1 <?php
2 /*
3 This code is part of GOsa (https://gosa.gonicus.de)
4 Copyright (C) 2003 Cajus Pollmeier
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 2 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program; if not, write to the Free Software
18 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
19 */
21 class department extends plugin
22 {
23 /* department attributes */
24 var $ou= "";
25 var $description= "";
26 var $base= "";
27 var $st= "";
28 var $l= "";
29 var $postalAddress= "";
30 var $businessCategory= "";
31 var $telephoneNumber= "";
32 var $facsimileTelephoneNumber= "";
33 var $orig_dn= "";
34 var $is_administrational_unit= false;
35 var $gosaUnitTag= "";
37 var $rec_dst=false; // Destination for recursive move
38 var $rec_src=false; // Source for recursive move
39 var $rec_cpy=false; // Is recursive move requested ?
41 /* Headpage attributes */
42 var $last_dep_sorting= "invalid";
43 var $departments= array();
45 var $must_be_tagged = false;
47 /* attribute list for save action */
48 var $attributes= array("ou", "description", "businessCategory", "st", "l", "postalAddress",
49 "telephoneNumber", "facsimileTelephoneNumber", "gosaUnitTag");
50 var $objectclasses= array("top", "gosaDepartment", "organizationalUnit");
52 function department ($config, $dn)
53 {
55 plugin::plugin($config, $dn);
56 $this->is_account= TRUE;
57 $this->ui= get_userinfo();
58 $this->dn= $dn;
59 $this->orig_dn= $dn;
60 $this->config= $config;
62 /* Set base */
63 if ($this->dn == "new"){
64 $ui= get_userinfo();
65 if(isset($_SESSION['CurrentMainBase'])){
66 $this->base= $_SESSION['CurrentMainBase'];
67 }else{
68 $this->base= dn2base($ui->dn);
69 }
70 } else {
71 $this->base= preg_replace ("/^[^,]+,/", "", $this->dn);
72 }
74 /* set permissions */
75 $ui= get_userinfo();
76 $acl= get_permissions ($ui->dn, $ui->subtreeACL);
77 $this->acl= get_module_permission($acl, "department", $ui->dn);
79 /* Is administrational Unit? */
80 if ($dn != "new" && in_array_ics('gosaAdministrativeUnit', $this->attrs['objectClass'])){
81 $this->is_administrational_unit= true;
82 }
83 }
85 function execute()
86 {
87 /* Call parent execute */
88 plugin::execute();
90 /* Reload departments */
91 $this->config->get_departments($this->dn);
92 $this->config->make_idepartments();
93 $smarty= get_smarty();
95 /* Base select dialog */
96 $once = true;
97 foreach($_POST as $name => $value){
98 if(preg_match("/^chooseBase/",$name) && $once){
99 $once = false;
100 $this->dialog = new baseSelectDialog($this->config);
101 $this->dialog->setCurrentBase($this->base);
102 }
103 }
105 /* Dialog handling */
106 if(is_object($this->dialog)){
107 /* Must be called before save_object */
108 $this->dialog->save_object();
110 if($this->dialog->isClosed()){
111 $this->dialog = false;
112 }elseif($this->dialog->isSelected()){
113 $this->base = $this->dialog->isSelected();
114 $this->dialog= false;
115 }else{
116 return($this->dialog->execute());
117 }
118 }
120 /* Hide all departments, that are subtrees of this department */
121 $bases = $this->config->idepartments;
122 if(($this->dn == "new")||($this->dn == "")){
123 $tmp = $bases;
124 }else{
125 $tmp = array();
126 foreach($bases as $dn=>$base){
127 $fixed = str_replace("/","\\",$this->dn);
128 /* Only attach departments which are not a subtree of this one */
129 if(!preg_match("/".$fixed."/",$dn)){
130 $tmp[$dn]=$base;
131 }
132 }
133 }
134 $smarty->assign("bases", $tmp);
136 foreach ($this->attributes as $val){
137 $smarty->assign("$val", $this->$val);
138 $smarty->assign("$val"."ACL", chkacl($this->acl, "$val"));
139 }
140 $smarty->assign("base_select", $this->base);
142 /* Set admin unit flag */
143 if ($this->is_administrational_unit) {
144 $smarty->assign("unitTag", "checked");
145 } else {
146 $smarty->assign("unitTag", "");
147 }
148 $smarty->assign("unitTag"."ACL", chkacl($this->acl, "unitTag"));
150 return($smarty->fetch (get_template_path('generic.tpl', TRUE)));
151 }
153 function clear_fields()
154 {
155 $this->dn= "";
156 $this->base= "";
157 $this->acl= "#none#";
159 foreach ($this->attributes as $val){
160 $this->$val= "";
161 }
162 }
164 function remove_from_parent()
165 {
166 $ldap= $this->config->get_ldap_link();
167 $ldap->cd ($this->dn);
168 $ldap->recursive_remove();
169 show_ldap_error($ldap->get_error(), _("Removing department failed"));
171 /* Optionally execute a command after we're done */
172 $this->handle_post_events('remove');
173 }
175 function must_be_tagged()
176 {
177 return $this->must_be_tagged;
178 }
180 function am_i_moved()
181 {
182 return $this->rec_cpy;
183 }
186 /* Save data to object */
187 function save_object()
188 {
189 if (isset($_POST['base'])){
190 plugin::save_object();
192 /* Save base, since this is no LDAP attribute */
193 if (chkacl($this->acl, "create") == ""){
194 $this->base= $_POST['base'];
195 }
197 /* Save tagging flag */
198 if (chkacl($this->acl, "unitTag") == ""){
199 if (isset($_POST['unitTag'])){
200 $this->is_administrational_unit= true;
201 } else {
202 $this->is_administrational_unit= false;
203 }
204 }
205 }
206 }
209 /* Check values */
210 function check()
211 {
212 /* Call common method to give check the hook */
213 $message= plugin::check();
215 /* Permissions for that base? */
216 // $this->dn= "ou=$this->ou,".$this->base;
217 if (chkacl($this->acl, "create") != ""){
218 $message[]= _("You have no permissions to create a department on this 'Base'.");
219 }
221 /* Check for presence of this department */
222 $ldap= $this->config->get_ldap_link();
223 $attrs= $ldap->cat ($this->dn, array('dn'));
224 if ($this->orig_dn == "new" && !($attrs === FALSE)){
225 $message[]= _("Department with that 'Name' already exists.");
226 } elseif ($this->orig_dn != $this->dn && !($attrs === FALSE)){
227 $message[]= _("Department with that 'Name' already exists.");
228 }
230 /* All required fields are set? */
231 if ($this->ou == ""){
232 $message[]= _("Required field 'Name' is not set.");
233 }
234 if ($this->description == ""){
235 $message[]= _("Required field 'Description' is not set.");
236 }
238 /* Validate and modify - or: spaghetti rules! */
239 $SkipNames = array( "incoming","apps","systems","fai","config",
240 preg_replace("/ou=(.*),/","\\1",get_people_ou()),
241 preg_replace("/ou=(.*),/","\\1",get_groups_ou())
242 );
243 foreach($SkipNames as $name){
244 if ($this->ou == $name){
245 $message[]= sprintf(_("The field 'Name' contains the reserved word '%s'. Please choose another name."),$name);
246 }
247 }
250 if (preg_match ('/[#+:=>\\\\\/]/', $this->ou)){
251 $message[]= _("The field 'Name' contains invalid characters.");
252 }
253 if (!is_phone_nr($this->telephoneNumber)){
254 $message[]= _("The field 'Phone' contains an invalid phone number.");
255 }
256 if (!is_phone_nr($this->facsimileTelephoneNumber)){
257 $message[]= _("The field 'Fax' contains an invalid phone number.");
258 }
260 return $message;
261 }
264 /* Save to LDAP */
265 function save()
266 {
267 $ldap= $this->config->get_ldap_link();
269 /* Add tag objects if needed */
270 if ($this->is_administrational_unit){
271 if(!in_array_ics("gosaAdministrativeUnit",$this->objectclasses)){
272 $this->objectclasses[]= "gosaAdministrativeUnit";
273 }
274 if ($this->gosaUnitTag == ""){
276 /* It's unlikely, but check if already used... */
277 $try= 5;
278 $ldap->cd($this->config->current['BASE']);
279 while ($try--){
281 /* Generate microtime stamp as tag */
282 list($usec, $sec)= explode(" ", microtime());
283 $time_stamp= preg_replace("/\./", "", $sec.$usec);
285 $ldap->search("(&(objectClass=gosaAdministrativeUnit)(gosaUnitTag=$time_stamp))",array("gosaUnitTag"));
286 if ($ldap->count() == 0){
287 break;
288 }
289 }
290 if($try == 0) {
291 print_red(_("Fatal error: Can't find an unused tag to mark the administrative unit!"));
292 return;
293 }
294 $this->gosaUnitTag= preg_replace("/\./", "", $sec.$usec);
295 }
296 } else {
297 $this->gosaUnitTag= "";
298 }
300 plugin::save();
302 /* Remove tag information if needed */
303 if (!$this->is_administrational_unit){
304 $tmp= array();
306 /* Remove gosaAdministrativeUnit from this plugin */
307 foreach($this->attrs['objectClass'] as $oc){
308 if (!preg_match("/^gosaAdministrativeUnit$/i", $oc)){
309 $tmp[]= $oc;
310 }
311 }
312 $this->attrs['objectClass']= $tmp;
313 if(isset($this->attrs['gosaUnitTag'])){
314 $this->attrs['gosaUnitTag']= array();
315 }
316 }
318 /* Write back to ldap */
319 $ldap= $this->config->get_ldap_link();
320 $ldap->cat($this->dn, array('dn'));
321 $a= $ldap->fetch();
322 $ldap->cd($this->dn);
324 if (count($a)){
325 $this->cleanup();
326 $ldap->modify ($this->attrs);
328 $this->handle_post_events('modify');
329 } else {
330 $ldap->add($this->attrs);
331 $this->handle_post_events('add');
332 }
333 show_ldap_error($ldap->get_error(), _("Saving department failed"));
335 /* The parameter forces only to set must_be_tagged, and don't touch any objects
336 This will be done later */
337 $this->tag_objects(true);
339 /* Optionally execute a command after we're done */
340 $this->postcreate();
341 return(true);
342 }
345 function ShowMoveFrame()
346 {
347 $smarty = get_smarty();
348 $smarty->assign("src","?plug=".$_GET['plug']."&PerformRecMove");
349 $smarty->assign("message","As soon as the move operation has finished, you can scroll down to end of the page and press the 'Continue' button to continue with the department management dialog.");
350 $display= $smarty->fetch(get_template_path("dep_iframe.tpl",TRUE));
351 return($display);
352 }
354 function ShowTagFrame()
355 {
356 $smarty = get_smarty();
357 $smarty->assign("src","?plug=".$_GET['plug']."&TagDepartment");
358 $smarty->assign("message","As soon as the tag operation has finished, you can scroll down to end of the page and press the 'Continue' button to continue with the department management dialog.");
359 $display= $smarty->fetch(get_template_path("dep_iframe.tpl",TRUE));
360 return($display);
361 }
363 /* Tag objects to have the gosaAdministrativeUnitTag */
364 function tag_objects($OnlySetTagFlag = false)
365 {
366 if(!$OnlySetTagFlag){
367 $smarty= get_smarty();
368 echo "<!-- headers.tpl-->".$smarty->fetch(get_template_path('headers.tpl'));
369 echo "<body style='background-image:none;margin:3px;color:black'>";
370 echo "<h3>".sprintf(_("Tagging '%s'."),"<i>".@LDAP::fix($this->dn)."</i>")."</h3>";
371 }
373 $add= $this->is_administrational_unit;
374 $len= strlen($this->dn);
375 $ldap= $this->config->get_ldap_link();
376 $ldap->cd($this->dn);
377 if ($add){
378 $ldap->search('(!(&(objectClass=gosaAdministrativeUnitTag)(gosaUnitTag='.
379 $this->gosaUnitTag.')))', array('dn'));
380 } else {
381 $ldap->search('objectClass=gosaAdministrativeUnitTag', array('dn'));
382 }
383 while ($attrs= $ldap->fetch()){
385 /* Skip self */
386 if ($attrs['dn'] == $this->dn){
387 continue;
388 }
390 /* Check for confilicting administrative units */
391 $fix= true;
392 foreach ($this->config->adepartments as $key => $tag){
393 /* This one is shorter than our dn, its not relevant... */
394 if ($len >= strlen($key)){
395 continue;
396 }
398 /* This one matches with the latter part. Break and don't fix this entry */
399 if (preg_match('/(^|,)'.normalizePreg($key).'$/', $attrs['dn'])){
400 $fix= false;
401 break;
402 }
403 }
405 /* Fix entry if needed */
406 if ($fix){
407 if($OnlySetTagFlag){
408 $this->must_be_tagged =true;
409 return;
410 }
411 $this->handle_object_tagging($attrs['dn'], $this->gosaUnitTag, TRUE );
412 }
413 }
414 if(!$OnlySetTagFlag){
415 echo '<p class="seperator"> </p>';
416 echo "<div style='width:100%;text-align:right;'><form name='form' method='post' action='?plug=".$_GET['plug']."' target='_parent'>
417 <br><input type='submit' name='back' value='"._("Continue")."'>
418 </form></div>";
419 }
420 }
423 /* Move/Rename complete trees */
424 function recursive_move($src_dn, $dst_dn,$force = false)
425 {
426 /* If force == false prepare to recursive move this object from src to dst
427 on the next call. */
428 if(!$force){
429 $this->rec_cpy = true;
430 $this->rec_src = $src_dn;
431 $this->rec_dst = $dst_dn;
432 }else{
434 /* If this is called, but not wanted, abort */
435 if(!$this->rec_cpy){
436 return;
437 }
439 $src_dn = $this->rec_src;
440 $dst_dn = $this->rec_dst;
442 /* Print header to have styles included */
443 $smarty= get_smarty();
444 echo "<!-- headers.tpl-->".$smarty->fetch(get_template_path('headers.tpl'));
445 echo "<body style='background-image:none;margin:3px;color:black'>";
447 echo "<h3>".sprintf(_("Moving '%s' to '%s'"),"<i>".$src_dn."</i>","<i>".$dst_dn."</i>")."</h3>";
450 /* Check if the destination entry exists */
451 $ldap= $this->config->get_ldap_link();
453 /* Check if destination exists - abort */
454 $ldap->cat($dst_dn, array('dn'));
455 if ($ldap->fetch()){
456 trigger_error("Recursive_move $dst_dn already exists.",
457 E_USER_WARNING);
458 echo sprintf("Recursive_move: '%s' already exists", $dst_dn)."<br>";
459 return (FALSE);
460 }
462 /* Perform a search for all objects to be moved */
463 $objects= array();
464 $ldap->cd($src_dn);
465 $ldap->search("(objectClass=*)", array("dn"));
466 while($attrs= $ldap->fetch()){
467 $dn= $attrs['dn'];
468 $objects[$dn]= strlen($dn);
469 }
471 /* Sort objects by indent level */
472 asort($objects);
473 reset($objects);
475 /* Copy objects from small to big indent levels by replacing src_dn by dst_dn */
476 foreach ($objects as $object => $len){
479 $src= str_replace("\\","\\\\",$object);
480 $dst= preg_replace("/".str_replace("\\","\\\\",$src_dn)."$/", "$dst_dn", $object);
481 $dst= str_replace($src_dn,$dst_dn,$object);
483 echo "<b>"._("Object").":</b> $src<br>";
485 if (!$this->copy($src, $dst)){
486 echo "<font color='#FF0000'><br>".sprintf(_("FAILED to copy %s, aborting operation"),$src)."</font>";
487 return (FALSE);
488 }
490 flush();
491 }
493 /* Remove src_dn */
494 $ldap->cd($src_dn);
495 $ldap->recursive_remove();
496 $this->rec_src = $this->rec_dst = "";
497 $this->rec_cpy =false;
499 echo '<p class="seperator"> </p>';
501 echo "<div style='width:100%;text-align:right;'><form name='form' method='post' action='?plug=".$_GET['plug']."' target='_parent'>
502 <br><input type='submit' name='back' value='"._("Continue")."'>
503 </form></div>";
505 echo "</body></html>";
507 return (TRUE);
508 }
509 }
510 }
511 // vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler:
512 ?>