index 6c47c6f331a88586f864c9d90a614bdf7eb3f8d6..60baec911497eab02a7b911977eeb5fda39d0c57 100644 (file)
/* Attributes to initialise for each subObject */
var $subAttributes = array("cn","description","FAIvariableContent");
- var $sub64coded = array("FAIvariableContent");
+ var $sub64coded = array();
/* Specific attributes */
var $cn = ""; // The class name for this object
var $dialog = NULL; // a dialog, e.g. new disk dialog
var $SubObjects = array(); // All leafobjects of this object
+ var $FAIstate = "";
+ var $ui ;
+
function faiVariable ($config, $dn= NULL)
{
/* Load Attributes */
plugin::plugin ($config, $dn);
- /* If "dn==new" we try to create a new entry
- * Else we must read all objects from ldap which belong to this entry.
- * First read SubObjects from ldap ... and then the partition definitions for the SubObjects.
- */
if($dn != "new"){
$this->dn =$dn;
+ /* Get FAIstate
+ */
+ if(isset($this->attrs['FAIstate'][0])){
+ $this->FAIstate = $this->attrs['FAIstate'][0];
+ }
+
/* Read all leaf objects of this object (For FAIscript this would be FAIscriptEntry)
*/
$ldap = $this->config->get_ldap_link();
$ldap->cd ($this->dn);
- $ldap->search("(&(objectClass=FAIclass)(objectClass=".$this->subClass."))",$this->subAttributes);
+
+ $attrs_to_search = $this->subAttributes;
+ $attrs_to_search[] = "FAIstate";
+ $ldap->search("(&(objectClass=FAIclass)(objectClass=".$this->subClass."))",$attrs_to_search);
while($object = $ldap->fetch()){
+
+ /* Skip objects, that are tagged as removed */
+ if(isset($object['FAIstate'][0])){
+ if(preg_match("/removed$/",$object['FAIstate'][0])){
+ continue;
+ }
+ }
+
/* Set status for save management */
-
foreach($this->subAttributes as $attrs){
if(!isset($object[$attrs][0])){
$this->SubObjects[$object['cn'][0]][$attrs]="";
$this->SubObjects[$object['cn'][0]]['dn'] = $object['dn'];
}
}
+ $this->ui = get_userinfo();
}
+
+ function acl_base_for_current_object($dn)
+ {
+ if($dn == "new"){
+ if($this->dn == "new"){
+ $dn= $_SESSION['CurrentMainBase'];
+ }else{
+ $dn = $this->dn;
+ }
+ }
+ return($dn);
+ }
+
+
function execute()
{
+ /* Call parent execute */
+ plugin::execute();
+
/* Fill templating stuff */
$smarty= get_smarty();
$display= "";
/* Add new sub object */
if(isset($_POST['AddSubObject'])){
$this->dialog= new $this->subClassName($this->config,"new");
+ $this->dialog->set_acl_base($this->acl_base_for_current_object($this->dn));
+ $this->dialog->set_acl_category("fai");
$this->is_dialog=true;
}
- $_SESSION['objectinfo'] = $this->dn;
+ if($this->dn != "new"){
+ $_SESSION['objectinfo']= $this->dn;
+ }
+
+
/* Edit selected Sub Object */
if((isset($_POST['EditSubObject']))&&(isset($_POST['SubObject']))){
- $this->dialog= new $this->subClassName($this->config,$this->dn,$this->SubObjects[$_POST['SubObject']]);
- $_SESSION['objectinfo'] = $this->SubObjects[$_POST['SubObject']]['dn'];
+
+ $var = $_POST['SubObject'][0];
+ $c_dn = $this->acl_base_for_current_object($this->SubObjects[$var]['dn']);
+ $this->dialog= new $this->subClassName($this->config,$this->dn,$this->SubObjects[$var]);
+ $this->dialog->set_acl_category("fai");
+ $this->dialog->set_acl_base($c_dn);
+ $_SESSION['objectinfo'] = $this->SubObjects[$var]['dn'];
$this->is_dialog=true;
}
/* Remove Sub object */
if((isset($_POST['DelSubObject']))&&(isset($_POST['SubObject']))){
- if($this->SubObjects[$_POST['SubObject']]['status'] == "edited"){
- $this->SubObjects[$_POST['SubObject']]['status']= "delete";
- }else{
- unset($this->SubObjects[$_POST['SubObject']]);
+ foreach($_POST['SubObject'] as $var){
+
+ $c_dn = $this->acl_base_for_current_object($this->SubObjects[$var]['dn']);
+ $acl = $this->ui->get_permissions($c_dn,"fai/faiVariable");
+ if(preg_match("/d/",$acl)){
+ if($this->SubObjects[$var]['status'] == "edited"){
+ $this->SubObjects[$var]['status']= "delete";
+ }else{
+ unset($this->SubObjects[$var]);
+ }
+ }
}
}
}
}
+ /* Sort entries */
+ $tmp = $keys = array();
+ foreach($this->SubObjects as $key => $entry){
+ $keys[$key]=$key;
+ }
+ natcasesort($keys);
+ foreach($keys as $key){
+ $tmp[$key]=$this->SubObjects[$key];
+ }
+ $this->SubObjects = $tmp;
+
/* Cancel Dialog */
if(isset($_POST['CancelSubObject'])){
$this->is_dialog=false;
return($display);
}
- $smarty->assign("SubObjects",$this->getList());
- $smarty->assign("SubObjectKeys",array_flip($this->getList()));
+ $ui = get_userinfo();
+ $ret = $this->getList();
+ $tmp = array();
+ foreach($this->SubObjects as $key => $obj){
+ $acl = $ui->get_permissions($obj['dn'],"fai/faiVariableEntry");
+ if(preg_match("/r/",$acl)){
+ $tmp[$key] = $ret[$key];
+ }
+ }
+ $smarty->assign("SubObjects",$tmp);
- /* Magic quotes GPC, escapes every ' " \, to solve some security risks
+
+ /* Magic quotes GPC, escapes every ' " \, to solve some security risks
* If we post the escaped strings they will be escaped again
*/
foreach($this->attributes as $attrs){
if(get_magic_quotes_gpc()){
- $smarty->assign($attrs,stripslashes($this->$attrs));
+ $smarty->assign($attrs,htmlentities (stripslashes(utf8_decode($this->$attrs))));
}else{
- $smarty->assign($attrs,($this->$attrs));
+ $smarty->assign($attrs,htmlentities (utf8_decode($this->$attrs)));
}
}
+ $c_dn = $this->acl_base_for_current_object($this->dn);
+ $smarty->assign("is_createable", preg_match("/c/",$this->ui->get_permissions($c_dn,"fai/faiVariableEntry")) && $this->FAIstate!="freeze");
+ $smarty->assign("is_removeable", preg_match("/d/",$this->ui->get_permissions($c_dn,"fai/faiVariableEntry")) && $this->FAIstate!="freeze");
+
+ $tmp = $this->plInfo();
+ foreach($tmp['plProvidedAcls'] as $name => $translation) {
+ $smarty->assign($name."ACL",$this->getacl($name));
+ }
+
$display.= $smarty->fetch(get_template_path('faiVariable.tpl', TRUE));
return($display);
*/
function remove_from_parent()
{
- $ldap = $this->config->get_ldap_link();
- $ldap->cd ($this->dn);
- $ldap->rmdir_recursive($this->dn);
- $this->handle_post_events("remove");
+ if($this->acl_is_removeable()){
+ $ldap = $this->config->get_ldap_link();
+ $ldap->cd ($this->dn);
+
+ $use_dn = preg_replace("/".normalizePreg(get_release_dn($this->dn))."/i", $_SESSION['faifilter']['branch'], $this->dn);
+ if($_SESSION['faifilter']['branch'] == "main"){
+ $use_dn = $this->dn;
+ }
+
+ prepare_to_save_FAI_object($use_dn,array(),true);
+
+ foreach($this->SubObjects as $name => $obj){
+ $use_dn = preg_replace("/".normalizePreg(get_release_dn($this->dn))."/i", $_SESSION['faifilter']['branch'], $obj['dn']);
+ if($_SESSION['faifilter']['branch'] == "main"){
+ $use_dn = $obj['dn'];
+ }
+ prepare_to_save_FAI_object($use_dn,array(),true);
+ }
+ $this->handle_post_events("remove");
+ }
}
*/
function save_object()
{
- if(isset($_POST['FAIvariable_posted'])){
+ if((isset($_POST['FAIvariable_posted'])) && ($this->FAIstate != "freeze") ){
plugin::save_object();
foreach($this->attributes as $attrs){
if(isset($_POST[$attrs])){
/* Check supplied data */
function check()
{
- $message= array();
+ /* Call common method to give check the hook */
+ $message= plugin::check();
+
return ($message);
}
plugin::save();
$ldap = $this->config->get_ldap_link();
-
- $ldap->cat($this->dn);
- if($ldap->count()!=0){
- /* Write FAIscript to ldap*/
- $ldap->cd($this->dn);
- $ldap->modify($this->attrs);
- }else{
- /* Write FAIscript to ldap*/
- $ldap->cd(preg_replace('/^[^,]+,[^,]+,/', '', $this->dn));
- $ldap->create_missing_trees(preg_replace('/^[^,]+,/', '', $this->dn));
- $ldap->cd($this->dn);
- $ldap->add($this->attrs);
- }
- show_ldap_error($ldap->get_error());
+ prepare_to_save_FAI_object($this->dn,$this->attrs);
+ show_ldap_error($ldap->get_error(), sprintf(_("Saving of FAI/variable with dn '%s' failed."),$this->dn));
+
+ /* Do object tagging */
+ $this->handle_object_tagging();
/* Prepare FAIscriptEntry to write it to ldap
* First sort array.
$sub_dn = "cn=".$obj['cn'].",".$this->dn;
if($obj['status']=="new"){
- $ldap->cat($sub_dn);
+ $ldap->cat($sub_dn,array("objectClass"));
if($ldap->count()){
- $obj['status']="modify";
+ $obj['status']="edited";
}
}
-
+
+ /* Check if gosaAdministrativeUnitTag is required as object class */
+ if($obj['status'] == "edited"){
+ $ldap->cat($sub_dn,array("objectClass"));
+ $attrs = $ldap->fetch();
+ if(isset($attrs['objectClass'])){
+ if(in_array_ics("gosaAdministrativeUnitTag",$attrs['objectClass'])){
+ $tmp['objectClass'][] = "gosaAdministrativeUnitTag";
+ }
+ }
+ }
+
if($obj['status'] == "delete"){
- $ldap->cd($sub_dn);
- $ldap->rmdir_recursive($sub_dn);
+ prepare_to_save_FAI_object($sub_dn,array(),true);
$this->handle_post_events("remove");
}elseif($obj['status'] == "edited"){
- $ldap->cd($sub_dn);
- $ldap->modify($tmp);
+ prepare_to_save_FAI_object($sub_dn,$tmp);
$this->handle_post_events("modify");
}elseif($obj['status']=="new"){
-
- if($tmp['description'] == array()){
- unset($tmp['description']);
- }
-
- $ldap->cd(preg_replace('/^[^,]+,[^,]+,/', '', $sub_dn));
- $ldap->create_missing_trees(preg_replace('/^[^,]+,/', '', $sub_dn));
- $ldap->cd($sub_dn);
- $ldap->add($tmp);
+ prepare_to_save_FAI_object($sub_dn,$tmp);
$this->handle_post_events("add");
}
- show_ldap_error($ldap->get_error());
+
+ $this->handle_object_tagging($sub_dn, $this->gosaUnitTag);
}
}
+
+
+ /* Return plugin informations for acl handling */
+ function plInfo()
+ {
+ return (array(
+ "plShortName" => _("Variable"),
+ "plDescription" => _("FAI variable"),
+ "plSelfModify" => FALSE,
+ "plDepends" => array(),
+ "plPriority" => 22,
+ "plSection" => array("administration"),
+ "plCategory" => array("fai"),
+ "plProvidedAcls" => array(
+ "cn" => _("Name")." ("._("Read only").")",
+ "description" => _("Description"))
+ ));
+ }
}
// vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: