function admin_activate($uid, $active = 1) { Configure::write('debug', '0'); //turn debugging off; debugging breaks ajax $aro = new Aro(); //find the id of this user's aco $aro->create(); $user_aro = $aro->find('first', array('conditions' => array('model' => 'User', 'foreign_key' => $uid), 'fields' => array('id'))); $new_aro = array('model' => 'User', 'foreign_key' => $uid); if ($user_aro) { $new_aro['id'] = $user_aro['Aro']['id']; } if ($active) { // add this user to the users Aro group // find the id of the users group $aro->create(); $users_aro = $aro->findByAlias('users'); $users_aro_id = $users_aro['Aro']['id']; $new_aro['parent_id'] = $users_aro_id; } else { $new_aro['parent_id'] = NULL; } $aro->save($new_aro); $user['id'] = $uid; $user['active'] = $active; $this->User->save($user); }
function activateAccount() { $this->autoLayout = false; $this->autoRender = false; if (empty($this->params['url']['key'])) { $this->redirect(array('controller' => 'home', 'action' => 'index'), null, true); } $key = $this->params['url']['key']; $data = $this->Pending->findByKey($key); if ($data) { $uid = $data['Pending']['user_id']; $user = $this->User->findById($uid); if ($user) { $user['User']['pending'] = 'no'; $user['User']['secret'] = $this->User->mksecret(); $user['User']['passkey'] = sha1($user['User']['username'] . mktime() . $user['User']['username']); $user['User']['group_id'] = 3; $this->User->save($user); $this->Pending->remove($data['Pending']['id']); $aro = new Aro(); $arodata = $aro->findByForeign_key($uid); $newgroup = $aro->find('model LIKE "Group" AND foreign_key = 3'); $arodata['Aro']['parent_id'] = $newgroup['Aro']['id']; $aro->save($arodata); $this->ZTAuth->fields = array('username' => 'username', 'password' => 'sha_hash'); if ($this->ZTAuth->login($user['User'])) { $this->redirect(array('controller' => 'home', 'action' => 'index'), null, true); } } } }
function edit($id = null) { $this->set("modul", "page"); $back['title'] = 'Back to Group List'; $back['url'] = '/groups/index'; $this->set("back", $back); if (!$id && empty($this->data)) { $this->Session->setFlash(__('Invalid Group', true)); $this->redirect(array('action' => 'index')); } if (!empty($this->data)) { if ($this->Group->save($this->data)) { $aro = new Aro(); $group = $aro->find(array("model" => "Group", "foreign_key" => $this->data['Group']['id'])); $group['Aro']['alias'] = $this->data['Group']['name']; $aro->save($group); $this->Session->setFlash(__('The Group has been saved', true)); $this->redirect(array('action' => 'index')); } else { $this->Session->setFlash(__('The Group could not be saved. Please, try again.', true)); } } if (empty($this->data)) { $this->data = $this->Group->read(null, $id); } }
function permissions($id) { // primero actualiza los permisos $this->update_acos(); // importando las clases App::import('Model', 'UserGroup'); App::import('Model', 'Aro'); App::import('Model', 'ArosAco'); // consulta todos los acos $aco = new Aco(); $this->set('acos', $aco->find('threaded', array('recursive' => 0))); // consulta el id del aro $aro = new Aro(); $aro_row = $aro->find('first', array('conditions' => array('model' => 'UserGroup', 'foreign_key' => $id))); $this->UserGroup = new UserGroup(); $this->set('userGroup', $this->UserGroup->read(null, $id)); $this->set('aro_foreignkey', $id); if (!empty($this->data)) { // guarda los permisos $group =& $this->UserGroup; $group->id = $id; $aro_aco_del = new ArosAco(); foreach ($this->data['Acos'] as $aco_id => $mode) { switch ($mode['option']) { case 1: // allow $this->Acl->allow($group, $mode['url']); break; case 2: // deny $this->Acl->deny($group, $mode['url']); break; default: // lo borra $aro_aco_del->deleteAll(array('aro_id' => $aro_row['Aro']['id'], 'aco_id' => $aco_id)); break; } } $this->Session->setFlash(__('UserGroup permissions changed successfully', true)); $this->redirect(array('action' => 'index')); } // consulta la relacion de aros_acos $aros_aco = new ArosAco(); $this->set('aros_acos', $aros_aco->find('all', array('conditions' => array('aro_id' => $aro_row['Aro']['id'])))); }
/** * Test After Delete * * @return void * @access public */ function testAfterDelete() { $aroData = array('Aro' => array('model' => 'AclPerson', 'foreign_key' => 2, 'parent_id' => null)); $this->Aro->save($aroData); $Person =& new AclPerson(); $data = array('AclPerson' => array('name' => 'Trent', 'mother_id' => 2, 'father_id' => 3)); $Person->save($data); $id = $Person->id; $node = $Person->node(); $this->assertEqual(count($node), 2); $this->assertEqual($node[0]['Aro']['parent_id'], 5); $this->assertEqual($node[1]['Aro']['parent_id'], null); $Person->delete($id); $result = $this->Aro->find('first', array('conditions' => array('Aro.model' => 'AclPerson', 'Aro.foreign_key' => $id))); $this->assertTrue(empty($result)); $result = $this->Aro->find('first', array('conditions' => array('Aro.model' => 'AclPerson', 'Aro.foreign_key' => 2))); $this->assertFalse(empty($result)); $data = array('AclPerson' => array('name' => 'Trent', 'mother_id' => 2, 'father_id' => 3)); $Person->save($data); $id = $Person->id; $Person->delete(2); $result = $this->Aro->find('first', array('conditions' => array('Aro.model' => 'AclPerson', 'Aro.foreign_key' => $id))); $this->assertTrue(empty($result)); $result = $this->Aro->find('first', array('conditions' => array('Aro.model' => 'AclPerson', 'Aro.foreign_key' => 2))); $this->assertTrue(empty($result)); }
/** * modify * * @access public * @return void */ function modify() { Configure::write('debug', '0'); $this->layout = 'ajax'; if ($this->Acl->check($this->ZTAuth->user('username'), "Users::edit", '*')) { if ($this->User->save($this->data['User'])) { $aro = new Aro(); $arodata = $aro->findByForeign_Key($this->data['User']['id']); // try to find group ARO $newgroup = $aro->find('model LIKE "Group" AND foreign_key =' . $this->data['User']['group_id']); if (empty($newgroup)) { $this->set('result', '{success:false, msg:"Group ARO not found"}'); return; } // update ARO fields $arodata['Aro']['model'] = 'User'; $arodata['Aro']['alias'] = $this->data['User']['username']; $arodata['Aro']['foreign_key'] = $this->data['User']['id']; $arodata['Aro']['parent_id'] = $newgroup['Aro']['id']; // create new ARO for user if it's not already exists if (empty($arodata['Aro']['id'])) { $aro->create(); } $aro->save($arodata); $this->set('result', '{success:true}'); } else { $this->set('result', '{success:false}'); } } else { $this->set('result', '{success:false, msg:"You can not do that"}'); } }
/** * Get an array of access-control links between the given Aro and Aco * * @param mixed $aro * @param mixed $aco * @return array * @access public */ function getAclLink($aro, $aco) { $Aro = new Aro(); $Aco = new Aco(); $Link = new ArosAco(); $obj = array(); $obj['Aro'] = $Aro->find($Aro->_resolveID($aro)); $obj['Aco'] = $Aco->find($Aco->_resolveID($aco)); $obj['Aro'] = $obj['Aro']['Aro']; $obj['Aco'] = $obj['Aco']['Aco']; if ($obj['Aro'] == null || count($obj['Aro']) == 0 || $obj['Aco'] == null || count($obj['Aco']) == 0) { return false; } return array('aro' => $obj['Aro']['id'], 'aco' => $obj['Aco']['id'], 'link' => $Link->findAll(array('ArosAco.aro_id' => $obj['Aro']['id'], 'ArosAco.aco_id' => $obj['Aco']['id']))); }
function beforeFilter() { $this->Auth->loginRedirect = '/'; // for the authorizations $this->Auth->authorize = 'actions'; $this->Auth->actionPath = 'controllers/'; // if the user is not logged and it requests the root '/' url // redirects to '/login' if (!$this->Session->read('Auth.User.id')) { if ($this->params['url']['url'] == '/') { $this->redirect('/login'); } } App::import('Model', 'User'); if ($this->Session->read('Auth.User.id')) { if ($this->params['url']['url'] == '/') { $user = new User(); $user = $user->read(null, $this->Session->read('Auth.User.id')); $this->redirect($user['UserGroup']['home_url']); } } if ($this->layout == 'default' && $this->Session->read('Auth.User.id')) { // creating an array with all the permissions for this user // and in the view we check if it has permissions to show the link // getting all the acos with permissions App::import('Model', 'Aco'); App::import('Model', 'Aro'); App::import('Model', 'ArosAco'); $aco = new Aco(); $aro = new Aro(); $aros_aco = new ArosAco(); $acos = $aco->find('threaded', array('recursive' => 0)); // consulta el id del aro $aro_row = $aro->find('first', array('conditions' => array('model' => 'UserGroup', 'foreign_key' => $this->Session->read('Auth.User.user_group_id')))); // consulta la relacion de aros_acos $aros_acos = $aros_aco->find('all', array('conditions' => array('aro_id' => $aro_row['Aro']['id']))); $this->set('acl_lists', $this->AclGetList->get($this->Session->read('Auth.User.user_group_id'), $acos, $aros_acos)); } // rendering the menu for "default" layout // checking if there is a logged user if ($this->layout == 'default' && $this->Session->read('Auth.User.id')) { // renders the menu according the user group App::import('Model', 'Menu'); $menu = new Menu(); $this->set('layout_menus', $menu->find_for_show($this->Session->read('Auth.User.user_group_id'))); // selecting the current menu $this->set('layout_current', $this->params['url']['url']); //$route = Router::parse('/'.$this->params['url']['url']); //$aco_alias = 'controllers/'.$route['controller'].'/'.$route['action']; //$this->set('layout_acos', $this->Acl->Aco->node('controllers/'.$route['controller'].'/'.$route['action'])); // asks the controller for selecting the correct link in the menu $cont = split('_', $this->params['controller']); $newcont = ''; foreach ($cont as $c) { $newcont .= ucfirst($c); } $current_aco = $this->Acl->Aco->node('controllers/' . $newcont . '/' . $this->params['action']); $this->set('layout_aco_id', $current_aco[0]['Aco']['id']); //$route = Router::parse('/profile'); //$this->set('menu_url', '/'.$this->params['controller'].'/'.$this->params['action']); if ($this->Session->read('Auth.User.type') == 'web') { $user = new User(); $user->id = $this->Session->read('Auth.User.id'); $user->updatecredit_expiration(); $this->set('user_balance', $user->getBalance()); $this->set('user_expirationdate', $user->getExpirationDate()); } } }
function admin_activate($uid, $active = 1) { Configure::write('debug', '0'); //turn debugging off; debugging breaks ajax $aro = new Aro(); //find the id of this user's aco $aro->create(); $user_aro = $aro->find('first', array('conditions' => array('model' => 'User', 'foreign_key' => $uid), 'fields' => array('id'))); $new_aro = array('model' => 'User', 'foreign_key' => $uid); if ($user_aro) { $new_aro['id'] = $user_aro['Aro']['id']; } if ($active) { // add this user to the users Aro group // find the id of the users group $aro->create(); $users_aro = $aro->findByAlias('users'); $users_aro_id = $users_aro['Aro']['id']; $new_aro['parent_id'] = $users_aro_id; $this->User->addtotimeline(null, null, 'users-admin_activate', $uid); } else { $new_aro['parent_id'] = NULL; } $aro->save($new_aro); $user['id'] = $uid; $user['active'] = $active; $this->User->save($user); $referer = $this->params['url']['r']; if ($referer) { $this->Session->setFlash('User activation status changed.', 'admin_flash_message_success'); $this->redirect($referer); } }