Changeset 1409

Timestamp:

09/14/09 17:17:05 (15 years ago)

Author:

alexandrecorreia

Message:

Ticket #644 - Correção da classe uiacl para o controle de permissão de acesso.

Location:

trunk

Files:

• calendar/inc/hook_preferences.inc.php (modified) (1 diff)
• contactcenter/inc/hook_preferences.inc.php (modified) (1 diff)
• contactcenter/inc/hook_sidebox_menu.inc.php (modified) (1 diff)
• mobile/inc/hook_preferences.inc.php (modified) (1 diff)
• preferences/inc/class.uiaclprefs.inc.php (modified) (8 diffs)
• preferences/inc/class.uiaclprefs2.inc.php (deleted)

trunk/calendar/inc/hook_preferences.inc.php

@@ -15 +15 @@
         $file = array(
                 'Preferences'     => $GLOBALS['phpgw']->link('/preferences/preferences.php','appname='.$appname),
-                'Grant Access'    => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs2.index&acl_app='.$appname),
+                'Grant Access'    => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs.index&acl_app='.$appname),
                 'Edit Categories' => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uicategories.index&cats_app='.$appname.'&cats_level=True&global_cats=True')
         );

trunk/contactcenter/inc/hook_preferences.inc.php

@@ -18 +18 @@
         $file = Array(
                 'Preferences'   => $GLOBALS['phpgw']->link('/index.php','menuaction=contactcenter.ui_preferences.index'),
-                'Grant Access'  => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs2.index&acl_app='.$appname),
+                'Grant Access'  => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs.index&acl_app='.$appname),
                 //'Edit Categories' => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uicategories.index&cats_app='.$appname . '&cats_level=True&global_cats=True')
         );

trunk/contactcenter/inc/hook_sidebox_menu.inc.php

@@ -24 +24 @@
                 $menu_title = lang('Preferences');
                 $file = Array(
-                        'Grant Access'=>$GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs2.index&acl_app=contactcenter')
+                        'Grant Access'=>$GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs.index&acl_app=contactcenter')
                 );
                 display_sidebox($appname,$menu_title,$file);

trunk/mobile/inc/hook_preferences.inc.php

@@ -18 +18 @@
         $file = Array(
                 'Preferences'   => $GLOBALS['phpgw']->link('/index.php','menuaction=mobile.ui_preferences.index'),
-                //'Grant Access'  => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs2.index&acl_app='.$appname),
+                //'Grant Access'  => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs.index&acl_app='.$appname),
                 //'Edit Categories' => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uicategories.index&cats_app='.$appname . '&cats_level=True&global_cats=True')
         );

trunk/preferences/inc/class.uiaclprefs.inc.php

@@ -13 +13 @@
         class uiaclprefs
         {
-                var $acl;
+                var $acl;               
                 var $template;
 
@@ -21 +21 @@
                 {
                         $GLOBALS['phpgw']->nextmatchs = CreateObject('phpgwapi.nextmatchs');
+                        
                 }
-
+                
                 function index()
                 {
                         $acl_app        = get_var('acl_app',array('POST','GET'));
-                        $start          = get_var('start',array('POST','GET'));
-                        $query          = get_var('query',array('POST','GET'));
-                        $s_groups       = get_var('s_groups',array('POST','GET'));
-                        $s_users        = get_var('s_users',array('POST','GET'));
                         $owner          = get_var('owner',array('POST','GET'));
 
@@ -41 +38 @@
                                 $GLOBALS['phpgw']->translation->add_app($acl_app);
                         }
-
+                                                
+                        $_SESSION['acl_app'] = $acl_app;
+
+                        
                         $GLOBALS['phpgw_info']['flags']['currentapp'] = $acl_app;
 
@@ -62 +62 @@
                                 $GLOBALS['phpgw']->common->phpgw_exit(True);
                         }
-
-                        
-                        $this->template = CreateObject('phpgwapi.Template',$GLOBALS['phpgw']->common->get_tpl_dir($acl_app));                   
-                        
-                        // Verifica se é o template da Celepar, então carrega outro .tpl                         
-                        //echo $this->template->root;
-                        if(strstr($this->template->root,'celepar')) {
-                                $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs2.index&acl_app='.$acl_app));
-                        }
-                                                
-
-                        /*
-                        if(isset($save_my_owner) && $GLOBALS['phpgw_info']['user']['apps']['admin'])
-                        {
-                                $owner = $save_my_owner;
-                                unset($save_my_owner);
-                        }
-                        elseif(@isset($save_my_owner))
-                        {
-                                echo '<center>'.lang('You do not have permission to set ACL\'s in this mode!').'</center>';
-                                $GLOBALS['phpgw']->common->phpgw_footer();
-                        }
-                        */
-
+                        
+                        
                         if((!isset($owner) || empty($owner)) || !$GLOBALS['phpgw_info']['user']['apps']['admin'])
-                        {
                                 $owner = $GLOBALS['phpgw_info']['user']['account_id'];
-                        }
-
-                        $acct                   = CreateObject('phpgwapi.accounts',$owner);
-                        $groups                 = $acct->get_list('groups','','ASC','account_lid');
-                        $users                  = $acct->get_list('accounts','','ASC','account_firstname');
-                        $owner_name             = $acct->id2name($owner);               // get owner name for title
-                        if($is_group    = $acct->get_type($owner) == 'g')
-                        {
+                        
+                        $_SESSION['owner'] = $owner;
+                        
+                        
+                        $acct = CreateObject('phpgwapi.accounts',$owner);                                                                       
+                        $owner_name = $acct->id2name($owner);           // get owner name for title
+                        
+                        if($is_group = $acct->get_type($owner) == 'g')                  
                                 $owner_name = lang('Group').' ('.$owner_name.')';
-                        }
-                        unset($acct);
+                                                
                         $this->acl = CreateObject('phpgwapi.acl',(int)$owner);
-                        $this->acl->read_repository();
-
-                        if ($_POST['submit'])
-                        {
+                        
+                        // begin jakjr
+                        $repository = $this->acl->read_repository(); //get all lines of the owner
+                        $cont = 0;
+                        $just_owner_array = array();
+                        foreach($repository as $repository) 
+                        {               
+                                // Pega os valores do array que são da aplicação corrente, do dono corrente e verifica se a camplo acl_location é diferente de run, que não é necessário aqui.
+                                if (($repository['appname'] == $GLOBALS['phpgw_info']['flags']['currentapp']) && ($repository['account'] == $owner) && ($repository['locations'] != 'run'))
+                                {
+                                        $just_owner_array[$cont] = $repository;
+                                        $cont++;
+                                }
+                        }
+                        //echo '<pre>';
+                        //print_r($just_owner_array);
+                        //echo '</pre>';
+                        // end jakjr
+
+                        if ($_POST['submit'])   {
                                 $processed = $_POST['processed'];
+                                                                
                                 $to_remove = unserialize(urldecode($processed));
 
-                                for($i=0;$i<count($to_remove);$i++)
-                                {
-                                        $this->acl->delete($GLOBALS['phpgw_info']['flags']['currentapp'],$to_remove[$i]);
-                                }
-
+                                /* User records */
+                                $user_variable = $_POST['u_'.$GLOBALS['phpgw_info']['flags']['currentapp']];
                                 /* Group records */
                                 $group_variable = $_POST['g_'.$GLOBALS['phpgw_info']['flags']['currentapp']];
-
-                                if (!$group_variable)
-                                {
+                                $keys_to_keep = array();
+                                if(!empty($user_variable)) {
+                                        foreach($user_variable as $key_user=>$value) {
+                                                $temp = explode("_",$key_user);
+                                                $keys_to_keep[(int)$temp[0]] = 1;
+                                        }
+                                }
+                                
+                                for($i=0;$i<count($to_remove);$i++) {
+                                        
+                                        if(!array_key_exists((int)$to_remove[$i],$keys_to_keep)) {
+                                                $this->acl->persist_shared_groups($to_remove[$i]);
+                                        }               
+                                        $this->acl->delete($GLOBALS['phpgw_info']['flags']['currentapp'],$to_remove[$i]);
+                                }
+                                
+                                /* Group records */
+                                //$group_variable = $_POST['g_'.$GLOBALS['phpgw_info']['flags']['currentapp']];
+
+                                if (!$group_variable)                           
                                         $group_variable = array();
-                                }
+                                
                                 @reset($group_variable);
                                 $totalacl = array();
-                                while(list($rowinfo,$perm) = each($group_variable))
-                                {
+                                while(list($rowinfo,$perm) = each($group_variable))     {
                                         list($group_id,$rights) = split('_',$rowinfo);
                                         $totalacl[$group_id] += $rights;
                                 }
                                 @reset($totalacl);
-                                while(list($group_id,$rights) = @each($totalacl))
-                                {
+                                while(list($group_id,$rights) = @each($totalacl))       {
                                         if($is_group)
-                                        {
-                                                /* Don't allow group-grants to grant private */
                                                 $rights &= ~PHPGW_ACL_PRIVATE;
-                                        }
-
+                                        if(array_key_exists($user_id,$keys_to_keep))
+                                                if(($rights & 1) == 0) {
+                                                        $this->acl->persist_shared_groups($user_id);
+                                                }
                                         $this->acl->add($GLOBALS['phpgw_info']['flags']['currentapp'],$group_id,$rights);
                                 }
 
                                 /* User records */
-                                $user_variable = $_POST['u_'.$GLOBALS['phpgw_info']['flags']['currentapp']];
-
-                                if (!$user_variable)
-                                {
+                                //$user_variable = $_POST['u_'.$GLOBALS['phpgw_info']['flags']['currentapp']];
+
+                                if (!$user_variable)                            
                                         $user_variable = array();
-                                }
+                                
                                 @reset($user_variable);
                                 $totalacl = array();
-                                while(list($rowinfo,$perm) = each($user_variable))
-                                {
+                                while(list($rowinfo,$perm) = each($user_variable))      {
                                         list($user_id,$rights) = split('_',$rowinfo);
                                         $totalacl[$user_id] += $rights;
                                 }
+                                
                                 @reset($totalacl);
-                                while(list($user_id,$rights) = @each($totalacl))
-                                {
-                                        if($is_group)
-                                        {
-                                                /* Don't allow group-grants to grant private */
-                                                $rights &= ~ PHPGW_ACL_PRIVATE;
-                                        }
-
+                                while(list($user_id,$rights) = @each($totalacl)) {
+                                        if($is_group)                                   
+                                                $rights &= ~ PHPGW_ACL_PRIVATE;                                 
+                                        
                                         $this->acl->add($GLOBALS['phpgw_info']['flags']['currentapp'],$user_id,$rights);
                                 }
+                                
                                 $this->acl->save_repository();
+                                $GLOBALS['phpgw']->redirect($GLOBALS['phpgw']->link('../'.$GLOBALS['phpgw_info']['flags']['currentapp'].'/index.php'));
                         }
 
                         $processed = Array();
-
-                        $total = 0;
-
-                        if(!isset($start))
-                        {
-                                $start = 0;
-                        }
-
-                        if(!$start)
-                        {
-                                $s_groups = 0;
-                                $s_users = 0;
-                        }
-
-                        if(!isset($s_groups))
-                        {
-                                $s_groups = 0;
-                        }
-
-                        if(!isset($s_users))
-                        {
-                                $s_users = 0;
-                        }
-
-                        if(!isset($query))
-                        {
-                                $query = "";
-                        }
-
-                        if(!isset($maxm))
-                        {
-                                $maxm = $GLOBALS['phpgw_info']['user']['preferences']['common']['maxmatchs'];
-                        }
-
-                        if(!isset($totalentries))
-                        {
-                                $totalentries = count($groups) + count($users);
-                                if($totalentries < $maxm)
-                                {
-                                        $maxm = $totalentries;
-                                }
-                        }
-
+                        
                         $GLOBALS['phpgw_info']['flags']['app_header'] = lang('%1 - Preferences',$GLOBALS['phpgw_info']['apps'][$acl_app]['title']).' - '.lang('acl').': '.$owner_name;
+                        
+                        if(!@is_object($GLOBALS['phpgw']->js))  {
+                                $GLOBALS['phpgw']->js = CreateObject('phpgwapi.javascript');
+                        }                       
+                        
                         $GLOBALS['phpgw']->common->phpgw_header();
                         echo parse_navbar();
-
-                        $this->template = CreateObject('phpgwapi.Template',$GLOBALS['phpgw']->common->get_tpl_dir($acl_app));
+                        
+                        $this->template = CreateObject('phpgwapi.Template',$GLOBALS['phpgw']->common->get_tpl_dir('preferences'));
                         $templates = Array (
-                                'preferences' => 'preference_acl.tpl',
-                                'row_colspan' => 'preference_colspan.tpl',
-                                'acl_row'     => 'preference_acl_row.tpl'
-                        );
-
+                                        'preferences' => 'preference_acl.tpl',                          
+                                        'acl_row'     => 'preference_acl_row.tpl',
+                                        'acl_hidden'  => 'preference_acl_hidden.tpl'
+                                );
+                        
                         $this->template->set_file($templates);
 
+                        $this->template->set_var("users_list", lang("Users List"));
+                        $this->template->set_var("attributes", lang("Attributes"));
+                        $this->template->set_var("read", lang("Read")); 
+                        $this->template->set_var("add", lang("Add"));
+                        $this->template->set_var("edit", lang("Edit"));
+                        $this->template->set_var("delete", lang("Delete"));
+                        $this->template->set_var("private", lang("Private"));
+                        $this->template->set_var("remove", lang("Remove"));
+                        $this->template->set_var("cancel", lang("Cancel"));
+                        
+                        if($acl_app=='contactcenter') {
+                                $this->template->set_var("add_invisible", "style='display:none'");
+                                $this->template->set_var("private_invisible", "style='display:none'");                          
+                        }
+                        else {
+                                $this->template->set_var("add_invisible", "");
+                                $this->template->set_var("private_invisible", "");                              
+                        }
+
                         if ($submit)
-                        {
                                 $this->template->set_var('errors',lang('ACL grants have been updated'));
-                        }
 
                         $common_hidden_vars =
-                                '     <input type="hidden" name="s_groups" value="'.$s_groups.'">'."\n"
-                                . '     <input type="hidden" name="s_users" value="'.$s_users.'">'."\n"
-                                . '     <input type="hidden" name="maxm" value="'.$maxm.'">'."\n"
-                                . '     <input type="hidden" name="totalentries" value="'.$totalentries.'">'."\n"
-                                . '     <input type="hidden" name="start" value="'.$start.'">'."\n"
-                                . '     <input type="hidden" name="query" value="'.$query.'">'."\n"
-                                . '     <input type="hidden" name="owner" value="'.$owner.'">'."\n"
+                                  '     <input type="hidden" name="owner" value="'.$owner.'">'."\n"
                                 . '     <input type="hidden" name="acl_app" value="'.$acl_app.'">'."\n";
 
@@ -244 +220 @@
                                 'action_url'  => $GLOBALS['phpgw']->link('/index.php','menuaction=preferences.uiaclprefs.index&acl_app=' . $acl_app),
                                 'bg_color'    => $GLOBALS['phpgw_info']['theme']['th_bg'],
-                                'submit_lang' => lang('Save'),
+                                'submit_lang' => lang('Ok'),
                                 'common_hidden_vars_form' => $common_hidden_vars
                         );
 
                         $this->template->set_var($var);
-
-                        if(isset($query_result) && $query_result)
-                        {
-                                $common_hidden_vars .= '<input type="hidden" name="query_result" value="'.$query_result.'">'."\n";
-                        }
-
                         $this->template->set_var('common_hidden_vars',$common_hidden_vars);
-
-                        $vars = $this->template->get_undefined('row_colspan');
-                        while (list(,$var) = each($vars))
-                        {
-                                if(strstr($var,'lang_'))
+                                                
+                        // begin jakjr
+                        foreach($just_owner_array as $just_owner_array) {
+                                $id = $just_owner_array['location'];
+                                $rights = $this->acl->get_rights($id,$GLOBALS['phpgw_info']['flags']['currentapp']);
+                                $acct->get_account_name($id, $lid, $fname, $lname);
+                                
+                                if (($acct->get_type($id) == 'u') && ($owner != $id && $rights)) 
                                 {
-                                        $value = str_replace('lang_','',$var);
-                                        $value = str_replace('_',' ',$value);
-
-                                        $this->template->set_var($var,lang($value));
-                                }
-                        }
-
-                        if ((int)$s_groups <> count($groups))
-                        {
-                                $this->template->set_var('string',lang('Groups'));
-                                $this->template->parse('row','row_colspan',True);
-
-                                reset($groups);
-                                for($k=0;$k<count($groups);$k++)
-                                {
-                                        $group = $groups[$k];
-                                        $go = True;
-
-                                        if($query)
-                                        {
-                                                if(!strpos(' '.$group['account_lid'].' ',$query))
-                                                {
-                                                        $go = False;
-                                                }
-                                        }
-
-                                        if($go)
-                                        {
-                                                $tr_color = $GLOBALS['phpgw']->nextmatchs->alternate_row_color($tr_color);
-                                                $this->display_row($tr_color,'g_',$group['account_id'],$group['account_lid'],$is_group);
-                                                $s_groups++;
-                                                $processed[] = $group['account_id'];
-                                                $total++;
-                                                if($total == $maxm)
-                                                {
-                                                        break;
-                                                }
-                                        }
-                                }
-                        }
-
-                        if($total <> $maxm)
-                        {
-                                if($users)
-                                {
-                                        $this->template->set_var('string',ucfirst(lang('Users')));
-                                        $this->template->parse('row','row_colspan',True);
-                                        $tr_color = $GLOBALS['phpgw']->nextmatchs->alternate_row_color($tr_color);
-                                        for($k=$s_users;$k<$totalentries || $k==count($users);$k++)
-                                        {
-                                                $user = $users[$k];
-                                                //echo '<br>acctid: '.$user['account_id'];
-                                                if ($user['account_id'])
-                                                {
-                                                        $go = True;
-                                                }
-                                                else
-                                                {
-                                                        $go = False;
-                                                }
-                                                if($query)
-                                                {
-                                                        $name = ' '.$user['account_firstname'].' '.$user['account_lastname'].' '.$user['account_lid'].' ';
-                                                        if(!strpos($name,$query))
-                                                        {
-                                                                $go = False;
-                                                        }
-                                                }
-
-                                                if($go && $user['account_id'] != $owner)        // Need to be $owner not $GLOBALS['phpgw_info']['user']['account_id']
-                                                {
-                                                        // or the admin can't get special grants from a group
-                                                        $tr_color = $GLOBALS['phpgw']->nextmatchs->alternate_row_color($tr_color);
-                                                        $this->display_row($tr_color,'u_',$user['account_id'],$GLOBALS['phpgw']->common->display_fullname($user['account_lid'],$user['account_firstname'],$user['account_lastname']),$is_group);
-                                                        $s_users++;
-                                                        $processed[] = $user['account_id'];
-                                                        $total++;
-                                                        if($total == $maxm)
-                                                        {
-                                                                break;
-                                                        }
-                                                }
-                                        }
-                                }
-                        }
-
+                                        $user_array['name'] = $fname . ' ' . $lname;
+                                        $this->display_option('u_',$id,$user_array['name'],$is_group);
+                                        $processed[] = $id;
+                                }       
+                                //else
+                                //{
+                        //              $group_array['name'] = '(G) ' . $fname;
+                        //              $this->display_option('g_',$id,$group_array['name'],$is_group);
+                        //              $processed[] = $id;
+                        //      }       
+                        }
+                        
+                        unset($acct);
+                        //end jakjr
+                        
                         $extra_parms = 'menuaction=preferences.uiaclprefs.index'
-                                . '&acl_app=' . $acl_app
-                                . '&s_users='.$s_users.'&s_groups='.$s_groups
-                                . '&maxm=' . $maxm . '&totalentries=' . $totalentries
-                                . '&total=' . ($start + $total) . '&owner='.$owner;
+                                . '&acl_app=' . $acl_app . '&owner='.$owner;
 
                         $var = Array(
-                                'nml'          => $GLOBALS['phpgw']->nextmatchs->left('/index.php',$start,$totalentries,$extra_parms),
-                                'nmr'          => $GLOBALS['phpgw']->nextmatchs->right('/index.php',$start,$totalentries,$extra_parms),
-                                'search_value' => (isset($query) && $query?$query:''),
                                 'search'       => lang('search'),
                                 'processed'    => urlencode(serialize($processed))
@@ -363 +259 @@
 
                         $this->template->set_var($var);
-
                         $this->template->pfp('out','preferences');
                 }
 
-                function check_acl($label,$id,$acl,$rights,$right,$is_group=False)
+                
+                function check_acl($label,$id,$acl,$rights,$right,$is_group=False)      {
+                        $this->template->set_var($acl,$label.$GLOBALS['phpgw_info']['flags']['currentapp'].'['.$id.'_'.$right.']');
+                        $rights_set = (($rights & $right)?'':'disabled');
+                        $this->template->set_var($acl.'_selected',$rights_set);
+                }               
+                
+        
+                function display_option($label,$id,$name,$is_group)
                 {
-                        $this->template->set_var($acl,$label.$GLOBALS['phpgw_info']['flags']['currentapp'].'['.$id.'_'.$right.']');
-                        $rights_set = (($rights & $right)?' checked':'');
-                        if ($is_group)
-                        {
-                                // This is so you can't select it in the GUI
-                                $rights_set .= ' disabled';
-                        }
-                        $this->template->set_var($acl.'_selected',$rights_set);
-                }
-
-                function display_row($bg_color,$label,$id,$name,$is_group)
-                {
-                        $this->template->set_var('row_color',$bg_color);
+                        
+                        $rights = $this->acl->get_rights($id,$GLOBALS['phpgw_info']['flags']['currentapp']);
                         $this->template->set_var('user',$name);
-                        $rights = $this->acl->get_rights($id,$GLOBALS['phpgw_info']['flags']['currentapp']);
+                        $this->template->set_var('id',$label.$GLOBALS['phpgw_info']['flags']['currentapp'].'['.$id);                                            
+                                                
+                        
                         // vv This is new
                         $grantors = $this->acl->get_ids_for_location($id,$rights,$GLOBALS['phpgw_info']['flags']['currentapp']);
-                        $is_group_set = False;
+                        
                         while(@$grantors && list($key,$grantor) = each($grantors))
                         {
@@ -393 +287 @@
                                         $is_group_set = True;
                                 }
-                        }
-                        // ^^ This is new
-
+                        }                       
+
+                                                
                         $this->check_acl($label,$id,'read',$rights,PHPGW_ACL_READ,($is_group_set && ($rights & PHPGW_ACL_READ) && !$is_group?$is_group_set:False));
                         $this->check_acl($label,$id,'add',$rights,PHPGW_ACL_ADD,($is_group_set && ($rights & PHPGW_ACL_ADD && !$is_group)?$is_group_set:False));
@@ -405 +299 @@
                         $this->check_acl($label,$id,'custom_2',$rights,PHPGW_ACL_CUSTOM_2,($is_group_set && ($rights & PHPGW_ACL_CUSTOM_2) && !$is_group?$is_group_set:False));
                         $this->check_acl($label,$id,'custom_3',$rights,PHPGW_ACL_CUSTOM_3,($is_group_set && ($rights & PHPGW_ACL_CUSTOM_3) && !$is_group?$is_group_set:False));
-                        $this->template->parse('row','acl_row',True);
+                        
+                        
+                        $this->template->parse('hiddens','acl_hidden',True);                    
+                        $this->template->parse('row','acl_row',True);   
+                        
                 }
-        }
+                                        
+        }       
 ?>