public function xSaveAction()
{
$this->request->defineParams(array('category' => array('type' => 'string'), 'name' => array('type' => 'string'), 'value' => array('type' => 'json')));
$governance = new Scalr_Governance($this->getEnvironmentId());
$category = $this->getParam('category');
$name = $this->getParam('name');
$value = $this->getParam('value');
if ($category == Scalr_Governance::CATEGORY_GENERAL && $name == Scalr_Governance::GENERAL_LEASE) {
$enabled = (bool) $value['limits']['enableDefaultLeaseDuration'];
unset($value['limits']['enableDefaultLeaseDuration']);
if (!$governance->isEnabled(Scalr_Governance::CATEGORY_GENERAL, Scalr_Governance::GENERAL_LEASE) && $value['enabled'] == 1 && $enabled) {
$dt = new DateTime();
$dt->add(new DateInterval('P' . $value['limits']['defaultLifePeriod'] . 'D'));
$farms = $this->db->GetCol('SELECT id FROM farms WHERE env_id = ?', array($this->getEnvironmentId()));
foreach ($farms as $farmId) {
$farm = DBFarm::LoadByID($farmId);
$farm->SetSetting(Entity\FarmSetting::LEASE_STATUS, 'Active');
if ($farm->Status == FARM_STATUS::RUNNING) {
$farm->SetSetting(Entity\FarmSetting::LEASE_TERMINATE_DATE, $dt->format('Y-m-d H:i:s'));
$farm->SetSetting(Entity\FarmSetting::LEASE_NOTIFICATION_SEND, '');
$farm->SetSetting(Entity\FarmSetting::LEASE_EXTEND_CNT, 0);
}
}
}
}
$governance->setValue($category, $name, $value['enabled'], $value['limits']);
$this->response->data(['governance' => $governance->getValues(true)]);
$this->response->success('Successfully saved');
}
public function editAction()
{
$platforms = array();
//intersection of enabled platforms and supported by governance
foreach (array_intersect($this->getEnvironment()->getEnabledPlatforms(), array('ec2', 'cloudstack', 'idcf')) as $platform) {
$platforms[$platform] = self::loadController('Platforms')->getCloudLocations($platform, false);
}
$governance = new Scalr_Governance($this->getEnvironmentId());
$this->response->page('ui/core/governance/edit.js', array('platforms' => $platforms, 'values' => $governance->getValues()), array('ux-boxselect.js', 'ui/core/governance/lease.js'), array('ui/core/governance/edit.css'));
}
public function editAction()
{
$platforms = array();
$governanceEnabledPlatforms = array(SERVER_PLATFORMS::EC2, SERVER_PLATFORMS::CLOUDSTACK, SERVER_PLATFORMS::IDCF, SERVER_PLATFORMS::ECS, SERVER_PLATFORMS::CONTRAIL, SERVER_PLATFORMS::OPENSTACK, SERVER_PLATFORMS::NEBULA, SERVER_PLATFORMS::OCS);
//intersection of enabled platforms and supported by governance
foreach (array_intersect($this->getEnvironment()->getEnabledPlatforms(), $governanceEnabledPlatforms) as $platform) {
//we only need ec2 locations at the moment
$platforms[$platform] = $platform == SERVER_PLATFORMS::EC2 ? self::loadController('Platforms')->getCloudLocations($platform, false) : array();
}
$governance = new Scalr_Governance($this->getEnvironmentId());
$this->response->page('ui/core/governance/edit.js', array('platforms' => $platforms, 'values' => $governance->getValues()), array('ux-boxselect.js', 'ui/core/governance/lease.js'), array('ui/core/governance/edit.css'));
}
public function xCloneAction()
{
if (!$this->user->isAccountSuperAdmin() && !$this->request->isAllowed(Acl::RESOURCE_ENVADMINISTRATION_ENV_CLOUDS)) {
throw new Scalr_Exception_InsufficientPermissions();
}
$params = array('envId' => array('type' => 'int'), 'name' => array('type' => 'string', 'validator' => array(Scalr_Validator::REQUIRED => true, Scalr_Validator::NOHTML => true)));
$this->request->defineParams($params);
$this->request->validate();
$oldEnv = Scalr_Environment::init()->loadById($this->getParam('envId'));
$this->user->getPermissions()->validate($oldEnv);
if ($this->request->isValid()) {
if (!$this->user->isAccountOwner() && !$this->user->isAccountSuperAdmin()) {
throw new Scalr_Exception_InsufficientPermissions();
}
$this->user->getAccount()->validateLimit(Scalr_Limits::ACCOUNT_ENVIRONMENTS, 1);
$env = $this->user->getAccount()->createEnvironment($this->getParam('name'));
$env->status = Scalr_Environment::STATUS_ACTIVE;
//Copy cloud credentials
$cloudConfig = $oldEnv->getFullConfiguration();
foreach ($cloudConfig as $group => $props) {
$env->setPlatformConfig($props, null, $group);
}
//Copy teams & ACLs
$teams = $oldEnv->getTeams();
foreach ($teams as $teamId) {
$env->addTeam($teamId);
}
//Copy Env level global variables
$oldGv = new Scalr_Scripting_GlobalVariables($oldEnv->clientId, $oldEnv->id, Scalr_Scripting_GlobalVariables::SCOPE_ENVIRONMENT);
$variables = $oldGv->getValues();
$newGv = new Scalr_Scripting_GlobalVariables($env->clientId, $env->id, Scalr_Scripting_GlobalVariables::SCOPE_ENVIRONMENT);
$newGv->setValues($variables);
//Copy governance rules
$oldGov = new Scalr_Governance($oldEnv->id);
$govRules = $oldGov->getValues();
$newGov = new Scalr_Governance($env->id);
foreach ($govRules as $category => $rules) {
foreach ($rules as $name => $data) {
$newGov->setValue($category, $name, $data);
}
}
$this->response->success("Environment successfully cloned");
$this->response->data(array('env' => array('id' => $env->id, 'name' => $env->name, 'status' => $env->status, 'platforms' => $env->getEnabledPlatforms(), 'teams' => $teams, 'ccId' => $env->getPlatformConfigValue(Scalr_Environment::SETTING_CC_ID))));
} else {
$this->response->failure($this->request->getValidationErrorsMessage());
}
}
public function buildAction()
{
$this->request->restrictAccess(Acl::RESOURCE_FARMS, Acl::PERM_FARMS_MANAGE);
$this->request->defineParams(array('farmId' => array('type' => 'int'), 'roleId' => array('type' => 'int')));
$farmId = $this->getParam('farmId');
$roleId = $this->getParam('roleId');
$moduleParams = array('farmId' => $farmId, 'roleId' => $roleId, 'behaviors' => ROLE_BEHAVIORS::GetName(null, true));
unset($moduleParams['behaviors'][ROLE_BEHAVIORS::CASSANDRA]);
unset($moduleParams['behaviors'][ROLE_BEHAVIORS::CUSTOM]);
unset($moduleParams['behaviors'][ROLE_BEHAVIORS::HAPROXY]);
//platforms list
$platforms = self::loadController('Platforms')->getEnabledPlatforms();
if (empty($platforms)) {
throw new Exception('Before building new farm you need to configure environment and setup cloud credentials');
}
//categories list
$categories = $this->db->GetAll("SELECT c.id, c.name, COUNT(DISTINCT r.id) AS total\n FROM role_categories c\n LEFT JOIN roles r ON c.id = r.cat_id AND r.env_id IN(0, ?) AND r.id IN (\n SELECT role_id\n FROM role_images\n WHERE role_id = r.id\n AND platform IN ('" . implode("','", array_keys($platforms)) . "')\n )\n LEFT JOIN roles_queue q ON r.id = q.role_id\n WHERE c.env_id IN (0, ?)\n AND q.id IS NULL\n GROUP BY c.id\n ", array($this->environment->id, $this->environment->id));
$moduleParams['categories'] = array();
foreach ($categories as $g) {
$moduleParams['categories'][$g['id']] = $g;
}
$moduleParams['farmVpcEc2Enabled'] = $this->getEnvironment()->isPlatformEnabled(SERVER_PLATFORMS::EC2);
if ($moduleParams['farmVpcEc2Enabled']) {
$moduleParams['farmVpcEc2Locations'] = self::loadController('Platforms')->getCloudLocations(SERVER_PLATFORMS::EC2, false);
}
if ($farmId) {
$c = self::loadController('Builder', 'Scalr_UI_Controller_Farms');
$moduleParams['farm'] = $c->getFarm2($farmId);
} else {
// TODO: remove hack, do better
$vars = new Scalr_Scripting_GlobalVariables($this->user->getAccountId(), $this->getEnvironmentId(), Scalr_Scripting_GlobalVariables::SCOPE_FARM);
$moduleParams['farmVariables'] = $vars->getValues();
}
$moduleParams['tabs'] = array('vpcrouter', 'dbmsr', 'mongodb', 'mysql', 'scaling', 'network', 'gce', 'cloudfoundry', 'rabbitmq', 'haproxy', 'proxy', 'rds', 'scripting', 'nimbula', 'ec2', 'security', 'devel', 'storage', 'variables', 'advanced');
if ($this->user->getAccount()->isFeatureEnabled(Scalr_Limits::FEATURE_CHEF)) {
$moduleParams['tabs'][] = 'chef';
}
//deprecated tabs
$moduleParams['tabs'][] = 'deployments';
$moduleParams['tabs'][] = 'ebs';
$moduleParams['tabs'][] = 'params';
$moduleParams['tabs'][] = 'servicesconfig';
$conf = $this->getContainer()->config->get('scalr.load_statistics.connections.plotter');
$moduleParams['tabParams'] = array('farmId' => $farmId, 'farmHash' => $moduleParams['farm'] ? $moduleParams['farm']['farm']['hash'] : '', 'accountId' => $this->environment->getPlatformConfigValue(Ec2PlatformModule::ACCOUNT_ID), 'remoteAddress' => $this->request->getRemoteAddr(), 'monitoringHostUrl' => "{$conf['scheme']}://{$conf['host']}:{$conf['port']}", 'nginx' => array('server_section' => @file_get_contents("../templates/services/nginx/server_section.tpl"), 'server_section_ssl' => @file_get_contents("../templates/services/nginx/server_section_ssl.tpl")));
// TODO: Features
$moduleParams['tabParams']['featureRAID'] = $this->user->getAccount()->isFeatureEnabled(Scalr_Limits::FEATURE_RAID);
$moduleParams['tabParams']['featureMFS'] = $this->user->getAccount()->isFeatureEnabled(Scalr_Limits::FEATURE_MFS);
$moduleParams['tabParams']['scalr.dns.global.enabled'] = \Scalr::config('scalr.dns.global.enabled');
$moduleParams['tabParams']['scalr.instances_connection_policy'] = \Scalr::config('scalr.instances_connection_policy');
$moduleParams['tabParams']['scalr.scalarizr_update.repos'] = array_keys(\Scalr::config('scalr.scalarizr_update.repos'));
$moduleParams['tabParams']['scalr.scalarizr_update.default_repo'] = \Scalr::config('scalr.scalarizr_update.default_repo');
$moduleParams['metrics'] = self::loadController('Metrics', 'Scalr_UI_Controller_Scaling')->getList();
$moduleParams['timezones_list'] = Scalr_Util_DateTime::getTimezones();
$moduleParams['timezone_default'] = $this->user->getSetting(Scalr_Account_User::SETTING_UI_TIMEZONE);
if ($moduleParams['farm']['farm']['ownerEditable']) {
$moduleParams['usersList'] = Scalr_Account_User::getList($this->user->getAccountId());
}
$governance = new Scalr_Governance($this->getEnvironmentId());
$moduleParams['governance'] = $governance->getValues(true);
$defaultFarmRoleSecurityGroups = array('default');
if (\Scalr::config('scalr.aws.security_group_name')) {
$defaultFarmRoleSecurityGroups[] = \Scalr::config('scalr.aws.security_group_name');
}
$moduleParams['roleDefaultSettings'] = array('base.keep_scripting_logs_time' => \Scalr::config('scalr.system.scripting.default_instance_log_rotation_period'), 'security_groups.list' => json_encode($defaultFarmRoleSecurityGroups));
//cost analytics
if ($this->getContainer()->analytics->enabled && $this->getEnvironment()->getPlatformConfigValue(Scalr_Environment::SETTING_CC_ID)) {
$costCenter = $this->getContainer()->analytics->ccs->get($this->getEnvironment()->getPlatformConfigValue(Scalr_Environment::SETTING_CC_ID));
$projects = [];
if ($costCenter instanceof CostCentreEntity) {
$projectsIterator = new SharedProjectsFilterIterator($costCenter->getProjects(), $costCenter->ccId, $this->user, $this->getEnvironment());
foreach ($projectsIterator as $item) {
/* @var $item ProjectEntity */
$projects[] = array('projectId' => $item->projectId, 'name' => $item->name);
}
$costCentreName = $costCenter->name;
} else {
$costCentreName = '';
}
$moduleParams['analytics'] = array('costCenterName' => $costCentreName, 'projects' => $projects);
if ($farmId) {
$dbFarm = DBFarm::LoadByID($farmId);
$moduleParams['farm']['farm']['projectId'] = $dbFarm->GetSetting(DBFarm::SETTING_PROJECT_ID);
}
}
$this->response->page('ui/farms/builder.js', $moduleParams, array('ui/farms/builder/selroles.js', 'ui/farms/builder/roleedit.js', 'ui/farms/builder/roleslibrary.js', 'ui/farms/builder/tabs/dbmsr.js', 'ui/farms/builder/tabs/cloudfoundry.js', 'ui/farms/builder/tabs/rabbitmq.js', 'ui/farms/builder/tabs/mongodb.js', 'ui/farms/builder/tabs/haproxy.js', 'ui/farms/builder/tabs/proxy.js', 'ui/farms/builder/tabs/mysql.js', 'ui/farms/builder/tabs/nimbula.js', 'ui/farms/builder/tabs/rds.js', 'ui/farms/builder/tabs/gce.js', 'ui/farms/builder/tabs/scaling.js', 'ui/farms/builder/tabs/scripting.js', 'ui/farms/builder/tabs/advanced.js', 'ui/farms/builder/tabs/ec2.js', 'ui/farms/builder/tabs/security.js', 'ui/farms/builder/tabs/storage.js', 'ui/farms/builder/tabs/variables.js', 'ui/farms/builder/tabs/devel.js', 'ui/farms/builder/tabs/chef.js', 'ui/farms/builder/tabs/vpcrouter.js', 'ui/farms/builder/tabs/network.js', 'ui/farms/builder/tabs/deployments.js', 'ui/farms/builder/tabs/ebs.js', 'ui/farms/builder/tabs/params.js', 'ui/farms/builder/tabs/servicesconfig.js', 'ui/farms/builder/roleslibrary/ec2.js', 'ui/farms/builder/roleslibrary/vpc.js', 'ui/farms/builder/roleslibrary/euca.js', 'ui/farms/builder/roleslibrary/rackspace.js', 'ui/farms/builder/roleslibrary/openstack.js', 'ui/farms/builder/roleslibrary/cloudstack.js', 'ui/farms/builder/roleslibrary/gce.js', 'ui/farms/builder/roleslibrary/mongodb.js', 'ui/farms/builder/roleslibrary/dbmsr.js', 'ui/farms/builder/roleslibrary/proxy.js', 'ui/farms/builder/roleslibrary/haproxy.js', 'ui/farms/builder/roleslibrary/chef.js', 'codemirror/codemirror.js', 'ui/core/variablefield.js', 'ui/scripts/scriptfield.js', 'ux-boxselect.js', 'ui/monitoring/window.js', 'ui/services/chef/chefsettings.js', 'ui/security/groups/sgeditor.js'), array('ui/farms/builder/selroles.css', 'ui/farms/builder/roleedit.css', 'ui/farms/builder/roleslibrary.css', 'codemirror/codemirror.css', 'ui/core/variablefield.css', 'ui/scripts/scriptfield.css', 'ui/farms/builder/tabs/scaling.css'));
}
/**
* Checks request data
*
* @param JsonData $vpcSecurityGroups
* @param string $vpcId
* @param JsonData $subnetIds
* @param string $cloudLocation
* @return bool|string Returns error message if access to some data restricted. False otherwise.
* @throws Scalr_Exception_Core
*/
private function checkPolicy($vpcSecurityGroups = null, $vpcId = null, $subnetIds = null, $cloudLocation = null)
{
$governance = new Scalr_Governance($this->getEnvironmentId());
$values = $governance->getValues(true);
if (!empty($values[SERVER_PLATFORMS::EC2][Scalr_Governance::AWS_VPC]->value)) {
if (!empty($cloudLocation) && !array_key_exists($cloudLocation, (array) $values[SERVER_PLATFORMS::EC2][Scalr_Governance::AWS_VPC]->regions)) {
return sprintf("A Vpc Policy is active in this Environment, access to %s region has been restricted by account owner.", $cloudLocation);
}
if (!empty($vpcId)) {
foreach ($values[SERVER_PLATFORMS::EC2][Scalr_Governance::AWS_VPC]->regions as $region => $policy) {
if (!empty($policy->ids) && !empty($cloudLocation) && $cloudLocation == $region && !in_array($vpcId, (array) $policy->ids)) {
return sprintf("A Vpc Policy is active in this Environment, access to vpc %s has been restricted by account owner.", $vpcId);
}
}
foreach ($values[SERVER_PLATFORMS::EC2][Scalr_Governance::AWS_VPC]->ids as $vpc => $restrictions) {
$subnetIds = (array) $subnetIds;
$missingSubnets = array_diff($subnetIds, $restrictions);
$s = count($missingSubnets) > 1 ? 's' : '';
if (!empty($restrictions) && is_array($restrictions) && $vpc == $vpcId && !empty($missingSubnets)) {
return sprintf("A Vpc Policy is active in this Environment, access to subnet%s %s has been restricted by account owner.", $s, implode(', ', $missingSubnets));
}
}
}
}
if (!empty($vpcSecurityGroups)) {
foreach ($vpcSecurityGroups as $vpcSecurityGroup) {
if (empty($vpcSecurityGroup['id'])) {
$notFoundGroups[] = $vpcSecurityGroup['name'];
}
$vpcSecurityGroupNames[] = $vpcSecurityGroup['name'];
}
}
if (!empty($values[SERVER_PLATFORMS::EC2][Scalr_Governance::AWS_SECURITY_GROUPS]->value) && !empty($vpcSecurityGroupNames)) {
if (!empty($notFoundGroups)) {
$s = count($notFoundGroups) > 1 ? 's' : '';
$es = $s ? '' : "e{$s}";
$they = $s ? "they" : 'it';
return sprintf("A Security Group Policy is active in this Environment, and requires that you attach the following Security Group%s to your DB instance: %s, but %s do%s not exist in current Vpc.", $s, implode(', ', $notFoundGroups), $they, $es);
}
$sgDefaultNames = explode(',', $values[SERVER_PLATFORMS::EC2][Scalr_Governance::AWS_SECURITY_GROUPS]->value);
if ($missingGroups = array_diff($sgDefaultNames, $vpcSecurityGroupNames)) {
return sprintf("A Security Group Policy is active in this Environment, and requires that you attach the following Security Groups to your DB instance: %s", implode(', ', $missingGroups));
}
sort($sgDefaultNames);
sort($vpcSecurityGroupNames);
if (empty($values[SERVER_PLATFORMS::EC2][Scalr_Governance::AWS_SECURITY_GROUPS]->allow_additional_sec_groups) && $sgDefaultNames != $vpcSecurityGroupNames) {
return sprintf("A Security Group Policy is active in this Environment, and you can't apply additional security groups to your DB instance.");
}
}
return false;
}
/**
* Gets default vpc security group list
*
* @param SecurityGroupList $vpcSglist
* @param string $vpcId
* @return array
*/
private function getDefaultSgRow($vpcSglist, $vpcId)
{
$governance = new Scalr_Governance($this->getEnvironmentId());
$values = $governance->getValues(true);
if (!empty($values['ec2']['aws.additional_security_groups']->value)) {
$sgDefaultNames = explode(',', $values['ec2']['aws.additional_security_groups']->value);
}
$defaultSecurityGroups = [];
$vpcSgNames = [];
foreach ($vpcSglist as $vpcSg) {
/* @var $vpcSg Scalr\Service\Aws\Ec2\DataType\SecurityGroupData */
if (!empty($sgDefaultNames)) {
if ($vpcSg->vpcId == $vpcId && in_array($vpcSg->groupName, $sgDefaultNames)) {
$defaultSecurityGroups[] = ['securityGroupId' => $vpcSg->groupId, 'securityGroupName' => $vpcSg->groupName];
}
$vpcSgNames[] = $vpcSg->groupName;
} else {
if ($vpcSg->vpcId == $vpcId && $vpcSg->groupName == 'default') {
$defaultSecurityGroups[] = ['securityGroupId' => $vpcSg->groupId, 'securityGroupName' => $vpcSg->groupName];
break;
}
}
}
if (!empty($sgDefaultNames)) {
$missingSgs = array_diff($sgDefaultNames, $vpcSgNames);
foreach ($missingSgs as $missingSg) {
$defaultSecurityGroups[] = ['securityGroupId' => null, 'securityGroupName' => $missingSg];
}
}
return $defaultSecurityGroups;
}
/**
* @param int $uiStorageTime optional
* @return array
*/
public function getContext($uiStorageTime = 0)
{
$data = array();
if ($this->user) {
$data['user'] = array('userId' => $this->user->getId(), 'clientId' => $this->user->getAccountId(), 'userName' => $this->user->getEmail(), 'gravatarHash' => $this->user->getGravatarHash(), 'envId' => $this->getEnvironment() ? $this->getEnvironmentId() : 0, 'envName' => $this->getEnvironment() ? $this->getEnvironment()->name : '', 'envVars' => '', 'type' => $this->user->getType(), 'settings' => [Scalr_Account_User::SETTING_UI_TIMEZONE => $this->user->getSetting(Scalr_Account_User::SETTING_UI_TIMEZONE), UserSetting::NAME_UI_ANNOUNCEMENT_TIME => $this->getUser()->getSetting(UserSetting::NAME_UI_ANNOUNCEMENT_TIME)]);
if ($this->getEnvironment()) {
$data['user']['envVars'] = $this->getEnvironment()->getPlatformConfigValue(Scalr_Environment::SETTING_UI_VARS);
} else {
if ($this->user->getAccountId()) {
$data['user']['envVars'] = $this->user->getAccount()->getSetting(Scalr_Account::SETTING_UI_VARS);
}
}
if ($uiStorageTime > 0 && $uiStorageTime < $this->user->getSetting(Scalr_Account_User::SETTING_UI_STORAGE_TIME) && !Scalr_Session::getInstance()->isVirtual()) {
$data['user']['uiStorage'] = $this->user->getVar(Scalr_Account_User::VAR_UI_STORAGE);
}
$envVars = json_decode($data['user']['envVars'], true);
$betaMode = $envVars && $envVars['beta'] == 1;
if (!$this->user->isAdmin()) {
$data['flags'] = [];
if ($this->user->getAccountId() != 0) {
$data['user']['userIsTrial'] = $this->user->getAccount()->getSetting(Scalr_Account::SETTING_IS_TRIAL) == '1' ? true : false;
}
$data['flags']['billingExists'] = \Scalr::config('scalr.billing.enabled');
$data['flags']['showDeprecatedFeatures'] = \Scalr::config('scalr.ui.show_deprecated_features');
$data['acl'] = $this->request->getAclRoles()->getAllowedArray(true);
if (!$this->user->isAccountOwner()) {
$data['user']['accountOwnerName'] = $this->user->getAccount()->getOwner()->getEmail();
}
$data['environments'] = $this->user->getEnvironments();
if ($this->user->isAccountOwner()) {
if (!$this->user->getAccount()->getSetting(Scalr_Account::SETTING_DATE_ENV_CONFIGURED)) {
$data['flags']['needEnvConfig'] = true;
}
}
if ($this->request->getScope() == 'environment') {
$sql = "SELECT id, name FROM farms f WHERE env_id = ? AND " . $this->request->getFarmSqlQuery();
$args = [$this->getEnvironmentId()];
$sql .= " ORDER BY name";
$data['farms'] = $this->db->getAll($sql, $args);
if ($this->getEnvironment() && $this->user->isTeamOwner()) {
$data['user']['isTeamOwner'] = true;
}
}
}
$data['flags']['wikiUrl'] = \Scalr::config('scalr.ui.wiki_url');
$data['flags']['supportUrl'] = \Scalr::config('scalr.ui.support_url');
if ($data['flags']['supportUrl'] == '/core/support') {
if ($this->user->isAdmin()) {
unset($data['flags']['supportUrl']);
} else {
$data['flags']['supportUrl'] .= '?X-Requested-Token=' . Scalr_Session::getInstance()->getToken();
}
}
//OS
$data['os'] = [];
foreach (Os::find() as $os) {
/* @var $os Os */
$data['os'][] = ['id' => $os->id, 'family' => $os->family, 'name' => $os->name, 'generation' => $os->generation, 'version' => $os->version, 'status' => $os->status];
}
$data['defaults'] = (new Scalr_Scripting_GlobalVariables($this->user->getAccountId(), $this->getEnvironmentId(true), ScopeInterface::SCOPE_ENVIRONMENT))->getUiDefaults();
$data['platforms'] = [];
$allowedClouds = (array) \Scalr::config('scalr.allowed_clouds');
if ($this->user->getAccountId() == 263) {
array_push($allowedClouds, SERVER_PLATFORMS::VERIZON);
}
$platforms = SERVER_PLATFORMS::getList();
if (!($this->request->getHeaderVar('Interface-Beta') || $betaMode)) {
$platforms = array_intersect_key($platforms, array_flip($allowedClouds));
}
$environment = $this->getEnvironment();
if (!empty($environment)) {
$cloudsCredentials = $environment->cloudCredentialsList(array_keys($platforms));
}
foreach ($platforms as $platform => $platformName) {
if (!in_array($platform, $allowedClouds) && !$this->request->getHeaderVar('Interface-Beta') && !$betaMode) {
continue;
}
$data['platforms'][$platform] = array('public' => PlatformFactory::isPublic($platform), 'enabled' => $this->user->isAdmin() || $this->request->getScope() != 'environment' ? true : isset($cloudsCredentials[$platform]) && $cloudsCredentials[$platform]->isEnabled(), 'name' => $platformName);
if (!($this->user->isAdmin() || $this->request->getScope() != 'environment')) {
if ($platform == SERVER_PLATFORMS::EC2 && $this->environment->status == Scalr_Environment::STATUS_INACTIVE && $this->environment->getPlatformConfigValue('system.auto-disable-reason')) {
$data['platforms'][$platform]['config'] = array('autoDisabled' => true);
}
if (PlatformFactory::isOpenstack($platform) && $data['platforms'][$platform]['enabled']) {
$ccProps = $cloudsCredentials[$platform]->properties;
$data['platforms'][$platform]['config'] = [CloudCredentialsProperty::OPENSTACK_EXT_SECURITYGROUPS_ENABLED => $ccProps[CloudCredentialsProperty::OPENSTACK_EXT_SECURITYGROUPS_ENABLED], CloudCredentialsProperty::OPENSTACK_EXT_LBAAS_ENABLED => $ccProps[CloudCredentialsProperty::OPENSTACK_EXT_LBAAS_ENABLED], CloudCredentialsProperty::OPENSTACK_EXT_FLOATING_IPS_ENABLED => $ccProps[CloudCredentialsProperty::OPENSTACK_EXT_FLOATING_IPS_ENABLED], CloudCredentialsProperty::OPENSTACK_EXT_CINDER_ENABLED => $ccProps[CloudCredentialsProperty::OPENSTACK_EXT_CINDER_ENABLED], CloudCredentialsProperty::OPENSTACK_EXT_SWIFT_ENABLED => $ccProps[CloudCredentialsProperty::OPENSTACK_EXT_SWIFT_ENABLED]];
}
}
}
$data['flags']['uiStorageTime'] = $this->user->getSetting(Scalr_Account_User::SETTING_UI_STORAGE_TIME);
$data['flags']['uiStorage'] = $this->user->getVar(Scalr_Account_User::VAR_UI_STORAGE);
$data['flags']['allowManageAnalytics'] = $this->user->getAccountId() && Scalr::isAllowedAnalyticsOnHostedScalrAccount($this->user->getAccountId());
$data['flags']['hostedScalr'] = (bool) Scalr::isHostedScalr();
$data['flags']['analyticsEnabled'] = $this->getContainer()->analytics->enabled;
$data['flags']['apiEnabled'] = (bool) \Scalr::config('scalr.system.api.enabled');
$data['flags']['dnsGlobalEnabled'] = (bool) \Scalr::config('scalr.dns.global.enabled');
$data['flags']['allowBetaEbsTypes'] = SCALR_ID == 'gdp-aws-east';
$data['scope'] = $this->request->getScope();
if ($this->request->getScope() == 'environment') {
$governance = new Scalr_Governance($this->getEnvironmentId());
$data['governance'] = $governance->getValues(true);
}
}
if ($this->user) {
$data['tags'] = Tag::getAll($this->user->getAccountId());
}
$data['flags']['authMode'] = $this->getContainer()->config->get('scalr.auth_mode');
$data['flags']['recaptchaPublicKey'] = $this->getContainer()->config->get('scalr.ui.recaptcha.public_key');
$data['flags']['specialToken'] = Scalr_Session::getInstance()->getToken();
$data['flags']['loginWarning'] = $this->getContainer()->config->get('scalr.ui.login_warning');
return $data;
}
public function getContext($uiStorageTime = 0)
{
$data = array();
if ($this->user) {
$data['user'] = array('userId' => $this->user->getId(), 'clientId' => $this->user->getAccountId(), 'userName' => $this->user->getEmail(), 'gravatarHash' => $this->user->getGravatarHash(), 'envId' => $this->getEnvironment() ? $this->getEnvironmentId() : 0, 'envName' => $this->getEnvironment() ? $this->getEnvironment()->name : '', 'envVars' => $this->getEnvironment() ? $this->getEnvironment()->getPlatformConfigValue(Scalr_Environment::SETTING_UI_VARS) : '', 'type' => $this->user->getType(), 'settings' => [Scalr_Account_User::VAR_SSH_CONSOLE_LAUNCHER => $this->user->getVar(Scalr_Account_User::VAR_SSH_CONSOLE_LAUNCHER)]);
if ($uiStorageTime > 0 && $uiStorageTime < $this->user->getSetting(Scalr_Account_User::SETTING_UI_STORAGE_TIME) && !Scalr_Session::getInstance()->isVirtual()) {
$data['user']['uiStorage'] = $this->user->getVar(Scalr_Account_User::VAR_UI_STORAGE);
}
$envVars = json_decode($data['user']['envVars'], true);
$betaMode = $envVars && $envVars['beta'] == 1;
if (!$this->user->isAdmin()) {
$data['flags'] = [];
if ($this->user->getAccountId() != 0) {
$data['user']['userIsTrial'] = $this->user->getAccount()->getSetting(Scalr_Account::SETTING_IS_TRIAL) == '1' ? true : false;
}
$data['flags']['billingExists'] = \Scalr::config('scalr.billing.enabled');
$data['flags']['showDeprecatedFeatures'] = \Scalr::config('scalr.ui.show_deprecated_features');
$data['flags']['wikiUrl'] = \Scalr::config('scalr.ui.wiki_url');
$data['flags']['supportUrl'] = \Scalr::config('scalr.ui.support_url');
if ($data['flags']['supportUrl'] == '/core/support') {
$data['flags']['supportUrl'] .= '?X-Requested-Token=' . Scalr_Session::getInstance()->getToken();
}
$data['acl'] = $this->request->getAclRoles()->getAllowedArray(true);
if (!$this->user->isAccountOwner()) {
$data['user']['accountOwnerName'] = $this->user->getAccount()->getOwner()->getEmail();
}
$data['environments'] = $this->user->getEnvironments();
if ($this->user->isAccountOwner()) {
if (!$this->user->getAccount()->getSetting(Scalr_Account::SETTING_DATE_ENV_CONFIGURED)) {
$data['flags']['needEnvConfig'] = true;
}
}
if ($this->request->getScope() == 'environment') {
$sql = 'SELECT id, name FROM farms WHERE env_id = ?';
$args = [$this->getEnvironmentId()];
list($sql, $args) = $this->request->prepareFarmSqlQuery($sql, $args);
$sql .= ' ORDER BY name';
$data['farms'] = $this->db->getAll($sql, $args);
if ($this->getEnvironment() && $this->user->isTeamOwner()) {
$data['user']['isTeamOwner'] = true;
}
}
}
//OS
$data['os'] = [];
foreach (Os::find([['status' => Os::STATUS_ACTIVE]]) as $os) {
/* @var $os Os */
$data['os'][] = ['id' => $os->id, 'family' => $os->family, 'name' => $os->name, 'generation' => $os->generation, 'version' => $os->version];
}
$data['platforms'] = [];
$allowedClouds = (array) \Scalr::config('scalr.allowed_clouds');
foreach (SERVER_PLATFORMS::getList() as $platform => $platformName) {
if ($this->user->getAccountId() == 263) {
array_push($allowedClouds, SERVER_PLATFORMS::VERIZON);
}
if (!in_array($platform, $allowedClouds) && !$this->request->getHeaderVar('Interface-Beta')) {
continue;
}
$data['platforms'][$platform] = array('public' => PlatformFactory::isPublic($platform), 'enabled' => $this->user->isAdmin() || $this->request->getScope() != 'environment' ? true : !!$this->environment->isPlatformEnabled($platform), 'name' => $platformName);
if (!($this->user->isAdmin() || $this->request->getScope() != 'environment')) {
if ($platform == SERVER_PLATFORMS::EC2 && $this->environment->status == Scalr_Environment::STATUS_INACTIVE && $this->environment->getPlatformConfigValue('system.auto-disable-reason')) {
$data['platforms'][$platform]['config'] = array('autoDisabled' => true);
}
if (PlatformFactory::isOpenstack($platform) && $data['platforms'][$platform]['enabled']) {
$data['platforms'][$platform]['config'] = array(OpenstackPlatformModule::EXT_SECURITYGROUPS_ENABLED => PlatformFactory::NewPlatform($platform)->getConfigVariable(OpenstackPlatformModule::EXT_SECURITYGROUPS_ENABLED, $this->getEnvironment(), false), OpenstackPlatformModule::EXT_LBAAS_ENABLED => PlatformFactory::NewPlatform($platform)->getConfigVariable(OpenstackPlatformModule::EXT_LBAAS_ENABLED, $this->getEnvironment(), false), OpenstackPlatformModule::EXT_FLOATING_IPS_ENABLED => PlatformFactory::NewPlatform($platform)->getConfigVariable(OpenstackPlatformModule::EXT_FLOATING_IPS_ENABLED, $this->getEnvironment(), false), OpenstackPlatformModule::EXT_CINDER_ENABLED => PlatformFactory::NewPlatform($platform)->getConfigVariable(OpenstackPlatformModule::EXT_CINDER_ENABLED, $this->getEnvironment(), false), OpenstackPlatformModule::EXT_SWIFT_ENABLED => PlatformFactory::NewPlatform($platform)->getConfigVariable(OpenstackPlatformModule::EXT_SWIFT_ENABLED, $this->getEnvironment(), false));
}
}
}
$data['flags']['uiStorageTime'] = $this->user->getSetting(Scalr_Account_User::SETTING_UI_STORAGE_TIME);
$data['flags']['uiStorage'] = $this->user->getVar(Scalr_Account_User::VAR_UI_STORAGE);
$data['flags']['allowManageAnalytics'] = (bool) Scalr::isAllowedAnalyticsOnHostedScalrAccount($this->environment->clientId);
$data['scope'] = $this->request->getScope();
if ($this->request->getScope() == 'environment') {
$governance = new Scalr_Governance($this->getEnvironmentId());
$data['governance'] = $governance->getValues(true);
}
}
if ($this->user) {
$data['tags'] = Tag::getAll($this->user->getAccountId());
}
$data['flags']['authMode'] = $this->getContainer()->config->get('scalr.auth_mode');
$data['flags']['recaptchaPublicKey'] = $this->getContainer()->config->get('scalr.ui.recaptcha.public_key');
$data['flags']['specialToken'] = Scalr_Session::getInstance()->getToken();
$data['flags']['hostedScalr'] = (bool) Scalr::isHostedScalr();
$data['flags']['analyticsEnabled'] = $this->getContainer()->analytics->enabled;
$data['flags']['apiEnabled'] = (bool) \Scalr::config('scalr.system.api.enabled');
return $data;
}
private function listGroupsEc2($platform, $cloudLocation, $filters)
{
$sgFilter = null;
$result = [];
if (!is_array($filters)) {
$filters = [];
}
if (!empty($filters['sgIds'])) {
$sgFilter = is_null($sgFilter) ? array() : $sgFilter;
$sgFilter[] = array('name' => SecurityGroupFilterNameType::groupId(), 'value' => $filters['sgIds']);
}
if (empty($filters['vpcId']) && array_key_exists('vpcId', $filters)) {
$p = PlatformFactory::NewPlatform(SERVER_PLATFORMS::EC2);
$defaultVpc = $p->getDefaultVpc($this->environment, $cloudLocation);
if ($defaultVpc) {
$filters['vpcId'] = $defaultVpc;
}
}
if (!empty($filters['vpcId'])) {
$sgFilter = is_null($sgFilter) ? array() : $sgFilter;
$sgFilter[] = array('name' => SecurityGroupFilterNameType::vpcId(), 'value' => $filters['vpcId']);
}
$sgList = $this->getPlatformService($platform, $cloudLocation)->describe(null, null, $sgFilter);
/* @var $sg SecurityGroupData */
$considerGovernance = $filters['considerGovernance'];
if ($considerGovernance) {
$governance = new Scalr_Governance($this->getEnvironmentId());
$values = $governance->getValues(true);
if (!empty($values['ec2']['aws.additional_security_groups']->value)) {
$sgDefaultNames = explode(',', $values['ec2']['aws.additional_security_groups']->value);
}
}
$sgNames = [];
foreach ($sgList as $sg) {
if (is_array($filters) && array_key_exists('vpcId', $filters) && $filters['vpcId'] == null && $sg->vpcId) {
continue;
}
if ($considerGovernance && empty($values['ec2']['aws.additional_security_groups']->allow_additional_sec_groups) && !empty($sgDefaultNames) && !in_array($sg->groupName, $sgDefaultNames)) {
continue;
}
$result[] = ['id' => $sg->groupId, 'name' => $sg->groupName, 'description' => $sg->groupDescription, 'vpcId' => $sg->vpcId, 'owner' => $sg->ownerId];
$sgNames[] = $sg->groupName;
}
if ($considerGovernance && !empty($sgDefaultNames)) {
foreach ($sgDefaultNames as $sgDefaultName) {
if (!in_array($sgDefaultName, $sgNames)) {
$result[] = ['id' => null, 'name' => $sgDefaultName, 'description' => null, 'vpcId' => null, 'owner' => null];
}
}
}
return $result;
}
