| Current Path : /proc/2/cwd/opt/cpanel/ea-php56/root/usr/share/pear/RVSeagullMod/modules/user/classes/ |
| Current File : //proc/2/cwd/opt/cpanel/ea-php56/root/usr/share/pear/RVSeagullMod/modules/user/classes/RoleMgr.php |
<?php
/* Reminder: always indent with 4 spaces (no tabs). */
// +---------------------------------------------------------------------------+
// | Copyright (c) 2005, Demian Turner |
// | All rights reserved. |
// | |
// | Redistribution and use in source and binary forms, with or without |
// | modification, are permitted provided that the following conditions |
// | are met: |
// | |
// | o Redistributions of source code must retain the above copyright |
// | notice, this list of conditions and the following disclaimer. |
// | o Redistributions in binary form must reproduce the above copyright |
// | notice, this list of conditions and the following disclaimer in the |
// | documentation and/or other materials provided with the distribution. |
// | o The names of the authors may not be used to endorse or promote |
// | products derived from this software without specific prior written |
// | permission. |
// | |
// | THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS |
// | "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT |
// | LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR |
// | A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT |
// | OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
// | SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT |
// | LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
// | DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
// | THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
// | (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE |
// | OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
// | |
// +---------------------------------------------------------------------------+
// | Seagull 0.6 |
// +---------------------------------------------------------------------------+
// | RoleMgr.php |
// +---------------------------------------------------------------------------+
// | Author: Demian Turner <demian@phpkitchen.com> |
// +---------------------------------------------------------------------------+
// $Id: RoleMgr.php,v 1.34 2005/05/17 23:54:53 demian Exp $
require_once SGL_MOD_DIR . '/user/classes/UserDAO.php';
require_once 'DB/DataObject.php';
/**
* add to role flag
*/
define('SGL_ROLE_ADD', 1);
/**
* remove from role flag
*/
define('SGL_ROLE_REMOVE', 2);
/**
* Manages user roles.
*
* @package User
* @author Demian Turner <demian@phpkitchen.com>
* @version $Revision: 1.34 $
*/
class RoleMgr extends SGL_Manager
{
function RoleMgr()
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
parent::SGL_Manager();
$this->template = 'roleManager.html';
$this->pageTitle = 'Role Manager';
$this->da = UserDAO::singleton();
$this->_aActionsMapping = array(
'add' => array('add'),
'insert' => array('insert', 'redirectToDefault'),
'edit' => array('edit'),
'update' => array('update', 'redirectToDefault'),
'delete' => array('delete', 'redirectToDefault'),
'list' => array('list'),
'editPerms' => array('editPerms'),
'updatePerms' => array('updatePerms', 'redirectToDefault'),
'duplicate' => array('duplicate', 'redirectToDefault'),
);
}
function validate($req, &$input)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
$this->validated = true;
$input->pageTitle = $this->pageTitle;
$input->masterTemplate = 'masterMinimal.html';
$input->template = $this->template;
$input->submitted = $req->get('submitted');
$input->action = ($req->get('action')) ? $req->get('action') : 'list';
$input->roleId = $req->get('frmRoleID');
$input->role = (object) $req->get('role');
$input->aDelete = $req->get('frmDelete');
$input->permsToAdd = $req->get('AddfrmRolePerms');
$input->permsToRemove = $req->get('RemovefrmRolePerms');
$input->totalItems = $req->get('totalItems');
$input->sortBy = SGL_Util::getSortBy($req->get('frmSortBy'), SGL_SORTBY_USER);
$input->sortOrder = SGL_Util::getSortOrder($req->get('frmSortOrder'));
// This will tell HTML_Flexy which key is used to sort data
$input->{ 'sort_' . $input->sortBy } = true;
$aErrors = array();
if ($input->submitted || in_array($input->action, array('insert', 'update'))) {
if (empty($input->role->name)) {
$this->validated = false;
$aErrors['name'] = 'You must enter a role name';
}
}
// if errors have occured
if (is_array($aErrors) && count($aErrors)) {
SGL::raiseMsg('Please fill in the indicated fields');
$input->error = $aErrors;
if ($input->action == 'update') {
$input->roleEdit = true;
} else {
$input->roleAdd = true;
}
$input->template = 'roleEdit.html';
}
}
function _cmd_add(&$input, &$output)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
$output->template = 'roleEdit.html';
$output->roleAdd = true;
$output->pageTitle = $this->pageTitle . ' :: Add';
$output->role = DB_DataObject::factory($this->conf['table']['role']);
}
function _cmd_insert(&$input, &$output)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
SGL_DB::setConnection();
$oRole = DB_DataObject::factory($this->conf['table']['role']);
$oRole->setFrom($input->role);
$oRole->role_id = $this->dbh->nextId($this->conf['table']['role']);
$oRole->date_created = $oRole->last_updated = SGL_Date::getTime();
$oRole->created_by = $oRole->updated_by = SGL_Session::getUid();
$success = $oRole->insert();
if ($success) {
SGL::raiseMsg('role successfully added', true, SGL_MESSAGE_INFO);
} else {
SGL::raiseError('There was a problem inserting the record',
SGL_ERROR_NOAFFECTEDROWS);
}
}
function _cmd_edit(&$input, &$output)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
$output->roleEdit = true;
$output->template = 'roleEdit.html';
$output->pageTitle = $this->pageTitle . ' :: Edit';
$oRole = DB_DataObject::factory($this->conf['table']['role']);
$oRole->get($input->roleId);
$output->role = $oRole;
}
function _cmd_update($input)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
$oRole = DB_DataObject::factory($this->conf['table']['role']);
$oRole->get($input->role->role_id);
$oRole->setFrom($input->role);
$oRole->last_updated = SGL_Date::getTime();
$oRole->updated_by = SGL_Session::getUid();
$success = $oRole->update();
if ($success) {
SGL::raiseMsg('role successfully updated', true, SGL_MESSAGE_INFO);
} else {
SGL::raiseError('There was a problem inserting the record',
SGL_ERROR_NOAFFECTEDROWS);
}
}
function _cmd_delete(&$input, &$output)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
if (count($input->aDelete)) {
foreach ($input->aDelete as $roleId) {
// disallow deletion of admin and unassigned role
$msg = 'role successfully deleted';
if ($roleId == SGL_ADMIN || $roleId == SGL_UNASSIGNED) {
$msg .= ' but please note, admin/unassigned roles cannot be deleted';
continue;
}
$oRole = DB_DataObject::factory($this->conf['table']['role']);
$oRole->get($roleId);
$oRole->delete();
unset($oRole);
// cleanup
$this->_deleteCleanup($roleId);
}
SGL::raiseMsg($msg, true, SGL_MESSAGE_INFO);
} else {
SGL::raiseError('Incorrect parameter passed to ' . __CLASS__ . '::' .
__FUNCTION__, SGL_ERROR_INVALIDARGS);
}
}
function _cmd_list(&$input, &$output)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
$output->template = 'roleManager.html';
$output->pageTitle = $this->pageTitle . ' :: Browse';
$allowedSortFields = array('role_id','name');
if ( !empty($input->sortBy)
&& !empty($input->sortOrder)
&& in_array($input->sortBy, $allowedSortFields)) {
$orderBy_query = 'ORDER BY ' . $input->sortBy . ' ' . $input->sortOrder ;
} else {
$orderBy_query = 'ORDER BY role_id ASC ';
}
$query = "
SELECT
role_id, name, description, date_created,
created_by, last_updated, updated_by
FROM {$this->conf['table']['role']} " .$orderBy_query;
$limit = $_SESSION['aPrefs']['resPerPage'];
$pagerOptions = array(
'mode' => 'Sliding',
'delta' => 3,
'perPage' => $limit,
'spacesBeforeSeparator' => 0,
'spacesAfterSeparator' => 0,
'curPageSpanPre' => '<span class="currentPage">',
'curPageSpanPost' => '</span>',
);
$aPagedData = SGL_DB::getPagedData($this->dbh, $query, $pagerOptions);
$output->aPagedData = $aPagedData;
if (is_array($aPagedData['data']) && count($aPagedData['data'])) {
$output->pager = ($aPagedData['totalItems'] <= $limit) ? false : true;
}
$output->addOnLoadEvent("switchRowColorOnHover()");
}
function _cmd_duplicate(&$input, &$output)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
if (is_null($input->roleId)) {
SGL::raiseError('Incorrect parameter passed to ' . __CLASS__ . '::' .
__FUNCTION__, SGL_ERROR_INVALIDARGS);
} else {
// get role name info
$name = $this->dbh->getOne("
SELECT name FROM {$this->conf['table']['role']}
WHERE role_id = " . $input->roleId);
$duplicateName = $name . ' (duplicate)';
// insert new role duplicate, wrap in transaction
if (SGL_DB_DRIVER === 'DB') {
$this->dbh->autocommit(false);
} else {
if ($this->dbh->supports('transactions')) {
$this->dbh->beginTransaction();
}
}
$newRoleId = $this->dbh->nextId($this->conf['table']['role']);
$res1 = $this->dbh->query('
INSERT INTO ' . $this->conf['table']['role'] . "
(role_id, name, description)
VALUES ($newRoleId, '$duplicateName', 'please enter description')");
// insert role perms
$aRolePerms = $this->da->getPermNamesByRoleId($input->roleId);
$isError = false;
if (count($aRolePerms)) {
foreach ($aRolePerms as $permId => $permName) {
$res2 = $this->dbh->query('
INSERT INTO ' . $this->conf['table']['role_permission'] . "
(role_permission_id, role_id, permission_id)
VALUES (" . $this->dbh->nextId($this->conf['table']['role_permission']) .
", $newRoleId, $permId)");
}
/*fix PHP 5.3 :: nipaporn : ปรับ DB::isError */
$isError = SGL::isError($res2);
}
if (SGL::isError($res1) || $isError) {
///FIX PHP 5.3(use MDB2) by Witoon+Puttipong
if (SGL_DB_DRIVER === 'DB') {
$this->dbh->rollback();
$this->dbh->autocommit(true);
} else {
if ($this->dbh->in_transaction) {
$this->dbh->rollback();
}
}
SGL::raiseError('There was a problem inserting the record',
SGL_ERROR_DBTRANSACTIONFAILURE);
} else {
///FIX PHP 5.3(use MDB2) by Witoon+Puttipong
if (SGL_DB_DRIVER === 'DB') {
$this->dbh->commit();
$this->dbh->autocommit(true);
} else {
if ($this->dbh->in_transaction) {
$this->dbh->commit();
}
}
SGL::raiseMsg('role successfully duplicated', true, SGL_MESSAGE_INFO);
}
}
}
function _cmd_editPerms(&$input, &$output)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
$output->template = 'roleEditPerms.html';
$output->pageTitle = $this->pageTitle . ' :: Permissions';
$oRole = DB_DataObject::factory($this->conf['table']['role']);
$oRole->get($input->roleId);
$output->role = $oRole;
// get set of perms associated with role
$aRolePerms = $this->da->getPermNamesByRoleId($oRole->role_id);
asort($aRolePerms);
$output->aRolePerms = $aRolePerms;
// get remaining perms
$aRemainingPerms = $this->da->getPermsNotInRole($aRolePerms);
asort($aRemainingPerms);
$output->aRemainingPerms = $aRemainingPerms;
}
function _cmd_updatePerms(&$input, &$output)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
if (!count($input->permsToAdd) || !count($input->permsToRemove)) {
SGL::raiseError('Incorrect parameter passed to ' . __CLASS__ . '::' .
__FUNCTION__, SGL_ERROR_INVALIDARGS);
} else {
$aPermsToAdd = $this->_parsePermsString($input->permsToAdd);
$aPermsToRemove = $this->_parsePermsString($input->permsToRemove);
if (is_array($aPermsToAdd) && count($aPermsToAdd)) {
$ret = $this->da->updateRolePermissionAssocs($aPermsToAdd,
$input->roleId, SGL_ROLE_ADD);
}
if (is_array($aPermsToRemove) && count($aPermsToRemove)) {
$ret = $this->da->updateRolePermissionAssocs($aPermsToRemove,
$input->roleId, SGL_ROLE_REMOVE);
}
SGL::raiseMsg('role assignments successfully updated', true,
SGL_MESSAGE_INFO);
}
}
/**
* Parse string from role changer widget.
*
* @access private
* @param string $sUsers colon-separated string of username_UIDs
* @return array aUsers hash of uid => username
*/
function _parsePermsString($sPerms)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
$aTmpPerms = preg_split('/:/', $sPerms);
if (count($aTmpPerms) > 0) {
array_pop($aTmpPerms);
$aPerms = array();
foreach ($aTmpPerms as $perm) {
// chop at caret
list($permName, $permId) = preg_split('/\^/', $perm);
$aPerms[$permId] = $permName;
}
} else {
return false;
}
return $aPerms;
}
/**
* Updates any users whose role has been deleted to a role status of
* SGL_UNASSIGNED (-1).
*
* @access private
* @param int $roleId id of role to be set to SGL_UNASSIGNED
* @return void
*/
function _deleteCleanup($roleId)
{
SGL::logMessage(null, PEAR_LOG_DEBUG);
// select all users and orgs with a given role id
$aUsers = $this->da->getUsersByRoleId($roleId);
// and update users to 'unassigned' role
if (count($aUsers)) {
foreach ($aUsers as $userId) {
$this->dbh->query('
UPDATE ' . $this->conf['table']['user'] . '
SET role_id = ' . SGL_UNASSIGNED . '
WHERE usr_id =' . $userId);
// remove all user perms associated with deleted role
$this->dbh->query('
DELETE FROM ' . $this->conf['table']['user_permission'] . '
WHERE usr_id = ' . $userId);
}
}
// and update orgs to 'unassigned' role
$aOrgs = $this->da->getOrgsByRoleId($roleId);
if (count($aOrgs)) {
foreach ($aOrgs as $orgId) {
$this->dbh->query('
UPDATE ' . $this->conf['table']['organisation'] . '
SET role_id = ' . SGL_UNASSIGNED . '
WHERE organisation_id =' . $orgId);
}
}
}
}
?>
Copyright 2K16 - 2K18 Indonesian Hacker Rulez
;?>)