index 7ebcc1b373be3e089de60b938fab70e3e1bebf10..0c4fa51df2effc68ff5c0c9a0b2c13b199f3a09a 100644 (file)
var $subClassName = "faiTemplateEntry";
/* Attributes to initialise for each subObject */
- var $subAttributes = array("cn","description","FAItemplateFile","FAItemplatePath","FAIowner","FAImode");
+ var $subAttributes = array("cn","description","FAItemplatePath","FAIowner","FAImode");
+ var $sub_Load_Later = array("FAItemplateFile");
var $sub64coded = array();
+ var $subBinary = array("FAItemplateFile");
/* Specific attributes */
var $cn = ""; // The class name for this object
var $SubObjects = array(); // All leafobjects of this object
var $FAIstate = "";
+ var $ui;
function faiTemplate ($config, $dn= NULL)
{
/* Load Attributes */
plugin::plugin ($config, $dn);
- $this->acl="#all#";
-
/* If "dn==new" we try to create a new entry
* Else we must read all objects from ldap which belong to this entry.
* First read SubObjects from ldap ... and then the partition definitions for the SubObjects.
if($dn != "new"){
$this->dn =$dn;
- /* Set acls
- */
- $ui = get_userinfo();
- $acl = get_permissions ($this->dn, $ui->subtreeACL);
- $acli = get_module_permission($acl, "FAIclass", $this->dn);
- $this->acl=$acli;
-
/* Get FAIstate
*/
if(isset($this->attrs['FAIstate'][0])){
$ldap->search("(&(objectClass=FAIclass)(objectClass=".$this->subClass."))",$attrs_to_search);
while($object = $ldap->fetch()){
-
- /* Skip objects, that are tagged as removed */
- if(isset($object['FAIstate'][0])){
- if(preg_match("/removed$/",$object['FAIstate'][0])){
- continue;
- }
- }
-
/* Set status for save management */
- foreach($this->subAttributes as $attrs){
- if(!isset($object[$attrs][0])){
- $this->SubObjects[$object['cn'][0]][$attrs]="";
- }else{
- $this->SubObjects[$object['cn'][0]][$attrs]=$object[$attrs][0];
- }
+ $objects = array();
+ $objects['status'] = "FreshLoaded";
+ $objects['dn'] = $object['dn'];
+ $objects = $this->get_object_attributes($objects,$this->subAttributes);
+ $this->SubObjects[$objects['cn']] = $objects;
+ }
+ }
+ $this->ui = get_userinfo();
+ }
+
+
+ /* Reload some attributes */
+ function get_object_attributes($object,$attributes)
+ {
+ $ldap = $this->config->get_ldap_link();
+ $ldap->cd($this->config->current['BASE']);
+ $ldap->cat($object['dn'],$attributes);
+ $tmp = $ldap->fetch();
+
+ foreach($attributes as $attrs){
+ if(isset($tmp[$attrs][0])){
+ $var = $tmp[$attrs][0];
+
+ /* Check if we must decode some attributes */
+ if(in_array_ics($attrs,$this->sub64coded)){
+ $var = base64_decode($var);
}
- foreach($this->sub64coded as $codeIt){
- $this->SubObjects[$object['cn'][0]][$codeIt]= base64_decode($this->SubObjects[$object['cn'][0]][$codeIt]);
- }
+ /* check if this is a binary entry */
+ if(in_array_ics($attrs,$this->subBinary)){
+ $var = $ldap->get_attribute($object['dn'], $attrs,$r_array=0);
+ }
- $this->SubObjects[$object['cn'][0]]['FAItemplateFile']= $ldap->get_attribute($object['dn'], "FAItemplateFile",$r_array=0);
-
- $this->SubObjects[$object['cn'][0]]['status']= "edited";
- $this->SubObjects[$object['cn'][0]]['dn']= $object['dn'];
+ $var = stripslashes($var);
+
+ $object[$attrs] = $var;
}
}
+ return($object);
}
+
function execute()
{
- /* Call parent execute */
- plugin::execute();
+ /* Call parent execute */
+ plugin::execute();
/* Fill templating stuff */
$smarty= get_smarty();
$once = false;
$entry = preg_replace("/^editscript_/","",$name);
$entry = base64_decode(preg_replace("/_.*/","",$entry));
- $this->dialog= new $this->subClassName($this->config,$this->dn,$this->SubObjects[$entry]);
- $this->dialog->acl = $this->acl;
- $_SESSION['objectinfo'] = $this->SubObjects[$entry]['dn'];
- $this->dialog->parent = &$this;
- $this->is_dialog=true;
+ $obj = $this->SubObjects[$entry];
+
+ $acl_dn = $this->acl_base_for_current_object($obj['dn']);
+ $acl = $this->ui->get_permissions($acl_dn,"fai/faiTemplateEntry");
+ if(preg_match("/r/",$acl)){
+ if($obj['status'] == "FreshLoaded"){
+ $obj = $this->get_object_attributes($obj,$this->sub_Load_Later);
+ }
+ $this->dialog= new $this->subClassName($this->config,$this->dn,$obj);
+ $this->dialog->set_acl_base($this->acl_base);
+ $this->dialog->set_acl_category("fai");
+
+ $_SESSION['objectinfo'] = $obj['dn'];
+ $this->dialog->parent = &$this;
+ $this->is_dialog=true;
+ }
}
if(preg_match("/^deletescript_/",$name)&&($once)){
$once = false;
$entry = preg_replace("/^deletescript_/","",$name);
$entry = base64_decode(preg_replace("/_.*/","",$entry));
- if($this->SubObjects[$entry]['status'] == "edited"){
- $this->SubObjects[$entry]['status']= "delete";
- }else{
- unset($this->SubObjects[$entry]);
+ $obj = $this->SubObjects[$entry];
+
+ $acl_dn = $this->acl_base_for_current_object($obj['dn']);
+ $acl = $this->ui->get_permissions($acl_dn,"fai/faiTemplateEntry");
+ if(preg_match("/d/",$acl)){
+ if(($this->SubObjects[$entry]['status'] == "edited")||($this->SubObjects[$entry]['status'] == "FreshLoaded")){
+ $this->SubObjects[$entry]['status']= "delete";
+ }else{
+ unset($this->SubObjects[$entry]);
+ }
}
}
}
/* Add new sub object */
if(isset($_POST['AddSubObject'])){
- $this->dialog= new $this->subClassName($this->config,"new");
- $this->dialog->acl = $this->acl;
- $this->is_dialog=true;
+ $acl_dn = "cn=dummy,".$this->acl_base_for_current_object($this->dn);
+ $acl = $this->ui->get_permissions($acl_dn,"fai/faiTemplateEntry");
+
+ if(preg_match("/c/",$acl)){
+ $this->dialog= new $this->subClassName($this->config,"new");
+ $this->dialog->set_acl_base($this->acl_base);
+ $this->dialog->set_acl_category("fai");
+ $this->is_dialog=true;
+ }
}
if($this->dn != "new"){
print_red($msg);
}
}else{
+ /* Get return object */
$obj = $this->dialog->save();
if(isset($obj['remove'])){
- if($this->SubObjects[$obj['remove']['from']]['status']=="edited"){
+
+ $old_stat = $this->SubObjects[$obj['remove']['from']]['status'];
+
+ /* Depending on status, set new status */
+ if($old_stat == "edited" || $old_stat == "FreshLoaded"){
$this->SubObjects[$obj['remove']['from']]['status'] = "delete";
}elseif($this->SubObjects[$obj['remove']['from']]['status']=="new"){
unset($this->SubObjects[$obj['remove']['from']]);
$this->SubObjects[$obj['remove']['to']] = $obj;
unset($this->SubObjects[$obj['remove']['to']]['remove']);
}else{
+ if($obj['status'] == "FreshLoaded"){
+ $obj['status'] = "edited";
+ }
$this->SubObjects[$obj['cn']]=$obj;
}
$this->is_dialog=false;
/* Divlist Containing FAItemplates */
$divlist = new divSelectBox("FAItemplates");
$divlist->setHeight(400);
- if((chkacl($this->acl,"cn")!="") || ($this->FAIstate == "freeze")){
- $img_edit = "<input type='image' src='images/edit.png' name='editscript_%s' title='"._("edit")."' alt='"._("edit")."'>";
- $img_remo = "";
- }else{
- $img_edit = "<input type='image' src='images/edit.png' name='editscript_%s' title='"._("edit")."' alt='"._("edit")."'>";
- $img_remo = "<input type='image' src='images/edittrash.png' name='deletescript_%s' title='"._("delete")."' alt='"._("delete")."'>";
- }
- foreach($this->getList(true) as $key => $name){
+ $tmp = $this->getList(true);
+
+ foreach($this->SubObjects as $key => $name){
- if(($this->SubObjects[$key]['status'] == "new") || ($this->SubObjects[$key]['dn'] == "new")){
+ $dn = $this->acl_base_for_current_object($name['dn']);
+ $acl = $this->ui->get_permissions($dn,"fai/faiTemplateEntry") ;
+ $act = "";
+
+ /* Hide delete icon if this object is freezed */
+ if(preg_match("/freeze/",$this->FAIstate)){
+ $act .= "<input type='image' src='images/edit.png' name='editscript_%s' title='"._("edit")."' alt='"._("edit")."'>";
+ }else{
+ $act .= "<input type='image' src='images/edit.png' name='editscript_%s' title='"._("edit")."' alt='"._("edit")."'>";
+ if(preg_match("/d/",$acl)){
+ $act .="<input type='image' src='images/edittrash.png' name='deletescript_%s' title='"._("delete")."' alt='"._("delete")."'>";
+ }
+ }
+
+ /* Check acls for download icon */
+ $s_acl = $this->ui->get_permissions($dn,"fai/faiTemplateEntry","FAItemplateFile") ;
+ if(($this->SubObjects[$key]['status'] == "new") || ($this->SubObjects[$key]['dn'] == "new") || !preg_match("/r/",$s_acl)){
$down = "";
}else{
-
- $dn = $this->SubObjects[$key]['dn'];
-
$down = "<a href='getFAIscript.php?is_template&id=".base64_encode($dn)."'>
<img src='images/save.png' alt='"._("Download")."' title='"._("Download")."' border=0>
</a>";
}
- $divlist->AddEntry(array( array("string"=>$name),
- array("string"=>$down , "attach" => "style='width:20px;'"),
- array("string"=>str_replace("%s",base64_encode($key),$img_edit.$img_remo),
- "attach"=>"style='border-right: 0px;width:50px;text-align:right;'")));
+ /* Check if we are allowed to view this object */
+ $s_acl = $this->ui->get_permissions($dn,"fai/faiTemplateEntry","cn") ;
+ if(preg_match("/r/",$s_acl)){
+ $divlist->AddEntry(array( array("string"=> $tmp[$key] ),
+ array("string"=>$down , "attach" => "style='width:20px;'"),
+ array("string"=>str_replace("%s",base64_encode($key),$act),
+ "attach"=>"style='border-right: 0px;width:50px;text-align:right;'")));
+ }
}
$smarty->assign("Entry_divlist",$divlist->DrawList());
/* Divlist creation complete
*/
- $smarty->assign("SubObjects",$this->getList());
-
/* Magic quotes GPC, escapes every ' " \, to solve some security risks
* If we post the escaped strings they will be escaped again
*/
}
}
+ $dn = $this->acl_base_for_current_object($this->dn);
+ $smarty->assign("sub_object_is_addable",
+ preg_match("/c/",$this->ui->get_permissions($dn,"fai/faiTemplateEntry")) &&
+ !preg_match("/freeze/",$this->FAIstate));
+
foreach($this->attributes as $attr){
- $smarty->assign($attr."ACL",chkacl($this->acl,$attr));
+ $smarty->assign($attr."ACL",$this->getacl($attr));
}
$display.= $smarty->fetch(get_template_path('faiTemplate.tpl', TRUE));
return($display);
}
+
+ function acl_base_for_current_object($dn)
+ {
+ if($dn == "new"){
+ if($this->dn == "new"){
+ $dn= $_SESSION['CurrentMainBase'];
+ }else{
+ $dn = $this->dn;
+ }
+ }
+ return($dn);
+ }
+
+
/* Generate listbox friendly SubObject list
*/
function getList(){
$ldap = $this->config->get_ldap_link();
$ldap->cd ($this->dn);
- $use_dn = str_ireplace( get_release_dn($this->dn), $_SESSION['faifilter']['branch'], $this->dn);
+# $use_dn = str_ireplace( get_release_dn($this->dn), $_SESSION['faifilter']['branch'], $this->dn);
+ $use_dn = preg_replace("/".normalizePreg(get_release_dn($this->dn))."/i", $_SESSION['faifilter']['branch'], $this->dn);
if($_SESSION['faifilter']['branch'] == "main"){
$use_dn = $this->dn;
}
prepare_to_save_FAI_object($use_dn,array(),true);
foreach($this->SubObjects as $name => $obj){
- $use_dn = str_ireplace( get_release_dn($this->dn), $_SESSION['faifilter']['branch'], $obj['dn']);
+# $use_dn = str_ireplace( get_release_dn($this->dn), $_SESSION['faifilter']['branch'], $obj['dn']);
+ $use_dn = preg_replace("/".normalizePreg(get_release_dn($this->dn))."/i", $_SESSION['faifilter']['branch'], $obj['dn']);
if($_SESSION['faifilter']['branch'] == "main"){
$use_dn = $obj['dn'];
}
*/
function save_object()
{
- if((isset($_POST['FAItemplate_posted'])) && ($this->FAIstate != "freeze") ){
+ if((isset($_POST['FAItemplate_posted'])) && (!preg_match("/freeze/",$this->FAIstate))){
plugin::save_object();
- foreach($this->attributes as $attrs){
- if(isset($_POST[$attrs])){
- $this->$attrs = $_POST[$attrs];
- }
- }
}
}
* After deletion, we perform add and modify
*/
$Objects = array();
+ foreach($this->SubObjects as $name => $obj){
+ if($obj['status'] == "FreshLoaded"){
+ unset($this->SubObjects[$name]);
+ }
+ }
+
foreach($this->SubObjects as $name => $obj){
if($obj['status'] == "delete"){
$Objects[$name] = $obj;
$obj[$codeIt]=base64_encode($obj[$codeIt]);
}
$tmp = array();
- foreach($this->subAttributes as $attrs){
+ $attributes = array_merge($this->sub_Load_Later,$this->subAttributes);
+ foreach($attributes as $attrs){
if(empty($obj[$attrs])){
$obj[$attrs] = array();
}
- $tmp[$attrs] = $obj[$attrs];
+ $tmp[$attrs] =($obj[$attrs]);
}
$tmp['objectClass'] = $this->subClasses;
"plDescription" => _("FAI template"),
"plSelfModify" => FALSE,
"plDepends" => array(),
- "plPriority" => 0,
+ "plPriority" => 24,
"plSection" => array("administration"),
"plCategory" => array("fai"),
"plProvidedAcls" => array(
- "cn" => _("Name"),
- "description" => _("Description"),
- "FAItemplateFile" => _("Template file"),
- "FAItemplatePath" => _("Template path"),
- "FAIowner" => _("File owner"),
- "FAImode" => _("File permissions"))
+ "cn" => _("Name")." ("._("Readonly").")",
+ "description" => _("Description"))
));
}
}