https://src.bluestatic.org / bugdar.git / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
r931: - You can now delete bugs and comments
[bugdar.git] / admin / usergroup.php
1 <?php
2 /*=====================================================================*\
3 || ###################################################################
4 || # Bugdar [#]version[#]
5 || # Copyright ©2002-[#]year[#] Iris Studios, Inc.
6 || #
7 || # This program is free software; you can redistribute it and/or modify
8 || # it under the terms of the GNU General Public License as published by
9 || # the Free Software Foundation; version [#]gpl[#] of the License.
10 || #
11 || # This program is distributed in the hope that it will be useful, but
12 || # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
13 || # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
14 || # more details.
15 || #
16 || # You should have received a copy of the GNU General Public License along
17 || # with this program; if not, write to the Free Software Foundation, Inc.,
18 || # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
19 || ###################################################################
20 \*=====================================================================*/
21
22 require_once('./global.php');
23 require_once('./includes/api_usergroup.php');
24
25 require_once('./includes/class_api_error.php');
26 APIError(array(new API_Error_Handler($admin), 'admin_error'));
27
28 NavLinks::usersPages();
29 $navigator->set_focus('tab', 'users', null);
30
31 if (!can_perform('canadmingroups'))
32 {
33 admin_login();
34 }
35
36 // ###################################################################
37 // define permissions as groups
38
39 $permissions = array(
40 $lang->string('General Permissions') => array(
41 'canviewbugs' => $lang->string('Can View Bugs'),
42 'canviewhidden' => $lang->string('Can View Hidden Bugs and Comments'),
43 'cansearch' => $lang->string('Can Search Bugs'),
44 'cansubscribe' => $lang->string('Can Subscribe to Bugs'),
45 'canbeassignedto' => $lang->string('Can Be Assigned Bugs')
46 ),
47
48 $lang->string('Posting/Submitting Permissions') => array(
49 'canvote' => $lang->string('Can Vote on Polls'),
50 'cansubmitbugs' => $lang->string('Can Submit Bugs'),
51 'canpostcomments' => $lang->string('Can Post Comments'),
52 'cangetattach' => $lang->string('Can View Attachments'),
53 'canputattach' => $lang->string('Can Upload/Edit Own Attachments'),
54 'caneditattach' => $lang->string('Can Manage All Attachments')
55 ),
56
57 $lang->string('Moderation/Managment Permissions') => array(
58 'caneditown' => $lang->string('Can Edit Own Bugs'),
59 'caneditother' => $lang->string('Can Edit Others\' Bugs'),
60 'caneditownreply' => $lang->string('Can Edit Own Comments'),
61 'caneditotherreply' => $lang->string('Can Edit Others\' Comments'),
62 'canassign' => $lang->string('Can Assign Bugs'),
63 'canchangestatus' => $lang->string('Can Change Status'),
64 'candeletedata' => $lang->string('Can Delete Bugs and Comments')
65 ),
66
67 $lang->string('Administrator Permissions') => array(
68 'canadminpanel' => $lang->string('Can Access Control Panel'),
69 'canadminbugs' => $lang->string('Can Administer Bug Reports'),
70 'canadminfields' => $lang->string('Can Administer Additional Bug Fields'),
71 'canadminversions' => $lang->string('Can Administer Products / Components / Versions'),
72 'canadminusers' => $lang->string('Can Administer Users'),
73 'canadmingroups' => $lang->string('Can Administer Usergroups'),
74 'canadmintools' => $lang->string('Can Administer Settings / Maintenance Tools')
75 )
76 );
77
78 // ###################################################################
79
80 if (empty($_REQUEST['do']))
81 {
82 $_REQUEST['do'] = 'modify';
83 }
84
85 // ###################################################################
86
87 if ($_REQUEST['do'] == 'kill')
88 {
89 $usergroup = new UsergroupAPI($bugsys);
90 $usergroup->set('usergroupid', $bugsys->in['usergroupid']);
91 $usergroup->set_condition();
92 $usergroup->delete();
93
94 $admin->redirect('usergroup.php?do=modify');
95 }
96
97 // ###################################################################
98
99 if ($_REQUEST['do'] == 'delete')
100 {
101 if ($bugsys->in['usergroupid'] < 7)
102 {
103 $admin->error($lang->string('You can\'t delete a default usergroup.'));
104 }
105
106 $admin->page_confirm($lang->string('Are you sure you want to delete this usergroup? All users in this group will be set back to the default registered usergroup (id: 2).'), 'usergroup.php?do=kill&amp;usergroupid=' . $bugsys->in['usergroupid']);
107 }
108
109 // ###################################################################
110
111 if ($_REQUEST['do'] == 'add' OR $_REQUEST['do'] == 'edit')
112 {
113 $add = (($_REQUEST['do'] == 'add') ? true : false);
114 $edit = (($_REQUEST['do'] == 'edit') ? true : false);
115
116 if ($edit)
117 {
118 NavLinks::usergroupsEdit($bugsys->in['usergroupid']);
119 $navigator->set_focus('link', 'users-pages-usergroups', 'users-pages');
120 }
121 else
122 {
123 NavLinks::usergroupsAdd();
124 $navigator->set_focus('link', 'usergroups-add', 'usergroups');
125 }
126
127 $admin->page_start(($add ? $lang->string('New Usergroup') : $lang->string('Edit Usergroup')));
128
129 $admin->form_start('usergroup.php', ($add ? 'insert' : 'update'));
130
131 if ($edit)
132 {
133 $usergroup = new UsergroupAPI($bugsys);
134 $usergroup->set('usergroupid', $bugsys->in['usergroupid']);
135 $usergroup->set_condition();
136 $usergroup->fetch();
137
138 $admin->form_hidden_field('usergroupid', $usergroup->objdata['usergroupid']);
139 }
140 else
141 {
142 $usergroup['permissions'] = 319;
143 }
144
145 // Details
146 $admin->table_start();
147 $admin->table_head($lang->string('Usergroup Details'));
148 $admin->row_input($lang->string('Usergroup Title'), 'title', $bugsys->sanitize($usergroup->objdata['title']));
149 $admin->row_input($lang->string('Display Title<div><dfn>This is the title that others will be able to see when comments are posted.</dfn></div>'), 'displaytitle', $bugsys->sanitize($usergroup->objdata['displaytitle']));
150 $admin->table_end();
151
152 // Permission
153 $admin->table_start();
154
155 $admin->table_head($lang->string('Permission Settings'));
156
157 foreach ($permissions AS $group => $settings)
158 {
159 $admin->row_span($group, 'thead', 'center');
160 foreach ($settings AS $setting => $name)
161 {
162 $admin->row_yesno($name, "perm[$setting]", ($usergroup->objdata['permissions'] & $bugsys->permissions["$setting"]));
163 }
164 }
165
166 $admin->table_end();
167
168 // custom field permissions
169 $admin->table_start();
170 $admin->table_head($lang->string('Custom Field Permissions'));
171
172 if ($edit)
173 {
174 $perms = $db->query("SELECT fieldid, mask FROM " . TABLE_PREFIX . "bugfieldpermission WHERE usergroupid = " . $usergroup->objdata['usergroupid']);
175 while ($perm = $db->fetch_array($perms))
176 {
177 $permissions["$perm[fieldid]"] = $perm['mask'];
178 }
179 }
180
181 $fields = $db->query("SELECT fieldid, name FROM " . TABLE_PREFIX . "bugfield ORDER BY fieldid");
182 while ($field = $db->fetch_array($fields))
183 {
184 unset($listitem);
185 $admin->list_item($lang->string('No Permission'), 0, $permissions["$field[fieldid]"] == 0);
186 $admin->list_item($lang->string('Can View Field'), 1, $permissions["$field[fieldid]"] == 1);
187 $admin->list_item($lang->string('Can View, Edit Field'), 2, $permissions["$field[fieldid]"] == 2);
188 $admin->row_list($field['name'], "custom[$field[fieldid]]");
189 }
190
191 $admin->table_end();
192
193 // Submit
194 $admin->table_start();
195 $admin->row_submit();
196 $admin->table_end();
197
198 $admin->form_end();
199
200 $admin->page_end();
201 }
202
203 // ###################################################################
204
205 if ($_POST['do'] == 'insert')
206 {
207 $bugsys->input_clean('perm', TYPE_UINT);
208 foreach ($bugsys->in['perm'] AS $permtitle => $binaryswitch)
209 {
210 $permissionvalue += $bugsys->permissions["$permtitle"] * $binaryswitch;
211 }
212
213 $usergroup = new UsergroupAPI($bugsys);
214 $usergroup->set('title', $bugsys->in['title']);
215 $usergroup->set('displaytitle', $bugsys->in['displaytitle']);
216 $usergroup->set('permissions', $permissionvalue);
217 $usergroup->insert();
218
219 $bugsys->input_clean('custom', TYPE_UINT);
220 foreach ($bugsys->in['custom'] AS $fieldid => $mask)
221 {
222 $values[] = $usergroup->insertid . ", " . $bugsys->clean($fieldid, TYPE_UINT) . ", " . $mask;
223 }
224
225 if (is_array($values))
226 {
227 $db->query("
228 INSERT INTO " . TABLE_PREFIX . "bugfieldpermission
229 (usergroupid, fieldid, mask)
230 VALUES
231 (" . implode("\n\t\t\t", $values) . "
232 )"
233 );
234 }
235
236 $admin->redirect('usergroup.php?do=modify');
237 }
238
239 // ###################################################################
240
241 if ($_POST['do'] == 'update')
242 {
243 $bugsys->input_clean_array(array(
244 'perm' => TYPE_UINT,
245 'usergroupid' => TYPE_UINT,
246 'custom' => TYPE_UINT
247 ));
248 $bugsys->input_clean('perm', TYPE_UINT);
249 foreach ($bugsys->in['perm'] AS $permtitle => $binaryswitch)
250 {
251 $permissionvalue += $bugsys->permissions["$permtitle"] * $binaryswitch;
252 }
253
254 $usergroup = new UsergroupAPI($bugsys);
255 $usergroup->set('usergroupid', $bugsys->in['usergroupid']);
256 $usergroup->set_condition();
257 $usergroup->set('title', $bugsys->in['title']);
258 $usergroup->set('displaytitle', $bugsys->in['displaytitle']);
259 $usergroup->set('permissions', $permissionvalue);
260 $usergroup->update();
261
262 $bugsys->input_clean('custom', TYPE_UINT);
263 foreach ($bugsys->in['custom'] AS $fieldid => $mask)
264 {
265 $values[] = $usergroup->values['usergroupid'] . ", " . $bugsys->clean($fieldid, TYPE_UINT) . ", " . $mask;
266 }
267
268 if (is_array($values))
269 {
270 $db->query("
271 REPLACE INTO " . TABLE_PREFIX . "bugfieldpermission
272 (usergroupid, fieldid, mask)
273 VALUES
274 (" . implode("),\n\t\t\t(", $values) . ")"
275 );
276 }
277
278
279 $admin->redirect('usergroup.php?do=modify');
280 }
281
282 // ###################################################################
283
284 if ($_REQUEST['do'] == 'modify')
285 {
286 NavLinks::usergroupsAdd();
287 $navigator->set_focus('link', 'users-pages-usergroups', 'users-pages');
288
289 $admin->page_start($lang->string('Usergroup Manager'));
290
291 $admin->form_start('usergroup.php', 'null');
292 $admin->table_start();
293 $admin->table_head($lang->string('Usergroup Manager'), 3, 'usergroups');
294
295 $groups = $db->query("SELECT * FROM " . TABLE_PREFIX . "usergroup ORDER BY usergroupid ASC");
296 while ($group = $db->fetch_array($groups))
297 {
298 $usergroups["$group[usergroupid]"] = $group;
299 }
300 $db->free_result($groups);
301
302 $groups = $db->query("
303 SELECT COUNT(user.userid) AS total, user.usergroupid
304 FROM " . TABLE_PREFIX . "user AS user
305 LEFT JOIN " . TABLE_PREFIX . "usergroup AS usergroup USING (usergroupid)
306 GROUP BY usergroup.usergroupid
307 ORDER BY usergroup.usergroupid"
308 );
309 while ($group = $db->fetch_array($groups))
310 {
311 $usergroups["$group[usergroupid]"]['total'] = $group['total'];
312 }
313
314 $admin->table_column_head(array($lang->string('Usergroup'), $lang->string('Number of Users'), $lang->string('Action')));
315 foreach ($usergroups AS $group)
316 {
317 $admin->row_multi_item(array("<a href=\"usergroup.php?do=edit&amp;usergroupid=$group[usergroupid]\">$group[title]</a>" => 'l', ((!$group['total']) ? '-' : $group['total']) => 'c', "<a href=\"usergroup.php?do=edit&amp;usergroupid=$group[usergroupid]\">[" . $lang->string('Edit') . "]</a>" . (($group['usergroupid'] > 6) ? "<a href=\"usergroup.php?do=delete&amp;usergroupid=$group[usergroupid]\">[" . $lang->string('Delete') . "]</a>" : '') => 'c'));
318 }
319
320 $admin->table_end();
321 $admin->form_end();
322
323 $admin->page_end();
324 }
325
326 /*=====================================================================*\
327 || ###################################################################
328 || # $HeadURL$
329 || # $Id$
330 || ###################################################################
331 \*=====================================================================*/
332 ?>
Open-source PHP-MySQL bug tracking system that has customizable CSS/XHTML templates, email notifications, Atom syndication, internationalization support, and a very simple setup.