2 /*=====================================================================*\
3 || ################################################################### ||
4 || # BugStrike [#]version[#]
5 || # --------------------------------------------------------------- # ||
6 || # Copyright ©2002-[#]year[#] by Iris Studios, Inc. All Rights Reserved. # ||
7 || # This file may not be reproduced in any way without permission. # ||
8 || # --------------------------------------------------------------- # ||
9 || # User License Agreement at http://www.iris-studios.com/license/ # ||
10 || ################################################################### ||
11 \*=====================================================================*/
13 require_once('./global.php');
14 require_once('./includes/functions_datastore.php');
16 if (!can_perform('canadmingroups'))
21 // ###################################################################
22 // define permissions as groups
25 $lang->string('General Permissions') => array(
26 'canviewbugs' => $lang->string('Can View Bugs'),
27 'canviewhidden' => $lang->string('Can View Hidden Bugs and Comments'),
28 'cansearch' => $lang->string('Can Search Bugs'),
29 'cansubscribe' => $lang->string('Can Subscribe to Bugs'),
30 'canbeassignedto' => $lang->string('Can Be Assigned Bugs')
33 $lang->string('Posting/Submitting Permissions') => array(
34 'canvote' => $lang->string('Can Vote on Polls'),
35 'cansubmitbugs' => $lang->string('Can Submit Bugs'),
36 'canpostcomments' => $lang->string('Can Post Comments'),
37 'cangetattach' => $lang->string('Can View Attachments'),
38 'canputattach' => $lang->string('Can Upload/Edit Own Attachments'),
39 'caneditattach' => $lang->string('Can Manage All Attachments')
42 $lang->string('Moderation/Managment Permissions') => array(
43 'caneditown' => $lang->string('Can Edit Own Bugs'),
44 'caneditother' => $lang->string('Can Edit Others\' Bugs'),
45 'caneditownreply' => $lang->string('Can Edit Own Comments'),
46 'caneditotherreply' => $lang->string('Can Edit Others\' Comments'),
47 'canassign' => $lang->string('Can Assign Bugs'),
48 'canchangestatus' => $lang->string('Can Change Status')
51 $lang->string('Administrator Permissions') => array(
52 'canadminpanel' => $lang->string('Can Access Control Panel'),
53 'canadminbugs' => $lang->string('Can Administer Bug Reports'),
54 'canadminfields' => $lang->string('Can Administer Additional Bug Fields'),
55 'canadminversions' => $lang->string('Can Administer Products / Components / Versions'),
56 'canadminusers' => $lang->string('Can Administer Users'),
57 'canadmingroups' => $lang->string('Can Administer Usergroups'),
58 'canadmintools' => $lang->string('Can Administer Settings / Maintenance Tools')
62 // ###################################################################
64 if (empty($_REQUEST['do']))
66 $_REQUEST['do'] = 'modify';
69 // ###################################################################
71 if ($_REQUEST['do'] == 'kill')
73 if ($bugsys->in
['usergroupid'] < 7)
75 $admin->error($lang->string('You can\'t delete a default usergroup.'));
78 $db->query("DELETE FROM " . TABLE_PREFIX
. "usergroup WHERE usergroupid = " . intval($bugsys->in
['usergroupid']));
79 $db->query("UPDATE " . TABLE_PREFIX
. "user SET usergroupid = 2 WHERE usergroupid = " . intval($bugsys->in
['usergroupid']));
84 $admin->redirect('usergroup.php?do=modify');
87 // ###################################################################
89 if ($_REQUEST['do'] == 'delete')
91 if ($bugsys->in
['usergroupid'] < 7)
93 $admin->error($lang->string('You can\'t delete a default usergroup.'));
96 $admin->page_confirm($lang->string('Are you sure you want to delete this usergroup? All users in this group will be set back to the default registered usergroup (id: 2).'), 'usergroup.php?do=kill&usergroupid=' . intval($bugsys->in
['usergroupid']));
99 // ###################################################################
101 if ($_REQUEST['do'] == 'add' OR $_REQUEST['do'] == 'edit')
103 $add = (($_REQUEST['do'] == 'add') ? true
: false
);
104 $edit = (($_REQUEST['do'] == 'edit') ? true
: false
);
106 $admin->page_start(($add ?
$lang->string('New Usergroup') : $lang->string('Edit Usergroup')));
108 $admin->form_start('usergroup.php', ($add ?
'insert' : 'update'));
112 $usergroup = $db->query_first("SELECT * FROM " . TABLE_PREFIX
. "usergroup WHERE usergroupid = " . intval($bugsys->in
['usergroupid']));
113 if (!is_array($usergroup))
115 $admin->error($lang->getlex('error_invalid_id'));
118 $admin->form_hidden_field('usergroupid', $usergroup['usergroupid']);
122 $usergroup['permissions'] = 319;
126 $admin->table_start();
127 $admin->table_head($lang->string('Usergroup Details'));
128 $admin->row_input($lang->string('Usergroup Title'), 'title', $bugsys->sanitize($usergroup['title']));
129 $admin->row_input($lang->string('Display Title<div><dfn>This is the title that others will be able to see when comments are posted.</dfn></div>'), 'displaytitle', $bugsys->sanitize($usergroup['displaytitle']));
130 $admin->row_input($lang->string('Opening Tag Markup<div><dfn>Place all open HTML tags here that will be wrapped around the username.</dfn></div>'), 'opentag', $bugsys->sanitize($usergroup['opentag']));
131 $admin->row_input($lang->string('Closing Tag Markup<div><dfn>Place all closed HTML tags that will close any open HTML tags entered above.</dfn></div>'), 'closetag', $bugsys->sanitize($usergroup['closetag']));
135 $admin->table_start();
137 $admin->table_head($lang->string('Permission Settings'));
139 foreach ($permissions AS $group => $settings)
141 $admin->row_span($group, 'thead', 'center');
142 foreach ($settings AS $setting => $name)
144 $admin->row_yesno($name, "perm[$setting]", ($usergroup['permissions'] & $_PERMISSION["$setting"]));
150 // custom field permissions
151 $admin->table_start();
152 $admin->table_head($lang->string('Custom Field Permissions'));
156 $perms = $db->query("SELECT fieldid, mask FROM " . TABLE_PREFIX
. "bugfieldpermission WHERE usergroupid = $usergroup[usergroupid]");
157 while ($perm = $db->fetch_array($perms))
159 $permissions["$perm[fieldid]"] = $perm['mask'];
163 $fields = $db->query("SELECT fieldid, name FROM " . TABLE_PREFIX
. "bugfield ORDER BY fieldid");
164 while ($field = $db->fetch_array($fields))
167 $admin->list_item($lang->string('No Permission'), 0, $permissions["$field[fieldid]"] == 0);
168 $admin->list_item($lang->string('Can View Field'), 1, $permissions["$field[fieldid]"] == 1);
169 $admin->list_item($lang->string('Can View, Edit Field'), 2, $permissions["$field[fieldid]"] == 2);
170 $admin->row_list($field['name'], "custom[$field[fieldid]]");
176 $admin->table_start();
177 $admin->row_submit();
185 // ###################################################################
187 if ($_POST['do'] == 'insert')
189 foreach ($_POST['perm'] AS $permtitle => $binaryswitch)
191 $permissionvalue +
= $_PERMISSION["$permtitle"] * $binaryswitch;
195 INSERT INTO " . TABLE_PREFIX
. "usergroup
196 (title, displaytitle, opentag, closetag, permissions)
198 ('" . $bugsys->in
['title'] . "', '" . $bugsys->in
['displaytitle'] . "',
199 '" . $bugsys->in
['opentag'] . "', '" . $bugsys->in
['closetag'] . "',
204 $ugroupid = $db->insert_id();
208 foreach ($_POST['custom'] AS $fieldid => $mask)
210 $values[] = "$ugroupid, " . intval($fieldid) . ", " . intval($mask);
214 INSERT INTO " . TABLE_PREFIX
. "bugfieldpermission
215 (usergroupid, fieldid, mask)
217 (" . implode("\n\t\t\t", $values) . "
221 $admin->redirect('usergroup.php?do=modify');
224 // ###################################################################
226 if ($_POST['do'] == 'update')
228 foreach ($_POST['perm'] AS $permtitle => $binaryswitch)
230 $permissionvalue +
= $_PERMISSION["$permtitle"] * $binaryswitch;
234 UPDATE " . TABLE_PREFIX
. "usergroup
235 SET title = '" . $bugsys->in
['title'] . "',
236 displaytitle = '" . $bugsys->in
['displaytitle'] . "',
237 opentag = '" . $bugsys->unsanitize($bugsys->in
['opentag']) . "',
238 closetag = '" . $bugsys->unsanitize($bugsys->in
['closetag']) . "',
239 permissions = $permissionvalue
240 WHERE usergroupid = " . intval($bugsys->in
['usergroupid'])
246 $ugroupid = intval($bugsys->in
['usergroupid']);
247 foreach ($_POST['custom'] AS $fieldid => $mask)
249 $values[] = "$ugroupid, " . intval($fieldid) . ", " . intval($mask);
253 REPLACE INTO " . TABLE_PREFIX
. "bugfieldpermission
254 (usergroupid, fieldid, mask)
256 (" . implode("),\n\t\t\t(", $values) . ")"
260 $admin->redirect('usergroup.php?do=modify');
263 // ###################################################################
265 if ($_REQUEST['do'] == 'modify')
267 $admin->page_start($lang->string('Usergroup Manager'));
269 $admin->form_start('usergroup.php', 'null');
270 $admin->table_start();
271 $admin->table_head($lang->string('Usergroup Manager'), 3);
273 $groups = $db->query("SELECT * FROM " . TABLE_PREFIX
. "usergroup ORDER BY usergroupid ASC");
274 while ($group = $db->fetch_array($groups))
276 $usergroups["$group[usergroupid]"] = $group;
278 $db->free_result($groups);
280 $groups = $db->query("
281 SELECT COUNT(user.userid) AS total, user.usergroupid
282 FROM " . TABLE_PREFIX
. "user AS user
283 LEFT JOIN " . TABLE_PREFIX
. "usergroup AS usergroup USING (usergroupid)
284 GROUP BY usergroup.usergroupid
285 ORDER BY usergroup.usergroupid"
287 while ($group = $db->fetch_array($groups))
289 $usergroups["$group[usergroupid]"]['total'] = $group['total'];
292 $admin->table_column_head(array($lang->string('Usergroup'), $lang->string('Number of Users'), $lang->string('Action')));
293 foreach ($usergroups AS $group)
295 $admin->row_multi_item(array("<a href=\"usergroup.php?do=edit&usergroupid=$group[usergroupid]\">$group[title]</a>" => 'l', ((!$group['total']) ?
'-' : $group['total']) => 'c', "<a href=\"usergroup.php?do=edit&usergroupid=$group[usergroupid]\">[" . $lang->string('Edit') . "]</a>" . (($group['usergroupid'] > 6) ?
"<a href=\"usergroup.php?do=delete&usergroupid=$group[usergroupid]\">[" . $lang->string('Delete') . "]</a>" : '') => 'c'));
298 $admin->row_span('<a href="usergroup.php?do=add">[' . $lang->string('Add New Usergroup') . ']</a>', 'tfoot', 'center', 3);
305 /*=====================================================================*\
306 || ###################################################################
309 || ###################################################################
310 \*=====================================================================*/