X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=gosa-core%2Finclude%2Fclass_CopyPasteHandler.inc;h=62f3e3702e01ee030248ed034f9f0735e35a1ff7;hb=f04b7b95f6468a806353f05cdd3faf97dd744d5c;hp=de292dd8c5900f974c48c7426f75a59b1af9963f;hpb=2b60d87556ddd4fbe7d3fe544dc844a8a9edab89;p=gosa.git
diff --git a/gosa-core/include/class_CopyPasteHandler.inc b/gosa-core/include/class_CopyPasteHandler.inc
index de292dd8c..62f3e3702 100644
--- a/gosa-core/include/class_CopyPasteHandler.inc
+++ b/gosa-core/include/class_CopyPasteHandler.inc
@@ -20,7 +20,7 @@
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*/
-define("LDAP_DUMP_PATH","/tmp/gosa");
+define("LDAP_DUMP_PATH","/var/cache/gosa/tmp");
class CopyPasteHandler {
@@ -61,20 +61,20 @@ class CopyPasteHandler {
* array['tab_class'] - Tab object that should be used to initialize the new object
* array['tab_object'] - Tab object name used to initialize correct object Type like USERTABS
*/
- function add_to_queue($dn,$action,$tab_class,$tab_object,$tab_acl_category)
+ function add_to_queue($dn,$action,$tab_class,$tab_object,$tab_acl_category,&$parent = NULL)
{
- if(!class_exists($tab_class)){
- trigger_error(sprintf("Specified class object '%s' does not exists.",$tab_class));
+ if(!class_available($tab_class)){
+ trigger_error(sprintf("Specified class object %s does not exists.", bold($tab_class)));
return(FALSE);
}
if(!isset($this->config->data['TABS'][$tab_object])){
- trigger_error(sprintf("Specified tab object '%s' does not exists.",$tab_object));
+ trigger_error(sprintf("Specified tab object %s does not exists.", bold($tab_object)));
return(FALSE);
}
if(!in_array($action,array("cut","copy"))){
- trigger_error(sprintf("Specified action '%s' does not exists for copy & paste.",$action));
+ trigger_error(sprintf("Specified action %s does not exists for copy & paste.", bold($action)));
return(FALSE);
}
@@ -86,6 +86,7 @@ class CopyPasteHandler {
$tmp['tab_class'] = $tab_class;
$tmp['tab_object']= $tab_object;
$tmp['tab_acl_category']= $tab_acl_category;
+ $tmp['parent'] = $parent;
$this->queue[] = $tmp;
$this->require_update = TRUE;
}
@@ -111,19 +112,19 @@ class CopyPasteHandler {
/* Create patch if it doesn't exists */
if(!is_dir(LDAP_DUMP_PATH)){
@mkdir(LDAP_DUMP_PATH);
+
+ /* Update folder permissions */
+ if(!@chmod(LDAP_DUMP_PATH,0700)){
+ $msg= sprintf(_("Copy and paste failed!")."
"._("Error").": "._("Cannot set permission for %s"), bold(LDAP_DUMP_PATH));
+ msg_dialog::display(_("Configuration error"), $msg, ERROR_DIALOG);
+ new log("copy","all/all","copy & paste, event queue.",array(), $msg);
+ return(FALSE);
+ }
}
-
- /* Update folder permissions */
- if(!@chmod(LDAP_DUMP_PATH,0700)){
- $msg= sprintf(_("Copy and paste failed!")."
"._("Error").": "._("Cannot set permission for '%s'")."" ,LDAP_DUMP_PATH);
- msg_dialog::display(_("Configuration error"), $msg, ERROR_DIALOG);
- new log("copy","all/all","copy & paste, event queue.",array(), $msg);
- return(FALSE);
- }
/* check if we are able to create a new file the given directory */
if(!is_writeable(LDAP_DUMP_PATH)){
- $msg= _("Copy and paste failed!")."
"._("Error").": ".msgPool::cannotWrite(LDAP_DUMP_PATH)."";
+ $msg= _("Copy and paste failed!")."
"._("Error").": ".msgPool::cannotWriteFile(LDAP_DUMP_PATH)."";
msg_dialog::display(_("Configuration error"), $msg, ERROR_DIALOG);
new log("copy","all/all","copy & paste, event queue.",array(), $msg);
return(FALSE);
@@ -155,7 +156,7 @@ class CopyPasteHandler {
/* Check if given dn is valid and ldap search was succesfull */
if(!$res){
- $msg= sprintf(_("Copy and paste failed!")."
"._("Error").": "._("'%s' is no vaild LDAP object"), LDAP::fix($dn));
+ $msg= sprintf(_("Copy and paste failed!")."
"._("Error").": "._("'%s' is no valid LDAP object"), bold(LDAP::fix($dn)));
msg_dialog::display(_("Internal error"), $msg, ERROR_DIALOG);
new log("copy","all/all",$dn,array(), $msg);
return(FALSE);
@@ -172,20 +173,12 @@ class CopyPasteHandler {
/* check if we are able to create a new file the given directory */
if(!is_writeable($path)){
- $msg= sprintf(_("Copy and paste failed!")."
"._("Error").": "._("No write permission in '%s'"),LDAP_DUMP_PATH);
+ $msg= sprintf(_("Copy and paste failed!")."
"._("Error").": "._("No write permission in '%s'"), bold(LDAP_DUMP_PATH));
msg_dialog::display(_("Configuration error"), $msg, ERROR_DIALOG);
new log("copy","all/all",$dn,array(), $msg);
return(FALSE);
}
- /* Update folder permissions */
- if(!@chmod(LDAP_DUMP_PATH,0700)){
- $msg= sprintf(_("Copy and paste failed!")."
"._("Error").": "._("Cannot set permission for '%s'"),LDAP_DUMP_PATH);
- msg_dialog::display(_("Configuration error"), $msg, ERROR_DIALOG);
- new log("copy","all/all","copy & paste, event queue.",array(), $msg);
- return(FALSE);
- }
-
/* Create file handle */
$fp = @fopen($path."/".$filename,"w+");
if(!$fp){
@@ -195,6 +188,14 @@ class CopyPasteHandler {
return(FALSE);
}
+ /* Update folder permissions */
+ if(!@chmod($path."/".$filename,0700)){
+ $msg= sprintf(_("Copy and paste failed!")."
"._("Error").": "._("Cannot set permission for '%s'"), bold(LDAP_DUMP_PATH));
+ msg_dialog::display(_("Configuration error"), $msg, ERROR_DIALOG);
+ new log("copy","all/all","copy & paste, event queue.",array(), $msg);
+ return(FALSE);
+ }
+
$data = serialize($ldap->fetch());
fwrite($fp,$data,strlen($data));
fclose($fp);
@@ -223,6 +224,7 @@ class CopyPasteHandler {
$tab_c = $entry['tab_class'];
$tab_o = $entry['tab_object'];
$tab_a = $entry['tab_acl_category'];
+ $parent = $entry['parent'];
if($entry['method'] == "copy"){
$entry['object'] = new $tab_c($this->config,$this->config->data['TABS'][$tab_o],"new",$tab_a);
@@ -230,6 +232,9 @@ class CopyPasteHandler {
$entry['object'] = new $tab_c($this->config,$this->config->data['TABS'][$tab_o],$entry['dn'],$tab_a);
}
+ if($parent ){
+ $entry['object']->parent = $parent;
+ }
$entry['source_data'] = $this->load_attributes_from_hdd($entry['file_name']);
if($entry['method'] == "copy"){
@@ -291,18 +296,29 @@ class CopyPasteHandler {
/* Put each queued object in one of the above arrays
*/
foreach($this->queue as $key => $entry){
-
+
/* Update entries on demand
*/
if(!isset($entry['object'])){
$entry = $this->load_entry_from_queue($entry);
$this->queue[$key] = $entry;
}
+ $entry= $this->_update_vars($entry);
$msgs = $entry['object']->check();
- $acl = $ui->get_category_permissions($entry['dn'], $entry['tab_acl_category']);
+
+ /* To copy an object we require full read access to the object category
+ */
+ $copy_acl = preg_match("/r/",$ui->has_complete_category_acls($entry['dn'], $entry['tab_acl_category']));
+
+ /* In order to copy an object we require read an delete acls
+ */
+ $cut_acl = preg_match("/d/",$ui->has_complete_category_acls($entry['dn'], $entry['tab_acl_category']));
+ $cut_acl &= preg_match("/r/",$ui->has_complete_category_acls($entry['dn'], $entry['tab_acl_category']));
/* Check permissions */
- if(!preg_match("/((c|w)|(w|c))/",$acl)){
+ if($entry['method'] == "copy" && !$copy_acl){
+ $this->disallowed_objects[$key] = $entry;
+ }elseif($entry['method'] == "cut" && !$cut_acl){
$this->disallowed_objects[$key] = $entry;
}elseif(!count($msgs)){
$this->clean_objects[$key] = $entry;
@@ -310,6 +326,13 @@ class CopyPasteHandler {
$this->objects_to_fix[$key] = $entry;
}
}
+ if(count($this->disallowed_objects)){
+ $dns = array();
+ foreach($this->disallowed_objects as $entry){
+ $dns[] = $entry['dn'];
+ }
+# msg_dialog::display(_("Permission"),msgPool::permCreate($dns),INFO_DIALOG);
+ }
$this->require_update = FALSE;
}
@@ -329,21 +352,25 @@ class CopyPasteHandler {
$this->lastdn = $this->current['object']->dn;
$this->current= $this->_update_vars($this->current);
$this->current['object']->save();
+ $this->handleReferences();
$this->current = FALSE;
}
}
/* Save edited entry and force loading new one
*/
- if(isset($_POST['PerformCopyPaste']) && $this->current){
+ if(isset($this->current['object']) && method_exists($this->current['object'],"saveCopyDialog")) {
$this->current['object']->saveCopyDialog();
+ }
+
+ if(isset($_POST['PerformCopyPaste']) && $this->current){
$msgs = $this->check();
/* Load next queue entry */
if(!count($msgs)){
- $this->lastdn = $this->current['object']->dn;
- $this->current= $this->_update_vars($this->current);
$this->current['object']->save();
+ $this->handleReferences();
+ $this->lastdn = $this->current['object']->dn;
$this->current = FALSE;
}else{
foreach( $msgs as $msg){
@@ -378,6 +405,7 @@ class CopyPasteHandler {
$key = key($this->objects_to_fix);
if(isset($this->objects_to_fix[$key])){
$this->current = $this->objects_to_fix[$key];
+ $this->current= $this->_update_vars($this->current);
unset($this->objects_to_fix[$key]);
unset($this->queue[$key]);
}
@@ -389,7 +417,8 @@ class CopyPasteHandler {
$smarty->assign("AttributesToFix",$this->generateAttributesToFix());
$smarty->assign("SubDialog",$this->current['object']->SubDialog);
$smarty->assign("objectDN",$this->current['source_data']['dn']);
- $smarty->assign("message", sprintf(_("This object will be pasted: %s"), "
".$this->current['source_data']['dn']));
+ $smarty->assign("message", sprintf(_("This object will be pasted: %s"), "
".
+ bold(@LDAP::fix($this->current['source_data']['dn']))));
return($smarty->fetch(get_template_path("copyPasteDialog.tpl",FALSE)));
}
}
@@ -452,6 +481,10 @@ class CopyPasteHandler {
/* Update all attributes specified with SetVar */
foreach($this->setvar_array as $name => $value){
+
+ /* Do not update parent for plugins, this may break things */
+ if($name == "parent") continue;
+
if(isset($entry['object']->by_object[$key]->$name)){
$entry['object']->by_object[$key]->$name = $value;
}
@@ -474,6 +507,60 @@ class CopyPasteHandler {
}
+ function handleReferences()
+ {
+ $dst_dn = $this->current['object']->dn;
+ $src_dn = $this->current['dn'];
+
+ // Only copy references if required
+ if($this->current['method'] != 'copy') return;
+
+ // Migrate objectgroups
+ $ogroups = get_sub_list("(&(objectClass=gosaGroupOfNames)(member=".LDAP::prepare4filter(LDAP::fix($src_dn))."))",
+ "ogroups", array(get_ou("group", "ogroupRDN")),$this->config->current['BASE'],array("dn"), GL_SUBSEARCH | GL_NO_ACL_CHECK);
+
+ // Walk through all objectGroups
+ foreach($ogroups as $ogroup){
+ $o_ogroup= new ogroup($this->config,$ogroup['dn']);
+ $o_ogroup->member[$dst_dn]= $dst_dn;
+ $o_ogroup->save();
+ }
+
+ // Update roles
+ $roles = get_sub_list("(&(objectClass=organizationalRole)(roleOccupant=".LDAP::prepare4filter(LDAP::fix($src_dn))."))",
+ "roles", array(get_ou("roleGeneric", "roleRDN")),$this->config->current['BASE'],array("dn"), GL_SUBSEARCH | GL_NO_ACL_CHECK);
+
+ // Walk through all roles
+ foreach($roles as $role){
+ $role = new roleGeneric($this->config,$role['dn']);
+ $role->roleOccupant[] = $dst_dn;
+ $role->save();
+ }
+
+ // Update groups
+ if(isset($this->current['object']->uid) && !empty($this->current['object']->uid)){
+
+ $ldap = $this->config->get_ldap_link();
+ $ldap->cd($this->config->current['BASE']);
+ $ldap->cat($src_dn);
+ $attrs = $ldap->fetch();
+ if(isset($attrs['uid'][0])){
+ $suid = $attrs['uid'][0];
+
+ $uid = $this->current['object']->uid;
+ $groups = get_sub_list("(&(objectClass=posixGroup)(memberUid={$suid}))",
+ "groups",array(get_ou("core", "groupRDN")),$this->config->current['BASE'],array("dn"), GL_SUBSEARCH | GL_NO_ACL_CHECK);
+
+ // Walk through all POSIX groups
+ foreach($groups as $group){
+ $o_group= new group($this->config,$group['dn']);
+ $o_group->addUser($uid);
+ $o_group->save();
+ }
+ }
+ }
+ }
+
/* returns the paste icon for headpages */
function generatePasteIcon()
{