mirror of
https://codeberg.org/PostERG/xamxam.git
synced 2026-05-07 11:39:18 +02:00
871e919efa
Replace the two undefined variables that had crept in: - var(--admin-border) → #555 (in .log-output border) - var(--admin-text-muted) → #969696 (inline style on log toolbar label, in both system.php and system-fragment.php) Revert the incorrect intermediate attempt that mapped dark-UI hex values to light-theme tokens (--bg-primary: #fff, --border-primary: #ddd, etc.) and also revert the .admin-body override block that was added to variables.css — variables.css is shared and must not have per-component overrides. All remaining var() calls in system.css now reference tokens that exist in variables.css: --accent-primary, --accent-green, --error, --warning, --success, --text-tertiary The dark surface colours (#1a1a1a, #242424, #0d0d0d, #555, #969696, etc.) stay as literal hex values, consistent with how admin.css handles them.
218 lines
8.8 KiB
PHP
218 lines
8.8 KiB
PHP
<?php
|
|
/**
|
|
* system-fragment.php — returns only the tab-panel HTML for the admin system page.
|
|
*
|
|
* Called by fetch() from system.php JS when switching tabs or changing line count.
|
|
* With JS disabled the user never hits this URL directly; the tab <a> hrefs still
|
|
* point at system.php?tab=… so navigation degrades gracefully.
|
|
*
|
|
* Response: text/html fragment (no <html>/<head>/<body> wrapper).
|
|
* On any auth failure or bad request: 403 / 400 with a plain-text body.
|
|
*/
|
|
require_once __DIR__ . "/../../config/bootstrap.php";
|
|
require_once __DIR__ . '/../../src/AdminAuth.php';
|
|
|
|
if (!AdminAuth::isAuthenticated()) {
|
|
http_response_code(403);
|
|
header('Content-Type: text/plain; charset=utf-8');
|
|
echo 'Non autorisé';
|
|
exit;
|
|
}
|
|
|
|
// ── Validate inputs ────────────────────────────────────────────────────────
|
|
const LOG_FILES_FRAG = [
|
|
'nginx_access' => ['label' => 'nginx — accès', 'path' => '/var/log/nginx/posterg_access.log'],
|
|
'nginx_error' => ['label' => 'nginx — erreurs', 'path' => '/var/log/nginx/posterg_error.log'],
|
|
'php_error' => ['label' => 'PHP-FPM — erreurs', 'path' => '/var/log/php8.4-fpm.log'],
|
|
];
|
|
const ALLOWED_LINES_FRAG = [50, 100, 200, 500];
|
|
|
|
$tab = $_GET['tab'] ?? 'nginx_access';
|
|
if ($tab !== 'nginx_config' && !array_key_exists($tab, LOG_FILES_FRAG)) {
|
|
$tab = 'nginx_access';
|
|
}
|
|
|
|
$n = isset($_GET['n']) ? (int)$_GET['n'] : 100;
|
|
if (!in_array($n, ALLOWED_LINES_FRAG, true)) {
|
|
$n = 100;
|
|
}
|
|
|
|
header('Content-Type: text/html; charset=utf-8');
|
|
header('X-Robots-Tag: noindex');
|
|
|
|
// ── Helpers (duplicated from system.php — small enough to inline) ──────────
|
|
function frag_readLogTail(string $logPath, int $lines, ?string &$errorMsg): ?array
|
|
{
|
|
$errorMsg = null;
|
|
if (!function_exists('exec')) {
|
|
$errorMsg = "exec() est désactivé sur ce serveur.";
|
|
return null;
|
|
}
|
|
if (!file_exists($logPath)) {
|
|
$errorMsg = "Fichier introuvable : " . htmlspecialchars($logPath);
|
|
return null;
|
|
}
|
|
if (!is_readable($logPath)) {
|
|
$errorMsg = "Fichier non lisible (permissions insuffisantes) : " . htmlspecialchars($logPath);
|
|
return null;
|
|
}
|
|
$output = [];
|
|
$rc = 0;
|
|
exec('tail -n ' . intval($lines) . ' ' . escapeshellarg($logPath) . ' 2>/dev/null', $output, $rc);
|
|
if ($rc !== 0) {
|
|
$errorMsg = "Erreur lors de la lecture du fichier journal.";
|
|
return null;
|
|
}
|
|
return array_reverse($output);
|
|
}
|
|
|
|
function frag_logLineClass(string $line): string
|
|
{
|
|
if (preg_match('/\[(crit|emerg|alert)\]/', $line)) return 'log-crit';
|
|
if (preg_match('/\[error\]/', $line)) return 'log-error';
|
|
if (preg_match('/\[warn\]/', $line)) return 'log-warn';
|
|
if (preg_match('/\[notice\]/', $line)) return 'log-notice';
|
|
if (preg_match('/" [45]\d\d /', $line)) return 'log-error';
|
|
if (preg_match('/" 3\d\d /', $line)) return 'log-notice';
|
|
return '';
|
|
}
|
|
|
|
function frag_nginxLineClass(string $line): string
|
|
{
|
|
$trimmed = ltrim($line);
|
|
if ($trimmed === '' || str_starts_with($trimmed, '#')) return 'nginx-comment';
|
|
if (preg_match('/^\s*(location|server|upstream|events|http|geo|map|types)\b/', $line)) return 'nginx-block';
|
|
return 'nginx-directive';
|
|
}
|
|
|
|
// ── Render ─────────────────────────────────────────────────────────────────
|
|
if ($tab === 'nginx_config') {
|
|
$livePath = '/etc/nginx/sites-available/posterg';
|
|
$localPath = APP_ROOT . '/nginx/posterg.conf';
|
|
|
|
$lines = null;
|
|
$source = null;
|
|
$meta = null;
|
|
$error = null;
|
|
|
|
foreach ([[$livePath, 'live'], [$localPath, 'local']] as [$path, $src]) {
|
|
if (file_exists($path) && is_readable($path)) {
|
|
$raw = file($path, FILE_IGNORE_NEW_LINES);
|
|
if ($raw !== false) {
|
|
$lines = $raw;
|
|
$source = $src;
|
|
$sz = filesize($path);
|
|
$meta = [
|
|
'path' => $path,
|
|
'size' => $sz > 1048576
|
|
? number_format($sz / 1048576, 2) . ' MB'
|
|
: number_format($sz / 1024, 1) . ' KB',
|
|
'mtime' => date('d/m/Y H:i:s', filemtime($path)),
|
|
];
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
|
|
if ($lines === null) {
|
|
$error = file_exists($livePath)
|
|
? "Fichier non lisible (permissions insuffisantes) : " . htmlspecialchars($livePath)
|
|
: "Config live introuvable (" . htmlspecialchars($livePath) . ") et config locale introuvable (" . htmlspecialchars($localPath) . ").";
|
|
}
|
|
|
|
if ($meta): ?>
|
|
<div class="log-meta">
|
|
<span data-label="Fichier"><?= htmlspecialchars($meta['path']) ?></span>
|
|
<span data-label="Taille"><?= $meta['size'] ?></span>
|
|
<span data-label="Modifié"><?= $meta['mtime'] ?></span>
|
|
<?php if ($source === 'live'): ?>
|
|
<span class="nginx-source-badge nginx-source-badge--live">● Config déployée</span>
|
|
<?php else: ?>
|
|
<span class="nginx-source-badge nginx-source-badge--local">⚠ Référence locale (config live inaccessible)</span>
|
|
<?php endif; ?>
|
|
</div>
|
|
<?php endif;
|
|
|
|
if ($error !== null): ?>
|
|
<div class="log-unavailable">
|
|
<strong>Configuration nginx non disponible</strong>
|
|
<div class="log-unavail-path"><?= htmlspecialchars($error) ?></div>
|
|
<?php if (php_sapi_name() === 'cli-server'): ?>
|
|
<div class="log-unavail-dev">
|
|
En développement, <code>/etc/nginx/sites-available/posterg</code> n'existe pas.
|
|
La config de référence se trouve dans <code>nginx/posterg.conf</code>.
|
|
</div>
|
|
<?php endif; ?>
|
|
</div>
|
|
<?php elseif (empty($lines)): ?>
|
|
<div class="log-empty">Le fichier de configuration est vide.</div>
|
|
<?php else: ?>
|
|
<div class="log-output" id="log-output" role="region" aria-label="Configuration nginx">
|
|
<button class="log-copy-btn" id="log-copy-btn" type="button" title="Copier la configuration">Copier</button>
|
|
<?php foreach ($lines as $i => $line): ?>
|
|
<span class="log-line <?= frag_nginxLineClass($line) ?>"
|
|
data-n="<?= $i + 1 ?>"><?= htmlspecialchars($line, ENT_QUOTES | ENT_SUBSTITUTE) ?></span>
|
|
<?php endforeach; ?>
|
|
</div>
|
|
<?php endif;
|
|
|
|
} else {
|
|
// ── Log tab ────────────────────────────────────────────────────────
|
|
$logPath = LOG_FILES_FRAG[$tab]['path'];
|
|
$logError = null;
|
|
$logLines = frag_readLogTail($logPath, $n, $logError);
|
|
$logMeta = null;
|
|
if (file_exists($logPath)) {
|
|
$sz = filesize($logPath);
|
|
$logMeta = [
|
|
'size' => $sz > 1048576
|
|
? number_format($sz / 1048576, 2) . ' MB'
|
|
: number_format($sz / 1024, 1) . ' KB',
|
|
'mtime' => date('d/m/Y H:i:s', filemtime($logPath)),
|
|
];
|
|
}
|
|
?>
|
|
<div class="log-toolbar">
|
|
<label for="lines-select" style="font-size:.84rem;color:var(--text-secondary);">Afficher</label>
|
|
<select id="lines-select" aria-label="Nombre de lignes">
|
|
<?php foreach (ALLOWED_LINES_FRAG as $opt): ?>
|
|
<option value="<?= $opt ?>" <?= $opt === $n ? 'selected' : '' ?>><?= $opt ?> dernières lignes</option>
|
|
<?php endforeach; ?>
|
|
</select>
|
|
<?php if ($logLines !== null && count($logLines) > 0): ?>
|
|
<span class="log-count-badge"><?= count($logLines) ?> ligne(s)</span>
|
|
<?php endif; ?>
|
|
</div>
|
|
|
|
<?php if ($logMeta): ?>
|
|
<div class="log-meta">
|
|
<span data-label="Fichier"><?= htmlspecialchars($logPath) ?></span>
|
|
<span data-label="Taille"><?= $logMeta['size'] ?></span>
|
|
<span data-label="Modifié"><?= $logMeta['mtime'] ?></span>
|
|
</div>
|
|
<?php endif; ?>
|
|
|
|
<?php if ($logError !== null): ?>
|
|
<div class="log-unavailable">
|
|
<strong>Journaux non disponibles</strong>
|
|
<div class="log-unavail-path"><?= $logError ?></div>
|
|
<?php if (php_sapi_name() === 'cli-server'): ?>
|
|
<div class="log-unavail-dev">
|
|
En environnement de développement, les logs nginx ne sont pas disponibles.
|
|
Cette page est pleinement fonctionnelle sur le serveur de production.
|
|
</div>
|
|
<?php endif; ?>
|
|
</div>
|
|
<?php elseif (empty($logLines)): ?>
|
|
<div class="log-empty">Le fichier journal est vide.</div>
|
|
<?php else: ?>
|
|
<div class="log-output" id="log-output" role="log" aria-live="off" aria-label="Contenu du journal">
|
|
<button class="log-copy-btn" id="log-copy-btn" type="button" title="Copier le contenu">Copier</button>
|
|
<?php foreach ($logLines as $i => $line): ?>
|
|
<span class="log-line <?= frag_logLineClass($line) ?>"
|
|
data-n="<?= count($logLines) - $i ?>"><?= htmlspecialchars($line, ENT_QUOTES | ENT_SUBSTITUTE) ?></span>
|
|
<?php endforeach; ?>
|
|
</div>
|
|
<?php endif;
|
|
}
|