diff --git a/gosa-core/plugins/admin/ogroups/class_ogroup.inc b/gosa-core/plugins/admin/ogroups/class_ogroup.inc
index 9aeff56552c9c0c10c6fe64e51e05f8474a5b59d..c68ac83f4794400b9ef91abd7e136b2624b591c0 100644 (file)
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*/
-/* Sort multidimensional arrays for key 'text' */
-function sort_list($val1, $val2)
-{
- $v1= strtolower($val1['text']);
- $v2= strtolower($val2['text']);
- if ($v1 > $v2){
- return 1;
- }
- if ($v1 < $v2){
- return -1;
- }
- return 0;
-}
-
-
class ogroup extends plugin
{
- /* Variables */
- var $cn= "";
- var $description= "";
- var $base= "";
- var $gosaGroupObjects= "";
- var $department= "";
- var $objects= array();
- var $objcache= array();
- var $memberList= array();
- var $member= array();
- var $orig_dn= "";
- var $orig_cn= "";
- var $orig_base= "";
- var $group_dialog= FALSE;
- var $view_logged = FALSE;
-
- var $accessTo= array();
- var $trustModel= "";
- var $show_ws_dialog = FALSE;
-
- var $was_trust_account= FALSE;
-
- /* Already assigned Workstations. Will be hidden in selection.
- */
- var $used_workstations = array();
-
- /* attribute list for save action */
- var $attributes= array("cn", "description", "gosaGroupObjects","member","accessTo","trustModel");
- var $objectclasses= array("top", "gosaGroupOfNames");
-
- function ogroup (&$config, $dn= NULL)
- {
- plugin::plugin ($config, $dn);
- $this->orig_dn= $dn;
-
- $this->member = array();
-
- /* Load member objects */
- if (isset($this->attrs['member'])){
- foreach ($this->attrs['member'] as $key => $value){
- if ("$key" != "count"){
- $value= @LDAP::convert($value);
- $this->member["$value"]= "$value";
- }
- }
- }
- $this->is_account= TRUE;
-
- /* Get global filter config */
- if (!session::is_set("ogfilter")){
- $ui= get_userinfo();
- $base= get_base_from_people($ui->dn);
- $ogfilter= array( "dselect" => $base,
- "regex" => "*");
- session::set("ogfilter", $ogfilter);
- }
- $ogfilter= session::get('ogfilter');
-
- /* Adjust flags */
- foreach( array( "U" => "accounts",
- "G" => "groups",
- "A" => "applications",
- "D" => "departments",
- "S" => "servers",
- "W" => "workstations",
- "O" => "winstations",
- "T" => "terminals",
- "F" => "phones",
- "_" => "subtrees",
- "P" => "printers") as $key => $val){
-
- if (preg_match("/$key/", $this->gosaGroupObjects)){
- $ogfilter[$val]= "checked";
- } else {
- $ogfilter[$val]= "";
- }
- }
- session::set("ogfilter", $ogfilter);
-
- if(session::is_set('CurrentMainBase')){
- $this->base = session::get('CurrentMainBase');
- }
+ var $typeToClass = array(
+ "Y" => "gosaUserTemplate",
+ "U" => "gosaAccount",
+ "G" => "posixGroup",
+ "A" => "gosaApplication",
+ "D" => "gosaDepartment",
+ "S" => "goServer",
+ "W" => "gotoWorkstation",
+ "O" => "opsiClient",
+ "T" => "gotoTerminal",
+ "F" => "goFonHardware",
+ "P" => "gotoPrinter");
+
+ var $typeToImage = array(
+ "Y" => "plugins/users/images/select_template.png",
+ "U" => "plugins/users/images/select_user.png",
+ "G" => "plugins/groups/images/select_group.png",
+ "A" => "plugins/ogroups/images/application.png",
+ "D" => "plugins/departments/images/department.png",
+ "S" => "plugins/ogroups/images/server.png",
+ "W" => "plugins/ogroups/images/workstation.png",
+ "O" => "plugins/ogroups/images/winstation.png",
+ "T" => "plugins/ogroups/images/terminal.png",
+ "F" => "plugins/ogroups/images/phone.png",
+ "P" => "plugins/ogroups/images/printer.png",
+ "I" => "images/false.png");
+
+
+ /* Variables */
+ var $cn= "";
+ var $description= "";
+ var $base= "";
+ var $gosaGroupObjects= "";
+ var $objects= array();
+ var $objcache= array();
+ var $memberList= array();
+ var $member= array();
+ var $orig_dn= "";
+ var $orig_cn= "";
+ var $orig_base= "";
+ var $objectSelect= FALSE;
+ var $view_logged = FALSE;
+
+ var $copyMembers = TRUE;
+
+ var $baseSelector;
+
+ /* Already assigned Workstations. Will be hidden in selection.
+ */
+ var $used_workstations = array();
- /* Set base */
- if ($this->dn == "new"){
- $this->base = session::get('CurrentMainBase');
- } else {
- $this->base= preg_replace("/^[^,]+,".preg_quote(get_ou("ogroupRDN"), '/')."/","",$this->dn);
-
- /* Is this account a trustAccount? */
- if ($this->is_account && isset($this->attrs['trustModel'])){
- $this->trustModel= $this->attrs['trustModel'][0];
- $this->was_trust_account= TRUE;
- } else {
- $this->was_trust_account= FALSE;
- $this->trustModel= "";
- }
-
- $this->accessTo = array();
- if ($this->is_account && isset($this->attrs['accessTo'])){
- for ($i= 0; $i<$this->attrs['accessTo']['count']; $i++){
- $tmp= $this->attrs['accessTo'][$i];
- $this->accessTo[$tmp]= $tmp;
- }
- }
- }
+ /* attribute list for save action */
+ var $attributes= array("cn", "description", "gosaGroupObjects","member");
+ var $objectclasses= array("top", "gosaGroupOfNames");
- /* Detect all workstations, which are already assigned to an object group
- - Those objects will be hidden in the add object dialog.
- - Check() will complain if such a system is assigned to this object group.
- */
- $base = $this->config->current['BASE'];
- $res = get_list("(|(objectClass=gotoWorkstation)(objectClass=gotoTerminal))","none" ,
- $base, array("dn"),GL_NO_ACL_CHECK|GL_SUBSEARCH);
- $ws_dns = array();
- foreach($res as $data){
- $ws_dns[] = $data['dn'];
- }
- $res=get_list("(&(member=*)(objectClass=gosaGroupOfNames))","none",
- $base, array("dn","member", "gosaGroupObjects"),GL_NO_ACL_CHECK|GL_SUBSEARCH);
- $this->used_workstations = array();
- foreach($res as $og){
- if($og['dn'] == $this->dn) continue;
- $test = array_intersect($ws_dns,$og['member']);
- if(($og['gosaGroupObjects'] == "[W]" || $og['gosaGroupObjects'] == "[T]") && count($test)){
- $this->used_workstations = array_merge($this->used_workstations,$test);
- }
- }
+ function ogroup (&$config, $dn= NULL)
+ {
+ plugin::plugin ($config, $dn);
- $this->orig_cn = $this->cn;
- $this->orig_base = $this->base;
+ $this->trustModeDialog = new trustModeDialog($this->config, $this->dn,NULL);
+ $this->trustModeDialog->setAcl('ogroups/ogroup');
- /* Get global filter config */
- if (!session::is_set("sysfilter")){
- $ui= get_userinfo();
- $base= get_base_from_people($ui->dn);
- $sysfilter= array( "depselect" => $base,
- "regex" => "*");
- session::set("sysfilter", $sysfilter);
- }
+ $this->orig_dn= $dn;
+
+ $this->member = array();
- /* Load member data */
- $this->reload();
- }
-
- function AddDelMembership($NewMember = false){
-
- if($NewMember){
-
- /* Add member and force reload */
- $this->member[$NewMember]= $NewMember;
- $this->reload();
-
- $this->memberList[$NewMember]= $this->objcache[$NewMember];
- unset ($this->objects[$NewMember]);
- uasort ($this->memberList, 'sort_list');
- reset ($this->memberList);
- }else{
- /* Delete objects from group */
- if (isset($_POST['delete_membership']) && isset($_POST['members'])){
- foreach ($_POST['members'] as $value){
- $this->objects["$value"]= $this->memberList[$value];
- unset ($this->memberList["$value"]);
- unset ($this->member["$value"]);
- uasort ($this->objects, 'sort_list');
- reset ($this->objects);
+ /* Load member objects */
+ if (isset($this->attrs['member'])){
+ foreach ($this->attrs['member'] as $key => $value){
+ if ("$key" != "count"){
+ $value= @LDAP::convert($value);
+ $this->member["$value"]= "$value";
+ }
+ }
}
- $this->reload();
- }
+ $this->is_account= TRUE;
- /* Add objects to group */
- if (isset($_POST['add_object_finish']) && isset($_POST['objects'])){
+ /* Set base */
+ if ($this->dn == "new"){
+ $ui = get_userinfo();
+ $this->base= dn2base(session::global_is_set("CurrentMainBase")?"cn=dummy,".session::global_get("CurrentMainBase"):$ui->dn);
+ } else {
+ $this->base= preg_replace("/^[^,]+,".preg_quote(get_ou("group", "ogroupRDN"), '/')."/i","",$this->dn);
+ }
- $tmp = "";
- foreach($this->memberList as $obj){
- $tmp .= $obj['type'];
+ /* Detect all workstations, which are already assigned to an object group
+ - Those objects will be hidden in the add object dialog.
+ - Check() will complain if such a system is assigned to this object group.
+ */
+ $base = $this->config->current['BASE'];
+ $res = get_list("(|(objectClass=gotoWorkstation)(objectClass=gotoTerminal))","none" ,
+ $base, array("dn"),GL_NO_ACL_CHECK|GL_SUBSEARCH);
+ $ws_dns = array();
+ foreach($res as $data){
+ $ws_dns[] = $data['dn'];
}
- $skipped = FALSE;
- foreach ($_POST['objects'] as $value){
- if(preg_match("/T/",$tmp) && $this->objects[$value]['type'] == "W"){
- $skipped =TRUE;
- }elseif(preg_match("/W/",$tmp) && $this->objects[$value]['type'] == "T"){
- $skipped =TRUE;
- }else{
- $this->memberList["$value"]= $this->objects[$value];
- $this->member["$value"]= $value;
- unset ($this->objects[$value]);
- uasort ($this->memberList, 'sort_list');
- reset ($this->memberList);
- }
+ $res=get_list("(&(member=*)(objectClass=gosaGroupOfNames))","none",
+ $base, array("dn","member", "gosaGroupObjects"),GL_NO_ACL_CHECK|GL_SUBSEARCH);
+ $this->used_workstations = array();
+ foreach($res as $og){
+ if($og['dn'] == $this->dn) continue;
+ $test = array_intersect($ws_dns,LDAP::convert($og['member']));
+ if(($og['gosaGroupObjects'] == "[W]" || $og['gosaGroupObjects'] == "[T]") && count($test)){
+ $this->used_workstations = array_merge($this->used_workstations,$test);
+ }
}
- if($skipped){
- msg_dialog::display(_("Information"), _("You cannot combine terminals and workstations in one object group!"), INFO_DIALOG);
+
+ $this->orig_cn = $this->cn;
+ $this->orig_base = $this->base;
+
+ /* Get global filter config */
+ if (!session::is_set("sysfilter")){
+ $ui= get_userinfo();
+ $base= get_base_from_people($ui->dn);
+ $sysfilter= array( "depselect" => $base,
+ "regex" => "*");
+ session::set("sysfilter", $sysfilter);
}
- $this->reload();
- }
- }
- }
- function execute()
- {
- /* Call parent execute */
- plugin::execute();
+ /* Instanciate base selector */
+ $this->baseSelector= new baseSelector($this->get_allowed_bases(), $this->base);
+ $this->baseSelector->setSubmitButton(false);
+ $this->baseSelector->setHeight(300);
+ $this->baseSelector->update(true);
+
+ // Prepare lists
+ $this->memberListing = new sortableListing();
+ $this->memberListing->setDeleteable(true);
+ $this->memberListing->setInstantDelete(true);
+ $this->memberListing->setEditable(false);
+ $this->memberListing->setWidth("100%");
+ $this->memberListing->setHeight("300px");
+ $this->memberListing->setHeader(array("~",_("Name")));
+ $this->memberListing->setColspecs(array('20px','*','20px'));
+ $this->memberListing->setDefaultSortColumn(1);
- if(!$this->view_logged){
- $this->view_logged = TRUE;
- new log("view","ogroups/".get_class($this),$this->dn);
+ $this->reload();
}
+ function AddDelMembership($NewMember = false){
- /* Do we represent a valid group? */
- if (!$this->is_account){
- $display= "<img alt=\"\" src=\"images/small-error.png\" align=\"middle\"> <b>".
- msgPool::noValidExtension("object group")."</b>";
- return ($display);
- }
+ if($NewMember){
+ // Ensure that we definitely know the new members attributes.
+ // - Fetch unknown objects here.
+ if(!isset($this->memberList[$NewMember])){
- /* Load templating engine */
- $smarty= get_smarty();
+ $ldap = $this->config->get_ldap_link();
+ $ldap->cd($this->config->current['BASE']);
+ $ldap->cat($NewMember);
+ $attrs = $ldap->fetch();
+ $this->objcache[$NewMember] = $attrs;
+ }
- $tmp = $this->plInfo();
- foreach($tmp['plProvidedAcls'] as $name => $translation){
- $smarty->assign($name."ACL",$this->getacl($name));
- }
+ /* Add member and force reload */
+ $this->member[$NewMember]= $NewMember;
- /* Base select dialog */
- $once = true;
- foreach($_POST as $name => $value){
- if(preg_match("/^chooseBase/",$name) && $once && $this->acl_is_moveable()){
- $once = false;
- $this->dialog = new baseSelectDialog($this->config,$this,$this->get_allowed_bases());
- $this->dialog->setCurrentBase($this->base);
- }
- }
- /***********
- * Trusts
- ***********/
+ $this->memberList[$NewMember]= $this->objcache[$NewMember];
+ unset ($this->objects[$NewMember]);
+ reset ($this->memberList);
+ $this->reload();
+ }else{
- /* Add user workstation? */
- if (isset($_POST["add_ws"])){
- $this->show_ws_dialog= TRUE;
- $this->dialog= TRUE;
- }
+ // Act on list modifications
+ $this->memberListing->save_object();
+ $action = $this->memberListing->getAction();
+ if($action['action'] == 'delete'){
+ foreach($action['targets'] as $id){
+ $value = $this->memberListing->getKey($id);
+ $this->objects["$value"]= $this->memberList[$value];
+ unset ($this->memberList["$value"]);
+ unset ($this->member["$value"]);
+ }
+ $this->reload();
+ }
- /* Add user workstation? */
- if (isset($_POST["add_ws_finish"]) && isset($_POST['wslist'])){
- foreach($_POST['wslist'] as $ws){
- $this->accessTo[$ws]= $ws;
- }
- ksort($this->accessTo);
- $this->is_modified= TRUE;
- }
- /* Remove user workstations? */
- if (isset($_POST["delete_ws"]) && isset($_POST['workstation_list'])){
- foreach($_POST['workstation_list'] as $name){
- unset ($this->accessTo[$name]);
- }
- $this->is_modified= TRUE;
+ /* Add objects to group */
+ if (isset($_POST['objectSelect_save']) && $this->objectSelect instanceOf objectSelect){
+ $objects = $this->objectSelect->save();
+ $skipped = FALSE;
+ foreach($objects as $object){
+ $dn = $object['dn'];
+
+ // Do not add existing members twice!
+ if(isset($this->member["$dn"])){
+ continue;
+ }
+
+ $tmp = "";
+ foreach($this->memberList as $obj){
+ $tmp .= $obj['type'];
+ }
+
+ $type = $this->getObjectType($object);
+ $name= $this->getObjectName($object);
+
+ /* Fill array */
+ if (isset($object["description"][0])){
+ $object= array("text" => "$name [".$object["description"][0]."]", "type" => "$type");
+ } elseif (isset($object["uid"][0])) {
+ $object= array("text" => "$name [".$object["uid"][0]."]", "type" => "$type");
+ } else {
+ $object= array("text" => "$name", "type" => "$type");
+ }
+
+ if(preg_match("/T/",$tmp) && $type == "W"){
+ $skipped =TRUE;
+ }elseif(preg_match("/W/",$tmp) && $type == "T"){
+ $skipped =TRUE;
+ }else{
+
+ $this->memberList["$dn"]= $object;
+ $this->member["$dn"]= $dn;
+ reset ($this->memberList);
+ }
+ }
+ if($skipped){
+ msg_dialog::display(_("Information"), _("You cannot combine terminals and workstations in one object group!"), INFO_DIALOG);
+ }
+ $this->objectSelect= FALSE;
+ $this->dialog= FALSE;
+ $this->reload();
+ }
+ }
}
- /* Add user workstation finished? */
- if (isset($_POST["add_ws_finish"]) || isset($_POST["add_ws_cancel"])){
- $this->show_ws_dialog= FALSE;
- $this->dialog= FALSE;
- }
+ function execute()
+ {
+ /* Call parent execute */
+ plugin::execute();
- /* Show ws dialog */
- if ($this->show_ws_dialog){
- /* Save data */
- $sysfilter= session::get("sysfilter");
- foreach( array("depselect", "regex") as $type){
- if (isset($_POST[$type])){
- $sysfilter[$type]= $_POST[$type];
+ if(!$this->view_logged){
+ $this->view_logged = TRUE;
+ new log("view","ogroups/".get_class($this),$this->dn);
}
- }
- if (isset($_GET['search'])){
- $s= mb_substr($_GET['search'], 0, 1, "UTF8")."*";
- if ($s == "**"){
- $s= "*";
+
+
+ /* Do we represent a valid group? */
+ if (!$this->is_account){
+ $display= "<img alt=\"\" src=\"images/small-error.png\" align=\"middle\"> <b>".
+ msgPool::noValidExtension("object group")."</b>";
+ return ($display);
}
- $sysfilter['regex']= $s;
- }
- session::set("sysfilter", $sysfilter);
-
- /* Get workstation list */
- $exclude= "";
- foreach($this->accessTo as $ws){
- $exclude.= "(cn=$ws)";
- }
- if ($exclude != ""){
- $exclude= "(!(|$exclude))";
- }
- $regex= $sysfilter['regex'];
- $filter= "(&(|(objectClass=goServer)(objectClass=gotoWorkstation)(objectClass=gotoTerminal))$exclude(cn=*)(cn=$regex))";
-
- $deps_a = array(get_ou("serverRDN"),
- get_ou("terminalRDN"),
- get_ou("workstationRDN"));
- $res= get_sub_list($filter, array("terminal","server","workstation"), $deps_a, get_ou("systemRDN").$sysfilter['depselect'],
- array("cn"), GL_SUBSEARCH | GL_SIZELIMIT);
- $wslist= array();
- foreach ($res as $attrs){
- $wslist[]= preg_replace('/\$/', '', $attrs['cn'][0]);
- }
- asort($wslist);
- $smarty->assign("search_image", get_template_path('images/lists/search.png'));
- $smarty->assign("launchimage", get_template_path('images/lists/action.png'));
- $smarty->assign("tree_image", get_template_path('images/lists/search-subtree.png'));
- $smarty->assign("deplist", $this->config->idepartments);
- $smarty->assign("alphabet", generate_alphabet());
- foreach( array("depselect", "regex") as $type){
- $smarty->assign("$type", $sysfilter[$type]);
- }
- $smarty->assign("hint", print_sizelimit_warning());
- $smarty->assign("wslist", $wslist);
- $smarty->assign("apply", apply_filter());
- $display= $smarty->fetch (get_template_path('trust_machines.tpl', TRUE, dirname(__FILE__)));
- return ($display);
- }
- /***********
- * Ende - Trusts
- ***********/
+
+ /* Load templating engine */
+ $smarty= get_smarty();
- /* Dialog handling */
- if(is_object($this->dialog) && $this->acl_is_moveable()){
- /* Must be called before save_object */
- $this->dialog->save_object();
+ $tmp = $this->plInfo();
+ foreach($tmp['plProvidedAcls'] as $name => $translation){
+ $smarty->assign($name."ACL",$this->getacl($name));
+ }
- if($this->dialog->isClosed()){
- $this->dialog = false;
- }elseif($this->dialog->isSelected()){
+ /***********
+ * Trusts
+ ***********/
- /* A new base was selected, check if it is a valid one */
- $tmp = $this->get_allowed_bases();
- if(isset($tmp[$this->dialog->isSelected()])){
- $this->base = $this->dialog->isSelected();
+ // Handle trust mode dialog
+ $this->dialog = FALSE;
+ $trustModeDialog = $this->trustModeDialog->execute();
+ if($this->trustModeDialog->trustSelect){
+ $this->dialog = TRUE;
+ return($trustModeDialog);
}
- $this->dialog= false;
- }else{
- return($this->dialog->execute());
- }
- }
+ $smarty->assign("trustModeDialog",$trustModeDialog);
- /* Add objects? */
- if (isset($_POST["edit_membership"])){
- $this->group_dialog= TRUE;
- $this->dialog= TRUE;
- }
+ /***********
+ * Ende - Trusts
+ ***********/
- /* Add objects finished? */
- if (isset($_POST["add_object_finish"]) || isset($_POST["add_object_cancel"])){
- $this->group_dialog= FALSE;
- $this->dialog= FALSE;
- }
- /* Manage object add dialog */
- if ($this->group_dialog){
+ /* Add objects? */
+ if (isset($_POST["edit_membership"])){
+ $this->objectSelect= new objectSelect($this->config, get_userinfo());
+ }
- /* Save data */
- $ogfilter= session::get("ogfilter");
- foreach( array("dselect", "regex") as $type){
- if (isset($_POST[$type])){
- $ogfilter[$type]= $_POST[$type];
+ /* Add objects finished? */
+ if (isset($_POST["objectSelect_cancel"])){
+ $this->objectSelect= FALSE;
}
- }
- if (isset($_POST['dselect'])){
- foreach( array("accounts", "groups", "applications", "departments",
- "servers", "workstations", "winstations", "terminals", "printers","subtrees",
- "phones") as $type){
-
- if (isset($_POST[$type])) {
- $ogfilter[$type]= "checked";
- } else {
- $ogfilter[$type]= "";
- }
+
+ /* Manage object add dialog */
+ if ($this->objectSelect){
+ session::set('filterBlacklist', array('dn'=> $this->member));
+ $this->dialog= TRUE;
+ return($this->objectSelect->execute());
}
- }
- if (isset($_GET['search'])){
- $s= mb_substr($_GET['search'], 0, 1, "UTF8")."*";
- if ($s == "**"){
- $s= "*";
+
+ /* Assemble combine string */
+ if ($this->gosaGroupObjects == "[]"){
+ $smarty->assign("combinedObjects", _("none"));
+ } elseif (strlen($this->gosaGroupObjects) > 4){
+ $smarty->assign("combinedObjects", "<font color=red>"._("too many different objects!")."</font>");
+ } else {
+ $conv= array( "U" => _("users"),
+ "G" => _("groups"),
+ "A" => _("applications"),
+ "D" => _("departments"),
+ "S" => _("servers"),
+ "W" => _("workstations"),
+ "O" => _("Windows workstations"),
+ "T" => _("terminals"),
+ "F" => _("phones"),
+ "P" => _("printers"));
+
+ $type= preg_replace('/[\[\]]/', '', $this->gosaGroupObjects);
+ $p1= $conv[$type[0]];
+ error_reporting(0);
+ if (isset($type[1]) && preg_match('/[UGADSFOWTP]/', $type[1])){
+ $p2= $conv[$type[1]];
+ $smarty->assign("combinedObjects", sprintf("'%s' and '%s'", $p1, $p2));
+ } else {
+ $smarty->assign("combinedObjects", "$p1");
+ }
+ error_reporting(E_ALL | E_STRICT);
}
- $ogfilter['regex']= $s;
- }
- session::set("ogfilter", $ogfilter);
- $this->reload();
-
- /* Calculate actual groups / remove entries that are already inside... */
- $strippedObjects= array();
- foreach ($this->objects as $key => $value){
- if (!isset($this->member[$key])){
- $strippedObjects[$key]= $value;
+
+ /* Assign variables */
+ $smarty->assign("base", $this->baseSelector->render());
+
+
+
+ $this->memberListing->setAcl($this->getacl("member"));
+ $data = $lData = array();
+ foreach($this->member as $key => $dn){
+ $image = 'images/lists/element.png';
+ $name = $dn;
+ if(isset($this->memberList[$dn])){
+ $name = $this->memberList[$dn]['text'];
+ if(isset($this->typeToImage[$this->memberList[$dn]['type']])){
+ $image = $this->typeToImage[$this->memberList[$dn]['type']];
+ }
+ }
+ $data[$key] = $dn;
+ $lData[$key] = array('data'=> array(image($image),$name));
+ }
+ $this->memberListing->setListData($data,$lData);
+ $this->memberListing->update();
+ $smarty->assign("memberList",$this->memberListing->render());
+
+ /* Fields */
+ foreach ($this->attributes as $val){
+ $smarty->assign("$val", set_post($this->$val));
}
- }
- $smarty->assign("objects", $this->convert_list($strippedObjects));
-
- /* Show dialog */
- $smarty->assign("search_image", get_template_path('images/lists/search.png'));
- $smarty->assign("launchimage", get_template_path('images/lists/action.png'));
- $smarty->assign("tree_image", get_template_path('images/lists/search-subtree.png'));
- $smarty->assign("deplist", $this->config->idepartments);
- $smarty->assign("alphabet", generate_alphabet());
- foreach( array("dselect", "regex", "subtrees") as $type){
- $smarty->assign("$type", $ogfilter[$type]);
- }
- $smarty->assign("hint", print_sizelimit_warning());
- $smarty->assign("apply", apply_filter());
-
- /* Build up checkboxes
- */
- $ar = array(
- "departments" => array(
- "T" => msgPool::selectToView(_("departments")),
- "C" => (isset($ogfilter['departments']) && ($ogfilter['departments'])),
- "L" => sprintf(_("Show %s"),_("departments"))),
- "accounts" => array(
- "T" => msgPool::selectToView(_("people")),
- "C" => (isset($ogfilter['accounts']) && ($ogfilter['accounts'])),
- "L" => sprintf(_("Show %s"),_("people"))),
- "groups"=> array(
- "T" => msgPool::selectToView(_("groups")),
- "C" => (isset($ogfilter['groups']) && ($ogfilter['groups'])),
- "L" => sprintf(_("Show %s"),_("groups"))),
- "servers"=> array(
- "T" => msgPool::selectToView(_("servers")),
- "C" => (isset($ogfilter['servers']) && ($ogfilter['servers'])),
- "L" => sprintf(_("Show %s"),_("servers"))),
- "workstations"=> array(
- "T" => msgPool::selectToView(_("workstations")),
- "C" => (isset($ogfilter['workstations']) && ($ogfilter['workstations'])),
- "L" => sprintf(_("Show %s"),_("workstations"))),
- "terminals"=> array(
- "T" => msgPool::selectToView(_("terminals")),
- "C" => (isset($ogfilter['terminals']) && ($ogfilter['terminals'])),
- "L" => sprintf(_("Show %s"),_("terminals"))),
- "printers"=> array(
- "T" => msgPool::selectToView(_("printer")),
- "C" => (isset($ogfilter['printers']) && ($ogfilter['printers'])),
- "L" => sprintf(_("Show %s"),_("printers"))),
- "phones"=> array(
- "T" => msgPool::selectToView(_("phones")),
- "C" => (isset($ogfilter['phones']) && ($ogfilter['phones'])),
- "L" => sprintf(_("Show %s"),_("phones"))));
-
- /* Allow selecting applications if we are having a non
- release managed application storage */
- if(!$this->IsReleaseManagementActivated()){
- $ar["applications"] = array(
- "T" => msgPool::selectToView(_("applications")),
- "C" => (isset($ogfilter['applications']) && ($ogfilter['applications'])),
- "L" => sprintf(_("Show %s"),_("applications")));
- }
-
- $smarty->assign("checkboxes",$ar);
- $display= $smarty->fetch (get_template_path('ogroup_objects.tpl', TRUE, dirname(__FILE__)));
- return ($display);
+
+ return ($smarty->fetch (get_template_path('generic.tpl', TRUE)));
}
- /* Bases / Departments */
- if ((isset($_POST['base'])) && ($this->acl_is_moveable())){
- $this->base= $_POST['base'];
- }
-
- /* Assemble combine string */
- if ($this->gosaGroupObjects == "[]"){
- $smarty->assign("combinedObjects", _("none"));
- } elseif (strlen($this->gosaGroupObjects) > 4){
- $smarty->assign("combinedObjects", "<font color=red>"._("too many different objects!")."</font>");
- } else {
- $conv= array( "U" => _("users"),
- "G" => _("groups"),
- "A" => _("applications"),
- "D" => _("departments"),
- "S" => _("servers"),
- "W" => _("workstations"),
- "O" => _("winstations"),
- "T" => _("terminals"),
- "F" => _("phones"),
- "P" => _("printers"));
-
- $type= preg_replace('/[\[\]]/', '', $this->gosaGroupObjects);
- $p1= $conv[$type[0]];
- error_reporting(0);
- if (isset($type[1]) && preg_match('/[UGADSFOWTP]/', $type[1])){
- $p2= $conv[$type[1]];
- $smarty->assign("combinedObjects", sprintf("'%s' and '%s'", $p1, $p2));
- } else {
- $smarty->assign("combinedObjects", "$p1");
- }
- error_reporting(E_ALL | E_STRICT);
+
+ function set_acl_base($base)
+ {
+ plugin::set_acl_base($base);
+ $this->trustModeDialog->set_acl_base($base);
}
- /* Assign variables */
- $smarty->assign("bases", $this->get_allowed_bases());
- $smarty->assign("base_select", $this->base);
- $smarty->assign("department", $this->department);
- $smarty->assign("members", $this->convert_list($this->memberList));
- /* Objects have to be tuned... */
- $smarty->assign("objects", $this->convert_list($this->objects));
+ /* Save data to object */
+ function save_object()
+ {
+ /* Save additional values for possible next step */
+ if (isset($_POST['ogroupedit'])){
- /* Fields */
- foreach ($this->attributes as $val){
- $smarty->assign("$val", $this->$val);
- }
+ $this->trustModeDialog->save_object();
- /******
- Trust account
- ******/
- $smarty->assign("trusthide", " disabled ");
- $smarty->assign("trustmodeACL", $this->getacl("trustModel"));
- if ($this->trustModel == "fullaccess"){
- $trustmode= 1;
- // pervent double disable tag in html code, this will disturb our clean w3c html
- $smarty->assign("trustmode", $this->getacl("trustModel"));
-
- } elseif ($this->trustModel == "byhost"){
- $trustmode= 2;
- $smarty->assign("trusthide", "");
- } else {
- // pervent double disable tag in html code, this will disturb our clean w3c html
- $smarty->assign("trustmode", $this->getacl("trustModel"));
- $trustmode= 0;
- }
- $smarty->assign("trustmode", $trustmode);
- $smarty->assign("trustmodes", array( 0 => _("disabled"), 1 => _("full access"),
- 2 => _("allow access to these hosts")));
+ /* Create a base backup and reset the
+ base directly after calling plugin::save_object();
+ Base will be set seperatly a few lines below */
+ $base_tmp = $this->base;
+ plugin::save_object();
+ $this->base = $base_tmp;
- $smarty->assign("workstations", $this->accessTo);
+ /* Refresh base */
+ if ($this->acl_is_moveable($this->base)){
+ if (!$this->baseSelector->update()) {
+ msg_dialog::display(_("Error"), msgPool::permMove(), ERROR_DIALOG);
+ }
+ if ($this->base != $this->baseSelector->getBase()) {
+ $this->base= $this->baseSelector->getBase();
+ $this->is_modified= TRUE;
+ }
+ }
- if((count($this->accessTo))==0){
- $smarty->assign("emptyArrAccess",true);
- }else{
- $smarty->assign("emptyArrAccess",false);
- }
- /******
- Ende - Trust account
- ******/
-
- return ($smarty->fetch (get_template_path('generic.tpl', TRUE)));
- }
-
-
- /* Save data to object */
- function save_object()
- {
- /* Save additional values for possible next step */
- if (isset($_POST['ogroupedit'])){
-
- /******
- Trust account
- ******/
-
- if($this->acl_is_writeable("trustModel")){
- if (isset($_POST['trustmode'])){
- $saved= $this->trustModel;
- if ($_POST['trustmode'] == "1"){
- $this->trustModel= "fullaccess";
- } elseif ($_POST['trustmode'] == "2"){
- $this->trustModel= "byhost";
- } else {
- $this->trustModel= "";
- }
- if ($this->trustModel != $saved){
- $this->is_modified= TRUE;
- }
}
- }
- /******
- Ende Trust account
- ******/
-
- /* Create a base backup and reset the
- base directly after calling plugin::save_object();
- Base will be set seperatly a few lines below */
- $base_tmp = $this->base;
- plugin::save_object();
- $this->base = $base_tmp;
-
- /* Save base, since this is no LDAP attribute */
- $tmp = $this->get_allowed_bases();
- if(isset($_POST['base'])){
- if(isset($tmp[$_POST['base']])){
- $this->base= $_POST['base'];
- }
- }
- }
- }
-
-
- /* (Re-)Load objects */
- function reload()
- {
- /*###########
- Variable initialisation
- ###########*/
-
- $this->objects = array();
- $this->ui = get_userinfo();
- $filter = "";
- $objectClasses = array();
-
- $ogfilter = session::get("ogfilter");
- $regex = $ogfilter['regex'];
-
- $ldap= $this->config->get_ldap_link();
- $ldap->cd ($ogfilter['dselect']);
-
-
- /*###########
- Generate Filter
- ###########*/
-
- $p_f= array("accounts"=> array("OBJ"=>"user", "CLASS"=>"gosaAccount" ,
- "DN"=> get_people_ou() ,"ACL" => "users"),
- "groups" => array("OBJ"=>"group", "CLASS"=>"posixGroup" ,
- "DN"=> get_groups_ou('ogroupRDN') ,"ACL" => "groups"),
- "departments" => array("OBJ"=>"department", "CLASS"=>"gosaDepartment" ,
- "DN"=> "" ,"ACL" => "department"),
- "servers" => array("OBJ"=>"servgeneric", "CLASS"=>"goServer" ,
- "DN"=> get_ou('serverRDN') ,"ACL" => "server"),
- "workstations" => array("OBJ"=>"workgeneric", "CLASS"=>"gotoWorkstation",
- "DN"=> get_ou('workstationRDN') ,"ACL" => "workstation"),
- "winstations" => array("OBJ"=>"wingeneric", "CLASS"=>"opsiClient",
- "DN"=> get_ou('SAMBAMACHINEACCOUNTRDN') ,"ACL" => "winstation"),
- "terminals" => array("OBJ"=>"termgeneric", "CLASS"=>"gotoTerminal" ,
- "DN"=> get_ou('terminalRDN') ,"ACL" => "terminal"),
- "printers" => array("OBJ"=>"printgeneric", "CLASS"=>"gotoPrinter" ,
- "DN"=> get_ou('printerRDN') ,"ACL" => "printer"),
- "phones" => array("OBJ"=>"phoneGeneric", "CLASS"=>"goFonHardware" ,
- "DN"=> get_ou('phoneRDN') ,"ACL" => "phone"));
-
-
- /* Allow searching for applications, if we are not using release managed applications
- */
- if(!$this->IsReleaseManagementActivated()){
- $p_f[ "applications"] = array("OBJ"=>"application", "CLASS"=>"gosaApplication",
- "DN"=> get_ou('applicationRDN') ,"ACL" => "application");
}
-
- /*###########
- Perform search for selected objectClasses & regex to fill list with objects
- ###########*/
- $Get_list_flags = 0;
- if($ogfilter['subtrees'] == "checked"){
- $Get_list_flags |= GL_SUBSEARCH;
- }
- foreach($p_f as $post_name => $data){
-
- if($ogfilter[$post_name] == "checked" && class_available($data['OBJ'])){
-
- if($ogfilter['subtrees']){
- $base = $ogfilter['dselect'];
- }else{
- $base = $data['DN'].$ogfilter['dselect'];
+ /* (Re-)Load objects */
+ function reload()
+ {
+ /*###########
+ Variable initialisation
+###########*/
+
+ $this->objects = array();
+ $this->ui = get_userinfo();
+ $filter = "";
+ $objectClasses = array();
+
+ $ogfilter = session::get("ogfilter");
+ $regex = $ogfilter['regex'];
+
+ $ldap= $this->config->get_ldap_link();
+ $ldap->cd ($ogfilter['dselect']);
+
+
+ /*###########
+ Generate Filter
+###########*/
+
+ $p_f= array("accounts"=> array("OBJ"=>"user", "CLASS"=>"gosaAccount" ,
+ "DN"=> get_people_ou() ,"ACL" => "users"),
+ "groups" => array("OBJ"=>"group", "CLASS"=>"posixGroup" ,
+ "DN"=> get_groups_ou('ogroupRDN') ,"ACL" => "groups"),
+ "departments" => array("OBJ"=>"department", "CLASS"=>"gosaDepartment" ,
+ "DN"=> "" ,"ACL" => "department"),
+ "servers" => array("OBJ"=>"servgeneric", "CLASS"=>"goServer" ,
+ "DN"=> get_ou("servgeneric", "serverRDN") ,"ACL" => "server"),
+ "workstations" => array("OBJ"=>"workgeneric", "CLASS"=>"gotoWorkstation",
+ "DN"=> get_ou("workgeneric", "workstationRDN") ,"ACL" => "workstation"),
+ "winstations" => array("OBJ"=>"wingeneric", "CLASS"=>"opsiClient",
+ "DN"=> get_ou("wingeneric", 'sambaMachineAccountRDN') ,"ACL" => "winstation"),
+ "terminals" => array("OBJ"=>"termgeneric", "CLASS"=>"gotoTerminal" ,
+ "DN"=> get_ou("termgeneric", "terminalRDN") ,"ACL" => "terminal"),
+ "printers" => array("OBJ"=>"printgeneric", "CLASS"=>"gotoPrinter" ,
+ "DN"=> get_ou("printgeneric", "printerRDN") ,"ACL" => "printer"),
+ "phones" => array("OBJ"=>"phoneGeneric", "CLASS"=>"goFonHardware" ,
+ "DN"=> get_ou("phoneGeneric", "phoneRDN") ,"ACL" => "phone"));
+
+
+ /* Allow searching for applications, if we are not using release managed applications
+ */
+ if(!$this->IsReleaseManagementActivated()){
+ $p_f[ "applications"] = array("OBJ"=>"application", "CLASS"=>"gosaApplication",
+ "DN"=> get_ou("application", "applicationRDN") ,"ACL" => "application");
}
-
-
- $filter = "(&(objectClass=".$data['CLASS'].")(|(uid=$regex)(cn=$regex)(ou=$regex)))";
- $res = get_list($filter, $data['ACL'] , $base,
- array("description", "objectClass", "sn", "givenName", "uid","ou","cn"),$Get_list_flags);
-
- /* fetch results and append them to the list */
- foreach($res as $attrs){
-
- /* Skip workstations which are already assigned to an object group.
- */
- if ($this->gosaGroupObjects == "[W]" || $this->gosaGroupObjects == "[T]"){
- if(in_array($attrs['dn'],$this->used_workstations)){
- continue;
+
+ /*###########
+ Perform search for selected objectClasses & regex to fill list with objects
+###########*/
+
+ $Get_list_flags = 0;
+ if($ogfilter['subtrees'] == "checked"){
+ $Get_list_flags |= GL_SUBSEARCH;
+ }
+
+ foreach($p_f as $post_name => $data){
+
+ if($ogfilter[$post_name] == "checked" && class_available($data['OBJ'])){
+
+ if($ogfilter['subtrees']){
+ $base = $ogfilter['dselect'];
+ }else{
+ $base = $data['DN'].$ogfilter['dselect'];
+ }
+
+
+ $filter = "(&(objectClass=".$data['CLASS'].")(|(uid=$regex)(cn=$regex)(ou=$regex)))";
+ $res = get_list($filter, $data['ACL'] , $base,
+ array("description", "objectClass", "sn", "givenName", "uid","ou","cn"),$Get_list_flags);
+
+ /* fetch results and append them to the list */
+ foreach($res as $attrs){
+
+ /* Skip workstations which are already assigned to an object group.
+ */
+ if ($this->gosaGroupObjects == "[W]" || $this->gosaGroupObjects == "[T]"){
+ if(in_array_strict($attrs['dn'],$this->used_workstations)){
+ continue;
+ }
+ }
+
+ $type= $this->getObjectType($attrs);
+ $name= $this->getObjectName($attrs);
+
+ /* Fill array */
+ if (isset($attrs["description"][0])){
+ $this->objects[$attrs["dn"]]= array("text" => "$name [".$attrs["description"][0]."]", "type" => "$type");
+ } elseif (isset($attrs["uid"][0])) {
+ $this->objects[$attrs["dn"]]= array("text" => "$name [".$attrs["uid"][0]."]", "type" => "$type");
+ } else {
+ $this->objects[$attrs["dn"]]= array("text" => "$name", "type" => "$type");
+ }
+ }
}
- }
-
- $type= $this->getObjectType($attrs);
- $name= $this->getObjectName($attrs);
-
- /* Fill array */
- if (isset($attrs["description"][0])){
- $this->objects[$attrs["dn"]]= array("text" => "$name [".$attrs["description"][0]."]", "type" => "$type");
- } elseif (isset($attrs["uid"][0])) {
- $this->objects[$attrs["dn"]]= array("text" => "$name [".$attrs["uid"][0]."]", "type" => "$type");
- } else {
- $this->objects[$attrs["dn"]]= array("text" => "$name", "type" => "$type");
- }
}
- }
- }
- uasort ($this->objects, 'sort_list');
- reset ($this->objects);
+ reset ($this->objects);
-
- /*###########
- Build member list and try to detect obsolete entries
- ###########*/
- $this->memberList = array();
-
- /* Walk through all single member entry */
- foreach($this->member as $dn){
+ /*###########
+ Build member list and try to detect obsolete entries
+###########*/
- /* The dn for the current member can't be resolved
- it seams that this entry was removed
- */
- /* Try to resolv the entry again, if it still fails, display error msg */
- $ldap->cat($dn, array("cn", "sn", "givenName", "ou", "description", "objectClass", "macAddress"));
+ $this->memberList = array();
- /* It has failed, add entry with type flag I (Invalid)*/
- if (!$ldap->success()){
- $this->memberList[$dn]= array('text' => _("Non existing dn:")." ".LDAP::fix($dn),"type" => "I");
+ /* Walk through all single member entry */
+ foreach($this->member as $dn){
- } else {
+ /* The dn for the current member can't be resolved
+ it seams that this entry was removed
+ */
+ /* Try to resolv the entry again, if it still fails, display error msg */
+ $ldap->cat($dn, array("cn", "sn", "givenName", "ou", "description", "objectClass", "macAddress"));
- /* Append this entry to our all object list */
+ /* It has failed, add entry with type flag I (Invalid)*/
+ if (!$ldap->success()){
+ $this->memberList[$dn]= array('text' => _("Non existing DN:")." ".LDAP::fix($dn),"type" => "I");
- /* Fetch object */
- $attrs= $ldap->fetch();
+ } else {
- $type= $this->getObjectType($attrs);
- $name= $this->getObjectName($attrs);
+ /* Append this entry to our all object list */
- if (isset($attrs["description"][0])){
- $this->objcache[$attrs["dn"]]= array("text" => "$name [".$attrs["description"][0]."]", "type" => "$type");
- } elseif (isset($attrs["uid"][0])) {
- $this->objcache[$attrs["dn"]]= array("text" => "$name [".$attrs["uid"][0]."]", "type" => "$type");
- } else {
- $this->objcache[$attrs["dn"]]= array("text" => "$name", "type" => "$type");
+ /* Fetch object */
+ $attrs= $ldap->fetch();
+
+ $type= $this->getObjectType($attrs);
+ $name= $this->getObjectName($attrs);
+
+ if (isset($attrs["description"][0])){
+ $this->objcache[$attrs["dn"]]= array("text" => "$name [".$attrs["description"][0]."]", "type" => "$type");
+ } elseif (isset($attrs["uid"][0])) {
+ $this->objcache[$attrs["dn"]]= array("text" => "$name [".$attrs["uid"][0]."]", "type" => "$type");
+ } else {
+ $this->objcache[$attrs["dn"]]= array("text" => "$name", "type" => "$type");
+ }
+ $this->objcache[$attrs["dn"]]['objectClass'] = $attrs['objectClass'];
+
+ if(isset($attrs['macAddress'][0])){
+ $this->objcache[$attrs["dn"]]['macAddress'] = $attrs['macAddress'][0];
+ }else{
+ $this->objcache[$attrs["dn"]]['macAddress'] = "";
+ }
+
+ if(isset($attrs['uid'])){
+ $this->objcache[$attrs["dn"]]['uid'] = $attrs['uid'];
+ }
+
+ /* Fill array */
+ if (isset($attrs["description"][0])){
+ $this->objects[$attrs["dn"]]= array("text" => "$name [".$attrs["description"][0]."]", "type" => "$type");
+ } else {
+ $this->objects[$attrs["dn"]]= array("text" => "$name", "type" => "$type");
+ }
+
+ $this->memberList[$dn]= $this->objects[$attrs["dn"]];
+ }
}
- $this->objcache[$attrs["dn"]]['objectClass'] = $attrs['objectClass'];
+ reset ($this->memberList);
- if(isset($attrs['macAddress'][0])){
- $this->objcache[$attrs["dn"]]['macAddress'] = $attrs['macAddress'][0];
- }else{
- $this->objcache[$attrs["dn"]]['macAddress'] = "";
+ /* Assemble types of currently combined objects */
+ $objectTypes= "";
+ foreach ($this->memberList as $dn => $desc){
+
+ /* Invalid object? */
+ if ($desc['type'] == 'I'){
+ continue;
+ }
+
+ /* Fine. Add to list. */
+ if (!preg_match('/'.$desc['type'].'/', $objectTypes)){
+ $objectTypes.= $desc['type'];
+ }
}
+ $this->gosaGroupObjects= "[$objectTypes]";
+ }
+
- if(isset($attrs['uid'])){
- $this->objcache[$attrs["dn"]]['uid'] = $attrs['uid'];
+ function getObjectType($attrs)
+ {
+ $type= "I";
+
+ foreach($this->typeToClass as $index => $class){
+ if (in_array_strict($class, $attrs['objectClass'])){
+ $type= $index;
+ break;
+ }
}
+ return ($type);
+ }
+
- /* Fill array */
- if (isset($attrs["description"][0])){
- $this->objects[$attrs["dn"]]= array("text" => "$name [".$attrs["description"][0]."]", "type" => "$type");
+ function getObjectName($attrs)
+ {
+ /* Person? */
+ $name ="";
+ if (in_array_strict('gosaAccount', $attrs['objectClass'])){
+ if(isset($attrs['sn']) && isset($attrs['givenName'])){
+ $name= $attrs['sn'][0].", ".$attrs['givenName'][0];
+ } else {
+ $name= $attrs['uid'][0];
+ }
} else {
- $this->objects[$attrs["dn"]]= array("text" => "$name", "type" => "$type");
+ if(isset($attrs["cn"][0])) {
+ $name= $attrs['cn'][0];
+ } else {
+ $name= $attrs['ou'][0];
+ }
}
- $this->memberList[$dn]= $this->objects[$attrs["dn"]];
- }
- }
- uasort ($this->memberList, 'sort_list');
- reset ($this->memberList);
-
- /* Assemble types of currently combined objects */
- $objectTypes= "";
- foreach ($this->memberList as $dn => $desc){
-
- /* Invalid object? */
- if ($desc['type'] == 'I'){
- continue;
- }
-
- /* Fine. Add to list. */
- if (!preg_match('/'.$desc['type'].'/', $objectTypes)){
- $objectTypes.= $desc['type'];
- }
- }
- $this->gosaGroupObjects= "[$objectTypes]";
- }
-
-
- function convert_list($input)
- {
- $temp= "";
- $conv= array(
- "U" => "plugins/generic/images/head.png",
- "G" => "plugins/groups/images/groups.png",
- "A" => "plugins/ogroups/images/application.png",
- "D" => "plugins/departments/images/department.png",
- "S" => "plugins/ogroups/images/server.png",
- "W" => "plugins/ogroups/images/workstation.png",
- "O" => "plugins/ogroups/images/winstation.png",
- "T" => "plugins/ogroups/images/terminal.png",
- "F" => "plugins/ogroups/images/phone.png",
- "P" => "plugins/ogroups/images/printer.png",
- "I" => "images/false.png");
-
- foreach ($input as $key => $value){
- /* Generate output */
- $temp.= "<option title='".addslashes( $key)."' value=\"$key\" class=\"select\" style=\"background-image:url('".get_template_path($conv[$value['type']])."');\">".$value['text']."</option>\n";
+ return ($name);
}
- return ($temp);
- }
-
-
- function getObjectType($attrs)
- {
- $type= "I";
-
- foreach(array( "U" => "gosaAccount",
- "G" => "posixGroup",
- "A" => "gosaApplication",
- "D" => "gosaDepartment",
- "S" => "goServer",
- "W" => "gotoWorkstation",
- "O" => "opsiClient",
- "T" => "gotoTerminal",
- "F" => "goFonHardware",
- "P" => "gotoPrinter") as $index => $class){
- if (in_array($class, $attrs['objectClass'])){
- $type= $index;
- break;
- }
- }
- return ($type);
- }
-
-
- function getObjectName($attrs)
- {
- /* Person? */
- $name ="";
- if (in_array('gosaAccount', $attrs['objectClass'])){
- if(isset($attrs['sn']) && isset($attrs['givenName'])){
- $name= $attrs['sn'][0].", ".$attrs['givenName'][0];
- } else {
- $name= $attrs['uid'][0];
- }
- } else {
- if(isset($attrs["cn"][0])) {
- $name= $attrs['cn'][0];
- } else {
- $name= $attrs['ou'][0];
- }
- }
+ function check()
+ {
+ /* Call common method to give check the hook */
+ $message= plugin::check();
+
+ /* Permissions for that base? */
+ if ($this->base != ""){
+ $new_dn= 'cn='.$this->cn.','.get_ou("group", "ogroupRDN").$this->base;
+ } else {
+ $new_dn= $this->dn;
+ }
- return ($name);
- }
+ /* Check if we have workstations assigned, that are already assigned to
+ another object group. */
+ if ($this->gosaGroupObjects == "[W]" || $this->gosaGroupObjects == "[T]" ) {
+ $test =array_intersect($this->used_workstations,$this->member);
+ if(count($test)){
+ $str = "";
+ foreach($test as $dn){
+ $str .= "<li>".$dn."</li>";
+ }
+ $message[] = sprintf(_("These systems are already configured by other object groups and cannot be added:")."<br><ul>%s</ul>",$str);
+ }
+ }
+ $ldap = $this->config->get_ldap_link();
+ if(LDAP::fix($this->dn) != LDAP::fix($new_dn)){
+ $ldap->cat ($new_dn, array('dn'));
+ }
- function check()
- {
- /* Call common method to give check the hook */
- $message= plugin::check();
+ if($ldap->count() !=0){
+ $message[]= msgPool::duplicated(_("Name"));
+ }
- /* Permissions for that base? */
- if ($this->base != ""){
- $new_dn= 'cn='.$this->cn.','.get_ou('ogroupRDN').$this->base;
- } else {
- $new_dn= $this->dn;
- }
+ // Check if a wrong base was supplied
+ if(!$this->baseSelector->checkLastBaseUpdate()){
+ $message[]= msgPool::check_base();;
+ }
- /* Check if we have workstations assigned, that are already assigned to
- another object group. */
- if ($this->gosaGroupObjects == "[W]" || $this->gosaGroupObjects == "[T]" ) {
- $test =array_intersect($this->used_workstations,$this->member);
- if(count($test)){
- $str = "";
- foreach($test as $dn){
- $str .= "<li>".$dn."</li>";
+ /* Set new acl base */
+ if($this->dn == "new") {
+ $this->set_acl_base($this->base);
}
- $message[] = sprintf(_("These systems are already configured by other object groups and cannot be added:")."<br><ul>%s</ul>",$str);
- }
- }
- $ldap = $this->config->get_ldap_link();
- if($this->dn != $new_dn){
- $ldap->cat ($new_dn, array('dn'));
- }
-
- if($ldap->count() !=0){
- $message[]= msgPool::duplicated(_("Name"));
- }
-
- /* Set new acl base */
- if($this->dn == "new") {
- $this->set_acl_base($this->base);
- }
+ /* must: cn */
+ if ($this->cn == ""){
+ $message[]= msgPool::required(_("Name"));
+ }
- /* must: cn */
- if ($this->cn == ""){
- $message[]= msgPool::required(_("Name"));
- }
+ if (preg_match('/[=,+<>#;]/', $this->cn)) {
+ $message[] = msgPool::invalid(_("Name"), $this->cn, "/[^=+,<>#;]/");
+ }
- /* To many different object types? */
- if (strlen($this->gosaGroupObjects) > 4){
- $message[]= _("You can combine two different object types at maximum, only!");
- }
+ /* To many different object types? */
+ if (strlen($this->gosaGroupObjects) > 4){
+ $message[]= _("You can combine two different object types at maximum, only!");
+ }
- /* Check if we are allowed to create or move this object
- */
- if($this->orig_dn == "new" && !$this->acl_is_createable($this->base)){
- $message[] = msgPool::permCreate();
- }elseif($this->orig_dn != "new" && $this->base != $this->orig_base && !$this->acl_is_moveable($this->base)){
- $message[] = msgPool::permMove();
+ /* Check if we are allowed to create or move this object
+ */
+ if($this->orig_dn == "new" && !$this->acl_is_createable($this->base)){
+ $message[] = msgPool::permCreate();
+ }elseif($this->orig_dn != "new" && $this->base != $this->orig_base && !$this->acl_is_moveable($this->base)){
+ $message[] = msgPool::permMove();
+ }
+
+ return ($message);
}
- return ($message);
- }
+ /* Save to LDAP */
+ function save()
+ {
+ // Do not save members if we don't want to.
+ // This may be the case if we've copied an ogroup containing systems!
+ if(!$this->copyMembers){
+ $this->member = array();
+ $this->reload();
+ }
- /* Save to LDAP */
- function save()
- {
- plugin::save();
+ plugin::save();
- /* Move members to target array */
- $this->attrs['member'] =array();
- foreach ($this->member as $key => $desc){
- $this->attrs['member'][]= LDAP::fix($key);
- }
+ /* Move members to target array */
+ $this->attrs['member'] =array();
+ foreach ($this->member as $key => $desc){
+ $this->attrs['member'][]= LDAP::fix($key);
+ }
- $ldap= $this->config->get_ldap_link();
+ $ldap= $this->config->get_ldap_link();
- /* New accounts need proper 'dn', propagate it to remaining objects */
- if ($this->dn == 'new'){
- $this->dn= 'cn='.$this->cn.','.get_ou('ogroupRDN').$this->base;
- }
+ /* New accounts need proper 'dn', propagate it to remaining objects */
+ if ($this->dn == 'new'){
+ $this->dn= 'cn='.$this->cn.','.get_ou("group", "ogroupRDN").$this->base;
+ }
- /* Save data. Using 'modify' implies that the entry is already present, use 'add' for
- new entries. So do a check first... */
- $ldap->cat ($this->dn, array('dn'));
- if ($ldap->fetch()){
- /* Modify needs array() to remove values :-( */
- if (!count ($this->member)){
- $this->attrs['member']= array();
- }
- $mode= "modify";
-
- } else {
- $mode= "add";
- $ldap->cd($this->config->current['BASE']);
- $ldap->create_missing_trees(preg_replace('/^[^,]+,/', '', $this->dn));
- }
+ /* Save data. Using 'modify' implies that the entry is already present, use 'add' for
+ new entries. So do a check first... */
+ $ldap->cat ($this->dn, array('dn'));
+ if ($ldap->fetch()){
+ /* Modify needs array() to remove values :-( */
+ if (!count ($this->member)){
+ $this->attrs['member']= array();
+ }
+ $mode= "modify";
- /******
- Trust accounts
- ******/
- $objectclasses= array();
- foreach ($this->attrs['objectClass'] as $key => $class){
- if (preg_match('/trustAccount/i', $class)){
- continue;
- }
- $objectclasses[]= $this->attrs['objectClass'][$key];
- }
- $this->attrs['objectClass']= $objectclasses;
- if ($this->trustModel != ""){
- $this->attrs['objectClass'][]= "trustAccount";
- $this->attrs['trustModel']= $this->trustModel;
- $this->attrs['accessTo']= array();
- if ($this->trustModel == "byhost"){
- foreach ($this->accessTo as $host){
- $this->attrs['accessTo'][]= $host;
+ } else {
+ $mode= "add";
+ $ldap->cd($this->config->current['BASE']);
+ $ldap->create_missing_trees(preg_replace('/^[^,]+,/', '', $this->dn));
}
- }
- } else {
- if ($this->was_trust_account){
- $this->attrs['accessTo']= array();
- $this->attrs['trustModel']= array();
- }
- }
- /******
- Ende - Trust accounts
- ******/
- /* Write back to ldap */
- $ldap->cd($this->dn);
- $this->cleanup();
- $ldap->$mode($this->attrs);
+ /* Write back to ldap */
+ $ldap->cd($this->dn);
+ $this->cleanup();
+ $ldap->$mode($this->attrs);
- if($mode == "add"){
- new log("create","ogroups/".get_class($this),$this->dn,array_keys($this->attrs),$ldap->get_error());
- }else{
- new log("modify","ogroups/".get_class($this),$this->dn,array_keys($this->attrs),$ldap->get_error());
- }
+ if($mode == "add"){
+ new log("create","ogroups/".get_class($this),$this->dn,array_keys($this->attrs),$ldap->get_error());
+ }else{
+ new log("modify","ogroups/".get_class($this),$this->dn,array_keys($this->attrs),$ldap->get_error());
+ }
+
+ /* Trigger post signal */
+ $this->handle_post_events($mode);
- /* Trigger post signal */
- $this->handle_post_events($mode);
+ $ret= 0;
+ if (!$ldap->success()){
+ msg_dialog::display(_("LDAP error"), msgPool::ldaperror($ldap->get_error(), $this->dn, 0, get_class()));
+ $ret= 1;
+ }else{
+ $this->trustModeDialog->dn = $this->dn;
+ $this->trustModeDialog->save();
+ }
- $ret= 0;
- if (!$ldap->success()){
- msg_dialog::display(_("LDAP error"), msgPool::ldaperror($ldap->get_error(), $this->dn, 0, get_class()));
- $ret= 1;
+ return ($ret);
}
- return ($ret);
- }
+ function remove_from_parent()
+ {
+ plugin::remove_from_parent();
- function remove_from_parent()
- {
- plugin::remove_from_parent();
+ $ldap= $this->config->get_ldap_link();
+ $ldap->rmdir($this->dn);
+ if (!$ldap->success()){
+ msg_dialog::display(_("LDAP error"), msgPool::ldaperror($ldap->get_error(), $this->dn, 0, get_class()));
+ }
+
+ new log("remove","ogroups/".get_class($this),$this->dn,array_keys($this->attrs),$ldap->get_error());
- $ldap= $this->config->get_ldap_link();
- $ldap->rmdir($this->dn);
- if (!$ldap->success()){
- msg_dialog::display(_("LDAP error"), msgPool::ldaperror($ldap->get_error(), $this->dn, 0, get_class()));
+ /* Trigger remove signal */
+ $this->handle_post_events("remove");
}
- new log("remove","ogroups/".get_class($this),$this->dn,array_keys($this->attrs),$ldap->get_error());
- /* Trigger remove signal */
- $this->handle_post_events("remove");
- }
+ function PrepareForCopyPaste($source)
+ {
+ plugin::PrepareForCopyPaste($source);
-
- function PrepareForCopyPaste($source)
- {
- /* Update available object types */
- if(isset($source['gosaGroupObjects'][0])){
- $this->gosaGroupObjects = $source['gosaGroupObjects'][0];
- }
+ // Preselect "Copy members" state.
+ // If we've terminals, workstations or servers in our members list,
+ // then disable this option by default, to avoid problems with
+ // inheritance of ogroup values.
+ if (preg_match("/[STW]/", $this->gosaGroupObjects) || !isset($source['member'])) {
+ $this->copyMembers = FALSE;
+ } else {
+ $this->copyMembers = TRUE;
+ }
- /* Reload tabs */
- $this->parent->reload($this->gosaGroupObjects );
-
- /* Reload plugins */
- foreach($this->parent->by_object as $name => $class ){
- if(get_class($this) != $name) {
- $this->parent->by_object[$name]->PrepareForCopyPaste($source);
- }
- }
+ /* Reload tabs */
+ $this->parent->reload($this->gosaGroupObjects );
- /* Load member objects */
- if (isset($source['member'])){
- foreach ($source['member'] as $key => $value){
- if ("$key" != "count"){
- $value= @LDAP::convert($value);
- $this->member["$value"]= "$value";
- }
- }
- }
+ $this->trustModeDialog->PrepareForCopyPaste($source);
- }
+ /* Reload plugins */
+ foreach($this->parent->by_object as $name => $class ){
+ if(get_class($this) != $name) {
+ $this->parent->by_object[$name]->PrepareForCopyPaste($source);
+ }
+ }
+ $source_o = new ogroup ($this->config, $source['dn']);
+ foreach(array("member","gosaGroupObjects") as $attr){
+ $this->$attr = $source_o->$attr;
+ }
+ }
- function getCopyDialog()
- {
- $smarty = get_smarty();
- $smarty->assign("cn", $this->cn);
- $str = $smarty->fetch(get_template_path("paste_generic.tpl",TRUE,dirname(__FILE__)));
- $ret = array();
- $ret['string'] = $str;
- $ret['status'] = "";
- return($ret);
- }
- function saveCopyDialog()
- {
- if(isset($_POST['cn'])){
- $this->cn = $_POST['cn'];
+ function getCopyDialog()
+ {
+ $smarty = get_smarty();
+ $smarty->assign("cn", set_post($this->cn));
+ $smarty->assign("copyMembers", $this->copyMembers);
+ $str = $smarty->fetch(get_template_path("paste_generic.tpl",TRUE,dirname(__FILE__)));
+ $ret = array();
+ $ret['string'] = $str;
+ $ret['status'] = "";
+ return($ret);
}
- }
-
- function IsReleaseManagementActivated()
- {
- /* Check if we should enable the release selection */
- $tmp = $this->config->search("faiManagement", "CLASS",array('menu','tabs'));
- if(!empty($tmp)){
- return(true);
+ function saveCopyDialog()
+ {
+ if(isset($_POST['cn'])){
+ $this->cn = get_post('cn');
+ }
+ $this->copyMembers = isset($_POST['copyMembers']);
+ }
+
+
+ function IsReleaseManagementActivated()
+ {
+ return($this->config->pluginEnabled("faiManagement"));
+ }
+
+
+ static function plInfo()
+ {
+ return (array(
+ "plShortName" => _("Generic"),
+ "plDescription" => _("Object group generic"),
+ "plSelfModify" => FALSE,
+ "plDepends" => array(),
+ "plPriority" => 1,
+ "plSection" => array("administration"),
+ "plRequirements"=> array(
+ 'ldapSchema' => array('gosaGroupOfNames' => '>=2.7'),
+ 'onFailureDisablePlugin' => array(get_class(), 'ogroupManagement')
+ ),
+ "plCategory" => array("ogroups" => array("description" => _("Object groups"),
+ "objectClass" => "gosaGroupOfNames")),
+ "plProvidedAcls"=> array(
+ "cn" => _("Name"),
+ "base" => _("Base"),
+ "description" => _("Description"),
+ "accessTo" => _("System trust"),
+ "member" => _("Member"))
+ ));
}
- return(false);
- }
-
-
- static function plInfo()
- {
- return (array(
- "plShortName" => _("Generic"),
- "plDescription" => _("Object group generic"),
- "plSelfModify" => FALSE,
- "plDepends" => array(),
- "plPriority" => 1,
- "plSection" => array("administration"),
- "plCategory" => array("ogroups" => array("description" => _("Object groups"),
- "objectClass" => "gosaGroupOfNames")),
- "plProvidedAcls"=> array(
- "cn" => _("Name"),
- "base" => _("Base"),
- "description" => _("Description"),
- "trustModel" => _("Sytem trust"),
- "member" => _("Member"))
- ));
- }
}
// vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: