31
How To's / Re: User activity log and reports
« on: January 21, 2009, 05:52:50 pm »
O.K. I'm sorry my english sux
About the logs - i see that almost detailed logs are kept in a table, so it's just a matter of accessing them, i will try to do it and send you the code for corrections..
About direct access to php files.. you know..when you write in the url direct path to some file lets say http:\\somesite.com\public\addmessage.php and the file is executed..
I have added in my installation define(_VALID_ACCESS,true) n the init and defined(_VALID_ACCESS) || die('No direct access allowed'); in other files - i hope you get the idea...
Do you have any ideas about the detailed log, also it would be a good idea to keep what and when users have send using the integrated mail and probably a filter for some documents, I have also added in my installation a simple IP white list that can access the site, very simply made.. for example :
if ($_SERVER['HTTP_X_FORWARDED_FOR']) {
$ip=($_SERVER['HTTP_X_FORWARDED_FOR']); } else {
$ip=($_SERVER['REMOTE_ADDR']);}
$startip=ip2long(100.100.100.1);
$endip=ip2long(100.100.100.255);
$whitelist = array (ip2long(127.0.0.1),ip2long(192.168.0.1)) + range($startip, $endip);
if ( in_array(ip2long($ip), $whitelist)) { echo 'ok'; } elses { die("ip not allowed"); }
...
something like that can be added inside OpenGoo.. but that is not as important as the detailed log of user actions...
I will try tomorrow to do it, the idea is - check if the user is admin or has admin priv. , access the application_logs table and read the data, still i am not so sure what every record mean but i'll find out... there are :
taken_by_id, rel_object_id, and so on... what are is_private and is_silent, where do we set that is_silent thing ?
Also about the tags, if someone deletes the object the tag is left behind and can not be removed, there should be a whole tags management tab i have done a simple link that just deletes all tags but i'll fix that soon, i'll add an delete tag option when you click on some tag, but if you can do it it would be great as i am not a good php developer, i am/was more of a system programmer, you know asm, c, cpp, delphi - whatever , but php is not so different and i guess it's just a practice thing ...
I will post all i have done soon...
Thanks, and once again, your product is great.
btw where can i upload a translation for OpenGoo 1.2 that you do not have, also i have it for 0.9x ... so you can review it and if you deicide you can post it with the installation, the language is bg_bg
About the logs - i see that almost detailed logs are kept in a table, so it's just a matter of accessing them, i will try to do it and send you the code for corrections..
About direct access to php files.. you know..when you write in the url direct path to some file lets say http:\\somesite.com\public\addmessage.php and the file is executed..
I have added in my installation define(_VALID_ACCESS,true) n the init and defined(_VALID_ACCESS) || die('No direct access allowed'); in other files - i hope you get the idea...
Do you have any ideas about the detailed log, also it would be a good idea to keep what and when users have send using the integrated mail and probably a filter for some documents, I have also added in my installation a simple IP white list that can access the site, very simply made.. for example :
if ($_SERVER['HTTP_X_FORWARDED_FOR']) {
$ip=($_SERVER['HTTP_X_FORWARDED_FOR']); } else {
$ip=($_SERVER['REMOTE_ADDR']);}
$startip=ip2long(100.100.100.1);
$endip=ip2long(100.100.100.255);
$whitelist = array (ip2long(127.0.0.1),ip2long(192.168.0.1)) + range($startip, $endip);
if ( in_array(ip2long($ip), $whitelist)) { echo 'ok'; } elses { die("ip not allowed"); }
...
something like that can be added inside OpenGoo.. but that is not as important as the detailed log of user actions...
I will try tomorrow to do it, the idea is - check if the user is admin or has admin priv. , access the application_logs table and read the data, still i am not so sure what every record mean but i'll find out... there are :
taken_by_id, rel_object_id, and so on... what are is_private and is_silent, where do we set that is_silent thing ?
Also about the tags, if someone deletes the object the tag is left behind and can not be removed, there should be a whole tags management tab i have done a simple link that just deletes all tags but i'll fix that soon, i'll add an delete tag option when you click on some tag, but if you can do it it would be great as i am not a good php developer, i am/was more of a system programmer, you know asm, c, cpp, delphi - whatever , but php is not so different and i guess it's just a practice thing ...
I will post all i have done soon...
Thanks, and once again, your product is great.
btw where can i upload a translation for OpenGoo 1.2 that you do not have, also i have it for 0.9x ... so you can review it and if you deicide you can post it with the installation, the language is bg_bg