/**
* @author Matthew McNaney <mcnaney at gmail dot com>
* @version $Id$
*/
function users_update(&$content, $currentVersion)
{
$home_dir = PHPWS_Boost::getHomeDir();
switch ($currentVersion) {
case version_compare($currentVersion, '2.2.0', '<'):
$content[] = 'This package does not update versions under 2.2.0';
return false;
case version_compare($currentVersion, '2.2.1', '<'):
$content[] = '+ Fixed a bug causing conflicts between user and group permissions.';
case version_compare($currentVersion, '2.2.2', '<'):
$content[] = '+ Set username to the same character size in both users table and user_authorization.';
$content[] = '+ Fixed typo causing branch installation failure on Postgresql.';
case version_compare($currentVersion, '2.3.0', '<'):
$content[] = '<pre>
2.3.0 changes
------------------------
+ Added translate function calls in classes and my_page.php
+ my_page hides translation option if language defines disable selection
+ Added a unrestricted only parameter to Current_User\'s allow and
authorize functions
+ Dropped references from some constructors
+ Added error check to setPermissions function: won\'t accept empty
group id
+ Changed id default to zero.
+ Removed unneeded function parameter on getGroups
</pre>
';
case version_compare($currentVersion, '2.3.1', '<'):
$content[] = '<pre>';
$files = array('templates/my_page/user_setting.tpl');
userUpdateFiles($files, $content);
$content[] = '
2.3.1 changes
------------------------
+ Added ability for user to set editor preferences
</pre>
';
case version_compare($currentVersion, '2.3.2', '<'):
$content[] = '<pre>2.3.2 changes';
$files = array('img/users.png', 'templates/user_main.tpl');
userUpdateFiles($files, $content);
$content[] = '+ Added error check to login.
+ Changed user control panel icon.
+ Fixed template typo that broke IE login.
+ Removed fake French translation (delete mod/users/locale/fr_FR/ directory
+ Permissions are now ordered alphabetically.
+ isUser will now always return false if passed a zero id.
+ Added new function requireLogin that forwards a user to the login
screen
</pre>';
case version_compare($currentVersion, '2.4.0', '<'):
if (!PHPWS_DB::isTable('users_pw_reset')) {
$new_table = 'CREATE TABLE users_pw_reset (
user_id INT NOT NULL default 0,
authhash CHAR( 32 ) NOT NULL default 0,
timeout INT NOT NULL default 0,
);';
if (!PHPWS_DB::import($new_table)) {
$content[] = 'Unable to create users_pw_reset table.';
return false;
} else {
$content[] = 'Created new table: users_pw_reset';
}
}
$files = array('templates/forms/reset_password.tpl', 'templates/forms/forgot.tpl', 'conf/config.php', 'templates/usermenus/top.tpl', 'templates/forms/settings.tpl', 'templates/my_page/user_setting.tpl');
$content[] = '<pre>';
userUpdatefiles($files, $content);
if (!PHPWS_Boost::inBranch()) {
$content[] = file_get_contents(PHPWS_SOURCE_DIR . 'mod/users/boost/changes/2_4_0.txt');
}
$content[] = '</pre>';
case version_compare($currentVersion, '2.4.1', '<'):
$content[] = '<pre>';
$files = array('conf/languages.php');
userUpdateFiles($files, $content);
$content[] = '
2.4.1 changes
------------------------
+ Default item id on permission check functions is now zero instead of
null. This will make checking permissions a little easier on new items.
+ Bug #1690657 - Changed group select js property to onclick instead
of onchange. Thanks singletrack.
+ Changed the language abbreviation for Danish
</pre>
';
case version_compare($currentVersion, '2.4.2', '<'):
$content[] = '<pre>';
$files = array('templates/usermenus/Default.tpl');
userUpdateFiles($files, $content);
if (!PHPWS_Boost::inBranch()) {
$content[] = file_get_contents(PHPWS_SOURCE_DIR . 'mod/users/boost/changes/2_4_2.txt');
}
$content[] = '</pre>';
case version_compare($currentVersion, '2.4.3', '<'):
$content[] = '<pre>';
if (!PHPWS_Boost::inBranch()) {
$content[] = file_get_contents(PHPWS_SOURCE_DIR . 'mod/users/boost/changes/2_4_3.txt');
}
$content[] = '</pre>';
case version_compare($currentVersion, '2.4.4', '<'):
$content[] = '<pre>';
$source_dir = PHPWS_SOURCE_DIR . 'mod/users/javascript/';
$dest_dir = $home_dir . 'javascript/modules/users/';
if (PHPWS_File::copy_directory($source_dir, $dest_dir, true)) {
$content[] = "--- Successfully copied {$source_dir} to {$dest_dir}";
} else {
$content[] = "--- Could not copy {$source_dir} to {$dest_dir}";
}
$files = array('conf/error.php', 'templates/forms/permissions.tpl', 'templates/forms/permission_pop.tpl');
userUpdateFiles($files, $content);
if (!PHPWS_Boost::inBranch()) {
$content[] = file_get_contents(PHPWS_SOURCE_DIR . 'mod/users/boost/changes/2_4_4.txt');
}
$content[] = '</pre>';
case version_compare($currentVersion, '2.4.5', '<'):
$content[] = '<pre>';
$files = array('conf/error.php', 'conf/languages.php', 'templates/forms/settings.tpl', 'templates/manager/groups.tpl');
userUpdateFiles($files, $content);
if (!PHPWS_Boost::inBranch()) {
$content[] = file_get_contents(PHPWS_SOURCE_DIR . 'mod/users/boost/changes/2_4_5.txt');
}
$content[] = '</pre>';
case version_compare($currentVersion, '2.4.6', '<'):
$content[] = '<pre>';
$files = array('templates/forms/forgot.tpl');
userUpdateFiles($files, $content);
if (!PHPWS_Boost::inBranch()) {
$content[] = '
2.4.6 changes
-------------------
+ Added error check to permission menu.
+ Error for missing user groups now reports user id.
+ Forgot password will work if CAPTCHA is disabled.
+ Using new savePermissions function instead of save.
+ Current_User was calling giveItemPermissions incorrectly.';
}
$content[] = '</pre>';
case version_compare($currentVersion, '2.4.7', '<'):
$content[] = '<pre>
2.4.7 changes
-------------------
+ Removed global authorization from change password check since it is not
written yet.
</pre>';
case version_compare($currentVersion, '2.4.9', '<'):
$content[] = '<pre>';
if (PHPWS_Core::isBranch() || PHPWS_Boost::inBranch()) {
$user_db = new PHPWS_DB('users');
$user_db->addWhere('deity', 1);
$user_db->addColumn('id');
$user_db->addColumn('username');
$user_db->setIndexBy('id');
$user_ids = $user_db->select('col');
if (!empty($user_ids) && !PHPWS_Error::logIfError($user_ids)) {
$group_db = new PHPWS_DB('users_groups');
foreach ($user_ids as $id => $username) {
$group_db->addWhere('user_id', $id);
$result = $group_db->select('row');
if (!$result) {
$group_db->reset();
$group_db->addValue('active', 1);
$group_db->addValue('name', $username);
$group_db->addValue('user_id', $id);
if (!PHPWS_Error::logIfError($group_db->insert())) {
$content[] = '--- Created missing group for user: '******'2.4.9 changes
-----------------
+ Raised sql character limit in default username, display_name, and
group name installs.
+ Fixed bug with forbidden usernames
+ Added a function to group to remove its permissions upon deletion.
+ Bookmark won\'t return a user to a authkey page if their session dies.
+ Fixed bug #1850815 : unknown function itemIsAllowed in Permission.php
+ My Pages are unregistered on module removal.
+ My Page tab stays fixed.
</pre>';
case version_compare($currentVersion, '2.5.0', '<'):
$content[] = '<pre>';
$files = array('templates/forms/memberlist.tpl', 'templates/forms/userForm.tpl', 'javascript/generate/head.js', 'templates/manager/groups.tpl', 'templates/manager/users.tpl');
userUpdateFiles($files, $content);
$content[] = '2.5.0 changes
-------------------
+ Members\' names alphabetized
+ New user email notification added.
+ Fixed member listing dropping names past 10.
+ Added random password generator on user edit form.
+ Removed reference from Action.php causing php notice.
+ Changed redundant static method call in Permission.
+ Added dash to allowed display name characters.
+ Added \\pL to display name characters.
+ Users will now query modules should a user get deleted.
+ Added an error check to Permissions.
+ Users will now look for remove_user.php in all modules\' inc/
directory in order to run the remove_user function.
+ Using pager\'s addSortHeaders in user and group listing
+ Added display name to pager search.
</pre>';
case version_compare($currentVersion, '2.6.0', '<'):
$content[] = '<pre>';
Users_Permission::registerPermissions('users', $content);
$db = new PHPWS_DB('users_auth_scripts');
$db->addWhere('filename', 'local.php');
$db->addColumn('id');
$auth_id = $db->select('one');
PHPWS_Settings::set('users', 'local_script', $auth_id);
PHPWS_Settings::save('users');
$files = array('conf/languages.php', 'templates/my_page/user_setting.tpl', 'templates/usermenus/css.tpl', 'img/permission.png', 'templates/forms/userForm.tpl');
userUpdateFiles($files, $content);
if (!PHPWS_Boost::inBranch()) {
$content[] = file_get_contents(PHPWS_SOURCE_DIR . 'mod/users/boost/changes/2_6_0.txt');
}
$content[] = '</pre>';
case version_compare($currentVersion, '2.6.1', '<'):
$content[] = '<pre>2.6.1 changes
------------------
+ requireLogin now reroutes dependant on the user authorization
+ If the user\'s group is missing when they are updated, a new one is
properly created. Prior to the fix, a new group was created without an
assigned user id.
+ Added error message to my page if update goes bad.
</pre>';
case version_compare($currentVersion, '2.6.2', '<'):
$content[] = '<pre>';
$files = array('templates/forms/settings.tpl');
userUpdateFiles($files, $content);
$content[] = '2.6.2 changes
------------------
+ Moved error file to inc/
+ Blank passwords forbidden.
+ Error check added to cosign authorization.
+ php fiveasized the classes.
+ Added some needed error logging to user creation problems
+ Added ability for default user groups to be set for admin created
and newly joined users.
+ Fixed testing on addMembers. Previous code was nonsensical.
+ _user_group id gets set upon a user object save.
</pre>';
case version_compare($currentVersion, '2.6.3', '<'):
$content[] = '<pre>';
$files = array('img/deity.gif', 'img/delete.png', 'img/edit.png', 'img/man.gif', 'img/key.png', 'img/members.png', 'templates/forms/authorization.tpl', 'templates/forms/settings.tpl', 'templates/manager/users.tpl');
userUpdateFiles($files, $content);
$db = new PHPWS_DB('users_auth_scripts');
PHPWS_Error::logIfError($db->addTableColumn('default_group', 'int not null default 0'));
$content[] = '2.6.3 changes
------------------
+ Added icons for admin options under manage users and groups
+ Disabled active link in groups listing
+ Authorization scripts now have default group assignments. New
members will assigned to a group based on their authorization
method.
+ Removed default group by user or admin from settings.
+ Added ability to view users by whether or not they are in a
particular group.
+ Added pager caching to group listing
+ Display name may now not be the same as another user\'s username
+ Extended user name error to include display name
+ Added empty password check to ldap script
</pre>';
case version_compare($currentVersion, '2.6.4', '<'):
$db = new PHPWS_DB('users_auth_scripts');
PHPWS_Error::logIfError($db->addTableColumn('default_group', 'int not null default 0'));
$content[] = '<pre>2.6.4 changes
-------------------------
+ Added missing column to install.sql</pre>';
case version_compare($currentVersion, '2.6.5', '<'):
$content[] = '<pre>';
userUpdateFiles(array('conf/languages.php'), $content);
$content[] = '2.6.5 changes
-------------------------
+ Added missing column to install.sql</pre>';
case version_compare($currentVersion, '2.6.6', '<'):
$content[] = '<pre>';
userUpdateFiles(array('templates/forms/userForm.tpl'), $content);
$content[] = '2.6.6 changes
-----------------------
+ Graceful recovery from broken authentication scripts.
+ Authorization script made deity only
+ Fixed default groups on external authentication
+ Deleted auth scripts will update users under it to use local instead.
+ The user constructor was trying to load the authorization script on
failed users. Thanks Verdon.</pre>';
case version_compare($currentVersion, '2.7.0', '<'):
$content[] = '<pre>2.7.0 changes
-------------------------
+ Usernames and passwords can not be changed on non local users
+ Added switch to settings to prevent admins from making new users
+ Site admin can be set by non-deities again
+ Fixed bug with users able to change password on alternate auth.
+ Fixed some bugs with user creation and editing with alternate authentication.
+ Hiding permissions and members in create group form
+ Icon class implemented.
+ Strict PHP 5 changes made.
</pre>';
case version_compare($currentVersion, '2.7.1', '<'):
$content[] = '<pre>2.7.1 changes
-------------------------
+ Improved cosign script
+ Fixed errors getting dropped without logging.
</pre>';
case version_compare($currentVersion, '2.7.2', '<'):
$content[] = '<pre>2.7.2 changes
-------------------------
+ Fixed multiple group member bug.
+ Cleaned up cosign authentication.
+ Current_User requireLogin to use login_link instead of login_url
+ New User form now properly respects the "settings" permission for showing
user authentication script option.
+ User constuction allow username parameter.
+ Trim whitespace from user email addresses. Don\'t modify the member variable
unless all the sanity checks passed.
</pre>';
case version_compare($currentVersion, '2.7.3', '<'):
PHPWS_Core::initModClass('users', 'Action.php');
User_Action::checkPermissionTables();
$content[] = '<pre>2.7.3 changes
------------------------
+ Update permissions
</pre>';
case version_compare($currentVersion, '2.7.4', '<'):
$content[] = '<pre>2.7.4 changes
------------------------
+ Fixed 500 error on My Page
</pre>';
case version_compare($currentVersion, '2.7.5', '<'):
$content[] = '<pre>2.7.5 changes
------------------------
+ Loosened group name restrictions
+ User edit page shows group membership
</pre>';
case version_compare($currentVersion, '2.7.6', '<'):
$content[] = '<pre>2.7.6 changes
------------------------
+ Updated icons to Font Awesome
+ Email addresses may now be used as user names.
+ Static method call fixed.
+ Added exception error for missing authorization file.
+ My Page no longer is using tabs as other modules use of My Page have been removed.
+ css.tpl template rewritten. Login now works closer with authentication script.
- drop down no longer contains Home or Control Panel. Account link added - takes
user to their account page to change their password.
</pre>';
case version_compare($currentVersion, '2.8.0', '<'):
$content[] = <<<EOF
<pre>2.8.0 changes
-----------------
+ Added suggested bootstrap classes from TRF
+ Removed call to nonexistent method.
+ Moved icons to left and set admin-icons class to column.
+ Added FA icon here for mini admin
+ Changed to ensure users_auth_scripts table was created properly
+ Session timeouts are now tracked. Warning to user given before failure.
</pre>
EOF;
case version_compare($currentVersion, '2.8.1', '<'):
\PHPWS_Settings::set('users', 'session_warning', 0);
\PHPWS_Settings::save('users');
$content[] = <<<EOF
<pre>2.8.1 changes
-----------------
+ Changing default on user session to false. If you want it enabled, do so in settings.
</pre>
EOF;
case version_compare($currentVersion, '2.8.2', '<'):
$content[] = <<<EOF
<pre>2.8.2 changes
-----------------
+ Bug Fix: Unstyled permission pop up.
</pre>
EOF;
}
// End of switch statement
return TRUE;
}
public static function adminAction()
{
PHPWS_Core::initModClass('users', 'Group.php');
$title = $message = $content = null;
if (!Current_User::allow('users')) {
PHPWS_User::disallow(dgettext('users', 'Tried to perform an admin function in Users.'));
return;
}
$message = User_Action::getMessage();
$panel = User_Action::cpanel();
$panel->enableSecure();
if (isset($_REQUEST['command'])) {
$command = $_REQUEST['command'];
} else {
$command = $panel->getCurrentTab();
}
if (isset($_REQUEST['user_id'])) {
$user = new PHPWS_User((int) $_REQUEST['user_id']);
} else {
$user = new PHPWS_User();
}
if (isset($_REQUEST['group_id'])) {
$group = new PHPWS_Group((int) $_REQUEST['group_id']);
} else {
$group = new PHPWS_Group();
}
switch ($command) {
/** Form cases * */
/** User Forms * */
case 'new_user':
if (PHPWS_Settings::get('users', 'allow_new_users') || Current_User::isDeity()) {
$panel->setCurrentTab('new_user');
$title = dgettext('users', 'Create User');
$content = User_Form::userForm($user);
} else {
Current_User::disallow();
}
break;
case 'search_members':
self::searchMembers();
exit;
break;
case 'manage_users':
$title = dgettext('users', 'Manage Users');
$content = User_Form::manageUsers();
break;
case 'editUser':
$title = dgettext('users', 'Edit User');
$user = new PHPWS_User($_REQUEST['user_id']);
$content = User_Form::userForm($user);
break;
case 'deleteUser':
if (!Current_User::secured('users', 'delete_users')) {
Current_User::disallow();
return;
}
$user->kill();
PHPWS_Core::goBack();
break;
case 'deify_user':
if (!Current_User::authorized('users') || !Current_User::isDeity()) {
Current_User::disallow();
return;
}
$user->deity = 1;
$user->save();
PHPWS_Core::goBack();
break;
case 'mortalize_user':
if (!Current_User::authorized('users') || !Current_User::isDeity()) {
Current_User::disallow();
return;
}
$user->deity = 0;
$user->save();
PHPWS_Core::goBack();
break;
case 'authorization':
case 'postAuthorization':
case 'dropAuthScript':
if (!Current_User::isDeity()) {
Current_User::disallow();
}
if ($command == 'dropAuthScript' && isset($_REQUEST['script_id'])) {
User_Action::dropAuthorization($_REQUEST['script_id']);
} elseif ($command == 'postAuthorization') {
User_Action::postAuthorization();
$message = dgettext('users', 'Authorization updated.');
}
$title = dgettext('users', 'Authorization');
$content = User_Form::authorizationSetup();
break;
case 'editScript':
$title = dgettext('users', 'Edit Authorization Script');
// no reason to edit scripts yet
break;
case 'setUserPermissions':
if (!Current_User::authorized('users', 'edit_permissions')) {
PHPWS_User::disallow();
return;
}
if (!$user->id) {
PHPWS_Core::errorPage('404');
}
PHPWS_Core::initModClass('users', 'Group.php');
$title = dgettext('users', 'Set User Permissions') . ' : ' . $user->getUsername();
$content = User_Form::setPermissions($user->getUserGroup());
break;
case 'deactivateUser':
if (!Current_User::authorized('users')) {
PHPWS_User::disallow();
return;
}
User_Action::activateUser($_REQUEST['user_id'], false);
PHPWS_Core::goBack();
break;
case 'activateUser':
if (!Current_User::authorized('users')) {
PHPWS_User::disallow();
return;
}
User_Action::activateUser($_REQUEST['user_id'], true);
PHPWS_Core::goBack();
break;
/** End User Forms * */
/* * ******************** Group Forms *********************** */
/** End User Forms * */
/* * ******************** Group Forms *********************** */
case 'setGroupPermissions':
if (!Current_User::authorized('users', 'edit_permissions')) {
PHPWS_User::disallow();
return;
}
PHPWS_Core::initModClass('users', 'Group.php');
$title = dgettext('users', 'Set Group Permissions') . ' : ' . $group->getName();
$content = User_Form::setPermissions($_REQUEST['group_id'], 'group');
break;
case 'new_group':
$title = dgettext('users', 'Create Group');
$content = User_Form::groupForm($group);
break;
case 'edit_group':
$title = dgettext('users', 'Edit Group');
$content = User_Form::groupForm($group);
break;
case 'remove_group':
$group->kill();
$title = dgettext('users', 'Manage Groups');
$content = User_Form::manageGroups();
break;
case 'manage_groups':
$panel->setCurrentTab('manage_groups');
PHPWS_Core::killSession('Last_Member_Search');
$title = dgettext('users', 'Manage Groups');
$content = User_Form::manageGroups();
break;
case 'manageMembers':
PHPWS_Core::initModClass('users', 'Group.php');
$title = dgettext('users', 'Manage Members') . ' : ' . $group->getName();
$content = User_Form::manageMembers($group);
break;
case 'postMembers':
if (!Current_User::authorized('users', 'add_edit_groups')) {
Current_User::disallow();
return;
}
$title = dgettext('users', 'Manage Members') . ' : ' . $group->getName();
$content = User_Form::manageMembers($group);
break;
/* * *********************** End Group Forms ****************** */
/* * *********************** Misc Forms *********************** */
/* * *********************** End Group Forms ****************** */
/* * *********************** Misc Forms *********************** */
case 'settings':
if (!Current_User::authorized('users', 'settings')) {
Current_User::disallow();
return;
}
$title = dgettext('users', 'Settings');
$content = User_Form::settings();
break;
/** End Misc Forms * */
/** Action cases * */
/** End Misc Forms * */
/** Action cases * */
case 'deify':
if (!Current_User::isDeity()) {
Current_User::disallow();
return;
}
$user = new PHPWS_User($_REQUEST['user']);
if (isset($_GET['authorize'])) {
if ($_GET['authorize'] == 1 && Current_User::isDeity()) {
$user->setDeity(true);
$user->save();
User_Action::sendMessage(dgettext('users', 'User deified.'), 'manage_users');
break;
} else {
User_Action::sendMessage(dgettext('users', 'User remains a lowly mortal.'), 'manage_users');
break;
}
} else {
$content = User_Form::deify($user);
}
break;
case 'mortalize':
if (!Current_User::isDeity()) {
Current_User::disallow();
return;
}
$user = new PHPWS_User($_REQUEST['user']);
if (isset($_GET['authorize'])) {
if ($_GET['authorize'] == 1 && Current_User::isDeity()) {
$user->setDeity(false);
$user->save();
$content = dgettext('users', 'User transformed into a lowly mortal.') . '<hr />' . User_Form::manageUsers();
break;
} else {
$content = dgettext('users', 'User remains a deity.') . '<hr />' . User_Form::manageUsers();
break;
}
} else {
$content = User_Form::mortalize($user);
}
break;
case 'postUser':
if (isset($_POST['user_id'])) {
if (!Current_User::authorized('users', 'edit_users')) {
PHPWS_User::disallow();
return;
}
} else {
// posting new user
if (!Current_User::authorized('users')) {
PHPWS_User::disallow();
return;
}
}
$result = User_Action::postUser($user);
if ($result === true) {
$new_user = !(bool) $user->id;
$user->setActive(true);
$user->setApproved(true);
if (PHPWS_Error::logIfError($user->save())) {
$title = dgettext('users', 'Sorry');
$content = dgettext('users', 'An error occurred when trying to save the user. Check your logs.');
break;
}
if ($new_user) {
User_Action::assignDefaultGroup($user);
if (isset($_POST['group_add']) && is_array($_POST['group_add'])) {
foreach ($_POST['group_add'] as $group_id) {
$group = new PHPWS_Group($group_id);
$group->addMember($user->_user_group);
$group->save();
}
}
}
$panel->setCurrentTab('manage_users');
if (isset($_POST['notify_user'])) {
self::notifyUser($user, $_POST['password1']);
}
if (isset($_POST['user_id'])) {
User_Action::sendMessage(dgettext('users', 'User updated.'), 'manage_users');
} elseif (Current_User::allow('users', 'edit_permissions')) {
if (isset($_POST['notify_user'])) {
User_Action::sendMessage(dgettext('users', 'New user created and notified.'), 'setUserPermissions&user_id=' . $user->id);
} else {
User_Action::sendMessage(dgettext('users', 'New user created.'), 'setUserPermissions&user_id=' . $user->id);
}
} else {
User_Action::sendMessage(dgettext('users', 'User created.'), 'new_user');
}
} else {
$message = implode('<br />', $result);
if (isset($_POST['user_id'])) {
$title = dgettext('users', 'Edit User');
} else {
$title = dgettext('users', 'Create User');
}
$content = User_Form::userForm($user);
}
break;
case 'postPermission':
if (!Current_User::authorized('users', 'edit_permissions')) {
PHPWS_User::disallow();
return;
}
User_Action::postPermission();
User_Action::sendMessage(dgettext('users', 'Permissions updated'), $panel->getCurrentTab());
break;
case 'postGroup':
if (!Current_User::authorized('users', 'add_edit_groups')) {
PHPWS_User::disallow();
return;
}
PHPWS_Core::initModClass('users', 'Group.php');
$result = User_Action::postGroup($group);
if (PHPWS_Error::isError($result)) {
$message = $result->getMessage();
$title = isset($group->id) ? dgettext('users', 'Edit Group') : dgettext('users', 'Create Group');
$content = User_form::groupForm($group);
} else {
$result = $group->save();
if (PHPWS_Error::logIfError($result)) {
$message = dgettext('users', 'An error occurred when trying to save the group.');
} else {
$message = dgettext('users', 'Group created.');
}
User_Action::sendMessage($message, 'manage_groups');
}
break;
case 'addMember':
if (!Current_User::authorized('users', 'add_edit_groups')) {
PHPWS_User::disallow();
return;
}
PHPWS_Core::initModClass('users', 'Group.php');
$group->addMember($_REQUEST['member']);
$group->save();
unset($_SESSION['Last_Member_Search']);
User_Action::sendMessage(dgettext('users', 'Member added.'), 'manageMembers&group_id=' . $group->id);
break;
case 'dropMember':
if (!Current_User::authorized('users', 'add_edit_groups')) {
PHPWS_User::disallow();
return;
}
PHPWS_Core::initModClass('users', 'Group.php');
$group->dropMember($_REQUEST['member']);
$group->save();
unset($_SESSION['Last_Member_Search']);
User_Action::sendMessage(dgettext('users', 'Member removed.'), 'manageMembers&group_id=' . $group->id);
break;
case 'update_settings':
if (!Current_User::authorized('users', 'settings')) {
PHPWS_User::disallow();
return;
}
$title = dgettext('users', 'Settings');
$result = User_Action::update_settings();
if ($result === true) {
$message = dgettext('users', 'User settings updated.');
} else {
$message = $result;
}
$content = User_Form::settings();
break;
case 'check_permission_tables':
if (!Current_User::authorized('users', 'settings')) {
PHPWS_User::disallow();
return;
}
$title = dgettext('users', 'Register Module Permissions');
$content = User_Action::checkPermissionTables();
break;
default:
PHPWS_Core::errorPage('404');
break;
}
$template['CONTENT'] = $content;
$template['TITLE'] = $title;
$template['MESSAGE'] = $message;
$final = PHPWS_Template::process($template, 'users', 'main.tpl');
$panel->setContent($final);
Layout::add(PHPWS_ControlPanel::display($panel->display()));
}
