typeEqLogic(); $eqLogic->setEqType_name($params['eqType_name']); } if (is_object($_USER_GLOBAL) && $_USER_GLOBAL->getProfils() != 'admin') { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action ', __FILE__) . $jsonrpc->getMethod(), -32001); } utils::a2o($eqLogic, jeedom::fromHumanReadable($params)); $eqLogic->save(); $dbList = $typeCmd::byEqLogicId($eqLogic->getId()); $eqLogic->save(); $enableList = []; if (isset($params['cmd'])) { $cmd_order = 0; foreach ($params['cmd'] as $cmd_info) { $cmd = null; if (isset($cmd_info['id'])) { $cmd = $typeCmd::byId($cmd_info['id']); } if (!is_object($cmd)) { $cmd = new $typeCmd(); } $cmd->setEqLogic_id($eqLogic->getId()); $cmd->setOrder($cmd_order); utils::a2o($cmd, jeedom::fromHumanReadable($cmd_info)); $cmd->save(); $cmd_order++; $enableList[$cmd->getId()] = true; } foreach ($dbList as $dbObject) { if (!isset($enableList[$dbObject->getId()]) && !$dbObject->dontRemoveCmd()) { $dbObject->remove(); } } } $jsonrpc->makeSuccess(utils::o2a($eqLogic)); } if ($jsonrpc->getMethod() == 'eqLogic::byTypeAndId') { $return = []; foreach ($params['eqType'] as $eqType) { $info_eqLogics = []; foreach (eqLogic::byType($eqType) as $eqLogic) { $info_eqLogic = utils::o2a($eqLogic); foreach ($eqLogic->getCmd() as $cmd) { $info_eqLogic['cmds'][] = $cmd->exportApi(); } $info_eqLogics[] = $info_eqLogic; } $return[$eqType] = $info_eqLogics; } foreach ($params['id'] as $id) { $eqLogic = eqLogic::byId($id); $info_eqLogic = utils::o2a($eqLogic); foreach ($eqLogic->getCmd() as $cmd) { $info_eqLogic['cmds'][] = $cmd->exportApi(); } $return[$id] = $info_eqLogic; } $jsonrpc->makeSuccess($return); } /* * ************************Commande*************************** */ if ($jsonrpc->getMethod() == 'cmd::all') { $return = []; foreach (cmd::all() as $cmd) { if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { continue; } $return[] = $cmd->exportApi(); } $jsonrpc->makeSuccess($return); } if ($jsonrpc->getMethod() == 'cmd::byEqLogicId') { $return = []; foreach (cmd::byEqLogicId($params['eqLogic_id']) as $cmd) { if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { continue; } $return[] = $cmd->exportApi(); } $jsonrpc->makeSuccess($return); } if ($jsonrpc->getMethod() == 'cmd::byId') { $cmd = cmd::byId($params['id']); if (!is_object($cmd)) { throw new Exception(__('Cmd introuvable : ', __FILE__) . secureXSS($params['id']), -32701); } if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { throw new Exception(__('Vous n\'avez pas les droits sur cette commande', __FILE__), -32701); } $jsonrpc->makeSuccess($cmd->exportApi()); } if ($jsonrpc->getMethod() == 'cmd::execCmd') { $return = []; if (is_array($params['id'])) { foreach ($params['id'] as $id) { $cmd = cmd::byId($id); if (!is_object($cmd)) { throw new Exception(__('Commande introuvable : ', __FILE__) . secureXSS($id), -32702); } if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { continue; } $eqLogic = $cmd->getEqLogic(); if (!isset($params['codeAccess'])) { $params['codeAccess'] = ''; } if (!$cmd->checkAccessCode($params['codeAccess'])) { throw new Exception(__('Cette action nécessite un code d\'accès', __FILE__), -32005); } if ($cmd->getType() == 'action' && $cmd->getConfiguration('actionConfirm') == 1 && $params['confirmAction'] != 1) { throw new Exception(__('Cette action nécessite une confirmation', __FILE__), -32006); } if ($cmd->isType(CmdType::INFO)) { $return[$id] = ['value' => $cmd->execCmd($params['options']), 'collectDate' => $cmd->getCollectDate()]; } else { $cmd->execCmd($params['options']); } } } else { $cmd = cmd::byId($params['id']); if (!is_object($cmd)) { throw new Exception(__('Commande introuvable : ', __FILE__) . secureXSS($params['id']), -32702); } if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { throw new Exception(__('Vous n\'êtes pas autorisé à faire cette action', __FILE__)); } if (!isset($params['codeAccess'])) { $params['codeAccess'] = ''; } if (!$cmd->checkAccessCode($params['codeAccess'])) { throw new Exception(__('Cette action nécessite un code d\'accès', __FILE__), -32005); } if ($cmd->getType() == 'action' && $cmd->getConfiguration('actionConfirm') == 1 && $params['confirmAction'] != 1) { throw new Exception(__('Cette action nécessite une confirmation', __FILE__), -32006); } if ($cmd->getType() == 'info') { $return = ['value' => $cmd->execCmd($params['options']), 'collectDate' => $cmd->getCollectDate()]; } else { $cmd->execCmd($params['options']); } } $jsonrpc->makeSuccess($return); } if ($jsonrpc->getMethod() == 'cmd::getStatistique') { $cmd = cmd::byId($params['id']); if (!is_object($cmd)) { throw new Exception('Commande introuvable : ' . secureXSS($params['id']), -32702); } if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { throw new Exception(__('Vous n\'avez pas les droits sur cette commande', __FILE__), -32701); } $jsonrpc->makeSuccess($cmd->getStatistique($params['startTime'], $params['endTime'])); } if ($jsonrpc->getMethod() == 'cmd::getTendance') { $cmd = cmd::byId($params['id']); if (!is_object($cmd)) { throw new Exception('Commande introuvable : ' . secureXSS($params['id']), -32702); } if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { throw new Exception(__('Vous n\'avez pas les droits sur cette commande', __FILE__), -32701); } $jsonrpc->makeSuccess($cmd->getTendance($params['startTime'], $params['endTime'])); } if ($jsonrpc->getMethod() == 'cmd::getHistory') { $cmd = cmd::byId($params['id']); if (!is_object($cmd)) { throw new Exception('Commande introuvable : ' . secureXSS($params['id']), -32702); } if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { throw new Exception(__('Vous n\'avez pas les droits sur cette commande', __FILE__), -32701); } $jsonrpc->makeSuccess(utils::o2a($cmd->getHistory($params['startTime'], $params['endTime']))); } if ($jsonrpc->getMethod() == 'cmd::save') { $typeEqLogic = $params['eqType_name']; $typeCmd = $typeEqLogic . 'Cmd'; if ($typeEqLogic == '' || !class_exists($typeEqLogic) || !class_exists($typeCmd)) { throw new Exception(__('Type incorrect (classe commande inexistante)', __FILE__) . secureXSS($typeCmd)); } if (isset($params['id'])) { $cmd = cmd::byId($params['id']); if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { throw new Exception(__('Vous n\'êtes pas autorisé à faire cette action', __FILE__)); } } if (!is_object($cmd)) { if (is_object($_USER_GLOBAL) && $_USER_GLOBAL->getProfils() != 'admin') { throw new Exception(__('Vous n\'êtes pas autorisé à effectuer cette action', __FILE__), -32001); } $cmd = new cmd(); } utils::a2o($cmd, jeedom::fromHumanReadable($params)); $cmd->save(); $jsonrpc->makeSuccess(utils::o2a($cmd)); } if ($jsonrpc->getMethod() == 'cmd::event') { $cmd = cmd::byId($params['id']); if (!is_object($cmd)) { throw new Exception('Commande introuvable : ' . secureXSS($params['id']), -32702); } if (is_object($_USER_GLOBAL) && !$cmd->hasRight($_USER_GLOBAL)) { throw new Exception(__('Vous n\'avez pas les droits sur cette commande', __FILE__), -32701); } if (!isset($params['datetime'])) { $params['datetime'] = null; } $cmd->event($params['value'], $params['datetime']); $jsonrpc->makeSuccess(); } /* * ************************Scénario*************************** */ if ($jsonrpc->getMethod() == 'scenario::all') { $jsonrpc->makeSuccess(utils::o2a(scenario::all())); } if ($jsonrpc->getMethod() == 'scenario::byId') { $scenario = scenario::byId($params['id']); if (!is_object($scenario)) { throw new Exception(__('Scénario introuvable : ', __FILE__) . secureXSS($params['id']), -32703); } $jsonrpc->makeSuccess(utils::o2a($scenario)); } if ($jsonrpc->getMethod() == 'scenario::changeState') { $scenario = scenario::byId($params['id']); if (!is_object($scenario)) { throw new Exception(__('Scénario introuvable : ', __FILE__) . secureXSS($params['id']), -32702); } if ($params['state'] == 'stop') { $jsonrpc->makeSuccess($scenario->stop()); } if ($params['state'] == 'run') { $jsonrpc->makeSuccess($scenario->launch('api', __('Scénario exécuté sur appel API', __FILE__))); } if ($params['state'] == 'enable') { $scenario->setIsActive(1); $jsonrpc->makeSuccess($scenario->save()); } if ($params['state'] == 'disable') { $scenario->setIsActive(0); $jsonrpc->makeSuccess($scenario->save()); } throw new Exception(__('Le paramètre "state" ne peut être vide et doit avoir pour valeur [run,stop,enable,disable]', __FILE__)); } if ($jsonrpc->getMethod() == 'scenario::export') { $scenario = scenario::byId($params['id']); if (!is_object($scenario)) { throw new Exception(__('Scénario introuvable : ', __FILE__) . secureXSS($params['id']), -32702); } $jsonrpc->makeSuccess(['humanName' => $scenario->getHumanName(), 'export' => $scenario->export('array')]); } if ($jsonrpc->getMethod() == 'scenario::import') { if (isset($params['id'])) { $scenario = scenario::byId($params['id']); if (!is_object($scenario)) { throw new Exception(__('Scénario introuvable : ', __FILE__) . secureXSS($params['id']), -32702); } } else if (isset($params['humanName'])) { $scenario = scenario::byString($params['humanName']); if (!is_object($scenario)) { throw new Exception(__('Scénario introuvable : ', __FILE__) . secureXSS($params['id']), -32702); } } else { $scenario = new scenario(); if (isset($params['import']['name'])) { $scenario->setName($params['import']['name']); } if (isset($params['import']['group'])) { $scenario->setName($params['import']['group']); } } if ($scenario->getName() == '') { $scenario->setName(config::genKey()); } $scenario->setTrigger([]); $scenario->setSchedule([]); utils::a2o($scenario, $params['import']); $scenario->save(); $scenario_element_list = []; if (isset($params['import']['elements'])) { foreach ($params['import']['elements'] as $element_ajax) { $scenario_element_list[] = scenarioElement::saveAjaxElement($element_ajax); } $scenario->setScenarioElement($scenario_element_list); } $scenario->save(); $jsonrpc->makeSuccess(utils::o2a($scenario)); } /* * ************************Log*************************** */ if ($jsonrpc->getMethod() == 'log::get') { $jsonrpc->makeSuccess(log::get($params['log'], $params['start'], $params['nbLine'])); } if ($jsonrpc->getMethod() == 'log::list') { if (!isset($params['filtre'])) { $params['filtre'] = null; } $jsonrpc->makeSuccess(log::liste($params['filtre'])); } if ($jsonrpc->getMethod() == 'log::empty') { $jsonrpc->makeSuccess(log::clear($params['log'])); } if ($jsonrpc->getMethod() == 'log::remove') { $jsonrpc->makeSuccess(log::remove($params['log'])); } /* * ************************Messages*************************** */ if ($jsonrpc->getMethod() == 'message::removeAll') { message::removeAll(); $jsonrpc->makeSuccess('ok'); } if ($jsonrpc->getMethod() == 'message::all') { $jsonrpc->makeSuccess(utils::o2a(message::all())); } /* * ************************Interact*************************** */ if ($jsonrpc->getMethod() == 'interact::tryToReply') { if (isset($params['reply_cmd'])) { $reply_cmd = cmd::byId($params['reply_cmd']); if (is_object($reply_cmd)) { $params['reply_cmd'] = $reply_cmd; $params['force_reply_cmd'] = 1; } } $jsonrpc->makeSuccess(interactQuery::tryToReply($params['query'], $params)); } if ($jsonrpc->getMethod() == 'interactQuery::all') { $jsonrpc->makeSuccess(utils::o2a(interactQuery::all())); } /* * ************************USB mapping*************************** */ if ($jsonrpc->getMethod() == 'jeedom::getUsbMapping') { $name = (isset($params['name'])) ? $params['name'] : ''; $gpio = (isset($params['gpio'])) ? $params['gpio'] : false; $jsonrpc->makeSuccess(jeedom::getUsbMapping($name, $gpio)); } /* * ************************Plugin*************************** */ if ($jsonrpc->getMethod() == 'plugin::install') { if (isset($params['plugin_id'])) { $update = update::byId($params['plugin_id']); } if (isset($params['logicalId'])) { $update = update::byLogicalId($params['logicalId']); } if (!isset($update) || !is_object($update)) { $update = new update(); } utils::a2o($update, $params); $update->save(); $jsonrpc->makeSuccess('ok'); } if ($jsonrpc->getMethod() == 'plugin::remove') { if (isset($params['plugin_id'])) { $update = update::byId($params['plugin_id']); } if (isset($params['logicalId'])) { $update = update::byLogicalId($params['logicalId']); } if (!is_object($update)) { throw new Exception(__('Impossible de trouver l\'objet associé : ', __FILE__) . secureXSS($params['plugin_id'])); } $update->remove(); $jsonrpc->makeSuccess('ok'); } if ($jsonrpc->getMethod() == 'plugin::dependancyInfo') { $plugin = plugin::byId($params['plugin_id']); if (!is_object($plugin)) { $jsonrpc->makeSuccess(['state' => 'nok', 'log' => 'nok']); } $jsonrpc->makeSuccess($plugin->getDependencyInfo()); } if ($jsonrpc->getMethod() == 'plugin::dependancyInstall') { $plugin = plugin::byId($params['plugin_id']); if (!is_object($plugin)) { $jsonrpc->makeSuccess(); } $plugin->dependancy_install(); $jsonrpc->makeSuccess(); } if ($jsonrpc->getMethod() == 'plugin::deamonInfo') { $plugin = plugin::byId($params['plugin_id']); if (!is_object($plugin)) { $jsonrpc->makeSuccess(['launchable_message' => '', 'launchable' => 'nok', 'state' => 'nok', 'log' => 'nok', 'auto' => 0]); } $jsonrpc->makeSuccess($plugin->deamon_info()); } if ($jsonrpc->getMethod() == 'plugin::deamonStart') { $plugin = plugin::byId($params['plugin_id']); if (!is_object($plugin)) { $jsonrpc->makeSuccess(); } if (!isset($params['debug'])) { $params['debug'] = false; } if (!isset($params['forceRestart'])) { $params['forceRestart'] = false; } $plugin->deamon_start($params['forceRestart']); $jsonrpc->makeSuccess(); } if ($jsonrpc->getMethod() == 'plugin::deamonStop') { $plugin = plugin::byId($params['plugin_id']); if (!is_object($plugin)) { $jsonrpc->makeSuccess(); } $plugin->deamon_stop(); $jsonrpc->makeSuccess(); } if ($jsonrpc->getMethod() == 'plugin::deamonChangeAutoMode') { $plugin = plugin::byId($params['plugin_id']); if (!is_object($plugin)) { $jsonrpc->makeSuccess(); } $plugin->deamon_changeAutoMode($params['mode']); $jsonrpc->makeSuccess(); } /* * ************************Update*************************** */ if ($jsonrpc->getMethod() == 'update::all') { $jsonrpc->makeSuccess(utils::o2a(update::all())); } if ($jsonrpc->getMethod() == 'update::nbNeedUpdate') { $jsonrpc->makeSuccess(update::nbNeedUpdate()); } if ($jsonrpc->getMethod() == 'update::update') { jeedom::update('', 0); $jsonrpc->makeSuccess('ok'); } if ($jsonrpc->getMethod() == 'update::checkUpdate') { update::checkAllUpdate(); $jsonrpc->makeSuccess('ok'); } if ($jsonrpc->getMethod() == 'update::doUpdate') { if (isset($params['plugin_id'])) { $update = update::byId($params['plugin_id']); } if (isset($params['logicalId'])) { $update = update::byLogicalId($params['logicalId']); } if (!is_object($update)) { throw new Exception(__('Impossible de trouver l\'objet', __FILE__)); } $update->doUpdate(); $jsonrpc->makeSuccess('ok'); } /* * ************************Network*************************** */ if ($jsonrpc->getMethod() == 'network::restartDns') { config::save('market::allowDNS', 1); network::dns_start(); $jsonrpc->makeSuccess(); } if ($jsonrpc->getMethod() == 'network::stopDns') { config::save('market::allowDNS', 0); network::dns_stop(); $jsonrpc->makeSuccess(); } if ($jsonrpc->getMethod() == 'network::dnsRun') { $jsonrpc->makeSuccess(network::dns_run()); } /* * ************************************************************************ */ if (isset($params['plugin']) && $params['plugin'] != '' && $params['plugin'] != 'core') { log::add('api', 'info', __('Demande pour le plugin : ', __FILE__) . secureXSS($params['plugin'])); include_file('core', $params['plugin'], 'api', $params['plugin']); } throw new Exception(__('Aucune méthode correspondante : ', __FILE__) . secureXSS($jsonrpc->getMethod()), -32500); /* * *********Catch exeption*************** */ } catch (Exception $e) { $message = $e->getMessage(); $jsonrpc = new jsonrpc(init('request')); $errorCode = (is_numeric($e->getCode())) ? -32000 - $e->getCode() : -32599; log::add('api', 'info', 'Error code ' . $errorCode . ' : ' . $message); $jsonrpc->makeError($errorCode, $message); } |