* Copyright (C) 2002-2003 Jean-Louis Bergamo * Copyright (C) 2004-2005 Laurent Destailleur * Copyright (C) 2004 Eric Seigne * Copyright (C) 2005 Regis Houssin * Copyright (C) 2005 Lionel COUSTEIX * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. * * $Id$ * $Source$ */ /** \file htdocs/user/fiche.php \brief Onglet user et permissions de la fiche utilisateur \version $Revision$ */ require("./pre.inc.php"); require_once(DOL_DOCUMENT_ROOT."/contact.class.php"); // Defini si peux lire/modifier utilisateurs et permisssions $canreadperms=($user->admin || $user->rights->user->user->lire); $caneditperms=($user->admin || $user->rights->user->user->creer); $candisableperms=($user->admin || $user->rights->user->user->supprimer); if ($user->id <> $_GET["id"]) { if (! $canreadperms) { accessforbidden(); } } $langs->load("users"); $langs->load("companies"); $form = new Form($db); $action=isset($_GET["action"])?$_GET["action"]:$_POST["action"]; /** * Actions */ if ($_GET["subaction"] == 'addrights' && $caneditperms) { $edituser = new User($db,$_GET["id"]); $edituser->addrights($_GET["rights"]); } if ($_GET["subaction"] == 'delrights' && $caneditperms) { $edituser = new User($db,$_GET["id"]); $edituser->delrights($_GET["rights"]); } if ($_POST["action"] == 'confirm_disable' && $_POST["confirm"] == "yes") { if ($_GET["id"] <> $user->id) { $edituser = new User($db, $_GET["id"]); $edituser->fetch($_GET["id"]); $edituser->disable(); Header("Location: ".DOL_URL_ROOT.'/user/fiche.php?id='.$_GET["id"]); exit; } } if ($_POST["action"] == 'confirm_delete' && $_POST["confirm"] == "yes") { if ($_GET["id"] <> $user->id) { $edituser = new User($db, $_GET["id"]); $edituser->fetch($_GET["id"]); $edituser->delete(); Header("Location: index.php"); exit; } } // Action ajout user if ($_POST["action"] == 'add' && $caneditperms) { $message=""; if (! $_POST["nom"]) { $message='

'.$langs->trans("NameNotDefined").'

'; $action="create"; // Go back to create page } if (! $_POST["login"]) { $message='

'.$langs->trans("LoginNotDefined").'

'; $action="create"; // Go back to create page } if (! $message) { $edituser = new User($db,0); $edituser->nom = trim($_POST["nom"]); $edituser->prenom = trim($_POST["prenom"]); $edituser->login = trim($_POST["login"]); $edituser->admin = trim($_POST["admin"]); $edituser->office_phone = trim($_POST["office_phone"]); $edituser->office_fax = trim($_POST["office_fax"]); $edituser->user_mobile = trim($_POST["user_mobile"]); $edituser->email = trim($_POST["email"]); $edituser->webcal_login = trim($_POST["webcal_login"]); $edituser->note = trim($_POST["note"]); $db->begin(); $id = $edituser->create(); if ($id > 0) { if (isset($_POST['password']) && trim($_POST['password'])) { $edituser->password($user,trim($_POST['password']),$conf->password_encrypted); } $db->commit(); Header("Location: fiche.php?id=$id"); exit; } else { $db->rollback(); $message='

'.$langs->trans("ErrorLoginAlreadyExists",$edituser->login).'

'; $action="create"; // Go back to create page } } } // Action ajout groupe utilisateur if ($_POST["action"] == 'addgroup' && $caneditperms) { if ($_POST["group"]) { $edituser = new User($db, $_GET["id"]); $edituser->SetInGroup($_POST["group"]); Header("Location: fiche.php?id=".$_GET["id"]); exit; } } if ($_GET["action"] == 'removegroup' && $caneditperms) { if ($_GET["group"]) { $edituser = new User($db, $_GET["id"]); $edituser->RemoveFromGroup($_GET["group"]); Header("Location: fiche.php?id=".$_GET["id"]); exit; } } if ($_POST["action"] == 'update' && $caneditperms) { $message=""; $db->begin(); $edituser = new User($db, $_GET["id"]); $edituser->fetch(); $edituser->nom = $_POST["nom"]; $edituser->prenom = $_POST["prenom"]; $edituser->login = $_POST["login"]; $edituser->pass = $_POST["pass"]; $edituser->admin = $_POST["admin"]; $edituser->office_phone = $_POST["office_phone"]; $edituser->office_fax = $_POST["office_fax"]; $edituser->user_mobile = $_POST["user_mobile"]; $edituser->email = $_POST["email"]; $edituser->note = $_POST["note"]; $edituser->webcal_login = $_POST["webcal_login"]; $ret=$edituser->update(); if ($ret < 0) { if ($db->errno() == 'DB_ERROR_RECORD_ALREADY_EXISTS') { $message.='

'.$langs->trans("ErrorLoginAlreadyExists",$edituser->login).'

'; } else { $message.='

'.$edituser->error.'

'; } } if ($ret >= 0 && isset($_POST["password"]) && $_POST["password"] !='' ) { $ret=$edituser->password($user,$password,$conf->password_encrypted); if ($ret < 0) { $message.='

'.$edituser->error.'

'; } } if (isset($_FILES['photo']['tmp_name']) && trim($_FILES['photo']['tmp_name'])) { // Si une photo est fournie avec le formulaire if (! is_dir($conf->users->dir_output)) { create_exdir($conf->users->dir_output); } if (is_dir($conf->users->dir_output)) { $newfile=$conf->users->dir_output . "/" . $edituser->id . ".jpg"; if (! doliMoveFileUpload($_FILES['photo']['tmp_name'],$newfile)) { $message .= '

'.$langs->trans("ErrorFailedToSaveFile").'

'; } } } if ($ret >= 0) { $message.='

'.$langs->trans("UserModified").'

'; $db->commit(); } else { $db->rollback; } } // Action modif mot de passe if ((($_POST["action"] == 'confirm_password' && $_POST["confirm"] == 'yes') || $_GET["action"] == 'confirm_passwordsend') && $caneditperms) { $edituser = new User($db, $_GET["id"]); $edituser->fetch(); $newpassword=$edituser->password($user,'',$conf->password_encrypted); if ($newpassword < 0) { // Echec $message = '

'.$langs->trans("ErrorFailedToSaveFile").'

'; } else { // Succes if ($_GET["action"] == 'confirm_passwordsend') { if ($edituser->send_password($user,$newpassword) > 0) { $message = '

'.$langs->trans("PasswordChangedAndSentTo",$edituser->email).'

'; //$message.=$newpassword; } else { $message = '

'.$langs->trans("PasswordChangedTo",$newpassword).'

'; $message.= '

'.$edituser->error.'

'; } } else { $message = '

'.$langs->trans("PasswordChangedTo",$newpassword).'

'; } } } llxHeader('',$langs->trans("UserCard")); if ($action == 'create') { /* ************************************************************************** */ /* */ /* Affichage fiche en mode création */ /* */ /* ************************************************************************** */ print_titre($langs->trans("NewUser")); print "
"; if ($message) { print $message.'
'; } print '

'; print ''; print ''; print "".''; print ''; print ''; print ''; print ''; print ''; print ''; print ''; if ($user->admin) { print ''; print '\n"; } print ''; print ''; print ''; print ''; print ''; print ''; print ''; print ''; print '\n"; // Autres caractéristiques issus des autres modules if ($conf->webcal->enabled) { print "".''; print ''; } print "".''; print "

'.$langs->trans("Lastname").'
'.$langs->trans("Firstname").'
'.$langs->trans("Login").'
'.$langs->trans("Password").'
'.$langs->trans("Administrator").'	'; $form->selectyesnonum('admin',0); print "
'.$langs->trans("Phone").'
'.$langs->trans("Fax").'
'.$langs->trans("Mobile").'
'.$langs->trans("EMail").'
'.$langs->trans("Note").'	'; print ""; print "
'.$langs->trans("LoginWebcal").'

\n"; print "

"; } else { /* ************************************************************************** */ /* */ /* Visu et edition */ /* */ /* ************************************************************************** */ if ($_GET["id"]) { $fuser = new User($db, $_GET["id"]); $fuser->fetch(); $fuser->getrights(); $caneditpassword=( (($user->id == $fuser->id) && $user->rights->user->self->password) || (($user->id != $fuser->id) && $user->rights->user->user->password) ); /* * Affichage onglets */ $h = 0; $head[$h][0] = DOL_URL_ROOT.'/user/fiche.php?id='.$fuser->id; $head[$h][1] = $langs->trans("UserCard"); $hselected=$h; $h++; $head[$h][0] = DOL_URL_ROOT.'/user/perms.php?id='.$fuser->id; $head[$h][1] = $langs->trans("UserRights"); $h++; $head[$h][0] = DOL_URL_ROOT.'/user/param_ihm.php?id='.$fuser->id; $head[$h][1] = $langs->trans("UserGUISetup"); $h++; if ($conf->bookmark4u->enabled) { $head[$h][0] = DOL_URL_ROOT.'/user/addon.php?id='.$fuser->id; $head[$h][1] = $langs->trans("Bookmark4u"); $h++; } if ($conf->clicktodial->enabled) { $head[$h][0] = DOL_URL_ROOT.'/user/clicktodial.php?id='.$fuser->id; $head[$h][1] = $langs->trans("ClickToDial"); $h++; } dolibarr_fiche_head($head, $hselected, $langs->trans("User").": ".$fuser->fullname); /* * Confirmation réinitialisation mot de passe */ if ($action == 'password') { $html = new Form($db); $html->form_confirm("fiche.php?id=$fuser->id",$langs->trans("ReinitPassword"),$langs->trans("ConfirmReinitPassword",$fuser->login),"confirm_password"); print '
'; } /* * Confirmation envoi mot de passe */ if ($action == 'passwordsend') { $html = new Form($db); $html->form_confirm("fiche.php?id=$fuser->id",$langs->trans("SendNewPassword"),$langs->trans("ConfirmSendNewPassword",$fuser->login),"confirm_passwordsend"); print '
'; } /* * Confirmation désactivation */ if ($action == 'disable') { $html = new Form($db); $html->form_confirm("fiche.php?id=$fuser->id",$langs->trans("DisableAUser"),$langs->trans("ConfirmDisableUser",$fuser->login),"confirm_disable"); print '
'; } /* * Confirmation suppression */ if ($action == 'delete') { $html = new Form($db); $html->form_confirm("fiche.php?id=$fuser->id",$langs->trans("DeleteAUser"),$langs->trans("ConfirmDeleteUser",$fuser->login),"confirm_delete"); print '
'; } /* * Fiche en mode visu */ if ($_GET["action"] != 'edit') { print ''; print ''; print ''; print ''; print ''; print ''; print "\n"; print ''; if ($fuser->login) { print ''; } else { print ''; } // Password print ''; print ''; print "\n"; // Administrateur print ''; print ''; print "\n"; // Source print ''; print ''; // Company / Contact print ''; print ''; print "\n"; // Tel, fax, portable print ''; print ''; print ''; print ''; print ''; print ''; print ''; print ''; print "\n"; print ''; print ''; print "\n"; print ''; print ''; print "\n"; print "".''; print ''; print "\n"; // Autres caractéristiques issus des autres modules if ($conf->webcal->enabled) { $langs->load("other"); print ''; print ''; print "\n"; } print "

'.$langs->trans("Lastname").'	'.$fuser->nom.'	'; if (file_exists($conf->users->dir_output."/".$fuser->id.".jpg")) { print ''; } else { print ''; } print '
'.$langs->trans("Firstname").'	'.$fuser->prenom.'
'.$langs->trans("Login").'	'.$fuser->login.'
'.$langs->trans("LoginAccountDisable").'
'.$langs->trans("Password").'	'.eregi_replace('.','*',$fuser->pass).'
'.$langs->trans("Administrator").'	'.yn($fuser->admin); if ($fuser->admin) print ' '.img_picto($langs->trans("Administrator"),"star"); print '
'.$langs->trans("Source").'	'; if ($fuser->societe_id) { print $langs->trans("External"); } else { print $langs->trans("Internal"); } print '
'.$langs->trans("Company").' / '.$langs->trans("Contact").'	'; if ($fuser->societe_id > 0) { $societe = new Societe($db); $societe->fetch($fuser->societe_id); print ''.img_object($langs->trans("ShowCompany"),'company').' '.dolibarr_trunc($societe->nom,32).''; if ($fuser->contact_id) { $contact = new Contact($db); $contact->fetch($fuser->contact_id); print ' / '.''.img_object($langs->trans("ShowContact"),'contact').' '.dolibarr_trunc($contact->fullname,32).''; } } else { print $langs->trans("ThisUserIsNot"); } print '
'.$langs->trans("Phone").'	'.$fuser->office_phone.'
'.$langs->trans("Fax").'	'.$fuser->office_fax.'
'.$langs->trans("Mobile").'	'.$fuser->user_mobile.'
'.$langs->trans("EMail").'	'.$fuser->email.'
'.$langs->trans("DateCreation").'	'.dolibarr_print_date($fuser->datec).'
'.$langs->trans("DateModification").'	'.dolibarr_print_date($fuser->datem).'
'.$langs->trans("Note").'	'.nl2br($fuser->note).'
'.$langs->trans("LoginWebcal").'	'.$fuser->webcal_login.'

\n"; print "\n"; if ($message) { print $message; } /* * Barre d'actions */ print '

'; if ($caneditperms || ($user->id == $fuser->id)) { print ''.$langs->trans("Edit").''; } if (($user->id != $_GET["id"] && $caneditpassword) && $fuser->login) { print ''.$langs->trans("ReinitPassword").''; } if (($user->id != $_GET["id"] && $caneditpassword) && $fuser->email && $fuser->login) { print ''.$langs->trans("SendNewPassword").''; } if ($user->id <> $_GET["id"] && $candisableperms && $fuser->login) { print ''.$langs->trans("DisableUser").''; } if ($user->id <> $_GET["id"] && $candisableperms) { print ''.$langs->trans("DeleteUser").''; } print "

\n"; print "
\n"; /* * Liste des groupes dans lequel est l'utilisateur */ print_fiche_titre($langs->trans("ListOfGroupsForUser")); // On sélectionne les groups $uss = array(); $sql = "SELECT ug.rowid, ug.nom "; $sql .= " FROM ".MAIN_DB_PREFIX."usergroup as ug "; # $sql .= " LEFT JOIN llx_usergroup_user ug ON u.rowid = ug.fk_user"; # $sql .= " WHERE ug.fk_usergroup IS NULL"; $sql .= " ORDER BY ug.nom"; $resql = $db->query($sql); if ($resql) { $num = $db->num_rows($resql); $i = 0; while ($i < $num) { $obj = $db->fetch_object($resql); $uss[$obj->rowid] = $obj->nom; $i++; } } else { dolibarr_print_error($db); } if ($caneditperms) { $form = new Form($db); print ''."\n"; } /* * Groupes affectés */ $sql = "SELECT g.rowid, g.nom "; $sql .= " FROM ".MAIN_DB_PREFIX."usergroup as g"; $sql .= ",".MAIN_DB_PREFIX."usergroup_user as ug"; $sql .= " WHERE ug.fk_usergroup = g.rowid"; $sql .= " AND ug.fk_user = ".$_GET["id"]; $sql .= " ORDER BY g.nom"; $result = $db->query($sql); if ($result) { $num = $db->num_rows($result); $i = 0; print '
'; print ''; print ''; print ''; print "\n"; if ($num) { $var=True; while ($i < $num) { $obj = $db->fetch_object($result); $var=!$var; print ""; print ''; print '\n"; $i++; } } else { print ''; } print "

'.$langs->trans("Group").'
'; print ''.img_object($langs->trans("ShowGroup"),"group").' '.$obj->nom.''; print '	'; if ($caneditperms) { print 'rowid.'">'; print img_delete($langs->trans("RemoveFromGroup")); } else { print "-"; } print "
'.$langs->trans("None").'

"; print "
"; $db->free($result); } else { dolibarr_print_error($db); } } /* * Fiche en mode edition */ if ($_GET["action"] == 'edit' && ($caneditperms || ($user->id == $fuser->id))) { print '

'; print ''; print ''; $rowspan=12; print ''; print ''; print ''; print "".''; print ''; // Login print "".''; print ''; // Pass if ($caneditpassword) { print "".''; print ''; } else { print ''; print ''; print "\n"; } // Administrateur print "".''; if ($fuser->societe_id > 0) { print ''; } else { print ''; } // Source print ''; print ''; // Company / Contact print ''; print ''; print "\n"; // Tel, fax, portable print "".''; print ''; print "".''; print ''; print "".''; print ''; print "".''; print ''; print "".'"; // Autres caractéristiques issus des autres modules if ($conf->webcal->enabled) { $langs->load("other"); print "".''; print ''; } print ''; print '

'.$langs->trans("Lastname").'

'; if (file_exists($conf->users->dir_output."/".$fuser->id.".jpg")) { print '

'; } else { print '

'; } print '

'.$langs->trans("PhotoFile").'

'; print '

'.$langs->trans("Firstname").'

'.$langs->trans("Login").'

'; if ($user->admin) print ''; else print $fuser->login.''; print '

'.$langs->trans("Password").'

'.eregi_replace('.','*',$fuser->pass).'

'.$langs->trans("Administrator").'

'; print ''.yn($fuser->admin); print '

'; if ($user->admin) { $form->selectyesnonum('admin',$fuser->admin); } else { print ''.yn($fuser->admin); } print '

'.$langs->trans("Source").'

'; if ($fuser->societe_id) { print $langs->trans("External"); } else { print $langs->trans("Internal"); } print '

'.$langs->trans("Company").' / '.$langs->trans("Contact").'

'; if ($fuser->societe_id > 0) { $societe = new Societe($db); $societe->fetch($fuser->societe_id); print ''.img_object($langs->trans("ShowCompany"),'company').' '.dolibarr_trunc($societe->nom,32).''; if ($fuser->contact_id) { $contact = new Contact($db); $contact->fetch($fuser->contact_id); print ' / '.''.img_object($langs->trans("ShowContact"),'contact').' '.dolibarr_trunc($contact->fullname,32).''; } } else { print $langs->trans("ThisUserIsNot"); } print '

'.$langs->trans("Phone").'

'.$langs->trans("Fax").'

'.$langs->trans("Mobile").'

'.$langs->trans("EMail").'

'.$langs->trans("Note").'

'; print '

'.$langs->trans("LoginWebcal").'

'; print '

'; } print ''; } } $db->close(); llxFooter('$Date$ - $Revision$'); ?>

'.$langs->trans("NonAffectedUsers").'
'.$langs->trans("GroupsToAdd").'	'; print $form->select_array("group",$uss); print ' '; print ''; print '