public RESTStatus ListPolicies(SQLLib sql, object dummy, NetworkConnectionInfo ni, NameValueCollection QueryString)
{
if (ni.HasAcl(ACLFlags.ChangeServerSettings) == false)
{
ni.Error = "Access denied";
ni.ErrorID = ErrorFlags.AccessDenied;
return(RESTStatus.Denied);
}
if (QueryString["MachineID"] != null && QueryString["Grouping"] != null)
{
ni.Error = "Invalid data";
ni.ErrorID = ErrorFlags.InvalidData;
return(RESTStatus.Fail);
}
PolicyList = new PolicyObjectList();
PolicyList.Items = new List <PolicyObject>();
bool AllPolicies = true;
bool WithData = false;
int tmp;
int.TryParse(QueryString["AllPolicies"] == null ? "1" : QueryString["AllPolicies"], out tmp);
AllPolicies = tmp == 1 ? true : false;
int.TryParse(QueryString["WithData"] == null ? "0" : QueryString["WithData"], out tmp);
WithData = tmp == 1 ? true : false;
lock (ni.sqllock)
{
SqlDataReader dr = null;
if (AllPolicies == true)
{
dr = sql.ExecSQLReader("select * from Policies order by Name");
}
else
{
dr = sql.ExecSQLReader("select * from Policies where " + (QueryString["Grouping"] == null ? " Grouping is null AND " : " Grouping=@grouping AND ") +
(QueryString["MachineID"] == null ? " MachineID is null " : " MachineID=@machineid ") + " order by Name",
new SQLParam("@machineid", QueryString["MachineID"]),
new SQLParam("@grouping", QueryString["Grouping"]));
}
while (dr.Read())
{
PolicyList.Items.Add(LoadPolicyDB(dr, WithData, false));
}
dr.Close();
}
return(RESTStatus.Success);
}
public static List <PolicyObject> GetPolicyForComputerInternal(SQLLib sql, string MachineID)
{
PolicyObjectList PolicyListSigned = new PolicyObjectList();
PolicyListSigned.Items = new List <PolicyObject>();
SqlDataReader dr;
dr = sql.ExecSQLReader("SELECT * FROM Policies WHERE MachineID=@m AND Enabled=1",
new SQLParam("@m", MachineID));
while (dr.Read())
{
PolicyObject obj = LoadPolicyDB(dr, false, false);
PolicyListSigned.Items.Add(obj);
}
dr.Close();
Int64? GroupID = null;
object sqlo = sql.ExecSQLScalar("select Grouping from ComputerAccounts where MachineID=@m", new SQLParam("@m", MachineID));
if (sqlo is DBNull || sqlo == null)
{
GroupID = null;
}
else
{
GroupID = Convert.ToInt64(sqlo);
}
do
{
dr = sql.ExecSQLReader("SELECT * FROM Policies WHERE " + (GroupID == null ? "Grouping is NULL" : "Grouping=@g") + " AND Enabled=1 AND MachineID is NULL",
new SQLParam("@g", GroupID));
while (dr.Read())
{
PolicyObject obj = LoadPolicyDB(dr, false, false);
PolicyListSigned.Items.Add(obj);
}
dr.Close();
if (GroupID != null)
{
sqlo = sql.ExecSQLScalar("select ParentID FROM Grouping WHERE ID=@g", new SQLParam("@g", GroupID));
if (sqlo is DBNull || sqlo == null)
{
GroupID = null;
}
else
{
GroupID = Convert.ToInt64(sqlo);
}
}
else
{
break;
}
} while (true);
PolicyListSigned.Items.Reverse();
Int64 Count = 1;
foreach (PolicyObject p in PolicyListSigned.Items)
{
p.Order = Count;
Count++;
}
#region Resolve Linked Policies for client
for (int i = 0; i < PolicyListSigned.Items.Count; i++)
{
PolicyObject pol = PolicyListSigned.Items[i];
if (pol.Type == PolicyIDs.LinkedPolicy)
{
List <Int64> RunningIDs = new List <Int64>();
PolicyObject po = pol;
while (true)
{
if (RunningIDs.Contains(po.ID) == true)
{
FoxEventLog.WriteEventLog("Policy ID " + pol.ID.ToString() + " (" + pol.Name + ") creates a loop!", System.Diagnostics.EventLogEntryType.Warning);
break;
}
RunningIDs.Add(po.ID);
Int64 PolID;
po.Data = Convert.ToString(sql.ExecSQLScalar("SELECT DataBlob FROM Policies WHERE ID=@id",
new SQLParam("@id", po.ID)));
if (Int64.TryParse(po.Data, out PolID) == false)
{
FoxEventLog.WriteEventLog("Cannot read data of policy ID " + po.ID.ToString() + " (" + po.Name + ") for linking.", System.Diagnostics.EventLogEntryType.Warning);
break;
}
if (Policies.PolicyExsits(sql, PolID) == false)
{
FoxEventLog.WriteEventLog("Policy ID " + PolID.ToString() + " referencing from " + po.ID.ToString() + " (" + po.Name + ") does not exist.", System.Diagnostics.EventLogEntryType.Warning);
break;
}
if (Convert.ToInt32(sql.ExecSQLScalar("SELECT Enabled FROM Policies WHERE ID=@id", new SQLParam("@id", PolID))) != 1)
{
break;
}
dr = sql.ExecSQLReader("SELECT * FROM Policies WHERE ID=@id",
new SQLParam("@id", PolID));
dr.Read();
po = LoadPolicyDB(dr, false, false);
dr.Close();
if (po == null)
{
FoxEventLog.WriteEventLog("Cannot read policy ID for linking " + PolID.ToString(), System.Diagnostics.EventLogEntryType.Warning);
break;
}
if (po.Type != PolicyIDs.LinkedPolicy)
{
pol = po;
PolicyListSigned.Items[i] = po;
break;
}
}
}
}
#endregion
return(PolicyListSigned.Items);
}
