X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=gosa-core%2Fplugins%2Fadmin%2Fusers%2Fclass_userManagement.inc;h=be15e04cdb2e1ea03ce37c7bcd84d950a7f875ee;hb=cfddd912c0b9af530fbac827c9b2714e884a0e2d;hp=570fe8b48d8a0567a97b26bd0fa425c8065ea9c6;hpb=093c94961995884b572b5c8c6452282a840aabea;p=gosa.git diff --git a/gosa-core/plugins/admin/users/class_userManagement.inc b/gosa-core/plugins/admin/users/class_userManagement.inc index 570fe8b48..be15e04cd 100644 --- a/gosa-core/plugins/admin/users/class_userManagement.inc +++ b/gosa-core/plugins/admin/users/class_userManagement.inc @@ -28,6 +28,12 @@ class userManagement extends management var $sn = ""; var $givenName = ""; + var $uid = ""; + var $got_uid = ""; + var $edit_uid = ""; + + var $pwd_change_queue = array(); + var $force_hash_type = array(); // Tab definition protected $tabClass = "usertabs"; @@ -40,174 +46,431 @@ class userManagement extends management { $this->config = $config; $this->ui = $ui; - + + $this->storagePoints = array(get_ou("userRDN")); + // Build filter - $filter = new filter(get_template_path("user-filter.xml", true)); - $filter->setObjectStorage("ou=people,"); + if (session::global_is_set(get_class($this)."_filter")){ + $filter= session::global_get(get_class($this)."_filter"); + } else { + $filter = new filter(get_template_path("user-filter.xml", true)); + $filter->setObjectStorage($this->storagePoints); + } + $this->setFilter($filter); // Build headpage $headpage = new listing(get_template_path("user-list.xml", true)); $headpage->registerElementFilter("lockLabel", "userManagement::filterLockLabel"); $headpage->registerElementFilter("lockImage", "userManagement::filterLockImage"); + $headpage->registerElementFilter("filterProperties", "userManagement::filterProperties"); $headpage->setFilter($filter); - $this->cpHandler = new CopyPasteHandler($this->config); - $this->snapHandler = new SnapshotHandler($this->config); - parent::__construct($config, $ui, "users", $headpage); - - $this->registerAction("new", "newEntry"); - $this->registerAction("edit", "editEntry"); - $this->registerAction("apply", "applyChanges"); - $this->registerAction("save", "saveChanges"); - $this->registerAction("cancel", "cancelEdit"); - $this->registerAction("remove", "removeEntryRequested"); - $this->registerAction("removeConfirmed", "removeEntryConfirmed"); + // Add copy&paste and snapshot handler. + if ($this->config->boolValueIsTrue("main", "copyPaste")){ + $this->cpHandler = new CopyPasteHandler($this->config); + } + if($this->config->get_cfg_value("enableSnapshots") == "true"){ + $this->snapHandler = new SnapshotHandler($this->config); + } - $this->registerAction("copy", "copyPasteHandler"); - $this->registerAction("cut", "copyPasteHandler"); - $this->registerAction("paste", "copyPasteHandler"); + parent::__construct($config, $ui, "users", $headpage); // Register special user actions $this->registerAction("lock", "lockEntry"); - $this->registerAction("unlock", "alert"); + $this->registerAction("lockUsers", "lockUsers"); + $this->registerAction("unlockUsers", "lockUsers"); $this->registerAction("new_template", "newTemplate"); $this->registerAction("newfromtpl", "newUserFromTemplate"); $this->registerAction("templateContinue", "templateContinue"); + $this->registerAction("templatize", "templatizeUsers"); + $this->registerAction("templatizeContinue", "templatizeContinue"); + + $this->registerAction("password", "changePassword"); + $this->registerAction("passwordQueue", "handlePasswordQueue"); + $this->registerAction("passwordCancel", "closeDialogs"); + + $this->registerAction("sendMessage", "sendMessage"); + $this->registerAction("saveEventDialog", "saveEventDialog"); + $this->registerAction("abortEventDialog", "closeDialogs"); + + // Register shortcut icon actions + $this->registerAction("edit_user","editEntry"); + $this->registerAction("edit_posixAccount","editEntry"); + $this->registerAction("edit_mailAccount","editEntry"); + $this->registerAction("edit_sambaAccount","editEntry"); + $this->registerAction("edit_netatalk","editEntry"); + $this->registerAction("edit_environment","editEntry"); + $this->registerAction("edit_gofaxAccount","editEntry"); + $this->registerAction("edit_phoneAccount","editEntry"); } + // Inject user actions function detectPostActions() { $action = management::detectPostActions(); if(isset($_POST['template_continue'])) $action['action'] = "templateContinue"; + if(isset($_POST['templatize_continue'])) $action['action'] = "templatizeContinue"; + if(isset($_POST['save_event_dialog'])) $action['action'] = "saveEventDialog"; + if(isset($_POST['abort_event_dialog'])) $action['action'] = "abortEventDialog"; + if(isset($_POST['password_cancel'])){ + $action['action'] = "passwordCancel"; + }elseif((count($this->pwd_change_queue) || isset($_POST['password_finish']))){ + $action['action'] = "passwordQueue"; + } return($action); } - function lockEntry($action,$entry) + function editEntry($action="",$target=array(),$all=array(), $altTabClass ="", $altTabType = "", $altAclCategory="") { - $disallowed = array(); - $dns = array(); - foreach($entry as $dn){ - if (!preg_match("/w/",$this->ui->get_permissions($dn,"users/password"))){ - $disallowed[] = $dn; + $str = management::editEntry($action,$target); + if($str) return($str); + + if(preg_match("/^edit_/",$action)){ + $tab = preg_replace("/^edit_/","",$action); + if(isset($this->tabObject->by_object[$tab])){ + $this->tabObject->current = $tab; }else{ - $allowed[] = $dn; + trigger_error("Unknown tab: ".$tab); } } - if(count($disallowed)){ - msg_dialog::display(_("Permission"),msgPool::permDelete($disallowed),INFO_DIALOG); - } - $ldap = $this->config->get_ldap_link(); - foreach($allowed as $dn){ - $ldap->cat($dn, array('userPassword')); - if($ldap->count() == 1){ - $val = $ldap->fetch(); - $pwd = $val['userPassword'][0]; - $method = passwordMethod::get_method($pwd,$val['dn']); - $success= false; - if($method instanceOf passwordMethod){ - if($method->is_locked($this->config,$val['dn'])){ - $success= $method->unlock_account($this->config,$val['dn']); - }else{ - $success= $method->lock_account($this->config,$val['dn']); - } + } - /* Check for success */ - if (!$success){ - $hn= $method->get_hash_name(); - if (is_array($hn)){ - $hn= $hn[0]; - } - msg_dialog::display(_("Account locking"), - sprintf(_("Password method '%s' does not support locking. Account has not been locked!"), $hn),WARNING_DIALOG); - } - }else{ - // Can't lock unknown methods. + + function closeDialogs() + { + management::closeDialogs(); + $this->pwd_change_queue = array(); + } + + + /*! \brief Sends a message to a set of users using gosa-si events. + */ + function sendMessage($action="",$target=array(),$all=array()) + { + if(class_available("DaemonEvent")){ + $uids = array(); + $ldap = $this->config->get_ldap_link(); + $ldap->cd($this->config->current['BASE']); + foreach($target as $dn){ + $ldap->cat($dn,array('uid')); + $attrs = $ldap->fetch(); + if(isset($attrs['uid'][0])){ + $uids[] = $attrs['uid'][0]; + } + } + if(count($uids)){ + $events = DaemonEvent::get_event_types(USER_EVENT); + $event = "DaemonEvent_notify"; + if(isset($events['BY_CLASS'][$event])){ + $type = $events['BY_CLASS'][$event]; + $this->dialogObject = new $type['CLASS_NAME']($this->config); + $this->dialogObject->add_users($uids); + $this->dialogObject->set_type(SCHEDULED_EVENT); } } } } - function alert($action,$values) + /*! \brief Sends a message to a set of users using gosa-si events. + */ + function saveEventDialog() { - print_a(array($action,$values)); + $this->dialogObject->save_object(); + $msgs = $this->dialogObject->check(); + if(count($msgs)){ + msg_dialog::displayChecks($msgs); + }else{ + $o_queue = new gosaSupportDaemon(); + $o_queue->append($this->dialogObject); + if($o_queue->is_error()){ + msg_dialog::display(_("Infrastructure error"), msgPool::siError($o_queue->get_error()),ERROR_DIALOG); + } + $this->closeDialogs(); + } } + + /*! \brief Intiates template creation. + */ function newTemplate($action,$entry) { $this->newEntry(); $this->tabObject->set_template_mode (); } - - function templateContinue() + + /*! \brief Queues a set of users for password changes + */ + function changePassword($action="",$target=array(),$all=array()) + { + $this->dn =""; + $this->pwd_change_queue = $target; + + // Check permisions + $disallowed = array(); + foreach($this->pwd_change_queue as $key => $dn){ + if(!preg_match("/w/",$this->ui->get_permissions($dn,$this->aclCategory."/password"))){ + unset($this->pwd_change_queue[$key]); + $disallowed[] = $dn; + } + } + if(count($disallowed)){ + msg_dialog::display(_("Permission"),msgPool::permModify($disallowed),INFO_DIALOG); + } + + // Now display change dialog. + return($this->handlePasswordQueue()); + } + + + function handlePasswordQueue() { - $smarty = get_smarty(); + // Get next entry from queue. + if(empty($this->dn) && count($this->pwd_change_queue)){ + $this->dn = array_pop($this->pwd_change_queue); + set_object_info($this->dn); + $smarty = get_smarty(); + return ($smarty->fetch(get_template_path('password.tpl', TRUE))); + } + + // Check permissions + $dn = $this->dn; + $acl = $this->ui->get_permissions($dn, "users/password"); + $cacl= $this->ui->get_permissions($dn, "users/user"); + if (preg_match('/w/', $acl) || preg_match('/c/', $cacl)){ + $message= array(); + if ($_POST['new_password'] != $_POST['repeated_password']){ + $message[]= _("The passwords you've entered as 'New password' and 'Repeated new password' do not match."); + } else { + if ($_POST['new_password'] == ""){ + $message[] = msgPool::required(_("New password")); + } + } + + // Display errors + if (count($message) != 0){ + msg_dialog::displayChecks($message); + $smarty = get_smarty(); + return($smarty->fetch(get_template_path('password.tpl', TRUE))); + } + + // Change cassword + if(isset($this->force_hash_type[$this->dn])){ + if(!change_password ($this->dn, $_POST['new_password'],0,$this->force_hash_type[$this->dn])){ + return($smarty->fetch(get_template_path('password.tpl', TRUE))); + } + }else{ + if(!change_password ($this->dn, $_POST['new_password'])){ + return($smarty->fetch(get_template_path('password.tpl', TRUE))); + } + } + if ($this->config->get_cfg_value("passwordHook") != ""){ + exec($this->config->get_cfg_value("passwordHook")." ".$username." ".$_POST['new_password'], $resarr); + } + new log("modify","users/".get_class($this),$this->dn,array(),"Password has been changed"); + $this->dn =""; + + } else { + msg_dialog::display(_("Password change"), + _("You have no permission to change this users password!"), + WARNING_DIALOG); + } + + // Cleanup + if(!count($this->pwd_change_queue)){ + $this->remove_lock(); + $this->closeDialogs(); + }else{ + return($this->handlePasswordQueue()); + } + } + + + /*! \brief Save user modifications. + * Whenever we save a 'new' user, request a password change for him. + */ + function saveChanges() + { + $str = management::saveChanges(); + + if(!empty($str)) return($str); + + if($this->last_tabObject instanceOf multi_plug){ + foreach($this->last_tabObject->a_handles as $user){ + if($user->password_change_needed()){ + $this->force_hash_type[$user->dn] = $user->by_object['user']->pw_storage; + $this->pwd_change_queue[] = $user->dn; + } + } + return($this->handlePasswordQueue()); + } + + if(isset($this->last_tabObject->by_object['user']) && $this->last_tabObject->by_object['user']->password_change_needed()){ + $this->force_hash_type[$this->last_tabObject->dn] = $this->last_tabObject->by_object['user']->pw_storage; + $this->pwd_change_queue[] = $this->last_tabObject->dn; + return($this->handlePasswordQueue()); + } + } + + function cancelEdit() + { + $str = management::cancelEdit(); + if(!empty($str)) return($str); + + if(isset($this->last_tabObject->by_object['user']) && + $this->last_tabObject->by_object['user']->dn != "new" && + $this->last_tabObject->by_object['user']->password_change_needed()){ + $this->force_hash_type[$this->last_tabObject->dn] = $this->last_tabObject->by_object['user']->pw_storage; + $this->pwd_change_queue[] = $this->last_tabObject->dn; + return($this->handlePasswordQueue()); + } + } + + + /*! \brief Intiates user creation. + * If we've user templates, then the user will be asked to use to use one. + * -> See 'templateContinue' for further handling. + */ + function newUserFromTemplate($action="",$target=array(),$all=array()) + { + // Call parent method, it knows whats to do, locking and so on ... + $str = management::newEntry($action,$target,$all); + if(!empty($str)) return($str); + + // Reset uid selection. + $this->got_uid= ""; + + // Use template if there are any of them $templates = array(); $templates['none']= _("none"); $templates = array_merge($templates,$this->get_templates()); - if (isset($_POST['template_continue'])){ - $message = array(); - if(!isset($_POST['template']) || (empty($_POST['template']))){ - $message[]= msgPool::invalid(_("Template")); - } - if(!isset($_POST['sn']) || (empty($_POST['sn']))){ - $message[]= msgPool::required(_("Name")); + // We've templates, so preset the current template and display the input dialog. + if (count($templates)){ + $smarty = get_smarty(); + foreach(array("sn", "givenName", "uid", "got_uid") as $attr){ + $smarty->assign("$attr", ""); } - if(!isset($_POST['givenName']) || (empty($_POST['givenName']))){ - $message[]= msgPool::required(_("Given name")); + $smarty->assign("template", array_pop($target)); + $smarty->assign("templates", $templates); + $smarty->assign("edit_uid", ""); + return($smarty->fetch(get_template_path('template.tpl', TRUE))); + + // -> See 'templateContinue' for further handling! + } + } + + + + /*! \brief Intiates user creation. + * If we've user templates, then the user will be asked + * if he wants to use one. + * -> See 'templateContinue' for further handling. + */ + function newEntry($action="",$target=array(),$all=array(), $altTabClass ="", $altTabType = "", $altAclCategory="") + { + + // Call parent method, it manages everything, locking, object creation... + $str = management::newEntry($action,$target,$all); + if(!empty($str)) return($str); + + // If we've at least one template, then ask the user if he wants to use one? + $templates = array(); + $templates['none']= _("none"); + $templates = array_merge($templates,$this->get_templates()); + + // Display template selection + if (count($templates) > 1){ + $smarty = get_smarty(); + + // Set default variables, normally empty. + foreach(array("sn", "givenName", "uid", "got_uid") as $attr){ + $smarty->assign($attr, ""); } + $smarty->assign("template", "none"); + $smarty->assign("templates", $templates); + $smarty->assign("edit_uid", ""); + return($smarty->fetch(get_template_path('template.tpl', TRUE))); - /* Show error message / continue editing */ - if (count($message) > 0){ - msg_dialog::displayChecks($message); + // -> See 'templateContinue' for further handling! + } + } - foreach(array("sn", "givenName", "uid", "template") as $attr){ - if(isset($_POST[$attr])){ - $smarty->assign("$attr", $_POST[$attr]); - }else{ - $smarty->assign("$attr", ""); - } + + /* !\brief This method is called whenever a template selection was displayed. + * Here we act on the use selection. + * - Does the user want to create a user from template? + * - Create user without template? + * - Input correct, every value given and valid? + */ + function templateContinue() + { + // Get the list of available templates. + $templates = array(); + $templates['none']= _("none"); + $templates = array_merge($templates,$this->get_templates()); + + // Input validation, if someone wants to create a user from a template + // then validate the given values. + $message = array(); + if(!isset($_POST['template']) || (empty($_POST['template']))){ + $message[]= msgPool::invalid(_("Template")); + } + if(!isset($_POST['sn']) || (empty($_POST['sn']))){ + $message[]= msgPool::required(_("Name")); + } + if(!isset($_POST['givenName']) || (empty($_POST['givenName']))){ + $message[]= msgPool::required(_("Given name")); + } + + /******************** + * 1 We've had input errors - Display errors and show input dialog again. + ********************/ + + if (count($message) > 0){ + msg_dialog::displayChecks($message); + + // Preset input fields with user input. + $smarty = get_smarty(); + foreach(array("sn", "givenName", "uid", "template") as $attr){ + if(isset($_POST[$attr])){ + $smarty->assign("$attr", get_post($attr)); + }else{ + $smarty->assign("$attr", ""); } - $smarty->assign("templates",$templates); - $smarty->assign("got_uid",$this->got_uid); - $smarty->assign("edit_uid",false); - return($smarty->fetch(get_template_path('template.tpl', TRUE))); } + + $smarty->assign("templates",$templates); + $smarty->assign("got_uid", $this->got_uid); + $smarty->assign("edit_uid",false); + return($smarty->fetch(get_template_path('template.tpl', TRUE))); } - /* Continue template editing */ + /******************** + * 2 There was a template selected, now ask for the uid. + ********************/ + if ($_POST['template'] != 'none' && !isset($_POST['uid'])){ + // Remember user input. + $smarty = get_smarty(); $this->sn = $_POST['sn']; $this->givenName = $_POST['givenName']; - /* Check for requred values */ - $message= array(); - if ($this->sn == "") { - $message[]= msgPool::required(_("Name")); - } - if ($this->givenName == "") { - $message[]= msgPool::required(_("Given name")); - } - - /* Check if dn is used */ + // Avoid duplicate entries, check if such a user already exists. $dn= preg_replace("/^[^,]+,/i", "", $_POST['template']); $ldap= $this->config->get_ldap_link(); $ldap->cd ($dn); $ldap->search ("(&(sn=".normalizeLdap($this->sn).")(givenName=".normalizeLdap($this->givenName)."))", array("givenName")); if ($ldap->count () != 0){ - msgPool::duplicated(_("Name")); - } + msg_dialog::displayChecks(array(msgPool::duplicated(_("Name")))); + }else{ - /* Show error message / continue editing */ - if (count($message) > 0){ - msg_dialog::displayChecks($message); - } else { + // Preset uid field by using the idGenerator $attributes= array('sn' => $this->sn, 'givenName' => $this->givenName); if ($this->config->get_cfg_value("idGenerator") != ""){ $uids= gen_uids ($this->config->get_cfg_value("idGenerator"), $attributes); @@ -223,6 +486,7 @@ class userManagement extends management $this->got_uid= true; } + // Assign user input foreach(array("sn", "givenName", "uid", "got_uid") as $attr){ $smarty->assign("$attr", $this->$attr); } @@ -233,76 +497,198 @@ class userManagement extends management return($smarty->fetch(get_template_path('template.tpl', TRUE))); } - /* No template. Ok. Lets fill data into the normal user dialog */ + + /******************** + * 3 No template - Ok. Lets fill the data into the user object and skip templating here. + ********************/ if ($_POST['template'] == 'none'){ foreach(array("sn", "givenName", "uid") as $attr){ if (isset($_POST[$attr])){ $this->tabObject->by_object['user']->$attr= $_POST[$attr]; } } - }elseif(isset($_POST['uid'])){ + + // The user Tab object is already instantiated, so just go back and let the + // management class do the rest. + return(""); + } - /* Move user supplied data to sub plugins */ + + /******************** + * 4 Template selected and uid given - Ok, then lets adapt tempalte values. + ********************/ + if(isset($_POST['uid'])){ + + // Move user supplied data to sub plugins foreach(array("uid","sn","givenName") as $attr){ $this->$attr = $_POST[$attr]; $this->tabObject->$attr = $this->$attr; $this->tabObject->by_object['user']->$attr = $this->$attr; } + // Adapt template values. $template_dn = $_POST['template']; $this->tabObject->adapt_from_template($template_dn, array("uid","cn","givenName","sn")); - $template_base = preg_replace("/^[^,]+,".preg_quote(get_people_ou(), '/')."/", '', $template_dn); + $template_base = preg_replace("/^[^,]+,".preg_quote(get_people_ou(), '/i')."/", '', $template_dn); $this->tabObject->by_object['user']->base= $template_base; + + // The user Tab object is already instantiated, so just go back and let the + // management class do the rest. + return(""); } } - function newUserFromTemplate($action,$entry) - { - // By default we set 'dn' to 'new', all relevant plugins will react on this. - $this->dn= "new"; - $this->got_uid= ($this->config->get_cfg_value("idGenerator") == ""); + /* !\brief This method applies a template to a set of users. + */ + function templatizeUsers($action="",$target=array(),$all=array()) + { + $this->dns = array(); + if(count($target)){ - $tab = $this->tabClass; - $this->tabObject= new $tab($this->config,$this->config->data['TABS'][$this->tabType], $this->dn, $this->aclCategory); - $this->tabObject->by_object['user']->base= $this->headpage->getBase(); - $this->tabObject->set_acl_base($this->headpage->getBase()); + // Get the list of available templates. + $templates = $this->get_templates(); - // Use template if there are any of them - $templates = array(); - $templates['none']= _("none"); - $templates = array_merge($templates,$this->get_templates()); - if (count($templates)){ - $smarty = get_smarty(); - foreach(array("sn", "givenName", "uid", "got_uid") as $attr){ - $smarty->assign("$attr", ""); + // Check entry locking + foreach($target as $dn){ + if (($user= get_lock($dn)) != ""){ + $this->dn = $dn; + return(gen_locked_message ($user, $dn)); + } + $this->dns[] = $dn; } - $smarty->assign("template", array_pop($entry)); + + // Display template + $smarty = get_smarty(); $smarty->assign("templates", $templates); - $smarty->assign("edit_uid", ""); - return($smarty->fetch(get_template_path('template.tpl', TRUE))); + return($smarty->fetch(get_template_path('templatize.tpl', TRUE))); + } + } + + + /* !\brief This method is called whenever the templatize dialog was used. + */ + function templatizeContinue() + { + // Template readable? + $template= get_post('template'); + $acl = $this->ui->get_permissions($template, $this->aclCategory."/".$this->aclPlugin); + if (preg_match('/r/', $acl)){ + $tab = $this->tabClass; + foreach ($this->dns as $dn){ + + // User writeable + $acl = $this->ui->get_permissions($dn, $this->aclCategory."/".$this->aclPlugin); + if (preg_match('/w/', $acl)){ + $this->tabObject= new $tab($this->config, $this->config->data['TABS'][$this->tabType], $dn, $this->aclCategory); + $this->tabObject->adapt_from_template($template, array("sn", "givenName", "uid")); + $this->tabObject->save(); + } else { + msg_dialog::display(_("Permission error"), msgPool::permModify($dn), ERROR_DIALOG); + } + } + } else { + msg_dialog::display(_("Permission error"), msgPool::permView($template), ERROR_DIALOG); + } + + // Cleanup! + $this->remove_lock(); + $this->closeDialogs(); + } + + + /* !\brief Lock/unlock multiple users. + */ + function lockUsers($action,$target,$all) + { + if(!count($target)) return; + if($action == "lockUsers"){ + $this->lockEntry($action,$target, $all, "lock"); + }else{ + $this->lockEntry($action,$target, $all, "unlock"); } } + + /* !\brief Locks/unlocks the given user(s). + */ + function lockEntry($action,$entry, $all, $type = "toggle") + { + + // Filter out entries we are not allowed to modify + $disallowed = array(); + $dns = array(); + foreach($entry as $dn){ + if (!preg_match("/w/",$this->ui->get_permissions($dn,"users/password"))){ + $disallowed[] = $dn; + }else{ + $allowed[] = $dn; + } + } + if(count($disallowed)){ + msg_dialog::display(_("Permission"),msgPool::permDelete($disallowed),INFO_DIALOG); + } + + // Try to lock/unlock the rest of the entries. + $ldap = $this->config->get_ldap_link(); + foreach($allowed as $dn){ + $ldap->cat($dn, array('userPassword')); + if($ldap->count() == 1){ + + // We can't lock empty passwords. + $val = $ldap->fetch(); + if(!isset($val['userPassword'])){ + continue; + } + + // Detect the password method and try to lock/unlock. + $pwd = $val['userPassword'][0]; + $method = passwordMethod::get_method($pwd,$val['dn']); + $success= true; + if($method instanceOf passwordMethod){ + if($type == "toggle"){ + if($method->is_locked($this->config,$val['dn'])){ + $success= $method->unlock_account($this->config,$val['dn']); + }else{ + $success= $method->lock_account($this->config,$val['dn']); + } + }elseif($type == "lock" && !$method->is_locked($this->config,$val['dn'])){ + $success= $method->lock_account($this->config,$val['dn']); + }elseif($type == "unlock" && $method->is_locked($this->config,$val['dn'])){ + $success= $method->unlock_account($this->config,$val['dn']); + } + + // Check if everything went fine. + if (!$success){ + $hn= $method->get_hash_name(); + if (is_array($hn)){ + $hn= $hn[0]; + } + msg_dialog::display(_("Account locking"), + sprintf(_("Password method '%s' does not support locking. Account (%s) has not been locked!"), + $hn,$dn),WARNING_DIALOG); + } + }else{ + // Can't lock unknown methods. + } + } + } + } + + + /* !\brief This method returns a list of all available templates. + */ function get_templates() { $templates= array(); $ldap= $this->config->get_ldap_link(); - - /* Create list of templates */ foreach ($this->config->departments as $key => $value){ - - /* Get acls from different ou's */ $acl = $this->ui->get_permissions($value,$this->aclCategory."/".$this->aclPlugin); - - /* If creation of a new user is allowed, append this template */ if (preg_match("/c/",$acl)){ - /* Search all templates from the current dn */ + // Search all templates from the current dn. $ldap->cd (get_people_ou().$value); $ldap->search ("(objectClass=gosaUserTemplate)", array("uid")); - - /* Append */ if ($ldap->count() != 0){ while ($attrs= $ldap->fetch()){ $templates[$ldap->getDN()]= $attrs['uid'][0]." - ".LDAP::fix($key); @@ -316,12 +702,26 @@ class userManagement extends management } + function copyPasteHandler($action="",$target=array(),$all=array(), + $altTabClass ="", $altTabType = "", $altAclCategory="",$altAclPlugin="") + { + if ($this->config->boolValueIsTrue("main", "copyPaste")){ + $this->cpHandler->lastdn = ""; + $str = management::copyPasteHandler($action,$target,$all); + if($this->cpHandler->lastdn != "" && isset($_POST['passwordTodo']) && $_POST['passwordTodo'] == "new"){ + $this->pwd_change_queue[] = $this->cpHandler->lastdn; + return($this->handlePasswordQueue()); + } + return($str); + } + + return ""; + } static function filterLockImage($userPassword) { $image= "images/empty.png"; - if(isset($userPassword[0]) && preg_match("/^\{[^\}]/",$userPassword[0])){ if(preg_match("/^[^\}]*+\}!/",$userPassword[0])){ $image= "images/lists/locked.png"; @@ -329,7 +729,6 @@ class userManagement extends management $image= "images/lists/unlocked.png"; } } - return $image; } @@ -337,7 +736,6 @@ class userManagement extends management static function filterLockLabel($userPassword) { $label= ""; - if(isset($userPassword[0]) && preg_match("/^\{[^\}]/",$userPassword[0])){ if(preg_match("/^[^\}]*+\}!/",$userPassword[0])){ $label= _("Unlock account"); @@ -345,11 +743,57 @@ class userManagement extends management $label= _("Lock account"); } } - return $label; } + static function filterProperties($row, $classes) + { + $result= ""; + $map= array( "gosaAccount" => array( "image" => "plugins/users/images/select_user.png", + "plugin" => "user", + "alt" => _("Generic"), + "title" => _("Edit generic properties")), + "posixAccount" => array("image" => "images/penguin.png", + "plugin" => "posixAccount", + "alt" => _("POSIX"), + "title" => _("Edit POSIX properties")), + "gosaMailAccount" => array("image" => "images/mailto.png", + "alt" => _("Mail"), + "plugin" => "mailAccount", + "title" => _("Edit mail properties")), + "sambaSamAccount" => array("image" => "plugins/systems/images/select_winstation.png", + "plugin" => "sambaAccount", + "alt" => _("Samba"), + "title" => _("Edit samba properties")), + "apple-user" => array("image" => "plugins/netatalk/images/select_netatalk.png", + "plugin" => "netatalk", + "alt" => _("Netatalk"), + "title" => _("Edit netatalk properties")), + "gotoEnvironment" => array("image" => "plugins/users/images/small_environment.png", + "plugin" => "environment", + "alt" => _("Environment"), + "title" => _("Edit environment properties")), + "goFaxAccount" => array("image" => "plugins/users/images/fax_small.png", + "plugin" => "gofaxAccount", + "alt" => _("FAX"), + "title" => _("Edit FAX properties")), + "goFonAccount" => array("image" => "plugins/gofon/images/select_phone.png", + "plugin" => "phoneAccount", + "alt" => _("Phone"), + "title" => _("Edit phone properties"))); + + // Walk thru map + foreach ($map as $oc => $properties) { + if (in_array_ics($oc, $classes)) { + $result.= image($properties['image'], "listing_edit_".$properties['plugin']."_$row", $properties['title']); + } else { + $result.= image('images/empty.png'); + } + } + return $result; + } + } // vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: ?>