Context Navigation

source: trunk/expressoAdmin1_2/inc/class.user.inc.php @ 107

Revision 107, 43.8 KB checked in by niltonneto, 16 years ago (diff)
Inclusão de funcionalidade
Property svn:eol-style set to `native` Property svn:executable set to ``*

Line
1	<?php
2	/**********************************************************************************\
3	* Expresso Administração *
4	* by Joao Alfredo Knopik Junior (joao.alfredo@gmail.com, jakjr@celepar.pr.gov.br) *
5	* --------------------------------------------------------------------------------*
6	* This program is free software; you can redistribute it and/or modify it *
7	* under the terms of the GNU General Public License as published by the *
8	* Free Software Foundation; either version 2 of the License, or (at your *
9	* option) any later version. *
10	\**********************************************************************************/
11
12	include_once('class.ldap_functions.inc.php');
13	include_once('class.db_functions.inc.php');
14	include_once('class.imap_functions.inc.php');
15	include_once('class.functions.inc.php');
16
17	class user
18	{
19	var $ldap_functions;
20	var $db_functions;
21	var $imap_functions;
22	var $functions;
23	var $current_config;
24
25
26	function user()
27	{
28	$this->ldap_functions = new ldap_functions;
29	$this->db_functions = new db_functions;
30	$this->imap_functions = new imap_functions;
31	$this->functions = new functions;
32	$this->current_config = $_SESSION['phpgw_info']['expresso']['expressoAdmin'];
33	}
34
35	function create($params)
36	{
37	$return['status'] = true;
38
39	// Verifica o acesso do gerente
40	if ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'add_users'))
41	{
42	// Adiciona a organização na frente do uid.
43	if ($this->current_config['expressoAdmin_prefix_org'] == 'true')
44	{
45	$context_dn = ldap_explode_dn(strtolower($GLOBALS['phpgw_info']['server']['ldap_context']), 1);
46
47	$explode_dn = ldap_explode_dn(strtolower($params['context']), 1);
48	$explode_dn = array_reverse($explode_dn);
49	//$params['uid'] = $explode_dn[3] . '-' . $params['uid'];
50	$params['uid'] = $explode_dn[$context_dn['count']] . '-' . $params['uid'];
51	}
52
53	// Leio o ID a ser usado na criação do objecto. Esta função já incrementa o ID no BD.
54	$next_id = ($this->db_functions->get_next_id('accounts'));
55	if ((!is_numeric($next_id['id'])) \|\| (!$next_id['status']))
56	{
57	$return['status'] = false;
58	$return['msg'] = "Problemas obtendo ID do usuário.\n" . $id['msg'];
59	return $return;
60	}
61	else
62	{
63	$id = $next_id['id'];
64	}
65
66	// Cria array para incluir no LDAP
67	$dn = 'uid=' . $params['uid'] . ',' . $params['context'];
68
69	$user_info = array();
70	$user_info['accountStatus'] = $params['accountstatus'] == 1 ? 'active' : 'desactive';
71	$user_info['cn'] = $params['givenname'] . ' ' . $params['sn'];
72	$user_info['gidNumber'] = $params['gidnumber'];
73	$user_info['givenName'] = $params['givenname'];
74	$user_info['homeDirectory'] = '/home/' . $params['uid'];
75	$user_info['mail'] = $params['mail'];
76	$user_info['objectClass'][] = 'posixAccount';
77	$user_info['objectClass'][] = 'inetOrgPerson';
78	$user_info['objectClass'][] = 'shadowAccount';
79	$user_info['objectClass'][] = 'qmailuser';
80	$user_info['objectClass'][] = 'phpgwAccount';
81	$user_info['objectClass'][] = 'top';
82	$user_info['objectClass'][] = 'person';
83	$user_info['objectClass'][] = 'organizationalPerson';
84	$user_info['phpgwAccountExpires'] = '-1';
85	$user_info['phpgwAccountType'] = 'u';
86	$user_info['sn'] = $params['sn'];
87	$user_info['uid'] = $params['uid'];
88	$user_info['uidnumber'] = $id;
89	$user_info['userPassword'] = '{md5}' . base64_encode(pack("H*",md5($params['password1'])));
90
91	if ($params['passwd_expired'] == '1')
92	$user_info['phpgwLastPasswdChange'] = '0';
93
94	// Gerenciar senhas RFC2617
95	if ($this->current_config['expressoAdmin_userPasswordRFC2617'] == 'true')
96	{
97	$realm = $this->current_config['expressoAdmin_realm_userPasswordRFC2617'];
98	$uid = $user_info['uid'];
99	$password = $params['password1'];
100	$user_info['userPasswordRFC2617'] = $realm . ': ' . md5("$uid:$realm:$password");
101	}
102
103	if ($params['phpgwaccountstatus'] == '1')
104	$user_info['phpgwAccountStatus'] = 'A';
105
106	if ($params['departmentnumber'] != '')
107	$user_info['departmentnumber'] = $params['departmentnumber'];
108
109	if ($params['telephonenumber'] != '')
110	$user_info['telephoneNumber'] = $params['telephonenumber'];
111
112	// Cria user_info no caso de ter alias e forwarding email.
113	foreach ($params['mailalternateaddress'] as $index=>$mailalternateaddress)
114	{
115	if ($mailalternateaddress != '')
116	$user_info['mailAlternateAddress'][] = $mailalternateaddress;
117	}
118
119	foreach ($params['mailforwardingaddress'] as $index=>$mailforwardingaddress)
120	{
121	if ($mailforwardingaddress != '')
122	$user_info['mailForwardingAddress'][] = $mailforwardingaddress;
123	}
124
125	if ($params['deliverymode'])
126	$user_info['deliveryMode'] = 'forwardOnly';
127
128	//Ocultar da pesquisa e do catálogo
129	if ($params['phpgwaccountvisible'])
130	$user_info['phpgwAccountVisible'] = '-1';
131
132	// Suporte ao SAMBA
133	if (($this->current_config['expressoAdmin_samba_support'] == 'true') && ($params['use_attrs_samba'] == 'on'))
134	{
135	// Verifica o acesso do gerente aos atributos samba
136	if ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_sambausers_attributes'))
137	{
138	//Verifica se o binario para criar as senhas do samba exite.
139	if (!is_file('/home/expressolivre/mkntpwd'))
140	{
141	$return['status'] = false;
142	$return['msg'] .= "O arquivo binário /home/expressolivre/mkntpwd não exite.\\nEle é necessário para a criação das senhas usadas pelo SAMBA.\\nInforme o administrador ExpressoLivre sobre isto.";
143	}
144	else
145	{
146	$user_info['objectClass'][] = 'sambaSamAccount';
147	$user_info['loginShell'] = '/bin/bash';
148
149	$user_info['sambaSID'] = $params['sambadomain'] . '-' . ((2 * $id)+1000);
150	$user_info['sambaPrimaryGroupSID'] = $params['sambadomain'] . '-' . ((2 * $user_info['gidNumber'])+1001);
151
152	$user_info['sambaAcctFlags'] = $params['sambaacctflags'];
153
154	$user_info['sambaLogonScript'] = $params['sambalogonscript'];
155	$user_info['homeDirectory'] = $params['sambahomedirectory'];
156
157	$user_info['sambaLMPassword'] = exec('/home/expressolivre/mkntpwd -L '.$params['password1']);
158	$user_info['sambaNTPassword'] = exec('/home/expressolivre/mkntpwd -N '.$params['password1']);
159	$user_info['sambaPasswordHistory'] = '0000000000000000000000000000000000000000000000000000000000000000';
160
161	$user_info['sambaPwdCanChange'] = strtotime("now");
162	$user_info['sambaPwdLastSet'] = strtotime("now");
163	$user_info['sambaPwdMustChange'] = '2147483647';
164	}
165	}
166	}
167
168	// Verifica o acesso do gerente aos atributos corporativos
169	if ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'manipulate_corporative_information'))
170	{
171	foreach ($params as $atribute=>$value)
172	{
173	$pos = strstr($atribute, 'corporative_information_');
174	if ($pos !== false)
175	{
176	if ($params[$atribute])
177	{
178	$ldap_atribute = str_replace("corporative_information_", "", $atribute);
179	$user_info[$ldap_atribute] = $params[$atribute];
180	}
181	}
182	}
183	}
184
185	$result = $this->ldap_functions->ldap_add_entry($dn, $user_info);
186	if (!$result['status'])
187	{
188	$return['status'] = false;
189	$return['msg'] .= $result['msg'];
190	}
191
192	// Chama funcao para salvar foto no OpenLDAP.
193	if ( ($_FILES['photo']['name'] != '') && ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users_picture')) )
194	{
195	$result = $this->ldap_functions->ldap_save_photo($dn, $_FILES['photo']['tmp_name']);
196	if (!$result['status'])
197	{
198	$return['status'] = false;
199	$return['msg'] .= $result['msg'];
200	}
201	}
202
203	//GROUPS
204	if ($params['groups'])
205	{
206	foreach ($params['groups'] as $gidnumber)
207	{
208	$result = $this->ldap_functions->add_user2group($gidnumber, $user_info['uid']);
209	if (!$result['status'])
210	{
211	$return['status'] = false;
212	$return['msg'] .= $result['msg'];
213	}
214	$result = $this->db_functions->add_user2group($gidnumber, $id);
215	if (!$result['status'])
216	{
217	$return['status'] = false;
218	$return['msg'] .= $result['msg'];
219	}
220	}
221	}
222
223	// Inclusao do Mail do usuário nas listas de email selecionadas.
224	if ($params['maillists'])
225	{
226	foreach($params['maillists'] as $uidnumber)
227	{
228	$result = $this->ldap_functions->add_user2maillist($uidnumber, $user_info['mail']);
229	if (!$result['status'])
230	{
231	$return['status'] = false;
232	$return['msg'] .= $result['msg'];
233	}
234	}
235	}
236
237	// APPS
238	if (count($params['apps']))
239	{
240	$result = $this->db_functions->add_id2apps($id, $params['apps']);
241	if (!$result['status'])
242	{
243	$return['status'] = false;
244	$return['msg'] .= $result['msg'];
245	}
246	}
247
248	// Chama funcao para incluir no pgsql as preferencia de alterar senha.
249	if ($params['changepassword'])
250	{
251	$result = $this->db_functions->add_pref_changepassword($id);
252	if (!$result['status'])
253	{
254	$return['status'] = false;
255	$return['msg'] .= $result['msg'];
256	}
257	}
258
259	// Chama funcao para criar mailbox do usuario, no imap-cyrus.
260	$result = $this->imap_functions->create($params['uid'], $params['mailquota']);
261	if (!$result['status'])
262	{
263	$return['status'] = false;
264	$return['msg'] .= $result['msg'];
265	}
266
267	$this->db_functions->write_log('criado usuario','',$dn,'','');
268	}
269
270	return $return;
271	}
272
273	function save($new_values)
274	{
275	$return['status'] = true;
276
277	$old_values = $this->get_user_info($new_values['uidnumber']);
278
279	$dn = 'uid=' . $old_values['uid'] . ',' . strtolower($old_values['context']);
280	$diff = array_diff($new_values, $old_values);
281
282	/*
283	echo '<pre>';
284	echo '--- OLD: ';
285	print_r($old_values);
286	echo '<br>--- NEW: ';
287	print_r($new_values);
288	echo '<br>';
289	*/
290
291	$manager_account_lid = $_SESSION['phpgw_session']['session_lid'];
292	if ((!$this->functions->check_acl($manager_account_lid,'edit_users')) &&
293	(!$this->functions->check_acl($manager_account_lid,'change_users_password')) &&
294	(!$this->functions->check_acl($manager_account_lid,'edit_sambausers_attributes')) &&
295	(!$this->functions->check_acl($manager_account_lid,'manipulate_corporative_information'))
296	)
297	{
298	$return['status'] = false;
299	$return['msg'] = 'Você não tem direito de editar informações de usuários.';
300	return $return;
301	}
302
303	// Verifica o acesso do gerente
304	if ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users'))
305	{
306	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
307	// Change user organization
308	if ($diff['context'])
309	{
310	$newrdn = 'uid=' . $new_values['uid'];
311	$newparent = $new_values['context'];
312	$result = $this->ldap_functions->change_user_context($dn, $newrdn, $newparent);
313	if (!$result['status'])
314	{
315	$return['status'] = false;
316	$return['msg'] .= $result['msg'];
317	}
318	else
319	{
320	$dn = $newrdn . ',' . $newparent;
321	$this->db_functions->write_log('alterado contexto do usuario','',$dn,'','');
322	}
323	}
324
325	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
326	// REPLACE some attributes
327	if ($diff['givenname'])
328	{
329	$ldap_mod_replace['givenname'] = $new_values['givenname'];
330	$ldap_mod_replace['cn'] = $new_values['givenname'] . ' ' . $new_values['sn'];
331	$this->db_functions->write_log("alterado givenname do usuario",'',$dn,'','');
332	}
333	if ($diff['sn'])
334	{
335	$ldap_mod_replace['sn'] = $new_values['sn'];
336	$ldap_mod_replace['cn'] = $new_values['givenname'] . ' ' . $new_values['sn'];
337	$this->db_functions->write_log("altera$ldap_mod_do sn do usuario",'',$dn,'','');
338	}
339	if ($diff['mail'])
340	{
341	$ldap_mod_replace['mail'] = $new_values['mail'];
342	$this->ldap_functions->replace_user2maillists($new_values['mail'], $old_values['mail']);
343	$this->db_functions->write_log("alterado mail do usuario",'',$dn,'','');
344	}
345	/*
346	if (($diff['mailalternateaddress']) && ($old_values['mailalternateaddress'] != ''))
347	{
348	$ldap_mod_replace['mailalternateaddress'] = $new_values['mailalternateaddress'];
349	$this->db_functions->write_log("alterado mailalternateaddress do usuario",'',$dn,'','');
350	}
351	if (($diff['mailforwardingaddress']) && ($old_values['mailforwardingaddress'] != ''))
352	{
353	$ldap_mod_replace['mailforwardingaddress'] = $new_values['mailforwardingaddress'];
354	$this->db_functions->write_log("alterado mailforwardingaddress do usuario",'',$dn,'','');
355	}
356	*/
357	if (($diff['telephonenumber']) && ($old_values['telephonenumber'] != ''))
358	{
359	$ldap_mod_replace['telephonenumber'] = $new_values['telephonenumber'];
360	$this->db_functions->write_log("alterado telephonenumber do usuario",'',$dn,'','');
361	}
362	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
363	// Passwd Expired - Com atributo
364	if (($old_values['passwd_expired'] != '') && ($new_values['passwd_expired'] == '1'))
365	{
366	$ldap_mod_replace['phpgwlastpasswdchange'] = '0';
367	$this->db_functions->write_log("Expirado senha do usuário",'',$dn,'','');
368	}
369	}
370
371	if ( ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users')) \|\|
372	($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'change_users_password')) )
373	{
374	if ($diff['password1'])
375	{
376	$ldap_mod_replace['userPassword'] = '{md5}' . base64_encode(pack("H*",md5($new_values['password1'])));
377
378	// Suporte ao SAMBA
379	if (($this->current_config['expressoAdmin_samba_support'] == 'true') && ($new_values['userSamba']) && ($new_values['use_attrs_samba'] == 'on'))
380	{
381	$ldap_mod_replace['sambaLMPassword'] = exec('/home/expressolivre/mkntpwd -L '.$new_values['password1']);
382	$ldap_mod_replace['sambaNTPassword'] = exec('/home/expressolivre/mkntpwd -N '.$new_values['password1']);
383	}
384
385	// Gerenciar senhas RFC2617
386	if ($this->current_config['expressoAdmin_userPasswordRFC2617'] == 'true')
387	{
388	$realm = $this->current_config['expressoAdmin_realm_userPasswordRFC2617'];
389	$uid = $new_values['uid'];
390	$password = $new_values['password1'];
391	$passUserRFC2617 = $realm . ': ' . md5("$uid:$realm:$password");
392
393	if ($old_values['userPasswordRFC2617'] != '')
394	$ldap_mod_replace['userPasswordRFC2617'] = $passUserRFC2617;
395	else
396	$ldap_add['userPasswordRFC2617'] = $passUserRFC2617;
397	}
398
399	$this->db_functions->write_log("alterado password do usuario",'',$dn,'','');
400	}
401	}
402
403	// REPLACE, ADD & REMOVE COPORATIVEs ATRIBUTES
404	// Verifica o acesso do gerente aos atributos corporativos
405
406	if ( ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users')) \|\|
407	($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'manipulate_corporative_information')) )
408	{
409	foreach ($new_values as $atribute=>$value)
410	{
411	$pos = strstr($atribute, 'corporative_information_');
412	if ($pos !== false)
413	{
414	$ldap_atribute = str_replace("corporative_information_", "", $atribute);
415	// REPLACE ATTRS OF CORPORATIVE
416	if (($diff[$atribute]) && ($old_values[$atribute] != ''))
417	{
418	$ldap_atribute = str_replace("corporative_information_", "", $atribute);
419	$ldap_mod_replace[$ldap_atribute] = $new_values[$atribute];
420	$this->db_functions->write_log("alterado $ldap_atribute do usuario",'',$dn,'','');
421	}
422	//ADD ATTRS OF CORPORATIVE
423	elseif (($old_values[$atribute] == '') && ($new_values[$atribute] != ''))
424	{
425	$ldap_add[$ldap_atribute] = $new_values[$atribute];
426	$this->db_functions->write_log("adicionado $ldap_atribute ao usuario",'',$dn,'','');
427	}
428	//REMOVE ATTRS OF CORPORATIVE
429	elseif (($old_values[$atribute] != '') && ($new_values[$atribute] == ''))
430	{
431	$ldap_remove[$ldap_atribute] = array();
432	$this->db_functions->write_log("removido $ldap_atribute do usuario",'',$dn,'','');
433	}
434	}
435	}
436	}
437
438	//Suporte ao SAMBA
439	if ( ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users')) \|\|
440	($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_sambausers_attributes')) )
441	{
442	if (($this->current_config['expressoAdmin_samba_support'] == 'true') && ($new_values['userSamba']) && ($new_values['use_attrs_samba'] == 'on'))
443	{
444	if ($diff['sambaacctflags'])
445	{
446	$ldap_mod_replace['sambaacctflags'] = $new_values['sambaacctflags'];
447	$this->db_functions->write_log("alterado sambaacctflags do usuario",'',$dn,'','');
448	}
449	if ($diff['sambalogonscript'])
450	{
451	$ldap_mod_replace['sambalogonscript'] = $new_values['sambalogonscript'];
452	$this->db_functions->write_log("alterado sambalogonscript do usuario",'',$dn,'','');
453	}
454	if ($diff['sambahomedirectory'])
455	{
456	$ldap_mod_replace['homedirectory'] = $new_values['sambahomedirectory'];
457	$this->db_functions->write_log("alterado homedirectory do usuario",'',$dn,'','');
458	}
459	if ($diff['sambadomain'])
460	{
461	$ldap_mod_replace['sambaSID'] = $diff['sambadomain'] . '-' . ((2 * $old_values['uidnumber'])+1000);
462	$ldap_mod_replace['sambaPrimaryGroupSID'] = $diff['sambadomain'] . '-' . ((2 * $old_values['gidnumber'])+1001);
463	$this->db_functions->write_log("alterado dominio samba do usuario $dn para " . $params['sambadomain'],'',$dn,'','');
464	}
465	}
466	}
467
468	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
469	// ADD or REMOVE some attributes
470	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
471
472	// Verifica o acesso ára adicionar ou remover tais atributos
473	if ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users'))
474	{
475	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
476	// TELEPHONE
477	if (($old_values['telephonenumber'] == '') && ($new_values['telephonenumber'] != ''))
478	{
479	$ldap_add['telephonenumber'] = $new_values['telephonenumber'];
480	$this->db_functions->write_log("adicionado telephonenumber ao usuario",'',$dn,'','');
481	}
482	if (($old_values['telephonenumber'] != '') && ($new_values['telephonenumber'] == ''))
483	{
484	$ldap_remove['telephonenumber'] = array();
485	$this->db_functions->write_log("removido telephonenumber do usuario",'',$dn,'','');
486	}
487	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
488	// Passwd Expired - Sem atributo
489	if (($old_values['passwd_expired'] == '') && ($new_values['passwd_expired'] == '1'))
490	{
491	$ldap_add['phpgwlastpasswdchange'] = '0';
492	$this->db_functions->write_log("Expirado senha do usuário",'',$dn,'','');
493	}
494	if (($old_values['passwd_expired'] == '0') && ($new_values['passwd_expired'] == ''))
495	{
496	$ldap_remove['phpgwlastpasswdchange'] = array();
497	$this->db_functions->write_log("Removido expiração da senha do usuário",'',$dn,'','');
498	}
499	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
500	// PREF_CHANGEPASSWORD
501	if (($old_values['changepassword'] == '') && ($new_values['changepassword'] != ''))
502	{
503	$this->db_functions->add_pref_changepassword($new_values['uidnumber']);
504	$this->db_functions->write_log("adicionado changepassword ao usuario",'',$dn,'','');
505	}
506	if (($old_values['changepassword'] != '') && ($new_values['changepassword'] == ''))
507	{
508	$this->db_functions->remove_pref_changepassword($new_values['uidnumber']);
509	$this->db_functions->write_log("removido changepassword do usuario",'',$dn,'','');
510	}
511	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
512	// ACCOUNT STATUS
513	if (($old_values['phpgwaccountstatus'] == '') && ($new_values['phpgwaccountstatus'] != ''))
514	{
515	$ldap_add['phpgwaccountstatus'] = 'A';
516	$this->db_functions->write_log("ativado conta do usuario",'',$dn,'','');
517	}
518	if (($old_values['phpgwaccountstatus'] != '') && ($new_values['phpgwaccountstatus'] == ''))
519	{
520	$ldap_remove['phpgwaccountstatus'] = array();
521	$this->db_functions->write_log("desativado conta do usuario",'',$dn,'','');
522	}
523	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
524	// ACCOUNT VISIBLE
525	if (($old_values['phpgwaccountvisible'] == '') && ($new_values['phpgwaccountvisible'] != ''))
526	{
527	$ldap_add['phpgwaccountvisible'] = '-1';
528	$this->db_functions->write_log("adicionado phpgwaccountvisible ao usuario",'',$dn,'','');
529	}
530	if (($old_values['phpgwaccountvisible'] != '') && ($new_values['phpgwaccountvisible'] == ''))
531	{
532	$ldap_remove['phpgwaccountvisible'] = array();
533	$this->db_functions->write_log("removido phpgwaccountvisible ao usuario",'',$dn,'','');
534	}
535	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
536	// PHOTO
537	if ( ($new_values['delete_photo']) && ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users_picture')) )
538	{
539	$this->ldap_functions->ldap_remove_photo($dn);
540	$this->db_functions->write_log("removido jpegphoto do usuario",'',$dn,'','');
541	}
542	elseif ( ($_FILES['photo']['name'] != '') && ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users_picture')) )
543	{
544	if ($new_values['photo_exist'])
545	$photo_exist = true;
546	else
547	$photo_exist = false;
548	$this->ldap_functions->ldap_save_photo($dn, $_FILES['photo']['tmp_name'], $new_values['photo_exist'], $photo_exist);
549	$this->db_functions->write_log("adicionado jpegphoto ao usuario",'',$dn,'','');
550	}
551	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
552	// Mail Account STATUS
553	if (($old_values['accountstatus'] == '') && ($new_values['accountstatus'] != ''))
554	{
555	$ldap_add['accountstatus'] = 'active';
556	$this->db_functions->write_log("ativado conta de email do usuario",'',$dn,'','');
557	}
558	if (($old_values['accountstatus'] != '') && ($new_values['accountstatus'] == ''))
559	{
560	$ldap_remove['accountstatus'] = array();
561	$this->db_functions->write_log("desativado conta de email do usuario",'',$dn,'','');
562	}
563	/*
564	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
565	// MAILALTERNATEADDRESS
566	if (($old_values['mailalternateaddress'] == '') && ($new_values['mailalternateaddress'] != ''))
567	{
568	$ldap_add['mailalternateaddress'] = $new_values['mailalternateaddress'];
569	$this->db_functions->write_log("adicionado mailalternateaddress ao usuario",'',$dn,'','');
570	}
571	if (($old_values['mailalternateaddress'] != '') && ($new_values['mailalternateaddress'] == ''))
572	{
573	$ldap_remove['mailalternateaddress'] = array();
574	$this->db_functions->write_log("removido mailalternateaddress ao usuario",'',$dn,'','');
575	}
576	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
577	// MAILFORWARDINGADDRESS
578	if (($old_values['mailforwardingaddress'] == '') && ($new_values['mailforwardingaddress'] != ''))
579	{
580	$ldap_add['mailforwardingaddress'] = $new_values['mailforwardingaddress'];
581	$this->db_functions->write_log("adicionado mailforwardingaddress ao usuario",'',$dn,'','');
582	}
583	if (($old_values['mailforwardingaddress'] != '') && ($new_values['mailforwardingaddress'] == ''))
584	{
585	$ldap_remove['mailforwardingaddress'] = array();
586	$this->db_functions->write_log("removido mailforwardingaddress ao usuario",'',$dn,'','');
587	}
588	*/
589
590	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
591	// MAILALTERNATEADDRESS
592	if (!$new_values['mailalternateaddress'])
593	$new_values['mailalternateaddress'] = array();
594	if (!$old_values['mailalternateaddress'])
595	$old_values['mailalternateaddress'] = array();
596	$add_mailalternateaddress = array_diff($new_values['mailalternateaddress'], $old_values['mailalternateaddress']);
597	$remove_mailalternateaddress = array_diff($old_values['mailalternateaddress'], $new_values['mailalternateaddress']);
598	foreach ($add_mailalternateaddress as $index=>$mailalternateaddress)
599	{
600	if ($mailalternateaddress != '')
601	{
602	$ldap_add['mailalternateaddress'][] = $mailalternateaddress;
603	$this->db_functions->write_log("adicionado mailalternateaddress $mailalternateaddress ao usuario $dn",'',$dn,'','');
604	}
605	}
606	foreach ($remove_mailalternateaddress as $index=>$mailalternateaddress)
607	{
608	if ($mailalternateaddress != '')
609	{
610	if ($index !== 'count')
611	{
612	$ldap_remove['mailalternateaddress'][] = $mailalternateaddress;
613	$this->db_functions->write_log("removido mailalternateaddress $mailalternateaddress do usuario $dn",'',$dn,'','');
614	}
615	}
616	}
617
618	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
619	// MAILFORWARDINGADDRESS
620	if (!$new_values['mailforwardingaddress'])
621	$new_values['mailforwardingaddress'] = array();
622	if (!$old_values['mailforwardingaddress'])
623	$old_values['mailforwardingaddress'] = array();
624	$add_mailforwardingaddress = array_diff($new_values['mailforwardingaddress'], $old_values['mailforwardingaddress']);
625	$remove_mailforwardingaddress = array_diff($old_values['mailforwardingaddress'], $new_values['mailforwardingaddress']);
626	foreach ($add_mailforwardingaddress as $index=>$mailforwardingaddress)
627	{
628	if ($mailforwardingaddress != '')
629	{
630	$ldap_add['mailforwardingaddress'][] = $mailforwardingaddress;
631	$this->db_functions->write_log("adicionado mailforwardingaddress $mailforwardingaddress ao usuario $dn",'',$dn,'','');
632	}
633	}
634	foreach ($remove_mailforwardingaddress as $index=>$mailforwardingaddress)
635	{
636	if ($mailforwardingaddress != '')
637	{
638	if ($index !== 'count')
639	{
640	$ldap_remove['mailforwardingaddress'][] = $mailforwardingaddress;
641	$this->db_functions->write_log("removido mailforwardingaddress $mailforwardingaddress do usuario $dn",'',$dn,'','');
642	}
643	}
644	}
645
646	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
647	// Delivery Mode
648	if (($old_values['deliverymode'] == '') && ($new_values['deliverymode'] != ''))
649	{
650	$ldap_add['deliverymode'] = 'forwardOnly';
651	$this->db_functions->write_log("adicionado forwardOnly ao usuario",'',$dn,'','');
652	}
653	if (($old_values['deliverymode'] != '') && ($new_values['deliverymode'] == ''))
654	{
655	$ldap_remove['deliverymode'] = array();
656	$this->db_functions->write_log("removido forwardOnly ao usuario",'',$dn,'','');
657	}
658	}
659
660	if ( ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users')) \|\|
661	($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'change_users_quote')) )
662	{
663	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
664	// MAILQUOTA
665	if ($diff['mailquota'])
666	{
667	$this->imap_functions->change_user_quota($new_values['uid'], $new_values['mailquota']);
668	$this->db_functions->write_log("alterado cota do usuario",'',$dn,'','');
669	}
670	}
671
672	if ( ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users')) \|\|
673	($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_sambausers_attributes')) )
674	{
675	//////////////////////////////////////////////////////////////////////////////////////////////////////////////////
676	// REMOVE ATTRS OF SAMBA
677	if (($this->current_config['expressoAdmin_samba_support'] == 'true') && ($new_values['userSamba']) && ($new_values['use_attrs_samba'] != 'on'))
678	{
679	$ldap_remove['objectclass'] = 'sambaSamAccount';
680	$ldap_remove['loginShell'] = array();
681	$ldap_remove['sambaSID'] = array();
682	$ldap_remove['sambaPrimaryGroupSID'] = array();
683	$ldap_remove['sambaAcctFlags'] = array();
684	$ldap_remove['sambaLogonScript'] = array();
685	$ldap_remove['sambaLMPassword'] = array();
686	$ldap_remove['sambaNTPassword'] = array();
687	$ldap_remove['sambaPasswordHistory'] = array();
688	$ldap_remove['sambaPwdCanChange'] = array();
689	$ldap_remove['sambaPwdLastSet'] = array();
690	$ldap_remove['sambaPwdMustChange'] = array();
691	$this->db_functions->write_log("removido atributos samba do usuario.",'',$dn,'','');
692	}
693	//////////////////////////////////////////////////////////////////////////////////////////////////////////////////
694	// ADD ATTRS OF SAMBA
695	if (($this->current_config['expressoAdmin_samba_support'] == 'true') && (!$new_values['userSamba']) && ($new_values['use_attrs_samba'] == 'on'))
696	{
697	//Verifica se o binario para criar as senhas do samba exite.
698	if (!is_file('/home/expressolivre/mkntpwd'))
699	{
700	$return['status'] = false;
701	$return['msg'] .= "O arquivo binário /home/expressolivre/mkntpwd não exite.\\nEle é necessário para a criação das senhas usadas pelo SAMBA.\\nInforme o administrador ExpressoLivre sobre isto.\\n";
702	}
703	else
704	{
705	$ldap_add['objectClass'][] = 'sambaSamAccount';
706	$ldap_mod_replace['loginShell'] = '/bin/bash';
707	$ldap_add['sambaSID'] = $new_values['sambadomain'] . '-' . ((2 * $new_values['uidnumber'])+1000);
708	$ldap_add['sambaPrimaryGroupSID'] = $new_values['sambadomain'] . '-' . ((2 * $new_values['gidnumber'])+1001);
709	$ldap_add['sambaAcctFlags'] = $new_values['sambaacctflags'];
710	$ldap_add['sambaLogonScript'] = $new_values['sambalogonscript'];
711	$ldap_mod_replace['homeDirectory'] = $new_values['sambahomedirectory'];
712	$ldap_add['sambaLMPassword'] = exec('/home/expressolivre/mkntpwd -L '.'senha');
713	$ldap_add['sambaNTPassword'] = exec('/home/expressolivre/mkntpwd -N '.'senha');
714	$ldap_add['sambaPasswordHistory'] = '0000000000000000000000000000000000000000000000000000000000000000';
715	$ldap_add['sambaPwdCanChange'] = strtotime("now");
716	$ldap_add['sambaPwdLastSet'] = strtotime("now");
717	$ldap_add['sambaPwdMustChange'] = '2147483647';
718	$this->db_functions->write_log("adicionado atributos samba do usuario.",'',$dn,'','');
719	}
720	}
721	}
722
723	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
724	// GROUPS
725	if ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users'))
726	{
727	if (!$new_values['groups'])
728	$new_values['groups'] = array();
729	if (!$old_values['groups'])
730	$old_values['groups'] = array();
731
732	$add_groups = array_diff($new_values['groups'], $old_values['groups']);
733	$remove_groups = array_diff($old_values['groups'], $new_values['groups']);
734
735	if (count($add_groups)>0)
736	{
737	foreach($add_groups as $gidnumber)
738	{
739	$this->db_functions->add_user2group($gidnumber, $new_values['uidnumber']);
740	$this->ldap_functions->add_user2group($gidnumber, $new_values['uid']);
741	$this->db_functions->write_log("adicionado usuario ao grupo $gidnumber.",'',$dn,'','');
742	}
743	}
744
745	if (count($remove_groups)>0)
746	{
747	foreach($remove_groups as $gidnumber)
748	{
749	echo $gidnumber;
750
751	foreach($old_values['groups_info'] as $group)
752	{
753	if (($group['gidnumber'] == $gidnumber) && ($group['group_disabled'] == 'false'))
754	{
755	$this->db_functions->remove_user2group($gidnumber, $new_values['uidnumber']);
756	$this->ldap_functions->remove_user2group($gidnumber, $new_values['uid']);
757	$this->db_functions->write_log("removido usuario do grupo $gidnumber.",'',$dn,'','');
758	}
759	}
760	}
761	}
762
763	if ($diff['gidnumber'])
764	{
765	$ldap_mod_replace['gidnumber'] = $new_values['gidnumber'];
766	if (($this->current_config['expressoAdmin_samba_support'] == 'true') && ($new_values['userSamba']) && ($new_values['use_attrs_samba'] == 'on'))
767	{
768	$ldap_mod_replace['sambaPrimaryGroupSID'] = $this->current_config['expressoAdmin_sambaSID'] . '-' . ((2 * $new_values['gidnumber'])+1001);
769	}
770	$this->db_functions->write_log("alterado gidnumber do usuario.",'',$dn,'','');
771	}
772	}
773	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
774	// LDAP_MOD_REPLACE
775	if (count($ldap_mod_replace))
776	{
777	$result = $this->ldap_functions->replace_user_attributes($dn, $ldap_mod_replace);
778	if (!$result['status'])
779	{
780	$return['status'] = false;
781	$return['msg'] .= $result['msg'];
782	}
783	}
784
785	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
786	// LDAP_MOD_ADD
787	if (count($ldap_add))
788	{
789	echo 'ldap-add<br>';
790	print_r($ldap_add);
791	$result = $this->ldap_functions->add_user_attributes($dn, $ldap_add);
792	if (!$result['status'])
793	{
794	$return['status'] = false;
795	$return['msg'] .= $result['msg'];
796	}
797	}
798
799	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
800	// LDAP_MOD_REMOVE
801	if (count($ldap_remove))
802	{
803	echo 'ldap-remove<br>';
804	print_r($ldap_remove);
805	$result = $this->ldap_functions->remove_user_attributes($dn, $ldap_remove);
806	if (!$result['status'])
807	{
808	$return['status'] = false;
809	$return['msg'] .= $result['msg'];
810	}
811	}
812	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
813
814
815	if ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'edit_users'))
816	{
817	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
818	// MAILLISTS
819	if (!$new_values['maillists'])
820	$new_values['maillists'] = array();
821	if (!$old_values['maillists'])
822	$old_values['maillists'] = array();
823
824	$add_maillists = array_diff($new_values['maillists'], $old_values['maillists']);
825	$remove_maillists = array_diff($old_values['maillists'], $new_values['maillists']);
826
827	if (count($add_maillists)>0)
828	{
829	foreach($add_maillists as $uidnumber)
830	{
831	$this->ldap_functions->add_user2maillist($uidnumber, $new_values['mail']);
832	$this->db_functions->write_log("adicionado usuario a maillist $uidnumber.",'',$dn,'','');
833	}
834	}
835
836	if (count($remove_maillists)>0)
837	{
838	foreach($remove_maillists as $uidnumber)
839	{
840	$this->ldap_functions->remove_user2maillist($uidnumber, $new_values['mail']);
841	$this->db_functions->write_log("removido usuario da maillist $uidnumber.",'',$dn,'','');
842	}
843	}
844
845	//////////////////////////////////////////////////////////////////////////////////////////////////////////////////
846	// APPS
847	$new_values2 = array();
848	$old_values2 = array();
849	if (count($new_values['apps'])>0)
850	{
851	foreach ($new_values['apps'] as $app=>$tmp)
852	{
853	$new_values2[] = $app;
854	}
855	}
856	if (count($old_values['apps'])>0)
857	{
858	foreach ($old_values['apps'] as $app=>$tmp)
859	{
860	$old_values2[] = $app;
861	}
862	}
863	$add_apps = array_flip(array_diff($new_values2, $old_values2));
864	$remove_apps = array_flip(array_diff($old_values2, $new_values2));
865
866	if (count($add_apps)>0)
867	{
868	$this->db_functions->add_id2apps($new_values['uidnumber'], $add_apps);
869
870	foreach ($add_apps as $app => $index)
871	$this->db_functions->write_log("Adicionado aplicativo $app ao usuário $dn",'',$dn,'','');
872	}
873	if (count($remove_apps)>0)
874	{
875	//Verifica se o gerente tem acesso a aplicação antes de remove-la do usuario.
876	$manager_apps = $this->db_functions->get_apps($_SESSION['phpgw_session']['session_lid']);
877
878	foreach ($remove_apps as $app => $app_index)
879	{
880	if ($manager_apps[$app] == 'run')
881	$remove_apps2[$app] = $app_index;
882	}
883	$this->db_functions->remove_id2apps($new_values['uidnumber'], $remove_apps2);
884
885	foreach ($remove_apps2 as $app => $access)
886	$this->db_functions->write_log("Removido aplicativo $app do usuário $dn",'',$dn,'','');
887	}
888	//////////////////////////////////////////////////////////////////////////////////////////////////////////////////
889	}
890	return $return;
891	}
892
893	function get_user_info($uidnumber)
894	{
895	$user_info_ldap = $this->ldap_functions->get_user_info($uidnumber);
896	$user_info_db1 = $this->db_functions->get_user_info($uidnumber);
897	$user_info_db2 = $this->ldap_functions->gidnumbers2cn($user_info_db1['groups']);
898	$user_info_imap = $this->imap_functions->get_user_info($user_info_ldap['uid']);
899	$user_info = array_merge($user_info_ldap, $user_info_db1, $user_info_db2, $user_info_imap);
900	return $user_info;
901	}
902
903	function set_user_default_password($params)
904	{
905	$return['status'] = true;
906	$uid = $params['uid'];
907	$defaultUserPassword = '{md5}'.base64_encode(pack("H*",md5($this->current_config['expressoAdmin_defaultUserPassword'])));
908
909	if (!$this->db_functions->default_user_password_is_set($uid))
910	{
911	$userPassword = $this->ldap_functions->set_user_password($uid, $defaultUserPassword);
912	$this->db_functions->set_user_password($uid, $userPassword);
913	}
914	else
915	{
916	$return['status'] = false;
917	$return['msg'] = 'Senha default já cadastrada!';
918	}
919
920	$this->db_functions->write_log('Setado senha default','',$uid,'','');
921
922	return $return;
923	}
924
925	function return_user_password($params)
926	{
927	$return['status'] = true;
928	$uid = $params['uid'];
929
930	if ($this->db_functions->default_user_password_is_set($uid))
931	{
932	$userPassword = $this->db_functions->get_user_password($uid);
933	$this->ldap_functions->set_user_password($uid, $userPassword);
934	}
935	else
936	{
937	$return['status'] = false;
938	$return['msg'] = 'Senha default NÃO cadastrada!';
939	}
940
941	$this->db_functions->write_log('Retornado senha default','',$uid,'','');
942
943	return $return;
944	}
945
946	function delete($params)
947	{
948	$return['status'] = true;
949
950	// Verifica o acesso do gerente
951	if ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'delete_users'))
952	{
953	$uidnumber = $params['uidnumber'];
954	$user_info = $this->get_user_info($uidnumber);
955
956	//LDAP
957	$result_ldap = $this->ldap_functions->delete_user($user_info);
958	if (!$result_ldap['status'])
959	{
960	$return['status'] = false;
961	$return['msg'] .= $result_ldap['msg'];
962	}
963	else
964	{
965	//DB
966	$result_db = $this->db_functions->delete_user($user_info);
967	if (!$result_db['status'])
968	{
969	$return['status'] = false;
970	$return['msg'] .= $result_ldap['msg'];
971	}
972
973	//IMAP
974	$result_imap = $this->imap_functions->delete_user($user_info['uid']);
975	if (!$result_imap['status'])
976	{
977	$return['status'] = false;
978	$return['msg'] .= $result_ldap['msg'];
979	}
980	$this->db_functions->write_log('deletado usuario','',$user_info['uid'],'','');
981	}
982	}
983
984	return $return;
985	}
986
987
988	function rename($params)
989	{
990	$return['status'] = true;
991
992	// Verifica acesso do gerente (OU) ao tentar renomear um usuário.
993	if ( ! $this->ldap_functions->check_access_to_renamed($params['uid']) )
994	{
995	$return['status'] = false;
996	$return['msg'] .= 'Você não tem acesso para deletar este usuário.';
997	return $return;
998	}
999
1000	// Verifica o acesso do gerente
1001	if ($this->functions->check_acl($_SESSION['phpgw_session']['session_lid'], 'rename_users'))
1002	{
1003	$uid = $params['uid'];
1004	$new_uid = $params['new_uid'];
1005	$defaultUserPassword = '{md5}'.base64_encode(pack("H*",md5($this->current_config['expressoAdmin_defaultUserPassword'])));
1006	$defaultUserPassword_plain = $this->current_config['expressoAdmin_defaultUserPassword'];
1007
1008	$emailadmin_profiles = $this->db_functions->get_sieve_info();
1009	$sieve_enable = $emailadmin_profiles[0]['imapenablesieve'];
1010	$sieve_server = $emailadmin_profiles[0]['imapsieveserver'];
1011	$sieve_port = $emailadmin_profiles[0]['imapsieveport'];
1012
1013	$imap_admin = $_SESSION['phpgw_info']['expresso']['email_server']['imapAdminUsername'];
1014	$imap_passwd = $_SESSION['phpgw_info']['expresso']['email_server']['imapAdminPW'];
1015	$imap_server = $_SESSION['phpgw_info']['expresso']['email_server']['imapServer'];
1016	$imap_port = $_SESSION['phpgw_info']['expresso']['email_server']['imapPort'];
1017	$imapDelimiter = $_SESSION['phpgw_info']['expresso']['email_server']['imapDelimiter'];
1018
1019	//Verifica se está sendo usuado cyrus 2.2 ou superior
1020	$sk = fsockopen ($imap_server,$imap_port);
1021	$server_resp = fread($sk, 100);
1022	$tmp = split('v2.', $server_resp);
1023	$cyrus_version = '2' . $tmp[1][0];
1024	//$is_cyrus22 = strpos($server_resp, "v2.2");
1025
1026	if ($cyrus_version > '21')
1027	{
1028	// Seta senha default
1029	$user_password = $this->ldap_functions->set_user_password($uid, $defaultUserPassword);
1030
1031	// Renomeia UID no openldap
1032	$result = $this->ldap_functions->rename_uid($uid, $new_uid);
1033	$new_dn = $result['new_dn'];
1034	if (!$result['status'])
1035	{
1036	$return['status'] = false;
1037	$return['msg'] .= "\n" . $result['msg'];
1038	$return['msg'] .= "\nErro ao renomear usuário no LDAP. Processo abortado.";
1039	return $return;
1040	}
1041
1042	// Remove old UID do ldap
1043	$user_info_mod_remove['uid'] = $uid;
1044	$this->ldap_functions->remove_user_attributes($new_dn, $user_info_mod_remove);
1045
1046	//Renomeia mailbox
1047	$result = $this->imap_functions->rename_mailbox($uid, $new_uid);
1048	if (!$result['status'])
1049	{
1050	$return['status'] = false;
1051	$return['msg'] .= "\n" . $result['msg'];
1052	$return['msg'] .= "\nErro ao renomear usuário no Cyrus. Processo abortado.";
1053	}
1054
1055	// Renomeia sieve script
1056	include_once('sieve-php.lib.php');
1057	$sieve=new sieve($sieve_server, $sieve_port, $new_uid, $defaultUserPassword_plain);
1058
1059	if ($sieve->sieve_login())
1060	{
1061	$sieve->sieve_listscripts();
1062	$myactivescript=$sieve->response["ACTIVE"];
1063	$sieve->sieve_getscript($myactivescript);
1064
1065	$script = '';
1066	foreach($sieve->response as $result)
1067	{
1068	$script .= $result;
1069	}
1070
1071	$scriptname = $new_uid;
1072	if($sieve->sieve_sendscript($new_uid,$script))
1073	{
1074	if ($sieve->sieve_setactivescript($new_uid))
1075	{
1076	$sieve->sieve_deletescript($myactivescript);
1077	}
1078	}
1079	else
1080	{
1081	$return['status'] = false;
1082	$return['msg'] .= $result['msg'] . "\nErro ao renomear script sieve, falha no envio do novo script.";
1083	}
1084	$sieve->sieve_logout();
1085	}
1086	else
1087	{
1088	$return['status'] = false;
1089	$return['msg'] .= $result['msg'] . "\nErro ao renomear script sieve, falha no Login.";
1090	}
1091
1092	// Retorna senha do usuário
1093	$this->ldap_functions->set_user_password($new_uid, $user_password);
1094
1095	$this->db_functions->write_log('renomeado usuario',$new_uid,$uid,'','');
1096
1097	$return['exec_return'] = "";
1098	}
1099	else
1100	{
1101	$return['status'] = false;
1102	$return['msg'] .= "A renomeação de usuários só permitida com o cyrus versão 2.2 ou superior,";
1103	$return['msg'] .= "\ne com a opção 'allowusermoves: yes' configurado no imapd.conf.";
1104	}
1105	return $return;
1106	}
1107	}
1108
1109	function write_log_from_ajax($params)
1110	{
1111	$this->db_functions->write_log($params['_action'],'',$params['userinfo'],'','');
1112	return true;
1113	}
1114	}
1115	?>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: