![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
diff --git a/gosa-core/plugins/admin/acl/class_aclManagement.inc b/gosa-core/plugins/admin/acl/class_aclManagement.inc
index 8aed5f6b0bbb56b8013b13f14b9d8e49316dca74..17f6b3faccd150f3ab45929546bb052d655fa73f 100644 (file)
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*/
-class aclManagement extends plugin
+class aclManagement extends management
{
- /* Plugin definitions */
- var $plHeadline = "ACL";
+ var $plHeadline = "Acl";
var $plDescription = "Manage access control lists";
+ var $plIcon = "plugins/acl/images/plugin.png";
- /* Dialog attributes */
- var $acltabs = NULL;
- var $ui = NULL;
- var $acl = "";
- var $DivListACL = NULL;
+ // Tab definition
+ protected $tabClass = "aclroletab";
+ protected $tabType = "ACLROLETAB";
+ protected $aclCategory = "acl";
+ protected $aclPlugin = "acl";
+ protected $objectName = "acl";
- var $CopyPasteHandler;
- var $start_pasting_copied_objects = FALSE;
- var $dns = array();
-
- var $acl_module = array("acl","aclroles");
-
- function aclManagement(&$config, &$ui)
+ function __construct(&$config,$ui)
{
- /* Save configuration for internal use */
- $this->config = &$config;
- $this->ui = &$ui;
-
- /* Copy & Paste enabled ?*/
- if((isset($this->config->data['MAIN']['ENABLECOPYPASTE']))&&(preg_match("/true/i",$this->config->data['MAIN']['ENABLECOPYPASTE']))){
- $this->CopyPasteHandler = new CopyPasteHandler($this->config);
- }
-
- /* Creat dialog object */
- $this->DivListACL = new divListACL($this->config,$this);
- }
-
-
- function execute()
- {
- /* Call parent execute */
- plugin::execute();
-
- session::set('LOCK_VARS_TO_USE',array("/^item_selected/","/^menu_action/","/^list/","/^id_/","/^list_acl_role_del/","/^list_acl_del/","/^menu_action/"));
-
- $smarty = get_smarty(); // Smarty instance
- $s_action = ""; // Contains the action to be taken
- $s_entry = ""; // The value for s_action
-
- /* Edit entry button pressed? */
- if( isset($_GET['act']) && $_GET['act'] == "list_edit_entry" ){
- $s_action= "edit";
- $s_entry= validate($_GET['id']);
- }
-
- /* Edit entry button pressed? */
- if( isset($_GET['act']) && $_GET['act'] == "list_edit_role" ){
- $s_action= "edit_role";
- $s_entry= validate($_GET['id']);
- }
-
- $types = array(
- "del" =>"^list_acl_del",
- "edit" =>"^list_acl_edit",
- "del_role" =>"^list_acl_role_del",
- "edit_role" =>"^list_acl_role_edit",
- "copy" =>"^copy",
- "cut" =>"^cut",
- "copy_multiple"=> "^multiple_copy_objects",
- "cut_multiple" => "^multiple_cut_objects",
- "editPaste" =>"^editPaste",
- "addrole" =>"^new_acl_role");
-
- /* Test relevant POST values */
- foreach($_POST as $key => $val){
-
- /* Get every possible POST combination and set s_action/s_entry accordingly */
- foreach($types as $act => $name){
-
- if (preg_match("/".$name.".*/", $key)){
- $s_action= $act;
- $s_entry= preg_replace("/".$name."_/i", "", $key);
- }
- }
- }
-
- /* Remove coordinate prefix from POST, required by some browsers */
- $s_entry= preg_replace("/_.$/", "", $s_entry);
-
- /* Seperate possibly encoded tab and entry, default to tab "acl" */
- if(preg_match("/.*-.*/", $s_entry)){
- $s_tab= preg_replace("/^[^-]*-/i", "" ,$s_entry);
- $s_entry= preg_replace("/-[^-]*$/i", "", $s_entry);
- }else{
- $s_tab= "generic";
- }
+ $this->config = $config;
+ $this->ui = $ui;
+ $this->storagePoints = array(get_ou("aclRoleRDN")); // ACLs are attached to department containers
- /* handle C&P from layers menu */
- if(isset($_POST['menu_action']) && preg_match("/^multiple_copy_systems/",$_POST['menu_action'])){
- $s_action = "copy_multiple";
- }
- if(isset($_POST['menu_action']) && preg_match("/^multiple_cut_systems/",$_POST['menu_action'])){
- $s_action = "cut_multiple";
- }
- if(isset($_POST['menu_action']) && preg_match("/^editPaste/",$_POST['menu_action'])){
- $s_action = "editPaste";
- }
-
- /* Create options */
- if(isset($_POST['menu_action']) && $_POST['menu_action'] == "new_acl_role"){
- $s_action = "new";
+ // Build filter
+ if (session::global_is_set(get_class($this)."_filter")){
+ $filter= session::global_get(get_class($this)."_filter");
+ } else {
+ $filter = new filter(get_template_path("acl-filter.xml", true));
+ $filter->setObjectStorage($this->storagePoints);
}
+ $this->setFilter($filter);
- /* handle remove from layers menu */
- if(isset($_POST['menu_action']) && preg_match("/^remove_multiple/",$_POST['menu_action'])){
- $s_action = "del_multiple";
- }
+ // Build headpage
+ $headpage = new listing(get_template_path("acl-list.xml", true));
+ $headpage->registerElementFilter("filterLabel", "aclManagement::filterLabel");
+ $headpage->setFilter($filter);
-
- /********************
- Copy & Paste Handling ...
- ********************/
-
- /* Display the copy & paste dialog, if it is currently open */
- $ret = $this->copyPasteHandling_from_queue($s_action,$s_entry);
- if($ret){
- return($ret);
+ // Add copy&paste and snapshot handler.
+ if ($this->config->boolValueIsTrue("main", "copyPaste")){
+ $this->cpHandler = new CopyPasteHandler($this->config);
}
-
-
- /********************
- * Add new Role entry
- ********************/
-
- if(($s_action == "new") && (!isset($this->acltabs->config))){
-
- /* Get 'dn' from posted acl, must be unique */
- $this->dn= "new";
-
- /* Check permissions */
- if(preg_match("/c/",$this->ui->get_permissions($this->DivListACL->selectedBase,"aclroles/aclrole"))){
-
- /* Register acltabs to trigger edit dialog */
- $this->acltabs= new aclroletab($this->config, NULL,$this->dn);
- $this->acltabs->set_acl_base($this->DivListACL->selectedBase);
- }else{
- msg_dialog::display(_("Permission error"), msgPool::permCreate(), ERROR_DIALOG);
- }
+ if($this->config->get_cfg_value("enableSnapshots") == "true"){
+ $this->snapHandler = new SnapshotHandler($this->config);
}
- /********************
- Edit existing entry
- ********************/
-
- if (($s_action=="edit" || $s_action=="edit_role") && (!isset($this->acltabs->config))){
-
- /* Get 'dn' from posted acl, must be unique */
- $this->dn= $this->list[trim($s_entry)]['dn'];
+ parent::__construct($this->config, $ui, "acl", $headpage);
+ }
- if(in_array("gosaRole",$this->list[trim($s_entry)]['objectClass'])){
- $acl = "aclroles/aclrole";
- }else{
- $acl = "acl/acl";
- }
+ function removeEntryConfirmed($action="",$target=array(),$all=array(),
+ $altTabClass="",$altTabType="",$altAclCategory="")
+ {
+ @DEBUG (DEBUG_TRACE, __LINE__, __FUNCTION__, __FILE__,$target,"Entry removel confirmed!");
- /* Check permissions */
- if(preg_match("/r/",$this->ui->get_permissions($this->dn,$acl))){
-
- /* Check locking, save current plugin in 'back_plugin', so
- the dialog knows where to return. */
- if (($acl= get_lock($this->dn)) != ""){
- return(gen_locked_message ($acl, $this->dn));
- }
+ $headpage = $this->getHeadpage();
+ foreach($this->dns as $key => $dn){
- /* Lock the current entry, so everyone will get the above dialog */
- add_lock ($this->dn, $this->ui->dn);
+ // Check permissions, are we allowed to remove this object?
+ $acl = $this->ui->get_permissions($dn, $this->aclCategory."/".$this->aclPlugin);
+ if(preg_match("/d/",$acl)){
- /* Register acltabs to trigger edit dialog */
- if($s_action=="edit_role"){
- $this->acltabs= new aclroletab($this->config, NULL,$this->dn);
- $this->acltabs-> set_acl_base($this->dn);
+ if($headpage->getType($dn) == "gosaRole"){
+ $tabClass = "aclroletab";
+ $tabType = "ACLROLETAB";
}else{
- $this->acltabs= new acltab($this->config, NULL,$this->dn);
- $this->acltabs-> set_acl_base($this->dn);
- }
-
- /* Set ACL and move DN to the headline */
- session::set('objectinfo',$this->dn);
- }else{
- msg_dialog::display(_("Permission error"), msgPool::permModify(), ERROR_DIALOG);
- }
- }
-
-
- /********************
- Edit canceled
- ********************/
- if(isset($_POST['delete_lock'])){
- $this->remove_lock();
- session::un_set('objectinfo');
- }
-
- /* Reset all relevant data, if we get a _cancel request */
- if (isset($_POST['edit_cancel'])){
- $this->remove_lock();
- $this->acltabs= NULL;
- session::un_set('objectinfo');
- }
-
-
- /********************
- Delete entry requested, display confirm dialog
- ********************/
-
- /* Remove acl was requested */
- if ($s_action=="del_role"){
-
- /* Get 'dn' from posted acl */
- $this->dn= $this->list[trim($s_entry)]['dn'];
-
- /* Check permissions */
- if(preg_match("/d/",$this->ui->get_permissions($this->dn,"aclroles/aclrole"))){
-
- /* Check locking, save current plugin in 'back_plugin', so
- the dialog knows where to return. */
- if (($acl= get_lock($this->dn)) != ""){
- return(gen_locked_message ($acl, $this->dn));
+ $tabClass = "acltab";
+ $tabType = "ACLTAB";
}
- /* Lock the current entry, so nobody will edit it during deletion */
- add_lock ($this->dn, $this->ui->dn);
- $smarty->assign("info", msgPool::deleteInfo(@LDAP::fix($this->dn)));
- $smarty->assign("is_role",true);
-
- return($smarty->fetch(get_template_path('remove.tpl', TRUE)));
- } else {
+ // Delete the object
+ $this->dn = $dn;
+ $this->tabObject= new $tabClass($this->config,$this->config->data['TABS'][$tabType], $this->dn, $aclCategory, true, true);
+ $this->tabObject->set_acl_base($this->dn);
+ $this->tabObject->delete ();
+ $this->tabObject->parent = &$this;
- /* Obviously the acl isn't allowed to delete. Show message and
- clean session. */
- msg_dialog::display(_("Permission error"), msgPool::permDelete(), ERROR_DIALOG);
- }
- }
-
-
- /********************
- Delete entry confirmed
- ********************/
-
- /* Confirmation for deletion has been passed. Acl should be deleted. */
- if (isset($_POST['delete_acl_role_confirmed'])){
-
- /* Check permissions */
- if(preg_match("/d/",$this->ui->get_permissions($this->dn,"aclroles/aclrole"))){
-
- /* Delete request is permitted, perform LDAP action */
- $this->acltabs= new aclroletab($this->config, NULL,$this->dn);
- $this->acltabs->delete();
- unset ($this->acltabs);
- $this->acltabs= NULL;
+ // Remove the lock for the current object.
+ del_lock($this->dn);
} else {
-
- /* Normally this shouldn't be reached, send some extra
- logs to notify the administrator */
msg_dialog::display(_("Permission error"), msgPool::permDelete(), ERROR_DIALOG);
-
- if(isset($this->ui->uid)){
- new log("security","aclroles/".get_class($this),$this->dn,array(),"Warning: '".$this->ui->uid."' tried to trick acl role deletion.");
- }
- }
-
- /* Remove lock file after successfull deletion */
- $this->remove_lock();
- }
-
- /********************
- Delete entry requested, display confirm dialog
- ********************/
-
- /* Remove acl was requested */
- if ($s_action=="del" || $s_action == "del_multiple"){
-
- /* Get 'dn' from posted acl */
- if($s_action == "del"){
- $this->dns = array( $this->list[trim($s_entry)]['dn']);
- }else{
- $this->dns = array();
- foreach($this->list_get_selected_items() as $id){
- $this->dns[] = $this->list[$id]['dn'];
- }
- }
-
- $disallowed = array();
- foreach($this->dns as $key => $dn){
- $acl = $this->ui->get_permissions($dn, "aclroles/aclrole");
- if(!preg_match("/d/",$acl)){
- unset($this->dns[$key]);
- $disallowed[] = $dn;
- }
- }
-
- if(count($disallowed)){
- msg_dialog::display(_("Permission"),msgPool::permDelete($disallowed),INFO_DIALOG);
- }
-
- if(count($this->dns)){
-
-
- /* Display lock messages */
- if ($user= get_multiple_locks($this->dns)){
- return(gen_locked_message($user,$this->dns));
- }
-
- $dns_names = array();
- foreach($this->dns as $key => $dn){
-
- /* Check permissions */
- if(!preg_match("/d/",$this->ui->get_permissions($dn,"aclroles/aclrole"))){
-
- /* Obviously the acl isn't allowed to delete. Show message and
- clean session. */
- msg_dialog::display(_("Permission error"), msgPool::permDelete(), ERROR_DIALOG);
- unset($this->dns[$key]);
- continue;
- }
-
- $dns_names[] = LDAP::fix($dn);
- }
-
- if(count($this->dns)){
- add_lock($this->dns,$this->ui->dn);
- $smarty->assign("info", msgPool::deleteInfo($dns_names));
- $smarty->assign("is_role",false);
- return($smarty->fetch(get_template_path('remove.tpl', TRUE)));
- }
- }
- }
-
-
- /********************
- Delete entry confirmed
- ********************/
-
- /* Confirmation for deletion has been passed. Acl should be deleted. */
- if (isset($_POST['delete_acl_confirm'])){
-
- /* Check permissions */
- if(preg_match("/d/",$this->ui->get_permissions($this->dn,"aclroles/aclrole"))){
-
- /* Delete request is permitted, perform LDAP action */
- $this->acltabs= new acl($this->config, NULL,$this->dn);
- $this->acltabs->remove_from_parent();
- unset ($this->acltabs);
- $this->acltabs= NULL;
- } else {
-
- /* Normally this shouldn't be reached, send some extra
- logs to notify the administrator */
- msg_dialog::display(_("Permission error"),msgPool::permDelete(), ERROR_DIALOG);
-
- if(isset($this->ui->uid)){
- new log("security","aclroles/".get_class($this),$this->dn,array(),"Warning: '".$this->ui->uid."' tried to trick acl role deletion.");
-
- }
- }
-
- /* Remove lock file after successfull deletion */
- $this->remove_lock();
- }
-
-
- /********************
- Delete entry Canceled
- ********************/
-
- /* Delete acl canceled? */
- if (isset($_POST['delete_acl_cancel'])){
- $this->remove_lock();
- }
-
-
- /********************
- Edit entry finished (Save)
- ********************/
-
- /* Finish acl edit is triggered by the tabulator dialog, so
- the acl wants to save edited data. Check and save at this
- point. */
- if ((isset($_POST['edit_finish']) || isset($_POST['edit_apply'])) && (isset($this->acltabs->config))){
-
- /* Check tabs, will feed message array */
- $this->acltabs->save_object();
- $message= $this->acltabs->check();
-
- /* Save, or display error message? */
- if (count($message) == 0){
-
- /* Save acl data to ldap */
- if($this->acltabs->save() == 1){
- return;
- }
-
- if (!isset($_POST['edit_apply'])){
-
- /* ACl has been saved successfully, remove lock from LDAP. */
- if ($this->dn != "new"){
- $this->remove_lock();
- }
-
- unset ($this->acltabs);
- $this->acltabs= NULL;
- session::un_set('objectinfo');
- }
- } else {
- /* Ok. There seem to be errors regarding to the tab data,
- show message and continue as usual. */
- msg_dialog::displayChecks($message);
+ new log("security","groups/".get_class($this),$dn,array(),"Tried to trick deletion.");
}
}
-
- /********************
- Display subdialog
- ********************/
-
-
- /* Show tab dialog if object is present */
- if(isset($this->acltabs->config)){
-
- /* Save object */
- $this->acltabs->save_object();
- $display= $this->acltabs->execute();
-
- /* Don't show buttons if tab dialog requests this */
- if(isset($this->acltabs)){
-
- /* Skip displaying save/cancel if there is a sub dialog open */
- if (!isset($this->acltabs->dialog) || !$this->acltabs->dialog){
- $display.= "<p style=\"text-align:right\">\n";
-// $display.= "<input type=submit name=\"edit_finish\" style=\"width:80px\" value=\"".msgPool::okButton()."\">\n";
- $display.= " \n";
-
- /* Skip Apply if it is a new entry */
- #if ($this->dn != "new"){
- # $display.= "<input type=submit name=\"edit_apply\" value=\"".msgPool::applyButton()."\">\n";
- # $display.= " \n";
- #}
-
- // $display.= "<input type=submit name=\"edit_cancel\" value=\"".msgPool::cancelButton()."\">\n";
- $display.= "</p>";
- }
- }
- return ($display);
- }
-
- /* Check if there is a snapshot dialog open */
- $base = $this->DivListACL->selectedBase;
- if($str = $this->showSnapshotDialog($base,$this->get_used_snapshot_bases(),$this)){
- return($str);
- }
-
- /* Return rendered main page */
- /* Display dialog with system list */
- $this->DivListACL->parent = $this;
- $this->DivListACL->execute();
-
- /* Add departments if subsearch is disabled */
- if(!$this->DivListACL->SubSearch){
- $this->DivListACL->AddDepartments($this->DivListACL->selectedBase,3,1);
- }
- $this->reload();
- $this->DivListACL->setEntries($this->list);
- return($this->DivListACL->Draw());
- }
-
-
- function reload()
- {
- /* Get divlist informations from filter part */
- $Regex = $this->DivListACL -> Regex;
- $SubSearch = $this->DivListACL -> SubSearch;
- $base = $this->DivListACL -> selectedBase;
- $Attrs = array("ou","cn","description","gosaAclEntry","objectClass");
- $res = array();
- $tmp = array(); // Will contain temporary results
- $ldap = $this->config->get_ldap_link();
- $Filter = "(&(objectClass=gosaACL)(gosaAclEntry=*)(|(cn=".$Regex.")(ou=".$Regex.")))";
- $FilterRoles= "(&(objectClass=gosaRole)(|(cn=".$Regex.")(ou=".$Regex.")))";
-
- /* Fetch following structures, this will be used if !$SubSearch */
- $fetch_this = array(
- "ME" => array("TYPE" => "cat" , "FLAGS" => GL_SIZELIMIT ,"BASE"=>""),
- "SYSTEMS" => array("TYPE" => "search" , "FLAGS" => GL_SIZELIMIT | GL_SUBSEARCH ,"BASE"=>get_ou('systemsou')),
- "APPS" => array("TYPE" => "search" , "FLAGS" => GL_SIZELIMIT | GL_SUBSEARCH ,"BASE"=>get_ou('applicationou')),
- "PEOPLE" => array("TYPE" => "search" , "FLAGS" => GL_SIZELIMIT | GL_SUBSEARCH ,"BASE"=>get_people_ou()),
- "GROUPS" => array("TYPE" => "search" , "FLAGS" => GL_SIZELIMIT | GL_SUBSEARCH ,"BASE"=>get_groups_ou()));
-
- /* Subsearch ? */
- if($SubSearch){
-
- /* Get all object in this base */
- $Flags = GL_SIZELIMIT | GL_SUBSEARCH;
- $fetch_base = $base;
- $tmp = get_list($Filter, "acl", $fetch_base, $Attrs, $Flags);
- $tmp2 = get_list($FilterRoles, "acl", $fetch_base, $Attrs, $Flags);
- foreach($tmp as $entry){
- $res[] = $entry;
- }
- foreach($tmp2 as $entry){
- $res[] = $entry;
- }
-
- }else{
-
- $tmp_roles = get_list($FilterRoles, "acl", get_ou('aclroleou').$base, $Attrs,GL_SIZELIMIT);
-
- foreach($tmp_roles as $entry){
- $res[] = $entry;
- }
-
- /* Walk through all possible bases */
- foreach($fetch_this as $type => $data){
-
- /* Get requried attributes */
- $Flags = $data['FLAGS'];
- $fetch_base = $data['BASE'].$base;
- $Type = $data['TYPE'];
-
- /* Check if method is cat or search */
- if($Type == "search"){
- $tmp = get_list($Filter, "acl", $fetch_base, $Attrs, $Flags);
- foreach($tmp as $entry){
- $res[$entry['dn']] = $entry;
- }
- }else{
- $ldap->cat($fetch_base,$Attrs);
- $attrs = $ldap->fetch();
- if($attrs && isset($attrs['gosaAclEntry'])){
- $re2 = preg_replace("/\*/",".*",$Regex);
-
- if(!isset($attrs['ou']) && !isset($attrs['cn'])){
- $namingAttr= preg_replace("/^[^=]*+=([^,]*),.*$/","\\1",$fetch_base);
- if(preg_match("/".$re2."/i",$namingAttr)){
- $res[$attrs['dn']] = $attrs;
- }
- }elseif( (isset($attrs['cn'][0]) && preg_match("/".$re2."/i",$attrs['cn'][0]))
- ||(isset($attrs['ou'][0]) && preg_match("/".$re2."/i",$attrs['ou'][0]))){
- $res[$attrs['dn']] = $attrs;
- }
- }
- }
- }
- }
- $this->list = array_values($res);
+ // Cleanup
+ $this->remove_lock();
+ $this->closeDialogs();
}
- function copyPasteHandling_from_queue($s_action,$s_entry)
+ function newEntry($action="",$target=array(),$all=array(), $altTabClass ="", $altTabType = "", $altAclCategory="")
{
- /* Check if Copy & Paste is disabled */
- if(!is_object($this->CopyPasteHandler)){
- return("");
- }
-
- $ui = get_userinfo();
-
- /* Add a single entry to queue */
- if($s_action == "cut" || $s_action == "copy"){
-
- /* Cleanup object queue */
- $this->CopyPasteHandler->cleanup_queue();
- $dn = $this->list[$s_entry]['dn'];
-
- /* We can only copy & cut roles */
- if(isset($this->list[$s_entry]['objectClass']) && in_array("gosaRole",$this->list[$s_entry]['objectClass'])){
- if($s_action == "copy" && $ui->is_copyable($dn,"aclroles","aclrole")){
- $this->CopyPasteHandler->add_to_queue($dn,$s_action,"aclroletab","ACLROLETAB","aclroles");
- }
- if($s_action == "cut" && $ui->is_cutable($dn,"aclroles","aclrole")){
- $this->CopyPasteHandler->add_to_queue($dn,$s_action,"aclroletab","ACLROLETAB","aclroles");
- }
- }
- }
-
- /* Add entries to queue */
- if($s_action == "copy_multiple" || $s_action == "cut_multiple"){
-
- /* Cleanup object queue */
- $this->CopyPasteHandler->cleanup_queue();
-
- /* Add new entries to CP queue */
- foreach($this->list_get_selected_items() as $id){
- $dn = $this->list[$id]['dn'];
-
- if(isset($this->list[$id]['objectClass']) && in_array("gosaRole",$this->list[$id]['objectClass'])){
-
- if($s_action == "copy_multiple" && $ui->is_copyable($dn,"aclroles","aclrole")){
- $this->CopyPasteHandler->add_to_queue($dn,"copy","aclroletab","ACLROLETAB","aclroles");
- }
- if($s_action == "cut_multiple" && $ui->is_cutable($dn,"aclroles","aclrole")){
- $this->CopyPasteHandler->add_to_queue($dn,"cut","aclroletab","ACLROLETAB","aclroles");
- }
- }
- }
- }
-
- /* Start pasting entries */
- if($s_action == "editPaste"){
- $this->start_pasting_copied_objects = TRUE;
- }
- /* Return C&P dialog */
- if($this->start_pasting_copied_objects && $this->CopyPasteHandler->entries_queued()){
-
- /* Get dialog */
- $this->CopyPasteHandler->SetVar("base",$this->DivListACL->selectedBase);
- $data = $this->CopyPasteHandler->execute();
-
- /* Return dialog data */
- if(!empty($data)){
- return($data);
- }
- }
-
- /* Automatically disable status for pasting */
- if(!$this->CopyPasteHandler->entries_queued()){
- $this->start_pasting_copied_objects = FALSE;
- }
- return("");
+ $this->skipFooter = TRUE;
+ $altTabClass = "aclroletab";
+ $altTabType = "ACLROLETAB";
+ return(management::newEntry($action,$target,$all,$altTabClass,$altTabType,$altAclCategory));
}
-
- function list_get_selected_items()
+ function editEntry($action="",$target=array(),$all=array(), $altTabClass ="", $altTabType = "", $altAclCategory="")
{
- $ids = array();
- foreach($_POST as $name => $value){
- if(preg_match("/^item_selected_[0-9]*$/",$name)){
- $id = preg_replace("/^item_selected_/","",$name);
- $ids[$id] = $id;
+ $this->skipFooter = TRUE;
+ if(count($target) == 1){
+
+ // Set dummy tab object...
+ $this->dn = array_pop($target);
+ $headpage = $this->getHeadpage();
+ if($headpage->getType($this->dn) == "gosaRole"){
+ $altTabClass = "aclroletab";
+ $altTabType = "ACLROLETAB";
+ }else{
+ $altTabClass = "acltab";
+ $altTabType = "ACLTAB";
}
+ return(management::editEntry($action,array($this->dn),$all,$altTabClass,$altTabType,$altAclCategory));
}
- return($ids);
}
- function remove_lock()
+ function detectPostActions()
{
- /* Remove acl lock if a DN is marked as "currently edited" */
- if (isset($this->acltabs->dn)){
- del_lock ($this->acltabs->dn);
- }
- del_lock ($this->dn);
- del_lock ($this->dns);
+ $action= management::detectPostActions();
+ if(isset($_POST['edit_acl'])) $action['action'] = "edit_acl";
+ if(isset($_POST['edit_role'])) $action['action'] = "edit_role";
+ return($action);
}
+
-
- function save_object()
+ // A filter which allows to open a department by clicking on the departments name.
+ static function filterLabel($row,$dn,$ou= array(),$pid=0,$base="")
{
- /* Handle divlist filter && department selection*/
- if(!is_object($this->acltabs)){
- $this->DivListACL->save_object();
+ $ou = $ou[0];
+ if($dn == $base){
+ $ou =" . ";
}
- if(is_object($this->CopyPasteHandler)){
- $this->CopyPasteHandler->save_object();
+ if(!preg_match("/^cn=/",$dn)){
+ $ou.=" ["._("ACL Assignment")."]";
}
- }
-
- /* A set of disabled and therefore overloaded functions. They are
- not needed in this class. */
- function remove_from_parent() { }
- function check() { }
-
- function save() {
- echo "SAVE ACL";
- }
-
- function adapt_from_template($dn, $skip= array()) { }
- function password_change_needed() { }
+ $dn= LDAP::fix(func_get_arg(1));
+ return("<a href='?plug=".$_GET['plug']."&PID=$pid&act=listing_edit_$row' title='$dn'>$ou</a>");
+ }
- /* Return departments, that will be included within snapshot detection */
- function get_used_snapshot_bases()
- {
- return(array());
- }
}
// vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: