1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
|
<?php
use Bitweaver\KernelTools;
// $Header$
// Copyright (c) 2002-2003, Luis Argerich, Garland Foster, Eduardo Polidor, et. al.
// All Rights Reserved. See below for details and a complete list of authors.
// Licensed under the GNU LESSER GENERAL PUBLIC LICENSE. See http://www.gnu.org/copyleft/lesser.html for details.
// Initialization
require_once '../../kernel/includes/setup_inc.php';
// PERMISSIONS: NEEDS admin
$gBitSystem->verifyPermission( 'p_users_admin' );
$successMsg = null;
$errorMsg = null;
if( count( $_GET ) > 2 || count( $_POST ) > 2 ) {
$gBitUser->verifyTicket();
}
if( !empty( $_REQUEST['role_id'] ) ) {
$permListHash = [
'sort_mode' => !empty( $_REQUEST['sort_mode'] ) ? $_REQUEST['sort_mode'] : null,
'package' => !empty( $_REQUEST['package'] ) ? $_REQUEST['package'] : null,
];
$allPerms = $gBitUser->getRolePermissions( $permListHash );
}
if( !empty( $_REQUEST["cancel"] ) ) {
KernelTools::bit_redirect( USERS_PKG_URL.'admin/edit_role.php' );
} elseif( isset( $_REQUEST["batch_assign"] ) ) {
$roleInfo = $gBitUser->getRoleInfo( $_REQUEST['batch_assign'] );
if( isset( $_REQUEST["confirm"] ) ) {
$gBitUser->batchAssignUsersToRole( $_REQUEST['batch_assign'] );
} else {
$gBitSystem->setBrowserTitle( KernelTools::tra( 'Confirm Batch Role Assignment' ) );
$formHash['batch_assign'] = $_REQUEST["batch_assign"];
$msgHash = array(
'label' => KernelTools::tra( 'Batch Assign Users to Role' ),
'confirm_item' => $roleInfo['role_name'],
'warning' => KernelTools::tra( 'This will assign every user on the site to the role' ).' <strong>'.$roleInfo['role_name'].'</strong>',
);
$gBitSystem->confirmDialog( $formHash,$msgHash );
}
} elseif( isset($_REQUEST["members"] ) ) {
$roleInfo = $gBitUser->getRoleInfo( $_REQUEST["members"] );
$gBitSmarty->assign( 'roleInfo', $roleInfo );
$roleMembers = $gBitUser->getRoleUsers( $_REQUEST["members"] );
$gBitSmarty->assign( 'roleMembers', $roleMembers );
$mid = "bitpackage:users/role_list_members.tpl";
$gBitSystem->setBrowserTitle( KernelTools::tra( 'Role Members' ).': '.$roleInfo['role_name'] );
} elseif( isset($_REQUEST["save"] ) ) {
if( empty($_REQUEST["name"] ) ) {
$_REQUEST["name"] = $_REQUEST["olrole"];
}
// modification
$_REQUEST['user_id'] = ROOT_USER_ID;
if( $gBitUser->storeRole( $_REQUEST ) ) {
$successMsg = "Role changes were saved sucessfully.";
} else {
$errorMsg = $gBitUser->mErrors['roles'];
}
if( !empty( $_REQUEST['default_home_role'] ) ) {
$gBitSystem->storeConfig( 'default_home_role', $_REQUEST['role_id'], USERS_PKG_NAME );
} elseif( $_REQUEST['role_id'] == $gBitSystem->getConfig( 'default_home_role' ) ) {
// the default home role was unchecked.
$gBitSystem->storeConfig( 'default_home_role', null, USERS_PKG_NAME );
}
// $mid = 'bitpackage:users/admin_troles_list.tpl';
} elseif( isset( $_REQUEST['updateperms'] )) {
foreach( array_keys( $allPerms ) as $perm ) {
if( !empty( $_REQUEST['perm'][$perm] )) {
$gBitUser->assignPermissionToRole( $perm, $_REQUEST['role_id'] );
} else {
// we have a selected perm that is now UNselected
$gBitUser->removePermissionFromRole( $perm, $_REQUEST['role_id'] );
}
}
// let's reload just to be safe.
$allPerms = $gBitUser->getRolePermissions( $permListHash );
} elseif( isset( $_REQUEST["action"] )) {
$formHash['action'] = $_REQUEST['action'];
// Process a form to remove a role
if( $_REQUEST["action"] == 'delete' ) {
$formHash['role_id'] = $_REQUEST['role_id'];
$roleInfo = $gBitUser->getRoleInfo( $_REQUEST['role_id'] );
if( isset( $_REQUEST["confirm"] ) ) {
$gBitUser->verifyTicket();
if( $_REQUEST['role_id'] == $gBitSystem->getConfig( 'default_home_role' ) ) {
$gBitSystem->storeConfig( 'default_home_role', null, USERS_PKG_NAME );
}
$gBitUser->expungeRole( $_REQUEST['role_id'] );
$successMsg = "The role ".$roleInfo['role_name']." was deleted.";
unset( $_REQUEST['role_id'] );
} else {
$gBitSystem->setBrowserTitle( KernelTools::tra('Delete role') );
$msgHash = array(
'confirm_item' => KernelTools::tra( 'Are you sure you want to remove the role?' ),
'warning' => KernelTools::tra( 'This will permentally delete the role' )." <strong>$roleInfo[role_name]</strong>",
);
$gBitSystem->confirmDialog( $formHash,$msgHash );
}
} elseif ($_REQUEST["action"] == 'remove') {
$gBitUser->removePermissionFromRole( $_REQUEST["permission"], $_REQUEST['role_id'] );
$successMsg = 'The permission '.$_REQUEST['permission'].' was removed successflly. <a href="'.USERS_PKG_URL.'admin/edit_role.php?action=assign&perm='.$_REQUEST['permission'].'&role_id='.$_REQUEST['role_id'].'&pacakge='.$_REQUEST['package'].'">Undo last action.</a>';
} elseif( $_REQUEST["action"] == 'create' ) {
$mid = 'bitpackage:users/admin_role_edit.tpl';
$gBitSystem->setBrowserTitle( KernelTools::tra( 'Create New Role' ) );
} elseif ($_REQUEST["action"] == 'assign') {
$gBitUser->assignPermissionToRole($_REQUEST["perm"], $_REQUEST['role_id']);
}
}
if( !empty( $_REQUEST['role_id'] ) || (!empty( $_REQUEST["action"] ) && $_REQUEST["action"] == 'create' ) ) {
$permPackages = $gBitUser->getPermissionPackages();
$gBitSmarty->assign( 'permPackages', $permPackages );
// get role list separately from the $users stuff to avoid splitting of data due to pagination
$listHash = array( 'sort_mode' => 'role_name_asc' );
/*
// get content and pass it on to the template
include_once( LIBERTY_PKG_INCLUDE_PATH.'get_content_list_inc.php' );
foreach( $contentList as $cItem ) {
$cList[$contentTypes[$cItem['content_type_guid']]][$cItem['content_id']] = $cItem['title'].' [id: '.$cItem['content_id'].']';
}
$gBitSmarty->assign( 'contentList', $cList );
$gBitSmarty->assign( 'contentSelect', $contentSelect );
*/
$contentTypes = array( '' => KernelTools::tra( 'All Content' ) );
foreach( $gLibertySystem->mContentTypes as $cType ) {
$contentTypes[$cType['content_type_guid']] = $gLibertySystem->getContentTypeName( $cType['content_type_guid'] );
}
$gBitSmarty->assign( 'contentTypes', $contentTypes );
} else {
// get rolelist separately from the $users stuff to avoid splitting of data due to pagination
$listHash = array( 'sort_mode' => !empty( $_REQUEST['sort_mode'] ) ? $_REQUEST['sort_mode'] : 'role_name_asc' );
}
$gBitSmarty->assign('roleList', $gBitUser->getAllRoles( $listHash ));
$inc = [];
if( empty( $mid ) ) {
if( !empty( $_REQUEST['role_id'] ) ) {
$roleInfo = $gBitUser->getRoleInfo( $_REQUEST['role_id'] );
$defaultRoleId = $gBitSystem->getConfig( 'default_home_role' );
$gBitSmarty->assign( 'defaultRoleId', $defaultRoleId );
$gBitSmarty->assign( 'roleInfo', $roleInfo );
$gBitSmarty->assign( 'allPerms', $allPerms );
$gBitSystem->setBrowserTitle( KernelTools::tra( 'Admininster Role' ).': '.$roleInfo['role_name'] );
$mid = 'bitpackage:users/admin_role_edit.tpl';
} else {
$gBitSystem->setBrowserTitle( KernelTools::tra( 'Admin List Roles' ) );
$_REQUEST['role_id'] = 0;
$mid = 'bitpackage:users/admin_roles_list.tpl';
}
}
$gBitSmarty->assign('successMsg',$successMsg);
$gBitSmarty->assign('errorMsg',$errorMsg);
// Display the template for role administration
$gBitSystem->display( $mid , null, [ 'display_mode' => 'edit' ]);
|
