Create group_edit.php

core/groups/group_edit.php

@@ -0,0 +1,330 @@
+<?php
+/*
+	FusionPBX
+	Version: MPL 1.1
+
+	The contents of this file are subject to the Mozilla Public License Version
+	1.1 (the "License"); you may not use this file except in compliance with
+	the License. You may obtain a copy of the License at
+	http://www.mozilla.org/MPL/
+
+	Software distributed under the License is distributed on an "AS IS" basis,
+	WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
+	for the specific language governing rights and limitations under the
+	License.
+
+	The Original Code is FusionPBX
+
+	The Initial Developer of the Original Code is
+	Mark J Crane <[email protected]>
+	Portions created by the Initial Developer are Copyright (C) 2018 - 2019
+	the Initial Developer. All Rights Reserved.
+
+	Contributor(s):
+	Mark J Crane <[email protected]>
+*/
+
+//includes
+	require_once "root.php";
+	require_once "resources/require.php";
+
+//check permissions
+	require_once "resources/check_auth.php";
+	if (permission_exists('group_add') || permission_exists('group_edit')) {
+		//access granted
+	}
+	else {
+		echo "access denied";
+		exit;
+	}
+
+//add multi-lingual support
+	$language = new text;
+	$text = $language->get();
+
+//action add or update
+	if (is_uuid($_REQUEST["id"])) {
+		$action = "update";
+		$group_uuid = $_REQUEST["id"];
+		$id = $_REQUEST["id"];
+	}
+	else {
+		$action = "add";
+	}
+
+//get http post variables and set them to php variables
+	if (is_array($_POST)) {
+		$group_uuid = $_POST["group_uuid"];
+		$group_name = $_POST["group_name"];
+		$domain_uuid = $_POST["domain_uuid"];
+		$group_level = $_POST["group_level"];
+		$group_protected = $_POST["group_protected"];
+		$group_description = $_POST["group_description"];
+	}
+
+//process the user data and save it to the database
+	if (count($_POST) > 0 && strlen($_POST["persistformvar"]) == 0) {
+
+		//validate the token
+			$token = new token;
+			if (!$token->validate($_SERVER['PHP_SELF'])) {
+				message::add($text['message-invalid_token'],'negative');
+				header('Location: groups.php');
+				exit;
+			}
+
+		//check for all required data
+			$msg = '';
+			if (strlen($group_name) == 0) { $msg .= $text['message-required']." ".$text['label-group_name']."<br>\n"; }
+			//if (strlen($domain_uuid) == 0) { $msg .= $text['message-required']." ".$text['label-domain_uuid']."<br>\n"; }
+			if (strlen($group_level) == 0) { $msg .= $text['message-required']." ".$text['label-group_level']."<br>\n"; }
+			//if (strlen($group_protected) == 0) { $msg .= $text['message-required']." ".$text['label-group_protected']."<br>\n"; }
+			//if (strlen($group_description) == 0) { $msg .= $text['message-required']." ".$text['label-group_description']."<br>\n"; }
+			if (strlen($msg) > 0 && strlen($_POST["persistformvar"]) == 0) {
+				require_once "resources/header.php";
+				require_once "resources/persist_form_var.php";
+				echo "<div align='center'>\n";
+				echo "<table><tr><td>\n";
+				echo $msg."<br />";
+				echo "</td></tr></table>\n";
+				persistformvar($_POST);
+				echo "</div>\n";
+				require_once "resources/footer.php";
+				return;
+			}
+
+		//add the group_uuid
+			if (!is_uuid($_POST["group_uuid"])) {
+				$group_uuid = uuid();
+			}
+
+		//prepare the array
+			$array['groups'][0]['group_uuid'] = $group_uuid;
+			$array['groups'][0]['group_name'] = $group_name;
+			$array['groups'][0]['domain_uuid'] = $domain_uuid;
+			$array['groups'][0]['group_level'] = $group_level;
+			$array['groups'][0]['group_protected'] = $group_protected;
+			$array['groups'][0]['group_description'] = $group_description;
+
+		//save the data
+			$database = new database;
+			$database->app_name = 'Group Manager';
+			$database->app_uuid = '2caf27b0-540a-43d5-bb9b-c9871a1e4f84';
+			$database->save($array);
+
+		//redirect the user
+			if (isset($action)) {
+				if ($action == "add") {
+					$_SESSION["message"] = $text['message-add'];
+				}
+				if ($action == "update") {
+					$_SESSION["message"] = $text['message-update'];
+				}
+				header('Location: group_edit.php?id='.urlencode($group_uuid));
+				return;
+			}
+	} //(is_array($_POST) && strlen($_POST["persistformvar"]) == 0)
+
+//pre-populate the form
+	if (is_array($_GET) && $_POST["persistformvar"] != "true") {
+		$group_uuid = $_GET["id"];
+		$sql = "select * from v_groups ";
+		$sql .= "where group_uuid = :group_uuid ";
+		//$sql .= "and domain_uuid = :domain_uuid ";
+		//$parameters['domain_uuid'] = $_SESSION['domain_uuid'];
+		$parameters['group_uuid'] = $group_uuid;
+		$database = new database;
+		$row = $database->select($sql, $parameters, 'row');
+		if (is_array($row) && @sizeof($row) != 0) {
+			$group_name = $row["group_name"];
+			$domain_uuid = $row["domain_uuid"];
+			$group_permissions = $row["group_permissions"];
+			$group_members = $row["group_members"];
+			$group_level = $row["group_level"];
+			$group_protected = $row["group_protected"];
+			$group_description = $row["group_description"];
+		}
+		unset ($sql, $parameters, $row);
+	}
+
+//create token
+	$object = new token;
+	$token = $object->create($_SERVER['PHP_SELF']);
+
+//show the header
+	require_once "resources/header.php";
+
+//show the content
+	echo "<form name='frm' id='frm' method='post' action=''>\n";
+	echo "<table width='100%'  border='0' cellpadding='0' cellspacing='0'>\n";
+
+	echo "<tr>\n";
+	echo "<td align='left' width='30%' nowrap='nowrap' valign='top'><b>".$text['title-group']."</b><br><br></td>\n";
+	echo "<td width='70%' align='right' valign='top'>\n";
+	echo "	<input type='button' class='btn' name='' alt='".$text['button-back']."' onclick=\"window.location='groups.php'\" value='".$text['button-back']."'>";
+	echo "	<input type='button' class='btn' name='' alt='".$text['button-copy']."' onclick=\"window.location='group_copy.php'\" value='".$text['button-copy']."'>";
+	echo "	<input type='submit' class='btn' value='".$text['button-save']."'>";
+	echo "</td>\n";
+	echo "</tr>\n";
+	echo "<tr>\n";
+	echo "<td colspan='2'>\n";
+	echo "	".$text['description-groups']."<br /><br />\n";
+	echo "</td>\n";
+	echo "</tr>\n";
+
+	echo "<tr>\n";
+	echo "<td class='vncellreq' valign='top' align='left' nowrap='nowrap'>\n";
+	echo "	".$text['label-group_name']."\n";
+	echo "</td>\n";
+	echo "<td class='vtable' style='position: relative;' align='left'>\n";
+	echo "	<input class='formfld' type='text' name='group_name' maxlength='255' value='".escape($group_name)."'>\n";
+	echo "<br />\n";
+	echo $text['description-group_name']."\n";
+	echo "</td>\n";
+	echo "</tr>\n";
+
+	echo "<tr>\n";
+	echo "<td class='vncell' valign='top' align='left' nowrap='nowrap'>\n";
+	echo "	".$text['label-domain_uuid']."\n";
+	echo "</td>\n";
+	echo "<td class='vtable' style='position: relative;' align='left'>\n";
+	echo "	<select class='formfld' name='domain_uuid'>\n";
+	if (strlen($domain_uuid) == 0) {
+		echo "		<option value='' selected='selected'>".$text['select-global']."</option>\n";
+	}
+	else {
+		echo "		<option value=''>".$text['label-global']."</option>\n";
+	}
+	foreach ($_SESSION['domains'] as $row) {
+		if ($row['domain_uuid'] == $domain_uuid) {
+			echo "		<option value='".$row['domain_uuid']."' selected='selected'>".escape($row['domain_name'])."</option>\n";
+		}
+		else {
+			echo "		<option value='".$row['domain_uuid']."'>".$row['domain_name']."</option>\n";
+		}
+	}
+	echo "	</select>\n";
+	echo "<br />\n";
+	echo $text['description-domain_uuid']."\n";
+	echo "</td>\n";
+	echo "</tr>\n";
+
+	echo "<tr>\n";
+	echo "<td class='vncellreq' valign='top' align='left' nowrap='nowrap'>\n";
+	echo "	".$text['label-group_level']."\n";
+	echo "</td>\n";
+	echo "<td class='vtable' style='position: relative;' align='left'>\n";
+		echo "	<select class='formfld' name='group_level'>\n";
+		echo "		<option value=''></option>\n";
+		if ($group_level == "10") {
+			echo "		<option value='10' selected='selected'>".$text['label-10']."</option>\n";
+		}
+		else {
+			echo "		<option value='10'>".$text['label-10']."</option>\n";
+		}
+		if ($group_level == "20") {
+			echo "		<option value='20' selected='selected'>".$text['label-20']."</option>\n";
+		}
+		else {
+			echo "		<option value='20'>".$text['label-20']."</option>\n";
+		}
+		if ($group_level == "30") {
+			echo "		<option value='30' selected='selected'>".$text['label-30']."</option>\n";
+		}
+		else {
+			echo "		<option value='30'>".$text['label-30']."</option>\n";
+		}
+		if ($group_level == "40") {
+			echo "		<option value='40' selected='selected'>".$text['label-40']."</option>\n";
+		}
+		else {
+			echo "		<option value='40'>".$text['label-40']."</option>\n";
+		}
+		if ($group_level == "50") {
+			echo "		<option value='50' selected='selected'>".$text['label-50']."</option>\n";
+		}
+		else {
+			echo "		<option value='50'>".$text['label-50']."</option>\n";
+		}
+		if ($group_level == "60") {
+			echo "		<option value='60' selected='selected'>".$text['label-60']."</option>\n";
+		}
+		else {
+			echo "		<option value='60'>".$text['label-60']."</option>\n";
+		}
+		if ($group_level == "70") {
+			echo "		<option value='70' selected='selected'>".$text['label-70']."</option>\n";
+		}
+		else {
+			echo "		<option value='70'>".$text['label-70']."</option>\n";
+		}
+		if ($group_level == "80") {
+			echo "		<option value='80' selected='selected'>".$text['label-80']."</option>\n";
+		}
+		else {
+			echo "		<option value='80'>".$text['label-80']."</option>\n";
+		}
+		if ($group_level == "90") {
+			echo "		<option value='90' selected='selected'>".$text['label-90']."</option>\n";
+		}
+		else {
+			echo "		<option value='90'>".$text['label-90']."</option>\n";
+		}
+		echo "	</select>\n";
+	echo "<br />\n";
+	echo $text['description-group_level']."\n";
+	echo "</td>\n";
+	echo "</tr>\n";
+
+	echo "<tr>\n";
+	echo "<td class='vncell' valign='top' align='left' nowrap='nowrap'>\n";
+	echo "	".$text['label-group_protected']."\n";
+	echo "</td>\n";
+	echo "<td class='vtable' style='position: relative;' align='left'>\n";
+	echo "	<select class='formfld' name='group_protected'>\n";
+	echo "		<option value=''></option>\n";
+	if ($group_protected == "true") {
+		echo "		<option value='true' selected='selected'>".$text['label-true']."</option>\n";
+	}
+	else {
+		echo "		<option value='true'>".$text['label-true']."</option>\n";
+	}
+	if ($group_protected == "false") {
+		echo "		<option value='false' selected='selected'>".$text['label-false']."</option>\n";
+	}
+	else {
+		echo "		<option value='false'>".$text['label-false']."</option>\n";
+	}
+	echo "	</select>\n";
+	echo "<br />\n";
+	echo $text['description-group_protected']."\n";
+	echo "</td>\n";
+	echo "</tr>\n";
+
+	echo "<tr>\n";
+	echo "<td class='vncell' valign='top' align='left' nowrap='nowrap'>\n";
+	echo "	".$text['label-group_description']."\n";
+	echo "</td>\n";
+	echo "<td class='vtable' style='position: relative;' align='left'>\n";
+	echo "	<input class='formfld' type='text' name='group_description' maxlength='255' value='".escape($group_description)."'>\n";
+	echo "<br />\n";
+	echo $text['description-group_description']."\n";
+	echo "</td>\n";
+	echo "</tr>\n";
+
+	echo "	<tr>\n";
+	echo "		<td colspan='2' align='right'>\n";
+	echo "			<input type='hidden' name='group_uuid' value='".escape($group_uuid)."'>\n";
+	echo "			<input type='hidden' name='".$token['name']."' value='".$token['hash']."'>\n";
+	echo "			<br />\n";
+	echo "			<input type='submit' class='btn' value='".$text['button-save']."'>\n";
+	echo "		</td>\n";
+	echo "	</tr>";
+	echo "</table>";
+	echo "</form>";
+	echo "<br /><br />";
+
+//include the footer
+	require_once "resources/footer.php";
+
+?>