Merge branch 'development' of github.com:domoticz/domoticz into development

gizmocuz · gizmocuz · commit c0edefe51799 · 2019-06-15T17:53:20.000+02:00
diff --git a/History.txt b/History.txt
@@ -12,6 +12,7 @@ Version 4.xxxxx (xxx 2019)
 - Fixed: GUI, OpenZWave Abort Include/Exclude button
 - Fixed: YouLess, possible buffer overflow (#3261)
 - Fixed: notification, Telegram error when odd number of underscores in text
+- Fixed: API, allow variabletype to be entered as text or integer in adduservariable and updateuservariable (#3320)
 - Updated: OpenZWave version 1.6
 - Updated: dzVents (version 2.4.23, See dzVents/documentation/history.md)
 
diff --git a/main/WebServer.cpp b/main/WebServer.cpp
@@ -1879,27 +1879,54 @@ namespace http {
 			if (session.rights != 2)
 			{
 				session.reply_status = reply::forbidden;
+				_log.Log(LOG_ERROR, "User: %s tried to add a uservariable!", session.username.c_str());
 				return; //Only admin user allowed
 			}
 			std::string variablename = request::findValue(&req, "vname");
 			std::string variablevalue = request::findValue(&req, "vvalue");
 			std::string variabletype = request::findValue(&req, "vtype");
+			
+			root["title"] = "AddUserVariable";
+			root["status"] = "ERR";
+			
+			if (!std::isdigit(variabletype[0])) 
+			{
+				stdlower(variabletype);
+				if (variabletype == "integer")
+					variabletype = "0";
+				else if (variabletype == "float")
+					variabletype = "1";
+				else if (variabletype == "string")
+					variabletype = "2";
+				else if (variabletype == "date")
+					variabletype = "3";
+				else if (variabletype == "time")
+					variabletype = "4";
+				else
+				{
+					root["message"] = "Invalid variabletype " + variabletype;
+					return;
+				}
+			}
+			
 			if (
 				(variablename.empty()) ||
 				(variabletype.empty()) ||
+				((variabletype != "0") && (variabletype != "1") && (variabletype != "2") && (variabletype != "3") && (variabletype != "4")) || 
 				((variablevalue.empty()) && (variabletype != "2"))
 				)
+			{
+				root["message"] = "Invalid variabletype " + variabletype;
 				return;
-
-			root["title"] = "AddUserVariable";
+			}
 
 			std::string errorMessage;
 			if (!m_sql.AddUserVariable(variablename, (const _eUsrVariableType)atoi(variabletype.c_str()), variablevalue, errorMessage))
 			{
-				root["status"] = "ERR";
 				root["message"] = errorMessage;
 			}
-			else {
+			else 
+			{
 				root["status"] = "OK";
 			}
 		}
@@ -1908,6 +1935,7 @@ namespace http {
 		{
 			if (session.rights != 2)
 			{
+				_log.Log(LOG_ERROR, "User: %s tried to delete a uservariable!", session.username.c_str());
 				session.reply_status = reply::forbidden;
 				return; //Only admin user allowed
 			}
@@ -1924,47 +1952,78 @@ namespace http {
 		{
 			if (session.rights != 2)
 			{
+				_log.Log(LOG_ERROR, "User: %s tried to update a uservariable!", session.username.c_str());
 				session.reply_status = reply::forbidden;
 				return; //Only admin user allowed
 			}
-
+			
 			std::string idx = request::findValue(&req, "idx");
 			std::string variablename = request::findValue(&req, "vname");
 			std::string variablevalue = request::findValue(&req, "vvalue");
 			std::string variabletype = request::findValue(&req, "vtype");
-
+			
+			root["title"] = "UpdateUserVariable";
+			root["status"] = "ERR";
+			
+			if (!std::isdigit(variabletype[0])) 
+			{
+				stdlower(variabletype);
+				if (variabletype == "integer")
+					variabletype = "0";
+				else if (variabletype == "float")
+					variabletype = "1";
+				else if (variabletype == "string")
+					variabletype = "2";
+				else if (variabletype == "date")
+					variabletype = "3";
+				else if (variabletype == "time")
+					variabletype = "4";
+				else
+				{
+					root["message"] = "Invalid variabletype " + variabletype;
+					return;
+				}
+			}
+			
 			if (
 				(variablename.empty()) ||
 				(variabletype.empty()) ||
+				((variabletype != "0") && (variabletype != "1") && (variabletype != "2") && (variabletype != "3") && (variabletype != "4")) || 
 				((variablevalue.empty()) && (variabletype != "2"))
 				)
+			{
+				root["message"] = "Invalid variabletype " + variabletype;
 				return;
+			}
 
 			std::vector<std::vector<std::string> > result;
 			if (idx.empty())
 			{
 				result = m_sql.safe_query("SELECT ID FROM UserVariables WHERE Name='%q'", variablename.c_str());
 				if (result.empty())
+				{
+					root["message"] = "Uservariable " + variablename + " does not exist";
 					return;
+				}
 				idx = result[0][0];
 			}
 
 			result = m_sql.safe_query("SELECT Name, ValueType FROM UserVariables WHERE ID='%q'", idx.c_str());
 			if (result.empty())
+			{
+				root["message"] = "Uservariable " + variablename + " does not exist";
 				return;
+			}
 
 			bool bTypeNameChanged = false;
 			if (variablename != result[0][0])
 				bTypeNameChanged = true; //new name
 			else if (variabletype != result[0][1])
 				bTypeNameChanged = true; //new type
 
-			root["title"] = "UpdateUserVariable";
-
 			std::string errorMessage;
 			if (!m_sql.UpdateUserVariable(idx, variablename, (const _eUsrVariableType)atoi(variabletype.c_str()), variablevalue, !bTypeNameChanged, errorMessage))
 			{
-				root["status"] = "ERR";
 				root["message"] = errorMessage;
 			}
 			else {
diff --git a/webserver/cWebem.cpp b/webserver/cWebem.cpp
@@ -996,6 +996,11 @@ namespace http {
 			return m_settings.listening_port;
 		}
 
+		const std::string cWebem::GetWebRoot()
+		{
+			return m_webRoot;
+		}
+
 		WebEmSession * cWebem::GetSession(const std::string & ssid)
 		{
 			std::unique_lock<std::mutex> lock(m_sessionsMutex);
@@ -2024,11 +2029,12 @@ namespace http {
 				// do normal handling
 				try
 				{
-					if (requestCopy.uri.find("/images/") == 0)
+					std::string uri = myWebem->ExtractRequestPath(requestCopy.uri);
+					if (uri.find("/images/") == 0)
 					{
-						std::string theme_images_path = myWebem->m_actTheme + requestCopy.uri;
+						std::string theme_images_path = myWebem->m_actTheme + uri;
 						if (file_exist((doc_root_ + theme_images_path).c_str()))
-							requestCopy.uri = theme_images_path;
+							requestCopy.uri = myWebem->GetWebRoot() + theme_images_path;
 					}
 
 					request_handler::handle_request(requestCopy, rep, mInfo);
diff --git a/webserver/cWebem.h b/webserver/cWebem.h
@@ -215,6 +215,7 @@ namespace http {
 
 			std::string m_zippassword;
 			const std::string GetPort();
+			const std::string GetWebRoot();
 			WebEmSession * GetSession(const std::string & ssid);
 			void AddSession(const WebEmSession & session);
 			void RemoveSession(const WebEmSession & session);

Original file line number	Diff line number	Diff line change
`@@ -996,6 +996,11 @@ namespace http {`
`996`	`996`	`return m_settings.listening_port;`
`997`	`997`	`}`
`998`	`998`
	`999`	`+ const std::string cWebem::GetWebRoot()`
	`1000`	`+ {`
	`1001`	`+ return m_webRoot;`
	`1002`	`+ }`
	`1003`	`+`
`999`	`1004`	`WebEmSession * cWebem::GetSession(const std::string & ssid)`
`1000`	`1005`	`{`
`1001`	`1006`	`std::unique_lock<std::mutex> lock(m_sessionsMutex);`
`@@ -2024,11 +2029,12 @@ namespace http {`
`2024`	`2029`	`// do normal handling`
`2025`	`2030`	`try`
`2026`	`2031`	`{`
`2027`		`- if (requestCopy.uri.find("/images/") == 0)`
	`2032`	`+ std::string uri = myWebem->ExtractRequestPath(requestCopy.uri);`
	`2033`	`+ if (uri.find("/images/") == 0)`
`2028`	`2034`	`{`
`2029`		`- std::string theme_images_path = myWebem->m_actTheme + requestCopy.uri;`
	`2035`	`+ std::string theme_images_path = myWebem->m_actTheme + uri;`
`2030`	`2036`	`if (file_exist((doc_root_ + theme_images_path).c_str()))`
`2031`		`- requestCopy.uri = theme_images_path;`
	`2037`	`+ requestCopy.uri = myWebem->GetWebRoot() + theme_images_path;`
`2032`	`2038`	`}`
`2033`	`2039`
`2034`	`2040`	`request_handler::handle_request(requestCopy, rep, mInfo);`