Pending issues: Web GUI

Introduction

This page is used as a sort of bug tracking
system for known issues, next fixes, what is done etc. to the new WebGUI to be released with v3.0.2 (9.May'08: to be released in the next week). The new version is a complete re-write, see README.webnew for a description and CHANGES for progess.

If you want to have something moved up to priority, or submit a new entry, please use the Support forum, or better, post comments below.

Issues: priority

• Log out does not do an apache logout (move to Zend framework for authentication & session mgt?)
• Ports down/up: Show interface status: Can we show disabled or error disbled, Not connected? (different SNMP OID)
• GuiList1:
  sort/search fields not being remembered?
• Need an Advanced search page (search through all fields with drop downlists, or accross multiple fields)
• More Cross-site scripting /security analysis

Issues: others

1. Edit device: show last change user/date
2. GuiList1 grid: add up/down arrow/icon for sorting
3. logtail exclude pattern in config table
4. option to scan a switch after adding it
5. Enable an snmp-scan of all switches
6. When deleting, do a cascaded delete
7. EditDevice_more.inc.php move to mysqli, review
9. Only one AD server can be configured for Domain WebGUI logon?
10. Add & update device: no validation checking i.e. for a properly formed MAC address (there is security validation/cleaning though).
11. CSS:
    • Are we using consistent class names everywhere?
    • increase font size in the logtail screens
    • make a nice header, do we still need the links?
12. exceptions.inc: review integrate with /lib/exceptions.inc
13. webfuncs.inc: remove unneeded stuff
14. throw (more) exceptions where possible
15. logtail:
    // TBD: catch error if file cannot be read, or non existant.
    // TBD: test if ad_auth=false
    throw exception
16. Allow Administrators to edit config tables
17. phpinfo:
    non standard header/footer, how we will we handle updates?
18. footer: What else to add?
19. index.php: File does not exist: /opt/nac/web/favicon.ico
20. Sql auth (login/logout.php, GuiUserManager)
21. Drupal auth
22. ADGROUP auth
    we need to define the groups who'll be using each of these interfaces. In MySQL, you modify the table guirights to define the rights associated to each group. To declare a group, you use its full DN. For example:
    update guirights set ad_group='CN=FreeNAC_write,DC=domain,DC=com' where code=99;
    update guirights set ad_group='CN=FreeNAC_read,DC=domain,DC=com' where code=1;
23. Multiple languages
24. Switch to a PHP framework such as Zend, Symfony or php-cake?
25. Demo WebGUI: graphs not working (HO)
26. Dot in Edit end device
27. config $auth mode from the config table, not from web1.config.inc

Done (issues fixed, for references purposes)

- Aside from these notes, see the svn (subversion) changelog in the v3 branch, CHANGES in the web directory and README.webnew.

1. View Guilog and serverlog tables
2. Show vlan and other config tables.
3. Add graph GUI's: make the OO oriented
4. GuiEditDevice
   • On update/delete, insert into guilog
   • Add more under 'Admin information'
5. Left align fields?
6. If there is no 'action', hide that column
7. Test that all functions in the old GUI also working in the new one

Add MAC Vendor column to unknowns.php

I can only delete a record (using the "delete" option to the left) if I
first "edit" a record. It can be any record in any query. If the first
thing I try to do is delete a record I get "Invalid Argument".

"/etc/logrotate.d/syslog-ng" not setting permissions correctly
ls -al /var/log/messages
-rw-r----- 1 root adm 24550093 2008-02-26 06:53 /var/log/messages
(ADapt the syslog-ng config file, or set a cron entry after log rotation: 'chgrp freenac /var/log/messages /var/log/debug').

See also the forum thread http://freenac.net/phpBB2/viewtopic.php?p=1348

Fix used id=2 Edit device: restart port option

Port comment containing "<>" are stipped and not visible in the WebGUI

Security: escaping of output.

Add helpdesk role.