X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=plugins%2Fadmin%2Fogroups%2Fclass_ogroupManagement.inc;h=14f9d9f97ef32540864659651ec9f2c68da3525b;hb=bda4c3aedb1c60fd9945d73a8b589468602bc685;hp=82b7bb6a57909292cd457bd806f160e58787d511;hpb=123d43f0853813d491e8eba7ef16927cf8846ec0;p=gosa.git diff --git a/plugins/admin/ogroups/class_ogroupManagement.inc b/plugins/admin/ogroups/class_ogroupManagement.inc index 82b7bb6a5..14f9d9f97 100644 --- a/plugins/admin/ogroups/class_ogroupManagement.inc +++ b/plugins/admin/ogroups/class_ogroupManagement.inc @@ -59,7 +59,7 @@ class ogroupManagement extends plugin Variable intialisation && Check posts for commands ****************/ - $_SESSION['LOCK_VARS_TO_USE'] = array("/^act$/","/^id$/","/^group_edit_/","/^group_del_/"); + $_SESSION['LOCK_VARS_TO_USE'] = array("/^act$/","/^id$/","/^group_edit_/","/^group_del_/","/^item_selected/","/^remove_multiple_ogroups/"); $smarty = get_smarty(); $s_action = ""; @@ -78,11 +78,6 @@ class ogroupManagement extends plugin // Post for new }elseif(preg_match("/^group_new.*/",$key)){ $s_action="new"; - }elseif(preg_match("/^group_tplnew.*/i",$key)){ - $s_action="new_tpl"; - }elseif(preg_match("/^group_chgpw.*/i",$key)){ - $s_action="change_pw"; - $s_entry = preg_replace("/group_chgpw_/i","",$key); }elseif(preg_match("/^editPaste.*/i",$key)){ $s_action="editPaste"; }elseif(preg_match("/^copy_.*/",$key)){ @@ -91,6 +86,8 @@ class ogroupManagement extends plugin }elseif(preg_match("/^cut_.*/",$key)){ $s_action="cut"; $s_entry = preg_replace("/^cut_/i","",$key); + }elseif(preg_match("/^remove_multiple_ogroups/",$key)){ + $s_action="del_multiple"; }elseif(preg_match("/_group_edit_/",$key)){ $type = preg_replace("/_group_edit_.*$/","",$key); $s_action="edit"; @@ -111,39 +108,12 @@ class ogroupManagement extends plugin Copy & Paste handling ****************/ - /* Only perform copy / paste if it is enabled - */ - if($this->CopyPasteHandler){ - - /* Paste copied/cutted object in here - */ - if(($s_action == "editPaste") || ($this->CopyPasteHandler->stillOpen())){ - $this->CopyPasteHandler->save_object(); - $this->CopyPasteHandler->SetVar("base", $this->DivListOGroup->selectedBase); - return($this->CopyPasteHandler->execute()); - } - - /* Copy current object to CopyHandler - */ - if($s_action == "copy"){ - $this->CopyPasteHandler->Clear(); - $dn = $this->ogrouplist[$s_entry]['dn']; - $obj = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $dn); - $objNew = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], "new"); - $this->CopyPasteHandler->Copy($obj,$objNew); - } - - /* Copy current object to CopyHandler - */ - if($s_action == "cut"){ - $this->CopyPasteHandler->Clear(); - $dn = $this->ogrouplist[$s_entry]['dn']; - $obj = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $dn); - $this->CopyPasteHandler->Cut($obj); - } + /* Display the copy & paste dialog, if it is currently open */ + $ret = $this->copyPasteHandling($s_action,$s_entry); + if($ret){ + return($ret); } - /**************** Create a new object group ****************/ @@ -156,8 +126,84 @@ class ogroupManagement extends plugin $this->dn= "new"; /* Create new usertab object */ - $this->ogroup= new ogrouptabs($this->config, - $this->config->data['TABS']['OGROUPTABS'], $this->dn); + $this->ogroup= new ogrouptabs($this->config,$this->config->data['TABS']['OGROUPTABS'], $this->dn,"ogroups"); + $this->ogroup->set_acl_base($this->DivListOGroup->selectedBase); + } + + + /******************** + Delete MULTIPLE entries requested, display confirm dialog + ********************/ + if ($s_action=="del_multiple"){ + $ids = $this->list_get_selected_items(); + if(count($ids)){ + foreach($ids as $id){ + $dn = $this->ogrouplist[$id]['dn']; + if (($user= get_lock($dn)) != ""){ + return(gen_locked_message ($user, $dn)); + } + $this->dns[$id] = $dn; + } + $dns_names = "
";
+        foreach($this->dns as $dn){
+          add_lock ($dn, $this->ui->dn);
+          $dns_names .= $dn."\n";
+        }
+        $dns_names .="
"; + /* Lock the current entry, so nobody will edit it during deletion */ + if (count($this->dns) == 1){ + $smarty->assign("info", sprintf(_("You're about to delete the following object entry %s"), @LDAP::fix($dns_names))); + } else { + $smarty->assign("info", sprintf(_("You're about to delete the following object entries %s"), @LDAP::fix($dns_names))); + } + $smarty->assign("multiple", true); + return($smarty->fetch(get_template_path('remove.tpl', TRUE))); + } + } + + + /******************** + Delete MULTIPLE entries confirmed + ********************/ + + /* Confirmation for deletion has been passed. Users should be deleted. */ + if (isset($_POST['delete_multiple_ogroup_confirm'])){ + + /* Remove user by user and check acls before removeing them */ + foreach($this->dns as $key => $dn){ + + $acl = $this->ui->get_permissions($dn, "ogroups"); + if (preg_match('/d/', $acl)){ + + /* Delete request is permitted, perform LDAP action */ + $this->ogroup= new ogrouptabs($this->config,$this->config->data['TABS']['OGROUPTABS'], $dn); + $this->ogroup->delete (); + unset ($this->ogroup); + $this->ogroup= NULL; + } else { + + /* Normally this shouldn't be reached, send some extra + logs to notify the administrator */ + print_red (_("You are not allowed to delete this object group!")); + new log("security","ogroups/".get_class($this),$dn,array(),"Tried to trick deletion."); + } + /* Remove lock file after successfull deletion */ + del_lock ($dn); + unset($this->dns[$key]); + } + } + + + /******************** + Delete MULTIPLE entries Canceled + ********************/ + + /* Remove lock */ + if(isset($_POST['delete_multiple_ogroup_cancel'])){ + foreach($this->dns as $key => $dn){ + del_lock ($dn); + unset($this->dns[$key]); + } } @@ -172,9 +218,8 @@ class ogroupManagement extends plugin /* Load permissions for selected 'dn' and check if we're allowed to remove this 'dn' */ - $acl= get_permissions ($this->dn, $this->ui->subtreeACL); - $this->acl= get_module_permission($acl, "ogroup", $this->dn); - if (chkacl($this->acl, "delete") == ""){ + $acl = $this->ui->get_permissions($this->dn,"ogroups"); + if(preg_match("/d/",$acl)){ /* Check locking, save current plugin in 'back_plugin', so the dialog knows where to return. */ @@ -185,6 +230,7 @@ class ogroupManagement extends plugin /* Lock the current entry, so nobody will edit it during deletion */ add_lock ($this->dn, $this->ui->dn); $smarty->assign("info", sprintf(_("You're about to delete the object group '%s'."), @LDAP::fix($this->dn))); + $smarty->assign("multiple", false); return($smarty->fetch(get_template_path('remove.tpl', TRUE))); } else { @@ -204,14 +250,13 @@ class ogroupManagement extends plugin /* Some nice guy may send this as POST, so we've to check for the permissions again. */ - if (chkacl($this->acl, "delete") == ""){ + $acl = $this->ui->get_permissions($this->dn,"ogroups"); + if(preg_match("/d/",$acl)){ /* Delete request is permitted, perform LDAP action */ $this->ogroup= new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $this->dn); - $this->ogroup->set_acl(array($this->acl)); $this->ogroup->delete (); - gosa_log ("Object group'".$this->dn."' has been removed"); unset ($this->ogroup); $this->ogroup= NULL; } else { @@ -219,7 +264,7 @@ class ogroupManagement extends plugin /* Normally this shouldn't be reached, send some extra logs to notify the administrator */ print_red (_("You are not allowed to delete this object group!")); - gosa_log ("Warning: '".$this->ui->uid."' tried to trick group deletion."); + new log("security","ogroups/".get_class($this),$dn,array(),"Tried to trick deletion."); } /* Remove lock file after successfull deletion */ @@ -258,13 +303,9 @@ class ogroupManagement extends plugin above dialog */ add_lock ($this->dn, $this->ui->dn); - /* Set up the users ACL's for this 'dn' */ - $acl= get_permissions ($this->dn, $this->ui->subtreeACL); - /* Register grouptab to trigger edit dialog */ - $this->ogroup= new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], - $this->dn); - $this->ogroup->set_acl($acl); + $this->ogroup= new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $this->dn, "ogroups"); + $this->ogroup->set_acl_base($this->dn); $_SESSION['objectinfo']= $this->dn; } @@ -274,7 +315,7 @@ class ogroupManagement extends plugin ****************/ /* Finish button has been pressed */ - if ((isset($_POST['edit_finish'])) && (isset($this->ogroup->config)) ){ + if ((isset($_POST['edit_finish']) || isset($_POST['edit_apply'])) && (isset($this->ogroup->config)) ){ /* Check tabs, will feed message array */ $message= $this->ogroup->check(); @@ -284,18 +325,18 @@ class ogroupManagement extends plugin /* Save user data to ldap */ $this->ogroup->save(); - gosa_log ("Object group'".$this->dn."' has been saved"); - - /* Group has been saved successfully, remove lock from - LDAP. */ - if ($this->dn != "new"){ - del_lock ($this->dn); - } - unset ($this->ogroup); - $this->ogroup= NULL; - unset ($_SESSION['objectinfo']); + if (!isset($_POST['edit_apply'])){ + /* Group has been saved successfully, remove lock from + LDAP. */ + if ($this->dn != "new"){ + del_lock ($this->dn); + } + unset ($this->ogroup); + $this->ogroup= NULL; + unset ($_SESSION['objectinfo']); + } } else { /* Ok. There seem to be errors regarding to the tab data, show message and continue as usual. */ @@ -309,7 +350,7 @@ class ogroupManagement extends plugin ****************/ /* Cancel dialogs */ - if (isset($_POST['edit_cancel'])){ + if ((isset($_POST['edit_cancel'])) && (isset($this->ogroup->dn))){ del_lock ($this->ogroup->dn); unset ($this->ogroup); $this->ogroup= NULL; @@ -328,8 +369,12 @@ class ogroupManagement extends plugin /* Don't show buttons if tab dialog requests this */ if (!$this->ogroup->by_object[$this->ogroup->current]->dialog){ $display.= "

\n"; - $display.= "\n"; + $display.= "\n"; $display.= " \n"; + if ($this->dn != "new"){ + $display.= "\n"; + $display.= " \n"; + } $display.= "\n"; $display.= "

"; } @@ -341,12 +386,19 @@ class ogroupManagement extends plugin Display list ****************/ + /* Check if there is a snapshot dialog open */ + $base = $this->DivListOGroup->selectedBase; + if($str = $this->showSnapshotDialog($base,$this->get_used_snapshot_bases())){ + return($str); + } + /* Display dialog with group list */ + $this->DivListOGroup->parent = $this; $this->DivListOGroup->execute(); /* Add departments if subsearch is disabled */ if(!$this->DivListOGroup->SubSearch){ - $this->DivListOGroup->AddDepartments($this->DivListOGroup->selectedBase,4); + $this->DivListOGroup->AddDepartments($this->DivListOGroup->selectedBase,4,1); } $this->reload (); $this->DivListOGroup->setEntries($this->ogrouplist); @@ -354,6 +406,14 @@ class ogroupManagement extends plugin } + /* Return departments, that will be included within snapshot detection */ + function get_used_snapshot_bases() + { + return(array(get_groups_ou().$this->DivListOGroup->selectedBase)); + } + + + function convert_list($input) { $temp= ""; @@ -377,11 +437,13 @@ class ogroupManagement extends plugin $p1['tit']= $conv[$type[0]][1]; $p1['alt']= $type[0]; $p1['lnk']= $conv[$type[0]][2]; + $html_object_1 = ""; - $temp.= ""; return ($temp); } @@ -406,7 +471,7 @@ class ogroupManagement extends plugin function reload() { /* Set base for all searches && initialise some vars */ - $this->oogrouplist= array(); + $this->ogrouplist= array(); $base = $this->DivListOGroup->selectedBase; $filter = "(gosaGroupObjects=[])"; $Regex = $this->DivListOGroup->Regex; @@ -430,9 +495,9 @@ class ogroupManagement extends plugin $filter= "(&(cn=$Regex)(objectClass=gosaGroupOfNames)(|$filter))"; if($this->DivListOGroup->SubSearch){ - $res= get_list($filter, $this->ui->subtreeACL, $base, array("cn","objectClass","gosaGroupObjects"), GL_SIZELIMIT | GL_SUBSEARCH); + $res= get_list($filter, "ogroups", $base, array("cn","objectClass","gosaGroupObjects"), GL_SIZELIMIT | GL_SUBSEARCH); }else{ - $res= get_list($filter, $this->ui->subtreeACL, get_groups_ou().$base, array("cn","objectClass","gosaGroupObjects"), GL_SIZELIMIT ); + $res= get_list($filter, "ogroups", get_groups_ou().$base, array("cn","objectClass","gosaGroupObjects"), GL_SIZELIMIT ); } $this->ogrouplist= $res; @@ -450,6 +515,71 @@ class ogroupManagement extends plugin reset ($this->ogrouplist); } + + function list_get_selected_items() + { + $ids = array(); + foreach($_POST as $name => $value){ + if(preg_match("/^item_selected_[0-9]*$/",$name)){ + $id = preg_replace("/^item_selected_/","",$name); + $ids[$id] = $id; + } + } + return($ids); + } + + + function copyPasteHandling($s_action,$s_entry) + { + if($this->CopyPasteHandler){ + + /* Paste copied/cutted object in here + */ + if(($s_action == "editPaste") || ($this->CopyPasteHandler->stillOpen())){ + $this->CopyPasteHandler->save_object(); + $this->CopyPasteHandler->SetVar("base", $this->DivListOGroup->selectedBase); + return($this->CopyPasteHandler->execute()); + } + + /* Copy current object to CopyHandler + */ + if($s_action == "copy"){ + + + $this->CopyPasteHandler->Clear(); + $dn = $this->ogrouplist[$s_entry]['dn']; + + /* Check acls */ + $acl_all= $this->ui->has_complete_category_acls($dn,"ogroups"); + if(preg_match("/(c.*w|w.*c)/",$acl_all)){ + $obj = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $dn); + $objNew = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], "new"); + + $types_of_tabs = $obj->by_object['ogroup']->gosaGroupObjects; + $objNew->by_object['ogroup']->gosaGroupObjects = $types_of_tabs; + $objNew->reload($types_of_tabs); + + $this->CopyPasteHandler->Copy($obj,$objNew); + } + } + + /* Copy current object to CopyHandler + */ + if($s_action == "cut"){ + $this->CopyPasteHandler->Clear(); + $dn = $this->ogrouplist[$s_entry]['dn']; + + /* Check acls */ + $acl_all= $this->ui->has_complete_category_acls($dn,"ogroups"); + if(preg_match("/(c.*w|w.*c)/",$acl_all)){ + $obj = new ogrouptabs($this->config, $this->config->data['TABS']['OGROUPTABS'], $dn); + $this->CopyPasteHandler->Cut($obj); + } + } + } + } + + function save_object() { $this->DivListOGroup->save_object();