![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
diff --git a/plugins/admin/ogroups/class_ogroupManagement.inc b/plugins/admin/ogroups/class_ogroupManagement.inc
index f3a3ad2593eb9f6bb10cf2e6821a0b876f9d1251..14f9d9f97ef32540864659651ec9f2c68da3525b 100644 (file)
Variable intialisation && Check posts for commands
****************/
- $_SESSION['LOCK_VARS_TO_USE'] = array("/^act$/","/^id$/","/^group_edit_/","/^group_del_/");
+ $_SESSION['LOCK_VARS_TO_USE'] = array("/^act$/","/^id$/","/^group_edit_/","/^group_del_/","/^item_selected/","/^remove_multiple_ogroups/");
$smarty = get_smarty();
$s_action = "";
// Post for new
}elseif(preg_match("/^group_new.*/",$key)){
$s_action="new";
- }elseif(preg_match("/^group_tplnew.*/i",$key)){
- $s_action="new_tpl";
- }elseif(preg_match("/^group_chgpw.*/i",$key)){
- $s_action="change_pw";
- $s_entry = preg_replace("/group_chgpw_/i","",$key);
}elseif(preg_match("/^editPaste.*/i",$key)){
$s_action="editPaste";
}elseif(preg_match("/^copy_.*/",$key)){
}elseif(preg_match("/^cut_.*/",$key)){
$s_action="cut";
$s_entry = preg_replace("/^cut_/i","",$key);
+ }elseif(preg_match("/^remove_multiple_ogroups/",$key)){
+ $s_action="del_multiple";
}elseif(preg_match("/_group_edit_/",$key)){
$type = preg_replace("/_group_edit_.*$/","",$key);
$s_action="edit";
}
+ /********************
+ Delete MULTIPLE entries requested, display confirm dialog
+ ********************/
+ if ($s_action=="del_multiple"){
+ $ids = $this->list_get_selected_items();
+ if(count($ids)){
+ foreach($ids as $id){
+ $dn = $this->ogrouplist[$id]['dn'];
+ if (($user= get_lock($dn)) != ""){
+ return(gen_locked_message ($user, $dn));
+ }
+ $this->dns[$id] = $dn;
+ }
+ $dns_names = "<br><pre>";
+ foreach($this->dns as $dn){
+ add_lock ($dn, $this->ui->dn);
+ $dns_names .= $dn."\n";
+ }
+ $dns_names .="</pre>";
+ /* Lock the current entry, so nobody will edit it during deletion */
+ if (count($this->dns) == 1){
+ $smarty->assign("info", sprintf(_("You're about to delete the following object entry %s"), @LDAP::fix($dns_names)));
+ } else {
+ $smarty->assign("info", sprintf(_("You're about to delete the following object entries %s"), @LDAP::fix($dns_names)));
+ }
+ $smarty->assign("multiple", true);
+ return($smarty->fetch(get_template_path('remove.tpl', TRUE)));
+ }
+ }
+
+
+ /********************
+ Delete MULTIPLE entries confirmed
+ ********************/
+
+ /* Confirmation for deletion has been passed. Users should be deleted. */
+ if (isset($_POST['delete_multiple_ogroup_confirm'])){
+
+ /* Remove user by user and check acls before removeing them */
+ foreach($this->dns as $key => $dn){
+
+ $acl = $this->ui->get_permissions($dn, "ogroups");
+ if (preg_match('/d/', $acl)){
+
+ /* Delete request is permitted, perform LDAP action */
+ $this->ogroup= new ogrouptabs($this->config,$this->config->data['TABS']['OGROUPTABS'], $dn);
+ $this->ogroup->delete ();
+ unset ($this->ogroup);
+ $this->ogroup= NULL;
+ } else {
+
+ /* Normally this shouldn't be reached, send some extra
+ logs to notify the administrator */
+ print_red (_("You are not allowed to delete this object group!"));
+ new log("security","ogroups/".get_class($this),$dn,array(),"Tried to trick deletion.");
+ }
+ /* Remove lock file after successfull deletion */
+ del_lock ($dn);
+ unset($this->dns[$key]);
+ }
+ }
+
+
+ /********************
+ Delete MULTIPLE entries Canceled
+ ********************/
+
+ /* Remove lock */
+ if(isset($_POST['delete_multiple_ogroup_cancel'])){
+ foreach($this->dns as $key => $dn){
+ del_lock ($dn);
+ unset($this->dns[$key]);
+ }
+ }
+
+
/****************
Delete object group
****************/
/* Load permissions for selected 'dn' and check if
we're allowed to remove this 'dn' */
- $acl = $this->ui->get_permissions($this->dn,"ogroup");
+ $acl = $this->ui->get_permissions($this->dn,"ogroups");
if(preg_match("/d/",$acl)){
/* Check locking, save current plugin in 'back_plugin', so
/* Lock the current entry, so nobody will edit it during deletion */
add_lock ($this->dn, $this->ui->dn);
$smarty->assign("info", sprintf(_("You're about to delete the object group '%s'."), @LDAP::fix($this->dn)));
+ $smarty->assign("multiple", false);
return($smarty->fetch(get_template_path('remove.tpl', TRUE)));
} else {
/* Some nice guy may send this as POST, so we've to check
for the permissions again. */
- $acl = $this->ui->get_permissions($this->dn,"groups");
+ $acl = $this->ui->get_permissions($this->dn,"ogroups");
if(preg_match("/d/",$acl)){
/* Delete request is permitted, perform LDAP action */
$this->ogroup= new ogrouptabs($this->config,
$this->config->data['TABS']['OGROUPTABS'], $this->dn);
- $this->ogroup->set_acl(array($this->acl));
$this->ogroup->delete ();
- gosa_log ("Object group'".$this->dn."' has been removed");
unset ($this->ogroup);
$this->ogroup= NULL;
} else {
/* Normally this shouldn't be reached, send some extra
logs to notify the administrator */
print_red (_("You are not allowed to delete this object group!"));
- gosa_log ("Warning: '".$this->ui->uid."' tried to trick group deletion.");
+ new log("security","ogroups/".get_class($this),$dn,array(),"Tried to trick deletion.");
}
/* Remove lock file after successfull deletion */
/* Save user data to ldap */
$this->ogroup->save();
- gosa_log ("Object group'".$this->dn."' has been saved");
if (!isset($_POST['edit_apply'])){
/* Group has been saved successfully, remove lock from
****************/
/* Cancel dialogs */
- if (isset($_POST['edit_cancel'])){
+ if ((isset($_POST['edit_cancel'])) && (isset($this->ogroup->dn))){
del_lock ($this->ogroup->dn);
unset ($this->ogroup);
$this->ogroup= NULL;
/* Add departments if subsearch is disabled */
if(!$this->DivListOGroup->SubSearch){
- $this->DivListOGroup->AddDepartments($this->DivListOGroup->selectedBase,4);
+ $this->DivListOGroup->AddDepartments($this->DivListOGroup->selectedBase,4,1);
}
$this->reload ();
$this->DivListOGroup->setEntries($this->ogrouplist);
$p1['tit']= $conv[$type[0]][1];
$p1['alt']= $type[0];
$p1['lnk']= $conv[$type[0]][2];
+ $html_object_1 = "<input type='image' name='".$p1['lnk']."_group_edit_%KEY' ";
} else {
$p1['pic']= "empty.png";
$p1['tit']= "";
$p1['alt']= "";
$p1['lnk']= "";//$conv[$type[0]][2];
+ $html_object_1 = "<img ";
}
if (isset($type[1])){
$p2['alt']= $type[1];
$p2['tit']= $conv[$type[1]][1];
$p2['lnk']= $conv[$type[1]][2];
+ $html_object_2 = "<input type='image' name='".$p2['lnk']."_group_edit_%KEY' ";
} else {
$p2['pic']= "empty.png";
$p2['alt']= "";
$p2['tit']= "";
$p2['lnk']= ""; //$conv[$type[0]][2];
+ $html_object_2 = "<img ";
}
- $temp = "<input type='image' name='".$p1['lnk']."_group_edit_%KEY' class='center'
+
+ $temp = $html_object_1." class='center' id='iconA".preg_replace("/_/","",$p1['lnk']."_group_edit_%KEY")."'
src='images/".$p1['pic']."' alt='".$p1['alt']."' title='".$p1['tit']."'>";
- $temp.= "<input type='image' name='".$p2['lnk']."_group_edit_%KEY'class='center'
+ $temp.= $html_object_2." class='center' id='iconB".preg_replace("/_/","",$p2['lnk']."_group_edit_%KEY")."'
src='images/".$p2['pic']."' alt='".$p2['alt']."' title='".$p2['tit']."'>";
return ($temp);
}
}
+ function list_get_selected_items()
+ {
+ $ids = array();
+ foreach($_POST as $name => $value){
+ if(preg_match("/^item_selected_[0-9]*$/",$name)){
+ $id = preg_replace("/^item_selected_/","",$name);
+ $ids[$id] = $id;
+ }
+ }
+ return($ids);
+ }
+
+
function copyPasteHandling($s_action,$s_entry)
{
if($this->CopyPasteHandler){
/* Copy current object to CopyHandler
*/
if($s_action == "copy"){
+
+
$this->CopyPasteHandler->Clear();
$dn = $this->ogrouplist[$s_entry]['dn'];
- $obj = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $dn);
- $objNew = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], "new");
- $types_of_tabs = $obj->by_object['ogroup']->gosaGroupObjects;
- $objNew->by_object['ogroup']->gosaGroupObjects = $types_of_tabs;
- $objNew->reload($types_of_tabs);
+ /* Check acls */
+ $acl_all= $this->ui->has_complete_category_acls($dn,"ogroups");
+ if(preg_match("/(c.*w|w.*c)/",$acl_all)){
+ $obj = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $dn);
+ $objNew = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], "new");
- $this->CopyPasteHandler->Copy($obj,$objNew);
+ $types_of_tabs = $obj->by_object['ogroup']->gosaGroupObjects;
+ $objNew->by_object['ogroup']->gosaGroupObjects = $types_of_tabs;
+ $objNew->reload($types_of_tabs);
+
+ $this->CopyPasteHandler->Copy($obj,$objNew);
+ }
}
/* Copy current object to CopyHandler
if($s_action == "cut"){
$this->CopyPasteHandler->Clear();
$dn = $this->ogrouplist[$s_entry]['dn'];
- $obj = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $dn);
- $this->CopyPasteHandler->Cut($obj);
+
+ /* Check acls */
+ $acl_all= $this->ui->has_complete_category_acls($dn,"ogroups");
+ if(preg_match("/(c.*w|w.*c)/",$acl_all)){
+ $obj = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $dn);
+ $this->CopyPasteHandler->Cut($obj);
+ }
}
}
}