2 /*=====================================================================*\
3 || ###################################################################
4 || # Bugdar [#]version[#]
5 || # Copyright ©2002-[#]year[#] Blue Static
7 || # This program is free software; you can redistribute it and/or modify
8 || # it under the terms of the GNU General Public License as published by
9 || # the Free Software Foundation; version [#]gpl[#] of the License.
11 || # This program is distributed in the hope that it will be useful, but
12 || # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
13 || # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
16 || # You should have received a copy of the GNU General Public License along
17 || # with this program; if not, write to the Free Software Foundation, Inc.,
18 || # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
19 || ###################################################################
20 \*=====================================================================*/
22 require_once('./global.php');
23 require_once('./includes/api_usergroup.php');
25 require_once('./includes/class_api_error.php');
26 APIError(array(new API_Error_Handler($admin), 'admin_error'));
28 NavLinks
::usersPages();
29 $navigator->set_focus('tab', 'users', null
);
31 if (!can_perform('canadmingroups'))
36 // ###################################################################
37 // define permissions as groups
40 _('General Permissions') => array(
41 'canviewbugs' => _('Can View Bugs'),
42 'canviewhidden' => _('Can View Hidden Bugs and Comments'),
43 'canviewownhidden' => _('Can View Own Hidden Bugs'),
44 'cansearch' => _('Can Search Bugs'),
45 'cansubscribe' => _('Can Subscribe to Bugs'),
46 'canbeassignedto' => _('Can Be Assigned Bugs')
49 _('Posting/Submitting Permissions') => array(
50 'canvote' => _('Can Vote on Polls'),
51 'cansubmitbugs' => _('Can Submit Bugs'),
52 'canpostcomments' => _('Can Post Comments'),
53 'cangetattach' => _('Can View Attachments'),
54 'canputattach' => _('Can Upload/Edit Own Attachments'),
55 'caneditattach' => _('Can Manage All Attachments')
58 _('Moderation/Managment Permissions') => array(
59 'caneditown' => _('Can Edit Own Bugs'),
60 'caneditother' => _('Can Edit Others\' Bugs'),
61 'caneditownreply' => _('Can Edit Own Comments'),
62 'caneditotherreply' => _('Can Edit Others\' Comments'),
63 'canassign' => _('Can Assign Bugs'),
64 'canchangestatus' => _('Can Change Status'),
65 'candeletedata' => _('Can Delete Bugs and Comments')
68 _('Administrator Permissions') => array(
69 'canadminpanel' => _('Can Access Control Panel'),
70 'canadminbugs' => _('Can Administer Bug Reports'),
71 'canadminfields' => _('Can Administer Additional Bug Fields'),
72 'canadminversions' => _('Can Administer Products / Components / Versions'),
73 'canadminusers' => _('Can Administer Users'),
74 'canadmingroups' => _('Can Administer Usergroups'),
75 'canadmintools' => _('Can Administer Settings / Maintenance Tools')
79 // ###################################################################
81 if (empty($_REQUEST['do']))
83 $_REQUEST['do'] = 'modify';
86 // ###################################################################
88 if ($_REQUEST['do'] == 'kill')
90 $usergroup = new UsergroupAPI($bugsys);
91 $usergroup->set('usergroupid', $bugsys->in
['usergroupid']);
92 $usergroup->set_condition();
95 $admin->redirect('usergroup.php?do=modify');
98 // ###################################################################
100 if ($_REQUEST['do'] == 'delete')
102 if ($bugsys->in
['usergroupid'] < 7)
104 $admin->error(_('You can\'t delete a default usergroup.'));
107 $admin->page_confirm(_('Are you sure you want to delete this usergroup? All users in this group will be set back to the default registered usergroup (id: 2).'), 'usergroup.php', 'kill', array('usergroupid' => $bugsys->in
['usergroupid']));
110 // ###################################################################
112 if ($_REQUEST['do'] == 'add' OR $_REQUEST['do'] == 'edit' OR $_REQUEST['do'] == 'clone')
114 $clone = ($_REQUEST['do'] == 'clone');
115 $add = ($_REQUEST['do'] == 'add' OR $clone);
120 NavLinks
::usergroupsEdit($bugsys->in
['usergroupid']);
121 $navigator->set_focus('link', 'users-pages-usergroups', 'users-pages');
125 NavLinks
::usergroupsAdd();
126 $navigator->set_focus('link', 'usergroups-add', 'usergroups');
129 $admin->page_start(($add ?
_('New Usergroup') : _('Edit Usergroup')));
131 $admin->form_start('usergroup.php', ($add ?
'insert' : 'update'));
135 $usergroup = new UsergroupAPI($bugsys);
136 $usergroup->set('usergroupid', $bugsys->in
['usergroupid']);
137 $usergroup->set_condition();
142 $admin->form_hidden_field('cloneid', $usergroup->objdata
['usergroupid']);
146 $admin->form_hidden_field('usergroupid', $usergroup->objdata
['usergroupid']);
151 $usergroup['permissions'] = 319;
155 $admin->table_start();
156 $admin->table_head(_('Usergroup Details'));
157 $admin->row_input(_('Usergroup Title'), 'title', (($add AND $clone) ?
'' : $bugsys->sanitize($usergroup->objdata
['title'])));
158 $admin->row_input(_('Display Title<div><dfn>This is the title that others will be able to see when comments are posted.</dfn></div>'), 'displaytitle', (($add AND $clone) ?
'' : $bugsys->sanitize($usergroup->objdata
['displaytitle'])));
162 $admin->table_start();
164 $admin->table_head(_('Permission Settings'));
166 foreach ($permissions AS $group => $settings)
168 $admin->row_span($group, 'thead', 'center');
169 foreach ($settings AS $setting => $name)
171 $admin->row_yesno($name, "perm[$setting]", ($usergroup->objdata
['permissions'] & $bugsys->permissions
["$setting"]));
177 // custom field permissions
178 $admin->table_start();
179 $admin->table_head(_('Custom Field Permissions'));
183 $perms = $db->query("SELECT fieldid, mask FROM " . TABLE_PREFIX
. "bugfieldpermission WHERE usergroupid = " . $usergroup->objdata
['usergroupid']);
184 while ($perm = $db->fetch_array($perms))
186 $permissions["$perm[fieldid]"] = $perm['mask'];
190 $fields = $db->query("SELECT fieldid, name FROM " . TABLE_PREFIX
. "bugfield ORDER BY fieldid");
191 while ($field = $db->fetch_array($fields))
194 $admin->list_item(_('No Permission'), 0, $permissions["$field[fieldid]"] == 0);
195 $admin->list_item(_('Can View Field'), 1, $permissions["$field[fieldid]"] == 1);
196 $admin->list_item(_('Can View, Edit Field'), 2, $permissions["$field[fieldid]"] == 2);
197 $admin->row_list($field['name'], "custom[$field[fieldid]]");
203 $admin->table_start();
204 $admin->row_submit();
212 // ###################################################################
214 if ($_POST['do'] == 'insert')
216 $bugsys->input_clean('perm', TYPE_UINT
);
217 foreach ($bugsys->in
['perm'] AS $permtitle => $binaryswitch)
219 $permissionvalue +
= $bugsys->permissions
["$permtitle"] * $binaryswitch;
222 $usergroup = new UsergroupAPI($bugsys);
223 $usergroup->set('title', $bugsys->in
['title']);
224 $usergroup->set('displaytitle', $bugsys->in
['displaytitle']);
225 $usergroup->set('permissions', $permissionvalue);
226 $usergroup->insert();
228 $bugsys->input_clean('custom', TYPE_UINT
);
229 if (is_array($bugsys->in
['custom']))
231 foreach ($bugsys->in
['custom'] AS $fieldid => $mask)
233 $values[] = $usergroup->insertid
. ", " . $bugsys->clean($fieldid, TYPE_UINT
) . ", " . $mask;
237 if (is_array($values))
240 INSERT INTO " . TABLE_PREFIX
. "bugfieldpermission
241 (usergroupid, fieldid, mask)
243 (" . implode("),\n\t\t\t(", $values) . "
248 // copy product permissions from cloning
249 if ($bugsys->input_clean('cloneid', TYPE_UINT
))
251 $prodperms = $db->query("SELECT * FROM " . TABLE_PREFIX
. "permission WHERE usergroupid = " . $bugsys->in
['cloneid']);
252 while ($prod = $db->fetch_array($prodperms))
254 $db->query("INSERT INTO " . TABLE_PREFIX
. "permission (usergroupid, productid, mask) VALUES (" . $usergroup->insertid
. ", $prod[productid], $prod[mask])");
259 $admin->redirect('usergroup.php?do=modify');
262 // ###################################################################
264 if ($_POST['do'] == 'update')
266 $bugsys->input_clean_array(array(
268 'usergroupid' => TYPE_UINT
,
269 'custom' => TYPE_UINT
271 $bugsys->input_clean('perm', TYPE_UINT
);
272 foreach ($bugsys->in
['perm'] AS $permtitle => $binaryswitch)
274 $permissionvalue +
= $bugsys->permissions
["$permtitle"] * $binaryswitch;
277 $usergroup = new UsergroupAPI($bugsys);
278 $usergroup->set('usergroupid', $bugsys->in
['usergroupid']);
279 $usergroup->set_condition();
280 $usergroup->set('title', $bugsys->in
['title']);
281 $usergroup->set('displaytitle', $bugsys->in
['displaytitle']);
282 $usergroup->set('permissions', $permissionvalue);
283 $usergroup->update();
285 $bugsys->input_clean('custom', TYPE_UINT
);
286 if (is_array($bugsys->in
['custom']))
288 foreach ($bugsys->in
['custom'] AS $fieldid => $mask)
290 $values[] = $usergroup->values
['usergroupid'] . ", " . $bugsys->clean($fieldid, TYPE_UINT
) . ", " . $mask;
294 if (is_array($values))
297 REPLACE INTO " . TABLE_PREFIX
. "bugfieldpermission
298 (usergroupid, fieldid, mask)
300 (" . implode("),\n\t\t\t(", $values) . ")"
305 $admin->redirect('usergroup.php?do=modify');
308 // ###################################################################
310 if ($_POST['do'] == 'doapprove')
312 $bugsys->input_clean('approve', TYPE_UINT
);
315 if (is_array($bugsys->in
['approve']))
317 foreach ($bugsys->in
['approve'] AS $id => $yesno)
321 $idlist[] = $bugsys->clean($id, TYPE_UINT
);
326 if (sizeof($idlist) > 0)
328 $users = $db->query("SELECT * FROM " . TABLE_PREFIX
. "user WHERE userid IN (" . implode(',', $idlist) . ")");
330 $mail->set('subject', sprintf(_('Account Approved at %1$s'), $bugsys->options
['trackertitle']));
331 while ($user = $db->fetch_array($users))
334 $mail->to_add($user['displayname'], $user['email']);
335 $mail->set('bodytext', sprintf(_('Hi %1$s,
337 Your account was awaiting moderation at %2$s. Today, an administrator approved your registration and you are now able to use the bug tracker fully.
339 If you have any questions, please don\'t hesitate to contact the webmaster.'),
340 $user['displayname'],
341 $bugsys->options
['trackertitle']
347 $db->query("UPDATE " . TABLE_PREFIX
. "user SET usergroupid = 2 WHERE userid IN (" . implode(',', $idlist) . ")");
350 $admin->redirect('usergroup.php', _('The selected users have been promoted to the "Registered" usergroup.'));
353 // ###################################################################
355 if ($_REQUEST['do'] == 'approve')
357 NavLinks
::usergroupsAdd();
358 $navigator->set_focus('link', 'usergroups-approve', 'usergroups');
360 $admin->page_start(_('Moderate Awaiting Users'), 3);
362 $admin->form_start('usergroup.php', 'doapprove');
363 $admin->table_start();
364 $admin->table_head(_('Moderate Un-Approved Users'), 3);
366 $admin->table_column_head(array(_('Display Name'), _('Usergroup'), _('Approve')));
368 $users = $db->query("SELECT * FROM " . TABLE_PREFIX
. "user WHERE usergroupid IN (3, 4)");
369 while ($user = $db->fetch_array($users))
371 $admin->row_multi_item(array(
372 '<a href="user.php?do=edit&userid=' . $user['userid'] . '">' . $user['email'] . '</a>' => 'l',
373 $bugsys->datastore
['usergroup']["$user[usergroupid]"]['title'] => 'c',
374 '<input name="approve[' . $user['userid'] . ']" type="checkbox" value="1" />' => 'c'
378 $admin->row_submit(false
, ':save:', ':reset:', 3);
385 // ###################################################################
387 if ($_REQUEST['do'] == 'modify')
389 NavLinks
::usergroupsAdd();
390 $navigator->set_focus('link', 'users-pages-usergroups', 'users-pages');
392 $admin->page_start(_('Usergroup Manager'));
394 $admin->form_start('usergroup.php', 'null');
395 $admin->table_start();
396 $admin->table_head(_('Usergroup Manager'), 3, 'usergroups');
398 $groups = $db->query("SELECT * FROM " . TABLE_PREFIX
. "usergroup ORDER BY usergroupid ASC");
399 while ($group = $db->fetch_array($groups))
401 $usergroups["$group[usergroupid]"] = $group;
403 $db->free_result($groups);
405 $groups = $db->query("
406 SELECT COUNT(user.userid) AS total, user.usergroupid
407 FROM " . TABLE_PREFIX
. "user AS user
408 LEFT JOIN " . TABLE_PREFIX
. "usergroup AS usergroup USING (usergroupid)
409 GROUP BY usergroup.usergroupid
410 ORDER BY usergroup.usergroupid"
412 while ($group = $db->fetch_array($groups))
414 $usergroups["$group[usergroupid]"]['total'] = $group['total'];
417 $admin->table_column_head(array(_('Usergroup'), _('Number of Users'), _('Action')));
418 foreach ($usergroups AS $group)
420 $admin->row_multi_item(array(
421 "<a href=\"usergroup.php?do=edit&usergroupid=$group[usergroupid]\">$group[title]</a>" => 'l',
422 (!$group['total'] ?
'-' : $group['total']) => 'c',
424 "<a href=\"usergroup.php?do=edit&usergroupid=$group[usergroupid]\">[" . _('Edit') . "]</a> " .
425 "<a href=\"usergroup.php?do=clone&usergroupid=$group[usergroupid]\">[" . _('Clone') . "]</a>" .
426 ($group['usergroupid'] > 6 ?
" <a href=\"usergroup.php?do=delete&usergroupid=$group[usergroupid]\">[" . _('Delete') . "]</a>" : '') => 'c'
436 /*=====================================================================*\
437 || ###################################################################
440 || ###################################################################
441 \*=====================================================================*/