config= $config; $this->ui= $ui; if((isset($this->config->data['MAIN']['ENABLECOPYPASTE']))&&(preg_match("/true/i",$this->config->data['MAIN']['ENABLECOPYPASTE']))){ $this->enableCopyPaste = true; } $this->CopyPasteHandler = new CopyPasteHandler($this->config); /* Get global filter config */ if (!is_global("groupfilter")){ $base= get_base_from_people($ui->dn); $groupfilter= array("primarygroups" => "checked", "mailgroups" => "checked", "sambagroups" => "checked", "appgroups" => "checked", "functionalgroups" => "checked", "guser" => "*", "subsearch" => "", "regex" => "*"); register_global("groupfilter", $groupfilter); } if(!isset($_SESSION['CurrentMainBase'])){ $base = get_base_from_people($ui->dn); $_SESSION['CurrentMainBase'] = $base; } } function execute() { /* Call parent execute */ plugin::execute(); $_SESSION['LOCK_VARS_TO_USE'] = array("/^act$/","/^id$/","/^group_edit_/","/^group_del_/"); /* Save data */ $groupfilter= get_global("groupfilter"); $s_action = ""; $s_entry = ""; if (!isset($this->grouptab)){ foreach( array( "guser", "regex") as $type){ if (isset($_POST[$type])){ $groupfilter[$type]= $_POST[$type]; } } if(isset($_POST['CurrentMainBase'])){ $_SESSION['CurrentMainBase'] = $_POST['CurrentMainBase']; } if (isset($_POST['regex'])){ foreach( array("primarygroups", "sambagroups", "mailgroups", "appgroups", "functionalgroups", "subsearch") as $type){ if (isset($_POST[$type])) { $groupfilter[$type]= "checked"; } else { $groupfilter[$type]= ""; } } } if (isset($_GET['search'])){ $s= mb_substr($_GET['search'], 0, 1, "UTF8")."*"; if ($s == "**"){ $s= "*"; } $groupfilter['regex']= $s; } register_global("groupfilter", $groupfilter); } /* Test Posts */ foreach($_POST as $key => $val){ // Post for delete if(preg_match("/^group_del.*/",$key)){ $s_action = "del"; $s_entry = preg_replace("/group_".$s_action."_/i","",$key); // Post for edit }elseif(preg_match("/^group_edit_.*/",$key)){ $s_action="edit"; $s_entry = preg_replace("/group_".$s_action."_/i","",$key); // Post for new }elseif(preg_match("/^dep_back.*/i",$key)){ $s_action="back"; }elseif(preg_match("/^group_new.*/",$key)){ $s_action="new"; }elseif(preg_match("/^dep_home.*/i",$key)){ $s_action="home"; }elseif(preg_match("/^group_tplnew.*/i",$key)){ $s_action="new_tpl"; }elseif(preg_match("/^group_chgpw.*/i",$key)){ $s_action="change_pw"; $s_entry = preg_replace("/group_chgpw_/i","",$key); }elseif(preg_match("/^dep_root.*/i",$key)){ $s_action="root"; }elseif(preg_match("/_group_edit_/",$key)){ $type = preg_replace("/_group_edit_.*$/","",$key); $s_action="edit"; $s_entry = preg_replace("/".$type."_group_edit_/i","",$key); $_POST['arg'] = $type; }elseif(preg_match("/^editPaste.*/i",$key)){ $s_action="editPaste"; }elseif(preg_match("/^copy_.*/",$key)){ $s_action="copy"; $s_entry = preg_replace("/^copy_/i","",$key); }elseif(preg_match("/^cut_.*/",$key)){ $s_action="cut"; $s_entry = preg_replace("/^cut_/i","",$key); } } $s_entry = preg_replace("/_.$/","",$s_entry); /* Start for New List Managment */ if(isset($_GET['act'])&&($_GET['act']=="dep_open")){ $s_action="open"; $s_entry = base64_decode($_GET['dep_id']); $_SESSION['CurrentMainBase']= "".$this->config->departments[trim($s_entry)]; } // Edit if if((isset($_GET['act']))&&($_GET['act']=="edit_entry")){ $s_action ="edit"; $s_entry = $_GET['id']; } /* Department changed? */ if(isset($_POST['CurrentMainBase']) && $_POST['CurrentMainBase']){ $_SESSION['CurrentMainBase']= $_POST['CurrentMainBase']; } /* Homebutton is posted */ if($s_action=="home"){ $_SESSION['CurrentMainBase']= (preg_replace("/^[^,]+,/","",$this->ui->dn)); $_SESSION['CurrentMainBase']= (preg_replace("/^[^,]+,/","",$_SESSION['CurrentMainBase'])); } if($s_action=="root"){ $_SESSION['CurrentMainBase']=($this->config->current['BASE']); } /* If Backbutton is Posted */ if($s_action == "back"){ $base_back= preg_replace("/^[^,]+,/","",$_SESSION['CurrentMainBase']); $base_back= convert_department_dn($base_back); if(isset($this->config->departments[trim($base_back)])){ $_SESSION['CurrentMainBase']= $this->config->departments[trim($base_back)]; }else{ $_SESSION['CurrentMainBase']= $this->config->departments["/"]; } } register_global("groupfilter", $groupfilter); $smarty= get_smarty(); /* Prepare formular */ $this->reload(); /* Check for exeeded sizelimit */ if (($message= check_sizelimit()) != ""){ return($message); } /* Only perform copy / paste if it is enabled */ if($this->enableCopyPaste){ /* Paste copied/cutted object in here */ if(($s_action == "editPaste") || ($this->CopyPasteHandler->stillOpen())){ $this->CopyPasteHandler->save_object(); $this->CopyPasteHandler->SetVar("base",$_SESSION['CurrentMainBase']); return($this->CopyPasteHandler->execute()); } /* Copy current object to CopyHandler */ if($s_action == "copy"){ $this->CopyPasteHandler->Clear(); $dn = $this->grouplist[trim($s_entry)]['dn']; $acl = get_permissions ($dn, $this->ui->subtreeACL); $obj = new grouptabs($this->config,$this->config->data['TABS']['GROUPTABS'], $dn); $objNew = new grouptabs($this->config,$this->config->data['TABS']['GROUPTABS'], "new"); $obj->set_acl($acl); $objNew->set_acl($acl); $this->CopyPasteHandler->Copy($obj,$objNew); foreach($this->CopyPasteHandler->current->by_object as $name => $obj){ foreach(array('is_account','gotoHotplugDevices','gotoLogonScripts', 'gotoProfileServers','gotoProfileFlag_C','gotoProfileFlag_L', 'gotoPrinter','useProfile','OrigCn','Categories') as $attr){ if(isset($obj->$attr)){ $this->CopyPasteHandler->current->by_object[$name]->$attr = $obj->$attr; } } } } /* Copy current object to CopyHandler */ if($s_action == "cut"){ $this->CopyPasteHandler->Clear(); $dn = $this->grouplist[trim($s_entry)]['dn']; $acl= get_permissions ($dn, $this->ui->subtreeACL); $obj= new grouptabs($this->config,$this->config->data['TABS']['GROUPTABS'], $dn); $obj->set_acl($acl); $this->CopyPasteHandler->Cut($obj); } } /* New group? */ if ($s_action=="new"){ /* By default we set 'dn' to 'new', all relevant plugins will react on this. */ $this->dn= "new"; /* Create new usertab object */ $this->grouptab= new grouptabs($this->config, $this->config->data['TABS']['GROUPTABS'], $this->dn); /* Set up the users ACL's for this 'dn' */ $acl= get_permissions ($_SESSION['CurrentMainBase'], $this->ui->subtreeACL); $this->grouptab->set_acl($acl); } /* Cancel dialogs */ if (isset($_POST['edit_cancel']) || isset($_POST['password_cancel'])){ del_lock ($this->grouptab->dn); unset ($this->grouptab); $this->grouptab= NULL; unset($_SESSION['objectinfo']); } /* Finish group edit is triggered by the tabulator dialog, so the user wants to save edited data. Check and save at this point. */ if ((isset($_POST['edit_finish'])) && (isset($this->grouptab->config)) ){ /* Check tabs, will feed message array */ $message= $this->grouptab->check(); /* Save, or display error message? */ if (count($message) == 0){ /* Save user data to ldap */ $this->grouptab->save(); gosa_log ("Group object'".$this->dn."' has been saved"); /* Group has been saved successfully, remove lock from LDAP. */ if ($this->dn != "new"){ del_lock ($this->dn); } /* There's no page reload so we have to read new users at this point. */ $this->reload (); unset ($this->grouptab); $this->grouptab= NULL; unset ($_SESSION['objectinfo']); } else { /* Ok. There seem to be errors regarding to the tab data, show message and continue as usual. */ show_errors($message); } } /* User wants to edit data? */ if (($s_action=="edit") && (!isset($this->grouptab-> config))){ /* Get 'dn' from posted 'uid', must be unique */ $this->dn= $this->grouplist[trim($s_entry)]['dn']; /* Check locking, save current plugin in 'back_plugin', so the dialog knows where to return. */ $user = get_lock($this->dn); if ($user != ""){ return(gen_locked_message ($user, $this->dn)); } /* Lock the current entry, so everyone will get the above dialog */ add_lock ($this->dn, $this->ui->dn); /* Set up the users ACL's for this 'dn' */ $acl= get_permissions ($this->dn, $this->ui->subtreeACL); /* Register grouptab to trigger edit dialog */ $this->grouptab= new grouptabs($this->config, $this->config->data['TABS']['GROUPTABS'], $this->dn); $this->grouptab->set_acl($acl); $_SESSION['objectinfo']= $this->dn; } /* Remove user was requested */ if ($s_action=="del"){ /* Get 'dn' from posted 'uid' */ $this->dn= $this->grouplist[trim($s_entry)]['dn']; /* Load permissions for selected 'dn' and check if we're allowed to remove this 'dn' */ $acl= get_permissions ($this->dn, $this->ui->subtreeACL); $this->acl= get_module_permission($acl, "group", $this->dn); if (chkacl($this->acl, "delete") == ""){ /* Check locking, save current plugin in 'back_plugin', so the dialog knows where to return. */ if (($user= get_lock($this->dn)) != ""){ return(gen_locked_message ($user, $this->dn)); } /* Lock the current entry, so nobody will edit it during deletion */ add_lock ($this->dn, $this->ui->dn); $smarty->assign("info", sprintf(_("You're about to delete the group '%s'."), LDAP::fix($this->dn))); return($smarty->fetch(get_template_path('remove.tpl', TRUE))); } else { /* Obviously the user isn't allowed to delete. Show message and clean session. */ print_red (_("You are not allowed to delete this group!")); } } /* Confirmation for deletion has been passed. Group should be deleted. */ if (isset($_POST['delete_group_confirm'])){ /* Some nice guy may send this as POST, so we've to check for the permissions again. */ if (chkacl($this->acl, "delete") == ""){ /* Delete request is permitted, perform LDAP action */ $this->grouptab= new grouptabs($this->config, $this->config->data['TABS']['GROUPTABS'], $this->dn); $this->grouptab->set_acl(array($this->acl)); $this->grouptab->delete (); gosa_log ("Group object'".$this->dn."' has been removed"); unset ($this->grouptab); $this->grouptab= NULL; /* Group list has changed, reload it. */ $this->reload (); } else { /* Normally this shouldn't be reached, send some extra logs to notify the administrator */ print_red (_("You are not allowed to delete this group!")); gosa_log ("Warning: '".$this->ui->uid."' tried to trick group deletion."); } /* Remove lock file after successfull deletion */ del_lock ($this->dn); unset($_SESSION['objectinfo']); } /* Delete group canceled? */ if (isset($_POST['delete_cancel'])){ del_lock ($this->dn); unset($_SESSION['objectinfo']); } /* Show tab dialog if object is present */ if (isset($this->grouptab->config)){ $display= $this->grouptab->execute(); /* Don't show buttons if tab dialog requests this */ if (!$this->grouptab->by_object[$this->grouptab->current]->dialog){ $display.= "

\n"; $display.= "\n"; $display.= " \n"; $display.= "\n"; $display.= "

"; } return ($display); } /* Prepare departments */ $options= ""; foreach ($this->config->idepartments as $key => $value){ if ($_SESSION['CurrentMainBase'] == $key){ $options.= ""; } else { $options.= ""; } } /* Create paste icon */ if($this->enableCopyPaste){ $Copy_Paste = "  "; if($this->CopyPasteHandler->isCurrentObjectPastAble()){ if($this->CopyPasteHandler->isCurrentCutted()){ $img = "images/cutpaste.png"; }else{ $img = "images/copypaste.png"; } $Copy_Paste .= " "; }else{ $Copy_Paste .= ""._("Can "; } }else{ $Copy_Paste =""; } // Managment $listhead = "
". "  ". "  ". "  ". "  ". "  ". "  ". $Copy_Paste. "  ". _("Base")." ". "  ". "
"; if($this->enableCopyPaste){ $actions = " "; $actions.= " "; $actions.= ""; $actions.= ""; }else{ $actions = ""; $actions.= ""; } // Defining Links $linkopen = "%s"; // image Buttons $editlink = "%s"; $userimg = "User"; /* Extension images group environment appgroup mailgroup acl reference */ $posiximg = ""; $mailimg = ""; $sambaimg = ""; $applimg = ""; $phoneimg = ""; $envimg = ""; // Space $empty = ""; $divlist = new divlist("groupstab"); $divlist->SetHeader(array( array("string" => " ", "attach" => "style='text-align:center;width:20px;'"), array("string" => _("Groupname")." / "._("Department"), "attach" => "style=''"), array("string" => _("Properties"), "attach" => "style='width:136px;'"), array("string" => _("Actions"), "attach" => "style='width:80px;border-right:0px;text-align:right;'") )); $divlist->SetSummary(_("This table displays all groups, in the selected tree.")); $divlist->SetEntriesPerPage(0); foreach($this->departments as $key=> $val){ if(!isset($this->config->departments[trim($key)])){ $this->config->departments[trim($key)]=""; } $non_empty=""; $keys= str_replace("/","\/",$key); foreach($this->config->departments as $keyd=>$vald ){ if(preg_match("/".$keys."\/.*/",$keyd)){ $non_empty="full"; } } $field1 = array("string" => "department", "attach" => "style='text-align:center;width:20px;'"); $field2 = array("string" => sprintf($linkopen,base64_encode($key),$val), "attach" => "style=''"); $field3 = array("string" => " ", "attach" => "style='width:136px;'"); $field4 = array("string" => " ", "attach" => "style='width:80px;border-right:0px;text-align:right;'"); $divlist->AddEntry(array($field1,$field2,$field3,$field4)); } foreach($this->grouplist as $key => $val){ if(isset($val['objectClass'])){ if(in_array("posixGroup", $val['objectClass'])) $posix = $posiximg; else $posix = $empty; if(in_array("gosaMailAccount", $val['objectClass'])) $mail = $mailimg; else $mail = $empty; if(in_array("sambaGroupMapping", $val['objectClass'])) $samba = $sambaimg; else $samba = $empty; if(in_array("gosaApplicationGroup", $val['objectClass'])) $appl = $applimg; else $appl = $empty; if(in_array("goFonPickupGroup", $val['objectClass'])) $phone = $phoneimg; else $phone = $empty; if(in_array("gotoEnvironment", $val['objectClass'])) $enviro= $envimg; else $enviro = $empty; }else{ $posix=$mail=$samba=$appl=$phone=$empty; } $title = "title='gid : ".$key." - dn : ".$val['dn']."'"; if(!isset($val['description'][0])){ $desc = ""; }else{ $desc = " - [ ".$val['description'][0]." ]"; } $field1 = array("string" => sprintf($userimg,$val['dn']), "attach" => "style='text-align:center;width:20px;'"); $field2 = array("string" => sprintf($editlink,$key,($val['cn']['0'].$desc)), "attach" => "style='' ".$title); $field3 = array("string" => preg_replace("/%KEY%/", $key, $posix." ".$enviro." ".$mail." ".$samba." ".$appl." ".$phone), "attach" => "style='width:136px;'"); $field4 = array("string" => preg_replace("/%KEY%/", $key, $actions), "attach" => "style='width:80px;border-right:0px;text-align:right;'"); $divlist->AddEntry(array($field1,$field2,$field3,$field4)); } /* Show main page */ $smarty->assign("grouplisthead", $listhead); $smarty->assign("grouplist", $divlist->DrawList()); $smarty->assign("search_image", get_template_path('images/search.png')); $smarty->assign("searchu_image", get_template_path('images/search_user.png')); $smarty->assign("tree_image", get_template_path('images/tree.png')); $smarty->assign("infoimage", get_template_path('images/info.png')); $smarty->assign("launchimage", get_template_path('images/launch.png')); $smarty->assign("deplist", $this->config->idepartments); foreach( array("guser", "regex", "primarygroups", "mailgroups","appgroups", "sambagroups", "functionalgroups", "subsearch") as $type){ $smarty->assign("$type", $groupfilter[$type]); } /* Extend if we are not using javascript */ $smarty->assign("apply", apply_filter()); $smarty->assign("alphabet", generate_alphabet()); $smarty->assign("hint", print_sizelimit_warning()); if (isset($this->config->data['MAIN']['NOPRIMARYGROUP'])){ $smarty->assign("showprimary", ""); } else { $smarty->assign("showprimary", "true"); } return($smarty->fetch(get_template_path('headpage.tpl', TRUE))); } function reload($CreatePosixsList=false) { /* Get config */ $groupfilter= get_global('groupfilter'); /* Set base for all searches */ $base= $_SESSION['CurrentMainBase']; /* Regex filter? */ if ($groupfilter['regex'] != ""){ $regex= $groupfilter['regex']; } else { $regex= "*"; } /* User filter? */ $filter= "(objectclass=posixGroup)"; $error= ""; $error2= ""; $this->grouplist= array(); /* What are primary groups? */ $primaries= array(); $ldap= $this->config->get_ldap_link(); if (!isset($this->config->data['MAIN']['NOPRIMARYGROUP'])){ $ldap->cd($base); $ldap->search("(&(uid=$regex)(!(uid=*$))(objectClass=posixAccount)(gidNumber=*))", array("gidNumber", "cn")); show_ldap_error($ldap->get_error()); while ($attrs= $ldap->fetch()){ $primaries[$attrs['gidNumber'][0]]= $attrs['cn'][0]; } } /* Set filter depending on selection */ $sfilter= ""; if ($groupfilter['appgroups'] == "checked"){ $filter.= "(objectClass=gosaApplicationGroup)"; } if ($this->config->current['SAMBAVERSION'] == 3){ if ($groupfilter['primarygroups'] != "checked"){ $sfilter= "(objectClass=sambaGroupMapping)"; } elseif ($groupfilter['sambagroups'] == "checked"){ $filter.= "(objectClass=sambaGroupMapping)"; } } if ($groupfilter['mailgroups'] == "checked"){ $filter.= "(objectClass=gosaMailAccount)"; } $functional= array(); $ldap->cd(get_groups_ou().$base); $ldap->set_size_limit($_SESSION['size_limit']); $ldap->search("(&(cn=$regex)(objectClass=posixGroup)(!(|(objectClass=gosaMailAccount)(objectClass=gosaApplicationGroup)$sfilter)))", array("cn", "gidNumber", "description")); $error2= $ldap->error; while ($attrs= $ldap->fetch()){ if (!isset($primaries[$attrs['gidNumber'][0]])){ $functional[$attrs['gidNumber'][0]]= $attrs['gidNumber'][0]; } } /* * We also need to search for the departments * So we are able to navigate like in konquerer */ $res3 = get_list2($this->ui->subtreeACL, "(&(|(ou=$regex)(description=$regex))(objectClass=gosaDepartment))", FALSE, $base, array("ou", "description"), TRUE); $this->departments= array(); $tmp = array(); foreach ($res3 as $value){ $tmp[strtolower($value['dn']).$value['dn']]=$value; } ksort($tmp); foreach($tmp as $value){ if(isset($value["description"][0])){ $this->departments[$value['dn']]= convert_department_dn2($value['dn'])." - [".$value["description"][0]."]"; }else{ $this->departments[$value['dn']]= convert_department_dn2($value['dn']);//$value["description"][0]; } } /* Ende department generation */ /* Generate grouplist */ if ($filter != ""){ $filter= "(&(cn=$regex)(objectClass=posixGroup)(|$filter))"; if ($groupfilter['guser'] != ""){ $filter= "(&(|(memberUID=" . $groupfilter['guser'] . ")(cn=" . $groupfilter['guser'] . "))$filter)"; } } /* Depending on $CreatePosixsList we have to create different lists */ if ($groupfilter['subsearch'] == "checked"){ $res= get_list($this->ui->subtreeACL, "$filter", FALSE, $base, array("cn", "description", "gidNumber"), TRUE); } else { $base= get_groups_ou().$base; $res= get_list($this->ui->subtreeACL, "$filter", FALSE, $base, array("cn", "description", "gidNumber"), TRUE); } if (preg_match("/size limit/i", $error) || preg_match("/size limit/i", $error2)){ $_SESSION['limit_exceeded']= TRUE; } foreach ($res as $value){ if ($groupfilter['functionalgroups'] != "checked" && isset($functional[$value['gidNumber'][0]])){ continue; } if ($groupfilter['primarygroups'] == "checked"){ $this->grouplist[$value['gidNumber'][0]]= $value; } else { if (!isset($primaries[$value['gidNumber'][0]])){ $this->grouplist[$value['gidNumber'][0]]= $value; } } } $tmp=array(); /* Create result for group management listbox*/ foreach($this->grouplist as $tkey => $val ){ $tmp[strtolower($val['cn'][0]).$val['cn'][0]]=$val; } ksort($tmp); $this->grouplist=array(); foreach($tmp as $val){ $this->grouplist[]=$val; } reset ($this->grouplist); } function remove_from_parent() { /* Optionally execute a command after we're done */ $this->postremove(); } /* Save data to object */ function save_object() { } /* Check values */ function check() { } /* Save to LDAP */ function save() { /* Optionally execute a command after we're done */ $this->postcreate(); } function adapt_from_template($dn) { } function password_change_needed() { } function show_header($button_text, $text, $disabled= FALSE) { } function remove_lock() { if (isset($this->grouptab->dn)){ del_lock ($this->grouptab->dn); } } } // vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: ?>