// TODO: Log event in a later version. $_SESSION['SUCCESS'] = L('addedtoassignees'); break; // ################## // admin request // ################## // ################## // admin request // ################## case 'requestclose': case 'requestreopen': if ($action == 'requestclose') { Flyspray::AdminRequest(1, $proj->id, $task['task_id'], $user->id, Post::val('reason_given')); Flyspray::logEvent($task['task_id'], 20, Post::val('reason_given')); } elseif ($action == 'requestreopen') { Flyspray::AdminRequest(2, $proj->id, $task['task_id'], $user->id, Post::val('reason_given')); Flyspray::logEvent($task['task_id'], 21, Post::val('reason_given')); Backend::add_notification($user->id, $task['task_id']); } // Now, get the project managers' details for this project $sql = $db->Query("SELECT u.user_id\n FROM {users} u\n LEFT JOIN {users_in_groups} uig ON u.user_id = uig.user_id\n LEFT JOIN {groups} g ON uig.group_id = g.group_id\n WHERE g.project_id = ? AND g.manage_project = '1'", array($proj->id)); $pms = $db->fetchCol($sql); if (count($pms)) { // Call the functions to create the address arrays, and send notifications $notify->Create(NOTIFY_PM_REQUEST, $task['task_id'], null, $notify->SpecificAddresses($pms), NOTIFY_BOTH, $proj->prefs['lang_code']); } $_SESSION['SUCCESS'] = L('adminrequestmade'); break; // ################## // denying a PM request // ##################
/** * Creates a new user * @param string $user_name * @param string $password * @param string $real_name * @param string $jabber_id * @param string $email * @param integer $notify_type * @param integer $time_zone * @param integer $group_in * @access public * @return bool false if username is already taken * @version 1.0 * @notes This function does not have any permission checks (checked elsewhere) */ public static function create_user($user_name, $password, $real_name, $jabber_id, $email, $notify_type, $time_zone, $group_in, $enabled, $oauth_uid = '', $oauth_provider = '', $profile_image = '') { global $fs, $db, $notify, $baseurl; $user_name = Backend::clean_username($user_name); // TODO Handle this whole create_user better concerning return false. Why did it fail? if (empty($user_name)) { return false; } // Limit length $real_name = substr(trim($real_name), 0, 100); // Remove doubled up spaces and control chars $real_name = preg_replace('![\\x00-\\x1f\\s]+!u', ' ', $real_name); // Check to see if the username is available $sql = $db->Query('SELECT COUNT(*) FROM {users} WHERE user_name = ?', array($user_name)); if ($db->fetchOne($sql)) { return false; } $auto = false; // Autogenerate a password if (!$password) { $auto = true; $password = substr(md5(uniqid(mt_rand(), true)), 0, mt_rand(8, 12)); } // Check the emails before inserting anything to database. $emailList = explode(';', $email); foreach ($emailList as $mail) { //Still need to do: check email $count = $db->Query("SELECT COUNT(*) FROM {user_emails} WHERE email_address = ?", array($mail)); $count = $db->fetchOne($count); if ($count > 0) { Flyspray::show_error("Email address has alredy been taken"); return false; } } $db->Query("INSERT INTO {users}\n ( user_name, user_pass, real_name, jabber_id, profile_image, magic_url,\n email_address, notify_type, account_enabled,\n tasks_perpage, register_date, time_zone, dateformat,\n dateformat_extended, oauth_uid, oauth_provider, lang_code)\n VALUES ( ?, ?, ?, ?, ?, ?, ?, ?, ?, 25, ?, ?, ?, ?, ?, ?, ?)", array($user_name, Flyspray::cryptPassword($password), $real_name, strtolower($jabber_id), $profile_image, '', strtolower($email), $notify_type, $enabled, time(), $time_zone, '', '', $oauth_uid, $oauth_provider, $fs->prefs['lang_code'])); // Get this user's id for the record $uid = Flyspray::UserNameToId($user_name); foreach ($emailList as $mail) { if ($mail != '') { $db->Query("INSERT INTO {user_emails}(id,email_address,oauth_uid,oauth_provider) VALUES (?,?,?,?)", array($uid, strtolower($mail), $oauth_uid, $oauth_provider)); } } // Now, create a new record in the users_in_groups table $db->Query('INSERT INTO {users_in_groups} (user_id, group_id) VALUES (?, ?)', array($uid, $group_in)); Flyspray::logEvent(0, 30, serialize(Flyspray::getUserDetails($uid))); $varnames = array('iwatch', 'atome', 'iopened'); $toserialize = array('string' => NULL, 'type' => array(''), 'sev' => array(''), 'due' => array(''), 'dev' => NULL, 'cat' => array(''), 'status' => array('open'), 'order' => NULL, 'sort' => NULL, 'percent' => array(''), 'opened' => NULL, 'search_in_comments' => NULL, 'search_for_all' => NULL, 'reported' => array(''), 'only_primary' => NULL, 'only_watched' => NULL); foreach ($varnames as $tmpname) { if ($tmpname == 'iwatch') { $tmparr = array('only_watched' => '1'); } elseif ($tmpname == 'atome') { $tmparr = array('dev' => $uid); } elseif ($tmpname == 'iopened') { $tmparr = array('opened' => $uid); } ${$tmpname} = $tmparr + $toserialize; } // Now give him his default searches $db->Query('INSERT INTO {searches} (user_id, name, search_string, time) VALUES (?, ?, ?, ?)', array($uid, L('taskswatched'), serialize($iwatch), time())); $db->Query('INSERT INTO {searches} (user_id, name, search_string, time) VALUES (?, ?, ?, ?)', array($uid, L('assignedtome'), serialize($atome), time())); $db->Query('INSERT INTO {searches} (user_id, name, search_string, time) VALUES (?, ?, ?, ?)', array($uid, L('tasksireported'), serialize($iopened), time())); if ($jabber_id) { Notifications::JabberRequestAuth($jabber_id); } // Send a user his details (his username might be altered, password auto-generated) // dont send notifications if the user logged in using oauth if (!$oauth_provider) { $recipients = self::GetAdminAddresses(); $newuser = array(); // Add the right message here depending on $enabled. if ($enabled === 0) { $newuser[0][$email] = array('recipient' => $email, 'lang' => $fs->prefs['lang_code']); } else { $newuser[0][$email] = array('recipient' => $email, 'lang' => $fs->prefs['lang_code']); } // Notify the appropriate users $notify->Create(NOTIFY_NEW_USER, null, array($baseurl, $user_name, $real_name, $email, $jabber_id, $password, $auto), $recipients, NOTIFY_EMAIL); // And also the new user $notify->Create(NOTIFY_OWN_REGISTRATION, null, array($baseurl, $user_name, $real_name, $email, $jabber_id, $password, $auto), $newuser, NOTIFY_EMAIL); } // If the account is created as not enabled, no matter what any // preferences might say or how the registration was made in first // place, it MUST be first approved by an admin. And a small // work-around: there's no field for email, so we use reason_given // for that purpose. if ($enabled === 0) { Flyspray::AdminRequest(3, 0, 0, $uid, $email); } return true; }
function action_requestclose($task) { global $proj, $user, $db; if (Post::val('action') == 'requestclose') { Flyspray::AdminRequest(1, $proj->id, $task['task_id'], $user->id, Post::val('reason_given')); Flyspray::logEvent($task['task_id'], 20, Post::val('reason_given')); } else { Flyspray::AdminRequest(2, $proj->id, $task['task_id'], $user->id, Post::val('reason_given')); Flyspray::logEvent($task['task_id'], 21, Post::val('reason_given')); Backend::add_notification($user->id, $task['task_id']); } // Now, get the project managers' details for this project $pms = $db->x->GetCol('SELECT u.user_id FROM {users} u LEFT JOIN {users_in_groups} uig ON u.user_id = uig.user_id LEFT JOIN {groups} g ON uig.group_id = g.group_id WHERE g.project_id = ? AND g.manage_project = 1', null, $proj->id); if (count($pms)) { Notifications::send($pms, ADDRESS_USER, NOTIFY_PM_REQUEST, array('task_id' => $task['task_id'])); } return array(SUBMIT_OK, L('adminrequestmade')); }