/**
* Show update permissions page
*
* @param void
* @return null
*/
function update_permissions()
{
$user = Users::findById(get_id());
if (!$user instanceof User) {
flash_error(lang('user dnx'));
$this->redirectToReferer(get_url('dashboard'));
}
// if
if (!$user->canUpdatePermissions(logged_user())) {
flash_error(lang('no access permissions'));
$this->redirectToReferer(get_url('dashboard'));
}
// if
$company = $user->getCompany();
if (!$company instanceof Company) {
flash_error(lang('company dnx'));
$this->redirectToReferer(get_url('dashboard'));
}
// if
$projects = $company->getProjects();
if (!is_array($projects) || !count($projects)) {
flash_error(lang('no projects owned by company'));
$this->redirectToReferer($company->getViewUrl());
}
// if
$permissions = PermissionManager::getPermissionsText();
$redirect_to = array_var($_GET, 'redirect_to');
if (trim($redirect_to) == '' || !is_valid_url($redirect_to)) {
$redirect_to = $user->getCardUrl();
}
// if
tpl_assign('user', $user);
tpl_assign('company', $company);
tpl_assign('projects', $projects);
tpl_assign('permissions', $permissions);
tpl_assign('redirect_to', $redirect_to);
if (array_var($_POST, 'submitted') == 'submitted') {
DB::beginWork();
ProjectUsers::clearByUser($user);
foreach ($projects as $project) {
$permission_count = 0;
$permission_all = array_var($_POST, 'project_permissions_' . $project->getId() . '_all') == 'checked';
foreach ($permissions as $permission_name => $permission_text) {
$permission_value = $permission_all || array_var($_POST, 'project_permission_' . $project->getId() . '_' . $permission_name) == 'checked';
if ($permission_value) {
$permission_count++;
}
$user->setProjectPermission($project, $permission_name, $permission_value);
}
// foreach
if ($permission_count > 0) {
$relation = new ProjectUser();
$relation->setProjectId($project->getId());
$relation->setUserId($user->getId());
$relation->save();
}
}
// if
DB::commit();
flash_success(lang('success user permissions updated'));
$this->redirectToUrl($redirect_to);
}
// if
}
/**
* Delete this object
*
* @param void
* @return boolean
*/
function delete() {
if ($this->isAccountOwner()) {
return false;
} // if
ProjectUsers::clearByUser($this);
MessageSubscriptions::clearByUser($this);
return parent::delete();
} // delete
/**
* Edit group
*
* @param void
* @return null
*/
function edit_group()
{
$this->setTemplate('add_group');
if (!can_manage_security(logged_user())) {
flash_error(lang('no access permissions'));
ajx_current("empty");
return;
}
// if
$group = Groups::findById(get_id());
if (!$group instanceof Group) {
flash_error(lang('group dnx'));
$this->redirectTo('administration', 'groups');
}
// if
if (logged_user()->isAdministrator()) {
$projects = Projects::getAll();
} else {
$projects = null;
}
$permissions = ProjectUsers::getNameTextArray();
$group_data = array_var($_POST, 'group');
if (!is_array($group_data)) {
$group_data = array('name' => $group->getName(), 'can_edit_company_data' => $group->getCanEditCompanyData(), 'can_manage_security' => $group->getCanManageSecurity(), 'can_manage_workspaces' => $group->getCanManageWorkspaces(), 'can_manage_configuration' => $group->getCanManageConfiguration(), 'can_manage_contacts' => $group->getCanManageContacts(), 'can_manage_templates' => $group->getCanManageTemplates(), 'can_manage_reports' => $group->getCanManageReports(), 'can_manage_time' => $group->getCanManageTime(), 'can_add_mail_accounts' => $group->getCanAddMailAccounts());
// array
}
// if
$users = GroupUsers::getUsersByGroup($group->getId());
if ($users) {
foreach ($users as $usr) {
$group_data['user[' . $usr->getId() . ']'] = true;
}
}
tpl_assign('group', $group);
tpl_assign('group_data', $group_data);
tpl_assign('permissions', $permissions);
tpl_assign('projects', $projects);
if (is_array(array_var($_POST, 'group'))) {
$group->setFromAttributes($group_data);
if (array_var($group_data, "can_edit_company_data") != 'checked') {
$group->setCanEditCompanyData(false);
}
if (array_var($group_data, "can_manage_security") != 'checked') {
$group->setCanManageSecurity(false);
}
if (array_var($group_data, "can_manage_configuration") != 'checked') {
$group->setCanManageConfiguration(false);
}
if (array_var($group_data, "can_manage_workspaces") != 'checked') {
$group->setCanManageWorkspaces(false);
}
if (array_var($group_data, "can_manage_contacts") != 'checked') {
$group->setCanManageContacts(false);
}
if (array_var($group_data, "can_manage_templates") != 'checked') {
$group->setCanManageTemplates(false);
}
if (array_var($group_data, "can_manage_reports") != 'checked') {
$group->setCanManageReports(false);
}
if (array_var($group_data, "can_manage_time") != 'checked') {
$group->setCanManageTime(false);
}
if (array_var($group_data, "can_add_mail_accounts") != 'checked') {
$group->setCanAddMailAccounts(false);
}
try {
DB::beginWork();
//set permissions
$permissionsString = array_var($_POST, 'permissions');
if ($permissionsString && $permissionsString != '') {
$permissions = json_decode($permissionsString);
}
if (is_array($permissions) && count($permissions) > 0) {
//Clear old modified permissions
$ids = array();
foreach ($permissions as $perm) {
$ids[] = $perm->wsid;
}
ProjectUsers::clearByUser($group, implode(',', $ids));
//Add new permissions
//TODO - Make batch update of these permissions
foreach ($permissions as $perm) {
if (ProjectUser::hasAnyPermissions($perm->pr, $perm->pc)) {
$relation = new ProjectUser();
$relation->setProjectId($perm->wsid);
$relation->setUserId($group->getId());
$relation->setCheckboxPermissions($perm->pc);
$relation->setRadioPermissions($perm->pr);
$relation->save();
}
//endif
//else if the user has no permissions at all, he is not a project_user. ProjectUser is not created
}
//end foreach
}
// if
$group->save();
GroupUsers::clearByGroup($group);
if (array_var($_POST, 'user')) {
foreach (array_var($_POST, 'user') as $user_id => $val) {
if ($val == 'checked' && is_numeric($user_id) && Users::findById($user_id) instanceof User) {
$gu = new GroupUser();
$gu->setGroupId($group->getId());
$gu->setUserId($user_id);
$gu->save();
}
}
}
ApplicationLogs::createLog($group, null, ApplicationLogs::ACTION_EDIT);
DB::commit();
flash_success(lang('success edit group', $group->getName()));
ajx_current("back");
} catch (Exception $e) {
DB::rollback();
tpl_assign('error', $e);
}
// try
}
// if
}
/**
* Delete this object
*
* @param void
* @return boolean
*/
function delete()
{
if ($this->isAccountOwner()) {
return false;
}
// if
if ($this->isTaggable()) {
$this->clearTags();
}
// if
// TODO check all things that need to be deleted
// ticket subscriptions
// message subscriptions
// project-user association
$this->deleteAvatar();
$this->clearImValues();
if ($this->hasUserAccount()) {
ProjectUsers::clearByUser($this->getUserAccount());
MessageSubscriptions::clearByUser($this->getUserAccount());
$this->getUserAccount()->delete();
}
// if
return parent::delete();
}
/**
* Delete this group and all related data
*
* @access public
* @param void
* @return boolean
* @throws Error
*/
function delete()
{
if ($this->isAdministratorGroup()) {
throw new Error(lang('error delete group'));
return false;
}
// if
ProjectUsers::clearByUser($this);
return parent::delete();
}
/**
* Delete this object
*
* @param void
* @return boolean
*/
function delete()
{
if ($this->isAccountOwner()) {
return false;
}
// if
$this->deleteAvatar();
//$this->deletePersonalProject();
MailAccountUsers::deleteByUser($this);
GroupUsers::clearByUser($this);
Contacts::updateUserIdOnUserDelete($this->getId());
ProjectUsers::clearByUser($this);
ObjectSubscriptions::clearByUser($this);
ObjectReminders::clearByUser($this);
EventInvitations::clearByUser($this);
UserPasswords::clearByUser($this);
return parent::delete();
}
/**
* Show update permissions page
*
* @param void
* @return null
*/
function update_permissions()
{
$user = Users::findById(get_id());
if (!$user instanceof User) {
flash_error(lang('user dnx'));
ajx_current("empty");
return;
}
// if
if (!$user->canUpdatePermissions(logged_user())) {
flash_error(lang('no access permissions'));
ajx_current("empty");
return;
}
// if
$company = $user->getCompany();
if (!$company instanceof Company) {
flash_error(lang('company dnx'));
ajx_current("empty");
return;
}
// if
if (logged_user()->isAdministrator()) {
$projects = Projects::getAll();
} else {
$projects = null;
}
$permissions = ProjectUsers::getNameTextArray();
$redirect_to = array_var($_GET, 'redirect_to');
if (trim($redirect_to) == '' || !is_valid_url($redirect_to)) {
$redirect_to = $user->getCardUrl();
}
// if
$user_data = array_var($_POST, 'user');
if (!is_array($user_data)) {
$user_data = array('can_edit_company_data' => $user->getCanEditCompanyData(), 'can_manage_security' => $user->getCanManageSecurity(), 'can_manage_workspaces' => $user->getCanManageWorkspaces(), 'can_manage_configuration' => $user->getCanManageConfiguration(), 'can_manage_contacts' => $user->getCanManageContacts(), 'can_manage_templates' => $user->getCanManageTemplates(), 'can_manage_reports' => $user->getCanManageReports(), 'can_manage_time' => $user->getCanManageTime(), 'can_add_mail_accounts' => $user->getCanAddMailAccounts());
// array
Hook::fire('add_user_permissions', $user, $user_data);
}
// if
tpl_assign('user_data', $user_data);
tpl_assign('user', $user);
tpl_assign('company', $company);
tpl_assign('projects', $projects);
tpl_assign('permissions', $permissions);
tpl_assign('redirect_to', $redirect_to);
if (array_var($_POST, 'submitted') == 'submitted') {
$user_data = array_var($_POST, 'user');
if (!is_array($user_data)) {
$user_data = array();
}
try {
DB::beginWork();
$permissionsString = array_var($_POST, 'permissions');
if ($permissionsString && $permissionsString != '') {
$permissions = json_decode($permissionsString);
}
if (is_array($permissions) && count($permissions) > 0) {
//Clear old modified permissions
$ids = array();
foreach ($permissions as $perm) {
$ids[] = $perm->wsid;
}
ProjectUsers::clearByUser($user, implode(',', $ids));
//Add new permissions
//TODO - Make batch update of these permissions
foreach ($permissions as $perm) {
if (ProjectUser::hasAnyPermissions($perm->pr, $perm->pc)) {
$relation = new ProjectUser();
$relation->setProjectId($perm->wsid);
$relation->setUserId($user->getId());
$relation->setCheckboxPermissions($perm->pc, $user->isGuest() ? false : true);
$relation->setRadioPermissions($perm->pr, $user->isGuest() ? false : true);
$relation->save();
}
//endif
//else if the user has no permissions at all, he is not a project_user. ProjectUser is not created
}
//end foreach
}
// if
$user->setCanEditCompanyData(false);
$user->setCanManageSecurity(false);
$user->setCanManageConfiguration(false);
$user->setCanManageWorkspaces(false);
$user->setCanManageContacts(false);
$user->setCanManageTemplates(false);
$user->setCanManageReports(false);
$user->setCanManageTime(false);
$user->setCanAddMailAccounts(false);
$other_permissions = array();
Hook::fire('add_user_permissions', $user, $other_permissions);
foreach ($other_permissions as $k => $v) {
$user->setColumnValue($k, false);
}
$user->setFromAttributes($user_data);
$user->setUpdatedOn(DateTimeValueLib::now());
$user->save();
DB::commit();
flash_success(lang('success user permissions updated'));
ajx_current("back");
} catch (Exception $e) {
DB::rollback();
flash_error($e->getMessage());
ajx_current("empty");
}
}
// if
}
