"操作", "id" => "ID", "name" => "名称", "text" => "介绍", "regex" => "正则表达式", "type" => "类型"); $table_config['default_show_column'] = array(); foreach ($table_config['total_column'] as $column => $value) { array_push($table_config['default_show_column'], $column); } $table_config['ajax_url'] = 'detect/ajax'; return $this->view()->assign('table_config', $table_config)->display('admin/detect/index.tpl'); } public function log($request, $response, $args) { $table_config['total_column'] = array("id" => "ID", "user_id" => "用户ID", "user_name" => "用户名", "node_id" => "节点ID", "node_name" => "节点名", "rule_id" => "规则ID", "rule_name" => "规则名", "rule_text" => "规则描述", "rule_regex" => "规则正则表达式", "rule_type" => "规则类型", "datetime" => "时间"); $table_config['default_show_column'] = array(); foreach ($table_config['total_column'] as $column => $value) { array_push($table_config['default_show_column'], $column); } $table_config['ajax_url'] = 'log/ajax'; return $this->view()->assign('table_config', $table_config)->display('admin/detect/log.tpl'); } public function create($request, $response, $args) { return $this->view()->display('admin/detect/add.tpl'); } public function add($request, $response, $args) { $rule = new DetectRule(); $rule->name = $request->getParam('name'); $rule->text = $request->getParam('text'); $rule->regex = $request->getParam('regex'); $rule->type = $request->getParam('type'); if (!$rule->save()) { $rs['ret'] = 0; $rs['msg'] = "添加失败"; return $response->getBody()->write(json_encode($rs)); } Telegram::SendMarkdown("有新的审计规则：".$rule->name); $rs['ret'] = 1; $rs['msg'] = "添加成功"; return $response->getBody()->write(json_encode($rs)); } public function edit($request, $response, $args) { $id = $args['id']; $rule = DetectRule::find($id); return $this->view()->assign('rule', $rule)->display('admin/detect/edit.tpl'); } public function update($request, $response, $args) { $id = $args['id']; $rule = DetectRule::find($id); $rule->name = $request->getParam('name'); $rule->text = $request->getParam('text'); $rule->regex = $request->getParam('regex'); $rule->type = $request->getParam('type'); if (!$rule->save()) { $rs['ret'] = 0; $rs['msg'] = "修改失败"; return $response->getBody()->write(json_encode($rs)); } Telegram::SendMarkdown("规则更新：".PHP_EOL.$request->getParam('name')); $rs['ret'] = 1; $rs['msg'] = "修改成功"; return $response->getBody()->write(json_encode($rs)); } public function delete($request, $response, $args) { $id = $request->getParam('id'); $rule = DetectRule::find($id); if (!$rule->delete()) { $rs['ret'] = 0; $rs['msg'] = "删除失败"; return $response->getBody()->write(json_encode($rs)); } $rs['ret'] = 1; $rs['msg'] = "删除成功"; return $response->getBody()->write(json_encode($rs)); } public function ajax_rule($request, $response, $args) { $datatables = new Datatables(new DatatablesHelper()); $datatables->query('Select id as op,id,name,text,regex,type from detect_list'); $datatables->edit('op', function ($data) { return '编辑 删除'; }); $datatables->edit('type', function ($data) { return $data['type'] == 1 ? '数据包明文匹配' : '数据包十六进制匹配'; }); $body = $response->getBody(); $body->write($datatables->generate()); } public function ajax_log($request, $response, $args) { $datatables = new Datatables(new DatatablesHelper()); $datatables->query('Select detect_log.id,user_id,user.user_name,node_id,node.name as node_name,list.id as rule_id,list.name as rule_name,list.text as rule_text,list.regex as rule_regex,list.type as rule_type,detect_log.datetime from detect_log,user,ss_node as node,detect_list as list where user.id=detect_log.user_id and node.id = detect_log.node_id and list.id = detect_log.list_id'); $datatables->edit('rule_type', function ($data) { return $data['rule_type'] == 1 ? '数据包明文匹配' : '数据包十六进制匹配'; }); $datatables->edit('datetime', function ($data) { return date('Y-m-d H:i:s', $data['datetime']); }); $body = $response->getBody(); $body->write($datatables->generate()); } }