if (Request::option('show_msg')) { if ($msg_resource_id = Request::option('msg_resource_id')) { $msgResourceObj = ResourceObject::Factory($msg_resource_id); } $msg->addMsg(Request::option('show_msg'), $msg_resource_id ? array(htmlReady($msgResourceObj->getName())) : FALSE); } //if ObjectPerms for actual user and actual object are not loaded, load them! if ($ObjectPerms) { if (($ObjectPerms->getId() == $_SESSION['resources_data']["actual_object"]) && ($ObjectPerms->getUserId() == $user->id)) $ActualObjectPerms = $ObjectPerms; else $ActualObjectPerms = ResourceObjectPerms::Factory($_SESSION['resources_data']["actual_object"]); } else { $ActualObjectPerms = ResourceObjectPerms::Factory($_SESSION['resources_data']["actual_object"]); } //edit or view object if (Request::option('edit_object')) { if ($ActualObjectPerms->getUserPerm() == "admin") { $_SESSION['resources_data']["view"]="edit_object_properties"; $view = $_SESSION['resources_data']["view"]; } else { $_SESSION['resources_data']["view"]="view_details"; $view = $_SESSION['resources_data']["view"]; } } ?>
function AssignObjectPerms ($assign_id, $user_id='') { global $user, $perm; if ($user_id) $this->user_id=$user_id; else $this->user_id=$user->id; $this->assign_id=$assign_id; //check if user is root if ($perm->have_perm("root")) { $this->perm="admin"; } else //check if resources admin if (getGlobalPerms($this->user_id) == "admin") $this->perm="admin"; //check if the user assigns the assign if ($this->perm != "admin") { $query = "SELECT 1 FROM resources_assign WHERE assign_user_id = ? AND assign_id = ?"; $statement = DBManager::get()->prepare($query); $statement->execute(array( $this->user_id, $this->assign_id )); $this->owner = (bool)$statement->fetchColumn(); if ($this->owner) { $this->perm = 'admin'; } } //else check if the user is admin of the assigned resource if ($this->perm != "admin") { $query = "SELECT resource_id FROM resources_assign WHERE assign_id = ?"; $statement = DBManager::get()->prepare($query); $statement->execute(array($this->assign_id)); $resource_id = $statement->fetchColumn(); if ($resource_id) { $ObjectPerms = ResourceObjectPerms::Factory($resource_id); if ($ObjectPerms->havePerm('tutor')) { $this->perm = 'admin'; } } } }
function resource_message_action($resource_id) { $r_perms = new ResourceObjectPerms($resource_id, $GLOBALS['user']->id); if (!$r_perms->havePerm('admin')) { throw new AccessDeniedException(); } $this->resource = new ResourceObject($resource_id); $title = sprintf(_("Nutzer von %s benachrichtigen"), htmlReady($this->resource->getName())); $form_fields['start_day'] = array('type' => 'text', 'size' => '10', 'required' => true, 'caption' => _("Belegungen berücksichtigen von")); $form_fields['start_day']['attributes'] = array('onMouseOver' => 'jQuery(this).datepicker();this.blur();', 'onChange' => '$(this).closest("form").submit();'); $form_fields['start_day']['default_value'] = strftime('%x'); $form_fields['end_day'] = array('type' => 'text', 'size' => '10', 'required' => true, 'caption' => _("Belegungen berücksichtigen bis")); $form_fields['end_day']['attributes'] = array('onMouseOver' => 'jQuery(this).datepicker();this.blur();', 'onChange' => '$(this).closest("form").submit();'); $form_fields['end_day']['default_value'] = strftime('%x', strtotime('+6 months')); $form_fields['subject'] = array('type' => 'text', 'size' => '200', 'attributes' => array('style' => 'width:100%'), 'required' => true, 'caption' => _("Betreff")); $form_fields['subject']['default_value'] = $this->resource->getName(); $form_fields['message'] = array('caption' => _("Nachricht"), 'type' => 'textarea', 'required' => true, 'attributes' => array('rows' => 4, 'style' => 'width:100%')); $form_buttons['save_close'] = array('caption' => _('OK'), 'info' => _("Benachrichtigung verschicken und Dialog schließen")); $form = new StudipForm($form_fields, $form_buttons, 'resource_message', false); $start_time = strtotime($form->getFormFieldValue('start_day')); $end_time = strtotime($form->getFormFieldValue('end_day')); $assign_events = new AssignEventList($start_time, $end_time, $resource_id, '', '', TRUE, 'all'); $rec = array(); while ($event = $assign_events->nextEvent()) { if ($owner_type = $event->getOwnerType()) { if ($owner_type == 'date') { $seminar = new Seminar(Seminar::GetSemIdByDateId($event->getAssignUserId())); foreach ($seminar->getMembers('dozent') as $dozent) { $rec[$dozent['username']][] = strftime('%x %R', $event->begin) . ' - ' . strftime('%R', $event->end) . ' ' . $seminar->getName(); } } else { $rec[get_username($event->getAssignUserId())][] = strftime('%x %R', $event->begin) . ' - ' . strftime('%R', $event->end); } } } if ($form->isSended() && count($rec) && $form->getFormFieldValue('message')) { $messaging = new Messaging(); $ok = $messaging->insert_message($form->getFormFieldValue('message'), array_keys($rec), $GLOBALS['user']->id, null, null, null, '', $form->getFormFieldValue('subject'), true); PageLayout::postMessage(MessageBox::success(sprintf(_("Die Nachricht wurde an %s Nutzer verschickt"), $ok))); return $this->redirect(URLHelper::getUrl('resources.php?view=resources')); } if (!count($rec)) { PageLayout::postMessage(MessageBox::error(sprintf(_("Im Zeitraum %s - %s wurden keine Belegungen gefunden!"), strftime('%x', $start_time), strftime('%x', $end_time)))); $this->no_receiver = true; } else { $submessage = array(); foreach ($rec as $username => $slots) { $submessage[] = get_fullname_from_uname($username, 'full_rev_username', true) . ' ' . sprintf(_('(%s Belegungen)'), count($slots)); } PageLayout::postMessage(MessageBox::info(sprintf(_("Benachrichtigung an %s Nutzer verschicken"), count($rec)), $submessage, true)); } $this->form = $form; $this->response->add_header('X-Title', $title); }
function showThreadLevel ($root_id, $level=0, $lines='') { global $edit_structure_object, $RELATIVE_PATH_RESOURCES, $ActualObjectPerms; // Prepare statement that obtains all children of a given resource $query = "SELECT resource_id FROM resources_objects WHERE parent_id = ? ORDER BY name"; $children_statement = DBManager::get()->prepare($query); //Daten des Objects holen $query = "SELECT resource_id FROM resources_objects WHERE resource_id = ?"; $statement = DBManager::get()->prepare($query); $statement->execute(array($root_id)); $resource_ids = $statement->fetchAll(PDO::FETCH_COLUMN); foreach ($resource_ids as $resource_id) { //Untergeordnete Objekte laden $children_statement->execute(array($resource_id)); $children = $children_statement->fetchAll(PDO::FETCH_COLUMN); $children_statement->closeCursor(); //Struktur merken $weitere = count($children); $this->lines[$level + 1] = $weitere; //Object erstellen $resObject = ResourceObject::Factory($resource_id); //Daten vorbereiten if (!$resObject->getCategoryIconnr()) $icon = Icon::create('folder-full', 'inactive')->asImg(['class' => 'text-top']); else $icon = Assets::img('cont_res' . $resObject->getCategoryIconnr() . '.gif'); if ($_SESSION['resources_data']["move_object"]) { $temp = " <a href=\"".URLHelper::getLink('?target_object='.$resObject->id)."#a\">"; $temp .= Icon::create('arr_2right', 'sort', ['title' => _('Objekt in diese Ebene verschieben')])->asImg(); $temp .= "</a>"; $icon = $temp . $icon; } if ($_SESSION['resources_data']["structure_opens"][$resObject->id]) { $link = URLHelper::getLink('?structure_close=' . $resObject->id . '#a'); $open = 'open'; if ($_SESSION['resources_data']["actual_object"] == $resObject->id) echo '<a name="a"></a>'; } else { $link = URLHelper::getLink('?structure_open=' . $resObject->id . '#a'); $open = 'close'; } if ($resObject->getCategoryName()) $titel=$resObject->getCategoryName().": "; if ($edit_structure_object==$resObject->id) { echo "<a name=\"a\"></a>"; $titel.="<input style=\"font-size: 8pt; width: 100%;\" type=\"text\" size=20 maxlength=255 name=\"change_name\" value=\"".htmlReady($resObject->getName())."\">"; } else { $titel.=htmlReady($resObject->getName()); } //create a link on the titel, too if (($link) && ($edit_structure_object != $resObject->id)) $titel = "<a href=\"$link\" class=\"tree\" >$titel</a>"; if ($resObject->getOwnerLink()) $zusatz=sprintf (_("verantwortlich:") . " <a href=\"%s\"><font color=\"#333399\">%s</font></a>", $resObject->getOwnerLink(), htmlReady($resObject->getOwnerName())); else $zusatz=sprintf (_("verantwortlich:") . " %s", htmlReady($resObject->getOwnerName())); $new = true; $edit .= '<div style="text-align: center"><div class="button-group">'; if ($open == 'open') { //load the perms if (($ActualObjectPerms) && ($ActualObjectPerms->getId() == $resObject->getId())) { $perms = $ActualObjectPerms->getUserPerm(); } else { $ThisObjectPerms = ResourceObjectPerms::Factory($resObject->getId()); $perms = $ThisObjectPerms->getUserPerm(); } if ($edit_structure_object==$resObject->id) { $content.= "<br><textarea name=\"change_description\" rows=3 cols=40>".htmlReady($resObject->getDescription())."</textarea><br>"; $content .= Button::create(_('Übernehmen'), 'send', array('value' => _('Änderungen speichern'))); $content .= LinkButton::createCancel(_('Abbrechen'), URLHelper::getURL('?cancel_edit=' . $resObject->id)); $content.= "<input type=\"hidden\" name=\"change_structure_object\" value=\"".$resObject->getId()."\">"; $open="open"; } else { $content=htmlReady($resObject->getDescription()); } if ($_SESSION['resources_data']["move_object"] == $resObject->id) { $content .= '<br>'; $content .= sprintf(_('Dieses Objekt wurde zum Verschieben markiert. ' .'Bitte wählen Sie das Einfügen-Symbol %s, um es in die gewünschte Ebene zu verschieben.'), Icon::create('arr_2right', 'sort', ['title' => _('Klicken Sie auf dieses Symbol, um dieses Objekt in eine andere Ebene zu verschieben')])->asImg(16)); } if ($resObject->getCategoryId()) { $edit .= LinkButton::create(_('Belegung'), URLHelper::getURL('?view=view_schedule&show_object=' . $resObject->id)); } $edit .= LinkButton::create(_('Eigenschaften'), URLHelper::getURL('?view=view_details&show_object=' . $resObject->id)); if ($perms == "admin") { if ($resObject->isRoom()) { $edit .= LinkButton::create(_('Benachrichtigung'), UrlHelper::getScriptURL('dispatch.php/resources/helpers/resource_message/' . $resObject->id), array('data-dialog' => '')); } $edit .= " "; $edit .= LinkButton::create(_('Neues Objekt'), URLHelper::getURL('?create_object=' . $resObject->id)); $edit .= LinkButton::create(_('Neue Ebene'), URLHelper::getURL('?create_hierachie_level=' . $resObject->id)); } $edit.= " "; if ($weitere) { $edit .= LinkButton::create(_('Liste öffnen'), URLHelper::getURL('?open_list=' . $resObject->id)); } if ($_SESSION['resources_data']["move_object"] == $resObject->id) { $edit .= LinkButton::createCancel(_('Abbrechen'), URLHelper::getURL('?cancel_move=TRUE')); } else if ($perms == "admin") { $edit .= LinkButton::create(_('Verschieben'), URLHelper::getURL('?pre_move_object=' . $resObject->id)); } if (!$weitere && $perms == "admin" && $resObject->isDeletable()) { $edit .= LinkButton::create(_('Löschen'), '?kill_object=' . $resObject->id); } } $edit .= '</div></div>'; //Daten an Ausgabemodul senden (aus resourcesVisual) $this->showRow($icon, $link, $titel, $zusatz, $level, $lines, $weitere, $new, $open, $content, $edit); //in weitere Ebene abtauchen foreach ($children as $child_id) { if ($_SESSION['resources_data']['structure_opens'][$resource_id]) $this->showThreadLevel($child_id, $level + 1, $lines); } } }
function getMyRoomRequests($user_id = '', $semester_id = null, $only_not_closed = true, $single_request = null, $sem_type = null, $faculty = null, $tagged = null) { global $user, $perm, $RELATIVE_PATH_RESOURCES; $db = DBManager::get(); if (!$user_id) { $user_id = $user->id; } $parameters = array(); if ($only_not_closed) { $criteria = ' closed = 0 '; } else { $criteria = ' 1 '; } if ($single_request) { $criteria .= " AND rr.request_id = :request_id"; $parameters[':request_id'] = $single_request; } elseif ($semester_id) { $semester = Semester::find($semester_id); $sem_criteria = ' AND t.date BETWEEN ' . (int) $semester['beginn'] . ' AND ' . (int) $semester['ende']; if ($sem_type) { $criteria .= " AND EXISTS (SELECT * FROM seminare WHERE seminare.Seminar_id=rr.seminar_id AND seminare.status=" . (int) $sem_type . ") "; } if ($faculty) { $criteria .= " AND EXISTS (SELECT * FROM seminare INNER JOIN Institute USING(Institut_id) WHERE seminare.Seminar_id=rr.seminar_id AND fakultaets_id=" . DBManager::get()->quote($faculty) . ") "; } if ($tagged) { $criteria .= " AND NOT EXISTS (SELECT * FROM resources_requests_user_status WHERE resources_requests_user_status.request_id=rr.request_id AND resources_requests_user_status.user_id=" . DBManager::get()->quote($user_id) . ") "; } } $query0 = "SELECT request_id, closed, rr.resource_id\n FROM resources_requests AS rr\n WHERE %s "; $queries = array(); $queries[] = "SELECT request_id\n FROM resources_requests AS rr\n INNER JOIN termine t\n ON (t.termin_id = rr.termin_id AND t.date > UNIX_TIMESTAMP() {$sem_criteria})\n WHERE rr.termin_id <> '' AND %s"; $presence_type_clause = getPresenceTypeClause(); $queries[] = "SELECT DISTINCT request_id\n FROM resources_requests AS rr\n INNER JOIN termine AS t\n ON (rr.seminar_id = t.range_id AND\n t.date_typ IN {$presence_type_clause} AND\n t.date > UNIX_TIMESTAMP() {$sem_criteria})\n WHERE rr.termin_id = '' AND rr.metadate_id = '' AND %s "; $queries[] = "SELECT DISTINCT request_id\n FROM resources_requests AS rr\n INNER JOIN termine AS t ON (t.metadate_id = rr.metadate_id AND t.date > UNIX_TIMESTAMP() {$sem_criteria})\n WHERE rr.metadate_id <> '' AND %s "; $requests = array(); if (getGlobalPerms($user_id) == 'admin') { $query = sprintf($query0, $criteria); $statement = DBManager::get()->prepare($query); $statement->execute($parameters); while ($row = $statement->fetch(PDO::FETCH_ASSOC)) { $requests[$row['request_id']] = array('my_sem' => true, 'my_res' => strlen($row['resource_id']) > 0, 'closed' => $row['closed'], 'resource_id' => $row['resource_id']); } foreach ($queries as $q) { $query = sprintf($q, $criteria); $statement = DBManager::get()->prepare($query); $statement->execute($parameters); while ($request_id = $statement->fetchColumn()) { $requests[$request_id]['have_times'] = 1; } } } else { //load all my resources $resList = new ResourcesUserRoomsList($user_id, FALSE, FALSE); $my_res = $resList->getRooms(); if (count($my_res) > 0) { foreach (array_keys($my_res) as $res_id) { $object_perms = ResourceObjectPerms::Factory($res_id, $user_id); if (!$object_perms->havePerm('tutor')) { unset($my_res[$res_id]); } } } if (count($my_res) > 0) { $res_criteria = $criteria . " AND rr.resource_id IN (:resource_ids)"; $params = $parameters; $params[':resource_ids'] = array_keys($my_res); $query = sprintf($query0, $res_criteria); $statement = DBManager::get()->prepare($query); $statement->execute($params); while ($row = $statement->fetch(PDO::FETCH_ASSOC)) { $requests[$row['request_id']] = array('my_res' => true, 'closed' => $row['closed'], 'resource_id' => $row['resource_id']); } foreach ($queries as $q) { $query = sprintf($q, $res_criteria); $statement = DBManager::get()->prepare($query); $statement->execute($params); while ($request_id = $statement->fetchColumn()) { $requests[$request_id]['have_times'] = 1; } } //load all my seminars $my_sems = search_administrable_seminars(); if (count($my_sems) > 0) { $sem_criteria = $criteria . " AND rr.seminar_id IN (:seminar_ids)"; $params = $parameters; $params[':seminar_ids'] = array_keys($my_sems); $query = sprintf($query0, $sem_criteria); $statement = DBManager::get()->prepare($query); $statement->execute($params); while ($row = $statement->fetch(PDO::FETCH_ASSOC)) { $request_id = $row['request_id']; $requests[$request_id]['my_sem'] = true; $requests[$request_id]['closed'] = $row['closed']; $requests[$request_id]['resource_id'] = $row['resource_id']; } foreach ($queries as $q) { $query = sprintf($q, $sem_criteria); $statement = DBManager::get()->prepare($query); $statement->execute($params); while ($request_id = $statement->fetchColumn()) { $requests[$request_id]['have_times'] = 1; } } } } } return $requests; }