public function edit_permissions_rule($id = null, $clone = false) { if (Base_AdminCommon::get_access('Utils_RecordBrowser', 'permissions')!=2) return false; if ($this->is_back()) { return false; } load_js('modules/Utils/RecordBrowser/edit_permissions.js'); $all_clearances = array(''=>'---')+array_flip(Base_AclCommon::get_clearance(true)); $all_fields = array(); $this->init(); foreach ($this->table_rows as $k=>$v) $all_fields[$v['id']] = $k; $js = ''; $operators = array( '='=>__('equal'), '!'=>__('not equal'), '>'=>'>', '>='=>'>=', '<'=>'<', '<='=>'<=' ); $form = $this->init_module('Libs_QuickForm'); $theme = $this->init_module('Base_Theme'); $counts = array( 'clearance'=>5, 'ands'=>5, 'ors'=>10 ); $actions = $this->get_permission_actions(); $form->addElement('select', 'action', __('Action'), $actions); $fields_permissions = $all_fields; foreach ($all_fields as $k=>$v) { if ($this->table_rows[$v]['type']=='calculated' || $this->table_rows[$v]['type']=='hidden') unset($all_fields[$k]); else $this->manage_permissions_set_field_values($k); } $all_fields = array( ':Created_by'=>__('Created by'), ':Created_on'=>__('Created on'), ':Edited_on'=>__('Edited on') ) + $all_fields; if ($this->tab=='contact' || $this->tab=='company') $all_fields = array('id'=>__('ID')) + $all_fields; $this->manage_permissions_set_field_values(':Created_by', array('USER_ID'=>__('User Login'))); $this->manage_permissions_set_field_values(':Created_on', Utils_RecordBrowserCommon::$date_values); $this->manage_permissions_set_field_values(':Edited_on', Utils_RecordBrowserCommon::$date_values); if ($this->tab=='contact') $this->manage_permissions_set_field_values('id', array('USER'=>__('User Contact'))); if ($this->tab=='company') $this->manage_permissions_set_field_values('id', array('USER_COMPANY'=>__('User Company'))); for ($i=0; $i<$counts['clearance']; $i++) $form->addElement('select', 'clearance_'.$i, __('Clearance'), $all_clearances); $current_or = array(); $current_and = 0; foreach ($all_fields as $k=>$v) { if (isset($this->table_rows[$v])) { $v = $this->table_rows[$v]['name']; } $all_fields[$k] = _V($v); } for ($i=0; $i<$counts['ands']; $i++) { $current_or[$i] = 0; for ($j=0; $j<$counts['ors']; $j++) { $form->addElement('select', 'crits_'.$i.'_'.$j.'_field', __('Crits'), array(''=>'---')+$all_fields, array('onchange'=>'utils_recordbrowser__update_field_values('.$i.', '.$j.');', 'id'=>'crits_'.$i.'_'.$j.'_field')); $form->addElement('select', 'crits_'.$i.'_'.$j.'_op', __('Operator'), array(''=>'---')+$operators); $form->addElement('select', 'crits_'.$i.'_'.$j.'_value', __('Value'), array(), array('id'=>'crits_'.$i.'_'.$j.'_value', 'onchange'=>'utils_recordbrowser__update_field_sub_values('.$i.', '.$j.');')); $form->addElement('select', 'crits_'.$i.'_'.$j.'_sub_value', __('Subrecord Value'), array(), array('id'=>'crits_'.$i.'_'.$j.'_sub_value', 'style'=>'display:none;')); $js .= 'utils_recordbrowser__update_field_values('.$i.', '.$j.');'; } } $defaults = array(); foreach ($fields_permissions as $k=>$v) { $defaults['field_'.$k] = 1; $form->addElement('checkbox', 'field_'.$k, _V($this->table_rows[$v]['name'])); } $theme->assign('labels', array( 'and' => '<span class="joint">'.__('and').'</span>', 'or' => '<span class="joint">'.__('or').'</span>', 'caption' => $id?__('Edit permission rule'):__('Add permission rule'), 'clearance' => __('Clearance requried'), 'fields' => __('Fields allowed'), 'crits' => __('Criteria required'), 'add_clearance' => __('Add clearance'), 'add_or' => __('Add criteria (or)'), 'add_and' => __('Add criteria (and)') )); $current_clearance = 0; $sub_values = array(); if ($id!==null && $this->tab!='__RECORDSETS__' && !preg_match('/,/',$this->tab)) { $row = DB::GetRow('SELECT * FROM '.$this->tab.'_access AS acs WHERE id=%d', array($id)); $defaults['action'] = $row['action']; $crits = unserialize($row['crits']); $i = 0; $j = 0; $or = false; $first = true; foreach ($crits as $k=>$v) { $operator = '='; while (($k[0]<'a' || $k[0]>'z') && ($k[0]<'A' || $k[0]>'Z') && $k[0]!=':') { if ($k[0]=='!') $operator = '!'; if ($k[0]=='(' && $or) $or = false; if ($k[0]=='|') $or = true; if ($k[0]=='<') $operator = '<'; if ($k[0]=='>') $operator = '>'; if ($k[0]=='~') $operator = DB::like(); if ($k[1]=='=' && $operator!=DB::like()) { $operator .= '='; $k = substr($k, 2); } else $k = substr($k, 1); } if (!$first) { if ($or) $j++; else { $current_or[$i] += $j; $j = 0; $i++; } } else { $first = false; } $sub_value = null; if (!isset($r[$k]) && $k[strlen($k)-1]==']') { $sub_value = $v; list($k, $v) = explode('[', trim($k, ']')); } $defaults['crits_'.$i.'_'.$j.'_field'] = $k; $defaults['crits_'.$i.'_'.$j.'_op'] = $operator; $js .= '$("crits_'.$i.'_'.$j.'_value").value = "'.$v.'";'; if ($sub_value!==null) $sub_values['crits_'.$i.'_'.$j.'_sub_value'] = $sub_value; } $current_or[$i] += $j; $current_and += $i; $i = 0; $tmp = DB::GetAll('SELECT * FROM '.$this->tab.'_access_clearance AS acs WHERE rule_id=%d', array($id)); foreach ($tmp as $t) { $defaults['clearance_'.$i] = $t['clearance']; $i++; } $current_clearance += $i-1; $tmp = DB::GetAll('SELECT * FROM '.$this->tab.'_access_fields AS acs WHERE rule_id=%d', array($id)); foreach ($tmp as $t) { unset($defaults['field_'.$t['block_field']]); } } for ($i=0; $i<$counts['ands']; $i++) for ($j=0; $j<$counts['ors']; $j++) $js .= 'utils_recordbrowser__update_field_sub_values('.$i.', '.$j.');'; foreach ($sub_values as $k=>$v) $js .= '$("'.$k.'").value = "'.$v.'";'; $form->setDefaults($defaults); if ($form->validate()) { $vals = $form->exportValues(); $action = $vals['action']; $clearance = array(); for ($i=0; $i<$counts['clearance']; $i++) if ($vals['clearance_'.$i]) $clearance[] = $vals['clearance_'.$i]; $crits = array(); for ($i=0; $i<$counts['ands']; $i++) { $or = '('; for ($j=0; $j<$counts['ors']; $j++) { if ($vals['crits_'.$i.'_'.$j.'_field'] && $vals['crits_'.$i.'_'.$j.'_op']) { if (!isset($operators[$vals['crits_'.$i.'_'.$j.'_op']])) trigger_error('Fatal error',E_USER_ERROR); if (!isset($all_fields[$vals['crits_'.$i.'_'.$j.'_field']])) trigger_error('Fatal error',E_USER_ERROR); $op = $vals['crits_'.$i.'_'.$j.'_op']; if ($op=='=') $op = ''; if (isset($vals['crits_'.$i.'_'.$j.'_sub_value'])) { $vals['crits_'.$i.'_'.$j.'_field'] = $vals['crits_'.$i.'_'.$j.'_field'].'['.$vals['crits_'.$i.'_'.$j.'_value'].']'; $vals['crits_'.$i.'_'.$j.'_value'] = $vals['crits_'.$i.'_'.$j.'_sub_value']; } $next = array($or.$op.$vals['crits_'.$i.'_'.$j.'_field'] => $vals['crits_'.$i.'_'.$j.'_value']); $crits = Utils_RecordBrowserCommon::merge_crits($crits, $next); } $or = '|'; } } $blocked_fields = array(); foreach ($fields_permissions as $k=>$v) { if (isset($vals['field_'.$k])) continue; $blocked_fields[] = $k; } if ($id===null || $clone) Utils_RecordBrowserCommon::add_access($this->tab, $action, $clearance, $crits, $blocked_fields); else Utils_RecordBrowserCommon::update_access($this->tab, $id, $action, $clearance, $crits, $blocked_fields); return false; } eval_js($js); eval_js('utils_recordbrowser__init_clearance('.$current_clearance.', '.$counts['clearance'].')'); eval_js('utils_recordbrowser__init_crits_and('.$current_and.', '.$counts['ands'].')'); for ($i=0; $i<$counts['ands']; $i++) eval_js('utils_recordbrowser__init_crits_or('.$i.', '.$current_or[$i].', '.$counts['ors'].')'); eval_js('utils_recordbrowser__crits_initialized = true;'); $form->assign_theme('form', $theme); $theme->assign('fields', $fields_permissions); $theme->assign('counts', $counts); $theme->display('edit_permissions'); Base_ActionBarCommon::add('save', __('Save'), $form->get_submit_form_href()); Base_ActionBarCommon::add('delete', __('Cancel'), $this->create_back_href()); return true; }
public function edit_permissions_rule($id = null, $clone = false) { if (Base_AdminCommon::get_access('Utils_RecordBrowser', 'permissions') != 2) { return false; } if ($this->is_back()) { return false; } load_js('modules/Utils/RecordBrowser/edit_permissions.js'); $all_clearances = array('' => '---') + array_flip(Base_AclCommon::get_clearance(true)); $all_fields = array(); $this->init(); foreach ($this->table_rows as $k => $v) { $all_fields[$v['id']] = $k; } $form = $this->init_module('Libs_QuickForm'); $theme = $this->init_module('Base_Theme'); $counts = array('clearance' => 5); $actions = $this->get_permission_actions(); $form->addElement('select', 'action', __('Action'), $actions); $fields_permissions = $all_fields; for ($i = 0; $i < $counts['clearance']; $i++) { $form->addElement('select', 'clearance_' . $i, __('Clearance'), $all_clearances); } $defaults = array(); foreach ($fields_permissions as $k => $v) { $defaults['field_' . $k] = 1; $form->addElement('checkbox', 'field_' . $k, _V($this->table_rows[$v]['name'])); } $theme->assign('labels', array('and' => '<span class="joint">' . __('and') . '</span>', 'or' => '<span class="joint">' . __('or') . '</span>', 'caption' => $id ? __('Edit permission rule') : __('Add permission rule'), 'clearance' => __('Clearance requried'), 'fields' => __('Fields allowed'), 'crits' => __('Criteria required'), 'add_clearance' => __('Add clearance'), 'add_or' => __('Add criteria (or)'), 'add_and' => __('Add criteria (and)'))); $current_clearance = 0; $crits = array(); if ($id !== null && $this->tab != '__RECORDSETS__' && !preg_match('/,/', $this->tab)) { $row = DB::GetRow('SELECT * FROM ' . $this->tab . '_access AS acs WHERE id=%d', array($id)); $defaults['action'] = $row['action']; $crits = Utils_RecordBrowserCommon::unserialize_crits($row['crits']); if (is_array($crits)) { $crits = Utils_RecordBrowser_Crits::from_array($crits); } $i = 0; $tmp = DB::GetAll('SELECT * FROM ' . $this->tab . '_access_clearance AS acs WHERE rule_id=%d', array($id)); foreach ($tmp as $t) { $defaults['clearance_' . $i] = $t['clearance']; $i++; } $current_clearance += $i - 1; $tmp = DB::GetAll('SELECT * FROM ' . $this->tab . '_access_fields AS acs WHERE rule_id=%d', array($id)); foreach ($tmp as $t) { unset($defaults['field_' . $t['block_field']]); } } $qbi = new Utils_RecordBrowser_QueryBuilderIntegration($this->tab); $qb = $qbi->get_builder_module($this, $crits); $qb->add_to_form($form, 'qb_crits', __('Crits'), 'qb_crits_editor'); $form->setDefaults($defaults); if ($form->validate()) { $vals = $form->exportValues(); $action = $vals['action']; $clearance = array(); for ($i = 0; $i < $counts['clearance']; $i++) { if ($vals['clearance_' . $i]) { $clearance[] = $vals['clearance_' . $i]; } } $crits = $qbi->json_to_crits($vals['qb_crits']); $blocked_fields = array(); foreach ($fields_permissions as $k => $v) { if (isset($vals['field_' . $k])) { continue; } $blocked_fields[] = $k; } if ($id === null || $clone) { Utils_RecordBrowserCommon::add_access($this->tab, $action, $clearance, $crits, $blocked_fields); } else { Utils_RecordBrowserCommon::update_access($this->tab, $id, $action, $clearance, $crits, $blocked_fields); } return false; } eval_js('utils_recordbrowser__init_clearance(' . $current_clearance . ', ' . $counts['clearance'] . ')'); eval_js('utils_recordbrowser__crits_initialized = true;'); $form->assign_theme('form', $theme); $theme->assign('fields', $fields_permissions); $theme->assign('counts', $counts); $theme->display('edit_permissions'); Base_ActionBarCommon::add('save', __('Save'), $form->get_submit_form_href()); Base_ActionBarCommon::add('delete', __('Cancel'), $this->create_back_href()); return true; }