- Implemented new backup and restore functions for websites and databases (see also FS#1389)

- Added "actions" framework in server to replace the functions provided by the core modules
- Moved system update function from remoteactins core module to software update plugin.

Author: tbrehm

install/sql/incremental/upd_0028.sql

@@ -0,0 +1,12 @@
+ALTER TABLE  `web_database` ADD  `parent_domain_id` int(11) unsigned NOT NULL DEFAULT  '0' AFTER  `server_id`;
+ALTER TABLE  `web_database` ADD  `backup_interval` VARCHAR( 255 ) NOT NULL DEFAULT 'none', ADD `backup_copies` INT NOT NULL DEFAULT '1' AFTER  `remote_ips`;
+CREATE TABLE `web_backup` (
+  `backup_id` int(10) unsigned NOT NULL AUTO_INCREMENT,
+  `server_id` int(10) unsigned NOT NULL,
+  `parent_domain_id` int(10) unsigned NOT NULL,
+  `backup_type` enum('web','mysql') NOT NULL DEFAULT 'web',
+  `backup_mode` varchar(64) NOT NULL DEFAULT  '',
+  `tstamp` int(10) unsigned NOT NULL,
+  `filename` varchar(255) NOT NULL,
+  PRIMARY KEY (`backup_id`)
+) ENGINE=MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;

install/sql/ispconfig3.sql

@@ -1437,6 +1437,23 @@ CREATE TABLE `webdav_user` (
 
 -- --------------------------------------------------------
 
+--
+-- Table structure for table `web_backup`
+--
+
+CREATE TABLE `web_backup` (
+  `backup_id` int(10) unsigned NOT NULL AUTO_INCREMENT,
+  `server_id` int(10) unsigned NOT NULL,
+  `parent_domain_id` int(10) unsigned NOT NULL,
+  `backup_type` enum('web','mysql') NOT NULL DEFAULT 'web',
+  `backup_mode` varchar(64) NOT NULL DEFAULT  '',
+  `tstamp` int(10) unsigned NOT NULL,
+  `filename` varchar(255) NOT NULL,
+  PRIMARY KEY (`backup_id`)
+) ENGINE=MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;
+
+-- --------------------------------------------------------
+
 --
 -- Table structure for table `web_database`
 --
@@ -1449,13 +1466,16 @@ CREATE TABLE `web_database` (
   `sys_perm_group` varchar(5) DEFAULT NULL,
   `sys_perm_other` varchar(5) DEFAULT NULL,
   `server_id` int(11) unsigned NOT NULL DEFAULT '0',
+  `parent_domain_id` int(11) unsigned NOT NULL DEFAULT  '0',
   `type` varchar(16) NOT NULL DEFAULT 'y',
   `database_name` varchar(64) DEFAULT NULL,
   `database_user` varchar(64) DEFAULT NULL,
   `database_password` varchar(64) DEFAULT NULL,
   `database_charset` varchar(64) DEFAULT NULL,
   `remote_access` enum('n','y') NOT NULL DEFAULT 'y',
   `remote_ips` text NOT NULL,
+  `backup_interval` VARCHAR( 255 ) NOT NULL DEFAULT 'none',
+  `backup_copies` INT NOT NULL DEFAULT '1',
   `active` enum('n','y') NOT NULL DEFAULT 'y',
   PRIMARY KEY (`database_id`)
 ) ENGINE=MyISAM DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;

install/tpl/server.ini.master

@@ -13,7 +13,7 @@ hostname=server1.domain.tld
 nameservers=192.168.0.1,192.168.0.2
 loglevel=2
 backup_dir=/var/backup
-backup_dir_ftpread=n
+backup_mode=rootgz
 
 [mail]
 module=postfix_mysql

interface/lib/classes/plugin_backuplist.inc.php

@@ -0,0 +1,138 @@
+<?php
+
+/*
+Copyright (c) 2012, Till Brehm, ISPConfig UG
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright notice,
+      this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright notice,
+      this list of conditions and the following disclaimer in the documentation
+      and/or other materials provided with the distribution.
+    * Neither the name of ISPConfig nor the names of its contributors
+      may be used to endorse or promote products derived from this software without
+      specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
+INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
+BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
+OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
+EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+*/
+
+class plugin_backuplist extends plugin_base {
+
+        var $module;
+        var $form;
+        var $tab;
+        var $record_id;
+        var $formdef;
+        var $options;
+
+        function onShow() {
+
+                global $app;
+				
+				$listTpl = new tpl;
+                $listTpl->newTemplate('templates/web_backup_list.htm');
+				
+				//* Loading language file
+                $lng_file = "lib/lang/".$_SESSION["s"]["language"]."_web_backup_list.lng";
+                include($lng_file);
+                $listTpl->setVar($wb);
+				
+				$message = '';
+				$error = '';
+				
+				if(isset($_GET['backup_action'])) {
+					$backup_id = intval($_GET['backup_id']);
+					
+					if($_GET['backup_action'] == 'download' && $backup_id > 0) {
+						$sql = "SELECT count(action_id) as number FROM sys_remoteaction WHERE action_state = 'pending' AND action_type = 'backup_download' AND action_param = '$backup_id'";
+						$tmp = $app->db->queryOneRecord($sql);
+						if($tmp['number'] == 0) {
+							$message .= $wb['download_info_txt'];
+							$sql = 	"INSERT INTO sys_remoteaction (server_id, tstamp, action_type, action_param, action_state, response) " .
+								"VALUES (".
+								(int)$this->form->dataRecord['server_id'] . ", " .
+								time() . ", " .
+								"'backup_download', " .
+								"'".$backup_id."', " .
+								"'pending', " .
+								"''" .
+								")";
+							$app->db->query($sql);
+						} else {
+							$error .= $wb['download_pending_txt'];
+						}
+					}
+					if($_GET['backup_action'] == 'restore' && $backup_id > 0) {
+						$sql = "SELECT count(action_id) as number FROM sys_remoteaction WHERE action_state = 'pending' AND action_type = 'backup_restore' AND action_param = '$backup_id'";
+						$tmp = $app->db->queryOneRecord($sql);
+						if($tmp['number'] == 0) {
+							$message .= $wb['restore_info_txt'];
+							$sql = 	"INSERT INTO sys_remoteaction (server_id, tstamp, action_type, action_param, action_state, response) " .
+								"VALUES (".
+								(int)$this->form->dataRecord['server_id'] . ", " .
+								time() . ", " .
+								"'backup_restore', " .
+								"'".$backup_id."', " .
+								"'pending', " .
+								"''" .
+								")";
+						$app->db->query($sql);
+						} else {
+							$error .= $wb['restore_pending_txt'];
+						}
+					}
+					
+				}
+				
+				//* Get the data
+				$sql = "SELECT * FROM web_backup WHERE parent_domain_id = ".$this->form->id." ORDER BY tstamp DESC, backup_type ASC";
+                $records = $app->db->queryAllRecords($sql);
+
+                $bgcolor = "#FFFFFF";
+                if(is_array($records)) {
+                        foreach($records as $rec) {
+
+                                // Change of color
+                                $bgcolor = ($bgcolor == "#FFFFFF")?"#EEEEEE":"#FFFFFF";
+                                $rec["bgcolor"] = $bgcolor;
+								
+								$rec['date'] = date($app->lng('conf_format_datetime'),$rec['tstamp']);
+								$rec['backup_type'] = $wb[('backup_type_'.$rec['backup_type'])];
+
+                                $records_new[] = $rec;
+                        }
+                }
+
+                $listTpl->setLoop('records',@$records_new);
+				
+				$listTpl->setVar('parent_id',$this->form->id);
+				$listTpl->setVar('msg',$message);
+				$listTpl->setVar('error',$error);
+				
+				// Setting Returnto information in the session
+                $list_name = 'backup_list';
+                // $_SESSION["s"]["list"][$list_name]["parent_id"] = $app->tform_actions->id;
+				$_SESSION["s"]["list"][$list_name]["parent_id"] = $this->form->id;
+				$_SESSION["s"]["list"][$list_name]["parent_name"] = $app->tform->formDef["name"];
+                $_SESSION["s"]["list"][$list_name]["parent_tab"] = $_SESSION["s"]["form"]["tab"];
+                $_SESSION["s"]["list"][$list_name]["parent_script"] = $app->tform->formDef["action"];
+                $_SESSION["s"]["form"]["return_to"] = $list_name;
+				
+				return $listTpl->grab();
+        }
+		
+}
+
+?>

interface/web/admin/form/server_config.tform.php

@@ -138,11 +138,13 @@
 			'width' => '40',
 			'maxlength' => '255'
 		),
-		'backup_dir_ftpread' => array(
+		'backup_mode' => array(
 			'datatype' => 'VARCHAR',
-			'formtype' => 'CHECKBOX',
-			'default' => 'y',
-			'value' => array(0 => 'n', 1 => 'y')
+			'formtype' => 'SELECT',
+			'default' => 'userzip',
+			'value' => array('userzip' => 'backup_mode_userzip', 'rootgz' => 'backup_mode_rootgz'),
+			'width' => '40',
+			'maxlength' => '255'
 		),
 	##################################
 	# ENDE Datatable fields

interface/web/admin/lib/lang/en_server_config.lng

@@ -87,7 +87,9 @@ $wb["network_config_warning_txt"] = 'The network configuration option is only av
 $wb["CA_path_txt"] = 'CA Path';
 $wb["CA_pass_txt"] = 'CA passphrase';
 $wb["fastcgi_config_syntax_txt"] = 'FastCGI config syntax';
-$wb["backup_dir_ftpread_txt"] = 'Backup dir. readable for website FTP users.';
+$wb["backup_mode_txt"] = 'Backup mode';
+$wb["backup_mode_userzip"] = 'Backup web files owned by web user as zip';
+$wb["backup_mode_rootgz"] = 'Backup all files in web directory as root user';
 $wb["server_type_txt"] = 'Server Type';
 $wb["nginx_vhost_conf_dir_txt"] = 'Nginx Vhost config dir';
 $wb["nginx_vhost_conf_enabled_dir_txt"] = 'Nginx Vhost config enabled dir';
@@ -153,7 +155,6 @@ $wb["set_folder_permissions_on_update_txt"] = 'Set folder permissions on update'
 $wb["add_web_users_to_sshusers_group_txt"] = 'Add web users to -sshusers- group';
 $wb["connect_userid_to_webid_txt"] = 'Connect Linux userid to webid';
 $wb["connect_userid_to_webid_start_txt"] = 'Start ID for userid/webid connect';
-
 $wb["realtime_blackhole_list_txt"] = 'Real-time Blackhole List';
 $wb["realtime_blackhole_list_note_txt"] = '(Separate RBL\'s with commas)';
 ?>

interface/web/admin/templates/server_config_server_edit.htm

@@ -43,11 +43,11 @@ <h2><tmpl_var name="list_head_txt"></h2>
         <input name="backup_dir" id="backup_dir" value="{tmpl_var name='backup_dir'}" size="40" maxlength="255" type="text" class="textInput" />
 	  </div>
 	  <div class="ctrlHolder">
-		<p class="label">{tmpl_var name='backup_dir_ftpread_txt'}</p>
-		  <div class="multiField">
-			{tmpl_var name='backup_dir_ftpread'}
-		  </div>
-	  </div>
+      	<label for="backup_mode">{tmpl_var name='backup_mode_txt'}</label>
+        <select name="backup_mode" id="backup_mode" class="selectInput">
+					{tmpl_var name='backup_mode'}
+				</select>
+      </div>
     </fieldset>
 
     <input type="hidden" name="id" value="{tmpl_var name='id'}">

interface/web/js/scrigo.js.php

@@ -269,6 +269,12 @@ function del_record(link,confirmation) {
   }
 }
 
+function confirm_action(link,confirmation) {
+  if(window.confirm(confirmation)) {
+          loadContent(link);
+  }
+}
+
 function loadContentInto(elementid,pagename) {
   var pageContentObject2 = jQuery.ajax({	type: "GET", 
 											url: pagename,

interface/web/mail/mail_user_edit.php

@@ -231,14 +231,14 @@ function onAfterInsert() {
 		// Spamfilter policy
 		$policy_id = intval($this->dataRecord["policy"]);
 		if($policy_id > 0) {
-			$tmp_user = $app->db->queryOneRecord("SELECT id FROM spamfilter_users WHERE email = '".mysql_real_escape_string($this->dataRecord["email"])."'");
+			$tmp_user = $app->db->queryOneRecord("SELECT id FROM spamfilter_users WHERE email = '".$app->db->quote($this->dataRecord["email"])."'");
 			if($tmp_user["id"] > 0) {
 				// There is already a record that we will update
 				$app->db->datalogUpdate('spamfilter_users', "policy_id = $policy_id", 'id', $tmp_user["id"]);
 			} else {
 				// We create a new record
 				$insert_data = "(`sys_userid`, `sys_groupid`, `sys_perm_user`, `sys_perm_group`, `sys_perm_other`, `server_id`, `priority`, `policy_id`, `email`, `fullname`, `local`) 
-				        VALUES (".$_SESSION["s"]["user"]["userid"].", ".$domain["sys_groupid"].", 'riud', 'riud', '', ".$domain["server_id"].", 10, ".$policy_id.", '".mysql_real_escape_string($this->dataRecord["email"])."', '".mysql_real_escape_string($this->dataRecord["email"])."', 'Y')";
+				        VALUES (".$_SESSION["s"]["user"]["userid"].", ".$domain["sys_groupid"].", 'riud', 'riud', '', ".$domain["server_id"].", 10, ".$policy_id.", '".$app->db->quote($this->dataRecord["email"])."', '".$app->db->quote($this->dataRecord["email"])."', 'Y')";
 				$app->db->datalogInsert('spamfilter_users', $insert_data, 'id');
 			}
 		}  // endif spamfilter policy
@@ -266,15 +266,15 @@ function onAfterUpdate() {
 
 			// Spamfilter policy
 			$policy_id = intval($this->dataRecord["policy"]);
-			$tmp_user = $app->db->queryOneRecord("SELECT id FROM spamfilter_users WHERE email = '".mysql_real_escape_string($this->dataRecord["email"])."'");
+			$tmp_user = $app->db->queryOneRecord("SELECT id FROM spamfilter_users WHERE email = '".$app->db->quote($this->dataRecord["email"])."'");
 			if($policy_id > 0) {
 				if($tmp_user["id"] > 0) {
 					// There is already a record that we will update
 					$app->db->datalogUpdate('spamfilter_users', "policy_id = $policy_id", 'id', $tmp_user["id"]);
 				} else {
 					// We create a new record
 					$insert_data = "(`sys_userid`, `sys_groupid`, `sys_perm_user`, `sys_perm_group`, `sys_perm_other`, `server_id`, `priority`, `policy_id`, `email`, `fullname`, `local`) 
-				        	VALUES (".$_SESSION["s"]["user"]["userid"].", ".$domain["sys_groupid"].", 'riud', 'riud', '', ".$domain["server_id"].", 10, ".$policy_id.", '".mysql_real_escape_string($this->dataRecord["email"])."', '".mysql_real_escape_string($this->dataRecord["email"])."', 'Y')";
+				        	VALUES (".$_SESSION["s"]["user"]["userid"].", ".$domain["sys_groupid"].", 'riud', 'riud', '', ".$domain["server_id"].", 10, ".$policy_id.", '".$app->db->quote($this->dataRecord["email"])."', '".$app->db->quote($this->dataRecord["email"])."', 'Y')";
 					$app->db->datalogInsert('spamfilter_users', $insert_data, 'id');
 				}
 			}else {