Exemplo n.º 1
0
 /**
  *  This method adds/saves a user
  *
  *  @param $id           If we are editing, $id is the user id. If we are adding, $id is the parent_id
  *  @param $edit         Boolean flag that defines if we are editing $id or adding to $id
  *  @param $formvalues   (Optional) Custom array with user attributes
  *
  *  @returns    YDResult
  */
 function _saveFormDetails($id, $edit, $formvalues = null)
 {
     // check form validation
     if (!$this->_form->validate($formvalues)) {
         return YDResult::warning(t('form errors'), $this->_form->getErrors());
     }
     // get form values EXCLUDING spans
     $values = $this->_form->getValues();
     // check if we are editing or adding an element
     if ($edit) {
         // create userobject node
         $userobject = array();
         $userobject['type'] = 'YDCMUser';
         if (isset($values['name'])) {
             $userobject['reference'] = $values['name'];
         }
         if (isset($values['state'])) {
             $userobject['state'] = $values['state'];
         }
         // update userobject
         $uobj = new YDCMUserobject();
         $res = $uobj->updateNode($userobject, $id);
         // create user row
         $user = array();
         if (isset($values['password'])) {
             $user['password'] = md5($values['password']);
         }
         if (isset($values['username'])) {
             $user['username'] = $values['username'];
         }
         if (isset($values['name'])) {
             $user['name'] = $values['name'];
         }
         if (isset($values['email'])) {
             $user['email'] = $values['email'];
         }
         if (isset($values['other'])) {
             $user['other'] = $values['other'];
         }
         if (isset($values['lang_id'])) {
             $user['lang_id'] = $values['lang_id'];
         }
         if (isset($values['template'])) {
             $user['template'] = $values['template'];
         }
         // check login schedule dates
         if (isset($user['login_start'])) {
             $user['login_start'] = YDStringUtil::formatDate($values['login_start'], 'datetimesql');
         }
         if (isset($user['login_end'])) {
             $user['login_end'] = YDStringUtil::formatDate($values['login_end'], 'datetimesql');
         }
         // update user
         $this->resetValues();
         $this->setValues($user);
         $this->where('user_id = ' . $id);
         $res = $this->update();
         // check update result and return
         if ($res > 0) {
             return YDResult::ok(t('ydcmuser mess updated'), $res);
         } else {
             return YDResult::warning(t('ydcmuser mess impossible to update'), $res);
         }
     } else {
         // check if parent it is set in argument or was choosen in the group selectbox
         if (is_null($id)) {
             $id = $values['group'];
         }
         // create userobject node
         $userobject = array();
         $userobject['type'] = 'YDCMUser';
         $userobject['reference'] = $values['name'];
         $userobject['state'] = isset($values['state']) ? $values['state'] : 0;
         // insert a new node in userobject and get the new id for user row creation
         $uobj = new YDCMUserobject();
         $res = $uobj->addNode($userobject, intval($id));
         // create user row
         $user = array();
         // add REQUIRED values
         $user['user_id'] = $res;
         $user['password'] = md5($values['password']);
         $user['username'] = $values['username'];
         $user['lang_id'] = $values['lang_id'];
         $user['template'] = $values['template'];
         $user['name'] = isset($values['name']) ? $values['name'] : '';
         $user['email'] = isset($values['email']) ? $values['email'] : '';
         $user['other'] = isset($values['other']) ? $values['other'] : '';
         $user['login_counter'] = 0;
         $user['login_start'] = YDStringUtil::formatDate(0, 'datetimesql');
         $user['login_end'] = YDStringUtil::formatDate(0, 'datetimesql');
         $user['login_last'] = YDStringUtil::formatDate(0, 'datetimesql');
         $user['login_current'] = YDStringUtil::formatDate(0, 'datetimesql');
         // reset object
         $this->resetValues();
         $this->setValues($user);
         // insert values
         if ($this->insert()) {
             return YDResult::ok(t('ydcmuser mess created'), $res);
         } else {
             return YDResult::fatal(t('ydcmuser mess impossible to create'), $res);
         }
     }
 }
 /**
  *  This method adds/saves a permission system
  *
  *  @param $id           If we are editing, $id is the group id. If we are adding, $id is the user id
  *  @param $edit         Boolean flag that defines if we are editing $id or adding to $id
  *  @param $formvalues   (Optional) Custom array with user attributes
  *  @param $group_id     Node id used when inserting permissions. nodeID is the node where permissions are applyed
  *
  *  @returns    INT: total of rows affected
  */
 function _saveFormDetails($id, $edit, $formvalues = null, $group_id = 0)
 {
     // validate with custom values
     if (!is_null($formvalues)) {
         $this->_form->validate($formvalues);
     }
     // get form values EXCLUDING spans
     $values = $this->_form->getValues();
     // if this group is not a root group we must get the parent group permissions to check the ones we can use
     $userobject = new YDCMUserobject();
     $groups = $userobject->getElements(array('ydcmgroup', 'ydcmuser'));
     $parent_id = $groups[$id]['parent_id'];
     // when adding a new group, parent of $id is the master group. when editing a group, parent is a user.. so the master group is the parent of the parent
     if ($edit == true) {
         $parent_id = $groups[$parent_id]['parent_id'];
     }
     // if parent of this group is root, parentgroup permissions are ALL (read: null), otherwise we must get permissions of that parent
     if ($parent_id == 1) {
         $parentgroup_perms = null;
     } else {
         $parentgroup_perms = $this->getPermissions($parent_id);
     }
     // if we are editing, we must get the current group permissions. if we are adding, current permissions are empty
     if ($edit == true) {
         $perms = $this->getPermissions($id);
     } else {
         $perms = array();
     }
     $actions_to_add = array();
     $actions_to_del = array();
     // get all possible actions to compute actions we must add and actions we must delete
     foreach ($this->getRegisteredActions() as $class => $actions) {
         foreach ($actions as $action) {
             // if action is selected by the user AND
             // this is a root group OR the action belogs to the parent group
             // we can add it
             if (isset($values['pclass_' . $class][$action]) && ($values['pclass_' . $class][$action] == 1 || $values['pclass_' . $class][$action] == 'on')) {
                 // check if action is valid:
                 // if parent group is a root a group OR the parent group has this action
                 if (is_null($parentgroup_perms) || isset($parentgroup_perms[$class][$action])) {
                     // if action is valid we must check if we must add it or the user already has it
                     if (!isset($perms[$class][$action])) {
                         $actions_to_add[] = array($class, $action);
                     }
                     continue;
                 }
                 // if action selected is not valid we must delete it
                 $actions_to_del[] = array($class, $action);
             }
             // if action is not set, we will always delete it (even if is not in bd)
             $actions_to_del[] = array($class, $action);
         }
     }
     // if we are adding permissions we must add to group_id recently created (not to parent)
     if ($edit == false) {
         $id = $group_id;
     }
     $rows_deleted = 0;
     // delete actions and count rows affected
     foreach ($actions_to_del as $ac) {
         $this->resetValues();
         $this->set('permission_id', $id);
         $this->set('class', $ac[0]);
         $this->set('action', $ac[1]);
         $rows_deleted += $this->delete();
     }
     $rows_added = 0;
     // add actions and count total of action added
     foreach ($actions_to_add as $ac) {
         $this->resetValues();
         $this->set('permission_id', $id);
         $this->set('class', $ac[0]);
         $this->set('action', $ac[1]);
         $this->insert();
         $rows_added++;
     }
     // TODO: currently YDDatabaseObject don't have a mechanism to control the above deletes and inserts
     return $rows_deleted + $rows_added;
 }
 /**
  *  This method adds/saves a group
  *
  *  @param $id           If we are editing, $id is the group id. If we are adding, $id is the parent_id
  *  @param $edit         Boolean flag that defines if we are editing $id or adding to $id
  *  @param $formvalues   (Optional) Custom array with attributes
  *
  *  @returns    YDResult
  */
 function _saveFormDetails($id, $edit, $formvalues = null)
 {
     // check form validation
     if (!$this->_form->validate($formvalues)) {
         return YDResult::warning(t('form errors'), $this->_form->getErrors());
     }
     // get form values EXCLUDING spans
     $values = $this->_form->getValues();
     // check if we are editing or adding an element
     if ($edit) {
         // create userobject node
         $userobject = array();
         $userobject['type'] = 'YDCMGroup';
         $userobject['reference'] = $values['name'];
         $userobject['state'] = 1;
         // update userobject
         $uobj = new YDCMUserobject();
         $res = $uobj->updateNode($userobject, $id);
         // create user row
         $group = array();
         $group['name'] = $values['name'];
         $group['description'] = $values['description'];
         // update user
         $this->resetValues();
         $this->setValues($group);
         $this->where('group_id = ' . $id);
         // update and sum lines afected to userobject
         $res += $this->update();
         // if we are using the permission system, update and sum lines afected in permission table
         if (isset($this->editing_PERMOBJ)) {
             $res += $this->editing_PERMOBJ->saveFormEdit($id, $formvalues);
         }
         // check update from node update and from group update
         if ($res > 0) {
             return YDResult::ok(t('ydcmgroup mess details updated'), $res);
         } else {
             return YDResult::warning(t('ydcmgroup mess details not updated'), $res);
         }
     } else {
         // create userobject node
         $userobject = array();
         $userobject['type'] = 'YDCMGroup';
         $userobject['reference'] = $values['name'];
         $userobject['state'] = 1;
         // check default parent id
         if (is_null($id)) {
             $id = 1;
         }
         // TODO: check if group is valid (and, eg, is not a user node)
         // update userobject and get new id
         $uobj = new YDCMUserobject();
         $nodeID = $uobj->addNode($userobject, intval($id));
         // init result count
         $res = $nodeID;
         // if we are using the permission system, add permissions and sum lines afected in permission table
         if (isset($this->editing_PERMOBJ)) {
             $res += $this->editing_PERMOBJ->saveFormNew($id, $nodeID, $formvalues);
         }
         // create user row
         $group = array();
         $group['group_id'] = intval($nodeID);
         $group['name'] = $values['name'];
         $group['description'] = $values['description'];
         // reset object
         $this->resetAll();
         $this->setValues($group);
         // insert values
         if ($this->insert()) {
             return YDResult::ok(t('ydcmgroup mess created'), $res);
         } else {
             return YDResult::fatal(t('ydcmgroup mess impossible to create'), $res);
         }
     }
 }