![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
index 197fdc44bcdf142da2ed98c2937918f4f35ca660..c130a568d6cba899f26716d82ed72edf824ce727 100644 (file)
/* ObjectClasses for this Object*/
var $objectclasses = array("top","FAIclass","FAIscript");
+ /* Class name of the Ldap ObjectClass for the Sub Object */
+ var $subClass = "FAIscriptEntry";
+ var $subClasses = array("top","FAIclass","FAIscriptEntry");
+
+ /* Class name of the php class which allows us to edit a Sub Object */
+ var $subClassName = "faiScriptEntry";
+
+ /* Attributes to initialise for each subObject */
+ var $subAttributes = array("cn","description","FAIpriority");
+ var $sub_Load_Later = array("FAIscript");
+ var $sub64coded = array();
+ var $subBinary = array("FAIscript");
+
/* Specific attributes */
var $cn = ""; // The class name for this object
var $description = ""; // The description for this set of partitions
var $dialog = NULL; // a dialog, e.g. new disk dialog
var $SubObjects = array(); // All leafobjects of this object
- /* new dn*/
- var $use_dn ="";
+ var $FAIstate ="";
+
+ var $ui;
function faiScript ($config, $dn= NULL)
{
/* Load Attributes */
plugin::plugin ($config, $dn);
+
+ /* If "dn==new" we try to create a new entry
+ * Else we must read all objects from ldap which belong to this entry.
+ * First read SubObjects from ldap ... and then the partition definitions for the SubObjects.
+ */
+ if($dn != "new"){
+
+ $this->dn =$dn;
+
+ /* Get FAIstate
+ */
+ if(isset($this->attrs['FAIstate'][0])){
+ $this->FAIstate = $this->attrs['FAIstate'][0];
+ }
+
+ /* Read all leaf objects of this object (For FAIscript this would be FAIscriptEntry)
+ */
+ $ldap = $this->config->get_ldap_link();
+ $ldap->cd ($this->dn);
+
+ $attrs_to_search = $this->subAttributes;
+ $attrs_to_search[] = "FAIstate";
+ $ldap->search("(&(objectClass=FAIclass)(objectClass=".$this->subClass."))",$attrs_to_search);
+
+ while($object = $ldap->fetch()){
+
+ /* Skip objects, that are tagged as removed */
+ if(isset($object['FAIstate'][0])){
+ if(preg_match("/removed$/",$object['FAIstate'][0])){
+ continue;
+ }
+ }
+
+ /* Set status for save management */
+ $objects = array();
+ $objects['status'] = "FreshLoaded";
+ $objects['dn'] = $object['dn'];
+ $objects = $this->get_object_attributes($objects,$this->subAttributes);
+ $this->SubObjects[$objects['cn']] = $objects;
+ }
+ }
+ $this->ui = get_userinfo();
+ }
+
+
+ /* Reload some attributes */
+ function get_object_attributes($object,$attributes)
+ {
+ $ldap = $this->config->get_ldap_link();
+ $ldap->cd($this->config->current['BASE']);
+ $ldap->cat($object['dn'],$attributes);
+ $tmp = $ldap->fetch();
+
+ foreach($attributes as $attrs){
+ if(isset($tmp[$attrs][0])){
+ $var = $tmp[$attrs][0];
+
+ /* Check if we must decode some attributes */
+ if(in_array_ics($attrs,$this->sub64coded)){
+ $var = base64_decode($var);
+ }
+
+ /* check if this is a binary entry */
+ if(in_array_ics($attrs,$this->subBinary)){
+ $var = $ldap->get_attribute($object['dn'], $attrs,$r_array=0);
+ }
+
+ /* Fix slashes */
+ $var = addslashes($var);
+ $object[$attrs] = $var;
+ }
+ }
+ return($object);
+ }
+
+
+ /* Return a valid dn to fetch acls. Because 'new' will not work. */
+ function acl_base_for_current_object($dn)
+ {
+ if($dn == "new"){
+ if($this->dn == "new"){
+ $dn= "cn=dummy,".$_SESSION['CurrentMainBase'];
+ }else{
+ $dn = $this->dn;
+ }
+ }
+ return($dn);
}
+
function execute()
{
+ /* Call parent execute */
+ plugin::execute();
+
/* Fill templating stuff */
$smarty= get_smarty();
$display= "";
/* Add new sub object */
if(isset($_POST['AddSubObject'])){
- $this->dialog= new faiScriptEntry($this->config,"new");
- $this->dialog->parent = &$this;
+ $this->dialog= new $this->subClassName($this->config,"new");
+ $this->dialog->set_acl_base($this->acl_base);
+ $this->dialog->set_acl_category("fai");
$this->is_dialog=true;
}
- /* Edit selected Sub Object */
- if((isset($_POST['EditSubObject']))&&(isset($_POST['SubObject']))){
- $this->dialog= new faiScriptEntry($this->config,$this->SubObjects[$_POST['SubObject']]['dn']);
- $this->dialog->parent = &$this;
- $this->is_dialog=true;
+ if($this->dn != "new"){
+ $_SESSION['objectinfo']= $this->dn;
}
-
- /* Remove Sub object */
- if((isset($_POST['DelSubObject']))&&(isset($_POST['SubObject']))){
- $tmp = new faiScriptEntry($this->config,$this->SubObjects[$_POST['SubObject']]['dn']);
- $tmp->remove_from_parent();
- unset($tmp);
+
+ /* Handle posts */
+ $once = true;
+ foreach($_POST as $name => $value){
+
+ /* Edit script posted */
+ if(preg_match("/^editscript_/",$name)&&($once)){
+
+ /* Get posted entry id */
+ $once = false;
+ $entry = preg_replace("/^editscript_/","",$name);
+ $entry = base64_decode(preg_replace("/_.*/","",$entry));
+
+ /* Get object, and load missing entry values */
+ $obj = $this->SubObjects[$entry];
+ if($obj['status'] == "FreshLoaded"){
+ $obj = $this->get_object_attributes($obj,$this->sub_Load_Later);
+ }
+
+ /* Create new dialog and set acl attributes */
+ $this->dialog= new $this->subClassName($this->config,$this->dn,$obj);
+ $this->dialog->set_acl_base($this->acl_base_for_current_object($obj['dn']));
+ $this->dialog->set_acl_category("fai");
+
+ /* Assign some additional dialog informations like headline and parent */
+ $_SESSION['objectinfo'] = $obj['dn'];
+ $this->dialog->parent = &$this;
+ $this->is_dialog=true;
+ }
+
+ /* Delete script requested */
+ if(preg_match("/^deletescript_/",$name)&&($once)){
+
+ /* Parse out posted entry id */
+ $once = false;
+ $entry = preg_replace("/^deletescript_/","",$name);
+ $entry = base64_decode(preg_replace("/_.*/","",$entry));
+
+ /* Check acls, are we allowed to delete an entry */
+ $acl = $this->ui->get_permissions($this->acl_base_for_current_object($this->SubObjects[$entry]['dn']),"fai/faiScriptEntry") ;
+ if(preg_match("/d/",$acl)){
+ $status = $this->SubObjects[$entry]['status'];
+ if($status == "edited" || $status == "FreshLoaded"){
+ $this->SubObjects[$entry]['status']= "delete";
+ }else{
+ unset($this->SubObjects[$entry]);
+ }
+ }
+ }
}
- /* Save Dialog */
+
+ /* Save the edited entry */
if(isset($_POST['SaveSubObject'])){
+
+ /* Check if there are still errors remaining that must be fixed before saving */
$this->dialog->save_object();
$msgs = $this->dialog->check();
if(count($msgs)>0){
print_red($msg);
}
}else{
- $this->dialog->save_object();
- $this->dialog->save();
+
+ /* Get return object */
+ $obj = $this->dialog->save();
+
+ /* If we have renamed the script entry, we must remove the old entry */
+ if(isset($obj['remove'])){
+
+ /* Get old entry values */
+ $old_stat = $this->SubObjects[$obj['remove']['from']]['status'];
+
+ /* Depending on status, set new status */
+ if($old_stat == "edited" || $old_stat == "FreshLoaded"){
+ $this->SubObjects[$obj['remove']['from']]['status'] = "delete";
+ }elseif($this->SubObjects[$obj['remove']['from']]['status']=="new"){
+ unset($this->SubObjects[$obj['remove']['from']]);
+ }
+
+ /* Append the new entry */
+ $obj['status'] = "new";
+ $this->SubObjects[$obj['remove']['to']] = $obj;
+ unset($this->SubObjects[$obj['remove']['to']]['remove']);
+ }else{
+
+ /* Set new status and append the entry */
+ if($obj['status'] == "FreshLoaded"){
+ $obj['status'] = "edited";
+ }
+ $this->SubObjects[$obj['cn']]=$obj;
+ }
$this->is_dialog=false;
unset($this->dialog);
$this->dialog=NULL;
+
}
}
+ /* Sort entries */
+ $tmp = $keys = array();
+ foreach($this->SubObjects as $key => $entry){
+ $keys[$key]=$key;
+ }
+ natcasesort($keys);
+ foreach($keys as $key){
+ $tmp[$key]=$this->SubObjects[$key];
+ }
+ $this->SubObjects = $tmp;
+
/* Cancel Dialog */
if(isset($_POST['CancelSubObject'])){
$this->is_dialog=false;
return($display);
}
- $buffer = $this->getList();
- $smarty->assign("SubObjects",$buffer);
- $smarty->assign("SubObjectKeys",array_flip($buffer));
-
+ /* Divlist added 23.02.2006
+ Containing FAIscripts
+ */
+ $divlist = new divSelectBox("FAIscripts");
+ $divlist->setHeight(400);
+ foreach($this->getList(true) as $key => $name){
+
+ $dn= $this->acl_base_for_current_object($name['dn']);
+ $acl = $this->ui->get_permissions($dn,"fai/faiScriptEntry") ;
+ $act = "";
+
+ /* Hide delete icon if this object is freezed */
+ if($this->FAIstate == "freeze"){
+ $act .= "<input type='image' src='images/edit.png' name='editscript_%s' title='"._("edit")."' alt='"._("edit")."'>";
+ }else{
+ $act .= "<input type='image' src='images/edit.png' name='editscript_%s' title='"._("edit")."' alt='"._("edit")."'>";
+ if(preg_match("/d/",$acl)){
+ $act .="<input type='image' src='images/edittrash.png' name='deletescript_%s' title='"._("delete")."' alt='"._("delete")."'>";
+ }
+ }
+
+ /* Check acls for download icon */
+ $s_acl = $this->ui->get_permissions($dn,"fai/faiScriptEntry","FAIscript") ;
+ if(($this->SubObjects[$key]['status'] == "new") || ($this->SubObjects[$key]['dn'] == "new") || !preg_match("/r/",$s_acl)){
+ $down = "";
+ }else{
+ $down = "<a href='getFAIscript.php?id=".base64_encode($name['dn'])."' >
+ <img src='images/save.png' alt='"._("Download")."' title='"._("Download")."' border=0>
+ </a>";
+ }
+
+ /* Check if we are allowed to view this object */
+ $s_acl = $this->ui->get_permissions($dn,"fai/faiScriptEntry","cn") ;
+ if(preg_match("/r/",$s_acl)){
+ $divlist->AddEntry(array( array("string"=>$name['name']),
+ array("string"=>$down , "attach" => "style='width:20px;'"),
+ array("string"=>str_replace("%s",base64_encode($key),$act),
+ "attach"=>"style='border-right: 0px;width:50px;text-align:right;'")));
+ }
+ }
+ $smarty->assign("Entry_divlist",$divlist->DrawList());
+
+
/* Magic quotes GPC, escapes every ' " \, to solve some security risks
- * If we post the escaped strings they will be escaped again
- */
+ * If we post the escaped strings they will be escaped again
+ */
foreach($this->attributes as $attrs){
if(get_magic_quotes_gpc()){
$smarty->assign($attrs,stripslashes($this->$attrs));
}
}
+ $dn = $this->acl_base_for_current_object($this->dn);
+ $smarty->assign("sub_object_is_addable",
+ preg_match("/c/",$this->ui->get_permissions($dn,"fai/faiScriptEntry")) &&
+ !preg_match("/freeze/",$this->FAIstate));
+
+ $tmp = $this->plInfo();
+ foreach($tmp['plProvidedAcls'] as $name => $translated){
+ $smarty->assign($name."ACL",$this->getacl($name));
+ }
+
$display.= $smarty->fetch(get_template_path('faiScript.tpl', TRUE));
return($display);
}
/* Generate listbox friendly SubObject list
- */
- function getList(){
- $a_return = array();
- $this->SubObjects = array();
-
- $ldap = $this->config->get_ldap_link();
- $ldap->cd ($this->config->current['BASE']);
- $ldap->cd ($this->dn);
-
- $ldap->search("(objectClass=FAIscriptEntry)",array("cn"));
-
- while($entry = $ldap->fetch()){
- $tmp = array();
- $tmp['cn'] = $entry['cn'][0];
- $tmp['dn']=$entry['dn'];
- $this->SubObjects[$tmp['cn']] = $tmp;
-
- if(isset($entry['description'][0])){
- $a_return[$tmp['cn']] = $tmp['cn']." [".$entry['description'][0]."]";
- }else{
- $a_return[$tmp['cn']] = $tmp['cn'];
+ */
+ function getList($use_dns=false){
+ $a_return=array();
+ foreach($this->SubObjects as $obj){
+ if($obj['status'] != "delete"){
+ if($use_dns){
+ if((isset($obj['description']))&&(!empty($obj['description']))){
+ $a_return[$obj['cn']]['name']= $obj['cn']." [".stripslashes($obj['description'])."]";
+ }else{
+ $a_return[$obj['cn']]['name']= $obj['cn'];
+ }
+ $a_return[$obj['cn']]['dn']= $obj['dn'];
+ }else{
+ if((isset($obj['description']))&&(!empty($obj['description']))){
+ $a_return[$obj['cn']]= $obj['cn']." [".stripslashes($obj['description'])."]";
+ }else{
+ $a_return[$obj['cn']]= $obj['cn'];
+ }
+ }
}
}
return($a_return);
*/
function remove_from_parent()
{
- $ldap = $this->config->get_ldap_link();
- $ldap->cd ($this->dn);
- $ldap->rmdir_recursive($this->dn);
- show_ldap_error($ldap->get_error());
- $this->handle_post_events("remove");
+ if($this->acl_is_removeable()){
+ $ldap = $this->config->get_ldap_link();
+ $ldap->cd ($this->dn);
+
+ $use_dn = preg_replace("/".normalizePreg(get_release_dn($this->dn))."/i", $_SESSION['faifilter']['branch'], $this->dn);
+ if($_SESSION['faifilter']['branch'] == "main"){
+ $use_dn = $this->dn;
+ }
+
+ prepare_to_save_FAI_object($use_dn,array(),true);
+
+ foreach($this->SubObjects as $name => $obj){
+ $use_dn = preg_replace("/".normalizePreg(get_release_dn($this->dn))."/i", $_SESSION['faifilter']['branch'], $obj['dn']);
+ if($_SESSION['faifilter']['branch'] == "main"){
+ $use_dn = $obj['dn'];
+ }
+ prepare_to_save_FAI_object($use_dn,array(),true);
+ }
+ $this->handle_post_events("remove");
+ }
}
*/
function save_object()
{
- if(isset($_POST['FAIscript_submit'])){
+ if((isset($_POST['FAIscript_posted'])) && ($this->FAIstate != "freeze")){
plugin::save_object();
foreach($this->attributes as $attrs){
if(isset($_POST[$attrs])){
/* Check supplied data */
function check()
{
- $message= array();
+ /* Call common method to give check the hook */
+ $message= plugin::check();
+
return ($message);
}
{
plugin::save();
- if($this->dn == "new"){
- $this->dn = $this->use_dn;
- }
-
$ldap = $this->config->get_ldap_link();
- $ldap->cat($this->dn);
- if($ldap->count()!=0){
- /* Write FAIscript to ldap*/
- $ldap->cd($this->dn);
- $ldap->modify($this->attrs);
- }else{
- /* Write FAIscript to ldap*/
- $ldap->cd($this->config->current['BASE']);
- $ldap->create_missing_trees(preg_replace('/^[^,]+,/', '', $this->dn));
- $ldap->cd($this->dn);
- $ldap->add($this->attrs);
- }
- show_ldap_error($ldap->get_error());
+
+ prepare_to_save_FAI_object($this->dn,$this->attrs);
+ show_ldap_error($ldap->get_error(), sprintf(_("Creating of FAI/script with dn '%s' failed."),$this->dn));
+
+ /* Do object tagging */
+ $this->handle_object_tagging();
+
+ /* Prepare FAIscriptEntry to write it to ldap
+ * First sort array.
+ * Because we must delete old entries first.
+ * After deletion, we perform add and modify
+ */
+ $Objects = array();
+
+ /* We do not need to save untouched objects */
+ foreach($this->SubObjects as $name => $obj){
+ if($obj['status'] == "FreshLoaded"){
+ unset($this->SubObjects[$name]);
+ }
+ }
+
+ foreach($this->SubObjects as $name => $obj){
+ if($obj['status'] == "delete"){
+ $Objects[$name] = $obj;
+ }
+ }
+ foreach($this->SubObjects as $name => $obj){
+ if($obj['status'] != "delete"){
+ $Objects[$name] = $obj;
+ }
+ }
+
+ foreach($Objects as $name => $obj){
+
+ foreach($this->sub64coded as $codeIt){
+ $obj[$codeIt]=base64_encode(stripslashes($obj[$codeIt]));
+ }
+
+ $tmp = array();
+ $attributes = array_merge($this->sub_Load_Later,$this->subAttributes);
+ foreach($attributes as $attrs){
+
+ if(empty($obj[$attrs])){
+ $obj[$attrs] = array();
+ }
+ if(!is_array($obj[$attrs])){
+ $tmp[$attrs] = stripslashes($obj[$attrs]);
+ }else{
+ $tmp[$attrs] = $obj[$attrs];
+ }
+ }
+
+ $tmp['objectClass'] = $this->subClasses;
+
+ $sub_dn = "cn=".$obj['cn'].",".$this->dn;
+
+ if($obj['status']=="new"){
+ $ldap->cat($sub_dn,array("objectClass"));
+ if($ldap->count()){
+ $obj['status']="edited";
+ }
+ }
+
+ if(empty($tmp['FAIpriority'])){
+ $tmp['FAIpriority'] ="0";
+ }
+
+ /* Check if gosaAdministrativeUnitTag is required as object class */
+ if($obj['status'] == "edited"){
+ $ldap->cat($sub_dn,array("objectClass"));
+ $attrs = $ldap->fetch();
+ if(isset($attrs['objectClass'])){
+ if(in_array_ics("gosaAdministrativeUnitTag",$attrs['objectClass'])){
+ $tmp['objectClass'][] = "gosaAdministrativeUnitTag";
+ }
+ }
+ }
+
+ if($obj['status'] == "delete"){
+ prepare_to_save_FAI_object($sub_dn,array(),true);
+ $this->handle_post_events("remove");
+ }elseif($obj['status'] == "edited"){
+ prepare_to_save_FAI_object($sub_dn,$tmp);
+ $this->handle_post_events("modify");
+ }elseif($obj['status']=="new"){
+ prepare_to_save_FAI_object($sub_dn,$tmp);
+ $this->handle_post_events("add");
+ }
+
+ $this->handle_object_tagging($sub_dn, $this->gosaUnitTag);
+ }
+ }
+
+
+ /* Return plugin informations for acl handling */
+ function plInfo()
+ {
+ return (array(
+ "plShortName" => _("Script"),
+ "plDescription" => _("FAI script"),
+ "plSelfModify" => FALSE,
+ "plDepends" => array(),
+ "plPriority" => 18,
+ "plSection" => array("administration"),
+ "plCategory" => array("fai"),
+ "plProvidedAcls" => array(
+ "cn" => _("Name")." ("._("Readonly").")",
+ "description" => _("Description"))
+ ));
}
}