From a5afa0afec5d78465a92408b8ae5996de6df75a8 Mon Sep 17 00:00:00 2001 From: FusionPBX Date: Mon, 26 Apr 2021 21:40:59 -0600 Subject: [PATCH] Validate the http_method, device_provisioned_ip and move user_agent string to the date. --- app/devices/devices.php | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/app/devices/devices.php b/app/devices/devices.php index f870b79b22..7c2ed342db 100644 --- a/app/devices/devices.php +++ b/app/devices/devices.php @@ -380,6 +380,17 @@ if (permission_exists('device_edit')) { $list_row_url = "device_edit.php?id=".urlencode($row['device_uuid']); } + + $device_provisioned_method = ''; + if (isset($row['device_provisioned_method']) && ($row['device_provisioned_method'] == 'http' || $row['device_provisioned_method'] == 'https')) { + $device_provisioned_method = $row['device_provisioned_method']; + } + + $device_provisioned_ip = ''; + if (isset($row['device_provisioned_ip']) && filter_var($row['device_provisioned_ip'], FILTER_VALIDATE_IP)) { + $device_provisioned_ip = $row['device_provisioned_ip']; + } + echo "\n"; if (permission_exists('device_edit') || permission_exists('device_delete')) { echo " \n"; @@ -416,7 +427,7 @@ echo $text['label-'.$row['device_enabled']]; } echo " \n"; - echo " ".escape($row['device_provisioned_date'])." - ".escape($row['device_provisioned_method'])." - ".escape($row['device_provisioned_ip'])." - ".$text['label-user_agent']." \n"; + echo " ".escape($row['device_provisioned_date'])."   ".escape($device_provisioned_method)."   ".escape($row['device_provisioned_ip'])." \n"; echo " ".escape($row['device_description'])." \n"; if (permission_exists('device_edit') && $_SESSION['theme']['list_row_edit_button']['boolean'] == 'true') { echo " ";