/**
* Gather all user permissions and roles and store them in the session
*
* @param UserIdentity $identity
*/
public static function updatePermissions($identity)
{
$session = Yii::$app->session;
// Clear data first in case we want to refresh permissions
$session->remove(self::SESSION_PREFIX_ROLES);
$session->remove(self::SESSION_PREFIX_PERMISSIONS);
$session->remove(self::SESSION_PREFIX_ROUTES);
// Set permissions last mod time
$session->set(self::SESSION_PREFIX_LAST_UPDATE, filemtime(self::getPermissionsLastModFile()));
// Save roles, permissions and routes in session
$session->set(self::SESSION_PREFIX_ROLES, array_keys(Role::getUserRoles($identity->id)));
$session->set(self::SESSION_PREFIX_PERMISSIONS, array_keys(Permission::getUserPermissions($identity->id)));
$session->set(self::SESSION_PREFIX_ROUTES, Route::getUserRoutes($identity->id));
}
/**
* @param int $id - User ID
*
* @return \yii\web\Response
*/
public function actionSetRoles($id)
{
if (!Yii::$app->user->isSuperadmin and Yii::$app->user->id == $id) {
Yii::$app->session->setFlash('error', UserManagementModule::t('back', 'You can not change own permissions'));
return $this->redirect(['set', 'id' => $id]);
}
$oldAssignments = array_keys(Role::getUserRoles($id));
// To be sure that user didn't attempt to assign himself some unavailable roles
$newAssignments = array_intersect(Role::getAvailableRoles(Yii::$app->user->isSuperAdmin, true), Yii::$app->request->post('roles', []));
$toAssign = array_diff($newAssignments, $oldAssignments);
$toRevoke = array_diff($oldAssignments, $newAssignments);
foreach ($toRevoke as $role) {
User::revokeRole($id, $role);
}
foreach ($toAssign as $role) {
User::assignRole($id, $role);
}
Yii::$app->session->setFlash('success', UserManagementModule::t('back', 'Saved'));
return $this->redirect(['set', 'id' => $id]);
}
echo $this->title;
?>
</h2>
<div class="panel panel-default">
<div class="panel-body">
<p>
<?php
echo GhostHtml::a(UserManagementModule::t('back', 'Edit'), ['update', 'id' => $model->id], ['class' => 'btn btn-sm btn-primary']);
?>
<?php
echo GhostHtml::a(UserManagementModule::t('back', 'Create'), ['create'], ['class' => 'btn btn-sm btn-success']);
?>
<?php
echo GhostHtml::a(UserManagementModule::t('back', 'Roles and permissions'), ['/user-management/user-permission/set', 'id' => $model->id], ['class' => 'btn btn-sm btn-default']);
?>
<?php
echo GhostHtml::a(UserManagementModule::t('back', 'Delete'), ['delete', 'id' => $model->id], ['class' => 'btn btn-sm btn-danger pull-right', 'data' => ['confirm' => UserManagementModule::t('back', 'Are you sure you want to delete this user?'), 'method' => 'post']]);
?>
</p>
<?php
echo DetailView::widget(['model' => $model, 'attributes' => ['id', ['attribute' => 'status', 'value' => User::getStatusValue($model->status)], 'username', ['attribute' => 'email', 'value' => $model->email, 'format' => 'email', 'visible' => User::hasPermission('viewUserEmail')], ['attribute' => 'email_confirmed', 'value' => $model->email_confirmed, 'format' => 'boolean', 'visible' => User::hasPermission('viewUserEmail')], ['label' => UserManagementModule::t('back', 'Roles'), 'value' => implode('<br>', ArrayHelper::map(Role::getUserRoles($model->id), 'name', 'description')), 'visible' => User::hasPermission('viewUserRoles'), 'format' => 'raw'], ['attribute' => 'bind_to_ip', 'visible' => User::hasPermission('bindUserToIp')], array('attribute' => 'registration_ip', 'value' => Html::a($model->registration_ip, "http://ipinfo.io/" . $model->registration_ip, ["target" => "_blank"]), 'format' => 'raw', 'visible' => User::hasPermission('viewRegistrationIp')), 'created_at:datetime', 'updated_at:datetime']]);
?>
</div>
</div>
</div>
echo UserManagementModule::t('back', 'Roles');
?>
</strong>
</div>
<div class="panel-body">
<?php
echo Html::beginForm(['set-roles', 'id' => $user->id]);
?>
<?php
foreach (Role::getAvailableRoles() as $aRole) {
?>
<label>
<?php
$isChecked = in_array($aRole['name'], ArrayHelper::map(Role::getUserRoles($user->id), 'name', 'name')) ? 'checked' : '';
?>
<?php
if (Yii::$app->getModule('user-management')->userCanHaveMultipleRoles) {
?>
<input type="checkbox" <?php
echo $isChecked;
?>
name="roles[]" value="<?php
echo $aRole['name'];
?>
">
<?php
} else {
public function allowUser()
{
$user = Yii::$app->user->getId();
//print_r($user);exit;
$role = Role::getUserRoles($user);
// print_r($role);exit;
if (empty($role)) {
return false;
} else {
return true;
}
}
<div class="panel panel-default">
<div class="panel-heading">
<strong>
<span class="glyphicon glyphicon-th"></span> <?php
echo UserManagementModule::t('back', 'Roles');
?>
</strong>
</div>
<div class="panel-body">
<?php
echo Html::beginForm(['set-roles', 'id' => $user->id]);
?>
<?php
echo Html::checkboxList('roles', ArrayHelper::map(Role::getUserRoles($user->id), 'name', 'name'), ArrayHelper::map(Role::getAvailableRoles(), 'name', 'description'), ['item' => function ($index, $label, $name, $checked, $value) {
$list = '<ul style="padding-left: 10px">';
foreach (Role::getPermissionsByRole($value) as $permissionName => $permissionDescription) {
$list .= $permissionDescription ? "<li>{$permissionDescription}</li>" : "<li>{$permissionName}</li>";
}
$list .= '</ul>';
$helpIcon = Html::beginTag('span', ['title' => UserManagementModule::t('back', 'Permissions for role - "{role}"', ['role' => $label]), 'data-content' => $list, 'data-html' => 'true', 'role' => 'button', 'style' => 'margin-bottom: 5px; padding: 0 5px', 'class' => 'btn btn-sm btn-default role-help-btn']);
$helpIcon .= '?';
$helpIcon .= Html::endTag('span');
$isChecked = $checked ? 'checked' : '';
$checkbox = "<label><input type='checkbox' name='{$name}' value='{$value}' {$isChecked}> {$label}</label>";
return $helpIcon . ' ' . $checkbox;
}, 'separator' => '<br>']);
?>
<br/>
