https://src.bluestatic.org / bugdar.git / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
r665: Renaming product from "BugStrike" to "Bugdar"
[bugdar.git] / admin / permission.php
1 <?php
2 /*=====================================================================*\
3 || ################################################################### ||
4 || # Bugdar [#]version[#]
5 || # --------------------------------------------------------------- # ||
6 || # Copyright ©2002-[#]year[#] by Iris Studios, Inc. All Rights Reserved. # ||
7 || # This file may not be reproduced in any way without permission. # ||
8 || # --------------------------------------------------------------- # ||
9 || # User License Agreement at http://www.iris-studios.com/license/ # ||
10 || ################################################################### ||
11 \*=====================================================================*/
12
13 require_once('./global.php');
14 require_once('./includes/functions_datastore.php');
15
16 if (!can_perform('canadmingroups'))
17 {
18 admin_login();
19 }
20
21 // ###################################################################
22 // define permissions as groups
23
24 $permissions = array(
25 $lang->string('General Permissions') => array(
26 'canviewbugs' => $lang->string('Can View Bugs'),
27 'canviewhidden' => $lang->string('Can View Hidden Bugs and Comments'),
28 'cansubscribe' => $lang->string('Can Subscribe to Bugs'),
29 ),
30
31 $lang->string('Posting/Submitting Permissions') => array(
32 'canvote' => $lang->string('Can Vote on Polls'),
33 'cansubmitbugs' => $lang->string('Can Submit Bugs'),
34 'canpostcomments' => $lang->string('Can Post Comments'),
35 'cangetattach' => $lang->string('Can View Attachments'),
36 'canputattach' => $lang->string('Can Upload/Edit Own Attachments'),
37 'caneditattach' => $lang->string('Can Manage All Attachments')
38 ),
39
40 $lang->string('Moderation/Managment Permissions') => array(
41 'caneditown' => $lang->string('Can Edit Own Bugs'),
42 'caneditother' => $lang->string('Can Edit Others\' Bugs'),
43 'caneditownreply' => $lang->string('Can Edit Own Comments'),
44 'caneditotherreply' => $lang->string('Can Edit Others\' Comments'),
45 'canassign' => $lang->string('Can Assign Bugs'),
46 'canchangestatus' => $lang->string('Can Change Status')
47 )
48 );
49
50 // ###################################################################
51
52 if (empty($_REQUEST['do']))
53 {
54 $_REQUEST['do'] = 'modify';
55 }
56
57 // ###################################################################
58
59 if ($_REQUEST['do'] == 'kill')
60 {
61 $db->query("DELETE FROM " . TABLE_PREFIX . "permission WHERE usergroupid = " . intval($bugsys->in['usergroupid']) . " AND productid = " . intval($bugsys->in['productid']));
62
63 build_permissions();
64
65 $admin->redirect('permission.php?do=modify&usergroupid=' . intval($bugsys->in['usergroupid']));
66 }
67
68 // ###################################################################
69
70 if ($_REQUEST['do'] == 'delete')
71 {
72 $admin->page_confirm($lang->string('Are you sure you want to revert this permission mask?'), 'permission.php?do=kill&amp;usergroupid=' . intval($bugsys->in['usergroupid']) . '&amp;productid=' . intval($bugsys->in['productid']));
73 }
74
75 // ###################################################################
76
77 if ($_REQUEST['do'] == 'edit')
78 {
79 $perm = $db->query_first("SELECT * FROM " . TABLE_PREFIX . "permission WHERE usergroupid = " . intval($bugsys->in['usergroupid']) . " AND productid = " . intval($bugsys->in['productid']));
80 $usergroup = $db->query_first("SELECT * FROM " . TABLE_PREFIX . "usergroup WHERE usergroupid = " . intval($bugsys->in['usergroupid']));
81 $product = $db->query_first("SELECT * FROM " . TABLE_PREFIX . "product WHERE productid = " . intval($bugsys->in['productid']));
82
83 if (!$usergroup OR !$product)
84 {
85 $admin->error($lang->getlex('error_invalid_id'));
86 }
87
88 $admin->page_start($lang->string('Edit Permissions'));
89
90 $admin->form_start('permission.php', 'update');
91 $admin->form_hidden_field('usergroupid', $usergroup['usergroupid']);
92 $admin->form_hidden_field('productid', $product['productid']);
93
94 // determine the value to work off of
95 if ($perm)
96 {
97 $mask = $perm['mask'];
98 }
99 else
100 {
101 $mask = $usergroup['permissions'];
102 }
103
104 // Permission
105 $admin->table_start();
106 $admin->table_head(sprintf($lang->string('Permissions: %1$s - %2$s'), $usergroup['title'], $product['title']), 2, 'usergroups_permissions_details');
107
108 foreach ($permissions AS $group => $settings)
109 {
110 $admin->row_span($group, 'thead', 'center');
111 foreach ($settings AS $setting => $name)
112 {
113 $admin->row_yesno($name, "perm[$setting]", ($mask & $_PERMISSION["$setting"]));
114 }
115 }
116
117 $admin->row_submit();
118 $admin->table_end();
119 $admin->form_end();
120 $admin->page_end();
121 }
122
123 // ###################################################################
124
125 if ($_POST['do'] == 'update')
126 {
127 foreach ($_POST['perm'] AS $permtitle => $binaryswitch)
128 {
129 $permissionvalue += $_PERMISSION["$permtitle"] * $binaryswitch;
130 }
131
132 $db->query("
133 REPLACE INTO " . TABLE_PREFIX . "permission
134 (usergroupid, productid, mask)
135 VALUES
136 (" . intval($bugsys->in['usergroupid']) . ",
137 " . intval($bugsys->in['productid']) . ",
138 $permissionvalue
139 )"
140 );
141
142 build_permissions();
143
144 $ugroupid = intval($bugsys->in['usergroupid']);
145
146 $admin->redirect('permission.php?do=modify&usergroupid=' . $ugroupid);
147 }
148
149 // ###################################################################
150
151 if ($_REQUEST['do'] == 'modify')
152 {
153 $admin->page_start($lang->string('Permission Manager'));
154
155 $admin->table_start();
156 $admin->table_head($lang->string('Permission Manager'), 2, 'usergroups_permissions');
157
158 $groups = $db->query("SELECT * FROM " . TABLE_PREFIX . "usergroup ORDER BY usergroupid ASC");
159 while ($group = $db->fetch_array($groups))
160 {
161 $usergroups["$group[usergroupid]"] = $group;
162 }
163 $db->free_result($groups);
164
165 foreach ($usergroups AS $group)
166 {
167 $admin->row_text($group['title'], ($bugsys->in['usergroupid'] != $group['usergroupid'] ? "<a href=\"permission.php?do=modify&amp;usergroupid=$group[usergroupid]\">[" . $lang->string('Expand') . "]</a>" : ''), 'top', 2, 'alt3');
168
169 if ($bugsys->in['usergroupid'] == $group['usergroupid'])
170 {
171 $permissions_fetch = $db->query("SELECT * FROM " . TABLE_PREFIX . "permission WHERE usergroupid = $group[usergroupid]");
172 while ($permission = $db->fetch_array($permissions_fetch))
173 {
174 $permissions["$permission[productid]"] = $permission['mask'];
175 }
176
177 $products_fetch = $db->query("SELECT * FROM " . TABLE_PREFIX . "product WHERE !componentmother ORDER BY displayorder ASC");
178 while ($product = $db->fetch_array($products_fetch))
179 {
180 $groupid = $group['usergroupid'];
181 $prodid = $product['productid'];
182
183 if (!isset($permissions["$product[productid]"]))
184 {
185 $statuslink = $lang->string('Inherited From Usergroup Settings: ');
186 $statuslink .= "<a href=\"permission.php?do=edit&amp;usergroupid=$groupid&amp;productid=$prodid\">[" . $lang->string('Customize') . ']</a>';
187 }
188 else
189 {
190 $statuslink = $lang->string('Customized: ');
191 $statuslink .= "<a href=\"permission.php?do=edit&amp;usergroupid=$groupid&amp;productid=$prodid\">[" . $lang->string('Edit') . ']</a>';
192 $statuslink .= " <a href=\"permission.php?do=delete&amp;usergroupid=$groupid&amp;productid=$prodid\">[" . $lang->string('Revert') . ']</a>';
193 }
194
195 $admin->row_text($product['title'], $statuslink);
196 }
197 }
198 }
199
200 $admin->table_end();
201
202 $admin->page_end();
203 }
204
205 /*=====================================================================*\
206 || ###################################################################
207 || # $HeadURL$
208 || # $Id$
209 || ###################################################################
210 \*=====================================================================*/
211 ?>
Open-source PHP-MySQL bug tracking system that has customizable CSS/XHTML templates, email notifications, Atom syndication, internationalization support, and a very simple setup.