mirror of
https://github.com/ZoneMinder/zoneminder.git
synced 2026-03-27 18:23:00 -04:00
e6ace6fcf4
Add a new AUDIT logging level (-5) between PANIC (-4) and NOLOG (shifted to -6) across C++, PHP, and Perl loggers. AUDIT entries use code 'AUD' and syslog priority LOG_NOTICE. They record who changed what, from where, for monitors, filters, users, config, roles, groups, zones, states, servers, storage, events, snapshots, control caps, and login/logout. AUDIT entries have their own retention period (ZM_LOG_AUDIT_DATABASE_LIMIT, default 1 year) separate from regular log pruning. The log pruning in zmstats.pl and zmaudit.pl now excludes AUDIT rows from regular pruning and prunes them independently. Critical safety: the C++ termination logic is changed from 'if (level <= FATAL)' to 'if (level == FATAL || level == PANIC)' to prevent AUDIT-level log calls from killing the process. Includes db migration zm_update-1.39.1.sql to shift any stored NOLOG config values from -5 to -6. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
51 lines
1.9 KiB
PHP
51 lines
1.9 KiB
PHP
<?php
|
|
//
|
|
// ZoneMinder web action file
|
|
// Copyright (C) 2019 ZoneMinder LLC
|
|
//
|
|
// This program is free software; you can redistribute it and/or
|
|
// modify it under the terms of the GNU General Public License
|
|
// as published by the Free Software Foundation; either version 2
|
|
// of the License, or (at your option) any later version.
|
|
//
|
|
// This program is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU General Public License for more details.
|
|
//
|
|
// You should have received a copy of the GNU General Public License
|
|
// along with this program; if not, write to the Free Software
|
|
// Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
//
|
|
|
|
// Group edit actions
|
|
# Should probably verify that each monitor id is a valid monitor, that we have access to.
|
|
# However at the moment, you have to have System permissions to do this
|
|
if ( !canEdit('Groups') ) {
|
|
ZM\Warning('Need group edit permissions to edit groups');
|
|
return;
|
|
}
|
|
|
|
if ( $action == 'save' ) {
|
|
$group_id = null;
|
|
if ( !empty($_REQUEST['gid']) )
|
|
$group_id = $_REQUEST['gid'];
|
|
$group = new ZM\Group($group_id);
|
|
$group->save(
|
|
array(
|
|
'Name'=> $_REQUEST['newGroup']['Name'],
|
|
'ParentId'=>( $_REQUEST['newGroup']['ParentId'] == '' ? null : $_REQUEST['newGroup']['ParentId'] ),
|
|
)
|
|
);
|
|
dbQuery('DELETE FROM `Groups_Monitors` WHERE `GroupId`=?', array($group_id));
|
|
$group_id = $group->Id();
|
|
if ($group_id and isset($_REQUEST['newGroup']['MonitorIds'])) {
|
|
foreach ( $_REQUEST['newGroup']['MonitorIds'] as $mid ) {
|
|
dbQuery('INSERT INTO `Groups_Monitors` (`GroupId`,`MonitorId`) VALUES (?,?)', array($group_id, $mid));
|
|
}
|
|
}
|
|
ZM\AuditAction((!empty($_REQUEST['gid']) ? 'update' : 'create'), 'group', $group->Id(), 'Name: '.$_REQUEST['newGroup']['Name']);
|
|
$redirect = '?view=groups';
|
|
}
|
|
?>
|