/usr/share/zabbix/api_jsonrpc.php is in zabbix-frontend-php 1:3.0.12+dfsg-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 | <?php
/*
** Zabbix
** Copyright (C) 2001-2017 Zabbix SIA
**
** This program is free software; you can redistribute it and/or modify
** it under the terms of the GNU General Public License as published by
** the Free Software Foundation; either version 2 of the License, or
** (at your option) any later version.
**
** This program is distributed in the hope that it will be useful,
** but WITHOUT ANY WARRANTY; without even the implied warranty of
** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
** GNU General Public License for more details.
**
** You should have received a copy of the GNU General Public License
** along with this program; if not, write to the Free Software
** Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
**/
header('Access-Control-Allow-Origin: *');
header('Access-Control-Allow-Headers: Content-Type');
header('Access-Control-Allow-Methods: POST');
header('Access-Control-Max-Age: 1000');
if ($_SERVER['REQUEST_METHOD'] === 'OPTIONS') {
return;
}
require_once dirname(__FILE__).'/include/func.inc.php';
require_once dirname(__FILE__).'/include/classes/core/CHttpRequest.php';
$allowed_content = [
'application/json-rpc' => 'json-rpc',
'application/json' => 'json-rpc',
'application/jsonrequest' => 'json-rpc',
];
$http_request = new CHttpRequest();
$content_type = $http_request->header('Content-Type');
$content_type = explode(';', $content_type);
$content_type = $content_type[0];
if (!isset($allowed_content[$content_type])) {
header('HTTP/1.0 412 Precondition Failed');
return;
}
require_once dirname(__FILE__).'/include/classes/core/Z.php';
header('Content-Type: application/json');
$data = $http_request->body();
try {
Z::getInstance()->run(ZBase::EXEC_MODE_API);
$apiClient = API::getWrapper()->getClient();
// unset wrappers so that calls between methods would be made directly to the services
API::setWrapper();
$jsonRpc = new CJsonRpc($apiClient, $data);
echo $jsonRpc->execute();
}
catch (Exception $e) {
// decode input json request to get request's id
$jsonData = CJs::decodeJson($data);
$response = [
'jsonrpc' => '2.0',
'error' => [
'code' => 1,
'message' => $e->getMessage(),
'data' => ''
],
'id' => (isset($jsonData['id']) ? $jsonData['id'] : null)
];
echo CJs::encodeJson($response);
}
|