From a70441e328fa9edc1395503bef48e1d8f0c43c98 Mon Sep 17 00:00:00 2001
From: hickert <hickert@594d385d-05f5-0310-b6e9-bd551577e9d8>
Date: Fri, 27 Oct 2006 05:48:26 +0000
Subject: [PATCH] Added some more acls

git-svn-id: https://oss.gonicus.de/repositories/gosa/trunk@4948 594d385d-05f5-0310-b6e9-bd551577e9d8
---
 plugins/addons/addressbook/address_edit.tpl   | 39 +++++++-
 .../addons/addressbook/class_addressbook.inc  | 96 ++++++++++++++++---
 plugins/addons/addressbook/contents.tpl       |  8 +-
 3 files changed, 125 insertions(+), 18 deletions(-)

diff --git a/plugins/addons/addressbook/address_edit.tpl b/plugins/addons/addressbook/address_edit.tpl
index dae734146..9a79f3b72 100644
--- a/plugins/addons/addressbook/address_edit.tpl
+++ b/plugins/addons/addressbook/address_edit.tpl
@@ -33,9 +33,13 @@
 										{t}First name{/t}{$must}
 									</LABEL>
 								</td>
-   								<td>	
+   								<td>
+{render acl=$snACL}	
 									<input id="sn" name="sn" size=10 maxlength=60 value="{$info_sn}" {$snACL}>, 
+{/render}
+{render acl=$givenNameACL}
 									<input id="givenName" name="givenName" size=10 maxlength=60 value="{$info_givenName}" {$givenNameACL}>
+{/render}
 								<td>
   							</tr>
   							<tr>
@@ -45,7 +49,9 @@
 									</LABEL>
 								</td>
 								<td>
+{render acl=$initialsACL}
 									<input id="initials" name="initials" size=5 maxlength=20 value="{$info_initials}" {$initialsACL}>
+{/render}
 								</td>
   							</tr>
   							<tr>
@@ -55,7 +61,9 @@
 									</LABEL>
 								</td>
 								<td>
+{render acl=$titleACL}
 									<input id="title" name="title" size=10 maxlength=20 value="{$info_title}" {$titleACL}>
+{/render}
 								</td>
   							</tr>
  						</table>
@@ -75,8 +83,10 @@
 								<br>
 								</td>
 						   		<td style="vertical-align:top;">
+{render acl=$homePostalAddressACL}
 									<textarea id="homePostalAddress" name="homePostalAddress" 
 										rows=1 cols=20 {$homePostalAddressACL}>{$info_homePostalAddress}</textarea>
+{/render}
 								</td>
 						  	</tr>
 						  	<tr>
@@ -86,7 +96,9 @@
 									</LABEL>
 								</td>
 								<td>
+{render acl=$homePhoneACL}
 									<input id="homePhone" name="homePhone" size=15 maxlength=60 value="{$info_homePhone}" {$homePhoneACL}>
+{/render}
 								</td>
 						  	</tr>
 						  	<tr>
@@ -96,7 +108,9 @@
 									</LABEL>
 								</td>
 								<td>
+{render acl=$mobileACL}
 									<input id="mobile" name="mobile" size=15 maxlength=60 value="{$info_mobile}" {$mobileACL}>
+{/render}
 								</td>
 						  	</tr>
 						  	<tr>
@@ -106,7 +120,9 @@
 									</LABEL>
 								</td>
 								<td>
+{render acl=$mailACL}
 									<input id="mail" name="mail" size=15 maxlength=60 value="{$info_mail}" {$mailACL}>
+{/render}
 								</td>
 						  	</tr>
 						 </table>
@@ -129,7 +145,9 @@
 												</LABEL>
 											</td>
 											<td>
+{render acl=$oACL}
 												<input id="o" name="o" size=15 maxlength=60 value="{$info_o}" {$oACL}>
+{/render}
 											</td>
 									 	</tr>
 									 	<tr>
@@ -139,7 +157,9 @@
 												</LABEL>
 											</td>
 											<td>
+{render acl=$ouACL}
 												<input id="ou" name="ou" size=15 maxlength=60 value="{$info_ou}" {$ouACL}>
+{/render}
 											</td>
 									 	</tr>
 									 	<tr>
@@ -149,7 +169,9 @@
 												</LABEL>
 											</td>
 											<td>
+{render acl=$lACL}
 												<input id="l" name="l" size=15 maxlength=60 value="{$info_l}" {$lACL}>
+{/render}
 											</td>
 									 	</tr>
 									 	<tr>
@@ -159,7 +181,9 @@
 												</LABEL>
 											</td>
 											<td>
+{render acl=$postalCodeACL}
 												<input id="postalCode" name="postalCode" size=15 maxlength=60 value="{$info_postalCode}" {$postalCodeACL}>
+{/render}
 											</td>
 									 	</tr>
 									 	<tr>
@@ -169,7 +193,9 @@
 												</LABEL>
 											</td>
 											<td>
+{render acl=$stACL}
 												<input id="st" name="st" size=15 maxlength=60 value="{$info_st}" {$stACL}>
+{/render}
 											</td>
 									 	</tr>
 									</table>
@@ -185,8 +211,10 @@
 												<br>
 											</td>
 											<td style="vertical-align:top;">
+{render acl=$postalAddressACL}
 												<textarea id="postalAddress" name="postalAddress" rows=1 cols=20 
 													{$postalAddressACL}>{$info_postalAddress}</textarea>
+{/render}
 											</td>
 										</tr>
 										<tr>
@@ -196,8 +224,10 @@
 												</LABEL>
 											</td>
 											<td>
+{render acl=$telephoneNumberACL}
 												<input id="telephoneNumber" name="telephoneNumber" {$telephoneNumberACL}
 													size=15 maxlength=60 value="{$info_telephoneNumber}">
+{/render}
 											</td>
 										</tr>
 										<tr>
@@ -207,8 +237,10 @@
 												</LABEL>
 											</td>
 											<td>
+{render acl=$facsimileTelephoneNumberACL}
 												<input id="facsimileTelephoneNumber" name="facsimileTelephoneNumber" {$facsimileTelephoneNumberACL}
 													size=15 maxlength=60 value="{$info_facsimileTelephoneNumber}">
+{/render}
 											</td>
 										</tr>
 										<tr>
@@ -218,7 +250,9 @@
 												</LABEL>
 											</td>
 											<td>
+{render acl=$pagerACL}
 												<input id="pager" name="pager" size=15 maxlength=60 value="{$info_pager}" {$pagerACL}>
+{/render}
 											</td>
 										</tr>
 									</table>
@@ -238,3 +272,6 @@
 	</tr>
 </table>
 
+<!--
+// vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler:
+-->
diff --git a/plugins/addons/addressbook/class_addressbook.inc b/plugins/addons/addressbook/class_addressbook.inc
index bbb57ac20..baa8f01e6 100644
--- a/plugins/addons/addressbook/class_addressbook.inc
+++ b/plugins/addons/addressbook/class_addressbook.inc
@@ -127,6 +127,10 @@ class addressbook extends plugin
     }
     register_global("phonefilter", $phonefilter);
 
+    /* Assign create acl */
+    $acl = $this->get_entry_acls($this->abobjectclass.",".$phonefilter['search_base']);
+    $smarty->assign("internal_createable", preg_match("/c/",$acl));
+    $smarty->assign("internal_removeable", preg_match("/d/",$acl));
 
     /* Perform actions with CTI hook */
     if (isset($_GET['target'])
@@ -188,7 +192,9 @@ class addressbook extends plugin
 
       /* Some nice guy may send this as POST, so we've to check
          for the permissions again. */
-      if (chkacl($this->acl, "delete") == ""){
+      
+      $acl = $this->get_entry_acls($this->dn);
+      if(preg_match("/d/",$acl)){
 
         /* Delete request is permitted, perform LDAP action */
         $ldap= $this->config->get_ldap_link();
@@ -288,9 +294,11 @@ class addressbook extends plugin
         case "remove":
           $this->dn= $_SESSION['show_info']; 
         $this->load();
+
         /* Load permissions for selected 'dn' and check if
            we're allowed to remove this 'dn' */
-        if (chkacl($this->acl, "delete") == ""){
+        $acl = $this->get_entry_acls($this->dn);
+        if(preg_match("/d/",$acl)){
 
           /* Check locking, save current plugin in 'back_plugin', so
              the dialog knows where to return. */
@@ -387,7 +395,8 @@ class addressbook extends plugin
         }
 
         /* Check if at least one attribute is specified */
-        $skip = true;
+        $skip = false;
+
         foreach($must_have_this as $attr)      {
           if(isset($attrs[$attr][0]) && !empty($attrs[$attr][0])){
             $skip =false;
@@ -398,13 +407,15 @@ class addressbook extends plugin
         /* Skip all attributes that we are not allowed to read */
         $any = false;
         foreach($attributes as $attr){
-          if(!preg_match("/r/",$this->ui->get_permissions($attrs['dn'],"users/user",$attr))){
+    
+          $acls = $this->get_entry_acls($attrs['dn'],$attr);  
+          if(!preg_match("/r/",$acls)){
             $attrs[$attr][0] = "Not allowed";
           }else{
             $any = true;
           }
         }
-        
+ 
         /* Only show lines that have set any mail or phone informations */
         if(!$skip && $any){      
   
@@ -471,25 +482,29 @@ class addressbook extends plugin
     $output= "";
     $mod= 0;
 
-#! hickert
-    if(!isset($_SESSION['show_info'])) 	$smarty->assign("show_info", "");;
 
+    /* View detailed infos */
+    $smarty->assign("show_info", "");
     if (isset($_SESSION['show_info'])){
+
       $range= 4;
       $smarty->assign("show_info", "1");
       $smarty->assign("url", "main.php?plug=".validate($_GET['plug'])."&amp;close=1");
 
+      $tmp = $this->plInfo();
+      foreach($tmp['plProvidedAcls'] as $name => $translated){
+        $smarty->assign($name."ACL",$this->get_entry_acls($this->dn,$name));
+      }
+
       switch ($_SESSION['show_info']){
 
         case "ADD":
           $smarty->assign ('storage_base', $this->storage_base);
-        $smarty->assign ('address_info',
-            get_template_path('address_edit.tpl', TRUE));
+          $smarty->assign ('address_info', get_template_path('address_edit.tpl', TRUE));
         break;
 
         default:
-        $smarty->assign ('address_info',
-            get_template_path('address_info.tpl', TRUE));
+          $smarty->assign ('address_info', get_template_path('address_info.tpl', TRUE));
         break;
       }
 
@@ -657,10 +672,6 @@ class addressbook extends plugin
     $this->new_dn= $this->dn;
   }
 
-  if ($_SESSION['show_info'] == "ADD" && chkacl($this->acl, "add") != ""){
-    $message[]= _("You have no permissions to create or modify a global address book entry.");
-  }
-
   return ($message);
   }
 
@@ -708,6 +719,61 @@ class addressbook extends plugin
     }
   }
 
+  
+  /* Return entry acls */
+  function get_entry_acls($dn,$attr = "")
+  {
+    $acls = "";
+  
+    /* Use addressbook acls */
+    if(preg_match("/".normalizePreg($this->abobjectclass)."/",$dn))  {
+      $dn = preg_replace("/".normalizePreg($this->abobjectclass).",/","",$dn);
+      $acls = $this->ui->get_permissions($dn,"addressbook/addressbook",$attr);
+    }
+    
+    /* Use Organizational Person acls */
+    else{
+      $acls = $this->ui->get_permissions($dn,"users/user",$attr);
+    }
+
+    return($acls);
+  }
+
+
+  /* Return plugin informations for acl handling  */
+  function plInfo()
+  {
+    return (array(
+          "plShortName" => _("Addressbook"),
+          "plDescription" => _("Addressbook entry acls"),
+          "plSelfModify"  => FALSE,
+          "plDepends"     => array(),
+          "plPriority"    => 0,
+          "plSection"     => array("addons" => _("Addons")),
+          "plCategory"    => array("addressbook" => array("objectClass" => "inetOrgPerson", "description" => _("Addressbook"))),
+
+          "plProvidedAcls"    => array(
+            "sn"                        => _("Surename"),         
+            "givenName"                 => _("Given name"), 
+            "telephoneNumber"           => _("Telefon number"), 
+            "facsimileTelephoneNumber"  => _("Fax number"), 
+            "mobile"                    => _("Mobile number"), 
+            "homePhone"                 => _("Home phone number"), 
+            "uid"                       => _("User identification"), 
+            "mail"                      => _("Mail address"), 
+            "pager"                     => _("Pgaer"),
+            "o"                         => _("Organization"),
+            "ou"                        => _("Department"),
+            "l"                         => _("Location"),
+            "postalAddress"             => _("Postal address"),
+            "postalCode"                => _("Postal address"),
+            "st"                        => _("State"),
+            "initials"                  => _("Initials"), 
+            "title"                     => _("Title"), 
+            "homePostalAddress"         => _("Home postal address"), 
+            "cn"                        => _("Common name"))
+            ));
+  }
 }
 // vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler:
 ?>
diff --git a/plugins/addons/addressbook/contents.tpl b/plugins/addons/addressbook/contents.tpl
index 3e61376fe..80472c950 100644
--- a/plugins/addons/addressbook/contents.tpl
+++ b/plugins/addons/addressbook/contents.tpl
@@ -43,13 +43,17 @@
    </div>
    <div class="contentboxb">
     <p class="contentboxb" style="vertical-align:middle;">
+     {if $internal_createable}
      <img class="center" alt="" src="{$add_image}">&nbsp;
      <a href="main.php{$plug}&amp;global=add" style="text-align:center;vertical-align:middle;">{t}Add entry{/t}</a><br>
+     {/if}
      {if $internal eq 0}
      <img alt="" src="{$edit_image}" class="center">&nbsp;
      <a href="main.php{$plug}&amp;global=edit">{t}Edit entry{/t}</a><br>
-     <img alt="" src="{$delete_image}" class="center">&nbsp;
-     <a href="main.php{$plug}&amp;global=remove" style="vertical-align:middle;">{t}Remove entry{/t}</a><br>
+	{if $internal_removeable}
+	     <img alt="" src="{$delete_image}" class="center">&nbsp;
+	     <a href="main.php{$plug}&amp;global=remove" style="vertical-align:middle;">{t}Remove entry{/t}</a><br>
+	{/if}
      {/if}
     </p>
    </div>
-- 
2.30.2