mirror of
https://gitlab.com/davical-project/davical.git
synced 2026-02-16 03:53:40 +00:00
658 lines
30 KiB
PHP
658 lines
30 KiB
PHP
<?php
|
|
|
|
// Editor component for company records
|
|
$editor = new Editor(translate('Principal'), 'dav_principal');
|
|
|
|
$editor->SetLookup( 'date_format_type', "SELECT 'E', 'European' UNION SELECT 'U', 'US Format' UNION SELECT 'I', 'ISO Format'" );
|
|
$editor->SetLookup( 'type_id', 'SELECT principal_type_id, principal_type_desc FROM principal_type ORDER BY principal_type_id' );
|
|
$editor->SetLookup( 'locale', 'SELECT \'\', \''.translate("*** Default Locale ***").'\' UNION SELECT locale, locale_name_locale FROM supported_locales ORDER BY 1 ASC' );
|
|
$editor->AddAttribute( 'locale', 'title', translate("The preferred language for this person.") );
|
|
$editor->AddAttribute( 'fullname', 'title', translate("The full name for this person, group or other type of principal.") );
|
|
param_to_global('id', 'int', 'old_id', 'principal_id' );
|
|
$editor->SetWhere( 'principal_id='.$id );
|
|
|
|
$editor->AddField('is_admin', 'EXISTS( SELECT 1 FROM role_member WHERE role_no = 1 AND role_member.user_no = dav_principal.user_no )' );
|
|
$editor->AddAttribute('is_admin', 'title', translate('An "Administrator" user has full rights to the whole DAViCal System'));
|
|
|
|
$privilege_names = array( 'read', 'write-properties', 'write-content', 'unlock', 'read-acl', 'read-current-user-privilege-set',
|
|
'bind', 'unbind', 'write-acl', 'read-free-busy', 'schedule-deliver-invite', 'schedule-deliver-reply',
|
|
'schedule-query-freebusy', 'schedule-send-invite', 'schedule-send-reply', 'schedule-send-freebusy' );
|
|
|
|
$delete_collection_confirmation_required = null;
|
|
$delete_principal_confirmation_required = null;
|
|
|
|
function handle_subaction( $subaction ) {
|
|
global $session, $c, $id, $editor, $delete_collection_confirmation_required, $delete_principal_confirmation_required;
|
|
|
|
dbg_error_log('admin-principal-edit',':handle_action: Action %s', $subaction );
|
|
|
|
switch( $subaction ) {
|
|
case 'delete_collection':
|
|
dbg_error_log('admin-principal-edit',':handle_action: Deleting collection %s for principal %d', $_GET['dav_name'], $id );
|
|
if ( $session->AllowedTo('Admin')
|
|
|| ($id > 0 && $session->principal_id == $id) ) {
|
|
if ( $session->CheckConfirmationHash('GET', 'confirm') ) {
|
|
dbg_error_log('admin-principal-edit',':handle_action: Allowed to delete collection %s for principal %d', $_GET['dav_name'], $id );
|
|
$qry = new AwlQuery('DELETE FROM collection WHERE dav_name=?;', $_GET['dav_name'] );
|
|
if ( $qry->Exec() ) {
|
|
$c->messages[] = i18n('Collection deleted');
|
|
return true;
|
|
}
|
|
else {
|
|
$c->messages[] = i18n('There was an error writing to the database.');
|
|
return false;
|
|
}
|
|
}
|
|
else {
|
|
$c->messages[] = i18n('Please confirm deletion of collection - see below');
|
|
$delete_collection_confirmation_required = $session->BuildConfirmationHash('GET', 'confirm');
|
|
return false;
|
|
}
|
|
}
|
|
break;
|
|
|
|
case 'delete_principal':
|
|
dbg_error_log('admin-principal-edit',':handle_action: Deleting principal %d', $id );
|
|
if ( $session->AllowedTo('Admin') ) {
|
|
if ( $session->CheckConfirmationHash('GET', 'confirm') ) {
|
|
dbg_error_log('admin-principal-edit',':handle_action: Allowed to delete principal %d -%s', $id, $editor->Value('username') );
|
|
$qry = new AwlQuery('DELETE FROM dav_principal WHERE principal_id=?;', $id );
|
|
if ( $qry->Exec() ) {
|
|
$c->messages[] = i18n('Principal deleted');
|
|
return true;
|
|
}
|
|
else {
|
|
$c->messages[] = i18n('There was an error writing to the database.');
|
|
return false;
|
|
}
|
|
}
|
|
else {
|
|
$c->messages[] = i18n('Please confirm deletion of the principal');
|
|
$delete_principal_confirmation_required = $session->BuildConfirmationHash('GET', 'confirm');
|
|
return false;
|
|
}
|
|
}
|
|
break;
|
|
|
|
default:
|
|
return false;
|
|
}
|
|
return false;
|
|
}
|
|
|
|
if ( isset($_GET['subaction']) ) {
|
|
handle_subaction($_GET['subaction']);
|
|
}
|
|
|
|
|
|
$can_write_principal = ($session->AllowedTo('Admin') || $session->principal_id == $id );
|
|
$post_values = false;
|
|
|
|
if ( isset($_POST['xxxxusername']) ) {
|
|
$_POST['xxxxusername'] = trim(str_replace('/', '', $_POST['xxxxusername']));
|
|
if ( $_POST['xxxxusername'] == '' ) {
|
|
$c->messages[] = i18n("The username must not be blank, and may not contain a slash");
|
|
$can_write_principal = false;
|
|
}
|
|
};
|
|
if ( isset($_POST['fullname']) && trim($_POST['fullname']) == '' ) {
|
|
$c->messages[] = i18n("The full name must not be blank.");
|
|
$can_write_principal = false;
|
|
};
|
|
if ( isset($_POST['email']) && trim($_POST['email']) == '' ) {
|
|
$c->messages[] = i18n("The email address really should not be blank.");
|
|
}
|
|
|
|
$pwstars = '@@@@@@@@@@';
|
|
if ( $can_write_principal && $editor->IsSubmit() ) {
|
|
$editor->WhereNewRecord( "principal_id=(SELECT CURRVAL('dav_id_seq'))" );
|
|
if ( ! $session->AllowedTo('Admin') ) {
|
|
unset($_POST['admin_role']);
|
|
unset($_POST['user_active']);
|
|
}
|
|
unset($_POST['password']);
|
|
if ( $_POST['newpass1'] != '' && $_POST['newpass1'] != $pwstars ) {
|
|
if ( $_POST['newpass1'] == $_POST['newpass2'] ) {
|
|
$_POST['password'] = $_POST['newpass1'];
|
|
}
|
|
else {
|
|
$c->messages[] = "Password not updated. The supplied passwords do not match.";
|
|
}
|
|
}
|
|
if ( isset($_POST['fullname']) && !isset($_POST['displayname']) ) {
|
|
$_POST['displayname'] = $_POST['fullname'];
|
|
}
|
|
if ( isset($_POST['default_privileges']) ) {
|
|
$privilege_bitpos = array_flip($privilege_names);
|
|
$priv_names = array_keys($_POST['default_privileges']);
|
|
$privs = privilege_to_bits($priv_names);
|
|
$_POST['default_privileges'] = sprintf('%024s',decbin($privs));
|
|
$editor->Assign('default_privileges', $privs_dec);
|
|
}
|
|
if ( $editor->IsCreate() ) {
|
|
$c->messages[] = i18n("Creating new Principal record.");
|
|
}
|
|
else {
|
|
$c->messages[] = i18n("Updating Principal record.");
|
|
}
|
|
$editor->Write();
|
|
if ( $_POST['type_id'] != 3 && $editor->IsCreate() ) {
|
|
/** We only add the default calendar if it isn't a group, and this is a create action */
|
|
require_once('auth-functions.php');
|
|
CreateHomeCalendar($editor->Value('username'));
|
|
}
|
|
if ( $session->AllowedTo('Admin') ) {
|
|
if ( $_POST['is_admin'] == 'on' ) {
|
|
$sql = 'INSERT INTO role_member (role_no, user_no) SELECT 1, dav_principal.user_no FROM dav_principal WHERE user_no = :user_no AND NOT EXISTS(SELECT 1 FROM role_member rm WHERE rm.role_no = 1 AND rm.user_no = dav_principal.user_no )';
|
|
$editor->Assign('is_admin', 't');
|
|
}
|
|
else {
|
|
$sql = 'DELETE FROM role_member WHERE role_no = 1 AND user_no = :user_no';
|
|
$editor->Assign('is_admin', 'f');
|
|
}
|
|
$params['user_no'] = $editor->Value('user_no');
|
|
$qry = new AwlQuery( $sql, $params );
|
|
$qry->Exec('admin-principal-edit');
|
|
}
|
|
}
|
|
else {
|
|
$editor->GetRecord();
|
|
if ( $editor->IsSubmit() ) {
|
|
$post_values = true;
|
|
}
|
|
}
|
|
if ( $editor->Available() ) {
|
|
$c->page_title = $editor->Title(translate('Principal').': '.$editor->Value('fullname'));
|
|
}
|
|
else {
|
|
$c->page_title = $editor->Title(translate('Create New Principal'));
|
|
$privs = decbin(privilege_to_bits($c->default_privileges));
|
|
$editor->Assign('default_privileges', $privs);
|
|
$editor->Assign('user_active', 't');
|
|
foreach( $c->template_usr AS $k => $v ) {
|
|
$editor->Assign($k, $v);
|
|
}
|
|
}
|
|
if ( $post_values ) {
|
|
$editor->PostToValues();
|
|
if ( isset($_POST['default_privileges']) ) {
|
|
$privilege_bitpos = array_flip($privilege_names);
|
|
$priv_names = array_keys($_POST['default_privileges']);
|
|
$privs = privilege_to_bits($priv_names);
|
|
$_POST['default_privileges'] = sprintf('%024s',decbin($privs));
|
|
$editor->Assign('default_privileges', $_POST['default_privileges']);
|
|
}
|
|
}
|
|
|
|
$privilege_xlate = array(
|
|
'all' => translate('All privileges'),
|
|
'read' => translate('Read'),
|
|
'write-properties' => translate('Write Metadata'),
|
|
'write-content' => translate('Write Data'),
|
|
'unlock' => translate('Override a Lock'),
|
|
'read-acl' => translate('Read Access Controls'),
|
|
'read-current-user-privilege-set' => translate('Read Current User\'s Access'),
|
|
'bind' => translate('Create Events/Collections'),
|
|
'unbind' => translate('Delete Events/Collections'),
|
|
'write-acl' => translate('Write Access Controls'),
|
|
'read-free-busy' => translate('Read Free/Busy Information'),
|
|
'schedule-deliver-invite' => translate('Scheduling: Deliver an Invitation'),
|
|
'schedule-deliver-reply' => translate('Scheduling: Deliver a Reply'),
|
|
'schedule-query-freebusy' => translate('Scheduling: Query free/busy'),
|
|
'schedule-send-invite' => translate('Scheduling: Send an Invitation'),
|
|
'schedule-send-reply' => translate('Scheduling: Send a Reply'),
|
|
'schedule-send-freebusy' => translate('Scheduling: Send free/busy'),
|
|
'write' => translate('Write'),
|
|
'schedule-deliver' => translate('Scheduling: Delivery'),
|
|
'schedule-send' => translate('Scheduling: Sending')
|
|
);
|
|
|
|
/**
|
|
* privilege_format_function is for formatting the binary privileges from the
|
|
* database, including localising them. This is a hook function for a browser
|
|
* column object, so it takes three parameters:
|
|
* @param mixed $value The value of the column.
|
|
* @param BrowserColumn $column The BrowserColumn object we are hooked into.
|
|
* @param dbrow $row The row object we read from the database.
|
|
* @return string The formatted privileges.
|
|
*/
|
|
function privilege_format_function( $value, $column, $row ) {
|
|
global $privilege_xlate;
|
|
|
|
$privs = bits_to_privilege($value);
|
|
$formatted = '';
|
|
foreach( $privs AS $k => $v ) {
|
|
$formatted .= ($formatted == '' ? '' : ' , ');
|
|
$v = preg_replace( '{^.*:}', '', $v );
|
|
$formatted .= (isset($privilege_xlate[$v]) ? $privilege_xlate[$v] : $v );
|
|
}
|
|
return $formatted;
|
|
}
|
|
|
|
|
|
|
|
$default_privileges = bindec($editor->Value('default_privileges'));
|
|
$privileges_set = '<div id="privileges">';
|
|
for( $i=0; $i<count($privilege_names); $i++ ) {
|
|
$privilege_set = ( (1 << $i) & $default_privileges ? ' CHECKED' : '');
|
|
$privileges_set .= '<label class="privilege"><input name="default_privileges['.$privilege_names[$i].']" id="default_privileges_'.$privilege_names[$i].'" type="checkbox"'.$privilege_set.'>'.$privilege_xlate[$privilege_names[$i]].'</label>'."\n";
|
|
}
|
|
$privileges_set .= '</div>';
|
|
|
|
$prompt_principal_id = translate('Principal ID');
|
|
$value_id = ( $editor->Available() ? '##principal_id.hidden####principal_id.value##' : translate('New Principal'));
|
|
$prompt_username = translate('Username');
|
|
$prompt_password_1 = translate('Change Password');
|
|
$prompt_password_1 = translate('Confirm Password');
|
|
$prompt_fullname = translate('Fullname');
|
|
$prompt_displayname = translate('Display Name');
|
|
$prompt_email = translate('Email Address');
|
|
$prompt_date_format = translate('Date Format Style');
|
|
$prompt_admin = translate('Administrator');
|
|
$prompt_active = translate('Active');
|
|
$prompt_locale = translate('Locale');
|
|
$prompt_type = translate('Principal Type');
|
|
$prompt_privileges = translate('Default Privileges');
|
|
|
|
$btn_all = htmlspecialchars(translate('All')); $btn_all_title = htmlspecialchars(translate('Toggle all privileges'));
|
|
$btn_rw = htmlspecialchars(translate('Read/Write')); $btn_rw_title = htmlspecialchars(translate('Set read+write privileges'));
|
|
$btn_read = htmlspecialchars(translate('Read')); $btn_read_title = htmlspecialchars(translate('Set read privileges'));
|
|
$btn_fb = htmlspecialchars(translate('Free/Busy')); $btn_fb_title = htmlspecialchars(translate('Set free/busy privileges'));
|
|
$btn_sd = htmlspecialchars(translate('Schedule Deliver')); $btn_sd_title = htmlspecialchars(translate('Set schedule-deliver privileges'));
|
|
$btn_ss = htmlspecialchars(translate('Schedule Send')); $btn_ss_title = htmlspecialchars(translate('Set schedule-deliver privileges'));
|
|
|
|
$admin_row_entry = '';
|
|
$delete_principal_button = '';
|
|
if ( $session->AllowedTo('Admin') ) {
|
|
$admin_row_entry = ' <tr> <th class="right">'.$prompt_admin.':</th><td class="left">##is_admin.checkbox##</td> </tr>';
|
|
$admin_row_entry .= ' <tr> <th class="right">'.$prompt_active.':</th><td class="left">##user_active.checkbox##</td> </tr>';
|
|
if ( isset($id) )
|
|
$delete_principal_button = '<a href="'.$c->base_url . '/admin.php?action=edit&t=principal&subaction=delete_principal&id='.$id.'" class="submit">' . translate("Delete Principal") . '</a>';
|
|
}
|
|
|
|
$id = $editor->Value('principal_id');
|
|
$template = <<<EOTEMPLATE
|
|
##form##
|
|
<script language="javascript">
|
|
function toggle_privileges() {
|
|
var argv = toggle_privileges.arguments;
|
|
var argc = argv.length;
|
|
|
|
if ( argc < 2 ) {
|
|
return;
|
|
}
|
|
var match_me = argv[0];
|
|
|
|
var set_to = -1;
|
|
if ( argv[1] == 'all' ) {
|
|
var form = document.getElementById(argv[2]);
|
|
var fieldcount = form.elements.length;
|
|
var matching = '/^' + match_me + '/';
|
|
for (var i = 0; i < fieldcount; i++) {
|
|
var fieldname = form.elements[i].name;
|
|
if ( fieldname.match( match_me ) ) {
|
|
if ( set_to == -1 ) {
|
|
set_to = ( form.elements[i].checked ? 0 : 1 );
|
|
}
|
|
form.elements[i].checked = set_to;
|
|
}
|
|
}
|
|
}
|
|
else {
|
|
for (var i = 1; i < argc; i++) {
|
|
var f = document.getElementById( match_me + '_' + argv[i]);
|
|
if ( set_to == -1 ) {
|
|
set_to = ( f.checked ? 0 : 1 );
|
|
}
|
|
f.checked = set_to;
|
|
}
|
|
}
|
|
}
|
|
</script>
|
|
<style>
|
|
th.right, label.privilege {
|
|
white-space:nowrap;
|
|
}
|
|
label.privilege {
|
|
margin:0.2em 1em 0.2em 0.1em;
|
|
padding:0 0.2em;
|
|
line-height:1.6em;
|
|
font-size:87%;
|
|
}
|
|
</style>
|
|
<table>
|
|
<tr> <th class="right">$prompt_principal_id:</th><td class="left">
|
|
<table width="100%" class="form_inner"><tr>
|
|
<td>$value_id</td>
|
|
<td align="right">$delete_principal_button</td>
|
|
</tr></table>
|
|
</td></tr>
|
|
<tr> <th class="right">$prompt_username:</th> <td class="left">##xxxxusername.input.50##</td> </tr>
|
|
<tr> <th class="right">$prompt_password_1:</th> <td class="left">##newpass1.password.$pwstars##</td> </tr>
|
|
<tr> <th class="right">$prompt_password_1:</th> <td class="left">##newpass2.password.$pwstars##</td> </tr>
|
|
<tr> <th class="right">$prompt_fullname:</th> <td class="left">##fullname.input.50##</td> </tr>
|
|
<tr> <th class="right">$prompt_email:</th> <td class="left">##email.input.50##</td> </tr>
|
|
<tr> <th class="right">$prompt_locale:</th> <td class="left">##locale.select##</td> </tr>
|
|
<tr> <th class="right">$prompt_date_format:</th> <td class="left">##date_format_type.select##</td> </tr>
|
|
<tr> <th class="right">$prompt_type:</th> <td class="left">##type_id.select##</td> </tr>
|
|
$admin_row_entry
|
|
<tr> <th class="right">$prompt_privileges:</th><td class="left">
|
|
<input type="button" value="$btn_all" class="submit" title="$btn_all_title" onclick="toggle_privileges('default_privileges', 'all', 'editor_1');">
|
|
<input type="button" value="$btn_rw" class="submit" title="$btn_rw_title"
|
|
onclick="toggle_privileges('default_privileges', 'read', 'write-properties', 'write-content', 'bind', 'unbind', 'read-free-busy',
|
|
'read-current-user-privilege-set', 'schedule-deliver-invite', 'schedule-deliver-reply', 'schedule-query-freebusy',
|
|
'schedule-send-invite', 'schedule-send-reply', 'schedule-send-freebusy' );">
|
|
<input type="button" value="$btn_read" class="submit" title="$btn_read_title"
|
|
onclick="toggle_privileges('default_privileges', 'read', 'read-free-busy', 'schedule-query-freebusy', 'read-current-user-privilege-set' );">
|
|
<input type="button" value="$btn_fb" class="submit" title="$btn_fb_title"
|
|
onclick="toggle_privileges('default_privileges', 'read-free-busy', 'schedule-query-freebusy' );">
|
|
<input type="button" value="$btn_sd" class="submit" title="$btn_sd_title"
|
|
onclick="toggle_privileges('default_privileges', 'schedule-deliver-invite', 'schedule-deliver-reply', 'schedule-query-freebusy' );">
|
|
<input type="button" value="$btn_ss" class="submit" title="$btn_ss_title"
|
|
onclick="toggle_privileges('default_privileges', 'schedule-send-invite', 'schedule-send-reply', 'schedule-send-freebusy' );">
|
|
<br>$privileges_set</td> </tr>
|
|
<tr> <th class="right"></th> <td class="left" colspan="2">##submit##</td> </tr>
|
|
</table>
|
|
</form>
|
|
EOTEMPLATE;
|
|
|
|
$editor->SetTemplate( $template );
|
|
$page_elements[] = $editor;
|
|
|
|
if ( isset($delete_principal_confirmation_required) ) {
|
|
$html = '<p class="error">';
|
|
$html .= sprintf('<b>%s</b> \'%s\' <a class="error" href="%s&%s">%s</a> %s',
|
|
translate('Deleting Principal:'), $editor->Value('displayname'), $_SERVER['REQUEST_URI'],
|
|
$delete_principal_confirmation_required, translate('Confirm Deletion of the Principal'),
|
|
translate('All of the principal\'s calendars and events will be unrecoverably deleted.') );
|
|
$html .= "</p>\n";
|
|
$page_elements[] = $html;
|
|
}
|
|
|
|
|
|
if ( isset($id) ) {
|
|
$browser = new Browser(translate('Group Memberships'));
|
|
$c->stylesheets[] = 'css/browse.css';
|
|
$c->scripts[] = 'js/browse.js';
|
|
|
|
$browser->AddColumn( 'group_id', translate('ID'), 'right', '##principal_link##' );
|
|
$rowurl = $c->base_url . '/admin.php?action=edit&t=principal&id=';
|
|
$browser->AddHidden( 'principal_link', "'<a href=\"$rowurl' || principal_id || '\">' || principal_id || '</a>'" );
|
|
$browser->AddColumn( 'displayname', translate('Display Name') );
|
|
$browser->AddColumn( 'member_of', translate('Is Member of'), '', '', 'is_member_of_list(principal_id)' );
|
|
$browser->AddColumn( 'members', translate('Has Members'), '', '', 'has_members_list(principal_id)' );
|
|
|
|
$browser->SetOrdering( 'displayname', 'A' );
|
|
|
|
$browser->SetJoins( "group_member LEFT JOIN dav_principal ON (group_id = principal_id) " );
|
|
$browser->SetWhere( 'user_active AND member_id = '.$id );
|
|
|
|
if ( $c->enable_row_linking ) {
|
|
$browser->RowFormat( '<tr onMouseover="LinkHref(this,1);" title="'.translate('Click to edit principal details').'" class="r%d">', '</tr>', '#even' );
|
|
}
|
|
else {
|
|
$browser->RowFormat( '<tr class="r%d">', '</tr>', '#even' );
|
|
}
|
|
$browser->DoQuery();
|
|
$page_elements[] = $browser;
|
|
|
|
|
|
if ( $editor->Value('type_id') == 3 ) {
|
|
|
|
$grouprow = new Editor("Group Members", "group_member");
|
|
$grouprow->SetLookup( 'member_id', 'SELECT principal_id, coalesce(displayname,fullname,username) FROM dav_principal WHERE principal_id NOT IN (SELECT member_id FROM group_member WHERE group_id = '.$id.') AND principal_id != '.$id);
|
|
$grouprow->SetSubmitName( 'savegrouprow' );
|
|
|
|
if ( $can_write_principal ) {
|
|
if ( $grouprow->IsSubmit() ) {
|
|
if ( $grouprow->IsUpdate() )
|
|
$c->messages[] = translate('Updating Member of this Group Principal');
|
|
else
|
|
$c->messages[] = translate('Adding new member to this Group Principal');
|
|
|
|
$_POST['group_id'] = $id;
|
|
$member_id = intval($_POST['member_id']);
|
|
$grouprow->SetWhere( "group_id=".qpg($id)." AND member_id=$member_id");
|
|
$grouprow->Write( );
|
|
unset($_GET['member_id']);
|
|
}
|
|
elseif ( isset($_GET['delete_member']) ) {
|
|
$qry = new AwlQuery("DELETE FROM group_member WHERE group_id=:group_id AND member_id = :member_id",
|
|
array( ':group_id' => $id, ':member_id' => intval($_GET['delete_member']) ));
|
|
$qry->Exec('principal-edit');
|
|
$c->messages[] = translate('Member deleted from this Group Principal');
|
|
}
|
|
}
|
|
|
|
function edit_group_row( $row_data ) {
|
|
global $grouprow, $id, $c;
|
|
|
|
$form_url = preg_replace( '#&(edit|delete)_group=\d+#', '', $_SERVER['REQUEST_URI'] );
|
|
|
|
$template = <<<EOTEMPLATE
|
|
<form method="POST" enctype="multipart/form-data" id="add_group" action="$form_url">
|
|
<td class="left"><input type="hidden" name="id" value="$id"></td>
|
|
<td class="left" colspan="3">##member_id.select## ##Add.submit##</td>
|
|
<td class="center"></td>
|
|
</form>
|
|
|
|
EOTEMPLATE;
|
|
|
|
$grouprow->SetTemplate( $template );
|
|
$grouprow->Title("");
|
|
if ( $row_data->group_id > -1 ) $grouprow->SetRecord( $row_data );
|
|
|
|
return $grouprow->Render();
|
|
}
|
|
|
|
$browser = new Browser(translate('Group Members'));
|
|
|
|
$browser->AddColumn( 'group_id', translate('ID'), 'right', '##principal_link##' );
|
|
$rowurl = $c->base_url . '/admin.php?action=edit&t=principal&id=';
|
|
$browser->AddHidden( 'principal_id' );
|
|
$browser->AddHidden( 'principal_link', "'<a href=\"$rowurl' || principal_id || '\">' || principal_id || '</a>'" );
|
|
$browser->AddColumn( 'displayname', translate('Display Name') );
|
|
$browser->AddColumn( 'member_of', translate('Is Member of'), '', '', 'is_member_of_list(principal_id)' );
|
|
$browser->AddColumn( 'members', translate('Has Members'), '', '', 'has_members_list(principal_id)' );
|
|
|
|
if ( $can_write_principal ) {
|
|
$del_link = '<a href="'.$c->base_url.'/admin.php?action=edit&t=principal&id='.$id.'&delete_member=##principal_id##" class="submit">'.translate('Remove').'</a>';
|
|
$browser->AddColumn( 'action', translate('Action'), 'center', '', "'$edit_link $del_link'" );
|
|
}
|
|
|
|
$browser->SetOrdering( 'displayname', 'A' );
|
|
|
|
$browser->SetJoins( "group_member LEFT JOIN dav_principal ON (member_id = principal_id) " );
|
|
$browser->SetWhere( 'user_active AND group_id = '.$id );
|
|
|
|
if ( $c->enable_row_linking ) {
|
|
$browser->RowFormat( '<tr onMouseover="LinkHref(this,1);" title="'.translate('Click to edit principal details').'" class="r%d">', '</tr>', '#even' );
|
|
}
|
|
else {
|
|
$browser->RowFormat( '<tr class="r%d">', '</tr>', '#even' );
|
|
}
|
|
$browser->DoQuery();
|
|
$page_elements[] = $browser;
|
|
|
|
if ( $can_write_principal ) {
|
|
$browser->RowFormat( '<tr class="r%d">', '</tr>', '#even' );
|
|
$extra_row = array( 'group_id' => -1 );
|
|
$browser->MatchedRow('group_id', -1, 'edit_group_row');
|
|
$extra_row = (object) $extra_row;
|
|
$browser->AddRow($extra_row);
|
|
}
|
|
}
|
|
|
|
|
|
$grantrow = new Editor("Grants", "grants");
|
|
$grantrow->SetSubmitName( 'savegrantrow' );
|
|
$edit_grant_clause = '';
|
|
if ( isset($_GET['edit_grant']) ) {
|
|
$edit_grant_clause = ' AND to_principal != '.intval($_GET['edit_grant']);
|
|
}
|
|
$grantrow->SetLookup( 'to_principal', 'SELECT principal_id, displayname FROM dav_principal WHERE principal_id NOT IN (SELECT to_principal FROM grants WHERE by_principal = '.$id.$edit_grant_clause.') ORDER BY fullname' );
|
|
if ( $can_write_principal ) {
|
|
if ( $grantrow->IsSubmit() ) {
|
|
if ( $grantrow->IsUpdate() )
|
|
$c->messages[] = translate('Updating grants by this Principal');
|
|
else
|
|
$c->messages[] = translate('Granting new privileges from this Principal');
|
|
$_POST['by_principal'] = $id;
|
|
$to_principal = intval($_POST['to_principal']);
|
|
$orig_to_id = intval($_POST['orig_to_id']);
|
|
$grantrow->SetWhere( "by_principal=".qpg($id)." AND to_principal=$orig_to_id");
|
|
if ( isset($_POST['grant_privileges']) ) {
|
|
$privilege_bitpos = array_flip($privilege_names);
|
|
$priv_names = array_keys($_POST['grant_privileges']);
|
|
$privs = privilege_to_bits($priv_names);
|
|
$_POST['privileges'] = sprintf('%024s',decbin($privs));
|
|
$grantrow->Assign('privileges', $privs_dec);
|
|
}
|
|
$grantrow->Write( );
|
|
unset($_GET['to_principal']);
|
|
}
|
|
elseif ( isset($_GET['delete_grant']) ) {
|
|
$qry = new AwlQuery("DELETE FROM grants WHERE by_principal=:grantor_id AND to_principal = :to_principal",
|
|
array( ':grantor_id' => $id, ':to_principal' => intval($_GET['delete_grant']) ));
|
|
$qry->Exec('principal-edit');
|
|
$c->messages[] = translate('Deleted a grant from this Principal');
|
|
}
|
|
}
|
|
|
|
function edit_grant_row( $row_data ) {
|
|
global $grantrow, $id, $c, $privilege_xlate, $privilege_names;
|
|
global $btn_all, $btn_all_title, $btn_rw, $btn_rw_title, $btn_read, $btn_read_title;
|
|
global $btn_fb, $btn_fb_title, $btn_sd, $btn_sd_title, $btn_ss, $btn_ss_title;
|
|
|
|
if ( $row_data->to_principal > -1 ) {
|
|
$grantrow->SetRecord( $row_data );
|
|
}
|
|
|
|
$grant_privileges = bindec($grantrow->Value('grant_privileges'));
|
|
$privileges_set = '<div id="privileges">';
|
|
for( $i=0; $i < count($privilege_names); $i++ ) {
|
|
$privilege_set = ( (1 << $i) & $grant_privileges ? ' CHECKED' : '');
|
|
$privileges_set .= '<label class="privilege"><input name="grant_privileges['.$privilege_names[$i].']" id="grant_privileges_'.$privilege_names[$i].'" type="checkbox"'.$privilege_set.'>'.$privilege_xlate[$privilege_names[$i]].'</label>'."\n";
|
|
}
|
|
$privileges_set .= '</div>';
|
|
|
|
$orig_to_id = $row_data->to_principal;
|
|
$form_id = $grantrow->Id();
|
|
$form_url = preg_replace( '#&(edit|delete)_grant=\d+#', '', $_SERVER['REQUEST_URI'] );
|
|
|
|
$template = <<<EOTEMPLATE
|
|
<form method="POST" enctype="multipart/form-data" id="form_$form_id" action="$form_url">
|
|
<td class="left" colspan="2"><input type="hidden" name="id" value="$id"><input type="hidden" name="orig_to_id" value="$orig_to_id">##to_principal.select##</td>
|
|
<td class="left" colspan="2">
|
|
<input type="button" value="$btn_all" class="submit" title="$btn_all_title" onclick="toggle_privileges('grant_privileges', 'all', 'form_$form_id');">
|
|
<input type="button" value="$btn_rw" class="submit" title="$btn_rw_title"
|
|
onclick="toggle_privileges('grant_privileges', 'read', 'write-properties', 'write-content', 'bind', 'unbind', 'read-free-busy',
|
|
'read-current-user-privilege-set', 'schedule-deliver-invite', 'schedule-deliver-reply', 'schedule-query-freebusy',
|
|
'schedule-send-invite', 'schedule-send-reply', 'schedule-send-freebusy' );">
|
|
<input type="button" value="$btn_read" class="submit" title="$btn_read_title"
|
|
onclick="toggle_privileges('grant_privileges', 'read', 'read-free-busy', 'schedule-query-freebusy', 'read-current-user-privilege-set' );">
|
|
<input type="button" value="$btn_fb" class="submit" title="$btn_fb_title"
|
|
onclick="toggle_privileges('grant_privileges', 'read-free-busy', 'schedule-query-freebusy' );">
|
|
<input type="button" value="$btn_sd" class="submit" title="$btn_sd_title"
|
|
onclick="toggle_privileges('grant_privileges', 'schedule-deliver-invite', 'schedule-deliver-reply', 'schedule-query-freebusy' );">
|
|
<input type="button" value="$btn_ss" class="submit" title="$btn_ss_title"
|
|
onclick="toggle_privileges('grant_privileges', 'schedule-send-invite', 'schedule-send-reply', 'schedule-send-freebusy' );">
|
|
<br>$privileges_set
|
|
<td class="center">##submit##</td>
|
|
</form>
|
|
|
|
EOTEMPLATE;
|
|
|
|
$grantrow->SetTemplate( $template );
|
|
$grantrow->Title("");
|
|
|
|
return $grantrow->Render();
|
|
}
|
|
|
|
$browser = new Browser(translate('Principal Grants'));
|
|
|
|
$browser->AddColumn( 'to_principal', translate('To ID'), 'right', '##principal_link##' );
|
|
$rowurl = $c->base_url . '/admin.php?action=edit&t=principal&id=';
|
|
$browser->AddHidden( 'principal_link', "'<a href=\"$rowurl' || to_principal || '\">' || to_principal || '</a>'" );
|
|
$browser->AddHidden( 'grant_privileges', 'privileges' );
|
|
$browser->AddColumn( 'displayname', translate('Display Name') );
|
|
$browser->AddColumn( 'privs', translate('Privileges'), '', '', 'privileges', '', '', 'privilege_format_function' );
|
|
$browser->AddColumn( 'members', translate('Has Members'), '', '', 'has_members_list(principal_id)' );
|
|
|
|
if ( $can_write_principal ) {
|
|
$del_link = '<a href="'.$c->base_url.'/admin.php?action=edit&t=principal&id='.$id.'&delete_grant=##to_principal##" class="submit">'.translate('Revoke').'</a>';
|
|
$edit_link = '<a href="'.$c->base_url.'/admin.php?action=edit&t=principal&id='.$id.'&edit_grant=##to_principal##" class="submit">'.translate('Edit').'</a>';
|
|
$browser->AddColumn( 'action', translate('Action'), 'center', '', "'$edit_link $del_link'" );
|
|
}
|
|
|
|
$browser->SetOrdering( 'displayname', 'A' );
|
|
|
|
$browser->SetJoins( "grants LEFT JOIN dav_principal ON (to_principal = principal_id) " );
|
|
$browser->SetWhere( 'by_principal = '.$id );
|
|
|
|
if ( $c->enable_row_linking ) {
|
|
$browser->RowFormat( '<tr onMouseover="LinkHref(this,1);" title="'.translate('Click to edit principal details').'" class="r%d">', '</tr>', '#even' );
|
|
}
|
|
else {
|
|
$browser->RowFormat( '<tr class="r%d">', '</tr>', '#even' );
|
|
}
|
|
$browser->DoQuery();
|
|
$page_elements[] = $browser;
|
|
|
|
|
|
if ( $can_write_principal ) {
|
|
if ( isset($_GET['edit_grant']) ) {
|
|
$browser->MatchedRow('to_principal', $_GET['edit_grant'], 'edit_grant_row');
|
|
}
|
|
else if ( isset($id ) ) {
|
|
$browser->RowFormat( '<tr class="r%d">', '</tr>', '#even' );
|
|
$extra_row = array( 'to_principal' => -1 );
|
|
$browser->MatchedRow('to_principal', -1, 'edit_grant_row');
|
|
$extra_row = (object) $extra_row;
|
|
$browser->AddRow($extra_row);
|
|
}
|
|
}
|
|
|
|
|
|
$browser = new Browser(translate('Principal Collections'));
|
|
|
|
$browser->AddColumn( 'collection_id', translate('ID'), 'right', '##collection_link##' );
|
|
$rowurl = $c->base_url . '/admin.php?action=edit&t=collection&id=';
|
|
$browser->AddHidden( 'collection_link', "'<a href=\"$rowurl' || collection_id || '\">' || collection_id || '</a>'" );
|
|
$browser->AddColumn( 'dav_name', translate('Path') );
|
|
$browser->AddColumn( 'dav_displayname', translate('Display Name') );
|
|
$browser->AddColumn( 'publicly_readable', translate('Public'), 'centre', '', 'CASE WHEN publicly_readable THEN \''.translate('Yes').'\' ELSE \''.translate('No').'\' END' );
|
|
$browser->AddColumn( 'privs', translate('Privileges'), '', '',
|
|
"COALESCE( privileges_list(default_privileges), '[".translate('from principal')."]')" );
|
|
$delurl = $c->base_url . '/admin.php?action=edit&t=principal&id='.$id.'&dav_name=##URL:dav_name##&subaction=delete_collection';
|
|
$browser->AddColumn( 'delete', translate('Action'), 'center', '', "'<a class=\"submit\" href=\"$delurl\">".translate('Delete')."</a>'" );
|
|
|
|
$browser->SetOrdering( 'dav_name', 'A' );
|
|
|
|
$browser->SetJoins( "collection " );
|
|
$browser->SetWhere( 'user_no = '.intval($editor->Value('user_no')) );
|
|
|
|
$browser->AddRow( array( 'dav_name' => '<a href="'.$rowurl.'&user_no='.intval($editor->Value('user_no')).'" class="submit">'.translate('Create Collection').'</a>' ));
|
|
|
|
if ( $c->enable_row_linking ) {
|
|
$browser->RowFormat( '<tr onMouseover="LinkHref(this,1);" title="'.translate('Click to edit principal details').'" class="r%d">', '</tr>', '#even' );
|
|
}
|
|
else {
|
|
$browser->RowFormat( '<tr class="r%d">', '</tr>', '#even' );
|
|
}
|
|
$browser->DoQuery();
|
|
$page_elements[] = $browser;
|
|
if ( isset($delete_collection_confirmation_required) ) {
|
|
$html = '<table><tr><td class="error">';
|
|
$html .= sprintf('<b>%s</b> "%s" <a class="error" href="%s&%s">%s</a> %s',
|
|
translate('Deleting Collection:'), $_GET['dav_name'], $_SERVER['REQUEST_URI'],
|
|
$delete_collection_confirmation_required,
|
|
translate('Confirm Deletion of the Collection'),
|
|
translate('All collection data will be unrecoverably deleted.') );
|
|
$html .= "</td></tr></table>\n";
|
|
$page_elements[] = $html;
|
|
}
|
|
|
|
|
|
}
|