$type ) { if ( preg_match( '/^(Can|Has)/', $name ) ) { $types[$name] = 'toggle'; } } $changes = getFormChanges( $control, $_REQUEST['newControl'], $types, $columns ); if ( count( $changes ) ) { if ( !empty($_REQUEST['cid']) ) { dbQuery( "update Controls set ".implode( ", ", $changes )." where Id = '".dbEscape($_REQUEST['cid'])."'" ); } else { dbQuery( "insert into Controls set ".implode( ", ", $changes ) ); //$_REQUEST['cid'] = dbInsertId(); } $refreshParent = true; } $view = 'none'; } elseif ( $action == "delete" ) { if ( isset($_REQUEST['markCids']) ) { foreach( $_REQUEST['markCids'] as $markCid ) { dbQuery( "delete from Controls where Id = '".dbEscape($markCid)."'" ); dbQuery( "update Monitors set Controllable = 0, ControlId = 0 where ControlId = '".dbEscape($markCid)."'" ); $refreshParent = true; } } } } // Monitor edit actions, require a monitor id and edit permissions for that monitor if ( !empty($_REQUEST['mid']) && canEdit( 'Monitors', $_REQUEST['mid'] ) ) { $mid = validInt($_REQUEST['mid']); if ( $action == "function" ) { $monitor = dbFetchOne( "select * from Monitors where Id = '".$mid."'" ); $newFunction = validStr($_REQUEST['newFunction']); $newEnabled = validStr($_REQUEST['newEnabled']); $oldFunction = $monitor['Function']; $oldEnabled = $monitor['Enabled']; if ( $newFunction != $oldFunction || $newEnabled != $oldEnabled ) { dbQuery( "update Monitors set Function = '".dbEscape($newFunction)."', Enabled = '".$newEnabled."' where Id = '".$mid."'" ); $monitor['Function'] = $newFunction; $monitor['Enabled'] = $newEnabled; //if ( $cookies ) session_write_close(); if ( daemonCheck() ) { $restart = ($oldFunction == 'None') || ($newFunction == 'None') || ($newEnabled != $oldEnabled); zmaControl( $monitor, "stop" ); zmcControl( $monitor, $restart?"restart":"" ); zmaControl( $monitor, "start" ); } $refreshParent = true; } } elseif ( $action == "zone" && isset( $_REQUEST['zid'] ) ) { $zid = validInt($_REQUEST['zid']); $monitor = dbFetchOne( "select * from Monitors where Id = '".dbEscape($mid)."'" ); if ( !empty($zid) ) { $zone = dbFetchOne( "select * from Zones where MonitorId = '".dbEscape($mid)."' and Id = '".dbEscape($zid)."'" ); } else { $zone = array(); } if ( $_REQUEST['newZone']['Units'] == 'Percent' ) { $_REQUEST['newZone']['MinAlarmPixels'] = intval(($_REQUEST['newZone']['MinAlarmPixels']*$_REQUEST['newZone']['Area'])/100); $_REQUEST['newZone']['MaxAlarmPixels'] = intval(($_REQUEST['newZone']['MaxAlarmPixels']*$_REQUEST['newZone']['Area'])/100); if ( isset($_REQUEST['newZone']['MinFilterPixels']) ) $_REQUEST['newZone']['MinFilterPixels'] = intval(($_REQUEST['newZone']['MinFilterPixels']*$_REQUEST['newZone']['Area'])/100); if ( isset($_REQUEST['newZone']['MaxFilterPixels']) ) $_REQUEST['newZone']['MaxFilterPixels'] = intval(($_REQUEST['newZone']['MaxFilterPixels']*$_REQUEST['newZone']['Area'])/100); if ( isset($_REQUEST['newZone']['MinBlobPixels']) ) $_REQUEST['newZone']['MinBlobPixels'] = intval(($_REQUEST['newZone']['MinBlobPixels']*$_REQUEST['newZone']['Area'])/100); if ( isset($_REQUEST['newZone']['MaxBlobPixels']) ) $_REQUEST['newZone']['MaxBlobPixels'] = intval(($_REQUEST['newZone']['MaxBlobPixels']*$_REQUEST['newZone']['Area'])/100); } unset( $_REQUEST['newZone']['Points'] ); $types = array(); $changes = getFormChanges( $zone, $_REQUEST['newZone'], $types ); if ( count( $changes ) ) { if ( $zid > 0 ) { $sql = "update Zones set ".implode( ", ", $changes )." where MonitorId = '".dbEscape($mid)."' and Id = '".dbEscape($zid)."'"; } else { $sql = "insert into Zones set MonitorId = '".dbEscape($mid)."', ".implode( ", ", $changes ); } dbQuery( $sql ); //if ( $cookies ) session_write_close(); if ( daemonCheck() ) { zmaControl( $mid, "restart" ); } $refreshParent = true; } $view = 'none'; } elseif ( $action == "plugin" && isset($_REQUEST['pl'])) { $plugin=dbEscape($_REQUEST['pl']); $zid=validInt($_REQUEST['zid']); $sql="SELECT * FROM PluginsConfig WHERE MonitorId='".dbEscape($mid)."' AND ZoneId='".$zid."' AND pluginName='".$plugin."'"; $pconfs=dbFetchAll( $sql ); $changes=0; foreach( $pconfs as $pconf ) { $value=$_REQUEST['pluginOpt'][$pconf['Name']]; if(array_key_exists($pconf['Name'], $_REQUEST['pluginOpt']) && ($pconf['Value']!=$value)) { dbQuery("UPDATE PluginsConfig SET Value='".dbEscape($value)."' WHERE id='".$pconf['Id']."'"); $changes++; } } if($changes>0) { if ( daemonCheck() ) { zmaControl( $mid, "restart" ); } $refreshParent = true; } $view = 'none'; } elseif ( $action == "sequence" && isset($_REQUEST['smid']) ) { $smid = validInt($_REQUEST['smid']); $monitor = dbFetchOne( "select * from Monitors where Id = '".dbEscape($mid)."'" ); $smonitor = dbFetchOne( "select * from Monitors where Id = '".dbEscape($smid)."'" ); dbQuery( "update Monitors set Sequence = '".$smonitor['Sequence']."' where Id = '".$monitor['Id']."'" ); dbQuery( "update Monitors set Sequence = '".$monitor['Sequence']."' where Id = '".$smonitor['Id']."'" ); $refreshParent = true; fixSequences(); } if ( $action == "delete" ) { if ( isset($_REQUEST['markZids']) ) { $deletedZid = 0; foreach( $_REQUEST['markZids'] as $markZid ) { dbQuery( "delete from Zones where MonitorId = '".dbEscape($mid)."' && Id = '".dbEscape($markZid)."'" ); $deletedZid = 1; } if ( $deletedZid ) { //if ( $cookies ) //session_write_close(); if ( daemonCheck() ) zmaControl( $mid, "restart" ); $refreshParent = true; } } } } // Monitor edit actions, monitor id derived, require edit permissions for that monitor if ( canEdit( 'Monitors' ) ) { if ( $action == "monitor" ) { if ( !empty($_REQUEST['mid']) ) { $mid = validInt($_REQUEST['mid']); $monitor = dbFetchOne( "select * from Monitors where Id = '".dbEscape($mid)."'" ); if ( ZM_OPT_X10 ) { $x10Monitor = dbFetchOne( "select * from TriggersX10 where MonitorId = '".dbEscape($mid)."'" ); if ( !$x10Monitor ) $x10Monitor = array(); } } else { $monitor = array(); if ( ZM_OPT_X10 ) { $x10Monitor = array(); } } // Define a field type for anything that's not simple text equivalent $types = array( 'Triggers' => 'set', 'Controllable' => 'toggle', 'TrackMotion' => 'toggle', 'Enabled' => 'toggle', 'DoNativeMotDet' => 'toggle' ); $columns = getTableColumns( 'Monitors' ); $changes = getFormChanges( $monitor, $_REQUEST['newMonitor'], $types, $columns ); if ( count( $changes ) ) { if ( !empty($_REQUEST['mid']) ) { $mid = validInt($_REQUEST['mid']); $sql = "update Monitors set ".implode( ", ", $changes )." where Id = '".dbEscape($mid)."'"; dbQuery( $sql ); if ( isset($changes['Name']) ) { exec( escapeshellcmd( "mv ".ZM_DIR_EVENTS."/".$monitor['Name']." ".ZM_DIR_EVENTS."/".$_REQUEST['newMonitor']['Name'] ) ); } if ( isset($changes['Width']) || isset($changes['Height']) ) { $newW = $_REQUEST['newMonitor']['Width']; $newH = $_REQUEST['newMonitor']['Height']; $newA = $newW * $newH; $oldW = $monitor['Width']; $oldH = $monitor['Height']; $oldA = $oldW * $oldH; $zones = dbFetchAll( "select * from Zones where MonitorId = '".dbEscape($mid)."'" ); foreach ( $zones as $zone ) { $newZone = $zone; $points = coordsToPoints( $zone['Coords'] ); for ( $i = 0; $i < count($points); $i++ ) { $points[$i]['x'] = intval(($points[$i]['x']*($newW-1))/($oldW-1)); $points[$i]['y'] = intval(($points[$i]['y']*($newH-1))/($oldH-1)); } $newZone['Coords'] = pointsToCoords( $points ); $newZone['Area'] = intval(round(($zone['Area']*$newA)/$oldA)); $newZone['MinAlarmPixels'] = intval(round(($newZone['MinAlarmPixels']*$newA)/$oldA)); $newZone['MaxAlarmPixels'] = intval(round(($newZone['MaxAlarmPixels']*$newA)/$oldA)); $newZone['MinFilterPixels'] = intval(round(($newZone['MinFilterPixels']*$newA)/$oldA)); $newZone['MaxFilterPixels'] = intval(round(($newZone['MaxFilterPixels']*$newA)/$oldA)); $newZone['MinBlobPixels'] = intval(round(($newZone['MinBlobPixels']*$newA)/$oldA)); $newZone['MaxBlobPixels'] = intval(round(($newZone['MaxBlobPixels']*$newA)/$oldA)); $changes = getFormChanges( $zone, $newZone, $types ); if ( count( $changes ) ) { dbQuery( "update Zones set ".implode( ", ", $changes )." where MonitorId = '".dbEscape($mid)."' and Id = '".$zone['Id']."'" ); } } } } elseif ( !$user['MonitorIds'] ) { $maxSeq = dbFetchOne( "select max(Sequence) as MaxSequence from Monitors", "MaxSequence" ); $changes[] = "Sequence = ".($maxSeq+1); dbQuery( "insert into Monitors set ".implode( ", ", $changes ) ); $mid = dbInsertId(); $zoneArea = $_REQUEST['newMonitor']['Width'] * $_REQUEST['newMonitor']['Height']; dbQuery( "insert into Zones set MonitorId = ".dbEscape($mid).", Name = 'All', Type = 'Active', Units = 'Percent', NumCoords = 4, Coords = '".sprintf( "%d,%d %d,%d %d,%d %d,%d", 0, 0, $_REQUEST['newMonitor']['Width']-1, 0, $_REQUEST['newMonitor']['Width']-1, $_REQUEST['newMonitor']['Height']-1, 0, $_REQUEST['newMonitor']['Height']-1 )."', Area = ".$zoneArea.", AlarmRGB = 0xff0000, CheckMethod = 'Blobs', MinPixelThreshold = 25, MinAlarmPixels = ".intval(($zoneArea*3)/100).", MaxAlarmPixels = ".intval(($zoneArea*75)/100).", FilterX = 3, FilterY = 3, MinFilterPixels = ".intval(($zoneArea*3)/100).", MaxFilterPixels = ".intval(($zoneArea*75)/100).", MinBlobPixels = ".intval(($zoneArea*2)/100).", MinBlobs = 1" ); //$view = 'none'; mkdir( ZM_DIR_EVENTS.'/'.$mid, 0755 ); symlink( $mid, ZM_DIR_EVENTS.'/'.$_REQUEST['newMonitor']['Name'] ); if ( isset($_COOKIE['zmGroup']) ) { $sql = "update Groups set MonitorIds = concat(MonitorIds,',".$mid."') where Id = '".dbEscape($_COOKIE['zmGroup'])."'"; dbQuery( $sql ); } } $restart = true; } if ( ZM_OPT_X10 ) { $x10Changes = getFormChanges( $x10Monitor, $_REQUEST['newX10Monitor'] ); if ( count( $x10Changes ) ) { if ( $x10Monitor && isset($_REQUEST['newX10Monitor']) ) { dbQuery( "update TriggersX10 set ".implode( ", ", $x10Changes )." where MonitorId = '".dbEscape($mid)."'" ); } elseif ( !$user['MonitorIds'] ) { if ( !$x10Monitor ) { dbQuery( "insert into TriggersX10 set MonitorId = '".dbEscape($mid)."', ".implode( ", ", $x10Changes ) ); } else { dbQuery( "delete from TriggersX10 where MonitorId = '".dbEscape($mid)."'" ); } } $restart = true; } } if ( $restart ) { $monitor = dbFetchOne( "select * from Monitors where Id = '".dbEscape($mid)."'" ); fixDevices(); //if ( $cookies ) //session_write_close(); if ( daemonCheck() ) { zmaControl( $monitor, "stop" ); zmcControl( $monitor, "restart" ); zmaControl( $monitor, "start" ); } //daemonControl( 'restart', 'zmwatch.pl' ); $refreshParent = true; } $view = 'none'; } if ( $action == "delete" ) { if ( isset($_REQUEST['markMids']) && !$user['MonitorIds'] ) { foreach( $_REQUEST['markMids'] as $markMid ) { if ( canEdit( 'Monitors', $markMid ) ) { $sql = "select * from Monitors where Id = '".dbEscape($markMid)."'"; if ( $monitor = dbFetchOne( $sql ) ) { if ( daemonCheck() ) { zmaControl( $monitor, "stop" ); zmcControl( $monitor, "stop" ); } // This is the important stuff dbQuery( "delete from Monitors where Id = '".dbEscape($markMid)."'" ); dbQuery( "delete from Zones where MonitorId = '".dbEscape($markMid)."'" ); if ( ZM_OPT_X10 ) dbQuery( "delete from TriggersX10 where MonitorId = '".dbEscape($markMid)."'" ); fixSequences(); // If fast deletes are on, then zmaudit will clean everything else up later // If fast deletes are off and there are lots of events then this step may // well time out before completing, in which case zmaudit will still tidy up if ( !ZM_OPT_FAST_DELETE ) { $sql = "select Id from Events where MonitorId = '".dbEscape($markMid)."'"; $markEids = dbFetchAll( $sql, 'Id' ); foreach( $markEids as $markEid ) deleteEvent( $markEid ); deletePath( ZM_DIR_EVENTS."/".$monitor['Name'] ); deletePath( ZM_DIR_EVENTS."/".$monitor['Id'] ); } } } } } } } // Device view actions if ( canEdit( 'Devices' ) ) { if ( $action == "device" ) { if ( !empty($_REQUEST['command']) ) { setDeviceStatusX10( $_REQUEST['key'], $_REQUEST['command'] ); } elseif ( isset( $_REQUEST['newDevice'] ) ) { if ( isset($_REQUEST['did']) ) { dbQuery( "update Devices set Name = '".dbEscape($_REQUEST['newDevice']['Name'])."', KeyString = '".dbEscape($_REQUEST['newDevice']['KeyString'])."' where Id = '".dbEscape($_REQUEST['did'])."'" ); } else { dbQuery( "insert into Devices set Name = '".dbEscape($_REQUEST['newDevice']['Name'])."', KeyString = '".dbEscape($_REQUEST['newDevice']['KeyString'])."'" ); } $refreshParent = true; $view = 'none'; } } elseif ( $action == "delete" ) { if ( isset($_REQUEST['markDids']) ) { foreach( $_REQUEST['markDids'] as $markDid ) { dbQuery( "delete from Devices where Id = '".dbEscape($markDid)."'" ); $refreshParent = true; } } } } // System view actions if ( canView( 'System' ) ) { if ( $action == "setgroup" ) { if ( !empty($_REQUEST['gid']) ) { setcookie( "zmGroup", validInt($_REQUEST['gid']), time()+3600*24*30*12*10 ); } else { setcookie( "zmGroup", "", time()-3600*24*2 ); } $refreshParent = true; } } // System edit actions if ( canEdit( 'System' ) ) { if ( $action == "version" && isset($_REQUEST['option']) ) { $option = $_REQUEST['option']; switch( $option ) { case 'go' : { // Ignore this, the caller will open the page itself break; } case 'ignore' : { dbQuery( "update Config set Value = '".ZM_DYN_LAST_VERSION."' where Name = 'ZM_DYN_CURR_VERSION'" ); break; } case 'hour' : case 'day' : case 'week' : { $nextReminder = time(); if ( $option == 'hour' ) { $nextReminder += 60*60; } elseif ( $option == 'day' ) { $nextReminder += 24*60*60; } elseif ( $option == 'week' ) { $nextReminder += 7*24*60*60; } dbQuery( "update Config set Value = '".$nextReminder."' where Name = 'ZM_DYN_NEXT_REMINDER'" ); break; } case 'never' : { dbQuery( "update Config set Value = '0' where Name = 'ZM_CHECK_FOR_UPDATES'" ); break; } } } if ( $action == "donate" && isset($_REQUEST['option']) ) { $option = $_REQUEST['option']; switch( $option ) { case 'go' : { // Ignore this, the caller will open the page itself break; } case 'hour' : case 'day' : case 'week' : case 'month' : { $nextReminder = time(); if ( $option == 'hour' ) { $nextReminder += 60*60; } elseif ( $option == 'day' ) { $nextReminder += 24*60*60; } elseif ( $option == 'week' ) { $nextReminder += 7*24*60*60; } elseif ( $option == 'month' ) { $nextReminder += 30*24*60*60; } dbQuery( "update Config set Value = '".$nextReminder."' where Name = 'ZM_DYN_DONATE_REMINDER_TIME'" ); break; } case 'never' : case 'already' : { dbQuery( "update Config set Value = '0' where Name = 'ZM_DYN_SHOW_DONATE_REMINDER'" ); break; } } } if ( $action == "options" && isset($_REQUEST['tab']) ) { $configCat = $configCats[$_REQUEST['tab']]; $changed = false; foreach ( $configCat as $name=>$value ) { unset( $newValue ); if ( $value['Type'] == "boolean" && empty($_REQUEST['newConfig'][$name]) ) $newValue = 0; elseif ( isset($_REQUEST['newConfig'][$name]) ) $newValue = preg_replace( "/\r\n/", "\n", stripslashes( $_REQUEST['newConfig'][$name] ) ); if ( isset($newValue) && ($newValue != $value['Value']) ) { dbQuery( "update Config set Value = '".$newValue."' where Name = '".$name."'" ); $changed = true; } } if ( $changed ) { switch( $_REQUEST['tab'] ) { case "system" : case "config" : case "paths" : $restartWarning = true; break; case "web" : case "tools" : break; case "logging" : case "network" : case "mail" : case "upload" : $restartWarning = true; break; case "highband" : case "medband" : case "lowband" : case "phoneband" : break; } } loadConfig( false ); } elseif ( $action == "user" ) { if ( !empty($_REQUEST['uid']) ) $dbUser = dbFetchOne( "select * from Users where Id = '".dbEscape($_REQUEST['uid'])."'" ); else $dbUser = array(); $types = array(); $changes = getFormChanges( $dbUser, $_REQUEST['newUser'], $types ); if ( $_REQUEST['newUser']['Password'] ) $changes['Password'] = "Password = password('".dbEscape($_REQUEST['newUser']['Password'])."')"; else unset( $changes['Password'] ); if ( count( $changes ) ) { if ( !empty($_REQUEST['uid']) ) { $sql = "update Users set ".implode( ", ", $changes )." where Id = '".dbEscape($_REQUEST['uid'])."'"; } else { $sql = "insert into Users set ".implode( ", ", $changes ); } dbQuery( $sql ); $refreshParent = true; if ( $dbUser['Username'] == $user['Username'] ) userLogin( $dbUser['Username'], $dbUser['Password'] ); } $view = 'none'; } elseif ( $action == "state" ) { if ( !empty($_REQUEST['runState']) ) { //if ( $cookies ) session_write_close(); packageControl( $_REQUEST['runState'] ); $refreshParent = true; } } elseif ( $action == "save" ) { if ( !empty($_REQUEST['runState']) || !empty($_REQUEST['newState']) ) { $sql = "select Id,Function,Enabled from Monitors order by Id"; $definitions = array(); foreach( dbFetchAll( $sql ) as $monitor ) { $definitions[] = $monitor['Id'].":".$monitor['Function'].":".$monitor['Enabled']; } $definition = join( ',', $definitions ); if ( $_REQUEST['newState'] ) $_REQUEST['runState'] = $_REQUEST['newState']; dbQuery( "replace into States set Name = '".dbEscape($_REQUEST['runState'])."', Definition = '".dbEscape($definition)."'" ); } } elseif ( $action == "group" ) { if ( !empty($_REQUEST['gid']) ) { $sql = "update Groups set Name = '".dbEscape($_REQUEST['newGroup']['Name'])."', MonitorIds = '".dbEscape(join(',',$_REQUEST['newGroup']['MonitorIds']))."' where Id = '".dbEscape($_REQUEST['gid'])."'"; } else { $sql = "insert into Groups set Name = '".dbEscape($_REQUEST['newGroup']['Name'])."', MonitorIds = '".dbEscape(join(',',$_REQUEST['newGroup']['MonitorIds']))."'"; } dbQuery( $sql ); $refreshParent = true; $view = 'none'; } elseif ( $action == "delete" ) { if ( isset($_REQUEST['runState']) ) dbQuery( "delete from States where Name = '".dbEscape($_REQUEST['runState'])."'" ); if ( isset($_REQUEST['markUids']) ) { foreach( $_REQUEST['markUids'] as $markUid ) dbQuery( "delete from Users where Id = '".dbEscape($markUid)."'" ); if ( $markUid == $user['Id'] ) userLogout(); } if ( !empty($_REQUEST['gid']) ) { dbQuery( "delete from Groups where Id = '".dbEscape($_REQUEST['gid'])."'" ); if ( isset($_COOKIE['zmGroup']) ) { if ( $_REQUEST['gid'] == $_COOKIE['zmGroup'] ) { unset( $_COOKIE['zmGroup'] ); setcookie( "zmGroup", "", time()-3600*24*2 ); $refreshParent = true; } } } } } else { if ( ZM_USER_SELF_EDIT && $action == "user" ) { $uid = $user['Id']; $dbUser = dbFetchOne( "select Id, Password, Language from Users where Id = '".dbEscape($uid)."'" ); $types = array(); $changes = getFormChanges( $dbUser, $_REQUEST['newUser'], $types ); if ( !empty($_REQUEST['newUser']['Password']) ) $changes['Password'] = "Password = password('".dbEscape($_REQUEST['newUser']['Password'])."')"; else unset( $changes['Password'] ); if ( count( $changes ) ) { $sql = "update Users set ".implode( ", ", $changes )." where Id = '".dbEscape($uid)."'"; dbQuery( $sql ); $refreshParent = true; } $view = 'none'; } } if ( $action == "reset" ) { $_SESSION['zmEventResetTime'] = strftime( STRF_FMT_DATETIME_DB ); setcookie( "zmEventResetTime", $_SESSION['zmEventResetTime'], time()+3600*24*30*12*10 ); //if ( $cookies ) session_write_close(); } } ?>