* Copyright (C) 2005-2010 Laurent Destailleur * Copyright (C) 2005-2009 Regis Houssin * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /** * \file htdocs/user/group/fiche.php * \brief Onglet groupes utilisateurs * \version $Id$ */ require("../../main.inc.php"); require_once(DOL_DOCUMENT_ROOT."/user/class/usergroup.class.php"); require_once(DOL_DOCUMENT_ROOT."/lib/usergroups.lib.php"); // Defini si peux lire/modifier utilisateurs et permisssions $canreadperms=($user->admin || $user->rights->user->user->lire); $caneditperms=($user->admin || $user->rights->user->user->creer); $candisableperms=($user->admin || $user->rights->user->user->supprimer); $langs->load("users"); $langs->load("other"); // Security check $result = restrictedArea($user, 'user', $_GET["id"], 'usergroup', 'user'); $action=isset($_GET["action"])?$_GET["action"]:$_POST["action"]; /** * Action remove group */ if ($_REQUEST["action"] == 'confirm_delete' && $_REQUEST["confirm"] == "yes") { if ($caneditperms) { $editgroup = new Usergroup($db, $_GET["id"]); $editgroup->fetch($_GET["id"]); $editgroup->delete(); Header("Location: index.php"); } else { $message = '

'.$langs->trans('ErrorForbidden').'

'; } } /** * Action add group */ if ($_POST["action"] == 'add') { if($caneditperms) { $message=""; if (! $_POST["nom"]) { $message='

'.$langs->trans("NameNotDefined").'

'; $action="create"; // Go back to create page } if (! $message) { $editgroup = new UserGroup($db,0); $editgroup->nom = trim($_POST["nom"]); $editgroup->note = trim($_POST["note"]); $db->begin(); $id = $editgroup->create(); if ($id > 0) { $db->commit(); Header("Location: fiche.php?id=".$editgroup->id); } else { $langs->load("errors"); $db->rollback(); $message='

'.$langs->trans("ErrorGroupAlreadyExists",$editgroup->nom).'

'; $action="create"; // Go back to create page } } }else{ $message = '

'.$langs->trans('ErrorForbidden').'

'; } } // Add user into group if ($_POST["action"] == 'adduser') { if($caneditperms) { if ($_POST["user"]) { $editgroup = new UserGroup($db); $editgroup->fetch($_GET["id"]); $editgroup->oldcopy=dol_clone($editgroup); $edituser = new User($db); $edituser->fetch($_POST["user"]); $result=$edituser->SetInGroup($_GET["id"]); // We reload members (list has changed) $editgroup->members=$editgroup->listUsersForGroup(); // We update group to force triggers that update groups content $result=$editgroup->update(); if ($result > 0) { header("Location: fiche.php?id=".$_GET["id"]); exit; } } }else{ $message = '

'.$langs->trans('ErrorForbidden').'

'; } } // Remove user from group if ($_GET["action"] == 'removeuser') { if($caneditperms) { if ($_GET["user"]) { $editgroup = new UserGroup($db); $editgroup->fetch($_GET["id"]); $editgroup->oldcopy=dol_clone($editgroup); $edituser = new User($db); $edituser->fetch($_GET["user"]); $edituser->RemoveFromGroup($_GET["id"]); // We reload members (list has changed) $editgroup->members=$editgroup->listUsersForGroup(); // We update group to force triggers that update groups content $result=$editgroup->update(); if ($result > 0) { header("Location: fiche.php?id=".$_GET["id"]); exit; } } }else{ $message = '

'.$langs->trans('ErrorForbidden').'

'; } } if ($_POST["action"] == 'update') { if($caneditperms) { $message=""; $db->begin(); $editgroup = new Usergroup($db, $_GET["id"]); $editgroup->fetch($_GET["id"]); $editgroup->oldcopy=dol_clone($editgroup); $editgroup->nom = trim($_POST["group"]); $editgroup->note = dol_htmlcleanlastbr($_POST["note"]); $ret=$editgroup->update(); if ($ret >= 0 && ! sizeof($editgroup->errors)) { $message.='

'.$langs->trans("GroupModified").'

'; $db->commit(); } else { $message.='

'.$editgroup->error.'

'; $db->rollback(); } } else { $message = '

'.$langs->trans('ErrorForbidden').'

'; } } /* * View */ llxHeader('',$langs->trans("GroupCard")); $html = new Form($db); if ($action == 'create') { print_fiche_titre($langs->trans("NewGroup")); if ($message) { print $message."
"; } print '"; } /* ************************************************************************** */ /* */ /* Visu et edition */ /* */ /* ************************************************************************** */ else { if ($_GET["id"] ) { $group = new UserGroup($db); $group->fetch($_GET["id"]); /* * Affichage onglets */ $head = group_prepare_head($group); $title = $langs->trans("Group"); dol_fiche_head($head, 'group', $title, 0, 'group'); /* * Confirmation suppression */ if ($action == 'delete') { $ret=$html->form_confirm("fiche.php?id=".$group->id,$langs->trans("DeleteAGroup"),$langs->trans("ConfirmDeleteGroup",$group->name),"confirm_delete", '',0,1); if ($ret == 'html') print '
'; } /* * Fiche en mode visu */ if ($action != 'edit') { print ''; // Ref print ''; print ''; print ''; // Name print ''; print '\n"; // Note print ''; print ''; print "\n"; print "

'.$langs->trans("Ref").'	'; print $html->showrefnav($group,'id','',$user->rights->user->user->lire \|\| $user->admin); print '
'.$langs->trans("Name").'	'.$group->nom; if (!$group->entity) { print img_redstar($langs->trans("GlobalGroup")); } print "
'.$langs->trans("Note").'	'.nl2br($group->note).'

\n"; print ''; /* * Barre d'actions */ print '

'; if ($caneditperms) { print ''.$langs->trans("Modify").''; } if ($candisableperms) { print ''.$langs->trans("DeleteGroup").''; } print "

\n"; print "
\n"; if ($message) { print $message."
"; } /* * Liste des utilisateurs dans le groupe */ print_fiche_titre($langs->trans("ListOfUsersInGroup"),'',''); // On salectionne les users qui ne sont pas deja dans le groupe $userlistid = array(); $uss = array(); $sql = "SELECT ug.fk_user"; $sql.= " FROM ".MAIN_DB_PREFIX."usergroup_user as ug"; $sql.= ", ".MAIN_DB_PREFIX."user as u"; $sql.= " WHERE ug.fk_usergroup = ".$group->id; $sql.= " AND ug.fk_user = u.rowid"; $sql.= " AND u.entity IN (0,".$conf->entity.")"; $result = $db->query($sql); if ($result) { $num = $db->num_rows($result); $i = 0; while ($i < $num) { $obj = $db->fetch_object($result); $userlistid[]=$obj->fk_user; $i++; } } else { dol_print_error($db); } $idList = implode(",",$userlistid); if (!empty($idList)) { $sql = "SELECT u.rowid, u.login, u.name, u.firstname, u.admin"; $sql.= " FROM ".MAIN_DB_PREFIX."user as u"; $sql.= " WHERE u.entity IN (0,".$conf->entity.")"; $sql.= " AND u.rowid NOT IN (".$idList.")"; $sql.= " ORDER BY u.name"; $result = $db->query($sql); if ($result) { $num = $db->num_rows($result); $i = 0; while ($i < $num) { $obj = $db->fetch_object($result); $uss[$obj->rowid] = ucfirst(stripslashes($obj->name)).' '.ucfirst(stripslashes($obj->firstname)); if ($obj->login) $uss[$obj->rowid].=' ('.$obj->login.')'; $i++; } } else { dol_print_error($db); } } else { $sql = "SELECT u.rowid, u.login, u.name, u.firstname, u.admin"; $sql.= " FROM ".MAIN_DB_PREFIX."user as u"; $sql.= " WHERE u.entity IN (0,".$conf->entity.")"; $sql.= " ORDER BY u.name"; $result = $db->query($sql); if ($result) { $num = $db->num_rows($result); $i = 0; while ($i < $num) { $obj = $db->fetch_object($result); $uss[$obj->rowid] = ucfirst(stripslashes($obj->name)).' '.ucfirst(stripslashes($obj->firstname)); if ($obj->login) $uss[$obj->rowid].=' ('.$obj->login.')'; $i++; } } else { dol_print_error($db); } } if ($caneditperms) { $form = new Form($db); print ''."\n"; print '
'; } /* * Membres du groupe */ $sql = "SELECT u.rowid, u.login, u.name, u.firstname, u.admin, u.entity"; $sql.= " FROM ".MAIN_DB_PREFIX."user as u"; $sql.= ", ".MAIN_DB_PREFIX."usergroup_user as ug"; $sql.= " WHERE ug.fk_user = u.rowid"; $sql.= " AND ug.fk_usergroup = ".$group->id; $sql.= " ORDER BY u.name"; $result = $db->query($sql); if ($result) { $num = $db->num_rows($result); $i = 0; print ''; print ''; print ''; print ''; print ''; print ''; print "\n"; if ($num) { $var=True; while ($i < $num) { $obj = $db->fetch_object($result); $var=!$var; print ""; print ''; print ''; print ''; print '\n"; $i++; } } else { print ''; } print "

'.$langs->trans("Login").'	'.$langs->trans("Lastname").'	'.$langs->trans("Firstname").'
'; print ''.img_object($langs->trans("ShowUser"),"user").' '.$obj->login.''; if ($obj->admin && !$obj->entity) { print img_redstar($langs->trans("SuperAdministrator")); } else if ($obj->admin) { print img_picto($langs->trans("Administrator"),'star'); } print '	'.ucfirst(stripslashes($obj->name)).'	'.ucfirst(stripslashes($obj->firstname)).'	'; if ($user->admin) { print ''; print img_delete($langs->trans("RemoveFromGroup")); } else { print "-"; } print "
'.$langs->trans("None").'

"; print "
"; $db->free($result); } else { dol_print_error($db); } } /* * Fiche en mode edition */ if ($_GET["action"] == 'edit' && $caneditperms) { print ''; print ''; } } } $db->close(); llxFooter('$Date$ - $Revision$'); ?>

'.$langs->trans("Name").'
'.$langs->trans("Note").'	'; if ($conf->fckeditor->enabled && $conf->global->FCKEDITOR_ENABLE_USER) { require_once(DOL_DOCUMENT_ROOT."/lib/doleditor.class.php"); $doleditor=new DolEditor('note','',240,'dolibarr_notes','',false); $doleditor->Create(); } else { print ''; print ''; } print "

'.$langs->trans("NonAffectedUsers").'
'.$langs->trans("UsersToAdd").'	'; print $form->selectarray("user",$uss,'',1); print ' '; print ''; print '

'.$langs->trans("Name").'	'; if (!$group->entity) { print img_redstar($langs->trans("GlobalGroup")); } print "
'.$langs->trans("Note").'	'; if ($conf->fckeditor->enabled && $conf->global->FCKEDITOR_ENABLE_USER) { require_once(DOL_DOCUMENT_ROOT."/lib/doleditor.class.php"); $doleditor=new DolEditor('note',$group->note,240,'dolibarr_notes','',true); $doleditor->Create(); } else { print ''; print dol_htmlentitiesbr_decode($group->note); print ''; } print '