Context Navigation

source: trunk/expressoAdmin1_2/inc/class.uisectors.inc.php @ 1145

Revision 1145, 12.0 KB checked in by rodsouza, 15 years ago (diff)
Ticket #581 - Restrict the manager to create sub-organizations in organizations where he has not permission.
Property svn:eol-style set to `native` Property svn:executable set to ``*

Rev	Line
[2]	1	<?php
	2	/************************************************************************************\
	3	* Expresso Administração *
	4	* by Joao Alfredo Knopik Junior (joao.alfredo@gmail.com, jakjr@celepar.pr.gov.br) *
	5	* -----------------------------------------------------------------------------------*
	6	* This program is free software; you can redistribute it and/or modify it *
	7	* under the terms of the GNU General Public License as published by the *
	8	* Free Software Foundation; either version 2 of the License, or (at your *
	9	* option) any later version. *
	10	\************************************************************************************/
	11
	12	class uisectors
	13	{
	14	var $public_functions = array
	15	(
	16	'list_sectors' => True,
	17	'add_sector' => True,
	18	'validate_data_sectors_add' => True,
[32]	19	'edit_sector' => True,
	20	'validate_data_sectors_edit' => True,
[2]	21	'delete_sector' => True,
	22	'css' => True
	23	);
	24
	25	var $bo;
	26	var $nextmatchs;
	27	var $functions;
	28
	29	function uisectors()
	30	{
	31	$this->bo = CreateObject('expressoAdmin1_2.bosectors');
	32	$this->so = $this->bo->so;
	33	$this->functions = $this->bo->functions;
	34	$this->nextmatchs = createobject('phpgwapi.nextmatchs');
	35	}
	36
	37	function list_sectors()
	38	{
[64]	39	$manager_lid = $GLOBALS['phpgw']->accounts->data['account_lid'];
	40	$acl = $this->functions->read_acl($manager_lid);
	41	$contexts = $acl['contexts'];
	42	foreach ($acl['contexts_display'] as $index=>$tmp_context)
	43	{
	44	$context_display .= '<br>'.$tmp_context;
	45	}
	46
[2]	47	// Verifica se o administrador tem acesso.
[64]	48	if (!$this->functions->check_acl($manager_lid,'list_sectors'))
[2]	49	{
	50	$GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/expressoAdmin1_2/inc/access_denied.php'));
	51	}
	52
	53	unset($GLOBALS['phpgw_info']['flags']['noheader']);
	54	unset($GLOBALS['phpgw_info']['flags']['nonavbar']);
	55
	56	$GLOBALS['phpgw_info']['flags']['app_header'] = $GLOBALS['phpgw_info']['apps']['expressoAdmin1_2']['title'].' - '.lang('Sectors');
	57	$GLOBALS['phpgw']->common->phpgw_header();
	58
	59	$p = CreateObject('phpgwapi.Template',PHPGW_APP_TPL);
	60	$p->set_file(array('sectors' => 'sectors.tpl'));
	61	$p->set_block('sectors','list','list');
	62	$p->set_block('sectors','row','row');
	63	$p->set_block('sectors','row_empty','row_empty');
	64
[64]	65	$sectors_info = $this->functions->get_sectors_list($contexts);
[2]	66
	67	$var = Array(
	68	'th_bg' => $GLOBALS['phpgw_info']['theme']['th_bg'],
	69	'back_url' => $GLOBALS['phpgw']->link('/expressoAdmin1_2/index.php'),
[548]	70	'context_display' => $context_display,
[597]	71	'lang_inactives' => lang('list inactives')
[2]	72	);
	73	$p->set_var($var);
[414]	74	$p->set_var($this->functions->make_dinamic_lang($p, 'list'));
[2]	75
	76	if (!count($sectors_info))
	77	{
	78	$p->set_var('message',lang('No matches found'));
	79	$p->parse('rows','row_empty',True);
	80	}
	81	else
	82	{
[64]	83	if ($this->functions->check_acl($manager_lid,'edit_sectors'))
[2]	84	{
	85	$can_edit = True;
	86	}
	87
[64]	88	if ($this->functions->check_acl($manager_lid,'delete_sectors'))
[2]	89	{
	90	$can_delete = True;
	91	}
	92
[46]	93	foreach($sectors_info as $context=>$sector)
[2]	94	{
	95	$tr_color = $this->nextmatchs->alternate_row_color($tr_color);
	96
	97	$var = Array(
	98	'tr_color' => $tr_color,
[46]	99	'sector_name' => $sector,
	100	'add_link' => $this->row_action('add','sector',$context)
[597]	101	);
[548]	102	if(isset($GLOBALS['phpgw_info']['server']['time_to_account_expires']))
[597]	103	$var['inactives_link'] = $this->row_action('list_inactive','users',$context,'uiaccounts');
[548]	104	else
[597]	105	$var['inactives_link'] = lang('disabled');
[548]	106
[2]	107	$p->set_var($var);
	108
[32]	109	if ($can_edit)
	110	{
[46]	111	$p->set_var('edit_link',$this->row_action('edit','sector',$context));
[32]	112	}
	113	else
	114	{
	115	$p->set_var('edit_link',' ');
	116	}
	117
[2]	118	if ($can_delete)
	119	{
[46]	120	$p->set_var('delete_link',$this->row_action('delete','sector',$context));
[2]	121	}
	122	else
	123	{
	124	$p->set_var('delete_link',' ');
	125	}
	126
	127	$p->fp('rows','row',True);
	128	}
	129	}
	130	$var = Array(
	131	'action' => $GLOBALS['phpgw']->link('/index.php','menuaction=expressoAdmin1_2.uisectors.add_sector')
	132	);
	133	$p->set_var($var);
	134
	135	if (! $GLOBALS['phpgw']->acl->check('group_access',4,'admin'))
	136	{
[309]	137	$p->set_var('input_add','<input type="submit" value="' . lang('Add Sectors') . '">');
[2]	138	}
	139
	140	$p->parse('rows','row_empty',True);
	141	$p->pfp('out','list');
	142	}
	143
	144
	145	function add_sector($context='')
	146	{
[64]	147	$manager_lid = $GLOBALS['phpgw']->accounts->data['account_lid'];
	148	$acl = $this->functions->read_acl($manager_lid);
[1145]	149
	150	$manager_contexts = $acl['contexts'];
	151	$combo_manager_org = '';
	152	foreach ($manager_contexts as $index=>$context)
	153	$combo_manager_org .= $this->functions->get_organizations( $context );
	154
[2]	155	$context = $_GET['context'];
	156
	157	// Verifica se tem acesso a este modulo
[64]	158	if (!$this->functions->check_acl($manager_lid,'create_sectors'))
[2]	159	{
	160	$GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/expressoAdmin1_2/inc/access_denied.php'));
	161	}
	162
	163	unset($GLOBALS['phpgw_info']['flags']['noheader']);
	164	unset($GLOBALS['phpgw_info']['flags']['nonavbar']);
[309]	165	$GLOBALS['phpgw_info']['flags']['app_header'] = $GLOBALS['phpgw_info']['apps']['expressoAdmin1_2']['title'].' - '.lang('Create Sector');
[2]	166	$GLOBALS['phpgw']->common->phpgw_header();
	167
	168	// Set o template
	169	$p = CreateObject('phpgwapi.Template',PHPGW_APP_TPL);
	170	$p->set_file(Array('create_sector' => 'sectors_form.tpl'));
[414]	171	$p->set_block('create_sector','list','list');
[396]	172
[2]	173	// Seta variaveis utilizadas pelo tpl.
	174	$var = Array(
[32]	175	'action' => $GLOBALS['phpgw']->link('/index.php','menuaction=expressoAdmin1_2.uisectors.validate_data_sectors_add'),
	176	'back_url' => $GLOBALS['phpgw']->link('/index.php','menuaction=expressoAdmin1_2.uisectors.list_sectors'),
	177	'th_bg' => $GLOBALS['phpgw_info']['theme']['th_bg'],
[64]	178	'context' => $context == '' ? $GLOBALS['phpgw_info']['server']['ldap_context'] : $context,
[32]	179	'sector' => $_POST['sector'],
[1145]	180	'manager_org' => $combo_manager_org,
[309]	181	'sector_visible_checked'=> $_POST['sector_visible'] ? 'checked' : '',
[32]	182	'error_messages' => $_POST['error_messages'] == '' ? '' : "<script type='text/javascript'>alert('".$_POST['error_messages']."')</script>",
[2]	183	);
	184	$p->set_var($var);
[414]	185	$p->set_var($this->functions->make_dinamic_lang($p, 'list'));
[2]	186
	187	$p->pfp('out','create_sector');
	188	}
	189
[32]	190	function edit_sector()
	191	{
	192	$account_lid = $GLOBALS['phpgw']->accounts->data['account_lid'];
	193	$acl = $this->functions->read_acl($account_lid);
	194	$manager_context = $acl[0]['context'];
	195
	196	$context = $_GET['context'];
[1145]	197
	198	$combo_manager_org = $this->functions->get_organizations($_GET['context'], '', true, true, true);
	199	$combo_manager_org = substr( $combo_manager_org, 0, ( strpos($combo_manager_org, '</option>') + 9 ) );
	200
[32]	201	$a_tmp = explode(",", ldap_dn2ufn($context));
	202	$sector_name = $a_tmp[0];
	203
	204	// Verifica se tem acesso a este modulo
	205	if (!$this->functions->check_acl($account_lid,'edit_sectors'))
	206	{
	207	$GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/expressoAdmin1_2/inc/access_denied.php'));
	208	}
	209
	210	unset($GLOBALS['phpgw_info']['flags']['noheader']);
	211	unset($GLOBALS['phpgw_info']['flags']['nonavbar']);
[309]	212	$GLOBALS['phpgw_info']['flags']['app_header'] = $GLOBALS['phpgw_info']['apps']['expressoAdmin1_2']['title'].' - '.lang('Edit Sector');
[32]	213	$GLOBALS['phpgw']->common->phpgw_header();
	214
	215	// Set o template
	216	$p = CreateObject('phpgwapi.Template',PHPGW_APP_TPL);
	217	$p->set_file(Array('edit_sector' => 'sectors_form.tpl'));
[414]	218	$p->set_block('edit_sector','list','list');
[32]	219
	220	if (!$_POST)
	221	{
	222	$sector_info = $this->so->get_info($context);
	223	$_POST['sector_visible'] = $sector_info[0]['phpgwaccountvisible'][0];
	224	}
	225
	226	// Seta variaveis utilizadas pelo tpl.
	227	$var = Array(
	228	'action' => $GLOBALS['phpgw']->link('/index.php','menuaction=expressoAdmin1_2.bosectors.save_sector'),
	229	'back_url' => $GLOBALS['phpgw']->link('/index.php','menuaction=expressoAdmin1_2.uisectors.list_sectors'),
	230	'th_bg' => $GLOBALS['phpgw_info']['theme']['th_bg'],
	231	'context' => $context == '' ? $manager_context : $context,
[1145]	232	'sector' => $_POST['sector'] == '' ? $sector_name : $_POST['sector'],
	233	'manager_org' => $combo_manager_org,
[309]	234	'sector_visible_checked'=> $_POST['sector_visible'] ? 'checked' : '',
[32]	235
	236	'lang_add' => lang('Add'),
	237	'disable' => 'disabled',
	238	'error_messages' => $_POST['error_messages'] == '' ? '' : "<script type='text/javascript'>alert('".$_POST['error_messages']."')</script>",
	239	);
	240	$p->set_var($var);
[414]	241	$p->set_var($this->functions->make_dinamic_lang($p, 'list'));
	242
[32]	243	$p->pfp('out','edit_sector');
	244	}
	245
[2]	246	function validate_data_sectors_add()
	247	{
	248	$sector_name = $_POST['sector'];
[396]	249	$context = $_POST['context'];
[2]	250
	251	// Verifica se o nome do sector nao esta vazio.
	252	if ($sector_name == '')
	253	{
[309]	254	$_POST['error_messages'] = lang('Sector name is empty.');
[2]	255	ExecMethod('expressoAdmin1_2.uisectors.add_sector');
	256	return;
	257	}
	258
	259	// Verifica se o nome do setor existe no contexto atual.
	260	if ($this->so->exist_sector_name($sector_name, $context))
	261	{
	262	$_POST['error_messages'] = lang('Sector name already exist.');
	263	ExecMethod('expressoAdmin1_2.uisectors.add_sector');
	264	return;
	265	}
	266
	267	ExecMethod('expressoAdmin1_2.bosectors.create_sector');
	268	}
[32]	269
[2]	270	function delete_sector()
	271	{
	272	$account_lid = $GLOBALS['phpgw']->accounts->data['account_lid'];
	273	$acl = $this->functions->read_acl($account_lid);
	274	$manager_context = $acl[0]['context'];
	275
	276	// Verifica se tem acesso a este modulo
	277	if (!$this->functions->check_acl($account_lid,'delete_sectors'))
	278	{
	279	$GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/expressoAdmin1_2/inc/access_denied.php'));
	280	}
	281
	282	unset($GLOBALS['phpgw_info']['flags']['noheader']);
	283	unset($GLOBALS['phpgw_info']['flags']['nonavbar']);
[309]	284	$GLOBALS['phpgw_info']['flags']['app_header'] = $GLOBALS['phpgw_info']['apps']['expressoAdmin1_2']['title'].' - '.lang('Delete Sectors');
[2]	285	$GLOBALS['phpgw']->common->phpgw_header();
	286
	287	// Set o template
	288	$p = CreateObject('phpgwapi.Template',PHPGW_APP_TPL);
	289	$p->set_file(Array('delete_sector' => 'sectors_delete.tpl'));
[414]	290	$p->set_block('delete_sector','list','list');
[2]	291
	292	$tmp_sector_name = $_GET['context'];
	293	$tmp_sector_name = explode(",",$tmp_sector_name);
	294	$tmp_sector_name = $tmp_sector_name[0];
	295	$tmp_sector_name = explode("=", $tmp_sector_name);
	296	$sector_name = $tmp_sector_name[1];
	297
	298	// Get users of sector
[32]	299	$sector_users = $this->so->get_sector_users($_GET['context']);
[2]	300	$sector_groups = $this->so->get_sector_groups($_GET['context']);
	301	$sector_subsectors = $this->so->get_sector_subsectors($_GET['context']);
	302
	303	$users_list = '';
	304	foreach ($sector_users as $user)
	305	{
	306	$users_list .= $user['cn'][0] . '<br>';
	307	}
	308
	309	$groups_list = '';
	310	foreach ($sector_groups as $group)
	311	{
	312	$groups_list .= $group['cn'][0] . '<br>';
	313	}
	314
	315	$subsectors_list = '';
	316	foreach ($sector_subsectors as $subsector)
	317	{
	318	if ($subsector['dn'] != $_GET['context'])
	319	$subsectors_list .= $subsector['ou'][0] . '<br>';
	320	}
	321
	322	// Seta variaveis utilizadas pelo tpl.
	323	$var = Array(
	324	'color_bg1' => "#E8F0F0",
	325	'manager_context' => $manager_context,
	326	'dn' => $_GET['context'],
	327	'back_url' => $GLOBALS['phpgw']->link('/index.php','menuaction=expressoAdmin1_2.uisectors.list_sectors'),
	328	'action' => $GLOBALS['phpgw']->link('/index.php','menuaction=expressoAdmin1_2.bosectors.delete_sector'),
	329
	330	'sector_name' => $sector_name,
	331	'users_list' => $users_list,
	332	'groups_list' => $groups_list,
	333	'sectors_list' => $subsectors_list
	334	);
	335	$p->set_var($var);
[414]	336	$p->set_var($this->functions->make_dinamic_lang($p, 'list'));
[2]	337	$p->pfp('out','delete_sector');
	338	}
	339
[548]	340	function row_action($action,$type,$context,$class='uisectors')
[2]	341	{
	342	return '<a href="'.$GLOBALS['phpgw']->link('/index.php',Array(
[548]	343	'menuaction' => 'expressoAdmin1_2.'.$class.'.'.$action.'_'.$type,
[2]	344	'context' => $context
	345	)).'"> '.lang($action).' </a>';
	346	}
	347
	348	function css()
	349	{
	350	$appCSS = '';
	351	return $appCSS;
	352	}
	353
	354	}
[548]	355	?>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: